last executing test programs:

2m43.909516587s ago: executing program 1 (id=2):
socket$packet(0x11, 0x3, 0x300)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0xc, 0x100008b}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000880)=@delchain={0x964, 0x65, 0x2, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2, 0xf}, {0x8, 0x1}, {0x0, 0x8}}, [@filter_kind_options=@f_route={{0xa}, {0x4}}, @TCA_CHAIN={0x8, 0xb, 0x6}, @filter_kind_options=@f_bpf={{0x8}, {0x920, 0x2, [@TCA_BPF_FD={0x8}, @TCA_BPF_NAME={0x12, 0x7, './file0/file0\x00'}, @TCA_BPF_ACT={0x9c, 0x1, [@m_simple={0x38, 0x1e, 0x0, 0x0, {{0xb}, {0xc, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0x8, 0x3, 'bpf\x00'}]}, {0x4}, {0xc, 0x7, {0x0, 0x79d0f023c2b305dd}}, {0xc, 0x8, {0x3, 0x2}}}}, @m_connmark={0x60, 0x15, 0x0, 0x0, {{0xd}, {0x4}, {0x2d, 0x6, "726786f30e509174574dc37f3b098ea66afe225634df06865f963558e69516e656d1b4d3ec4c23aaed"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}, @TCA_BPF_FLAGS_GEN={0x8, 0x9, 0x3}, @TCA_BPF_NAME={0x12, 0x7, './file0/file0\x00'}, @TCA_BPF_POLICE={0x410, 0x2, [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x3, 0x12d5, 0x1, 0x9, 0x9, 0x3, 0x4, 0x8, 0x3, 0x1000, 0x4, 0x3, 0x8, 0xd11, 0x6, 0x7, 0x0, 0x3, 0x9, 0x6, 0xa, 0x4, 0x7, 0x9, 0x7, 0xe0b, 0x4000000, 0x9c90, 0x6d, 0x8, 0x2, 0x1, 0x401, 0x6, 0x0, 0x2, 0x523, 0x2d, 0x3, 0x7, 0xa0000000, 0x3, 0x0, 0xb4a9, 0xa9c, 0x5, 0xf, 0x6, 0x7, 0x3, 0xfffffffc, 0xc151, 0x40000, 0x0, 0xe0, 0xc78, 0x0, 0x9, 0xffff, 0xd, 0x1, 0x34, 0x8, 0xc5, 0x7fff, 0x2, 0x400, 0x97, 0x200000, 0x1, 0x1ff, 0x8, 0x8001, 0x79, 0xfffffff7, 0x8, 0x1, 0x8, 0x7, 0xf5000000, 0x5, 0x7, 0x4, 0x0, 0x2, 0x33d, 0xfffffff9, 0xfffffffe, 0x800, 0x5e6, 0x4, 0x401, 0x4, 0x7fffffff, 0x627, 0x7, 0x401, 0x0, 0x3, 0x2, 0x5, 0xfffffff9, 0x40, 0xffff, 0x4, 0x3ce0, 0x6, 0x2, 0x9, 0x6, 0x6, 0xb24b, 0x3, 0x4, 0xff, 0x2, 0x3, 0x60, 0x1, 0xf19e, 0x10001, 0xff, 0xda0, 0x92, 0x4, 0x8f7, 0x200, 0x10001, 0x26, 0x47283dd5, 0x8, 0x9, 0x7, 0x8, 0x0, 0x1, 0xb6, 0xfff, 0xf, 0x6430ff80, 0xad, 0x1, 0x0, 0x2, 0x5445, 0xffffffff, 0x10001, 0x9, 0x7, 0x3, 0xf75, 0x9, 0x8, 0x6, 0x800, 0xffffffff, 0x2, 0x401, 0xc, 0x3ff, 0xffffffff, 0x7, 0x200, 0x3, 0x5, 0x0, 0x9, 0x8db, 0x9, 0x0, 0x4, 0x8, 0x7fff, 0x4, 0x1ff, 0x5, 0x4, 0x9, 0xa, 0x8, 0xffffff01, 0x3, 0x3, 0x5, 0x14dfeffa, 0xf0, 0x3, 0x8c2, 0xc2dd, 0x3, 0xb, 0x9, 0x10001, 0x38c2, 0x2, 0x0, 0xdd8f, 0x9, 0x0, 0xdc4, 0x200, 0x2, 0x7, 0x1b06, 0x9, 0x0, 0x4, 0x7, 0x8, 0x2, 0x5, 0x4, 0x6, 0xdc8, 0x5, 0x2, 0x9327, 0x9, 0x401, 0x100, 0xc, 0x5, 0x1, 0x7, 0x7fffffff, 0x2, 0xa5c2, 0xfffffff7, 0x2, 0x7f, 0x6, 0xfffffffd, 0x4, 0xfffffff7, 0x0, 0x0, 0x90000, 0x7fffffff, 0x200, 0x9, 0x0, 0x80000000, 0x4000, 0x6, 0x10000, 0x7, 0x8662d0a3, 0x3ff, 0x71, 0x7fff, 0x2, 0x4, 0x4, 0x6, 0x0, 0x2]}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x4}]}, @TCA_BPF_ACT={0x438, 0x1, [@m_ctinfo={0xe8, 0x4, 0x0, 0x0, {{0x8}, {0xc, 0x2, 0x0, 0x1, [@TCA_CTINFO_ZONE={0x6, 0x4, 0x53}]}, {0xb1, 0x6, "c14309d56e11f3e88ad36b866a06cff47631fe31f29c2d83a2e6f0bf13045227d5cfc3c4f57b9a903cf86c567461f60a0fb69f562613042765a016443f0181bfeba7e917511c20f8585f40c15cc948ecdd08e5acfddde4c4d1eeb8e4156045960e71ed491970a569097578137069861cf0a28baddf976ebf5e96eca138cadcea7bfb921158875a49e4975a5dbb3ab54f13ee0f5254fe6f752f120208ad930afb01c2417b4953f4774567f9bbf1"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x4, 0x2}}}}, @m_skbmod={0xbc, 0x4, 0x0, 0x0, {{0xb}, {0x8c, 0x2, 0x0, 0x1, [@TCA_SKBMOD_PARMS={0x20, 0x2, {{0x9, 0xf8, 0x10000000, 0x8, 0x4}, 0x2}}, @TCA_SKBMOD_DMAC={0xa, 0x3, @broadcast}, @TCA_SKBMOD_SMAC={0xa, 0x4, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, @TCA_SKBMOD_SMAC={0xa, 0x4, @broadcast}, @TCA_SKBMOD_SMAC={0xa, 0x4, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x35}}, @TCA_SKBMOD_SMAC={0xa, 0x4, @broadcast}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0x80, 0x2, 0x7, 0x7, 0x8001}, 0x4}}, @TCA_SKBMOD_SMAC={0xa, 0x4, @random="7d04a5219f97"}]}, {0x5, 0x6, "cc"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_nat={0x168, 0x1b, 0x0, 0x0, {{0x8}, {0xcc, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0xff, 0x1, 0xffffffffffffffff, 0x0, 0xefb}, @dev={0xac, 0x14, 0x14, 0x3c}, @empty, 0xffffff00, 0x800}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x4, 0x4, 0x6, 0x8, 0x9}, @local, @dev={0xac, 0x14, 0x14, 0x26}, 0x0, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x357a, 0x9, 0x7, 0x101, 0x5}, @broadcast, @remote, 0x0, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x5f2, 0x40, 0x5, 0x1, 0x1}, @broadcast, @remote, 0x0, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x5, 0x7, 0x20000000, 0x7, 0x59c3}, @loopback, @loopback, 0xff}}]}, {0x75, 0x6, "eef24a41a52f4314740d880a9749ccbff0e34c74cfcac1e63977a597552daff459d49bffeac63ea994857207934fd2d00f52f25f0f3d8c80b3a218a170d8b1961a361663d049269537cb537e3789e52bb3db1eec99b6cdd8dd022491e57495f8bd3687340df10a1e43f1a2790d3910c094"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x3}}}}, @m_sample={0x128, 0xc, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_TRUNC_SIZE={0x8, 0x4, 0x7ff}, @TCA_SAMPLE_PSAMPLE_GROUP={0x8, 0x5, 0x7fffffff}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x3, 0x5, 0x5, 0x5, 0x8}}]}, {0xd3, 0x6, "bb347cb231d166f0c03814f598648f23666283c896a976c960c776c3901a9f6f749353e663e66ba0e6c6a654f24af3b14bc1664e74d4d28419b80f521457ff6398841e44a31dfdd005e0591ed7cfaf9e939908d68a03f869d21b3fa784c88279d5684eeed5d0cd95f273ee1cba83edab69366db8d14e46dd496f9ce964723ebd7b80f6daf61cf7e4ae4761c2035f5529fed333bd77194bef5f05097a5adb20290cb8dac61c17876464505c26220f93d88744281f7ef786b338b4c5e1becf9600db12da4bd9ecf8a70544ebce58ff2f"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}]}, 0x964}, 0x1, 0x0, 0x0, 0x81}, 0x20000080)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x800, 0x0, 0x0, 0x8a}, 0x9c)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0xd18c9b35, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030036000b05d25a806c8c6f94f90224fc60100005000a000200053582c137153e37000c0980fc0b10000300", 0x33fe0}], 0x1}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000500)='/sys/kernel/kexec_crash_size', 0x202, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[], 0x30}, 0x1, 0x0, 0x0, 0xaa34a4cfdf933201}, 0x10)
r2 = syz_open_dev$loop(&(0x7f0000000280), 0x80010a, 0x1cb600)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_freeze_timeout', 0x82803, 0x8e)
ioctl$LOOP_CONFIGURE(r2, 0x4c0a, &(0x7f0000000080)={r3, 0x0, {0x0, 0x0, 0x0, 0x6, 0x4000000000000ffd, 0x0, 0x0, 0x1d, 0x14, "faf98317e5a1149989fc8dbe43ea6acc96e3a2503dc3bd3fe37d58128bbad0099cebdc25f5d69098c8b534464c516bdd8a0f350000e35abdb80e38f5eb010001", "32d8cc263d9e234b02000000000000004a6783cdd3dfe7800b2d7b6aa54cc5001fcaed1e831fa79a000000020000000000000400", "67523760fd40f78d2cfc03d81a8ca55ba139c01802c4dae4162e43ac61b7ad33", [0x8, 0x5]}})
ioctl$LOOP_SET_BLOCK_SIZE(r2, 0x4c09, 0x400)
fsetxattr$trusted_overlay_origin(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1)
socket$inet_mptcp(0x2, 0x1, 0x106)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="6e65772064656661756c7420303030303030303030303030303034060000000000001900000000000000"], 0x2a, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
pselect6(0x40, &(0x7f0000000240)={0x0, 0x0, 0x1ff, 0xffffffffffffffdb, 0x2000000, 0x8000, 0x4, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x6, 0xffffffffffffffff, 0x9, 0x4, 0xf, 0x80000006}, 0x0, 0x0)

2m41.942954439s ago: executing program 1 (id=6):
r0 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
r1 = fcntl$dupfd(r0, 0x406, r0)
setsockopt$packet_int(r1, 0x107, 0x11, 0x0, 0x0)
ioctl$BINDER_SET_MAX_THREADS(r1, 0x40046205, &(0x7f0000000000)=0x1002)
read$FUSE(r1, &(0x7f0000001480)={0x2020, 0x0, 0x0, <r2=>0x0}, 0x2052)
ioctl$BTRFS_IOC_SNAP_DESTROY(0xffffffffffffffff, 0x5000940f, &(0x7f0000000480)={{}, "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"})
unshare(0x62040200)
syz_usb_connect(0x0, 0x4a, &(0x7f0000000080)=ANY=[@ANYRESHEX=r2], 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB="600000000206010800000000000000000000000005000400000000000900020073797a31000000001400078008001240000000000500140008000000050005000a000000050001000600000011000300686173683a69702c706f7274"], 0x60}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000c80)=ANY=[@ANYBLOB="5c0000000a0601080000000000000000070000000900020073797a31000000000500010007000000340007801800018014000240fe8000000000000000000000000000bb060004400e1f00cd050007008800000006000540"], 0x5c}, 0x1, 0x0, 0x0, 0x10000042}, 0x90)

2m26.827941329s ago: executing program 32 (id=6):
r0 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
r1 = fcntl$dupfd(r0, 0x406, r0)
setsockopt$packet_int(r1, 0x107, 0x11, 0x0, 0x0)
ioctl$BINDER_SET_MAX_THREADS(r1, 0x40046205, &(0x7f0000000000)=0x1002)
read$FUSE(r1, &(0x7f0000001480)={0x2020, 0x0, 0x0, <r2=>0x0}, 0x2052)
ioctl$BTRFS_IOC_SNAP_DESTROY(0xffffffffffffffff, 0x5000940f, &(0x7f0000000480)={{}, "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"})
unshare(0x62040200)
syz_usb_connect(0x0, 0x4a, &(0x7f0000000080)=ANY=[@ANYRESHEX=r2], 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB="600000000206010800000000000000000000000005000400000000000900020073797a31000000001400078008001240000000000500140008000000050005000a000000050001000600000011000300686173683a69702c706f7274"], 0x60}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000c80)=ANY=[@ANYBLOB="5c0000000a0601080000000000000000070000000900020073797a31000000000500010007000000340007801800018014000240fe8000000000000000000000000000bb060004400e1f00cd050007008800000006000540"], 0x5c}, 0x1, 0x0, 0x0, 0x10000042}, 0x90)

