last executing test programs:

1m20.318098517s ago: executing program 0 (id=1507):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
close(r1)
socket$inet6(0xa, 0x2, 0x3a)
sendmsg$inet_sctp(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000001c0)='F', 0x1}, {0x0}], 0x2, &(0x7f0000000500)=ANY=[@ANYBLOB="2000000008000101000000140000000200000000000000cfb78c0c1113f3b5a3d9868a5544f5025b256fb76306e3add013fd062ffd9494218cb97ddfeaa7636aeacedcf6c2ee06a6a1daa4764b582fe1c5c835e7f3ffe3c219b45bd841b81c23cd0772ed42d07857ed5b6ae24a16528bb6b381c054ce80c72a48eff241eef3e4e7e9192bf2c1b112db5dd5365c", @ANYRES64=r0], 0x20, 0x2400e044}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x101, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x8}]}], {0x14}}, 0x64}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000900)=@newqdisc={0x38, 0x24, 0x3fe3aa0262d8c583, 0x70bd29, 0x25dfdbfe, {0x0, 0x0, 0x0, r3, {0x0, 0xffe0}, {0xffff, 0xffff}, {0x10, 0xe}}, [@qdisc_kind_options=@q_fq={{0x7}, {0xc, 0x2, [@TCA_FQ_FLOW_DEFAULT_RATE={0x8, 0x6, 0xffffffff}]}}]}, 0x38}}, 0x4048000)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
shutdown(r4, 0x1)
r5 = openat$ptmx(0xffffff9c, &(0x7f00000005c0), 0x0, 0x0)
ioctl$TIOCL_SETVESABLANK(r5, 0x541c, &(0x7f0000000600))
bind$inet6(r4, &(0x7f0000000040)={0xa, 0x4e20, 0xf, @loopback, 0x5}, 0x1c)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20, 0xfffffff1, @empty, 0x2}, 0x1c)
connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x4e20, 0x20000006, @empty, 0x9f}, 0x1c)
r6 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000640)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0xf, '\x00', r3, 0xffffffffffffffff, 0x5, 0x1, 0x5}, 0x50)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f0000000840)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000800)={&(0x7f0000000740)={0xb4, 0x9, 0x6, 0x801, 0x0, 0x0, {0x2}, [@IPSET_ATTR_DATA={0x34, 0x7, 0x0, 0x1, [@IPSET_ATTR_ETHER={0xa, 0x11, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x34}}, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0x7}, @IPSET_ATTR_SKBPRIO={0x8, 0x1c, 0x1, 0x0, 0x1}, @IPSET_ATTR_PORT_TO={0x6, 0x5, 0x1, 0x0, 0x4e20}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}}]}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x7}, @IPSET_ATTR_ADT={0x40, 0x8, 0x0, 0x1, [{0x18, 0x7, 0x0, 0x1, @IPSET_ATTR_IFACE={0x14, 0x17, 'pim6reg0\x00'}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CIDR={0x5, 0x3, 0x1}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e22}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0x4}}]}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x800}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0xb4}, 0x1, 0x0, 0x0, 0x14008000}, 0x804)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0xb, &(0x7f00000006c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x15f74ac5, 0x0, 0x0, 0x0, 0x80000000}, [@map_idx_val={0x18, 0x1, 0x6, 0x0, 0xb, 0x0, 0x0, 0x0, 0x9}, @alu={0x7, 0x1, 0x8, 0xb, 0x6, 0x1, 0xfffffffffffffff0}, @map_idx={0x18, 0x3, 0x5, 0x0, 0x3}, @alu={0x7, 0xc0ae69262dfc8df3, 0x7, 0x9, 0x0, 0x2, 0xfffffffffffffffc}, @map_val={0x18, 0x7, 0x2, 0x0, r6, 0x0, 0x0, 0x0, 0x6}]}, &(0x7f0000000180)='syzkaller\x00', 0x7, 0xd2, &(0x7f00000001c0)=""/210, 0x41000, 0x9, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f00000002c0)={0x3, 0x1}, 0x8, 0x10, &(0x7f0000000300)={0x4, 0xd, 0x6, 0x8000}, 0x10, 0x0, 0x0, 0x3, &(0x7f0000000340)=[0x1, 0x1], &(0x7f0000000380)=[{0x4, 0x3, 0x1, 0x7}, {0x0, 0x4, 0x10, 0x7}, {0x1, 0x5, 0x8, 0x3}], 0x10, 0x5}, 0x94)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
r8 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r8, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r9=>0x0}, &(0x7f0000000ac0)=0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r7, 0x84, 0x7b, &(0x7f0000000280)={r9}, 0x8)
syz_open_dev$evdev(0x0, 0x2, 0x862b01)
listen(0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))

1m19.898910521s ago: executing program 0 (id=1508):
lstat(&(0x7f00000000c0)='./file0/file0\x00', 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000500), 0x28002)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000680)=ANY=[@ANYBLOB="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"], 0x0, 0x52, 0x0, 0x1, 0x6}, 0x28)
dup(r0)
geteuid()
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
mkdir(0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000001a40)=""/102392, 0x18ff8)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'batadv_slave_1\x00', <r2=>0x0})
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000280)={r2, 0x11, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x35}}, 0x10)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x48e80, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x200)
ioctl$KVM_SET_MP_STATE(r5, 0x4004ae99, &(0x7f0000000000)=0x2)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f00000003c0)={0x2, 0x0, @ioapic={0x0, 0xb5, 0xa9c1, 0x4, 0x0, [{0x2, 0x80, 0x0, '\x00', 0x1}, {0x6, 0xff, 0x0, '\x00', 0x10}, {0xfc, 0x4}, {0xfe, 0x90, 0x3, '\x00', 0x13}, {0x8, 0x2, 0x5, '\x00', 0x9}, {0x1, 0x60}, {0x8, 0x3, 0xbb, '\x00', 0x3}, {0x0, 0x6, 0x1, '\x00', 0xfc}, {0x0, 0xff, 0x0, '\x00', 0x80}, {0x6, 0x4, 0xfa, '\x00', 0x42}, {0x4, 0x2, 0x10}, {0x4, 0x50, 0xb, '\x00', 0x40}, {0x0, 0x1, 0x31, '\x00', 0xcc}, {0x7, 0x4d, 0x5}, {0x2, 0x80, 0x4, '\x00', 0xfe}, {0x7, 0x3}, {0x1, 0x8, 0x6, '\x00', 0x4}, {0xf, 0x0, 0x0, '\x00', 0x2}, {0x1, 0x3, 0x7, '\x00', 0xa}, {0x90, 0x0, 0xe, '\x00', 0x7}, {0x5, 0x8}, {0x0, 0x40, 0x0, '\x00', 0x70}, {0x2, 0x2, 0x0, '\x00', 0xc}, {0x10, 0xe, 0xe, '\x00', 0xf4}]}})
openat$tun(0xffffffffffffff9c, 0x0, 0x4080, 0x0)

1m18.327584889s ago: executing program 0 (id=1518):
socket$inet6(0xa, 0x400000000001, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x80000000}, 0x50)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/4\x00')
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000040)={0x1, 0x0, [{0x587, 0x0, 0x6}]})
preadv(r0, &(0x7f0000001240)=[{&(0x7f0000000140)=""/34, 0x22}], 0x1, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000440)=@RTM_GETMDB={0x18, 0x56, 0x1, 0x70bd2b, 0x25dfdbfc}, 0x18}, 0x1, 0x0, 0x0, 0x20008000}, 0x24040010)

1m17.337590644s ago: executing program 0 (id=1522):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_tcp(0x2, 0x1, 0x0)
mount(&(0x7f0000000040)=@nbd={'/dev/nbd', 0x0}, 0x0, 0x0, 0x0, &(0x7f0000000140)='grpquota')
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000140)='./file1\x00')
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000380)='highspeed', 0x9)
bind$inet6(r1, &(0x7f0000d84000)={0xa, 0x2, 0x3, @loopback, 0x8}, 0x1c)
setsockopt$inet6_tcp_int(r1, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
chdir(&(0x7f0000000180)='./file0\x00')
sendto$inet6(r1, &(0x7f00000000c0)="b2", 0x1, 0x24008844, &(0x7f0000000040)={0xa, 0x2, 0x80398, @empty, 0xfffffffe}, 0x1c)
shutdown(r1, 0x1)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r2, 0xffffffff80000800, 0x0, &(0x7f00000000c0)={0x1, 0x5b81, 0x1800000000, 0x2000000000002, 0x6, 0x9, 0x0, 0x0, 0xde})
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
ptrace$setregs(0x1a, r3, 0xc, &(0x7f0000000000))
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
getpid()
sched_getattr(r3, &(0x7f0000000080)={0x38}, 0x38, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000001a80), r0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000001ac0)={'wpan0\x00'})
sendmsg$IEEE802154_LLSEC_SETPARAMS(r0, &(0x7f0000001b80)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000001b00)={0x14, r4, 0x1, 0x70bd27, 0x25dfdbfb}, 0x14}}, 0x8)

1m17.287474583s ago: executing program 0 (id=1523):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x5}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x5}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x44, 0x6, 0xa, 0x401, 0x0, 0x0, {0x5, 0x0, 0x4000}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @dup_ipv6={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0x13}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xb8}}, 0x0) (fail_nth: 17)

1m16.980778662s ago: executing program 0 (id=1527):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x2, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x800, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000002380)={r4, 0x0, 0x2d, 0x0, @val=@netfilter={0x2, 0x4, 0x600, 0x1}}, 0x20)
r5 = socket$kcm(0x2, 0x5, 0x0)
sendmsg$inet(r5, &(0x7f00000004c0)={&(0x7f0000000080)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x35}}, 0x10, &(0x7f0000000000)=[{&(0x7f0000000140)="9f", 0x1}], 0x1}, 0x4cbe8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r8, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x92}}, 0x0)
getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff000000", @ANYRES32=r9, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001400)=@newqdisc={0x3c, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {0x0, 0x9}, {0xffff, 0xffff}, {0xfff1}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_ACK_FILTER={0x8, 0x10, 0x2}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40815}, 0x8d0)
sendto$packet(r6, &(0x7f00000002c0)="44c33b69ebc9e05e9bf2c0c286dd", 0xe, 0x830, &(0x7f0000000180)={0x11, 0x5, r9, 0x1, 0x2, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xe}}, 0x14)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000005c0), &(0x7f0000000600)=0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x1e, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000080000000000000000000000071120b00000000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
socket$packet(0x11, 0x3, 0x300)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="30000000100001000000ce6bb9092919507f3400", @ANYRES32=0x0, @ANYRES32=r0, @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)

1m16.889922413s ago: executing program 32 (id=1527):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x2, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x800, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x0, 0xffffffff}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000002380)={r4, 0x0, 0x2d, 0x0, @val=@netfilter={0x2, 0x4, 0x600, 0x1}}, 0x20)
r5 = socket$kcm(0x2, 0x5, 0x0)
sendmsg$inet(r5, &(0x7f00000004c0)={&(0x7f0000000080)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x35}}, 0x10, &(0x7f0000000000)=[{&(0x7f0000000140)="9f", 0x1}], 0x1}, 0x4cbe8)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r8, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x92}}, 0x0)
getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff000000", @ANYRES32=r9, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001400)=@newqdisc={0x3c, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {0x0, 0x9}, {0xffff, 0xffff}, {0xfff1}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_ACK_FILTER={0x8, 0x10, 0x2}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40815}, 0x8d0)
sendto$packet(r6, &(0x7f00000002c0)="44c33b69ebc9e05e9bf2c0c286dd", 0xe, 0x830, &(0x7f0000000180)={0x11, 0x5, r9, 0x1, 0x2, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xe}}, 0x14)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000005c0), &(0x7f0000000600)=0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x1e, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000080000000000000000000000071120b00000000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
socket$packet(0x11, 0x3, 0x300)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="30000000100001000000ce6bb9092919507f3400", @ANYRES32=0x0, @ANYRES32=r0, @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)

54.351381879s ago: executing program 2 (id=1602):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, &(0x7f0000000000)={0x0, 0x8542, 0x8, 0x6, 0x402, 0x4})
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000140)=<r2=>0x0)
syz_open_procfs(r2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000500)='./cgroup.cpu/cgroup.procs\x00', 0x800, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0xa0002)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000005c0)={'tunl0\x00', <r4=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000004640)={&(0x7f0000000540)=@newqdisc={0x68, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x2}, {0xffff, 0xffff}, {0x7, 0x2}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x0, 0x80000001, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0x4, 0x8, 0x80000001, 0x14, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}}}}]}, 0x78}}, 0x0)
sendmsg$NFNL_MSG_ACCT_GET(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0x64, 0x1, 0x7, 0x201, 0x0, 0x0, {0x1, 0x0, 0x9}, [@NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x6}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x78e}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0xaa9}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x1}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x3}, @NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x2}]}, 0x64}, 0x1, 0x0, 0x0, 0xc4}, 0x4000000)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r6, 0x3)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
syz_emit_ethernet(0x3a, &(0x7f0000000080)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local, {[@noop]}}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2, 0x0, 0x0, 0x1}}}}}}, 0x0)
syz_emit_ethernet(0x42, &(0x7f0000000300)={@local, @remote, @void, {@arp={0x806, @ether_ipv6={0x1, 0x86dd, 0x6, 0x10, 0x4, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x39}, @private1={0xfc, 0x1, '\x00', 0x1}, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x42}, @local}}}}, 0x0)
syz_genetlink_get_family_id$netlbl_cipso(0x0, 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x184}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0xf, 0x491, 0x3, 0x2, 0x0, 0x8, 0x1}}, {0x6, 0x1b, [0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x4000c00)
syz_emit_ethernet(0x116b, 0x0, 0x0)
r7 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f00000000c0)=0x5)

54.054985416s ago: executing program 2 (id=1603):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[], 0x38}, 0x1, 0x0, 0x0, 0x90}, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000040)={0xc, 0x4, 0x81})
syz_open_dev$ndb(&(0x7f0000000080), 0x0, 0x280)

54.054673891s ago: executing program 2 (id=1604):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3c, &(0x7f0000002640)=0x1, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
sendto(0xffffffffffffffff, 0x0, 0x0, 0x4000054, 0x0, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
ioctl$IOCTL_VMCI_CTX_SET_CPT_STATE(0xffffffffffffffff, 0x7b2, &(0x7f0000000240)={0x0, 0x4, 0x0, 0x9})
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000800)={0x2, 0x4e23, @remote}, 0x10, 0x0, 0x0, &(0x7f00000009c0)=[@mask_fadd={0x58, 0x114, 0x8, {{0x87, 0xd}, &(0x7f00000005c0)=0x4, 0x0, 0x0, 0x9, 0x96, 0x5, 0x50}}], 0x58, 0x20008011}, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f00000003c0)=[@mss={0x2, 0x8}, @timestamp, @sack_perm, @window={0x3, 0x8000, 0xfffc}, @sack_perm, @sack_perm, @window={0x3, 0xfff, 0x4}, @window={0x3, 0x5}], 0x8)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000001c0), 0xc7)
sendto$inet(r1, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x11)
recvfrom$inet(r1, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x700, 0x0, 0xfffffffffffffd25)

53.850296705s ago: executing program 2 (id=1605):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000240)=ANY=[@ANYBLOB="180300000005000000000000000000001801000011af000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000020000838500000070000000180100002020752500000000806020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000005c0)='sys_exit\x00', r0, 0x0, 0x8}, 0x18)
r1 = epoll_create1(0x0)
epoll_wait(r1, &(0x7f0000000000)=[{}], 0x1, 0x7ff)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder1\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f00000000c0)={0x10000001})

53.770790055s ago: executing program 2 (id=1606):
mkdirat(0xffffffffffffff9c, &(0x7f0000000500)='./file1\x00', 0x0)
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000a00)={<r2=>0xffffffffffffffff})
splice(r2, 0x0, r1, 0x0, 0x10000008ebc, 0x0)
open_tree(r1, &(0x7f0000000140)='./file0\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r3 = syz_open_dev$video4linux(&(0x7f0000000000), 0x2ee, 0x282)
ioctl$VIDIOC_S_STD(r3, 0x40085618, &(0x7f0000000180)=0xf900)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xb3, &(0x7f0000000140)=""/179, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
pipe(&(0x7f0000000080)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="8c0000000906010200000000000000000200ffff08000940000000390900020073797a310000000005000100070000005c0008801c00078018000180140002"], 0x8c}, 0x1, 0x0, 0x0, 0x10000182}, 0x4000080)
read$FUSE(r6, &(0x7f0000002200)={0x2020}, 0x2020)
write$binfmt_script(r7, &(0x7f0000020240), 0x10010)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xc0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000200)={<r9=>0x0, <r10=>0x0})
utimensat(r0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)={{}, {r9, r10/1000+60000}}, 0x0)
open$dir(&(0x7f0000000100)='./file0\x00', 0x28000, 0x4)
r11 = open(&(0x7f0000000000)='.\x00', 0x800000, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r11, 0x40049366, 0x0)

52.881624266s ago: executing program 2 (id=1614):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000240)=ANY=[@ANYBLOB="180300000005000000000000000000001801000011af000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000020000838500000070000000180100002020752500000000806020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000005c0)='sys_exit\x00', r0, 0x0, 0x8}, 0x18)
r1 = epoll_create1(0x0)
epoll_wait(r1, &(0x7f0000000000)=[{}], 0x1, 0x7ff)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder1\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f00000000c0)={0x10000001})

37.885963281s ago: executing program 33 (id=1614):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000240)=ANY=[@ANYBLOB="180300000005000000000000000000001801000011af000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000020000838500000070000000180100002020752500000000806020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000005c0)='sys_exit\x00', r0, 0x0, 0x8}, 0x18)
r1 = epoll_create1(0x0)
epoll_wait(r1, &(0x7f0000000000)=[{}], 0x1, 0x7ff)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder1\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f00000000c0)={0x10000001})

340.303795ms ago: executing program 3 (id=1906):
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000006c0)={@fallback, 0xffffffffffffffff, 0x18, 0x1a}, 0x20)

332.092467ms ago: executing program 4 (id=1907):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x3, 0x5, &(0x7f0000000140)=ANY=[@ANYBLOB="180200000000000000000000430d00008500000053000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x3}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f00000003c0)="c274386d178550cb864bd57221bc", 0x0, 0x1200000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x1c)

331.697241ms ago: executing program 1 (id=1908):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x1e, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x56}]}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)

254.463583ms ago: executing program 5 (id=1909):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x34, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x4e5e}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x240008c4)

254.296578ms ago: executing program 3 (id=1910):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000000), 0x10)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x80d1)
recvmsg$kcm(0xffffffffffffffff, 0x0, 0x10000)
recvmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000a00)={&(0x7f00000007c0)=ANY=[@ANYBLOB="2800000002010102000000000000000005000006060012"], 0x28}, 0x1, 0x0, 0x0, 0x40050}, 0x4000)

253.806781ms ago: executing program 1 (id=1911):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000100)={0x3, 0x0, &(0x7f0000000000)={&(0x7f0000000140)={0x2, 0x2, 0x0, 0x2, 0x10, 0x0, 0x0, 0x0, [@sadb_key={0x2, 0x8, 0x8, 0x0, "f1"}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0xa0000000}, @sadb_address={0x5, 0x6, 0x3c, 0x0, 0x0, @in6={0xa, 0x4e21, 0x7, @ipv4={'\x00', '\xff\xff', @local}, 0x800}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x4e24, 0xe, @ipv4={'\x00', '\xff\xff', @local}, 0xb28}}]}, 0x80}, 0x1, 0x7}, 0x0)