6.490896292s ago: executing program 4 (id=508):
r0 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r0, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
bind$vsock_stream(r0, &(0x7f00000003c0)={0x28, 0x0, 0xffffffff, @local}, 0x10)
r1 = io_uring_setup(0x2dfd, &(0x7f0000000700)={0x0, 0xb11e, 0x1000, 0x2, 0x30a})
syz_emit_ethernet(0xf87, &(0x7f0000001180)={@local, @multicast, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "6410a6", 0xf51, 0x0, 0x0, @private2={0xfc, 0x2, '\x00', 0x1}, @local, {[@routing={0x84}], "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"}}}}}, 0x0)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
r2 = io_uring_setup(0x7625, &(0x7f0000000600)={0x0, 0x43b6, 0x1, 0x0, 0x28e})
io_uring_register$IORING_REGISTER_FILES(r2, 0x1e, &(0x7f0000000000)=[r1], 0x1)
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r3 = syz_open_dev$dri(&(0x7f0000000000), 0xfffffffc, 0xc00)
r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000280), 0x8040, 0x0)
ioctl$RTC_SET_TIME(r4, 0x4024700a, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f0000000040)={0x9, 0x5, 0x20ffd})
r5 = syz_open_dev$dri(&(0x7f00000008c0), 0xd22, 0x0)
r6 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRESHEX=r6, @ANYBLOB=',wfdno=', @ANYRESHEX=r7, @ANYBLOB=',\x00'])
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000140), 0x2, 0x9}}, 0x20)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r5, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r8=>0x0], 0x0, 0x0, 0x0, 0x1})
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r9, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r10 = socket(0x400000000010, 0x3, 0x0)
r11 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r12=>0x0})
r13 = getpgid(0xffffffffffffffff)
sched_setaffinity(r13, 0x8, &(0x7f0000000200)=0x1)
sendmsg$nl_route_sched(r10, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r12, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000140)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd27, 0xa000, {0x0, 0x0, 0x0, r12, {0xe, 0x7}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_KEY_ENC_IPV4_SRC={0x8, 0x1b, @multicast1}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x80}, 0x0)
ioctl$DRM_IOCTL_MODE_GETCRTC(r5, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r8, <r14=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r5, 0xc06864ce, &(0x7f0000000440)={r14, 0x0, 0x0, 0x0, 0x0, [], [0x0, 0x3, 0x2, 0x4], [0x0, 0x0, 0x3], [0x4000000, 0xc, 0x0, 0x4]})

5.939777573s ago: executing program 4 (id=512):
socket$packet(0x11, 0x3, 0x300)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0xc, 0x100008b}, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x10)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x800, 0x0, 0x0, 0x8a}, 0x9c)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[], 0x30}, 0x1, 0x0, 0x0, 0xaa34a4cfdf933201}, 0x10)
syz_open_dev$loop(&(0x7f0000000280), 0x80010a, 0x1cb600)
tkill(0x0, 0x26)
socket$inet_mptcp(0x2, 0x1, 0x106)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="6e65772064656661756c7420303030303030303030303030303034060000000000001900000000000000"], 0x2a, 0x0)
keyctl$read(0xb, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f0000000240)={0x0, 0x0, 0x1ff, 0xffffffffffffffdb, 0x2000000, 0x8000, 0x4, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x6, 0xffffffffffffffff, 0x9, 0x4, 0xf, 0x80000006}, 0x0, 0x0)

4.922774412s ago: executing program 2 (id=517):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000001080)={0x200000, 0x200000})
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x168)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000040)={0x0, <r0=>0x0}, &(0x7f0000000180)=0xc)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}], [{@subj_role={'subj_role', 0x3d, '\\'}}, {@hash}, {@func={'func', 0x3d, 'FILE_CHECK'}}, {@rootcontext={'rootcontext', 0x3d, 'system_u'}}, {@obj_user={'obj_user', 0x3d, 'overlay\x00'}}, {@uid_eq={'uid', 0x3d, r0}}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@dont_appraise}, {@smackfsfloor={'smackfsfloor', 0x3d, '\xe4&'}}, {@obj_user={'obj_user', 0x3d, 'workdir'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
open$dir(&(0x7f0000000140)='./file0\x00', 0x8000, 0x80)

4.632564135s ago: executing program 2 (id=520):
setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000300)={@in6={{0xa, 0x4e23, 0x101, @private2, 0x8e4}}, 0x0, 0x0, 0x2b, 0x0, "bb02a3c364ca41d6357e54452401400400941292f4925a1e1ea6324d6193fcf19b49f3eefb1f56c54dc46d8b6d2ccd118aa0cc1dc2767bbe000100060000010100"}, 0xd8)
r0 = socket$kcm(0x23, 0x5, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000240)=0x9, 0x4)
listen(r0, 0x800)
accept4(r0, 0x0, 0x0, 0x80000)
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000b00)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-blowfish-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5", 0x4)
r4 = accept4(r3, 0x0, 0x0, 0x80800)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x8080)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="a80000000201010400000000141a000002000000240001801400018008000100e000000108000200e00000010c000280050001"], 0xa8}}, 0x0)
sendmmsg$alg(r4, &(0x7f0000000280)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0x2000847}], 0x1, 0x40800)
recvmmsg$unix(r4, &(0x7f0000000d40)=[{{0x0, 0x0, &(0x7f0000001240)=[{&(0x7f0000000580)=""/21, 0x15}], 0x1}}], 0x1, 0x40000000, 0x0)
write$tun(r1, &(0x7f0000000380)=ANY=[@ANYBLOB="1c0000f500000000000000862dfdff000000"], 0x78)

4.348944691s ago: executing program 4 (id=521):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x10, 0x80002, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000280)={'batadv0\x00', <r2=>0x0})
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f00000002c0)={'batadv_slave_1\x00', <r3=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="310300200000000000400800000008000300", @ANYRES32=r2, @ANYBLOB="08000600", @ANYRES32=r3, @ANYBLOB="f8791413fa30e0eb5acd589491c4cacff6b85c868b6aa393171674f4140747dcf0b8eb3f61b54e92bc73fadaebb46ffa0fbedb5e8c5ae4089b67868453aa2e02ab418a0fbc21ee692d"], 0x24}, 0x1, 0x0, 0x0, 0x400400c}, 0x0)

4.206680887s ago: executing program 4 (id=522):
syz_usb_connect(0x0, 0x24, &(0x7f0000000140)=ANY=[@ANYBLOB="1201000070961c40e90f55dbfb690102c9030902120001000000000904"], 0x0)
r0 = syz_open_dev$I2C(&(0x7f0000000000), 0xa840, 0x582)
r1 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x2001)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_misc(r2, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f00000002c0)={r2, 0x0, {0x2a00, 0x80010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d960001000000000000000000007efff100004000", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c527d3d458dd4992861ac00", "f4bd000000801900", [0x8, 0xffffffff9673e35d]}})
setsockopt$MRT_ADD_VIF(r2, 0x0, 0xca, &(0x7f0000000040)={0x1, 0x8, 0x41, 0x6, @vifc_lcl_addr=@private=0xa010100, @loopback}, 0x10)
pread64(r0, 0x0, 0x0, 0x5)
keyctl$link(0x8, 0x0, 0xfffffffffffffffd)

3.865768502s ago: executing program 3 (id=524):
mkdir(&(0x7f00000020c0)='./file0\x00', 0x1a)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e79"])
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x804000, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX])
utimes(&(0x7f0000000000)='./file0/file0\x00', &(0x7f00000000c0))
openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x300000d, 0x1)

3.865025424s ago: executing program 2 (id=525):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f00000004000000040000001200"], 0x48)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1)
ioctl$DRM_IOCTL_SET_VERSION(0xffffffffffffffff, 0xc0106407, &(0x7f00000000c0)={0x1, 0x4, 0x99, 0x6})
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f0000006300)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000040)={0x50, 0x0, r2, {0x7, 0x1f, 0x0, 0x34014c40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}}, 0x50)
syz_fuse_handle_req(r1, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000001d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20, 0x0, 0x0, {0x0, 0x1a}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x80101, 0x101)
ioctl$TUNSETIFINDEX(r3, 0x40806685, &(0x7f00000000c0))
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000002c0)=ANY=[@ANYRES32=r0, @ANYRES32=r4, @ANYBLOB="0500"/12, @ANYRES32, @ANYBLOB="bfb074d36559e2", @ANYRES64=0x0], 0x10)
close(r0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r6, 0x400448cb, 0x0)
openat$snapshot(0xffffffffffffff9c, 0x0, 0x100, 0x0)
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000002c80), 0x40c02)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r7, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r7, 0x40bc5311, &(0x7f00000001c0)={0x80, 0x1, 'client1\x00', 0xffffffff80000006, "d62e360d8f9179cf", "20e48560999fd132fff000", 0x7fffffff})
write$sndseq(r7, &(0x7f00000000c0)=[{0x5, 0xbf, 0x0, 0x0, @time, {}, {0x1, 0x81}, @connect={{0x6, 0x3}, {0xf9, 0x8}}}], 0x1c)
sendmsg$OSF_MSG_REMOVE(r5, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000040)={0x268, 0x1, 0x5, 0x3, 0x0, 0x0, {0x3, 0x0, 0xa}, [{{0x254, 0x1, {{0x1, 0x4}, 0x2, 0x0, 0x1, 0x401, 0xb, 'syz0\x00', "000000006400000000000000dec1fc8c5a3f96ee7f72d2458a199fccb7a5a37c", "57565ac1ebcc91999bd2611bbe317f5f14885cc9ebd5ed7819ee2702b4aadcd4", [{0xfffc, 0xb, {0x3, 0x2}}, {0x1, 0x2, {0x3, 0x8001}}, {0x9, 0x1, {0x1, 0xffffd8a1}}, {0x8, 0x1, {0x2, 0x8001}}, {0x199, 0x200, {0x0, 0x5}}, {0x0, 0xc000, {0x3, 0xa11d}}, {0x3ff, 0xd569, {0x0, 0xbae}}, {0x6, 0x3, {0x0, 0x7}}, {0x2, 0xa57c, {0x2, 0x3}}, {0x9, 0x1ff, {0x0, 0xffffffff}}, {0xd2, 0x104, {0x0, 0x9a}}, {0x3, 0x2, {0x1, 0x4}}, {0x6, 0x1, {0x1, 0x5}}, {0x9, 0x1, {0x3, 0x6}}, {0x4, 0x46, {0x0, 0x4}}, {0xa345, 0x101, {0x6, 0x2e}}, {0x5, 0x9f59, {0x2, 0x3}}, {0x55b, 0x5, {0x2, 0x9}}, {0x1, 0x1, {0x2, 0x532}}, {0x7fff, 0x9, {0x2, 0x80000000}}, {0x2, 0x7, {0x2, 0x2e}}, {0x3, 0xfffa, {0x1, 0xbffffff7}}, {0xff, 0x5, {0x3, 0x1}}, {0xfffb, 0xffff, {0x1, 0x8}}, {0x3ff, 0x9, {0x2, 0x487837ff}}, {0x6, 0xfd7b, {0x3, 0x2d5}}, {0x1168, 0x7fff, {0x2, 0x7fff}}, {0x21fa, 0x3, {0x3, 0x10001}}, {0x2, 0x5, {0x1, 0x4d}}, {0x40, 0x8, {0x2, 0x401}}, {0x7, 0x3ff, {0x0, 0xfffffffe}}, {0x2, 0x6182, {0x1, 0xc1}}, {0x205, 0x2, {0x3, 0x5}}, {0x1, 0xc0b, {0x3, 0x7}}, {0x3ff, 0x400, {0x2, 0x8}}, {0x8, 0x8, {0x3, 0x4}}, {0x3, 0x8, {0x1, 0xfffffffa}}, {0x31, 0x3, {0x0, 0x1}}, {0xf5a, 0x2, {0x2, 0x6}}, {0x84, 0xcf5, {0x2, 0x8000}}]}}}]}, 0x268}, 0x1, 0x0, 0x0, 0x8040}, 0x8800)
socket$inet_udp(0x2, 0x2, 0x0)