253.50488ms ago: executing program 5 (id=1912):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000009c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x5, 0x0, 0xfffd}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x5, 0x0, 0x8}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x401, 0x0, 0x0, {0x5}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x30, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @tunnel={{0xb}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_TUNNEL_KEY={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_TUNNEL_DREG={0x8, 0x2, 0x1, 0x0, 0xb4073045e5c70e94}, @NFTA_TUNNEL_MODE={0x8, 0x3, 0x1, 0x0, 0x1}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0xa}}}, 0xcc}}, 0x0)

247.253825ms ago: executing program 4 (id=1913):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='hugetlb.2MB.usage_in_bytes\x00', 0x26e1, 0x0)
r1 = socket$kcm(0x2, 0x5, 0x0)
setsockopt$sock_attach_bpf(r1, 0x1, 0x3e, &(0x7f00000002c0)=r0, 0x4)
sendmsg$inet(r1, &(0x7f00000004c0)={&(0x7f0000000080)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xff}}, 0x10, &(0x7f0000000000)=[{&(0x7f0000000140)='\x00', 0x1}], 0x1}, 0x3e8)

193.001301ms ago: executing program 3 (id=1914):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000002100)='syzkaller\x00', 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x14, 0x31, 0x9, 0x70bd27, 0x0, {0x4}}, 0x14}, 0x1, 0x0, 0x0, 0x42805}, 0x40)

192.281482ms ago: executing program 1 (id=1915):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x10, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x4}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}}]}, &(0x7f0000000300)='GPL\x00', 0xb, 0x1006, &(0x7f00000014c0)=""/4102, 0x0, 0x1}, 0x94)

191.954531ms ago: executing program 5 (id=1916):
socket$nl_crypto(0x10, 0x3, 0x15)
socket$inet6_udp(0xa, 0x2, 0x0)
socket(0x1, 0x2, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)={0x1c, 0x24, 0x301, 0x70bd25, 0xfffffffc, {0x20}, [@typed={0x8, 0x3, 0x0, 0x0, @binary='H\x00\x00\x00'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x448d3}, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0)
write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0)
write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0)
write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$unix(0x1, 0x5, 0x0)

190.279591ms ago: executing program 4 (id=1917):
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_open_procfs$namespace(0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0a00000004000000dd0000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f00000004c0)=ANY=[@ANYBLOB="7a0a00ff00000000711043000000000095"], &(0x7f0000000480)='syzkaller\x00'}, 0x94)

141.173376ms ago: executing program 3 (id=1918):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000004e40)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a68000000060a0b040000000000000000020000003c000480380001800a00010072616e6765000000280002800c000480050001006b000000080001400000000b080001400000000008000240000000010900010073797a30000000000900020073797a32"], 0x1fa0}}, 0x0)

140.806548ms ago: executing program 5 (id=1919):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x800)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000480)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0xf}, @NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x8}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x78}, 0x1, 0x0, 0x0, 0x4008091}, 0x24000000)

140.494691ms ago: executing program 1 (id=1920):
r0 = socket$kcm(0x10, 0x2, 0x0)
recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000400)=""/83, 0x53}, {&(0x7f00000047c0)=""/4045, 0xfcd}, {&(0x7f0000001ec0)=""/4089, 0xff9}, {&(0x7f0000000800)=""/234, 0xea}, {&(0x7f0000000600)=""/232, 0xe8}, {&(0x7f0000000000)=""/58, 0x3a}, {&(0x7f00000000c0)=""/173, 0xad}, {&(0x7f0000000900)=""/173, 0xad}], 0x8}, 0xbf9d5a5a4c2f3718)
sendmsg$inet(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000480)="5c00000012006bab9a3fe3d86e17aa0a8187bae53dca2b007ea23e163ec40028e82fccdc09da15fef6a608649e7531765f0ef82e3c0076a705259a3651f60a84c9f4d4938037e70e4509c5bb0c9246444351db86078475483687054c", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x20000000)
recvmsg$kcm(r0, &(0x7f0000000e80)={0x0, 0x0, 0x0}, 0x40000002)

136.718002ms ago: executing program 4 (id=1921):
r0 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r0, &(0x7f00000000c0)={&(0x7f0000000100)=@ieee802154={0x24, @short={0x2, 0x0, 0x1555d}}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000180)="0800000016001400", 0x8}, {&(0x7f0000000280)="7d3ed2", 0x3}], 0x2}, 0x889d)

83.667773ms ago: executing program 5 (id=1922):
close(0xffffffffffffffff)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB='%9'], 0x33fe0)
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x80, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x0)

83.0095ms ago: executing program 3 (id=1923):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x1c, 0x38, 0x1, 0x7fffc, 0x4, {0x1}, [@nested={0x8, 0x1, 0x0, 0x1, [@nested={0x4109, 0x10}]}]}, 0x1c}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)

82.17132ms ago: executing program 4 (id=1924):
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r0=>0x0, 0x0})
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
close(r0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000001300)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="140000002d", 0x5}], 0x1}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)=ANY=[@ANYBLOB="1c0000002400010122bd7000fcffffff550000000800030047"], 0x1c}, 0x1, 0x0, 0x0, 0x449d7}, 0xc0)
close(r0)

81.426496ms ago: executing program 5 (id=1925):
r0 = syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x141800)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r0, 0xc0205710, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = syz_open_dev$video4linux(&(0x7f00000001c0), 0x0, 0x0)
ioctl$VIDIOC_QUERY_EXT_CTRL(r3, 0xc0205647, &(0x7f00000000c0)={0xf010000, 0x0, "4f2572ce1cedbf10981e10326800000000000000000000000500"})
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r5 = syz_open_dev$tty20(0xc, 0x4, 0x0)
openat$vicodec1(0xffffff9c, 0x0, 0x2, 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(r5, 0x541c, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000003, 0x13, r4, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f0000000340)='syzkaller\x00', 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r6}, 0x10)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x1e00}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r7}, 0x10)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x0)
ioctl$sock_SIOCINQ(r8, 0x541b, &(0x7f0000000240))
r9 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv2(r9, &(0x7f0000001540)=[{0x0}, {&(0x7f0000001380)=""/129, 0x7ffff000}], 0x2, 0x0, 0x0, 0x0)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x9, 0x4, 0x4, 0x4, 0x0, 0xffffffffffffffff, 0x7}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x1f, 0x17, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bf0900000000000066090600000003e70400000006000000180100002020702500000000002020207b9af8ff00000000ac9100000000000037010000f8ffffffb702000008000000b70300000000000014000000060000006e93000000000000b50302000000000085000000b7000000b70000000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x56, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r11 = accept4$inet(r9, &(0x7f0000000040)={0x2, 0x0, @initdev}, &(0x7f0000000080)=0x10, 0x80800)
ioctl$KDSETLED(r5, 0x4b32, 0x10001)
getsockopt$inet_mreqn(r11, 0x0, 0x24, &(0x7f0000000180)={@empty, @local}, &(0x7f0000000200)=0xc)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="18000095ad8b5292ca38100000000000000000000000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f00000000c0)={[0x1, 0xfffffffffffffffe, 0x3, 0xe691, 0x0, 0x0, 0x6, 0x0, 0xfffffffffffffffe, 0x0, 0xd1, 0x0, 0x6, 0x6], 0x0, 0x8340})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

81.00947ms ago: executing program 3 (id=1926):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000008500000061000000180100003020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r0, 0x18000000000002a0, 0xe, 0x0, &(0x7f00000003c0)="b9e203076008008cb89e08f086dd", 0x0, 0xfffffdfd, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

3.434632ms ago: executing program 1 (id=1927):
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x24, 0x10, 0x701, 0x0, 0x0, {0xa}, [@typed={0x6, 0x1, 0x0, 0x0, @str='5\x00'}, @typed={0x8, 0xa, 0x0, 0x0, @fd}]}, 0x24}}, 0x0)
r0 = socket$kcm(0xa, 0x5, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@bloom_filter={0x1e, 0x0, 0x400007, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0xfffffffffffffffd}, 0x50)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x890b, &(0x7f0000000000))

433.28µs ago: executing program 4 (id=1928):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)={0x60, 0x2, 0x6, 0x5, 0x0, 0x0, {0x7d16e354b6f02b95}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x0}, @IPSET_ATTR_MAXELEM={0x8, 0x13, 0x1, 0x0, 0xfffffffc}]}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x60}}, 0x20000000)

0s ago: executing program 1 (id=1929):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x14, 0x1, 0x1, 0x101, 0x0, 0x0, {0xa, 0x0, 0x5}}, 0x14}, 0x1, 0x0, 0x0, 0x4008044}, 0x40)

kernel console output (not intermixed with test programs):