3.720821559s ago: executing program 3 (id=527):
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x1000, 0x0)
ioctl$CDROM_LAST_WRITTEN(r0, 0x5395, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000000), 0x2, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000000)=0xe)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000cc0)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x94)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGPROP(r2, 0x40047438, &(0x7f0000000180)=""/235)
ioctl$PPPIOCSFLAGS1(r5, 0x4004743a, &(0x7f0000000300))
pwritev(r4, &(0x7f0000001700)=[{&(0x7f0000001480)="000dabf895e633de4dbe7a1dcd7d", 0xe}, {&(0x7f0000001380)="df1454995c5de2cd510310bbfd1f87515a2eff658e37e4de8ae443b64d8c41058cb07cd20676322c06862f87261a6c8db9fdf756306cb797b86a4447fef5887089d988d2db1db73abf62fc1cdd21c03420ecd63331a5aeb1a112c0bfc34c2cb1813d57206bfe8ea423751def326e8cde4a00d0b24469f8c5ee0863aaff8f739e027e4f927266236d13dfe85e0f1a279a49e1ca16bdee222ff4cf7f0dd03d5f81b083e2c9d1cec66bd5eacf915bc2b72adc9c77be282963c1a7d8d262f7759e8dbb6e0aa429f32399193b44159c111a5f9afabc61b22bb32091d83890491e5501f0b8e8d8c0ea0052febeee8658ee1b1221", 0xf1}, {&(0x7f00000014c0)="72ac03adc93dab4ffe006e47a755252b64b4b9d44d746c012557b4ecf207d54a84100cb83abb8c0ceb8171aed5db2e85fdf1db", 0x33}, {&(0x7f0000001780)="fc49009d1f8d6fe890b3666e118dad4e7399cd4bb13f478a1dfdc113225f91f4dad19bf699e3d8c15418a802961332ac4a717da4140e7ef2378b00d59bdb87897a3515aa1381eb5e2059808ad7c4eb0e81dbd366b2d547c495466d08e580b726003008c79e6017ff05893130438fb438bcfb05eda081ee05c0a61cc56e0449ae892b921d36fa4b01bfb75f17a36b030dcfe0f19e48594a3df92471ceb92d6e5337dc2e9dad3e0f5e126ce4542811cc156418e2e88f4d3be0d8", 0xb9}, {&(0x7f0000001600)="26b694bf36a7cff72a9b9e93cd7231318ac9f5f6b7219b72bdf10979caf86c77159b2c38d40921b0ad4b423a078c3f1bdc46c8369acb670467117d24546ad99cb38839144983fc3d619d652a3cce47f838da230a14673f37c620b552d58da5584e26e22eaad17b9b9db45002883c5ef68311b67a817e268e0ee05aae8f479005b2c0a3aaab9b3e061852f78d8e99d2ddbae6ecac627ec5335d16e20513b04cbde99e920e2515d264a2b706a228d257ea57a6deb969b120d6c352b5e2b180e6d5a3bb89aa10169ede382e33fb0f6ed4fcf2f223580b3e5df5014e2bfe1921bb958036035fb22741a84c144b", 0xeb}], 0x5, 0x20000002, 0x100400)
r6 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
r7 = syz_open_dev$mouse(&(0x7f0000000340), 0x0, 0x8042)
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
r8 = creat(&(0x7f0000000000)='./file0\x00', 0x3)
r9 = dup2(r8, r8)
ioctl$BLKTRACESETUP(r9, 0x1265, 0x0)
read$FUSE(r7, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{0x1, <r10=>0xffffffffffffffff}, &(0x7f0000000280), &(0x7f00000002c0)=r3}, 0x1c)
r11 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000440)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
r12 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x15, 0x1c, &(0x7f0000000100)=ANY=[@ANYBLOB="1808000000000000000000000200000018110000", @ANYRES32=r12, @ANYBLOB="0000000000000000b702000014000000b7060000000000008500000005000000bf0900000000000035090100000000009500000000000000b7020000000000007b9af8ff00000000b5090000000000007baaf0ff00000000ae8900000000000007080000f8ffffffbf8400000000000007040000f0ffffffc70200000800000018260000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7050000080000004608f0ff76000000bf980000000000005608f8ffffff00008500000007000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @sk_reuseport=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000680)={'batadv_slave_1\x00', <r13=>0x0})
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000a40)={r3, 0xe0, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000740)=[0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0xa, 0x8, &(0x7f0000000780)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], <r14=>0x0, 0xcc, &(0x7f0000000840), 0x0, 0x10, &(0x7f0000000400), &(0x7f00000008c0), 0x8, 0x27, 0x8, 0x8, &(0x7f0000000840)}}, 0x10)
r15 = bpf$ITER_CREATE(0x21, &(0x7f0000000a80), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x4, 0x15, &(0x7f0000000d80)=ANY=[@ANYBLOB="1800000001000000000000009362032eb9f2d9831f2ecd", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000014000000b703000000000000850000030000000000000000000000005509010000000000950000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b702000000000000850000008600000018280000", @ANYRES32=r12, @ANYBLOB="0000000000000000bf91000000000000b7020000010000008500000084000000b7000000000000009500000000000000"], &(0x7f00000004c0)='GPL\x00', 0xfffffff9, 0xe5, &(0x7f0000000580)=""/229, 0x41100, 0x40, '\x00', r13, @fallback=0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000700)={0x1, 0xa, 0xf, 0xeaa7}, 0x10, r14, r3, 0x0, &(0x7f0000000ac0)=[r15], 0x0, 0x10, 0x1}, 0x94)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r6, 0xc01864c6, &(0x7f0000000000)={0x0, 0x3c, 0x80800})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000300)={0x0, &(0x7f0000000240)=[0x0], 0x0, 0x0, 0x0, 0x1})
r16 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r16, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)

2.882794064s ago: executing program 0 (id=531):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x141042, 0x1)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r1, 0x0)
io_setup(0x5, &(0x7f0000000140)=<r2=>0x0)
r3 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000080), 0xa8301, 0x0)
ioctl$FBIOPUT_CON2FBMAP(r3, 0x4610, 0x0)
r4 = eventfd2(0x0, 0x0)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000200), 0x10044, &(0x7f0000000540)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESDEC=r4, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
io_submit(r2, 0x1, &(0x7f0000000280)=[&(0x7f0000000300)={0x1802, 0x0, 0x0, 0x5, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x1, r4}])
shutdown(r1, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000180), r0)
bind$inet(r5, &(0x7f0000000240)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2d}}, 0x10)
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r7=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x2})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
ioperm(0x0, 0x2, 0x7e)
timer_settime(r7, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
creat(0x0, 0x168)
openat$dir(0xffffffffffffff9c, 0x0, 0x20600, 0x1c2)
r8 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000100), 0xc2900, 0x0)
sendfile(r6, r8, 0x0, 0x201f00)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nl802154(&(0x7f0000001540), r9)
ioctl$sock_SIOCGIFINDEX_802154(r9, 0x8933, &(0x7f0000001780)={'wpan0\x00', <r11=>0x0})
sendmsg$NL802154_CMD_SET_LBT_MODE(r9, &(0x7f0000001840)={0x0, 0x0, &(0x7f0000001800)={&(0x7f00000017c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r10, @ANYBLOB="010029bd7000fedbdf250008000300", @ANYRES32=r11, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x48000}, 0x4000000)
sendmmsg$inet(r5, &(0x7f0000000040)=[{{&(0x7f0000000800)={0x2, 0x4e23, @multicast2}, 0x10, 0x0}}, {{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000000)="0311b75056ea1c630f25473237000a668776bda79944b9d62c", 0x19}], 0x1}}], 0x2, 0x2404c044)
syz_emit_ethernet(0x46, &(0x7f00000000c0)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaabb86dd6012000800103afffe8000000000000000000000bbff0200000000e0ffffff0000000000018600907801000200000000000000002394d53766b0a6194ba83c7b971e6e0221fa3def0104000071dad2f7dddbb4"], 0x0)

2.393715466s ago: executing program 4 (id=532):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCSETS(r0, 0x404c4701, &(0x7f0000000040)={0x1, 0x0, 0x1, 0x0, 0x5, "3e000010000000418e9e126aa25b1b0100"})
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$int_in(r1, 0x40000000af01, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x40102, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x0, 0x1, 0x0, &(0x7f0000001600)=""/118, 0x0, 0x3332f000})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000000))
r3 = dup(r2)
ioctl$VHOST_NET_SET_BACKEND(r1, 0x4008af30, &(0x7f0000000180)={0x0, r3})
close(0x3)
r4 = openat$sysfs(0xffffff9c, &(0x7f00000000c0)='/sys/power/pm_trace', 0x0, 0x0)
write$UHID_DESTROY(r4, &(0x7f0000000100), 0x4)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000200), r5)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$TUNGETVNETHDRSZ(r4, 0x800454d7, &(0x7f00000001c0))
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r8, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20040000}, 0x24040084)
r9 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r3, 0x0, &(0x7f00000004c0)=<r10=>0x0)
sendmmsg(r4, &(0x7f0000004380)=[{{&(0x7f00000003c0)=@pppol2tp={0x18, 0x1, {0x0, r3, {0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x4, 0x1, 0x1}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000440)="9f68225da0594e2684a7a00dea7987177d2210c1f997a4f296ad0e67b2fa3daebd543617f7ac0477ef9566e6", 0x2c}], 0x1}}, {{&(0x7f0000000500)=@nfc={0x27, r10, 0x1, 0x6}, 0x80, &(0x7f0000000680)=[{&(0x7f0000000580)="facfe27ddefb7531e44b10f3b4832d0d7db8dd68f4d0daa781a7c203f4d4892da153190d98a909834b8c10630ed44d4cebaf383cca962262d3f57597721f3d973256d0d11ab59b7e950c11ea44936710106581a45e48d136fdfb210458004c53dfb406439c132e8b212d958d59093323baaa7bc06c1f0f12eab61998b3229a948265bc67f5ad0eff58278b358b2b03f40a2a786caca9bb0458d2e9d085a00420c2cc80a1d5838aceff283ba9ad197c2b3ede24887eac776043a8b1ba88bb11cb46e0135641ab", 0xc6}], 0x1}}, {{&(0x7f00000006c0)=@vsock={0x28, 0x0, 0xffffffff}, 0x80, &(0x7f00000009c0)=[{&(0x7f0000000740)="78cc66f83bd2b8c8e52586cd9443b2776947abe65fe25853d421b2fdac7dabf073bb28e01cbc9c446175e2e3db4aa4199a0b0e856fa0df1f760447734741b0bf97a77764fe27be917ea215b2c6a722454f2af1cfdd752aca64ed82464bf7113a4c8eb43c3b0320c884acaa24d7d1404845e50933e394aba8d09874bdddeeff3554782f2b50f66dca41885f69", 0x8c}, {&(0x7f0000000800)="8f9939ea83a9346831880e52104699789eb1103ab17c8c42e01c6053b9a0fd79a966f2d0a88463eaeb0c58276aaa51a16c453955426632d7c9e421c8658e963087c3edd542dfd96748c0428f8808697a25c4a83b6202b682d1277f15540f845246ff1ed3ba36", 0x66}, {&(0x7f0000000880)="826ad011a83741863f440d3de730926eb1007e78961fb912c73ec106c01115f30580c1745f26e10602610e43a49ab9beeec0b199deb22b0f61e6eaf5579796c9e3c99740833498ca9e41ac1b6fe827f69c9815096cdfe5a35645b6de16f9646d4fd2", 0x62}, {&(0x7f0000000900)="72ac9a34e591d863f45aebf5be92483c9c5d6e1d0bce4bd3608792b4c25c01e96446403f1bb5d5fb10814705655f6e8cbf6cdd31caa9147761ea224e6e96dc21afc95b5f73e16b2a6c375c05113bf3645fa61047ba94853d8df051b46aad3f68d83943408955a39dfafa5d0b49f05ac17b22bb22e0b7ea4f781c1b5c4b31d9cb103b8fd09424d23d00debf480d956e3c0fac1638f3345c909843dbdb5aa2d0ff8a44be650f31bd714fea", 0xaa}], 0x4, &(0x7f0000004440)=ANY=[], 0x20f4}}, {{&(0x7f0000003b80)=@x25, 0x80, &(0x7f0000003d00)=[{&(0x7f0000003c00)="8cafabae6f3ee7d94702224c0db6a6665b6ff43bfa547c1d9bccc37de36263fa69b86668730a8324160261b6f6bd3103b5cda86508bc9ff66584e21569ed88baf04950710d61547c65c3c20cacfcc41c92b8e7c76eb9a839759127604375511d4ddce7b83aa323af7b4904c48ace7cf553fb25e4f10adefd95415c6049bc2018399ca7857fbb6dc2c9cc01fe56375812168a7ddd49d74d39ac10c81b3de93f2e94a20cbc1890cebadf9f73f6f6853ab27bdc379762daac4d46f3d044fd2478", 0xbf}, {&(0x7f0000003cc0)="6d97", 0x2}], 0x2, &(0x7f0000003d40)=ANY=[@ANYBLOB="a4000000080100007f000000166131c8be6bf92ba797d8c84ec372ba20ba2dd3594a8e7aa1f4d8fe6c2cfe4c599dc3fa0a502d71c8b9c0c007fc74e5e12c0e83a5442ea17d7127caef1a735327970f4728fde4dba3e3b31a7e784cf0e2daf209fc3f9722476924466a722309668f65dc1f8b08a0bf1ffb80f8d3377751e75ff05b3ca31ff75cbcb8a8691a472439cc52b825d221386e0669667c7e8b444678dfa0d34f80"], 0xa4}}, {{&(0x7f0000003e00)=@un=@file={0x0, './file0\x00'}, 0x80, &(0x7f0000003f80)=[{&(0x7f0000003e80)="7f87b80ac6860c5f7a0ab11e0d710d12475dd28db0b05aaa5879f80ded5c5d6cc4fd0d78ce392b26c6a6e40754a4fef6b62977ef45d5cb937763c429ce2443dab6e51613ff7cd2cc3615179117b238ef2697340dba34de6c2d2b2ccc4fc60587f8ad2e9e69d917aa75440cde39264ef74369a71797dead3172bee53d348849f62b1c5c6fe17233f04c5884d59ef2cf2f3c1601a861b7d7dec5c2a07daf70f0869c7892838bceb6a2f80431c72ac15d32456c146c924c7d617fd22cb7c832bdda0e8c5e2519bf8605d97d9cbd1422", 0xce}], 0x1, &(0x7f0000000a00)=ANY=[@ANYBLOB="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"], 0x398}}], 0x5, 0x10)
ioctl$VIDIOC_G_FMT(r9, 0xc0d05604, &(0x7f00000002c0)={0xa, @sliced={0x8001, [0x6, 0x6, 0x6, 0x8, 0x8, 0x1ff, 0x3, 0x0, 0x79a, 0x6, 0x150a, 0x7fff, 0x7, 0x8, 0x6, 0x2, 0xfffb, 0x7, 0xfff8, 0x7, 0x280, 0x8000, 0x2, 0x4294, 0x4, 0x5, 0xeb95, 0x1, 0x8, 0x4, 0x5, 0x7, 0x0, 0x7f, 0xa62c, 0x7, 0xffff, 0x8, 0x40, 0x9, 0x6, 0x6, 0xf, 0x8, 0x193, 0x9, 0x7, 0xfcc4], 0x6}})
r11 = syz_open_dev$dri(&(0x7f0000000dc0), 0x1ff, 0x2)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r11, 0xc01864c6, &(0x7f0000000040)={0x0})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r11, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000240)=[0x0, 0x0], 0x2, 0x800})