ting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  350.468171][ T6209] usb 7-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  350.476460][ T6209] usb 7-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[  350.484549][ T6209] usb 7-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  350.495153][ T6209] usb 7-1: config 250 interface 228 has no altsetting 0
[  350.503089][ T6209] usb 7-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  350.505978][ T6209] usb 7-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  350.515737][ T6209] usb 7-1: Product: syz
[  350.519025][ T6209] usb 7-1: SerialNumber: syz
[  350.528373][ T6209] hub 7-1:250.228: bad descriptor, ignoring hub
[  350.533755][ T6209] hub 7-1:250.228: probe with driver hub failed with error -5
[  350.740956][ T6209] usblp 7-1:250.228: usblp0: USB Bidirectional printer dev 13 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  351.048429][ T6209] usb 7-1: USB disconnect, device number 13
[  351.052082][ T6209] usblp0: removed
[  351.470805][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  352.028569][   T60] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  352.175159][T11252] netlink: 'syz.0.1404': attribute type 1 has an invalid length.
[  352.198497][   T60] usb 7-1: Using ep0 maxpacket: 8
[  352.201490][   T60] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  352.204032][   T60] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  352.206877][   T60] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  352.209942][   T60] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  352.212972][   T60] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  352.216205][T11252] 8021q: adding VLAN 0 to HW filter on device bond4
[  352.216788][   T60] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  352.216801][   T60] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  352.273919][T11252] 8021q: adding VLAN 0 to HW filter on device bond4
[  352.285048][T11252] bond4: (slave vxcan1): The slave device specified does not support setting the MAC address
[  352.290956][T11252] bond4: (slave vxcan1): Error -95 calling set_mac_address
[  352.432257][   T60] usb 7-1: usb_control_msg returned -32
[  352.434123][   T60] usbtmc 7-1:16.0: can't read capabilities
[  352.443516][T11244] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1402'.
[  352.578830][T11264] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1405'.
[  352.759043][   T60] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  352.810767][T11269] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1408'.
[  353.937137][T11301] misc userio: Invalid payload size
[  354.292803][T11316] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1424'.
[  354.502756][ T6209] usb 7-1: USB disconnect, device number 14
[  354.532633][ T9991] udevd[9991]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  355.411426][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  355.485101][T11349] x_tables: ip6_tables: CLASSIFY target: used from hooks PREROUTING, but only usable from FORWARD/OUTPUT/POSTROUTING
[  355.493854][T11349] netlink: 'syz.2.1432': attribute type 1 has an invalid length.
[  355.513236][T11349] 8021q: adding VLAN 0 to HW filter on device bond7
[  355.520043][T11349] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1432'.
[  355.779387][   T34] usb 7-1: new full-speed USB device number 15 using dummy_hcd
[  355.931487][   T34] usb 7-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  355.935281][   T34] usb 7-1: config 0 interface 0 has no altsetting 0
[  355.938849][   T34] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  355.941764][   T34] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  355.944238][   T34] usb 7-1: Product: syz
[  355.945545][   T34] usb 7-1: Manufacturer: syz
[  355.946991][   T34] usb 7-1: SerialNumber: syz
[  355.949636][   T34] usb 7-1: config 0 descriptor??
[  355.954195][   T34] usb 7-1: selecting invalid altsetting 0
[  356.641950][T11367] misc userio: Invalid payload size
[  356.766357][T11370] bridge0: port 3(syz_tun) entered blocking state
[  356.769084][T11370] bridge0: port 3(syz_tun) entered disabled state
[  356.771566][T11370] syz_tun: entered allmulticast mode
[  356.774314][T11370] syz_tun: entered promiscuous mode
[  356.776575][T11370] bridge0: port 3(syz_tun) entered blocking state
[  356.778712][T11370] bridge0: port 3(syz_tun) entered forwarding state
[  357.019110][T11374] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1438'.
[  357.231153][T11381] netlink: 'syz.0.1440': attribute type 1 has an invalid length.
[  357.252469][T11381] 8021q: adding VLAN 0 to HW filter on device bond5
[  357.324357][T11381] 8021q: adding VLAN 0 to HW filter on device bond5
[  357.326564][T11381] bond5: (slave vxcan1): The slave device specified does not support setting the MAC address
[  357.331041][T11381] bond5: (slave vxcan1): Error -95 calling set_mac_address
[  357.763697][T11389] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1441'.
[  357.769336][T11389] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1441'.
[  358.393008][T11398] netlink: 'syz.0.1443': attribute type 4 has an invalid length.
[  358.406620][T11398] netlink: 'syz.0.1443': attribute type 4 has an invalid length.
[  358.437817][ T6209] usb 7-1: USB disconnect, device number 15
[  358.503569][T11355] udevd[11355]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  358.647263][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  358.751223][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  359.070295][ T1333] usb 8-1: new low-speed USB device number 10 using dummy_hcd
[  359.483702][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  359.552730][ T1333] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  359.554972][ T1333] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  359.558272][ T1333] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  359.561991][ T1333] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  359.568364][ T1333] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  359.570460][T11420] misc userio: Invalid payload size
[  359.575321][ T1333] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  359.576857][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  359.577666][ T1333] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  359.585499][ T1333] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  359.589066][ T1333] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  359.592986][ T1333] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  359.600623][ T1333] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  359.603073][ T1333] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  359.606289][ T1333] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  359.610150][ T1333] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  359.614237][ T1333] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  359.625541][ T1333] usb 8-1: string descriptor 0 read error: -22
[  359.627470][ T1333] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  359.630204][ T1333] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  359.645896][ T1333] adutux 8-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  359.697028][T11424] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1451'.
[  359.848622][ T1333] usb 8-1: USB disconnect, device number 10
[  360.972503][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  361.079006][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  361.080490][T11445] FAULT_INJECTION: forcing a failure.
[  361.080490][T11445] name failslab, interval 1, probability 0, space 0, times 0
[  361.087686][T11445] CPU: 3 UID: 0 PID: 11445 Comm: syz.2.1457 Not tainted syzkaller #0 PREEMPT(full) 
[  361.087700][T11445] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  361.087706][T11445] Call Trace:
[  361.087710][T11445]  <TASK>
[  361.087727][T11445]  dump_stack_lvl+0x16c/0x1f0
[  361.087747][T11445]  should_fail_ex+0x512/0x640
[  361.087764][T11445]  ? fs_reclaim_acquire+0xae/0x150
[  361.087775][T11445]  should_failslab+0xc2/0x120
[  361.087786][T11445]  __kmalloc_noprof+0xdd/0x880
[  361.087799][T11445]  ? tomoyo_encode2+0x100/0x3e0
[  361.087816][T11445]  ? tomoyo_encode2+0x100/0x3e0
[  361.087830][T11445]  tomoyo_encode2+0x100/0x3e0
[  361.087846][T11445]  tomoyo_encode+0x29/0x50
[  361.087863][T11445]  tomoyo_realpath_from_path+0x18f/0x6e0
[  361.087882][T11445]  tomoyo_path_number_perm+0x245/0x580
[  361.087893][T11445]  ? tomoyo_path_number_perm+0x237/0x580
[  361.087906][T11445]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  361.087933][T11445]  ? find_held_lock+0x2b/0x80
[  361.087948][T11445]  ? hook_file_ioctl_common+0x145/0x410
[  361.087965][T11445]  ? __fget_files+0x20e/0x3c0
[  361.087981][T11445]  security_file_ioctl_compat+0x9b/0x240
[  361.087996][T11445]  __ia32_compat_sys_ioctl+0xc3/0x370
[  361.088010][T11445]  __do_fast_syscall_32+0x7c/0x300
[  361.088028][T11445]  do_fast_syscall_32+0x32/0x80
[  361.088044][T11445]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  361.088057][T11445] RIP: 0023:0xf703d579
[  361.088066][T11445] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  361.088077][T11445] RSP: 002b:00000000f542d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  361.088088][T11445] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0cc5616
[  361.088094][T11445] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000
[  361.088100][T11445] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  361.088106][T11445] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  361.088112][T11445] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  361.088126][T11445]  </TASK>
[  361.160444][T11445] ERROR: Out of memory at tomoyo_realpath_from_path.
[  361.200868][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  362.338299][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  362.402985][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  362.601213][T11472] FAULT_INJECTION: forcing a failure.
[  362.601213][T11472] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  362.605697][T11472] CPU: 2 UID: 0 PID: 11472 Comm: syz.1.1466 Not tainted syzkaller #0 PREEMPT(full) 
[  362.605711][T11472] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  362.605718][T11472] Call Trace:
[  362.605721][T11472]  <TASK>
[  362.605726][T11472]  dump_stack_lvl+0x16c/0x1f0
[  362.605746][T11472]  should_fail_ex+0x512/0x640
[  362.605764][T11472]  _copy_to_user+0x32/0xd0
[  362.605776][T11472]  snd_pcm_oss_read2+0x294/0x410
[  362.605791][T11472]  ? __pfx_snd_pcm_oss_read2+0x10/0x10
[  362.605803][T11472]  ? snd_pcm_kernel_ioctl+0x267/0x2e0
[  362.605825][T11472]  snd_pcm_oss_read+0x5d2/0x760
[  362.605847][T11472]  ? __pfx_snd_pcm_oss_read+0x10/0x10
[  362.605866][T11472]  vfs_read+0x1e4/0xcf0
[  362.605893][T11472]  ? __pfx_vfs_read+0x10/0x10
[  362.605912][T11472]  ? find_held_lock+0x2b/0x80
[  362.605934][T11472]  ? __fget_files+0x204/0x3c0
[  362.605960][T11472]  ? __fget_files+0x20e/0x3c0
[  362.605978][T11472]  ksys_read+0x12a/0x250
[  362.605992][T11472]  ? __pfx_ksys_read+0x10/0x10
[  362.606008][T11472]  ? rcu_is_watching+0x12/0xc0
[  362.606025][T11472]  __do_fast_syscall_32+0x7c/0x300
[  362.606044][T11472]  do_fast_syscall_32+0x32/0x80
[  362.606060][T11472]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  362.606073][T11472] RIP: 0023:0xf708d579
[  362.606082][T11472] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  362.606092][T11472] RSP: 002b:00000000f547d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000003
[  362.606102][T11472] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800011c0
[  362.606109][T11472] RDX: 00000000200021d5 RSI: 0000000000000000 RDI: 0000000000000000
[  362.606115][T11472] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  362.606120][T11472] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  362.606126][T11472] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  362.606139][T11472]  </TASK>
[  362.606626][T11472] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1466'.
[  362.675890][ T5951] Bluetooth: hci3: ISO packet for unknown connection handle 0
[  362.773042][T11487] xt_TCPMSS: Only works on TCP SYN packets
[  363.524793][T11504] misc userio: Invalid payload size
[  363.828387][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  363.937644][T11512] netlink: 'syz.0.1476': attribute type 1 has an invalid length.
[  363.992899][T11512] 8021q: adding VLAN 0 to HW filter on device bond6
[  364.025211][T11515] 8021q: adding VLAN 0 to HW filter on device bond6
[  364.028838][T11515] bond6: (slave vxcan1): The slave device specified does not support setting the MAC address
[  364.034563][T11515] bond6: (slave vxcan1): Error -95 calling set_mac_address
[  364.184383][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  364.222608][T11517] FAULT_INJECTION: forcing a failure.
[  364.222608][T11517] name failslab, interval 1, probability 0, space 0, times 0
[  364.227572][T11517] CPU: 3 UID: 0 PID: 11517 Comm: syz.2.1477 Not tainted syzkaller #0 PREEMPT(full) 
[  364.227587][T11517] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  364.227594][T11517] Call Trace:
[  364.227598][T11517]  <TASK>
[  364.227602][T11517]  dump_stack_lvl+0x16c/0x1f0
[  364.227622][T11517]  should_fail_ex+0x512/0x640
[  364.227639][T11517]  ? __kmalloc_node_noprof+0xcd/0x8a0
[  364.227656][T11517]  should_failslab+0xc2/0x120
[  364.227667][T11517]  __kmalloc_node_noprof+0xe0/0x8a0
[  364.227682][T11517]  ? __get_vm_area_node+0x208/0x330
[  364.227692][T11517]  ? __vmalloc_node_range_noprof+0x3e5/0x1480
[  364.227706][T11517]  ? __vmalloc_node_range_noprof+0x3e5/0x1480
[  364.227716][T11517]  __vmalloc_node_range_noprof+0x3e5/0x1480
[  364.227732][T11517]  ? xt_compat_init_offsets+0xe6/0x1f0
[  364.227750][T11517]  ? kasan_save_stack+0x42/0x60
[  364.227766][T11517]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  364.227777][T11517]  ? xt_alloc_table_info+0x43/0xa0
[  364.227789][T11517]  ? do_sock_setsockopt+0xf3/0x1d0
[  364.227798][T11517]  ? __sys_setsockopt+0x120/0x1a0
[  364.227812][T11517]  ? __ia32_sys_setsockopt+0xbc/0x160
[  364.227827][T11517]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  364.227841][T11517]  ? xt_compat_init_offsets+0xe6/0x1f0
[  364.227852][T11517]  __vmalloc_node_noprof+0xad/0xf0
[  364.227863][T11517]  ? xt_compat_init_offsets+0xe6/0x1f0
[  364.227875][T11517]  xt_compat_init_offsets+0xe6/0x1f0
[  364.227886][T11517]  translate_compat_table+0x1f3/0x18d0
[  364.227903][T11517]  ? find_held_lock+0x2b/0x80
[  364.227919][T11517]  ? __might_fault+0x13b/0x190
[  364.227933][T11517]  ? __pfx_translate_compat_table+0x10/0x10
[  364.227955][T11517]  compat_do_replace+0x255/0x3c0
[  364.227968][T11517]  ? __pfx_compat_do_replace+0x10/0x10
[  364.227980][T11517]  ? lockdep_hardirqs_on+0x7c/0x110
[  364.227997][T11517]  ? rcu_is_watching+0x12/0xc0
[  364.228016][T11517]  ? bpf_lsm_capable+0x9/0x10
[  364.228026][T11517]  ? security_capable+0x7e/0x260
[  364.228038][T11517]  do_ip6t_set_ctl+0x55d/0xa70
[  364.228050][T11517]  ? nf_sockopt_find.constprop.0+0x222/0x290
[  364.228063][T11517]  ? __pfx_do_ip6t_set_ctl+0x10/0x10
[  364.228077][T11517]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  364.228095][T11517]  ? __pfx___might_resched+0x10/0x10
[  364.228114][T11517]  ? nf_sockopt_find.constprop.0+0x222/0x290
[  364.228126][T11517]  nf_setsockopt+0x8d/0xf0
[  364.228138][T11517]  ipv6_setsockopt+0x135/0x170
[  364.228151][T11517]  tcp_setsockopt+0xa7/0x100
[  364.228166][T11517]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  364.228178][T11517]  do_sock_setsockopt+0xf3/0x1d0
[  364.228190][T11517]  __sys_setsockopt+0x120/0x1a0
[  364.228207][T11517]  __ia32_sys_setsockopt+0xbc/0x160
[  364.228221][T11517]  ? lockdep_hardirqs_on+0x7c/0x110
[  364.228250][T11517]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  364.228267][T11517]  __do_fast_syscall_32+0x7c/0x300
[  364.228284][T11517]  do_fast_syscall_32+0x32/0x80
[  364.228300][T11517]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  364.228313][T11517] RIP: 0023:0xf703d579
[  364.228322][T11517] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  364.228332][T11517] RSP: 002b:00000000f542d55c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  364.228343][T11517] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000029
[  364.228349][T11517] RDX: 0000000000000040 RSI: 0000000080000000 RDI: 0000000000000344
[  364.228355][T11517] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  364.228361][T11517] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  364.228367][T11517] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  364.228380][T11517]  </TASK>
[  364.348284][T11517] syz.2.1477: vmalloc error: size 4096, failed to allocated page array size 8, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=syz2,mems_allowed=0-1
[  364.353332][T11517] CPU: 3 UID: 0 PID: 11517 Comm: syz.2.1477 Not tainted syzkaller #0 PREEMPT(full) 
[  364.353346][T11517] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  364.353352][T11517] Call Trace:
[  364.353356][T11517]  <TASK>
[  364.353361][T11517]  dump_stack_lvl+0x16c/0x1f0
[  364.353379][T11517]  warn_alloc+0x248/0x3a0
[  364.353394][T11517]  ? __pfx_warn_alloc+0x10/0x10
[  364.353407][T11517]  ? dump_stack_lvl+0x1a3/0x1f0
[  364.353423][T11517]  ? should_fail_ex+0x354/0x640
[  364.353441][T11517]  ? rcu_is_watching+0x12/0xc0
[  364.353455][T11517]  ? trace_kmalloc+0x2b/0xd0
[  364.353464][T11517]  ? __kmalloc_node_noprof+0x364/0x8a0
[  364.353479][T11517]  ? __get_vm_area_node+0x208/0x330
[  364.353488][T11517]  ? __vmalloc_node_range_noprof+0x3e5/0x1480
[  364.353503][T11517]  __vmalloc_node_range_noprof+0xfe2/0x1480
[  364.353519][T11517]  ? xt_compat_init_offsets+0xe6/0x1f0
[  364.353533][T11517]  ? kasan_save_stack+0x42/0x60
[  364.353549][T11517]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  364.353560][T11517]  ? xt_alloc_table_info+0x43/0xa0
[  364.353572][T11517]  ? do_sock_setsockopt+0xf3/0x1d0
[  364.353582][T11517]  ? __sys_setsockopt+0x120/0x1a0
[  364.353596][T11517]  ? __ia32_sys_setsockopt+0xbc/0x160
[  364.353610][T11517]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  364.353624][T11517]  ? xt_compat_init_offsets+0xe6/0x1f0
[  364.353635][T11517]  __vmalloc_node_noprof+0xad/0xf0
[  364.353646][T11517]  ? xt_compat_init_offsets+0xe6/0x1f0
[  364.353658][T11517]  xt_compat_init_offsets+0xe6/0x1f0
[  364.353669][T11517]  translate_compat_table+0x1f3/0x18d0
[  364.353686][T11517]  ? find_held_lock+0x2b/0x80
[  364.353700][T11517]  ? __might_fault+0x13b/0x190
[  364.353714][T11517]  ? __pfx_translate_compat_table+0x10/0x10
[  364.353737][T11517]  compat_do_replace+0x255/0x3c0
[  364.353750][T11517]  ? __pfx_compat_do_replace+0x10/0x10
[  364.353762][T11517]  ? lockdep_hardirqs_on+0x7c/0x110
[  364.353782][T11517]  ? rcu_is_watching+0x12/0xc0
[  364.353800][T11517]  ? bpf_lsm_capable+0x9/0x10
[  364.353810][T11517]  ? security_capable+0x7e/0x260
[  364.353823][T11517]  do_ip6t_set_ctl+0x55d/0xa70
[  364.353834][T11517]  ? nf_sockopt_find.constprop.0+0x222/0x290
[  364.353849][T11517]  ? __pfx_do_ip6t_set_ctl+0x10/0x10
[  364.353862][T11517]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  364.353880][T11517]  ? __pfx___might_resched+0x10/0x10
[  364.353898][T11517]  ? nf_sockopt_find.constprop.0+0x222/0x290
[  364.353911][T11517]  nf_setsockopt+0x8d/0xf0
[  364.353922][T11517]  ipv6_setsockopt+0x135/0x170
[  364.353935][T11517]  tcp_setsockopt+0xa7/0x100
[  364.353950][T11517]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  364.353963][T11517]  do_sock_setsockopt+0xf3/0x1d0
[  364.353975][T11517]  __sys_setsockopt+0x120/0x1a0
[  364.353992][T11517]  __ia32_sys_setsockopt+0xbc/0x160
[  364.354006][T11517]  ? lockdep_hardirqs_on+0x7c/0x110
[  364.354021][T11517]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  364.354037][T11517]  __do_fast_syscall_32+0x7c/0x300
[  364.354055][T11517]  do_fast_syscall_32+0x32/0x80
[  364.354072][T11517]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  364.354084][T11517] RIP: 0023:0xf703d579
[  364.354093][T11517] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  364.354103][T11517] RSP: 002b:00000000f542d55c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  364.354113][T11517] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000029
[  364.354119][T11517] RDX: 0000000000000040 RSI: 0000000080000000 RDI: 0000000000000344
[  364.354125][T11517] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  364.354131][T11517] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  364.354137][T11517] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  364.354150][T11517]  </TASK>
[  364.354153][T11517] Mem-Info:
[  364.472606][T11517] active_anon:6150 inactive_anon:111 isolated_anon:0
[  364.472606][T11517]  active_file:6844 inactive_file:15264 isolated_file:0
[  364.472606][T11517]  unevictable:1768 dirty:298 writeback:0
[  364.472606][T11517]  slab_reclaimable:6909 slab_unreclaimable:69640
[  364.472606][T11517]  mapped:24269 shmem:2329 pagetables:1196
[  364.472606][T11517]  sec_pagetables:323 bounce:0
[  364.472606][T11517]  kernel_misc_reclaimable:0
[  364.472606][T11517]  free:37710 free_pcp:16541 free_cma:0
[  364.486320][T11517] Node 0 active_anon:32kB inactive_anon:180kB active_file:1056kB inactive_file:172kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:16kB dirty:8kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:9392kB pagetables:1304kB sec_pagetables:1156kB all_unreclaimable? yes Balloon:0kB
[  364.495798][T11517] Node 1 active_anon:24568kB inactive_anon:264kB active_file:26320kB inactive_file:60884kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:97060kB dirty:1184kB writeback:0kB shmem:5780kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:3936kB pagetables:3480kB sec_pagetables:136kB all_unreclaimable? no Balloon:0kB
[  364.505544][T11517] Node 0 DMA free:2472kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  364.514739][T11517] lowmem_reserve[]: 0 292 292 292 292
[  364.516460][T11517] Node 0 DMA32 free:20564kB boost:4096kB min:17544kB low:20904kB high:24264kB reserved_highatomic:0KB free_highatomic:0KB active_anon:32kB inactive_anon:180kB active_file:1056kB inactive_file:172kB unevictable:3536kB writepending:8kB zspages:0kB present:1032196kB managed:299668kB mlocked:0kB bounce:0kB free_pcp:7196kB local_pcp:1588kB free_cma:0kB
[  364.526321][T11517] lowmem_reserve[]: 0 0 0 0 0
[  364.527844][T11517] Node 1 DMA32 free:127804kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:24568kB inactive_anon:264kB active_file:26320kB inactive_file:60884kB unevictable:3536kB writepending:1184kB zspages:1756kB present:1048432kB managed:948220kB mlocked:0kB bounce:0kB free_pcp:59064kB local_pcp:20076kB free_cma:0kB
[  364.537992][T11517] lowmem_reserve[]: 0 0 0 0 0
[  364.539486][T11517] Node 0 DMA: 36*4kB (U) 25*8kB (U) 5*16kB (U) 8*32kB (U) 2*64kB (U) 1*128kB (U) 0*256kB 1*512kB (U) 1*1024kB (U) 0*2048kB 0*4096kB = 2472kB
[  364.544046][T11517] Node 0 DMA32: 3*4kB (UME) 11*8kB (UM) 19*16kB (UM) 50*32kB (UME) 68*64kB (UME) 31*128kB (UME) 12*256kB (UME) 8*512kB (UM) 3*1024kB (U) 0*2048kB 0*4096kB = 20564kB
[  364.548981][T11517] Node 1 DMA32: 94*4kB (UME) 140*8kB (UME) 11*16kB (UME) 184*32kB (UME) 198*64kB (UME) 85*128kB (UME) 60*256kB (UME) 49*512kB (UME) 29*1024kB (UM) 9*2048kB (UM) 2*4096kB (M) = 127880kB
[  364.554640][T11517] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  364.557580][T11517] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  364.560524][T11517] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  364.563542][T11517] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=1 hugepages_size=2048kB
[  364.566389][T11517] 24940 total pagecache pages
[  364.567872][T11517] 507 pages in swap cache
[  364.569228][T11517] Free swap  = 120784kB
[  364.570544][T11517] Total swap = 124996kB
[  364.571963][T11517] 524155 pages RAM
[  364.573163][T11517] 0 pages HighMem/MovableOnly
[  364.574645][T11517] 208343 pages reserved
[  364.575984][T11517] 0 pages cma reserved
[  364.607007][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  364.777294][T11529] sctp: [Deprecated]: syz.0.1478 (pid 11529) Use of int in maxseg socket option.
[  364.777294][T11529] Use struct sctp_assoc_value instead