2.218472874s ago: executing program 3 (id=533):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCSETS(r0, 0x404c4701, &(0x7f0000000040)={0x1, 0x0, 0x1, 0x0, 0x5, "3e000010000000418e9e126aa25b1b0100"})
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$int_in(r1, 0x40000000af01, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x40102, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x0, 0x1, 0x0, &(0x7f0000001600)=""/118, 0x0, 0x3332f000})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000000))
r3 = dup(r2)
ioctl$VHOST_NET_SET_BACKEND(r1, 0x4008af30, &(0x7f0000000180)={0x0, r3})
close(0x3)
r4 = openat$sysfs(0xffffff9c, &(0x7f00000000c0)='/sys/power/pm_trace', 0x0, 0x0)
write$UHID_DESTROY(r4, &(0x7f0000000100), 0x4)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000200), r5)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$TUNGETVNETHDRSZ(r4, 0x800454d7, &(0x7f00000001c0))
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r8, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20040000}, 0x24040084)
r9 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r3, 0x0, &(0x7f00000004c0)=<r10=>0x0)
sendmmsg(r4, &(0x7f0000004380)=[{{&(0x7f00000003c0)=@pppol2tp={0x18, 0x1, {0x0, r3, {0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x4, 0x1, 0x1}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000440)="9f68225da0594e2684a7a00dea7987177d2210c1f997a4f296ad0e67b2fa3daebd543617f7ac0477ef9566e6", 0x2c}], 0x1}}, {{&(0x7f0000000500)=@nfc={0x27, r10, 0x1, 0x6}, 0x80, &(0x7f0000000680)=[{&(0x7f0000000580)="facfe27ddefb7531e44b10f3b4832d0d7db8dd68f4d0daa781a7c203f4d4892da153190d98a909834b8c10630ed44d4cebaf383cca962262d3f57597721f3d973256d0d11ab59b7e950c11ea44936710106581a45e48d136fdfb210458004c53dfb406439c132e8b212d958d59093323baaa7bc06c1f0f12eab61998b3229a948265bc67f5ad0eff58278b358b2b03f40a2a786caca9bb0458d2e9d085a00420c2cc80a1d5838aceff283ba9ad197c2b3ede24887eac776043a8b1ba88bb11cb46e0135641ab", 0xc6}], 0x1}}, {{&(0x7f00000006c0)=@vsock={0x28, 0x0, 0xffffffff}, 0x80, &(0x7f00000009c0)=[{&(0x7f0000000740)="78cc66f83bd2b8c8e52586cd9443b2776947abe65fe25853d421b2fdac7dabf073bb28e01cbc9c446175e2e3db4aa4199a0b0e856fa0df1f760447734741b0bf97a77764fe27be917ea215b2c6a722454f2af1cfdd752aca64ed82464bf7113a4c8eb43c3b0320c884acaa24d7d1404845e50933e394aba8d09874bdddeeff3554782f2b50f66dca41885f69", 0x8c}, {&(0x7f0000000800)="8f9939ea83a9346831880e52104699789eb1103ab17c8c42e01c6053b9a0fd79a966f2d0a88463eaeb0c58276aaa51a16c453955426632d7c9e421c8658e963087c3edd542dfd96748c0428f8808697a25c4a83b6202b682d1277f15540f845246ff1ed3ba36", 0x66}, {&(0x7f0000000880)="826ad011a83741863f440d3de730926eb1007e78961fb912c73ec106c01115f30580c1745f26e10602610e43a49ab9beeec0b199deb22b0f61e6eaf5579796c9e3c99740833498ca9e41ac1b6fe827f69c9815096cdfe5a35645b6de16f9646d4fd2", 0x62}, {&(0x7f0000000900)="72ac9a34e591d863f45aebf5be92483c9c5d6e1d0bce4bd3608792b4c25c01e96446403f1bb5d5fb10814705655f6e8cbf6cdd31caa9147761ea224e6e96dc21afc95b5f73e16b2a6c375c05113bf3645fa61047ba94853d8df051b46aad3f68d83943408955a39dfafa5d0b49f05ac17b22bb22e0b7ea4f781c1b5c4b31d9cb103b8fd09424d23d00debf480d956e3c0fac1638f3345c909843dbdb5aa2d0ff8a44be650f31bd714fea", 0xaa}], 0x4, &(0x7f0000004440)=ANY=[], 0x20f4}}, {{&(0x7f0000003b80)=@x25, 0x80, &(0x7f0000003d00)=[{&(0x7f0000003c00)="8cafabae6f3ee7d94702224c0db6a6665b6ff43bfa547c1d9bccc37de36263fa69b86668730a8324160261b6f6bd3103b5cda86508bc9ff66584e21569ed88baf04950710d61547c65c3c20cacfcc41c92b8e7c76eb9a839759127604375511d4ddce7b83aa323af7b4904c48ace7cf553fb25e4f10adefd95415c6049bc2018399ca7857fbb6dc2c9cc01fe56375812168a7ddd49d74d39ac10c81b3de93f2e94a20cbc1890cebadf9f73f6f6853ab27bdc379762daac4d46f3d044fd2478", 0xbf}, {&(0x7f0000003cc0)="6d97", 0x2}], 0x2, &(0x7f0000003d40)=ANY=[@ANYBLOB="a4000000080100007f000000166131c8be6bf92ba797d8c84ec372ba20ba2dd3594a8e7aa1f4d8fe6c2cfe4c599dc3fa0a502d71c8b9c0c007fc74e5e12c0e83a5442ea17d7127caef1a735327970f4728fde4dba3e3b31a7e784cf0e2daf209fc3f9722476924466a722309668f65dc1f8b08a0bf1ffb80f8d3377751e75ff05b3ca31ff75cbcb8a8691a472439cc52b825d221386e0669667c7e8b444678dfa0d34f80"], 0xa4}}, {{&(0x7f0000003e00)=@un=@file={0x0, './file0\x00'}, 0x80, &(0x7f0000003f80)=[{&(0x7f0000003e80)="7f87b80ac6860c5f7a0ab11e0d710d12475dd28db0b05aaa5879f80ded5c5d6cc4fd0d78ce392b26c6a6e40754a4fef6b62977ef45d5cb937763c429ce2443dab6e51613ff7cd2cc3615179117b238ef2697340dba34de6c2d2b2ccc4fc60587f8ad2e9e69d917aa75440cde39264ef74369a71797dead3172bee53d348849f62b1c5c6fe17233f04c5884d59ef2cf2f3c1601a861b7d7dec5c2a07daf70f0869c7892838bceb6a2f80431c72ac15d32456c146c924c7d617fd22cb7c832bdda0e8c5e2519bf8605d97d9cbd1422", 0xce}], 0x1, &(0x7f0000000a00)=ANY=[@ANYBLOB="5000000003010000df000000b7b99eaf3bde7b445815c8b66221a599bb481f2eee156dc4d570ba8598c2966a6c97cd64ff94d3180072123ed190b379420b59c43db8bcbf932e716836aaa8839253000080000000000000007d340000b11e6a18c1c1290b8621f294804e1d7ce6cc5f3a2c7a943c21bd84ce1a8774a51828086485610b67fba1b7bd41f31427590e9938e3b74c4757db63ebe899ef951cc704dd300641b4f357f5f34d92458a49ef6a342ca9d6ac3aea6949028c9f1cd3fb40edb0570febbdaaca532704d11b92c30000500000001100000002000000ec27dae80eacc44bd66b7011e866cc042acdf03224ed04c91e35633005069d1baca5860257ad5fcfe78bca52180be0a29c77a60e4294d8bc9c4957bb69d1f98cdb000000f8000000150300000f00000002e20893e511c6539578a2bfd6018fde368945ff463c09d8a2a3aeaf3e81e3ca78c0bdb190f70a8059c72705e527b14a8037ed8ef698412505840c869a45d257d81f2a28a6891265390d4feff1cb66699013dbc2a0e7ec84915c7cc71e48e7a88f1d8f2792735a1cc26f5f0085346b56f70b7067fda10234dce4f6864bf3888c02eaa8d47be0191e9bd754e7ea893fa693ab1beeac77cd61cd0e2b5bc360aeb22503c3568bbe8ae1e06ab81c835481eaaa626e49b685d0529a6eb976a1ee95a5727a74d44a2892dc1011080617801b306e7135cd41de36785c00ead90e4c4ed87c2c566c3d85085738267116a00000000d010000090000004797bb2d593bdbd8f7f6aea25a909b4b5ba441928dd40b00b0dc58174f9be063724525c2306af293dc9e6b94ae5fbfcd42e3553e60c2d24e84bf52c87fb29ea857d8891e6b6abd9ec561855eb332e70b61f888272aa642e2640145ed8deffe174497fefba3b95c8898cb6825e7f3c312f92a562110f50a29a1abe648da4fbbc1e5c3526c17e292d958e78bdc98ee61fe6cba000068000000020100008a0a00009cd3ae9eeaf5d0cdb6e87ad20e40570f69fb9b7c5482d174ec681337870f2b512d754722d37edf7592eeb9cd62afb5a091e8bc3a335d4e9368f373d578bc29c7a21d8529a356934f06eb505c1748e1072c477f7be99f07ad0a8c3b004c0000000000000006000000f88da85cf19f317d3feb0f33028984e307424a889c42cc19126b79021760cf0e83c0f9f8057afa8e7a80a0e7008df2cb4832c1a0f2ac85f65e0077caad0000002c00000014010000010100003a1b70a1e4b3158a53db17d4d4388b2c48ea9348c1be3271cd24d8ce66e34e81f31a6ca3f96a47c6413f8a7a72fc0a44786b8e86a224723ffb31f4ad0ac135c078ecba3e"], 0x398}}], 0x5, 0x10)
ioctl$VIDIOC_G_FMT(r9, 0xc0d05604, &(0x7f00000002c0)={0xa, @sliced={0x8001, [0x6, 0x6, 0x6, 0x8, 0x8, 0x1ff, 0x3, 0x0, 0x79a, 0x6, 0x150a, 0x7fff, 0x7, 0x8, 0x6, 0x2, 0xfffb, 0x7, 0xfff8, 0x7, 0x280, 0x8000, 0x2, 0x4294, 0x4, 0x5, 0xeb95, 0x1, 0x8, 0x4, 0x5, 0x7, 0x0, 0x7f, 0xa62c, 0x7, 0xffff, 0x8, 0x40, 0x9, 0x6, 0x6, 0xf, 0x8, 0x193, 0x9, 0x7, 0xfcc4], 0x6}})
r11 = syz_open_dev$dri(&(0x7f0000000dc0), 0x1ff, 0x2)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r11, 0xc01864c6, &(0x7f0000000040)={0x0})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r11, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000240)=[0x0, 0x0], 0x2, 0x800})

2.072638344s ago: executing program 4 (id=534):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder1\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, &(0x7f0000000300)={@fd={0x66642a85, 0x0, r2}, @flat=@weak_binder={0x77622a85, 0x101, 0x291a}, @flat=@binder={0x73622a85, 0xb}}, 0x0}}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2, 0x1000000, &(0x7f0000000580)="b318"})
mkdir(&(0x7f0000000140)='./file0\x00', 0x63)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x3, &(0x7f0000001900)=ANY=[@ANYBLOB="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", @ANYRES32=0x0], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socket$can_raw(0x1d, 0x3, 0x1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r7 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000580)={0x20, 0x35, 0x107, 0xfffffffe, 0x0, {0x1, 0x7c}, [@nested={0xc, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x48815}, 0xc000)
fcntl$dupfd(r7, 0x0, r7)

1.50415598s ago: executing program 3 (id=535):
mkdir(&(0x7f00000020c0)='./file0\x00', 0x1a)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76"])
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x804000, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX])
utimes(&(0x7f0000000000)='./file0/file0\x00', &(0x7f00000000c0))
openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x300000d, 0x1)

1.372688732s ago: executing program 0 (id=536):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000080000000d"], 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000020000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000810000087b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000002c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f00000000c0)=r5, 0x4)
sendmsg$unix(r4, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = socket$packet(0x11, 0x2, 0x300)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r6, 0x1, 0x32, &(0x7f0000000180)=r7, 0x4)
r8 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000002000000000000000000082295"], &(0x7f0000000040)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r8, 0x1f4, 0xe, 0x0, &(0x7f00000001c0)="ffffffff7f830105000000c801d7", 0x0, 0x7, 0x300, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff80fe, 0x8}, 0x4c)

1.332723879s ago: executing program 3 (id=537):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000003c0)=@file={0x1, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
recvmmsg(r0, 0x0, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000000)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb45, 0x100000000009, 0xa, 0x0, 0x3}, 0x0)
socket$unix(0x1, 0x1, 0x0)
pipe2$watch_queue(&(0x7f0000000280)={<r2=>0xffffffffffffffff}, 0x80)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, 0x0)
keyctl$KEYCTL_WATCH_KEY(0x20, 0x0, r2, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x2c240, 0x0)
r4 = syz_open_dev$loop(&(0x7f0000000080), 0x47ffffa, 0x122c42)
ioctl$LOOP_CONFIGURE(r4, 0x4c0a, &(0x7f0000000440)={r3, 0x2000, {0x0, 0x0, 0x0, 0x4, 0x7ffffffffffffffb, 0x0, 0x0, 0x0, 0x1c, "339f020bbe780000000000000008000140080d0ec0dd17c18e8438ef2a0000000000000000000000004000", "c787a16c1ca43f7339f3d3289737f0374c72a964a0193b3e8772fd29f35239d2000000000000000000000000000000000200", "24431a5e77a68e174f000300ffffff00", [0x2]}})
ioctl$LOOP_CHANGE_FD(r4, 0x4c06, r3)
socket$nl_xfrm(0x10, 0x3, 0x6)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
keyctl$revoke(0x3, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380), 0x80042, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000080)=0x3)
arch_prctl$ARCH_GET_UNTAG_MASK(0x4001, &(0x7f0000000040))
socket$netlink(0x10, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0xc, &(0x7f00000001c0)=@framed={{}, [@call={0x85, 0x0, 0x0, 0xae}, @printk={@d, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0xb0}}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x68}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0x2}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getrlimit(0xc, &(0x7f0000000300))
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)

819.193928ms ago: executing program 0 (id=538):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'batadv0\x00', <r2=>0x0})
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'batadv_slave_1\x00', <r3=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="310300200000000000400800000008000300", @ANYRES32=r2, @ANYBLOB="08000600", @ANYRES32=r3, @ANYBLOB="f8791413fa30e0eb5acd589491c4cacff6b85c868b6aa393171674f4140747dcf0b8eb3f61b54e92bc73fadaebb46ffa0fbedb5e8c5ae4089b67868453aa2e02ab418a0fbc21ee692d"], 0x24}, 0x1, 0x0, 0x0, 0x400400c}, 0x0)

574.632036ms ago: executing program 0 (id=539):
r0 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000e00)=@newtaction={0x13, 0x30, 0x53b, 0x0, 0x0, {0x9}, [{0x4c, 0x1, [@m_sample={0x48, 0x1, 0x0, 0x0, {{0xb}, {0x1c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PARMS={0x18, 0x2, {0x9, 0x0, 0x10000000, 0xfffffffc, 0x3ff}}]}, {0x4}, {0xc}, {0xc, 0x4}}}]}]}, 0x60}}, 0x0)

562.14132ms ago: executing program 2 (id=540):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000100))
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x80002, 0x0)
r2 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00'})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r4=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="380000005400e501000000000000000007000000", @ANYBLOB="20000100", @ANYRES32=r4, @ANYBLOB="010003007f"], 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmmsg$alg(r1, &(0x7f00000000c0), 0x492492492492627, 0x0)

460.941348ms ago: executing program 0 (id=541):
r0 = socket$nl_generic(0x11, 0x3, 0x10)
sendmsg(r0, &(0x7f0000000640)={&(0x7f0000000440)=@caif=@dgm={0x25, 0xd}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000000)="4ba72c4cfd81685544f46c3f8035", 0x5ee}], 0x1, 0x0, 0x0, 0x11000000}, 0x0)

297.596691ms ago: executing program 0 (id=542):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCSETS(r0, 0x404c4701, &(0x7f0000000040)={0x1, 0x0, 0x1, 0x0, 0x5, "3e000010000000418e9e126aa25b1b0100"})
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$int_in(r1, 0x40000000af01, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x40102, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x0, 0x1, 0x0, &(0x7f0000001600)=""/118, 0x0, 0x3332f000})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000000))
r3 = dup(r2)
ioctl$VHOST_NET_SET_BACKEND(r1, 0x4008af30, &(0x7f0000000180)={0x0, r3})
close(0x3)
r4 = openat$sysfs(0xffffff9c, &(0x7f00000000c0)='/sys/power/pm_trace', 0x0, 0x0)
write$UHID_DESTROY(r4, &(0x7f0000000100), 0x4)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000200), r5)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$TUNGETVNETHDRSZ(r4, 0x800454d7, &(0x7f00000001c0))
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r8, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20040000}, 0x24040084)
r9 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r3, 0x0, &(0x7f00000004c0)=<r10=>0x0)
sendmmsg(r4, &(0x7f0000004380)=[{{&(0x7f00000003c0)=@pppol2tp={0x18, 0x1, {0x0, r3, {0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x4, 0x1, 0x1}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000440)="9f68225da0594e2684a7a00dea7987177d2210c1f997a4f296ad0e67b2fa3daebd543617f7ac0477ef9566e6", 0x2c}], 0x1}}, {{&(0x7f0000000500)=@nfc={0x27, r10, 0x1, 0x6}, 0x80, &(0x7f0000000680)=[{&(0x7f0000000580)="facfe27ddefb7531e44b10f3b4832d0d7db8dd68f4d0daa781a7c203f4d4892da153190d98a909834b8c10630ed44d4cebaf383cca962262d3f57597721f3d973256d0d11ab59b7e950c11ea44936710106581a45e48d136fdfb210458004c53dfb406439c132e8b212d958d59093323baaa7bc06c1f0f12eab61998b3229a948265bc67f5ad0eff58278b358b2b03f40a2a786caca9bb0458d2e9d085a00420c2cc80a1d5838aceff283ba9ad197c2b3ede24887eac776043a8b1ba88bb11cb46e0135641ab", 0xc6}], 0x1}}, {{&(0x7f00000006c0)=@vsock={0x28, 0x0, 0xffffffff}, 0x80, &(0x7f00000009c0)=[{&(0x7f0000000740)="78cc66f83bd2b8c8e52586cd9443b2776947abe65fe25853d421b2fdac7dabf073bb28e01cbc9c446175e2e3db4aa4199a0b0e856fa0df1f760447734741b0bf97a77764fe27be917ea215b2c6a722454f2af1cfdd752aca64ed82464bf7113a4c8eb43c3b0320c884acaa24d7d1404845e50933e394aba8d09874bdddeeff3554782f2b50f66dca41885f69", 0x8c}, {&(0x7f0000000800)="8f9939ea83a9346831880e52104699789eb1103ab17c8c42e01c6053b9a0fd79a966f2d0a88463eaeb0c58276aaa51a16c453955426632d7c9e421c8658e963087c3edd542dfd96748c0428f8808697a25c4a83b6202b682d1277f15540f845246ff1ed3ba36", 0x66}, {&(0x7f0000000880)="826ad011a83741863f440d3de730926eb1007e78961fb912c73ec106c01115f30580c1745f26e10602610e43a49ab9beeec0b199deb22b0f61e6eaf5579796c9e3c99740833498ca9e41ac1b6fe827f69c9815096cdfe5a35645b6de16f9646d4fd2", 0x62}, {&(0x7f0000000900)="72ac9a34e591d863f45aebf5be92483c9c5d6e1d0bce4bd3608792b4c25c01e96446403f1bb5d5fb10814705655f6e8cbf6cdd31caa9147761ea224e6e96dc21afc95b5f73e16b2a6c375c05113bf3645fa61047ba94853d8df051b46aad3f68d83943408955a39dfafa5d0b49f05ac17b22bb22e0b7ea4f781c1b5c4b31d9cb103b8fd09424d23d00debf480d956e3c0fac1638f3345c909843dbdb5aa2d0ff8a44be650f31bd714fea", 0xaa}], 0x4, &(0x7f0000004440)=ANY=[], 0x20f4}}, {{&(0x7f0000003b80)=@x25, 0x80, &(0x7f0000003d00)=[{&(0x7f0000003c00)="8cafabae6f3ee7d94702224c0db6a6665b6ff43bfa547c1d9bccc37de36263fa69b86668730a8324160261b6f6bd3103b5cda86508bc9ff66584e21569ed88baf04950710d61547c65c3c20cacfcc41c92b8e7c76eb9a839759127604375511d4ddce7b83aa323af7b4904c48ace7cf553fb25e4f10adefd95415c6049bc2018399ca7857fbb6dc2c9cc01fe56375812168a7ddd49d74d39ac10c81b3de93f2e94a20cbc1890cebadf9f73f6f6853ab27bdc379762daac4d46f3d044fd2478", 0xbf}, {&(0x7f0000003cc0)="6d97", 0x2}], 0x2, &(0x7f0000003d40)=ANY=[@ANYBLOB="a4000000080100007f000000166131c8be6bf92ba797d8c84ec372ba20ba2dd3594a8e7aa1f4d8fe6c2cfe4c599dc3fa0a502d71c8b9c0c007fc74e5e12c0e83a5442ea17d7127caef1a735327970f4728fde4dba3e3b31a7e784cf0e2daf209fc3f9722476924466a722309668f65dc1f8b08a0bf1ffb80f8d3377751e75ff05b3ca31ff75cbcb8a8691a472439cc52b825d221386e0669667c7e8b444678dfa0d34f80"], 0xa4}}, {{&(0x7f0000003e00)=@un=@file={0x0, './file0\x00'}, 0x80, &(0x7f0000003f80)=[{&(0x7f0000003e80)="7f87b80ac6860c5f7a0ab11e0d710d12475dd28db0b05aaa5879f80ded5c5d6cc4fd0d78ce392b26c6a6e40754a4fef6b62977ef45d5cb937763c429ce2443dab6e51613ff7cd2cc3615179117b238ef2697340dba34de6c2d2b2ccc4fc60587f8ad2e9e69d917aa75440cde39264ef74369a71797dead3172bee53d348849f62b1c5c6fe17233f04c5884d59ef2cf2f3c1601a861b7d7dec5c2a07daf70f0869c7892838bceb6a2f80431c72ac15d32456c146c924c7d617fd22cb7c832bdda0e8c5e2519bf8605d97d9cbd1422", 0xce}], 0x1, &(0x7f0000000a00)=ANY=[@ANYBLOB="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"], 0x398}}], 0x5, 0x10)
ioctl$VIDIOC_G_FMT(r9, 0xc0d05604, &(0x7f00000002c0)={0xa, @sliced={0x8001, [0x6, 0x6, 0x6, 0x8, 0x8, 0x1ff, 0x3, 0x0, 0x79a, 0x6, 0x150a, 0x7fff, 0x7, 0x8, 0x6, 0x2, 0xfffb, 0x7, 0xfff8, 0x7, 0x280, 0x8000, 0x2, 0x4294, 0x4, 0x5, 0xeb95, 0x1, 0x8, 0x4, 0x5, 0x7, 0x0, 0x7f, 0xa62c, 0x7, 0xffff, 0x8, 0x40, 0x9, 0x6, 0x6, 0xf, 0x8, 0x193, 0x9, 0x7, 0xfcc4], 0x6}})
r11 = syz_open_dev$dri(&(0x7f0000000dc0), 0x1ff, 0x2)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r11, 0xc01864c6, &(0x7f0000000040)={0x0})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r11, 0xc01864c6, &(0x7f0000000080)={&(0x7f0000000240)=[0x0, 0x0], 0x2, 0x800})