[  364.831162][T11538] program syz.1.1484 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  364.858689][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  364.878467][T11539] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  365.776730][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  365.812663][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  365.958816][T11556] misc userio: Invalid payload size
[  366.306115][   T40] audit: type=1326 audit(2000008572.499:1293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11569 comm="syz.1.1493" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  366.324622][   T40] audit: type=1326 audit(2000008572.519:1294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11569 comm="syz.1.1493" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  366.332456][   T40] audit: type=1326 audit(2000008572.519:1295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11569 comm="syz.1.1493" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf708d579 code=0x7ffc0000
[  366.339617][   T40] audit: type=1326 audit(2000008572.529:1296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11569 comm="syz.1.1493" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  366.347027][   T40] audit: type=1326 audit(2000008572.539:1297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11569 comm="syz.1.1493" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  366.354470][   T40] audit: type=1326 audit(2000008572.549:1298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11569 comm="syz.1.1493" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf708d579 code=0x7ffc0000
[  366.361231][   T40] audit: type=1326 audit(2000008572.549:1299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11569 comm="syz.1.1493" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  366.368091][   T40] audit: type=1326 audit(2000008572.549:1300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11569 comm="syz.1.1493" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  366.376484][   T40] audit: type=1326 audit(2000008572.569:1301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11569 comm="syz.1.1493" exe="/syz-executor" sig=0 arch=40000003 syscall=425 compat=1 ip=0xf708d579 code=0x7ffc0000
[  366.384881][   T40] audit: type=1326 audit(2000008572.569:1302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11569 comm="syz.1.1493" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf708d579 code=0x7ffc0000
[  366.695001][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  366.802792][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  366.804719][T11580] overlayfs: conflicting options: userxattr,metacopy=on
[  367.071385][T11588] fuse: Unknown parameter 'XηWF4¹u00000000000000000000'
[  367.797196][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  368.345187][T11604] IPVS: set_ctl: invalid protocol: 0 127.0.0.1:20000
[  368.647712][T11609] netlink: 'syz.1.1506': attribute type 1 has an invalid length.
[  368.730669][T11609] 8021q: adding VLAN 0 to HW filter on device bond1
[  368.732171][T11614] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1507'.
[  368.761199][T11611] 8021q: adding VLAN 0 to HW filter on device bond1
[  368.764551][T11611] bond1: (slave vxcan5): The slave device specified does not support setting the MAC address
[  368.770273][T11611] bond1: (slave vxcan5): Error -95 calling set_mac_address
[  368.810740][T11614] sch_fq: defrate 4294967295 ignored.
[  369.189103][T11624] sctp: [Deprecated]: syz.1.1509 (pid 11624) Use of int in maxseg socket option.
[  369.189103][T11624] Use struct sctp_assoc_value instead
[  369.322965][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  369.420739][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  369.527617][T11645] syzkaller0: entered promiscuous mode
[  369.529404][T11645] syzkaller0: entered allmulticast mode
[  371.191607][T11665] FAULT_INJECTION: forcing a failure.
[  371.191607][T11665] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  371.195915][T11665] CPU: 0 UID: 0 PID: 11665 Comm: syz.3.1520 Not tainted syzkaller #0 PREEMPT(full) 
[  371.195929][T11665] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  371.195935][T11665] Call Trace:
[  371.195939][T11665]  <TASK>
[  371.195943][T11665]  dump_stack_lvl+0x16c/0x1f0
[  371.195962][T11665]  should_fail_ex+0x512/0x640
[  371.195981][T11665]  _copy_from_user+0x2e/0xd0
[  371.195991][T11665]  get_compat_msghdr+0xa7/0x170
[  371.196007][T11665]  ? __pfx_get_compat_msghdr+0x10/0x10
[  371.196027][T11665]  ___sys_sendmsg+0x1ae/0x1d0
[  371.196044][T11665]  ? __pfx____sys_sendmsg+0x10/0x10
[  371.196066][T11665]  ? find_held_lock+0x2b/0x80
[  371.196089][T11665]  __sys_sendmsg+0x16d/0x220
[  371.196109][T11665]  ? __pfx___sys_sendmsg+0x10/0x10
[  371.196130][T11665]  ? rcu_is_watching+0x12/0xc0
[  371.196147][T11665]  __do_fast_syscall_32+0x7c/0x300
[  371.196169][T11665]  do_fast_syscall_32+0x32/0x80
[  371.196185][T11665]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  371.196198][T11665] RIP: 0023:0xf7f92579
[  371.196207][T11665] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  371.196217][T11665] RSP: 002b:00000000f548655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  371.196227][T11665] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080001b80
[  371.196233][T11665] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000000
[  371.196239][T11665] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  371.196245][T11665] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  371.196251][T11665] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  371.196264][T11665]  </TASK>
[  371.796432][T11673] bridge0: port 3(syz_tun) entered disabled state
[  371.804150][T11673] syz_tun (unregistering): left allmulticast mode
[  371.806186][T11673] syz_tun (unregistering): left promiscuous mode
[  371.808417][T11673] bridge0: port 3(syz_tun) entered disabled state
[  372.178650][   T86] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.226354][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  372.255774][   T86] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.304719][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  372.307721][ T5947] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  372.312077][ T5947] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  372.317187][   T86] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.322020][ T5947] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  372.325640][ T5947] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  372.328159][ T5947] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  372.416923][   T86] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.475667][T11690] chnl_net:caif_netlink_parms(): no params data found
[  372.693036][T11690] bridge0: port 1(bridge_slave_0) entered blocking state
[  372.697039][T11690] bridge0: port 1(bridge_slave_0) entered disabled state
[  372.700069][T11690] bridge_slave_0: entered allmulticast mode
[  372.703951][T11690] bridge_slave_0: entered promiscuous mode
[  372.711396][   T86] bridge_slave_1: left allmulticast mode
[  372.728609][   T86] bridge_slave_1: left promiscuous mode
[  372.731984][   T86] bridge0: port 2(bridge_slave_1) entered disabled state
[  372.745415][   T86] bridge_slave_0: left allmulticast mode
[  372.748022][   T86] bridge_slave_0: left promiscuous mode
[  372.750988][   T86] bridge0: port 1(bridge_slave_0) entered disabled state
[  373.212113][   T86] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  373.218724][   T86] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  373.222256][   T86] bond0 (unregistering): Released all slaves
[  373.311031][   T86] bond1 (unregistering): Released all slaves
[  373.395781][   T86] bond2 (unregistering): Released all slaves
[  373.461176][   T86] bond3 (unregistering): Released all slaves
[  373.553113][   T86] bond4 (unregistering): Released all slaves
[  373.637159][   T86] bond5 (unregistering): Released all slaves
[  373.740727][   T86] bond6 (unregistering): Released all slaves
[  373.757275][T11690] bridge0: port 2(bridge_slave_1) entered blocking state
[  373.759554][T11690] bridge0: port 2(bridge_slave_1) entered disabled state
[  373.761890][T11690] bridge_slave_1: entered allmulticast mode
[  373.771541][T11690] bridge_slave_1: entered promiscuous mode
[  373.821760][T11690] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  374.325093][ T1333] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  374.353919][ T5947] Bluetooth: hci1: command tx timeout
[  374.493845][ T1333] usb 6-1: Using ep0 maxpacket: 32
[  374.496658][ T1333] usb 6-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config
[  374.499820][ T1333] usb 6-1: config 155 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82
[  374.503573][ T1333] usb 6-1: config 155 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  374.507883][ T1333] usb 6-1: config 155 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 11
[  374.513967][ T1333] usb 6-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30
[  374.517159][ T1333] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  374.519665][ T1333] usb 6-1: Product: syz
[  374.521020][ T1333] usb 6-1: Manufacturer: syz
[  374.522535][ T1333] usb 6-1: SerialNumber: syz
[  374.546713][    C0] imon 6-1:155.0: imon usb_rx_callback_intf0: status(-71)
[  374.551932][ T1333] input: iMON Panel, Knob and Mouse(15c2:ffdc) as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:155.0/input/input13
[  374.753919][ T1333] imon 6-1:155.0: Unknown 0xffdc device, defaulting to VFD and iMON IR
[  374.756639][ T1333]  (id 0x00)
[  374.813934][ T1333] rc_core: IR keymap rc-imon-pad not found
[  374.815858][ T1333] Registered IR keymap rc-empty
[  374.817403][ T1333] imon 6-1:155.0: Looks like you're trying to use an IR protocol this device does not support
[  374.820540][ T1333] imon 6-1:155.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[  374.954537][ T1333] rc rc0: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:155.0/rc/rc0
[  374.959875][ T1333] input: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:155.0/rc/rc0/input14
[  374.965370][ T1333] imon 6-1:155.0: iMON device (15c2:ffdc, intf0) on usb<6:20> initialized
[  375.278219][T11690] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  375.281098][   T86] : left promiscuous mode
[  375.336519][T11690] team0: Port device team_slave_0 added
[  375.341547][T11690] team0: Port device team_slave_1 added
[  375.386507][   T86] tipc: Left network mode
[  375.390489][T11690] batman_adv: batadv0: Adding interface: batadv_slave_0
[  375.393357][T11690] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  375.411381][T11690] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  375.417571][T11690] batman_adv: batadv0: Adding interface: batadv_slave_1
[  375.420456][T11690] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  375.431047][T11690] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  375.517416][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  375.549759][T11690] hsr_slave_0: entered promiscuous mode
[  375.552631][T11690] hsr_slave_1: entered promiscuous mode
[  375.591735][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  375.595267][   T60] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  375.640812][   T86] hsr_slave_0: left promiscuous mode
[  375.643667][   T86] hsr_slave_1: left promiscuous mode
[  375.653097][   T86] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  375.658903][   T86] batman_adv: batadv0: Removing interface: batadv_slave_0
[  375.662975][   T86] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  375.666631][   T86] batman_adv: batadv0: Removing interface: batadv_slave_1
[  375.681490][   T86] veth1_macvtap: left promiscuous mode
[  375.683424][   T86] veth0_macvtap: left promiscuous mode
[  375.685737][   T86] veth1_vlan: left promiscuous mode
[  375.687500][   T86] veth0_vlan: left promiscuous mode
[  375.724210][   T60] usb 8-1: device descriptor read/64, error -71
[  375.974590][   T60] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  376.105230][   T60] usb 8-1: device descriptor read/64, error -71
[  376.214407][   T60] usb usb8-port1: attempt power cycle
[  376.434536][ T5947] Bluetooth: hci1: command tx timeout
[  376.465526][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  376.554383][   T60] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  376.575223][   T60] usb 8-1: device descriptor read/8, error -71
[  376.814498][   T60] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[  376.844884][   T60] usb 8-1: device descriptor read/8, error -71
[  376.956381][   T60] usb usb8-port1: unable to enumerate USB device
[  377.583494][   T86] team0 (unregistering): Port device team_slave_1 removed
[  377.660705][   T86] team0 (unregistering): Port device team_slave_0 removed
[  377.771046][ T1333] usb 6-1: USB disconnect, device number 20
[  378.118709][ T1419] ieee802154 phy0 wpan0: encryption failed: -22
[  378.120925][ T1419] ieee802154 phy1 wpan1: encryption failed: -22
[  378.281968][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  378.515581][ T5947] Bluetooth: hci1: command tx timeout
[  378.527693][T11690] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  378.577617][T11690] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  378.613672][T11690] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  378.624449][T11690] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  378.789951][T11690] 8021q: adding VLAN 0 to HW filter on device bond0
[  378.826030][T11690] 8021q: adding VLAN 0 to HW filter on device team0
[  378.858528][ T1144] bridge0: port 1(bridge_slave_0) entered blocking state
[  378.860806][ T1144] bridge0: port 1(bridge_slave_0) entered forwarding state
[  378.863913][ T1144] bridge0: port 2(bridge_slave_1) entered blocking state
[  378.866199][ T1144] bridge0: port 2(bridge_slave_1) entered forwarding state
[  379.072274][   T86] IPVS: stop unused estimator thread 0...
[  379.137417][T11690] 8021q: adding VLAN 0 to HW filter on device batadv0
[  379.274424][T11690] veth0_vlan: entered promiscuous mode
[  379.281173][T11690] veth1_vlan: entered promiscuous mode
[  379.296868][T11690] veth0_macvtap: entered promiscuous mode
[  379.300649][T11690] veth1_macvtap: entered promiscuous mode
[  379.314018][T11690] batman_adv: batadv0: Interface activated: batadv_slave_0
[  379.321283][T11690] batman_adv: batadv0: Interface activated: batadv_slave_1
[  379.328346][   T86] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  379.331109][   T86] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  379.333819][   T86] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  379.339245][   T86] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  379.381937][   T86] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  379.384357][   T86] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  379.408983][ T1144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  379.411477][ T1144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  380.057130][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  380.605374][ T5947] Bluetooth: hci1: command tx timeout
[  381.215345][T11797] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  381.327484][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  381.355681][T11808] netlink: 'syz.4.1546': attribute type 1 has an invalid length.
[  381.396513][T11809] netlink: 'syz.2.1547': attribute type 1 has an invalid length.
[  381.415796][T11809] 8021q: adding VLAN 0 to HW filter on device bond8
[  381.452579][T11809] 8021q: adding VLAN 0 to HW filter on device bond8
[  381.454827][T11809] bond8: (slave vxcan9): The slave device specified does not support setting the MAC address
[  381.458491][T11809] bond8: (slave vxcan9): Error -95 calling set_mac_address
[  381.845909][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  381.864785][T11812] netlink: 'syz.2.1548': attribute type 1 has an invalid length.
[  381.882602][T11812] 8021q: adding VLAN 0 to HW filter on device bond9
[  381.933608][T11812] 8021q: adding VLAN 0 to HW filter on device bond9
[  381.936762][T11812] bond9: (slave vxcan9): The slave device specified does not support setting the MAC address
[  381.941723][T11812] bond9: (slave vxcan9): Error -95 calling set_mac_address
[  381.967856][T11789] misc userio: Invalid payload size
[  382.068015][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  382.105155][T11355] udevd[11355]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  382.110366][T11819] openvswitch: netlink: ct_state flags 010000e0 unsupported
[  382.167253][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  382.344206][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  383.015645][T11838] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  383.020823][T11838] block device autoloading is deprecated and will be removed.
[  383.097262][T11840] loop0: detected capacity change from 0 to 2560
[  383.104491][T10227] buffer_io_error: 23 callbacks suppressed
[  383.104501][T10227] Buffer I/O error on dev loop0, logical block 0, async page read
[  383.110376][T10227] Buffer I/O error on dev loop0, logical block 0, async page read
[  383.117150][T10227] Buffer I/O error on dev loop0, logical block 0, async page read
[  383.120667][T10227] Buffer I/O error on dev loop0, logical block 0, async page read
[  383.124338][T10227] Buffer I/O error on dev loop0, logical block 0, async page read
[  383.130209][T10227] udevd[10227]: symlink '../../loop0' '/dev/disk/by-diskseq/89.tmp-b7:0' failed: Read-only file system
[  383.142720][T11840] Buffer I/O error on dev loop0, logical block 0, lost async page write
[  383.146263][T11840] Buffer I/O error on dev loop0, logical block 1, lost async page write
[  383.149900][T11840] Buffer I/O error on dev loop0, logical block 2, lost async page write
[  383.153411][T11840] Buffer I/O error on dev loop0, logical block 3, lost async page write
[  383.157881][T11840] Buffer I/O error on dev loop0, logical block 4, lost async page write
[  383.372462][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  383.744356][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  383.840005][T10227] udevd[10227]: symlink '../../loop0' '/dev/disk/by-diskseq/89.tmp-b7:0' failed: Read-only file system
[  384.671660][T11869] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1563'.
[  385.144769][T11881] misc userio: Invalid payload size
[  385.320283][T11887] netlink: 'syz.2.1568': attribute type 27 has an invalid length.
[  385.322740][T11887] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1568'.
[  386.095806][T11894] IPVS: rr: SCTP 172.20.20.187:0 - no destination available
[  386.100916][ T5936] IPVS: starting estimator thread 0...
[  386.186986][T11895] IPVS: using max 42 ests per chain, 100800 per kthread
[  386.253226][T11898] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1571'.
[  386.843870][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  386.891525][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  387.207270][   T60] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  387.366995][   T60] usb 7-1: Using ep0 maxpacket: 16
[  387.467184][   T60] usb 7-1: config 7 has an invalid descriptor of length 59, skipping remainder of the config
[  387.470697][   T60] usb 7-1: config 7 interface 0 altsetting 5 endpoint 0x81 has an invalid bInterval 43, changing to 9
[  387.474351][   T60] usb 7-1: config 7 interface 0 altsetting 5 endpoint 0x81 has invalid maxpacket 58880, setting to 1024
[  387.477981][   T60] usb 7-1: config 7 interface 0 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  387.482160][   T60] usb 7-1: config 7 interface 0 has no altsetting 0
[  387.484426][   T60] usb 7-1: New USB device found, idVendor=0458, idProduct=5010, bcdDevice= 0.00
[  387.487581][   T60] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  387.491949][T11914] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  387.549956][T11924] infiniband syz1: set active
[  387.551872][T11924] infiniband syz1: added syz_tun
[  387.592597][T11924] RDS/IB: syz1: added
[  387.594488][T11924] smc: adding ib device syz1 with port count 1
[  387.596693][T11924] smc:    ib device syz1 port 1 has no pnetid
[  388.107715][   T60] usbhid 7-1:7.0: can't add hid device: -71
[  388.109755][   T60] usbhid 7-1:7.0: probe with driver usbhid failed with error -71
[  388.114247][   T60] usb 7-1: USB disconnect, device number 16
[  388.175804][T11945] misc userio: Invalid payload size
[  388.631156][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  388.720593][T11951] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  388.724512][T11951] syzkaller0: entered promiscuous mode
[  388.726367][T11951] syzkaller0: entered allmulticast mode
[  389.016142][T11949] tipc: Resetting bearer <eth:syzkaller0>
[  389.028470][T11949] tipc: Disabling bearer <eth:syzkaller0>
[  389.141382][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  390.468841][ T1343] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  391.507963][ T1343] usb 7-1: device descriptor read/64, error -71
[  391.748063][ T1343] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[  392.258263][ T1343] usb 7-1: device descriptor read/64, error -71
[  392.498299][ T1343] usb usb7-port1: attempt power cycle
[  392.524335][T11355] udevd[11355]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  392.580302][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  392.722112][T12016] syzkaller0: entered promiscuous mode
[  392.723978][T12016] syzkaller0: entered allmulticast mode
[  393.046472][T12021] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  393.095599][   T40] kauditd_printk_skb: 48 callbacks suppressed
[  393.095611][   T40] audit: type=1800 audit(2000008599.283:1351): pid=12025 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1592" name="SYSV00000000" dev="tmpfs" ino=3 res=0 errno=0
[  393.257165][T12030] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1596'.
[  393.713812][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  393.865073][T12039] misc userio: Invalid payload size
[  393.951579][   T40] audit: type=1326 audit(2000008600.133:1352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12040 comm="syz.3.1600" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f92579 code=0x7ffc0000
[  393.958210][   T40] audit: type=1326 audit(2000008600.133:1353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12040 comm="syz.3.1600" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f92579 code=0x7ffc0000
[  393.988661][   T40] audit: type=1326 audit(2000008600.143:1354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12040 comm="syz.3.1600" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf7f92579 code=0x7ffc0000
[  394.067587][   T40] audit: type=1326 audit(2000008600.153:1355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12040 comm="syz.3.1600" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f92579 code=0x7ffc0000
[  394.077740][   T40] audit: type=1326 audit(2000008600.153:1356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12040 comm="syz.3.1600" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f92579 code=0x7ffc0000
[  394.085309][   T40] audit: type=1326 audit(2000008600.203:1357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12040 comm="syz.3.1600" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f92579 code=0x7ffc0000
[  394.092455][   T40] audit: type=1326 audit(2000008600.203:1358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12040 comm="syz.3.1600" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f92579 code=0x7ffc0000
[  394.099470][   T40] audit: type=1326 audit(2000008600.203:1359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12040 comm="syz.3.1600" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f92579 code=0x7ffc0000
[  394.113752][   T40] audit: type=1326 audit(2000008600.233:1360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12040 comm="syz.3.1600" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f92579 code=0x7ffc0000
[  394.631088][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  394.680930][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  394.768494][T12047] netlink: 'syz.2.1602': attribute type 27 has an invalid length.
[  394.784550][T12047] mkiss: ax0: crc mode is auto.
[  394.969570][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  394.997973][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  395.182823][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  395.256472][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/82.tmp-b7:2' failed: Read-only file system
[  395.547518][T12063] syzkaller1: entered promiscuous mode
[  395.549409][T12063] syzkaller1: entered allmulticast mode
[  395.845212][T12065] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1608'.
[  395.889844][T12072] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = 0, id = 0
[  396.117691][T12081] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  396.122844][T12081] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  396.143144][T12081] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type
[  396.146665][T12081] overlayfs: failed to look up (tracing) for ino (-66)
[  396.152708][T12081] binder: 12080:12081 ioctl 4018620d 0 returned -22
[  396.945116][T12092] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1617'.
[  397.066422][T12096] ICMPv6: Received fragmented ndisc packet. Carefully consider disabling suppress_frag_ndisc.
[  397.161921][T12098] bridge0: port 2(bridge_slave_1) entered disabled state
[  397.944724][T12120] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(8)
[  397.946774][T12120] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  397.949352][T12120] vhci_hcd vhci_hcd.0: Device attached
[  397.963702][T12120] input: syz0 as /devices/virtual/input/input15
[  398.219672][ T1343] usb 45-1: new low-speed USB device number 2 using vhci_hcd
[  398.737209][T12121] vhci_hcd: connection reset by peer
[  398.740044][   T46] vhci_hcd: stop threads
[  398.741880][   T46] vhci_hcd: release socket
[  398.744568][   T46] vhci_hcd: disconnect device
[  399.100292][T12129] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  399.102332][T12129] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  399.105015][T12129] vhci_hcd vhci_hcd.0: Device attached
[  399.130642][   T34] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[  399.280194][   T34] usb 8-1: Using ep0 maxpacket: 8
[  399.477541][T12130] vhci_hcd: connection closed
[  399.478468][ T1144] vhci_hcd: stop threads
[  399.482463][ T1144] vhci_hcd: release socket
[  399.484459][ T1144] vhci_hcd: disconnect device
[  399.503332][  T911] usb 40-1: enqueue for inactive port 0
[  399.770672][   T34] usb 8-1: config 0 interface 0 has no altsetting 0
[  399.772706][   T34] usb 8-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  399.775350][   T34] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  400.163246][   T34] usb 8-1: config 0 descriptor??
[  400.451375][  T911] usb usb40-port1: attempt power cycle
[  401.012506][  T911] usb usb40-port1: unable to enumerate USB device
[  401.102355][T12142] syz.1.1632: vmalloc error: size 6291456, failed to allocated page array size 12288, mode:0x404dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_RETRY_MAYFAIL), nodemask=(null),cpuset=syz1,mems_allowed=0-1
[  401.108566][T12142] CPU: 2 UID: 0 PID: 12142 Comm: syz.1.1632 Not tainted syzkaller #0 PREEMPT(full) 
[  401.108580][T12142] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  401.108587][T12142] Call Trace:
[  401.108592][T12142]  <TASK>
[  401.108597][T12142]  dump_stack_lvl+0x16c/0x1f0
[  401.108616][T12142]  warn_alloc+0x248/0x3a0
[  401.108632][T12142]  ? __pfx_warn_alloc+0x10/0x10
[  401.108651][T12142]  ? veth_dev_init+0x37c/0x570
[  401.108665][T12142]  ? __vmalloc_node_noprof+0xad/0xf0
[  401.108678][T12142]  __vmalloc_node_range_noprof+0xfe2/0x1480
[  401.108694][T12142]  ? veth_dev_init+0x37c/0x570
[  401.108711][T12142]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  401.108728][T12142]  __kvmalloc_node_noprof+0x431/0x9c0
[  401.108744][T12142]  ? veth_dev_init+0x37c/0x570
[  401.108758][T12142]  ? veth_dev_init+0x37c/0x570
[  401.108771][T12142]  ? __pfx_netdev_lock_cmp_fn+0x10/0x10
[  401.108787][T12142]  ? veth_dev_init+0x37c/0x570
[  401.108799][T12142]  veth_dev_init+0x37c/0x570
[  401.108812][T12142]  ? kasan_save_track+0x14/0x30
[  401.108828][T12142]  ? __pfx_veth_dev_init+0x10/0x10
[  401.108842][T12142]  register_netdevice+0x653/0x2270
[  401.108855][T12142]  ? __pfx_register_netdevice+0x10/0x10
[  401.108866][T12142]  ? dev_addr_mod+0x316/0x540
[  401.108881][T12142]  veth_newlink+0x44d/0xa00
[  401.108896][T12142]  ? __pfx_veth_newlink+0x10/0x10
[  401.108933][T12142]  ? validate_linkmsg+0x57c/0xb60
[  401.108950][T12142]  ? __pfx_validate_linkmsg+0x10/0x10
[  401.108965][T12142]  ? alloc_netdev_mqs+0xe17/0x1550
[  401.108984][T12142]  ? rtnl_create_link+0xa4a/0xf90
[  401.109000][T12142]  ? __pfx_veth_newlink+0x10/0x10
[  401.109015][T12142]  rtnl_newlink+0xc45/0x2000
[  401.109035][T12142]  ? __pfx_rtnl_newlink+0x10/0x10
[  401.109057][T12142]  ? kfree_skbmem+0x1a4/0x1f0
[  401.109074][T12142]  ? rcu_is_watching+0x12/0xc0
[  401.109094][T12142]  ? find_held_lock+0x2b/0x80
[  401.109108][T12142]  ? __pfx_rtnl_newlink+0x10/0x10
[  401.109123][T12142]  ? __pfx_rtnl_newlink+0x10/0x10
[  401.109138][T12142]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  401.109159][T12142]  ? __pfx_rtnl_newlink+0x10/0x10
[  401.109176][T12142]  rtnetlink_rcv_msg+0x95e/0xe90
[  401.109194][T12142]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  401.109214][T12142]  ? ref_tracker_free+0x37c/0x830
[  401.109227][T12142]  netlink_rcv_skb+0x158/0x420
[  401.109244][T12142]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  401.109261][T12142]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  401.109283][T12142]  ? netlink_deliver_tap+0x1ae/0xd30
[  401.109302][T12142]  netlink_unicast+0x5aa/0x870
[  401.109320][T12142]  ? __pfx_netlink_unicast+0x10/0x10
[  401.109342][T12142]  netlink_sendmsg+0x8c8/0xdd0
[  401.109361][T12142]  ? __pfx_netlink_sendmsg+0x10/0x10
[  401.109379][T12142]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  401.109393][T12142]  ____sys_sendmsg+0xa98/0xc70
[  401.109406][T12142]  ? __pfx_____sys_sendmsg+0x10/0x10
[  401.109417][T12142]  ? get_compat_msghdr+0x11a/0x170
[  401.109435][T12142]  ? __pfx_futex_wake_mark+0x10/0x10
[  401.109451][T12142]  ___sys_sendmsg+0x134/0x1d0
[  401.109468][T12142]  ? __pfx____sys_sendmsg+0x10/0x10
[  401.109490][T12142]  ? find_held_lock+0x2b/0x80
[  401.109512][T12142]  __sys_sendmsg+0x16d/0x220
[  401.109528][T12142]  ? __pfx___sys_sendmsg+0x10/0x10
[  401.109543][T12142]  ? __ia32_sys_futex_time32+0x1d9/0x460
[  401.109561][T12142]  ? rcu_is_watching+0x12/0xc0
[  401.109577][T12142]  __do_fast_syscall_32+0x7c/0x300
[  401.109596][T12142]  do_fast_syscall_32+0x32/0x80
[  401.109613][T12142]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  401.109626][T12142] RIP: 0023:0xf708d579
[  401.109635][T12142] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  401.109646][T12142] RSP: 002b:00000000f547d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  401.109656][T12142] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000200
[  401.109662][T12142] RDX: 0000000062cc3564 RSI: 0000000000000000 RDI: 0000000000000000
[  401.109668][T12142] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  401.109674][T12142] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  401.109680][T12142] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  401.109693][T12142]  </TASK>
[  401.109697][T12142] Mem-Info:
[  401.280384][T12142] active_anon:9529 inactive_anon:104 isolated_anon:0
[  401.280384][T12142]  active_file:7412 inactive_file:14578 isolated_file:0
[  401.280384][T12142]  unevictable:1768 dirty:238 writeback:0
[  401.280384][T12142]  slab_reclaimable:7038 slab_unreclaimable:70160
[  401.280384][T12142]  mapped:24335 shmem:5206 pagetables:1304
[  401.280384][T12142]  sec_pagetables:324 bounce:0
[  401.280384][T12142]  kernel_misc_reclaimable:0
[  401.280384][T12142]  free:32030 free_pcp:15486 free_cma:0
[  401.319569][T12142] Node 0 active_anon:24kB inactive_anon:132kB active_file:1056kB inactive_file:172kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:16kB dirty:4kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:9200kB pagetables:1264kB sec_pagetables:1156kB all_unreclaimable? yes Balloon:0kB
[  401.329204][T12142] Node 1 active_anon:38092kB inactive_anon:284kB active_file:28592kB inactive_file:58140kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:97324kB dirty:948kB writeback:0kB shmem:17288kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:4380kB pagetables:3952kB sec_pagetables:140kB all_unreclaimable? no Balloon:0kB
[  401.338942][T12142] Node 0 DMA free:2504kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:0kB free_cma:0kB
[  401.348340][T12142] lowmem_reserve[]: 0 292 292 292 292
[  401.350141][T12142] Node 0 DMA32 free:19748kB boost:4096kB min:17544kB low:20904kB high:24264kB reserved_highatomic:0KB free_highatomic:0KB active_anon:24kB inactive_anon:132kB active_file:1056kB inactive_file:172kB unevictable:3536kB writepending:4kB zspages:0kB present:1032196kB managed:299668kB mlocked:0kB bounce:0kB free_pcp:12816kB local_pcp:4040kB free_cma:0kB
[  401.361340][T12142] lowmem_reserve[]: 0 0 0 0 0
[  401.362861][T12142] Node 1 DMA32 free:105868kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:38092kB inactive_anon:284kB active_file:28592kB inactive_file:58140kB unevictable:3536kB writepending:948kB zspages:1704kB present:1048432kB managed:948220kB mlocked:0kB bounce:0kB free_pcp:50196kB local_pcp:6968kB free_cma:0kB
[  401.372911][T12142] lowmem_reserve[]: 0 0 0 0 0
[  401.374408][T12142] Node 0 DMA: 36*4kB (U) 25*8kB (U) 5*16kB (U) 9*32kB (U) 2*64kB (U) 1*128kB (U) 0*256kB 1*512kB (U) 1*1024kB (U) 0*2048kB 0*4096kB = 2504kB
[  401.378894][T12142] Node 0 DMA32: 3*4kB (UME) 1*8kB (U) 1*16kB (U) 46*32kB (UME) 71*64kB (UME) 31*128kB (UME) 12*256kB (UME) 7*512kB (UM) 3*1024kB (U) 0*2048kB 0*4096kB = 19748kB
[  401.383968][T12142] Node 1 DMA32: 667*4kB (UME) 272*8kB (ME) 254*16kB (UME) 130*32kB (UME) 80*64kB (UME) 77*128kB (UME) 50*256kB (UME) 29*512kB (UME) 31*1024kB (UM) 3*2048kB (M) 3*4096kB (M) = 105868kB
[  401.389471][T12142] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  401.392496][T12142] Node 0 hugepages_total=1 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  401.395342][T12142] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  401.398260][T12142] Node 1 hugepages_total=3 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  401.401319][T12142] 27508 total pagecache pages
[  401.402833][T12142] 316 pages in swap cache
[  401.404249][T12142] Free swap  = 121872kB
[  401.405551][T12142] Total swap = 124996kB
[  401.406878][T12142] 524155 pages RAM
[  401.408053][T12142] 0 pages HighMem/MovableOnly
[  401.409511][T12142] 208343 pages reserved
[  401.410914][T12142] 0 pages cma reserved
[  402.249297][T12155] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  402.254648][T12155] batadv_slave_0: entered promiscuous mode
[  402.262278][   T34] usbhid 8-1:0.0: can't add hid device: -71
[  402.264216][   T34] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[  402.272639][   T34] usb 8-1: USB disconnect, device number 15
[  402.318660][T12160] overlayfs: missing 'workdir'
[  403.243510][T12183] netlink: 'syz.3.1644': attribute type 13 has an invalid length.
[  403.245958][T12183] netlink: 'syz.3.1644': attribute type 17 has an invalid length.
[  403.320739][ T1343] vhci_hcd: vhci_device speed not set
[  403.729723][T12191] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1646'.
[  403.972706][T12183] team0: refused to change device tx_queue_len
[  403.975280][T12183] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  404.203744][T12194] /dev/sr0: Can't open blockdev
[  404.248375][   T40] kauditd_printk_skb: 103 callbacks suppressed
[  404.248387][   T40] audit: type=1400 audit(2000008610.430:1464): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-22 profile="unconfined" name="&" pid=12207 comm="syz.4.1651"
[  405.743722][T12218] misc userio: Invalid payload size
[  405.788669][T12220] FAULT_INJECTION: forcing a failure.
[  405.788669][T12220] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  405.796044][T12220] CPU: 2 UID: 0 PID: 12220 Comm: syz.4.1654 Not tainted syzkaller #0 PREEMPT(full) 
[  405.796067][T12220] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  405.796078][T12220] Call Trace:
[  405.796083][T12220]  <TASK>
[  405.796090][T12220]  dump_stack_lvl+0x16c/0x1f0
[  405.796120][T12220]  should_fail_ex+0x512/0x640
[  405.796149][T12220]  _copy_to_user+0x32/0xd0
[  405.796168][T12220]  simple_read_from_buffer+0xcb/0x170
[  405.796191][T12220]  proc_fail_nth_read+0x197/0x240
[  405.796216][T12220]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  405.796241][T12220]  ? rw_verify_area+0xcf/0x6c0
[  405.796262][T12220]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  405.796286][T12220]  vfs_read+0x1e4/0xcf0
[  405.796314][T12220]  ? __pfx_vfs_read+0x10/0x10
[  405.796335][T12220]  ? find_held_lock+0x2b/0x80
[  405.796364][T12220]  ? __fget_files+0x20e/0x3c0
[  405.796400][T12220]  ksys_read+0x12a/0x250
[  405.796422][T12220]  ? __pfx_ksys_read+0x10/0x10
[  405.796447][T12220]  ? rcu_is_watching+0x12/0xc0
[  405.796475][T12220]  __do_fast_syscall_32+0x7c/0x300
[  405.796504][T12220]  do_fast_syscall_32+0x32/0x80
[  405.796529][T12220]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  405.796550][T12220] RIP: 0023:0xf708d579
[  405.796564][T12220] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  405.796580][T12220] RSP: 002b:00000000f547d590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  405.796597][T12220] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f547d620
[  405.796608][T12220] RDX: 000000000000000f RSI: 00000000f7425ff4 RDI: 0000000000000000
[  405.796617][T12220] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  405.796626][T12220] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  405.796636][T12220] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  405.796660][T12220]  </TASK>
[  406.018717][T12222] netlink: 'syz.4.1655': attribute type 1 has an invalid length.
[  406.033427][T12222] 8021q: adding VLAN 0 to HW filter on device bond1
[  406.059129][T12222] 8021q: adding VLAN 0 to HW filter on device bond1
[  406.061656][T12222] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address
[  406.071889][T12222] bond1: (slave vxcan3): Error -95 calling set_mac_address
[  406.247309][T12225] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1656'.
[  406.252454][T12225] bridge0: port 2(bridge_slave_1) entered disabled state
[  407.752638][   T40] audit: type=1326 audit(2000008613.939:1465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12255 comm="syz.4.1666" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  407.759172][   T40] audit: type=1326 audit(2000008613.939:1466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12255 comm="syz.4.1666" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  407.766568][   T40] audit: type=1326 audit(2000008613.939:1467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12255 comm="syz.4.1666" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf708d598 code=0x7ffc0000
[  407.773411][   T40] audit: type=1326 audit(2000008613.939:1468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12255 comm="syz.4.1666" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf708d598 code=0x7ffc0000
[  407.780042][   T40] audit: type=1326 audit(2000008613.939:1469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12255 comm="syz.4.1666" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf708d598 code=0x7ffc0000
[  407.786852][   T40] audit: type=1326 audit(2000008613.939:1470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12255 comm="syz.4.1666" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf708d598 code=0x7ffc0000
[  407.793517][   T40] audit: type=1326 audit(2000008613.939:1471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12255 comm="syz.4.1666" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf708d598 code=0x7ffc0000
[  407.800387][   T40] audit: type=1326 audit(2000008613.939:1472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12255 comm="syz.4.1666" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf708d598 code=0x7ffc0000
[  407.807383][   T40] audit: type=1326 audit(2000008613.939:1473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12255 comm="syz.4.1666" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf708d598 code=0x7ffc0000
[  408.042668][T12271] FAULT_INJECTION: forcing a failure.
[  408.042668][T12271] name failslab, interval 1, probability 0, space 0, times 0
[  408.046822][T12271] CPU: 2 UID: 0 PID: 12271 Comm: syz.4.1669 Not tainted syzkaller #0 PREEMPT(full) 
[  408.046835][T12271] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  408.046841][T12271] Call Trace:
[  408.046846][T12271]  <TASK>
[  408.046850][T12271]  dump_stack_lvl+0x16c/0x1f0
[  408.046870][T12271]  should_fail_ex+0x512/0x640
[  408.046886][T12271]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  408.046902][T12271]  should_failslab+0xc2/0x120
[  408.046913][T12271]  kmem_cache_alloc_noprof+0x75/0x6e0
[  408.046926][T12271]  ? radix_tree_node_alloc.constprop.0+0x7c/0x350
[  408.046944][T12271]  ? radix_tree_node_alloc.constprop.0+0x7c/0x350
[  408.046956][T12271]  radix_tree_node_alloc.constprop.0+0x7c/0x350
[  408.046971][T12271]  idr_get_free+0x528/0xa30
[  408.046989][T12271]  idr_alloc_u32+0x190/0x2f0
[  408.047004][T12271]  ? __pfx_idr_alloc_u32+0x10/0x10
[  408.047020][T12271]  ? __pfx___mutex_lock+0x10/0x10
[  408.047039][T12271]  idr_alloc+0xc0/0x130
[  408.047052][T12271]  ? __pfx_idr_alloc+0x10/0x10
[  408.047065][T12271]  ? lockdep_init_map_type+0x5c/0x280
[  408.047081][T12271]  drm_mode_create_lease_ioctl+0x1262/0x1fb0
[  408.047101][T12271]  ? __pfx_drm_mode_create_lease_ioctl+0x10/0x10
[  408.047124][T12271]  ? drm_is_current_master+0x2c/0x40
[  408.047142][T12271]  ? do_raw_spin_unlock+0x172/0x230
[  408.047157][T12271]  drm_ioctl_kernel+0x1f4/0x3e0
[  408.047170][T12271]  ? __pfx_drm_mode_create_lease_ioctl+0x10/0x10
[  408.047185][T12271]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  408.047207][T12271]  drm_ioctl+0x5c9/0xc30
[  408.047222][T12271]  ? __pfx_drm_mode_create_lease_ioctl+0x10/0x10
[  408.047238][T12271]  ? __pfx_drm_ioctl+0x10/0x10
[  408.047261][T12271]  drm_compat_ioctl+0x327/0x460
[  408.047279][T12271]  ? __pfx_drm_compat_ioctl+0x10/0x10
[  408.047296][T12271]  __ia32_compat_sys_ioctl+0x242/0x370
[  408.047310][T12271]  __do_fast_syscall_32+0x7c/0x300
[  408.047328][T12271]  do_fast_syscall_32+0x32/0x80
[  408.047344][T12271]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  408.047357][T12271] RIP: 0023:0xf708d579
[  408.047366][T12271] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  408.047376][T12271] RSP: 002b:00000000f547d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  408.047387][T12271] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c01864c6
[  408.047393][T12271] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[  408.047399][T12271] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  408.047405][T12271] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  408.047411][T12271] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  408.047424][T12271]  </TASK>
[  408.134798][    C2] vkms_vblank_simulate: vblank timer overrun
[  408.384497][   T86] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  408.386948][   T86] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  409.345236][T12290] fuse: Bad value for 'fd'
[  410.579845][T12299] input: syz0 as /devices/virtual/input/input16
[  411.197615][T12313] tmpfs: Unknown parameter 'usrquotar'
[  411.324349][ T5951] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  411.333189][ T5951] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  411.337267][ T5951] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  411.340140][ T5951] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  411.343564][ T5951] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  411.641774][   T40] kauditd_printk_skb: 92 callbacks suppressed
[  411.641787][   T40] audit: type=1326 audit(2000008617.819:1566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12327 comm="syz.4.1684" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  411.651346][   T40] audit: type=1326 audit(2000008617.819:1567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12327 comm="syz.4.1684" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  411.670466][   T40] audit: type=1326 audit(2000008617.819:1568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12327 comm="syz.4.1684" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf708d579 code=0x7ffc0000
[  411.679116][   T40] audit: type=1326 audit(2000008617.819:1569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12327 comm="syz.4.1684" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  411.687610][   T40] audit: type=1326 audit(2000008617.819:1570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12327 comm="syz.4.1684" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  411.698293][   T40] audit: type=1326 audit(2000008617.819:1571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12327 comm="syz.4.1684" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf708d579 code=0x7ffc0000
[  411.709631][   T40] audit: type=1326 audit(2000008617.829:1572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12327 comm="syz.4.1684" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  411.720756][   T40] audit: type=1326 audit(2000008617.829:1573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12327 comm="syz.4.1684" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  411.728326][   T40] audit: type=1326 audit(2000008617.829:1574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12327 comm="syz.4.1684" exe="/syz-executor" sig=0 arch=40000003 syscall=23 compat=1 ip=0xf708d579 code=0x7ffc0000
[  411.737329][   T40] audit: type=1326 audit(2000008617.829:1575): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=12327 comm="syz.4.1684" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  411.781213][T12315] chnl_net:caif_netlink_parms(): no params data found
[  411.863967][   T46] netdevsim netdevsim2 netdevsim0 (unregistering): left allmulticast mode
[  411.866804][   T46] netdevsim netdevsim2 netdevsim0 (unregistering): left promiscuous mode
[  411.870365][   T46] bridge0: port 3(netdevsim0) entered disabled state
[  411.909770][T12339] overlayfs: missing 'workdir'
[  411.954606][T12315] bridge0: port 1(bridge_slave_0) entered blocking state
[  411.957829][T12315] bridge0: port 1(bridge_slave_0) entered disabled state
[  411.960956][T12315] bridge_slave_0: entered allmulticast mode
[  411.965387][T12315] bridge_slave_0: entered promiscuous mode
[  411.973892][T12315] bridge0: port 2(bridge_slave_1) entered blocking state
[  411.977350][T12315] bridge0: port 2(bridge_slave_1) entered disabled state
[  411.980372][T12315] bridge_slave_1: entered allmulticast mode
[  411.984270][T12315] bridge_slave_1: entered promiscuous mode
[  412.049728][T12315] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  412.057641][T12315] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  412.112954][T12315] team0: Port device team_slave_0 added
[  412.125553][T12315] team0: Port device team_slave_1 added
[  412.163810][   T46] bridge_slave_1: left allmulticast mode
[  412.166233][   T46] bridge_slave_1: left promiscuous mode
[  412.170553][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[  412.175597][   T46] bridge_slave_0: left allmulticast mode
[  412.177908][   T46] bridge_slave_0: left promiscuous mode
[  412.180409][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[  412.515996][   T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  412.519520][   T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  412.523037][   T46] bond0 (unregistering): (slave batadv0): Releasing backup interface
[  412.530914][   T46] bond0 (unregistering): Released all slaves
[  412.594187][   T46] bond1 (unregistering): Released all slaves
[  412.665011][   T46] bond2 (unregistering): Released all slaves
[  412.774799][   T46] bond3 (unregistering): Released all slaves
[  412.897087][   T46] bond4 (unregistering): Released all slaves