206.815584ms ago: executing program 2 (id=543):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$FIOCLEX(r0, 0x5451)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{0xffffffffffffffff, <r1=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000040)}, 0x1c)
ioctl$XFS_IOC_GETPARENTS(r1, 0xc028583e, &(0x7f00000001c0)={{[0x3, 0x1, 0xffffff60]}, 0x0, 0x2, 0x2, 0x0, &(0x7f00000000c0)=[{{@_ha_fsid={[0x0, 0x5]}, {0x5, 0x7, 0x3, 0xdb}}, 0x77, 0x0, '}\x15.)\x00'}, {{@_ha_fsid={[0x4, 0x2]}, {0x7fff, 0x5d69, 0x1, 0x2}}, 0x9, 0x0, '*[\x00'}, {{@_ha_fsid={[0xac3, 0x4]}, {0x0, 0x2, 0x5, 0x27}}, 0x80000000, 0x0, '{\x00'}, {{@align=0x6, {0x2, 0x6, 0xe1, 0x2}}, 0x4e, 0x0, '#\x00'}, {{@_ha_fsid={[0x7fff, 0x7]}, {0x7, 0x9, 0x400, 0xfffffffffffffff8}}, 0x9b, 0x0, '\x1a\xa4\x00'}, {{@align, {0x1, 0x24, 0x3, 0x10001}}, 0xfffffe01, 0x0, '\x00'}, {{@_ha_fsid={[0xa, 0xd]}, {0x1, 0x0, 0x7, 0xcb}}, 0x5, 0x0, '%\x00'}]})
r2 = openat$ptmx(0xffffff9c, &(0x7f0000000200), 0x342, 0x0)
ioctl$KDSETKEYCODE(r2, 0x4b4d, &(0x7f0000000240)={0xd7, 0x7})
r3 = creat(&(0x7f0000000280)='./file0\x00', 0x1c0)
getsockopt$MRT6(r3, 0x29, 0xce, &(0x7f00000002c0), &(0x7f0000000300)=0x4)
ioctl$XFS_IOC_READLINK_BY_HANDLE(r0, 0xc01c586c, &(0x7f0000000440)={r3, &(0x7f0000000340)='\x00', 0x2, &(0x7f0000000380)={@align=0x6, {0x50, 0x4, 0x4, 0x48cb}}, 0xffff, &(0x7f00000003c0)={@_ha_fsid}, &(0x7f0000000400)=0xfffffffd})
ioctl$XFS_IOC_FD_TO_HANDLE(r3, 0xc01c586a, &(0x7f0000000580)={<r4=>r0, &(0x7f0000000480)='+\x00', 0x800, &(0x7f00000004c0)={@align=0x6, {0xd, 0xb, 0x1, 0x7}}, 0x5, &(0x7f0000000500)={@_ha_fsid}, &(0x7f0000000540)})
io_uring_register$IORING_REGISTER_FILES(r3, 0x2, &(0x7f00000005c0)=[r1], 0x1)
r5 = userfaultfd(0x14448e68cfea4a48)
r6 = pidfd_getfd(r3, r5, 0x0)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000640)=@generic={&(0x7f0000000600)='./file0\x00', 0x0, 0x739c1d581c27e841}, 0x14)
copy_file_range(r3, &(0x7f0000000680)=0x9, r4, &(0x7f00000006c0)=0xbbc, 0x6, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f0000000b80)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000b40)={&(0x7f0000000740)={{0x14}, [@NFT_MSG_NEWSETELEM={0x30, 0xc, 0xa, 0x3, 0x0, 0x0, {0x3, 0x0, 0x8}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x4}]}, @NFT_MSG_DELFLOWTABLE={0xac, 0x18, 0xa, 0xea0def3d9c24a61a, 0x0, 0x0, {0x0, 0x0, 0x4}, [@NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x3}, @NFTA_FLOWTABLE_HOOK={0x44, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'netdevsim0\x00'}]}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x5}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x5}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x1c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'team_slave_0\x00'}]}]}]}, @NFT_MSG_DELTABLE={0x2b0, 0x2, 0xa, 0x101, 0x0, 0x0, {0x3, 0x0, 0x4}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x1}, @NFTA_TABLE_USERDATA={0xd2, 0x6, "94138ad88885fb87edac3d132b2793c0e536ad15d399746572136d9121b03f2f2fb34a25767d2feea60386ddf64eddc52f947b7042ad4469c02564c30716eb2dd8ba5b736d3cfabebd1a7338cf921a19acaa370397a84f5bbd1d2982d212302ba805765ce319745b3d5cd08dd23f9c8e8332adb794063a438ed40b88e1e5be1c6b0e583895f5293de8ce6576555a5d082d10dbe807dfcd3f06cb8fd652275f2602f333fb000db08db1af460a54fc01d5ccb18b652a8ec339549db7bbbf420f8f8ca7ee1315a2b277461aee4b7c00"}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_TABLE_USERDATA={0x56, 0x6, "debb4b324b6fb320c49251f75e58d1bd1db957786aa40ea1d67b8949df58a8fe03f7efd52afaf0d45de15b6dba86d3ad2a0336725aeb9b2a5e23560b2ae8425ca454f7c86fbc7c3e3553a58005c889bb596b"}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_USERDATA={0xaa, 0x6, "cfc39922d40077d95b3f7330c0566e7c72fbae5530ff363fdaacca56291c1e055de8ac7ec00fcc28e9585f6a22bbf6ef799e8168d829d995fd0bda0ead7b9a0cfc7b82ba98d0f138e8c13ae0c9d98903f53b23d73c2463192423f08d6dc17b1cf6704009116b32d5453ee0d12acbe1a80cfe8eae60e7bb6fa783b049f83bd9e284729d6e712de68befad001b935479be2f6e60345e65a744d5abe3ada7397c51622818a738b4"}, @NFTA_TABLE_USERDATA={0x9a, 0x6, "3c6d8c29a93db8ba1221b1550e404fcbf244efb8dbe6e282277d861ac4a1677b987efa851b94812e0951c8557410d71774d6547ea4519718538849816ee0eb2e19e8279c3f9411358df3e87f662e9acb2585287684c6bd651214d60d35694e2adec6adf07fbb3c85e41da4b41ccc8b351f31f5bc2490c1df0987bb3b629a76943d4845991dcde22cd5e2669d4fca72d7b4dda72fa8cd"}]}, @NFT_MSG_DELSETELEM={0x14, 0xe, 0xa, 0x301, 0x0, 0x0, {0x1, 0x0, 0x7}}, @NFT_MSG_DELOBJ={0x20, 0x14, 0xa, 0x3, 0x0, 0x0, {0x2, 0x0, 0x6}, [@NFTA_OBJ_NAME={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0x3e8}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendto$inet6(r4, &(0x7f0000000bc0)="24bdcbd5e403c00d19860d187f12f5cf1c29c2ecc5323bd4261b365e7d4cd96e8c96fb9c6d1293b1121e8ed6af6b55298221bc0a89e036ab0b428f94eb4fab31ebb6132e61e2bfef95d64740f18da7986ee7520c4a54193f1f3758c10a15a83b70421ef37acdba2bc663f0d69445129e236de4e23b3dcf5189c16db0b97afbdf4481fda60844f87f92297d56e5943e1d35d0b6", 0x93, 0x8000, &(0x7f0000000c80)={0xa, 0x4e23, 0x2, @private2={0xfc, 0x2, '\x00', 0x1}}, 0x1c)
io_setup(0x0, &(0x7f0000000cc0)=<r7=>0x0)
r8 = syz_open_dev$usbfs(&(0x7f0000000d00), 0x7, 0xa000)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x15, 0x4, &(0x7f0000000e40)=@framed={{0x18, 0x0, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0x6}, [@func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffa}]}, &(0x7f0000000e80)='syzkaller\x00', 0xa1a6, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @sk_reuseport=0x27, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000ec0)={0x2, 0xb, 0x2, 0xffff}, 0x10, 0x0, r4, 0x3, &(0x7f0000000f00)=[r4, r4], &(0x7f0000000f40)=[{0x1, 0x1, 0x5, 0x8}, {0x4, 0x3, 0xb, 0x7}, {0x2, 0x2, 0x9}]}, 0x94)
r10 = fspick(0xffffffffffffffff, &(0x7f0000001300)='./file0\x00', 0x1)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000001500)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
ioctl$AUTOFS_DEV_IOCTL_READY(r3, 0xc0189376, &(0x7f0000001640)={{0x1, 0x1, 0x18, <r12=>r6, {0x1}}, './file0\x00'})
io_submit(r7, 0x8, &(0x7f0000001740)=[&(0x7f0000000e00)={0x0, 0x0, 0x0, 0x7, 0x1, r8, &(0x7f0000000d40)="b309539a9c7845dc68ef6c4ddf3a0a281eabedf6e48eddfa0d3dec33840b1eb9f29c16935aa07fbcfe52c9e0bf116d89b4920a9401cd8ea00d61aaadff1305adb01e2b9aa0231693f0b020bf5ea001728e3b8546f0746795b5f601486ab16076edeb9b9379fd0c18a625bbb2122cb82b6fb8ccb38efc19c6547241b94a6fac9399f5882f6a4906a11786f49f5e7a626443b552ffadec4b534d2985121bb93b8df74e9759f632b5f2653252b54994c472d6193532cc76", 0xb6, 0x7d5, 0x0, 0x1}, &(0x7f0000001140)={0x0, 0x0, 0x0, 0x6, 0x401, r9, &(0x7f0000001040)="7d1c8c39e705271e6c059394357539299aba170bc3d964e4a897bfa02501576964e4d70ed1327ce6e7d257f3023db4b0788ba5d869bb92a1aefe9ebfb361190e76771ba03cc51693284f468c56be52ff9812cfeb8629477b49749c57b77c640f1d93c30ef33812d21b4443cca888d174a708ed4cada0f1919143870bc554d8d88d6dfb06837d887256463b17acde6feac14ffcfc55d30cf35d45f35c419e102b5a073e4affb2c130b17a228ace7e72160b9be2eaa9c6f35abfb691dea43eaa92bf52f092", 0xc4, 0x31, 0x0, 0x3}, &(0x7f0000001240)={0x0, 0x0, 0x0, 0x0, 0xe, r3, &(0x7f0000001180)="32ee3787facc46e7f59213f81f6bc64dbd7252a733821cbb78605432bb6b2462119f1d17a83eb169b81fb3e51240c591c046a6622e64985386cb99bff32a391bd879eb95adeb035a6d07791a381dfd6ec7f6517d9f19f32ddea4855606e6eed784b1da6c9ca706c40f75966f7b08f85aa2fbd5ea83c5d6b24801b7fde98c2fa046846f02a9f025224f4e4e69dec5369479c555919d6c43eb2c96402be10b4e14b918d34b", 0xa4, 0x100000000, 0x0, 0x2, r6}, &(0x7f00000012c0)={0x0, 0x0, 0x0, 0x8, 0x8, r5, &(0x7f0000001280)="11ae344a", 0x4, 0x7, 0x0, 0x3}, &(0x7f0000001440)={0x0, 0x0, 0x0, 0x6, 0x8001, r10, &(0x7f0000001340)="a5984d115c53aed0b1d1822e1e97df8c5b96f44440904fe6915712c112bc48da86b82e0dc530e93704b67db4e385c4b552932d8c59c108dc24419c7eb8c7a86d9d208c6475f8d736b27a534c6e0a2c76b5facd421052f1d5bab162ce29610a1f0c0d929cf95cc573f5468aeaf9a2311ac392fef67abe8de70e8ceed7700f141e7feebd0bdb1be29224ee416c85c66b0dd5fc312080ca50c6988d887c020a4216f8e9c39652d3cc900aedd36d7aec59805a5e146c8b54664c295766aec03b19e51833b2c8106d17963e0894d03c31c7cf0143cbfa38c492396b", 0xd9, 0x200, 0x0, 0x0, r3}, &(0x7f00000014c0)={0x0, 0x0, 0x0, 0x3, 0x5, r4, &(0x7f0000001480)="3bee4e409f33815384b435ccbce2a2247d19d175020091d0e1e3e34dc31e84604ad45b50ad90aeeb273e819e0b34ea0e9d2236b6ff", 0x35, 0x0, 0x0, 0x1, r4}, &(0x7f0000001680)={0x0, 0x0, 0x0, 0x5, 0x9, r11, &(0x7f0000001540)="3dc710aef6fddae5688bd469d6725dab8de03b2fbdb7237823b5765ce326db846ee7cfb4c8ead506e5a701a1e0e2837cb2b2db8dfe5279ced295399f73ad7106ba57cbcf461baefc682c0133b26f684203aa3bb9e84e345f84d9f9a1243544d68d49ec58b9bb688e9eaeda169360446ad3abdb065d5fa7cb533c994300ef9760356ac6fafa4636858c03d2e522edf150911a63168ac8cde56e264bd47202c90a82413add12e7c43e5fc2f2be81160f90c367ed9db8a10f94f0385aec38e51bc69c5b6808ac0e6196d99f2eb46d108de7e3950de145e9655b82909ae465aca08999", 0xe1, 0x5, 0x0, 0x4, r12}, &(0x7f0000001700)={0x0, 0x0, 0x0, 0x6, 0x9, r5, &(0x7f00000016c0)="bf7ea8ce5c148723b4f5320951efce718a164e0f35393672bf3769", 0x1b, 0x1, 0x0, 0x0, r3}])
socket$alg(0x26, 0x5, 0x0)
sendmsg$IPSET_CMD_ADD(r12, &(0x7f0000001900)={&(0x7f0000001780)={0x10, 0x0, 0x0, 0x800e0400}, 0xc, &(0x7f00000018c0)={&(0x7f00000017c0)={0xdc, 0x9, 0x6, 0x201, 0x0, 0x0, {0x7, 0x0, 0xa}, [@IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP_TO={0x18, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @loopback}}]}, @IPSET_ATTR_ADT={0x3c, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e23}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_SKBQUEUE={0x6, 0x1d, 0x1, 0x0, 0xf}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_NAME={0x9, 0x12, 'syz0\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_ETHER={0xa, 0x11, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x18}}}]}, @IPSET_ATTR_LINENO={0x8}, @IPSET_ATTR_ADT={0x2c, 0x8, 0x0, 0x1, [{0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_NAME={0x9, 0x12, 'syz1\x00'}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_SKBQUEUE={0x6, 0x1d, 0x1, 0x0, 0x5}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x9c60}}]}, @IPSET_ATTR_ADT={0x20, 0x8, 0x0, 0x1, [{0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast1}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_SKBQUEUE={0x6, 0x1d, 0x1, 0x0, 0x8}}]}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x8}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0xdc}, 0x1, 0x0, 0x0, 0xc894}, 0x4000)
signalfd(r3, &(0x7f0000001940)={[0x100, 0x7]}, 0x8)
ioctl$TIOCCONS(r12, 0x541d)
socket$alg(0x26, 0x5, 0x0)
accept4(r6, &(0x7f0000001980)=@in={0x2, 0x0, @loopback}, &(0x7f0000001a00)=0x80, 0x800)

88.472686ms ago: executing program 3 (id=544):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xd, &(0x7f0000000200)=@framed={{0x18, 0x2, 0x0, 0x0, 0x6}, [@call={0x85, 0x0, 0x0, 0x41}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xf15}}]}, &(0x7f0000000280)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = openat$ttyprintk(0xffffff9c, &(0x7f0000000100), 0x40, 0x0)
ioctl$TIOCL_GETSHIFTSTATE(r3, 0x541c, &(0x7f0000000140))
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="05000000060000000800000005"], 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000004a0850000002d00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r5}, 0xc)
connect$inet(r2, &(0x7f00000002c0)={0x2, 0xc22, @remote}, 0x10)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r2, r6, 0x0, 0x20000023896)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