[  412.923540][T12353] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1689'.
[  412.988772][   T46] bond5 (unregistering): Released all slaves
[  413.053117][   T46] bond6 (unregistering): Released all slaves
[  413.117498][   T46] bond7 (unregistering): Released all slaves
[  413.181519][   T46] bond8 (unregistering): Released all slaves
[  413.251468][   T46] bond9 (unregistering): Released all slaves
[  413.343955][T12359] wireguard0: entered promiscuous mode
[  413.346425][T12359] wireguard0: entered allmulticast mode
[  413.346831][T12363] loop2: detected capacity change from 0 to 7
[  413.354798][T12363] Dev loop2: unable to read RDB block 7
[  413.356532][T12363]  loop2: unable to read partition table
[  413.361741][T12363] loop2: partition table beyond EOD, truncated
[  413.370624][T12363] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  413.379743][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/91.tmp-b7:2' failed: Read-only file system
[  413.402342][T12315] batman_adv: batadv0: Adding interface: batadv_slave_0
[  413.404650][ T5951] Bluetooth: hci4: command tx timeout
[  413.405629][T12315] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  413.415264][T12315] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  413.418886][   T46] : left promiscuous mode
[  413.428482][T12315] batman_adv: batadv0: Adding interface: batadv_slave_1
[  413.431259][T12315] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  413.439566][T12315] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  413.492377][T12315] hsr_slave_0: entered promiscuous mode
[  413.499831][T12315] hsr_slave_1: entered promiscuous mode
[  413.502334][T12315] debugfs: 'hsr0' already exists in 'hsr'
[  413.507705][T12315] Cannot create hsr debugfs directory
[  413.531857][   T46] tipc: Left network mode
[  413.590390][ T5347] Dev loop2: unable to read RDB block 7
[  413.592347][ T5347]  loop2: unable to read partition table
[  413.594213][ T5347] loop2: partition table beyond EOD, truncated
[  413.627909][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/91.tmp-b7:2' failed: Read-only file system
[  413.645259][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/91.tmp-b7:2' failed: Read-only file system
[  413.654960][T10227] udevd[10227]: symlink '../../loop2' '/dev/disk/by-diskseq/91.tmp-b7:2' failed: Read-only file system
[  413.758698][T12369] netlink: 3 bytes leftover after parsing attributes in process `syz.4.1692'.
[  413.783813][T12371] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1693'.
[  413.807873][T12369] batadv1: entered allmulticast mode
[  413.854970][T12376] input: syz1 as /devices/virtual/input/input17
[  413.893641][T12315] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  413.918410][T12315] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  413.941373][T12371] fuse: Bad value for 'fd'
[  413.943332][T12315] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  413.968305][T12315] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  414.003575][   T46] hsr_slave_0: left promiscuous mode
[  414.010235][   T46] hsr_slave_1: left promiscuous mode
[  414.014914][   T46] batman_adv: batadv0: Removing interface: batadv_slave_0
[  414.018468][   T46] batman_adv: batadv0: Removing interface: batadv_slave_1
[  414.514858][T12394] misc userio: Invalid payload size
[  414.822857][T12395] misc userio: Invalid payload size
[  415.312121][   T46] pim6reg (unregistering): left allmulticast mode
[  415.329413][   T34] page_pool_release_retry() stalled pool shutdown: id 35, 1 inflight 60 sec
[  415.483763][ T5951] Bluetooth: hci4: command tx timeout
[  415.594485][T12399] netlink: 'syz.4.1696': attribute type 1 has an invalid length.
[  415.881891][   T46] team0 (unregistering): Port device team_slave_1 removed
[  415.968219][   T46] team0 (unregistering): Port device team_slave_0 removed
[  416.039647][T12404] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1697'.
[  416.532744][T12399] workqueue: Failed to create a rescuer kthread for wq "bond2": -EINTR
[  416.618832][T12315] 8021q: adding VLAN 0 to HW filter on device bond0
[  416.641848][T12315] 8021q: adding VLAN 0 to HW filter on device team0
[  416.651895][ T1256] bridge0: port 1(bridge_slave_0) entered blocking state
[  416.654282][ T1256] bridge0: port 1(bridge_slave_0) entered forwarding state
[  416.662469][ T1256] bridge0: port 2(bridge_slave_1) entered blocking state
[  416.665052][ T1256] bridge0: port 2(bridge_slave_1) entered forwarding state
[  416.689147][T12315] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  416.788536][T12417] FAULT_INJECTION: forcing a failure.
[  416.788536][T12417] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  416.792957][T12417] CPU: 2 UID: 0 PID: 12417 Comm: syz.3.1699 Not tainted syzkaller #0 PREEMPT(full) 
[  416.792973][T12417] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  416.792992][T12417] Call Trace:
[  416.792996][T12417]  <TASK>
[  416.793000][T12417]  dump_stack_lvl+0x16c/0x1f0
[  416.793020][T12417]  should_fail_ex+0x512/0x640
[  416.793040][T12417]  _copy_to_user+0x32/0xd0
[  416.793054][T12417]  simple_read_from_buffer+0xcb/0x170
[  416.793070][T12417]  proc_fail_nth_read+0x197/0x240
[  416.793085][T12417]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  416.793100][T12417]  ? rw_verify_area+0xcf/0x6c0
[  416.793114][T12417]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  416.793129][T12417]  vfs_read+0x1e4/0xcf0
[  416.793146][T12417]  ? __pfx_vfs_read+0x10/0x10
[  416.793159][T12417]  ? find_held_lock+0x2b/0x80
[  416.793177][T12417]  ? __fget_files+0x20e/0x3c0
[  416.793195][T12417]  ksys_read+0x12a/0x250
[  416.793209][T12417]  ? __pfx_ksys_read+0x10/0x10
[  416.793223][T12417]  ? fput+0x9b/0xd0
[  416.793232][T12417]  ? rcu_is_watching+0x12/0xc0
[  416.793249][T12417]  __do_fast_syscall_32+0x7c/0x300
[  416.793267][T12417]  do_fast_syscall_32+0x32/0x80
[  416.793283][T12417]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  416.793297][T12417] RIP: 0023:0xf7f92579
[  416.793305][T12417] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  416.793316][T12417] RSP: 002b:00000000f5486590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  416.793326][T12417] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f5486620
[  416.793332][T12417] RDX: 000000000000000f RSI: 00000000f7425ff4 RDI: 0000000000000000
[  416.793338][T12417] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  416.793344][T12417] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  416.793349][T12417] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  416.793363][T12417]  </TASK>
[  416.875552][T12315] 8021q: adding VLAN 0 to HW filter on device batadv0
[  417.032939][T12315] veth0_vlan: entered promiscuous mode
[  417.049479][T12315] veth1_vlan: entered promiscuous mode
[  417.114069][T12315] veth0_macvtap: entered promiscuous mode
[  417.121073][T12315] veth1_macvtap: entered promiscuous mode
[  417.134004][T12315] batman_adv: batadv0: Interface activated: batadv_slave_0
[  417.142351][T12315] batman_adv: batadv0: Interface activated: batadv_slave_1
[  417.147040][   T46] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  417.191771][   T46] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  417.195579][   T46] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  417.202400][   T46] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  417.247188][ T1142] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  417.253576][ T1142] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  417.278968][ T1142] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  417.282173][ T1142] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  417.574211][ T5951] Bluetooth: hci4: command tx timeout
[  417.634237][   T60] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  417.792253][T12466] netlink: 'syz.1.1704': attribute type 1 has an invalid length.
[  417.796348][   T60] usb 10-1: config index 0 descriptor too short (expected 39, got 27)
[  417.800394][   T60] usb 10-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  417.806354][   T60] usb 10-1: config 0 interface 0 has no altsetting 0
[  417.814415][  T911] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  417.815988][   T60] usb 10-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  417.820558][   T60] usb 10-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  417.823131][   T60] usb 10-1: Product: syz
[  417.825075][   T60] usb 10-1: Manufacturer: syz
[  417.827038][   T60] usb 10-1: SerialNumber: syz
[  417.835095][T12468] netlink: 'syz.3.1705': attribute type 1 has an invalid length.
[  417.837461][T12466] 8021q: adding VLAN 0 to HW filter on device bond2
[  417.841025][   T60] usb 10-1: config 0 descriptor??
[  417.845703][   T60] hub 10-1:0.0: bad descriptor, ignoring hub
[  417.848236][   T60] hub 10-1:0.0: probe with driver hub failed with error -5
[  417.853660][   T60] usb 10-1: selecting invalid altsetting 0
[  417.885344][T12468] 8021q: adding VLAN 0 to HW filter on device bond4
[  417.986818][  T911] usb 9-1: Using ep0 maxpacket: 32
[  417.996583][  T911] usb 9-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config
[  417.999884][  T911] usb 9-1: config 155 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82
[  418.007829][  T911] usb 9-1: config 155 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  418.012268][  T911] usb 9-1: config 155 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 11
[  418.022274][  T911] usb 9-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30
[  418.025973][  T911] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  418.029214][  T911] usb 9-1: Product: syz
[  418.031085][  T911] usb 9-1: Manufacturer: syz
[  418.033033][  T911] usb 9-1: SerialNumber: syz
[  418.040609][    C3] imon 9-1:155.0: imon usb_rx_callback_intf0: status(-71)
[  418.056594][  T911] input: iMON Panel, Knob and Mouse(15c2:ffdc) as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:155.0/input/input18
[  418.164394][ T1333] usb 10-1: USB disconnect, device number 2
[  418.274241][  T911] imon 9-1:155.0: Unknown 0xffdc device, defaulting to VFD and iMON IR
[  418.276929][  T911]  (id 0x00)
[  418.326812][  T911] rc_core: IR keymap rc-imon-pad not found
[  418.329103][  T911] Registered IR keymap rc-empty
[  418.331085][  T911] imon 9-1:155.0: Looks like you're trying to use an IR protocol this device does not support
[  418.337992][  T911] imon 9-1:155.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[  418.387422][T12480] netlink: 'syz.3.1708': attribute type 4 has an invalid length.
[  418.475313][  T911] rc rc0: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:155.0/rc/rc0
[  418.479468][  T911] input: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:155.0/rc/rc0/input19
[  418.484497][  T911] imon 9-1:155.0: iMON device (15c2:ffdc, intf0) on usb<9:2> initialized
[  418.490124][T12485] netlink: 'syz.3.1709': attribute type 3 has an invalid length.
[  418.493273][T12485] netlink: 'syz.3.1709': attribute type 1 has an invalid length.
[  418.656340][ T1333] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  418.665010][   T40] kauditd_printk_skb: 48 callbacks suppressed
[  418.665020][   T40] audit: type=1326 audit(2000008624.847:1624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12460 comm="syz.4.1703" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x0
[  418.728658][   T60] usb 9-1: USB disconnect, device number 2
[  418.816521][ T1333] usb 10-1: config index 0 descriptor too short (expected 39, got 27)
[  418.819312][ T1333] usb 10-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  418.822666][ T1333] usb 10-1: config 0 interface 0 has no altsetting 0
[  418.828353][ T1333] usb 10-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  418.831500][ T1333] usb 10-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  418.834653][ T1333] usb 10-1: Product: syz
[  418.836311][ T1333] usb 10-1: Manufacturer: syz
[  418.837847][ T1333] usb 10-1: SerialNumber: syz
[  418.847969][ T1333] usb 10-1: config 0 descriptor??
[  418.862046][ T1333] hub 10-1:0.0: bad descriptor, ignoring hub
[  418.864154][ T1333] hub 10-1:0.0: probe with driver hub failed with error -5
[  418.879697][ T1333] usb 10-1: selecting invalid altsetting 0
[  419.096239][T12456] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  419.099498][T12456] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  419.214649][   T60] usb 10-1: USB disconnect, device number 3
[  419.644841][ T5951] Bluetooth: hci4: command tx timeout
[  419.759526][T12504] netlink: 'syz.5.1715': attribute type 1 has an invalid length.
[  420.594263][T12510] FAULT_INJECTION: forcing a failure.
[  420.594263][T12510] name failslab, interval 1, probability 0, space 0, times 0
[  420.598320][T12510] CPU: 2 UID: 0 PID: 12510 Comm: syz.3.1716 Not tainted syzkaller #0 PREEMPT(full) 
[  420.598345][T12510] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  420.598352][T12510] Call Trace:
[  420.598356][T12510]  <TASK>
[  420.598361][T12510]  dump_stack_lvl+0x16c/0x1f0
[  420.598381][T12510]  should_fail_ex+0x512/0x640
[  420.598397][T12510]  ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0
[  420.598416][T12510]  should_failslab+0xc2/0x120
[  420.598427][T12510]  __kmalloc_node_track_caller_noprof+0xde/0x8a0
[  420.598444][T12510]  ? scm_fp_dup+0x63/0x440
[  420.598461][T12510]  ? kmemdup_noprof+0x29/0x60
[  420.598475][T12510]  kmemdup_noprof+0x29/0x60
[  420.598489][T12510]  scm_fp_dup+0x63/0x440
[  420.598504][T12510]  unix_stream_read_generic+0xe3f/0x2a20
[  420.598527][T12510]  ? __pfx_unix_stream_read_generic+0x10/0x10
[  420.598550][T12510]  unix_stream_recvmsg+0x190/0x1c0
[  420.598564][T12510]  ? __pfx_unix_stream_recvmsg+0x10/0x10
[  420.598577][T12510]  ? __pfx_unix_stream_read_actor+0x10/0x10
[  420.598591][T12510]  ? iovec_from_user+0xbb/0x140
[  420.598627][T12510]  ____sys_recvmsg+0x5f9/0x6b0
[  420.598646][T12510]  ? __pfx_____sys_recvmsg+0x10/0x10
[  420.598656][T12510]  ? import_iovec+0x86/0xb0
[  420.598670][T12510]  ? __lock_acquire+0x622/0x1c90
[  420.598684][T12510]  ___sys_recvmsg+0x114/0x1a0
[  420.598700][T12510]  ? __pfx____sys_recvmsg+0x10/0x10
[  420.598717][T12510]  ? find_held_lock+0x2b/0x80
[  420.598736][T12510]  ? __pfx___might_resched+0x10/0x10
[  420.598754][T12510]  do_recvmmsg+0x55d/0x750
[  420.598771][T12510]  ? __pfx_do_recvmmsg+0x10/0x10
[  420.598786][T12510]  ? trace_sched_exit_tp+0xd1/0x120
[  420.598808][T12510]  ? __pfx___schedule+0x10/0x10
[  420.598821][T12510]  ? __fget_files+0x20e/0x3c0
[  420.598834][T12510]  ? handle_mm_fault+0x1f0/0xd10
[  420.598848][T12510]  __sys_recvmmsg+0x21c/0x280
[  420.598864][T12510]  ? __pfx___sys_recvmmsg+0x10/0x10
[  420.598884][T12510]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  420.598900][T12510]  ? lockdep_hardirqs_on+0x7c/0x110
[  420.598917][T12510]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  420.598933][T12510]  __do_fast_syscall_32+0x7c/0x300
[  420.598950][T12510]  do_fast_syscall_32+0x32/0x80
[  420.598967][T12510]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  420.598980][T12510] RIP: 0023:0xf7f92579
[  420.598988][T12510] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  420.598999][T12510] RSP: 002b:00000000f544455c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  420.599009][T12510] RAX: ffffffffffffffda RBX: 000000000000000c RCX: 0000000080001140
[  420.599015][T12510] RDX: 0000000000000700 RSI: 0000000000000002 RDI: 0000000000000000
[  420.599021][T12510] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  420.599027][T12510] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  420.599033][T12510] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  420.599051][T12510]  </TASK>
[  420.761819][T12497] warn_alloc: 1 callbacks suppressed
[  420.761829][T12497] syz.1.1713: vmalloc error: size 6291456, failed to allocated page array size 12288, mode:0x404dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_RETRY_MAYFAIL), nodemask=(null),cpuset=syz1,mems_allowed=0-1
[  420.769812][T12497] CPU: 2 UID: 0 PID: 12497 Comm: syz.1.1713 Not tainted syzkaller #0 PREEMPT(full) 
[  420.769826][T12497] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  420.769832][T12497] Call Trace:
[  420.769836][T12497]  <TASK>
[  420.769840][T12497]  dump_stack_lvl+0x16c/0x1f0
[  420.769860][T12497]  warn_alloc+0x248/0x3a0
[  420.769876][T12497]  ? __pfx_warn_alloc+0x10/0x10
[  420.769895][T12497]  ? veth_dev_init+0x37c/0x570
[  420.769909][T12497]  ? __vmalloc_node_noprof+0xad/0xf0
[  420.769923][T12497]  __vmalloc_node_range_noprof+0xfe2/0x1480
[  420.769939][T12497]  ? veth_dev_init+0x37c/0x570
[  420.769955][T12497]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  420.769972][T12497]  __kvmalloc_node_noprof+0x431/0x9c0
[  420.769989][T12497]  ? veth_dev_init+0x37c/0x570
[  420.770003][T12497]  ? veth_dev_init+0x37c/0x570
[  420.770015][T12497]  ? __pfx_netdev_lock_cmp_fn+0x10/0x10
[  420.770031][T12497]  ? veth_dev_init+0x37c/0x570
[  420.770043][T12497]  veth_dev_init+0x37c/0x570
[  420.770061][T12497]  ? kasan_save_track+0x14/0x30
[  420.770076][T12497]  ? __pfx_veth_dev_init+0x10/0x10
[  420.770090][T12497]  register_netdevice+0x653/0x2270
[  420.770104][T12497]  ? __pfx_register_netdevice+0x10/0x10
[  420.770114][T12497]  ? dev_addr_mod+0x316/0x540
[  420.770130][T12497]  veth_newlink+0x44d/0xa00
[  420.770144][T12497]  ? __pfx_veth_newlink+0x10/0x10
[  420.770181][T12497]  ? validate_linkmsg+0x57c/0xb60
[  420.770198][T12497]  ? __pfx_validate_linkmsg+0x10/0x10
[  420.770213][T12497]  ? alloc_netdev_mqs+0xe17/0x1550
[  420.770232][T12497]  ? rtnl_create_link+0xa4a/0xf90
[  420.770248][T12497]  ? __pfx_veth_newlink+0x10/0x10
[  420.770263][T12497]  rtnl_newlink+0xc45/0x2000
[  420.770283][T12497]  ? __pfx_rtnl_newlink+0x10/0x10
[  420.770307][T12497]  ? kfree_skbmem+0x1a4/0x1f0
[  420.770323][T12497]  ? rcu_is_watching+0x12/0xc0
[  420.770343][T12497]  ? find_held_lock+0x2b/0x80
[  420.770357][T12497]  ? __pfx_rtnl_newlink+0x10/0x10
[  420.770372][T12497]  ? __pfx_rtnl_newlink+0x10/0x10
[  420.770387][T12497]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  420.770403][T12497]  ? __pfx_rtnl_newlink+0x10/0x10
[  420.770420][T12497]  rtnetlink_rcv_msg+0x95e/0xe90
[  420.770438][T12497]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  420.770458][T12497]  ? ref_tracker_free+0x37c/0x830
[  420.770470][T12497]  netlink_rcv_skb+0x158/0x420
[  420.770488][T12497]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  420.770505][T12497]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  420.770527][T12497]  ? netlink_deliver_tap+0x1ae/0xd30
[  420.770545][T12497]  netlink_unicast+0x5aa/0x870
[  420.770563][T12497]  ? __pfx_netlink_unicast+0x10/0x10
[  420.770585][T12497]  netlink_sendmsg+0x8c8/0xdd0
[  420.770630][T12497]  ? __pfx_netlink_sendmsg+0x10/0x10
[  420.770648][T12497]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  420.770662][T12497]  ____sys_sendmsg+0xa98/0xc70
[  420.770676][T12497]  ? __pfx_____sys_sendmsg+0x10/0x10
[  420.770687][T12497]  ? get_compat_msghdr+0x11a/0x170
[  420.770705][T12497]  ? __pfx_futex_wake_mark+0x10/0x10
[  420.770721][T12497]  ___sys_sendmsg+0x134/0x1d0
[  420.770738][T12497]  ? __pfx____sys_sendmsg+0x10/0x10
[  420.770760][T12497]  ? find_held_lock+0x2b/0x80
[  420.770783][T12497]  __sys_sendmsg+0x16d/0x220
[  420.770799][T12497]  ? __pfx___sys_sendmsg+0x10/0x10
[  420.770814][T12497]  ? __ia32_sys_futex_time32+0x1d9/0x460
[  420.770832][T12497]  ? rcu_is_watching+0x12/0xc0
[  420.770848][T12497]  __do_fast_syscall_32+0x7c/0x300
[  420.770867][T12497]  do_fast_syscall_32+0x32/0x80
[  420.770883][T12497]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  420.770897][T12497] RIP: 0023:0xf708d579
[  420.770906][T12497] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  420.770916][T12497] RSP: 002b:00000000f547d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  420.770926][T12497] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000200
[  420.770932][T12497] RDX: 0000000062cc3564 RSI: 0000000000000000 RDI: 0000000000000000
[  420.770938][T12497] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  420.770944][T12497] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  420.770950][T12497] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  420.770963][T12497]  </TASK>
[  420.770966][T12497] Mem-Info:
[  420.904102][T12497] active_anon:1553 inactive_anon:492 isolated_anon:0
[  420.904102][T12497]  active_file:2795 inactive_file:1442 isolated_file:0
[  420.904102][T12497]  unevictable:1768 dirty:509 writeback:0
[  420.904102][T12497]  slab_reclaimable:6757 slab_unreclaimable:72387
[  420.904102][T12497]  mapped:23124 shmem:1782 pagetables:1412
[  420.904102][T12497]  sec_pagetables:327 bounce:0
[  420.904102][T12497]  kernel_misc_reclaimable:0
[  420.904102][T12497]  free:25499 free_pcp:10654 free_cma:0
[  420.919518][T12497] Node 0 active_anon:32kB inactive_anon:4kB active_file:148kB inactive_file:8kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:16kB dirty:8kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8912kB pagetables:1268kB sec_pagetables:1156kB all_unreclaimable? yes Balloon:0kB
[  420.929152][T12497] Node 1 active_anon:6380kB inactive_anon:1964kB active_file:11032kB inactive_file:5760kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:96480kB dirty:2028kB writeback:0kB shmem:3592kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:4720kB pagetables:4380kB sec_pagetables:152kB all_unreclaimable? no Balloon:0kB
[  420.938913][T12497] Node 0 DMA free:1904kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:124kB local_pcp:0kB free_cma:0kB
[  420.948115][T12497] lowmem_reserve[]: 0 292 292 292 292
[  420.949804][T12497] Node 0 DMA32 free:14468kB boost:0kB min:13448kB low:16808kB high:20168kB reserved_highatomic:4096KB free_highatomic:1908KB active_anon:32kB inactive_anon:4kB active_file:148kB inactive_file:8kB unevictable:3536kB writepending:8kB zspages:468kB present:1032196kB managed:299668kB mlocked:0kB bounce:0kB free_pcp:3824kB local_pcp:516kB free_cma:0kB
[  420.959656][T12497] lowmem_reserve[]: 0 0 0 0 0
[  420.961256][T12497] Node 1 DMA32 free:85124kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:6680kB inactive_anon:1964kB active_file:11032kB inactive_file:5760kB unevictable:3536kB writepending:2028kB zspages:6092kB present:1048432kB managed:948220kB mlocked:0kB bounce:0kB free_pcp:39352kB local_pcp:14612kB free_cma:0kB
[  420.971676][T12497] lowmem_reserve[]: 0 0 0 0 0
[  420.974285][T12497] Node 0 DMA: 0*4kB 0*8kB 1*16kB (U) 3*32kB (U) 2*64kB (U) 1*128kB (U) 0*256kB 1*512kB (U) 1*1024kB (U) 0*2048kB 0*4096kB = 1904kB
[  420.979142][T12497] Node 0 DMA32: 25*4kB (UMEH) 50*8kB (MEH) 27*16kB (MH) 89*32kB (UMEH) 41*64kB (UMEH) 15*128kB (UMEH) 8*256kB (UME) 8*512kB (UM) 0*1024kB 0*2048kB 0*4096kB = 14468kB
[  420.984335][T12497] Node 1 DMA32: 692*4kB (UE) 186*8kB (UE) 60*16kB (UME) 37*32kB (ME) 125*64kB (ME) 76*128kB (UME) 42*256kB (UME) 31*512kB (UME) 13*1024kB (UM) 6*2048kB (U) 2*4096kB (U) = 84544kB
[  420.989901][T12497] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  420.994899][T12497] Node 0 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  420.999521][T12497] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  421.002465][T12497] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[  421.005718][T12497] 6913 total pagecache pages
[  421.007203][T12497] 888 pages in swap cache
[  421.008559][T12497] Free swap  = 97912kB
[  421.009838][T12497] Total swap = 124996kB
[  421.011186][T12497] 524155 pages RAM
[  421.012368][T12497] 0 pages HighMem/MovableOnly
[  421.013838][T12497] 208343 pages reserved
[  421.015229][T12497] 0 pages cma reserved
[  421.694839][T12504] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR
[  421.781142][T12523] netlink: 'syz.5.1720': attribute type 4 has an invalid length.
[  422.023714][T12534] rdma_rxe: rxe_newlink: failed to add syz_tun
[  423.093881][T12547] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  423.096071][T12547] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  423.099355][T12547] vhci_hcd vhci_hcd.0: Device attached
[  423.333199][T12556] bridge0: port 3(erspan0) entered blocking state
[  423.336026][T12556] bridge0: port 3(erspan0) entered disabled state
[  423.340905][T12556] erspan0: entered allmulticast mode