0s ago: executing program 2 (id=545):
mkdir(&(0x7f00000020c0)='./file0\x00', 0x1a)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76"])
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x804000, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX])
utimes(&(0x7f0000000000)='./file0/file0\x00', &(0x7f00000000c0))
openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x300000d, 0x1)

kernel console output (not intermixed with test programs):

qemu-system-x86_64: ahci: PRDT length for NCQ command (0x0) is smaller than the requested size (0x105000)
[   79.748655][ T1110] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1
[   79.751972][ T1110] ata1: failed to read log page 10h (errno=-5)
[   79.754964][ T1110] ata1.00: exception Emask 0x1 SAct 0x4000 SErr 0x0 action 0x0
[   79.758754][ T1110] ata1.00: irq_stat 0x40000008
[   79.763912][ T1110] ata1.00: failed command: WRITE FPDMA QUEUED
[   79.779784][ T1110] ata1.00: cmd 61/28:70:0e:4b:04/08:00:00:00:00/40 tag 14 ncq dma 1069056 ou
[   79.779784][ T1110]          res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[   79.794617][ T1110] ata1.00: status: { DRDY }
[   79.810987][ T1110] ata1.00: error: { ABRT }
[   79.814308][ T1110] ata1.00: configured for UDMA/100
[   79.817461][ T1110] ata1: EH complete
Warning: Permanently added '[localhost]:45430' (ED25519) to the list of known hosts.
[   86.033586][ T5927] cgroup: Unknown subsys name 'net'
[   86.264449][ T5927] cgroup: Unknown subsys name 'cpuset'
[   86.308245][ T5927] cgroup: Unknown subsys name 'rlimit'
[   86.591638][   T29] cfg80211: failed to load regulatory.db
Setting up swapspace version 1, size = 127995904 bytes
[   88.648826][ T5927] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  100.950905][ T5294] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  100.976500][ T5952] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  100.981467][ T5952] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  101.028639][ T5949] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  101.039793][ T5949] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  101.042336][ T5958] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  101.044191][ T5949] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  101.048186][ T5958] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  101.049162][ T5958] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  101.059125][ T5949] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  101.065430][ T5958] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  101.071993][ T5960] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  101.073177][ T5960] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  101.073586][ T5960] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  101.077622][ T5959] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  101.108842][ T5949] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  101.109731][ T5959] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  101.112358][ T5959] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  101.117959][ T5958] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  101.238360][ T5949] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  102.321726][ T5950] chnl_net:caif_netlink_parms(): no params data found
[  102.365712][ T5954] chnl_net:caif_netlink_parms(): no params data found
[  102.489646][ T5947] chnl_net:caif_netlink_parms(): no params data found
[  102.640059][ T5953] chnl_net:caif_netlink_parms(): no params data found
[  102.940448][ T5950] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.945572][ T5950] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.951268][ T5950] bridge_slave_0: entered allmulticast mode
[  102.956568][ T5950] bridge_slave_0: entered promiscuous mode
[  102.982222][ T5954] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.987501][ T5954] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.992545][ T5954] bridge_slave_0: entered allmulticast mode
[  103.013897][ T5954] bridge_slave_0: entered promiscuous mode
[  103.081550][ T5950] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.097324][ T5950] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.102386][ T5950] bridge_slave_1: entered allmulticast mode
[  103.109528][ T5950] bridge_slave_1: entered promiscuous mode
[  103.123690][ T5954] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.126381][ T5954] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.131261][ T5949] Bluetooth: hci0: command tx timeout
[  103.132194][ T5954] bridge_slave_1: entered allmulticast mode
[  103.147758][ T5954] bridge_slave_1: entered promiscuous mode
[  103.187851][ T5947] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.191598][ T5947] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.194879][ T5947] bridge_slave_0: entered allmulticast mode
[  103.201413][ T5947] bridge_slave_0: entered promiscuous mode
[  103.217289][ T5949] Bluetooth: hci2: command tx timeout
[  103.230906][ T5949] Bluetooth: hci1: command tx timeout
[  103.285645][ T5947] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.288591][ T5947] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.291930][ T5947] bridge_slave_1: entered allmulticast mode
[  103.302879][ T5947] bridge_slave_1: entered promiscuous mode
[  103.326303][ T5953] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.330880][ T5953] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.335413][ T5953] bridge_slave_0: entered allmulticast mode
[  103.342407][ T5953] bridge_slave_0: entered promiscuous mode
[  103.357974][ T5950] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  103.366803][ T5954] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  103.375515][ T5949] Bluetooth: hci3: command tx timeout
[  103.398809][ T5954] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  103.445283][ T5947] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  103.475444][ T5953] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.493335][ T5953] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.498554][ T5953] bridge_slave_1: entered allmulticast mode
[  103.513995][ T5953] bridge_slave_1: entered promiscuous mode
[  103.558383][ T5950] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  103.569724][ T5947] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  103.762076][ T5953] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  103.783850][ T5947] team0: Port device team_slave_0 added
[  103.803654][ T5954] team0: Port device team_slave_0 added
[  103.813680][ T5950] team0: Port device team_slave_0 added
[  103.821835][ T5953] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  103.873854][ T5954] team0: Port device team_slave_1 added
[  103.890633][ T5947] team0: Port device team_slave_1 added
[  103.910663][ T5950] team0: Port device team_slave_1 added
[  103.948188][ T5953] team0: Port device team_slave_0 added
[  104.032338][ T5953] team0: Port device team_slave_1 added
[  104.036256][ T5954] batman_adv: batadv0: Adding interface: batadv_slave_0
[  104.039311][ T5954] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  104.056358][ T5954] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  104.070217][ T5954] batman_adv: batadv0: Adding interface: batadv_slave_1
[  104.074898][ T5954] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  104.094827][ T5954] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  104.104762][ T5947] batman_adv: batadv0: Adding interface: batadv_slave_0
[  104.108600][ T5947] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  104.123413][ T5947] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  104.162405][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_0
[  104.165620][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  104.178781][ T5950] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  104.202374][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_1
[  104.210846][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  104.252262][ T5950] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  104.271211][ T5947] batman_adv: batadv0: Adding interface: batadv_slave_1
[  104.274643][ T5947] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  104.289781][ T5947] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  104.364533][ T5953] batman_adv: batadv0: Adding interface: batadv_slave_0
[  104.367953][ T5953] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  104.426223][ T5953] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  104.433346][ T5953] batman_adv: batadv0: Adding interface: batadv_slave_1
[  104.436456][ T5953] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  104.484635][ T5953] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  104.500767][ T5954] hsr_slave_0: entered promiscuous mode
[  104.505144][ T5954] hsr_slave_1: entered promiscuous mode
[  104.643860][ T5950] hsr_slave_0: entered promiscuous mode
[  104.650365][ T5950] hsr_slave_1: entered promiscuous mode
[  104.655079][ T5950] debugfs: 'hsr0' already exists in 'hsr'
[  104.660402][ T5950] Cannot create hsr debugfs directory
[  104.699483][ T5947] hsr_slave_0: entered promiscuous mode
[  104.703945][ T5947] hsr_slave_1: entered promiscuous mode
[  104.708525][ T5947] debugfs: 'hsr0' already exists in 'hsr'
[  104.714145][ T5947] Cannot create hsr debugfs directory
[  104.939603][ T5953] hsr_slave_0: entered promiscuous mode
[  104.946526][ T5953] hsr_slave_1: entered promiscuous mode
[  104.962821][ T5953] debugfs: 'hsr0' already exists in 'hsr'
[  104.975724][ T5953] Cannot create hsr debugfs directory
[  105.215742][ T5949] Bluetooth: hci0: command tx timeout
[  105.287426][ T5949] Bluetooth: hci1: command tx timeout
[  105.287523][ T5955] Bluetooth: hci2: command tx timeout
[  105.457218][ T5955] Bluetooth: hci3: command tx timeout
[  105.708478][ T5954] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  105.796693][ T5954] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  105.925537][ T5954] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  105.980087][ T5954] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  106.223621][ T5950] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  106.237467][ T5950] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  106.268645][ T5950] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  106.333969][ T5950] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  106.505682][ T5947] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  106.594728][ T5947] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  106.634122][ T5954] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.643592][ T5947] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  106.709536][ T5947] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  106.870106][ T5953] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  106.905447][ T5953] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  106.929914][ T5954] 8021q: adding VLAN 0 to HW filter on device team0
[  106.956309][ T5953] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  106.983886][ T5953] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  107.018616][  T179] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.053953][  T179] bridge0: port 1(bridge_slave_0) entered forwarding state
[  107.113895][  T179] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.119174][  T179] bridge0: port 2(bridge_slave_1) entered forwarding state
[  107.249331][ T5950] 8021q: adding VLAN 0 to HW filter on device bond0
[  107.298095][ T5955] Bluetooth: hci0: command tx timeout
[  107.377490][ T5955] Bluetooth: hci2: command tx timeout
[  107.380461][ T5949] Bluetooth: hci1: command tx timeout
[  107.392257][ T5950] 8021q: adding VLAN 0 to HW filter on device team0
[  107.468604][ T5954] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  107.511527][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.546964][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state
[  107.547331][ T5949] Bluetooth: hci3: command tx timeout
[  107.553339][ T1140] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.557487][ T1140] bridge0: port 2(bridge_slave_1) entered forwarding state
[  107.643726][ T5953] 8021q: adding VLAN 0 to HW filter on device bond0
[  107.663355][ T5947] 8021q: adding VLAN 0 to HW filter on device bond0
[  107.889939][ T5947] 8021q: adding VLAN 0 to HW filter on device team0
[  107.911174][ T5953] 8021q: adding VLAN 0 to HW filter on device team0
[  107.951588][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.970904][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state
[  107.989067][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.993088][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state
[  108.023951][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[  108.036525][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[  108.107963][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[  108.111154][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[  108.348724][ T5950] 8021q: adding VLAN 0 to HW filter on device batadv0
[  108.440081][ T5954] 8021q: adding VLAN 0 to HW filter on device batadv0
[  108.538332][ T5950] veth0_vlan: entered promiscuous mode
[  108.721442][ T5950] veth1_vlan: entered promiscuous mode
[  108.808105][ T5954] veth0_vlan: entered promiscuous mode
[  108.876522][ T5947] 8021q: adding VLAN 0 to HW filter on device batadv0
[  108.928356][ T5954] veth1_vlan: entered promiscuous mode
[  108.939424][ T5950] veth0_macvtap: entered promiscuous mode
[  108.949554][ T5953] 8021q: adding VLAN 0 to HW filter on device batadv0
[  109.027887][ T5950] veth1_macvtap: entered promiscuous mode
[  109.153002][ T5947] veth0_vlan: entered promiscuous mode
[  109.175785][ T5954] veth0_macvtap: entered promiscuous mode
[  109.192844][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_0
[  109.216563][ T5954] veth1_macvtap: entered promiscuous mode
[  109.267347][ T5947] veth1_vlan: entered promiscuous mode
[  109.304810][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_1
[  109.350165][ T5954] batman_adv: batadv0: Interface activated: batadv_slave_0
[  109.393237][ T5949] Bluetooth: hci0: command tx timeout
[  109.450457][ T5953] veth0_vlan: entered promiscuous mode
[  109.465484][ T5953] veth1_vlan: entered promiscuous mode
[  109.475201][ T5949] Bluetooth: hci1: command tx timeout
[  109.476389][ T5955] Bluetooth: hci2: command tx timeout
[  109.478142][ T5954] batman_adv: batadv0: Interface activated: batadv_slave_1
[  109.533402][   T12] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  109.622026][ T5955] Bluetooth: hci3: command tx timeout
[  109.635438][ T5947] veth0_macvtap: entered promiscuous mode
[  109.651703][   T12] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  109.655702][   T12] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  109.689996][ T5947] veth1_macvtap: entered promiscuous mode
[  109.722079][   T12] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  109.733362][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  109.818292][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  109.825221][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  109.903404][   T46] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  109.936369][ T5953] veth0_macvtap: entered promiscuous mode
[  110.010902][ T5947] batman_adv: batadv0: Interface activated: batadv_slave_0
[  110.062262][ T5947] batman_adv: batadv0: Interface activated: batadv_slave_1
[  110.108947][ T5953] veth1_macvtap: entered promiscuous mode
[  110.133016][ T1140] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  110.207173][ T1140] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  110.302369][   T60] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  110.346506][   T60] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  110.380652][   T60] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  110.423154][   T60] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  110.526125][ T5953] batman_adv: batadv0: Interface activated: batadv_slave_0