[  423.343645][T12556] erspan0: entered promiscuous mode
[  423.346095][T12556] bridge0: port 3(erspan0) entered blocking state
[  423.348286][T12556] bridge0: port 3(erspan0) entered forwarding state
[  423.385498][    T9] usb 44-1: SetAddress Request (11) to port 0
[  423.391233][    T9] usb 44-1: new SuperSpeed USB device number 11 using vhci_hcd
[  423.726754][T12559] netlink: 'syz.4.1728': attribute type 1 has an invalid length.
[  423.730588][T12550] vhci_hcd: connection reset by peer
[  423.734379][ T1144] vhci_hcd: stop threads
[  423.736190][ T1144] vhci_hcd: release socket
[  423.738059][ T1144] vhci_hcd: disconnect device
[  423.744955][T12559] 8021q: adding VLAN 0 to HW filter on device bond2
[  425.935473][T12571] bond0: entered promiscuous mode
[  425.938171][T12571] bond_slave_0: entered promiscuous mode
[  425.940528][T12571] bond_slave_1: entered promiscuous mode
[  426.517784][T12599] netlink: 'syz.3.1738': attribute type 1 has an invalid length.
[  426.561736][T12601] random: crng reseeded on system resumption
[  427.383217][T12613] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1743'.
[  427.578826][T12616] FAULT_INJECTION: forcing a failure.
[  427.578826][T12616] name failslab, interval 1, probability 0, space 0, times 0
[  427.582719][T12616] CPU: 3 UID: 0 PID: 12616 Comm: syz.5.1744 Not tainted syzkaller #0 PREEMPT(full) 
[  427.582733][T12616] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  427.582740][T12616] Call Trace:
[  427.582744][T12616]  <TASK>
[  427.582748][T12616]  dump_stack_lvl+0x16c/0x1f0
[  427.582768][T12616]  should_fail_ex+0x512/0x640
[  427.582784][T12616]  ? __kmalloc_cache_noprof+0x5f/0x780
[  427.582800][T12616]  should_failslab+0xc2/0x120
[  427.582811][T12616]  __kmalloc_cache_noprof+0x72/0x780
[  427.582824][T12616]  ? genl_start+0x1e8/0x980
[  427.582838][T12616]  ? genl_start+0x1e8/0x980
[  427.582847][T12616]  genl_start+0x1e8/0x980
[  427.582859][T12616]  __netlink_dump_start+0x60e/0x990
[  427.582877][T12616]  genl_family_rcv_msg_dumpit+0x1e2/0x2e0
[  427.582890][T12616]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[  427.582903][T12616]  ? genl_op_from_small+0x25/0x440
[  427.582916][T12616]  ? __pfx_genl_get_cmd+0x10/0x10
[  427.582925][T12616]  ? __pfx_genl_start+0x10/0x10
[  427.582934][T12616]  ? __pfx_genl_dumpit+0x10/0x10
[  427.582943][T12616]  ? __pfx_genl_done+0x10/0x10
[  427.582956][T12616]  ? __radix_tree_lookup+0x21f/0x2c0
[  427.582972][T12616]  genl_rcv_msg+0x46e/0x800
[  427.582984][T12616]  ? __pfx_genl_rcv_msg+0x10/0x10
[  427.582995][T12616]  ? __pfx_batadv_netlink_dump_hardif+0x10/0x10
[  427.583016][T12616]  netlink_rcv_skb+0x158/0x420
[  427.583032][T12616]  ? __pfx_genl_rcv_msg+0x10/0x10
[  427.583043][T12616]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  427.583066][T12616]  ? netlink_deliver_tap+0x1ae/0xd30
[  427.583083][T12616]  genl_rcv+0x28/0x40
[  427.583092][T12616]  netlink_unicast+0x5aa/0x870
[  427.583111][T12616]  ? __pfx_netlink_unicast+0x10/0x10
[  427.583132][T12616]  netlink_sendmsg+0x8c8/0xdd0
[  427.583157][T12616]  ? __pfx_netlink_sendmsg+0x10/0x10
[  427.583175][T12616]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  427.583189][T12616]  ____sys_sendmsg+0xa98/0xc70
[  427.583203][T12616]  ? __pfx_____sys_sendmsg+0x10/0x10
[  427.583213][T12616]  ? get_compat_msghdr+0x11a/0x170
[  427.583234][T12616]  ___sys_sendmsg+0x134/0x1d0
[  427.583251][T12616]  ? __pfx____sys_sendmsg+0x10/0x10
[  427.583273][T12616]  ? find_held_lock+0x2b/0x80
[  427.583296][T12616]  __sys_sendmsg+0x16d/0x220
[  427.583311][T12616]  ? __pfx___sys_sendmsg+0x10/0x10
[  427.583333][T12616]  ? rcu_is_watching+0x12/0xc0
[  427.583349][T12616]  __do_fast_syscall_32+0x7c/0x300
[  427.583367][T12616]  do_fast_syscall_32+0x32/0x80
[  427.583383][T12616]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  427.583396][T12616] RIP: 0023:0xf7fe1579
[  427.583405][T12616] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  427.583415][T12616] RSP: 002b:00000000f54d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  427.583425][T12616] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[  427.583432][T12616] RDX: 0000000000040000 RSI: 0000000000000000 RDI: 0000000000000000
[  427.583438][T12616] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  427.583443][T12616] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  427.583449][T12616] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  427.583462][T12616]  </TASK>
[  428.171794][T12618] overlayfs: missing 'lowerdir'
[  428.445368][    T9] usb 44-1: device descriptor read/8, error -110
[  428.825856][T12645] netlink: 6 bytes leftover after parsing attributes in process `syz.3.1748'.
[  428.835977][    T9] usb usb44-port1: attempt power cycle
[  429.415253][    T9] usb usb44-port1: unable to enumerate USB device
[  430.406983][T12680] nfs: Unknown parameter 'loLk'
[  430.413169][   T40] audit: type=1326 audit(2000008892.589:1625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12675 comm="syz.5.1753" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fe1579 code=0x0
[  430.875103][T12689] FAULT_INJECTION: forcing a failure.
[  430.875103][T12689] name failslab, interval 1, probability 0, space 0, times 0
[  430.878969][T12689] CPU: 2 UID: 0 PID: 12689 Comm: syz.3.1757 Not tainted syzkaller #0 PREEMPT(full) 
[  430.878983][T12689] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  430.878990][T12689] Call Trace:
[  430.878993][T12689]  <TASK>
[  430.878998][T12689]  dump_stack_lvl+0x16c/0x1f0
[  430.879017][T12689]  should_fail_ex+0x512/0x640
[  430.879033][T12689]  ? __kmalloc_noprof+0xca/0x880
[  430.879048][T12689]  should_failslab+0xc2/0x120
[  430.879059][T12689]  __kmalloc_noprof+0xdd/0x880
[  430.879071][T12689]  ? nft_trans_alloc+0x1d/0x2d0
[  430.879089][T12689]  ? nft_trans_alloc+0x1d/0x2d0
[  430.879104][T12689]  nft_trans_alloc+0x1d/0x2d0
[  430.879119][T12689]  nf_tables_delsetelem+0xbe1/0xf30
[  430.879138][T12689]  ? __pfx_nf_tables_delsetelem+0x10/0x10
[  430.879155][T12689]  ? __pfx_nft_setelem_flush+0x10/0x10
[  430.879175][T12689]  ? __nla_parse+0x40/0x60
[  430.879200][T12689]  nfnetlink_rcv_batch+0x190d/0x2350
[  430.879222][T12689]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[  430.879237][T12689]  ? __local_bh_enable_ip+0xa4/0x120
[  430.879253][T12689]  ? __dev_queue_xmit+0xaf1/0x4490
[  430.879266][T12689]  ? __dev_queue_xmit+0xb12/0x4490
[  430.879285][T12689]  ? __pfx___dev_queue_xmit+0x10/0x10
[  430.879311][T12689]  ? __nla_parse+0x40/0x60
[  430.879324][T12689]  nfnetlink_rcv+0x3c1/0x430
[  430.879336][T12689]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  430.879353][T12689]  netlink_unicast+0x5aa/0x870
[  430.879371][T12689]  ? __pfx_netlink_unicast+0x10/0x10
[  430.879387][T12689]  ? __pfx___might_resched+0x10/0x10
[  430.879407][T12689]  netlink_sendmsg+0x8c8/0xdd0
[  430.879426][T12689]  ? __pfx_netlink_sendmsg+0x10/0x10
[  430.879444][T12689]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  430.879458][T12689]  ____sys_sendmsg+0xa98/0xc70
[  430.879471][T12689]  ? __pfx_____sys_sendmsg+0x10/0x10
[  430.879482][T12689]  ? get_compat_msghdr+0x11a/0x170
[  430.879503][T12689]  ___sys_sendmsg+0x134/0x1d0
[  430.879520][T12689]  ? __pfx____sys_sendmsg+0x10/0x10
[  430.879542][T12689]  ? find_held_lock+0x2b/0x80
[  430.879566][T12689]  __sys_sendmsg+0x16d/0x220
[  430.879582][T12689]  ? __pfx___sys_sendmsg+0x10/0x10
[  430.879603][T12689]  ? rcu_is_watching+0x12/0xc0
[  430.879620][T12689]  __do_fast_syscall_32+0x7c/0x300
[  430.879638][T12689]  do_fast_syscall_32+0x32/0x80
[  430.879654][T12689]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  430.879667][T12689] RIP: 0023:0xf7f92579
[  430.879676][T12689] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  430.879686][T12689] RSP: 002b:00000000f548655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  430.879696][T12689] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080009b40
[  430.879703][T12689] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000000
[  430.879709][T12689] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  430.879714][T12689] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  430.879720][T12689] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  430.879734][T12689]  </TASK>
[  432.288693][T12703] FAULT_INJECTION: forcing a failure.
[  432.288693][T12703] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  432.290198][T12705] netlink: 'syz.1.1762': attribute type 1 has an invalid length.
[  432.292620][T12703] CPU: 2 UID: 0 PID: 12703 Comm: syz.3.1761 Not tainted syzkaller #0 PREEMPT(full) 
[  432.292636][T12703] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  432.292643][T12703] Call Trace:
[  432.292647][T12703]  <TASK>
[  432.292651][T12703]  dump_stack_lvl+0x16c/0x1f0
[  432.292670][T12703]  should_fail_ex+0x512/0x640
[  432.292689][T12703]  _copy_from_user+0x2e/0xd0
[  432.292701][T12703]  get_compat_msghdr+0xa7/0x170
[  432.292717][T12703]  ? __pfx_get_compat_msghdr+0x10/0x10
[  432.292733][T12703]  ? __lock_acquire+0x622/0x1c90
[  432.292746][T12703]  ___sys_recvmsg+0x191/0x1a0
[  432.292763][T12703]  ? __pfx____sys_recvmsg+0x10/0x10
[  432.292780][T12703]  ? find_held_lock+0x2b/0x80
[  432.292798][T12703]  ? __pfx___might_resched+0x10/0x10
[  432.292816][T12703]  do_recvmmsg+0x55d/0x750
[  432.292833][T12703]  ? __pfx_do_recvmmsg+0x10/0x10
[  432.292858][T12703]  ? __fget_files+0x20e/0x3c0
[  432.292872][T12703]  ? handle_mm_fault+0x1f0/0xd10
[  432.292886][T12703]  __sys_recvmmsg+0x21c/0x280
[  432.292902][T12703]  ? __pfx___sys_recvmmsg+0x10/0x10
[  432.292922][T12703]  ? __pfx_ksys_write+0x10/0x10
[  432.292939][T12703]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  432.292955][T12703]  ? lockdep_hardirqs_on+0x7c/0x110
[  432.292970][T12703]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  432.292987][T12703]  __do_fast_syscall_32+0x7c/0x300
[  432.293005][T12703]  do_fast_syscall_32+0x32/0x80
[  432.293021][T12703]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  432.293034][T12703] RIP: 0023:0xf7f92579
[  432.293042][T12703] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  432.293052][T12703] RSP: 002b:00000000f548655c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  432.293062][T12703] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080001080
[  432.293069][T12703] RDX: 0000000000100000 RSI: 0000000000010022 RDI: 0000000000000000
[  432.293075][T12703] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  432.293081][T12703] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  432.293086][T12703] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  432.293099][T12703]  </TASK>
[  432.479144][T12711] random: crng reseeded on system resumption
[  432.485648][T12711] netlink: 'syz.1.1762': attribute type 10 has an invalid length.
[  432.488509][T12711] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1762'.
[  433.363237][T12705] workqueue: Failed to create a rescuer kthread for wq "bond3": -EINTR
[  433.428206][T12711] dummy0: entered promiscuous mode
[  433.673810][T12732] netlink: 'syz.1.1767': attribute type 1 has an invalid length.
[  434.419183][T12728] misc userio: Invalid payload size
[  434.747802][T12745] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1772'.
[  435.561720][ T5951] Bluetooth: hci4: command tx timeout
[  435.961622][    T9] usb 8-1: new high-speed USB device number 16 using dummy_hcd
[  436.111497][    T9] usb 8-1: Using ep0 maxpacket: 8
[  436.176989][    T9] usb 8-1: unable to get BOS descriptor or descriptor too short
[  436.179772][    T9] usb 8-1: too many configurations: 48, using maximum allowed: 8
[  436.183405][    T9] usb 8-1: unable to read config index 0 descriptor/start: -71
[  436.186574][    T9] usb 8-1: can't read configurations, error -71
[  437.953567][T12780] misc userio: Invalid payload size
[  439.112989][T12792] IPVS: wrr: SCTP 172.20.20.187:0 - no destination available
[  439.116065][ T5983] IPVS: starting estimator thread 0...
[  439.199929][T12794] IPVS: using max 42 ests per chain, 100800 per kthread
[  439.273114][   T40] audit: type=1800 audit(2000008901.463:1626): pid=12799 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1784" name="bus" dev="overlay" ino=2369 res=0 errno=0
[  439.574482][ T1419] ieee802154 phy0 wpan0: encryption failed: -22
[  439.574543][ T1419] ieee802154 phy1 wpan1: encryption failed: -22
[  440.134924][T12813] misc userio: Invalid payload size
[  440.497255][T12819] misc userio: Invalid payload size
[  442.148069][T12832] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1793'.
[  442.272015][T10227] udevd[10227]: symlink '../../loop9' '/dev/disk/by-diskseq/93.tmp-b7:9' failed: Read-only file system
[  442.291009][T11355] udevd[11355]: symlink '../../loop5' '/dev/disk/by-diskseq/94.tmp-b7:5' failed: Read-only file system
[  442.838702][   T60] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  442.985437][T10227] udevd[10227]: symlink '../../loop5' '/dev/disk/by-diskseq/94.tmp-b7:5' failed: Read-only file system
[  442.998101][   T60] usb 9-1: Using ep0 maxpacket: 8
[  443.001692][   T60] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[  443.004615][   T60] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  443.007821][   T60] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  443.011379][   T60] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  443.014299][   T60] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  443.018876][   T60] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  443.022506][T10227] udevd[10227]: symlink '../../loop5' '/dev/disk/by-diskseq/94.tmp-b7:5' failed: Read-only file system
[  443.022529][   T60] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  443.040997][T11355] udevd[11355]: symlink '../../loop9' '/dev/disk/by-diskseq/93.tmp-b7:9' failed: Read-only file system
[  443.055018][T11355] udevd[11355]: symlink '../../loop9' '/dev/disk/by-diskseq/93.tmp-b7:9' failed: Read-only file system
[  443.064921][T11355] udevd[11355]: symlink '../../loop9' '/dev/disk/by-diskseq/96.tmp-b7:9' failed: Read-only file system
[  443.152846][T12842] overlayfs: failed to resolve './file1': -2
[  443.810860][T10227] udevd[10227]: symlink '../../loop5' '/dev/disk/by-diskseq/95.tmp-b7:5' failed: Read-only file system
[  445.108023][T12876] binder: 12875:12876 ioctl 400c620e 80000000 returned -22
[  445.840378][T12894] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1812'.
[  446.047854][ T1333] usb 9-1: USB disconnect, device number 3
[  446.129023][T12908] openvswitch: netlink: Key type 30 is not supported
[  446.152291][T12912] netlink: zone id is out of range
[  446.154693][T12912] netlink: zone id is out of range
[  446.157995][T12912] netlink: zone id is out of range
[  446.160368][T12912] netlink: del zone limit has 4 unknown bytes
[  446.307346][T12930] team0: Port device team_slave_0 removed
[  446.310251][T12930] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  446.318695][T12932] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1831'.
[  446.415447][T12941] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1835'.
[  446.419510][T12941] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1835'.
[  446.421383][T12943] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1837'.
[  446.440078][T12945] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1836'.
[  446.552655][T12960] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1843'.
[  446.830074][T12997] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1862'.
[  446.869393][T13001] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1863'.
[  446.912673][T13004] openvswitch: netlink: Missing key (keys=40, expected=200000)
[  447.107573][T10227] udevd[10227]: symlink '../../loop5' '/dev/disk/by-diskseq/95.tmp-b7:5' failed: Read-only file system
[  447.118487][T13018] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  447.150980][T11355] udevd[11355]: symlink '../../loop5' '/dev/disk/by-diskseq/95.tmp-b7:5' failed: Read-only file system
[  447.186012][T13027] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  447.188440][T13027] batman_adv: batadv0: Removing interface: batadv_slave_0
[  447.958306][T13027] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  447.961403][T13027] batman_adv: batadv0: Removing interface: batadv_slave_1
[  448.312709][T10227] udevd[10227]: symlink '../../loop5' '/dev/disk/by-diskseq/95.tmp-b7:5' failed: Read-only file system
[  448.343794][T10227] udevd[10227]: symlink '../../loop5' '/dev/disk/by-diskseq/95.tmp-b7:5' failed: Read-only file system
[  448.361380][T13045] netlink: 10084 bytes leftover after parsing attributes in process `syz.5.1886'.
[  448.364266][T13045] openvswitch: netlink: Message has 4360 unknown bytes.
[  448.364701][T10227] udevd[10227]: symlink '../../loop5' '/dev/disk/by-diskseq/95.tmp-b7:5' failed: Read-only file system
[  448.404776][T10227] udevd[10227]: symlink '../../loop5' '/dev/disk/by-diskseq/95.tmp-b7:5' failed: Read-only file system
[  448.444782][T10227] udevd[10227]: symlink '../../loop5' '/dev/disk/by-diskseq/95.tmp-b7:5' failed: Read-only file system
[  448.496148][T11355] udevd[11355]: symlink '../../loop5' '/dev/disk/by-diskseq/95.tmp-b7:5' failed: Read-only file system
[  448.527429][T10227] udevd[10227]: symlink '../../loop5' '/dev/disk/by-diskseq/95.tmp-b7:5' failed: Read-only file system
[  448.557071][T10227] udevd[10227]: symlink '../../loop5' '/dev/disk/by-diskseq/95.tmp-b7:5' failed: Read-only file system
[  448.728400][T10227] udevd[10227]: symlink '../../loop5' '/dev/disk/by-diskseq/95.tmp-b7:5' failed: Read-only file system
[  448.737336][T13084] openvswitch: netlink: ct_state flags 010000e0 unsupported
[  448.771136][T10227] udevd[10227]: symlink '../../loop5' '/dev/disk/by-diskseq/95.tmp-b7:5' failed: Read-only file system
[  448.802968][T13096] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1910'.
[  448.986063][T13126] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1920'.
[  448.989078][T13114] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1920'.
[  448.992994][T13114] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1920'.
[  449.061354][T13127] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
Connection to localhost closed by remote host.
[  449.547173][ T1149] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  449.569466][   T86] smc: removing ib device syz1
[  449.572442][ T1333] syz1: Port: 1 Link DOWN
[  449.727713][ T1149] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  449.829714][ T1149] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  449.900047][   T86] ------------[ cut here ]------------
[  449.901910][   T86] GID entry ref leak for dev syz1 index 2 ref=1
[  449.904158][   T86] WARNING: CPU: 0 PID: 86 at drivers/infiniband/core/cache.c:806 gid_table_release_one+0x387/0x4b0
[  449.907522][   T86] Modules linked in:
[  449.908846][   T86] CPU: 0 UID: 0 PID: 86 Comm: kworker/u32:4 Not tainted syzkaller #0 PREEMPT(full) 
[  449.913161][   T86] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  449.918471][   T86] Workqueue: ib-unreg-wq ib_unregister_work
[  449.920353][   T86] RIP: 0010:gid_table_release_one+0x387/0x4b0
[  449.922291][   T86] Code: 07 00 00 48 85 f6 74 2b 48 89 74 24 38 e8 91 65 59 f9 48 8b 74 24 38 44 89 f1 44 89 ea 48 c7 c7 e0 18 98 8c e8 da e9 17 f9 90 <0f> 0b 90 90 e9 6e fe ff ff e8 6b 65 59 f9 48 8d bd 78 07 00 00 48
[  449.928503][   T86] RSP: 0018:ffffc9000104fb40 EFLAGS: 00010282
[  449.930612][   T86] RAX: 0000000000000000 RBX: ffff888027c47600 RCX: ffffffff817b2e58
[  449.933232][   T86] RDX: ffff888021472480 RSI: ffffffff817b2e65 RDI: 0000000000000001
[  449.935959][   T86] RBP: ffff88806b684000 R08: 0000000000000001 R09: 0000000000000000
[  449.938405][   T86] R10: 0000000000000000 R11: 0000000000000001 R12: ffffed1004f88edb
[  449.940827][   T86] R13: 0000000000000002 R14: 0000000000000001 R15: dffffc0000000000
[  449.943410][   T86] FS:  0000000000000000(0000) GS:ffff8880977e1000(0000) knlGS:0000000000000000
[  449.946384][   T86] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  449.948443][   T86] CR2: 000055bd034f0000 CR3: 0000000049b74000 CR4: 0000000000352ef0
[  449.950925][   T86] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  449.953444][   T86] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  449.956038][   T86] Call Trace:
[  449.957072][   T86]  <TASK>
[  449.957989][   T86]  ib_device_release+0xef/0x1e0
[  449.959456][   T86]  ? __pfx_ib_device_release+0x10/0x10
[  449.961120][   T86]  device_release+0xa4/0x240
[  449.962550][   T86]  kobject_put+0x1e7/0x5a0
[  449.964006][   T86]  put_device+0x1f/0x30
[  449.965538][   T86]  process_one_work+0x9cf/0x1b70
[  449.967110][   T86]  ? __pfx_process_one_work+0x10/0x10
[  449.968725][   T86]  ? assign_work+0x1a0/0x250
[  449.970141][   T86]  worker_thread+0x6c8/0xf10
[  449.971542][   T86]  ? __pfx_worker_thread+0x10/0x10
[  449.973110][   T86]  kthread+0x3c5/0x780
[  449.974971][   T86]  ? __pfx_kthread+0x10/0x10
[  449.976447][   T86]  ? rcu_is_watching+0x12/0xc0
[  449.978211][   T86]  ? __pfx_kthread+0x10/0x10
[  449.979664][   T86]  ret_from_fork+0x675/0x7d0
[  449.981135][   T86]  ? __pfx_kthread+0x10/0x10
[  449.982604][   T86]  ret_from_fork_asm+0x1a/0x30
[  449.984120][   T86]  </TASK>
[  449.985530][   T86] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  449.987916][   T86] CPU: 0 UID: 0 PID: 86 Comm: kworker/u32:4 Not tainted syzkaller #0 PREEMPT(full) 
[  449.990880][   T86] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  449.994166][   T86] Workqueue: ib-unreg-wq ib_unregister_work
[  449.996023][   T86] Call Trace:
[  449.997082][   T86]  <TASK>
[  449.998015][   T86]  dump_stack_lvl+0x3d/0x1f0
[  449.999491][   T86]  vpanic+0x640/0x6f0
[  450.000755][   T86]  ? gid_table_release_one+0x387/0x4b0
[  450.002470][   T86]  panic+0xca/0xd0
[  450.003660][   T86]  ? __pfx_panic+0x10/0x10
[  450.005104][   T86]  ? check_panic_on_warn+0x1f/0xb0
[  450.006712][   T86]  check_panic_on_warn+0xab/0xb0
[  450.008262][   T86]  __warn+0xf6/0x3c0
[  450.009491][   T86]  ? __pfx_vprintk_emit+0x10/0x10
[  450.011092][   T86]  ? gid_table_release_one+0x387/0x4b0
[  450.012780][   T86]  report_bug+0x3c3/0x580
[  450.014133][   T86]  ? gid_table_release_one+0x387/0x4b0
[  450.015830][   T86]  handle_bug+0x184/0x210
[  450.017183][   T86]  exc_invalid_op+0x17/0x50
[  450.018614][   T86]  asm_exc_invalid_op+0x1a/0x20
[  450.020198][   T86] RIP: 0010:gid_table_release_one+0x387/0x4b0
[  450.022094][   T86] Code: 07 00 00 48 85 f6 74 2b 48 89 74 24 38 e8 91 65 59 f9 48 8b 74 24 38 44 89 f1 44 89 ea 48 c7 c7 e0 18 98 8c e8 da e9 17 f9 90 <0f> 0b 90 90 e9 6e fe ff ff e8 6b 65 59 f9 48 8d bd 78 07 00 00 48
[  450.027766][   T86] RSP: 0018:ffffc9000104fb40 EFLAGS: 00010282
[  450.029596][   T86] RAX: 0000000000000000 RBX: ffff888027c47600 RCX: ffffffff817b2e58
[  450.032066][   T86] RDX: ffff888021472480 RSI: ffffffff817b2e65 RDI: 0000000000000001
[  450.034378][   T86] RBP: ffff88806b684000 R08: 0000000000000001 R09: 0000000000000000
[  450.036786][   T86] R10: 0000000000000000 R11: 0000000000000001 R12: ffffed1004f88edb
[  450.039244][   T86] R13: 0000000000000002 R14: 0000000000000001 R15: dffffc0000000000
[  450.041761][   T86]  ? __warn_printk+0x198/0x350
[  450.043413][   T86]  ? __warn_printk+0x1a5/0x350
[  450.044876][   T86]  ib_device_release+0xef/0x1e0
[  450.046403][   T86]  ? __pfx_ib_device_release+0x10/0x10
[  450.048093][   T86]  device_release+0xa4/0x240
[  450.049538][   T86]  kobject_put+0x1e7/0x5a0
[  450.050982][   T86]  put_device+0x1f/0x30
[  450.052288][   T86]  process_one_work+0x9cf/0x1b70
[  450.053795][   T86]  ? __pfx_process_one_work+0x10/0x10
[  450.055326][   T86]  ? assign_work+0x1a0/0x250
[  450.056805][   T86]  worker_thread+0x6c8/0xf10
[  450.058226][   T86]  ? __pfx_worker_thread+0x10/0x10
[  450.059867][   T86]  kthread+0x3c5/0x780
[  450.061159][   T86]  ? __pfx_kthread+0x10/0x10
[  450.062644][   T86]  ? rcu_is_watching+0x12/0xc0
[  450.064150][   T86]  ? __pfx_kthread+0x10/0x10
[  450.065542][   T86]  ret_from_fork+0x675/0x7d0
[  450.066968][   T86]  ? __pfx_kthread+0x10/0x10
[  450.068398][   T86]  ret_from_fork_asm+0x1a/0x30
[  450.069895][   T86]  </TASK>
[  450.071614][   T86] Kernel Offset: disabled
[  450.072979][   T86] Rebooting in 86400 seconds..

VM DIAGNOSIS:
09:48:46  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000044 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff852db115 RDI=ffffffff9adf1e40 RBP=ffffffff9adf1e00 RSP=ffffc9000104f4b0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=0000000000000044 R14=ffffffff9adf1e00 R15=ffffffff852db0b0
RIP=ffffffff852db13f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880977e1000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055bd034f0000 CR3=0000000049b74000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000104080 Opmask01=0000000000000080 Opmask02=00000000ffff7fdf Opmask03=0000000000000000
Opmask04=00000000ffffefff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 44455a494c414954 494e495f43455355
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005649b0687dd0
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005649b0675510
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00ff000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000ff00
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7373734216000673 431e161e035c1810
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1c1f115c435d4316 10120300161e121d
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 317a79732f646e61 62696e69666e692f 6c6175747269762f 736563697665642f
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 005600051f40494c 43055c5155484005 424b4c55554c4e53 004057005b1a0f00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000564cd4fcf901 0000000000000051 0000000000000034
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7766736c6d612c38 2c312c30722c4339 312c3739312c3938 312c3838312c3538
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 312c3937312c3136 312c3131312c3031 312c32452c34442c 30442c45412c3841
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2c34412c42382c30 382c33372c32372c 31376b2c34312c32 2c312c30652d3033
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4442654344464670 3243353176333030 30623a7475706e69 3d5341494c41444f
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 323032302c313032 302c394631302c32 4331302c38423130 2c464131302c4541
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000152d511 RBX=0000000000000001 RCX=ffffffff8b6302a9 RDX=0000000000000000
RSI=ffffffff8db0011e RDI=ffffffff8bf1e7c0 RBP=ffffed1003b5b490 RSP=ffffc9000046fde8
R8 =0000000000000001 R9 =ffffed1005666655 R10=ffff88802b3332ab R11=0000000000000001
R12=0000000000000001 R13=ffff88801dada480 R14=ffffffff908363d0 R15=0000000000000000
RIP=ffffffff8b62ed5f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880978e1000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fe425c6f07f CR3=0000000049b74000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=00000000e08e000e 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000104080 Opmask01=0000000000000080 Opmask02=00000000ffff7fdf Opmask03=0000000000000000
Opmask04=00000000ffffefff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 44455a494c414954 494e495f43455355
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005649b0687dd0
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005649b0675510
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00ff000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000ff00
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7373734216000673 431e161e035c1810
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1c1f115c435d4316 10120300161e121d
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 317a79732f646e61 62696e69666e692f 6c6175747269762f 736563697665642f
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 005600051f40494c 43055c5155484005 424b4c55554c4e53 004057005b1a0f00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000564cd4fcf901 0000000000000051 0000000000000034
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7766736c6d612c38 2c312c30722c4339 312c3739312c3938 312c3838312c3538
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 312c3937312c3136 312c3131312c3031 312c32452c34442c 30442c45412c3841
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2c34412c42382c30 382c33372c32372c 31376b2c34312c32 2c312c30652d3033
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4442654344464670 3243353176333030 30623a7475706e69 3d5341494c41444f
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 323032302c313032 302c394631302c32 4331302c38423130 2c464131302c4541
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=00000000008c6ee3 RBX=0000000000000002 RCX=ffffffff8b6302a9 RDX=0000000000000000
RSI=ffffffff8db0011e RDI=ffffffff8bf1e7c0 RBP=ffffed1003b5b920 RSP=ffffc9000047fde8
R8 =0000000000000001 R9 =ffffed1005686655 R10=ffff88802b4332ab R11=0000000000000001
R12=0000000000000002 R13=ffff88801dadc900 R14=ffffffff908363d0 R15=0000000000000000
RIP=ffffffff8b62ed5f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880979e1000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007ffdd03e70b0 CR3=000000000e182000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000001 Opmask01=0000000000000001 Opmask02=0000000000180000 Opmask03=0000000000000000
Opmask04=00000000fffffdff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000a60ce07b 00000000cec3662e
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a57889c4ce8db78
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 66656c2073657479 62203036203a6b6e 696c74656e205d34 31313331545b5d00
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6665662073657473 6220303620306164 6366746564205734 3131333154515700
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 202c315b20746573 6e75203a29676e69 7265747369676572 6e752820336d6973
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2e6b636568632065 7361656c70202c6e 6f69746172756769 666e6f6320746e65
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 747369736e6f636e 69206e6120687469 77207466656c206e 6565622065766168
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2079616d20305f65 76616c735f6d6165 7420656361667265 746e49202e796461
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 65726c6120646574 74696d6d6f632073 65676e6168632065 6d6f732068746977
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 313a746e65736572 7020426b32393036 3a7365676170737a 20426b383230323a
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=00000000008ff2f5 RBX=0000000000000003 RCX=ffffffff8b6302a9 RDX=0000000000000000
RSI=ffffffff8db0011e RDI=ffffffff8bf1e7c0 RBP=ffffed10037e3000 RSP=ffffc9000048fde8
R8 =0000000000000001 R9 =ffffed10056a6655 R10=ffff88802b5332ab R11=0000000000000001
R12=0000000000000003 R13=ffff88801bf18000 R14=ffffffff908363d0 R15=0000000000000000
RIP=ffffffff8b62ed5f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097ae1000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fe425c6f07f CR3=000000002a030000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000300c61 Opmask01=0000000000000001 Opmask02=0000000000180000 Opmask03=0000000000000000
Opmask04=00000000fffffdff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffded11cffb 00007ffded11cffb
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffded11d500 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffded11d500 0000003000000018
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5d3937333131302e 33340000303d7265 626d754e00006d65 7400002e27303200
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5733373331313024 3334000030377265 6267754400006765 7400002427303200
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 67203630383a632e 65686361632f6572 6f632f646e616269 6e69666e692f7372
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2e6b636568632065 7361656c70202c6e 6f69746172756769 666e6f6320746e65
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 747369736e6f636e 69206e6120687469 77207466656c206e 6565622065766168
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2079616d20305f65 76616c735f6d6165 7420656361667265 746e49202e796461
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 65726c6120646574 74696d6d6f632073 65676e6168632065 6d6f732068746977
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 313a746e65736572 7020426b32393036 3a7365676170737a 20426b383230323a
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000