[  110.633130][ T5953] batman_adv: batadv0: Interface activated: batadv_slave_1
[  110.659211][   T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  110.662615][   T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  110.726292][   T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  110.752669][   T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  110.819778][   T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  110.831560][   T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  110.893199][   T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  110.905582][   T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  111.051912][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.060581][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.119048][ T5950] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  111.160118][ T1140] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.243287][ T1140] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.418046][   T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.435434][   T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.495309][   T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.523926][   T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.911337][ T1140] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.925784][ T1140] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  112.809151][ T6053] loop4: detected capacity change from 0 to 7
[  113.334690][ T6041] Buffer I/O error on dev loop4, logical block 0, async page read
[  113.394429][ T6041] Buffer I/O error on dev loop4, logical block 0, async page read
[  113.648042][ T6041] Buffer I/O error on dev loop4, logical block 0, async page read
[  113.692647][ T6041] Buffer I/O error on dev loop4, logical block 0, async page read
[  113.707297][ T6041] Buffer I/O error on dev loop4, logical block 0, async page read
[  114.588347][ T6062] netlink: 136 bytes leftover after parsing attributes in process `syz.0.7'.
[  115.130403][ T6032] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  115.327841][ T6032] usb 6-1: device descriptor read/64, error -71
[  115.630259][ T6032] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  115.886581][ T6032] usb 6-1: device descriptor read/64, error -71
[  116.043174][ T6032] usb usb6-port1: attempt power cycle
[  116.398939][ T6032] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  116.462057][ T6032] usb 6-1: device descriptor read/8, error -71
[  116.747661][ T6032] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  116.806720][ T6032] usb 6-1: device descriptor read/8, error -71
[  116.920097][ T6032] usb usb6-port1: unable to enumerate USB device
[  120.881515][   T40] audit: type=1326 audit(1776245942.831:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6074 comm="syz.3.8" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704efcc code=0x7ffc0000
[  120.881578][   T40] audit: type=1326 audit(1776245942.831:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6074 comm="syz.3.8" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704efcc code=0x7ffc0000
[  120.881621][   T40] audit: type=1326 audit(1776245942.861:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6074 comm="syz.3.8" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704efcc code=0x7ffc0000
[  120.952434][   T40] audit: type=1326 audit(1776245942.861:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6074 comm="syz.3.8" exe="/syz-executor" sig=0 arch=40000003 syscall=394 compat=1 ip=0xf704efcc code=0x7ffc0000
[  121.015566][   T40] audit: type=1326 audit(1776245942.861:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6074 comm="syz.3.8" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704efcc code=0x7ffc0000
[  121.015612][   T40] audit: type=1326 audit(1776245942.861:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6074 comm="syz.3.8" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704efcc code=0x7ffc0000
[  121.015648][   T40] audit: type=1326 audit(1776245942.861:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6074 comm="syz.3.8" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704efcc code=0x7ffc0000
[  121.015681][   T40] audit: type=1326 audit(1776245942.861:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6074 comm="syz.3.8" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704efcc code=0x7ffc0000
[  121.182261][   T40] audit: type=1326 audit(1776245942.861:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6074 comm="syz.3.8" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf704efcc code=0x7ffc0000
[  121.182301][   T40] audit: type=1326 audit(1776245942.861:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6074 comm="syz.3.8" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704efcc code=0x7ffc0000
[  121.988747][ T6086] Bluetooth: hci4: Frame reassembly failed (-84)
[  124.007698][ T5949] Bluetooth: hci4: command 0xfc11 tx timeout
[  124.011373][ T5955] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  125.937205][ T6072] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  126.107257][ T6072] usb 5-1: Using ep0 maxpacket: 16
[  126.145138][ T6072] usb 5-1: unable to get BOS descriptor or descriptor too short
[  126.154441][ T6072] usb 5-1: no configurations
[  126.156900][ T6072] usb 5-1: can't read configurations, error -22
[  126.164810][ T5955] Bluetooth: hci3: Malformed LE Event: 0x0d
[  127.231941][ T6072] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  127.437332][ T6072] usb 5-1: Using ep0 maxpacket: 16
[  127.531031][ T6072] usb 5-1: unable to get BOS descriptor or descriptor too short
[  127.537908][ T6072] usb 5-1: no configurations
[  127.541225][ T5955] Bluetooth: hci3: Malformed LE Event: 0x0d
[  127.552419][ T6072] usb 5-1: can't read configurations, error -22
[  127.552691][ T6072] usb usb5-port1: attempt power cycle
[  128.354343][ T6112] loop4: detected capacity change from 0 to 7
[  128.483482][ T6071] Buffer I/O error on dev loop4, logical block 0, async page read
[  128.489040][ T6071] Buffer I/O error on dev loop4, logical block 0, async page read
[  128.493124][ T6071] Buffer I/O error on dev loop4, logical block 0, async page read
[  128.533820][ T6071] Buffer I/O error on dev loop4, logical block 0, async page read
[  128.569164][ T6071] Buffer I/O error on dev loop4, logical block 0, async page read
[  129.581211][ T6116] autofs: Unknown parameter 'no9á ‘ýPƒ¹G!8°‰™�…EŸ8-ö¤ ™�ŠÇÅ–èEeÕ¬(�	IrÝ\•žu}ibˆŒ�ÞêT0;´Œmy´[Gc¯î#Ï>QkÏübYü&“àÌ#“w„@/VV¼Lë~1ƒ2§÷lÿh<yÞ¯ðÕMÈv÷«^7 !JÐ>–O„h'®ÈûrK1‚\kU{!�e½úó¬Üš7»ßß
[  129.581211][ T6116] ÄUúeâ[¦ÓÎ%#s'
[  129.694029][ T5987] kernel read not supported for file /25/net/arp (pid: 5987 comm: kworker/3:2)
[  130.067772][ T5949] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  130.103311][ T5949] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  130.136514][ T5949] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  130.160099][ T5949] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  130.173522][ T5949] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  131.557195][ T1455] usb 7-1: new full-speed USB device number 2 using dummy_hcd
[  131.751828][ T1455] usb 7-1: config 0 interface 0 altsetting 251 has an endpoint descriptor with address 0x3B, changing to 0xB
[  131.806295][ T6119] chnl_net:caif_netlink_parms(): no params data found
[  131.829899][ T1455] usb 7-1: config 0 interface 0 altsetting 251 endpoint 0xB has invalid maxpacket 32454, setting to 64
[  131.866568][ T1455] usb 7-1: config 0 interface 0 has no altsetting 0
[  131.893131][ T1455] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  131.904272][ T1455] usb 7-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  131.917562][ T1455] usb 7-1: Product: syz
[  131.920777][ T1455] usb 7-1: Manufacturer: syz
[  131.931235][ T1455] usb 7-1: SerialNumber: syz
[  132.034063][ T1455] usb 7-1: config 0 descriptor??
[  132.041898][ T6126] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  132.098471][ T1455] usb 7-1: selecting invalid altsetting 0
[  132.239292][ T6133] netlink: 144552 bytes leftover after parsing attributes in process `syz.0.20'.
[  132.251736][ T6119] bridge0: port 1(bridge_slave_0) entered blocking state
[  132.278717][ T6119] bridge0: port 1(bridge_slave_0) entered disabled state
[  132.302009][ T6119] bridge_slave_0: entered allmulticast mode
[  132.305403][ T6119] bridge_slave_0: entered promiscuous mode
[  132.325239][ T6119] bridge0: port 2(bridge_slave_1) entered blocking state
[  132.325490][ T6119] bridge0: port 2(bridge_slave_1) entered disabled state
[  132.325696][ T6119] bridge_slave_1: entered allmulticast mode
[  132.327185][ T6119] bridge_slave_1: entered promiscuous mode
[  132.424839][ T6119] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  132.483953][ T6119] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  132.513699][ T5949] Bluetooth: hci4: command tx timeout
[  132.837476][ T6119] team0: Port device team_slave_0 added
[  132.852341][ T6119] team0: Port device team_slave_1 added
[  134.059111][ T6070] usb 7-1: USB disconnect, device number 2
[  134.153932][ T6119] batman_adv: batadv0: Adding interface: batadv_slave_0
[  134.157113][ T6119] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  134.171015][ T6119] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  134.194304][ T6119] batman_adv: batadv0: Adding interface: batadv_slave_1
[  134.198614][ T6119] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  134.221151][ T6119] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  134.377882][ T6119] hsr_slave_0: entered promiscuous mode
[  134.388544][ T6119] hsr_slave_1: entered promiscuous mode
[  134.392419][ T6119] debugfs: 'hsr0' already exists in 'hsr'
[  134.398691][ T6119] Cannot create hsr debugfs directory
[  134.580983][ T5949] Bluetooth: hci4: command tx timeout
[  134.791250][   T12] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.796061][ T6144] Zero length message leads to an empty skb
[  134.920398][ T6147] syz.2.22 (6147): /proc/6146/oom_adj is deprecated, please use /proc/6146/oom_score_adj instead.
[  135.017661][ T6149] FAULT_INJECTION: forcing a failure.
[  135.017661][ T6149] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  135.037182][ T6149] CPU: 1 UID: 0 PID: 6149 Comm: syz.0.21 Not tainted syzkaller #0 PREEMPT(full) 
[  135.037232][ T6149] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  135.037332][ T6149] Call Trace:
[  135.037422][ T6149]  <TASK>
[  135.037431][ T6149]  dump_stack_lvl+0x100/0x190
[  135.037474][ T6149]  should_fail_ex.cold+0x5/0xa
[  135.037499][ T6149]  _copy_from_user+0x2e/0xd0
[  135.037524][ T6149]  move_addr_to_kernel+0x65/0x170
[  135.037553][ T6149]  __sys_bind+0x11d/0x260
[  135.037580][ T6149]  ? __pfx___sys_bind+0x10/0x10
[  135.037646][ T6149]  ? ksys_write+0x1ac/0x250
[  135.037675][ T6149]  __ia32_sys_bind+0x71/0xb0
[  135.037700][ T6149]  ? lockdep_hardirqs_on+0x78/0x100
[  135.037722][ T6149]  __do_fast_syscall_32+0xe7/0x940
[  135.037744][ T6149]  ? lockdep_hardirqs_on+0x78/0x100
[  135.037765][ T6149]  do_fast_syscall_32+0x32/0x70
[  135.037789][ T6149]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  135.037815][ T6149] RIP: 0023:0xf7f82fcc
[  135.037833][ T6149] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  135.037851][ T6149] RSP: 002b:00000000f540450c EFLAGS: 00000292 ORIG_RAX: 0000000000000169
[  135.037966][ T6149] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000080000000
[  135.037979][ T6149] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000
[  135.037991][ T6149] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  135.038000][ T6149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  135.038011][ T6149] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  135.038038][ T6149]  </TASK>
[  135.290532][   T12] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.507382][ T6155] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.25'.
[  135.538741][   T12] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.587608][ T6119] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  135.622658][ T6119] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  135.806410][   T12] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.046072][ T6119] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  136.220535][ T6119] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  136.664664][ T5949] Bluetooth: hci4: command tx timeout
[  137.033476][   T12] bridge_slave_1: left allmulticast mode
[  137.090708][   T12] bridge_slave_1: left promiscuous mode
[  137.096681][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  137.176287][   T12] bridge_slave_0: left allmulticast mode
[  137.183361][   T12] bridge_slave_0: left promiscuous mode
[  137.186920][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  137.632356][ T6174] netlink: 4 bytes leftover after parsing attributes in process `syz.3.28'.
[  137.792595][ T1413] ieee802154 phy0 wpan0: encryption failed: -22
[  137.806029][ T1413] ieee802154 phy1 wpan1: encryption failed: -22
[  137.937351][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  138.034929][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  138.111281][   T12] bond0 (unregistering): Released all slaves
[  138.223266][ T6119] 8021q: adding VLAN 0 to HW filter on device bond0
[  138.428884][ T6119] 8021q: adding VLAN 0 to HW filter on device team0
[  138.450788][ T1145] bridge0: port 1(bridge_slave_0) entered blocking state
[  138.457861][ T1145] bridge0: port 1(bridge_slave_0) entered forwarding state
[  138.614614][ T1145] bridge0: port 2(bridge_slave_1) entered blocking state
[  138.614767][ T6179] netlink: 144552 bytes leftover after parsing attributes in process `syz.2.29'.
[  138.621372][ T1145] bridge0: port 2(bridge_slave_1) entered forwarding state
[  138.738372][ T5949] Bluetooth: hci4: command tx timeout
[  138.950936][ T6183] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.30'.
[  139.240213][ T6183] loop4: detected capacity change from 0 to 7
[  139.344639][ T6071] Buffer I/O error on dev loop4, logical block 0, async page read
[  139.365092][ T6071] Buffer I/O error on dev loop4, logical block 0, async page read
[  139.410620][ T6071] Buffer I/O error on dev loop4, logical block 0, async page read
[  139.415789][ T6071] Buffer I/O error on dev loop4, logical block 0, async page read
[  139.458259][ T6071] Buffer I/O error on dev loop4, logical block 0, async page read
[  140.442907][ T6216] autofs: Unknown parameter 'no9á ‘ýPƒ¹G!8°‰™�…EŸ8-ö¤ ™�ŠÇÅ–èEeÕ¬(�	IrÝ\•žu}ibˆŒ�ÞêT0;´Œmy´[Gc¯î#Ï>QkÏübYü&“àÌ#“w„@/VV¼Lë~1ƒ2§÷lÿh<yÞ¯ðÕMÈv÷«^7 !JÐ>–O„h'®ÈûrK1‚\kU{!�e½úó¬Üš7»ßß
[  140.442907][ T6216] ÄUúeâ[¦ÓÎ%#s'
[  142.175169][ T6225] netlink: 144552 bytes leftover after parsing attributes in process `syz.0.37'.
[  145.494566][   T12] hsr_slave_0: left promiscuous mode
[  145.499822][   T12] hsr_slave_1: left promiscuous mode
[  145.504630][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  145.510052][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  145.515473][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  145.528483][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  145.578757][   T12] veth1_macvtap: left promiscuous mode
[  145.581912][   T12] veth0_macvtap: left promiscuous mode
[  145.596320][   T12] veth1_vlan: left promiscuous mode
[  145.622346][   T12] veth0_vlan: left promiscuous mode
[  146.104167][ T6070] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  146.277462][ T6070] usb 8-1: Using ep0 maxpacket: 16
[  146.309032][ T5949] Bluetooth: hci0: Malformed LE Event: 0x0d
[  146.322151][ T6070] usb 8-1: unable to get BOS descriptor or descriptor too short
[  146.327179][ T6070] usb 8-1: no configurations
[  146.329241][ T6070] usb 8-1: can't read configurations, error -22
[  146.634455][   T12] team0 (unregistering): Port device team_slave_1 removed
[  146.672854][   T12] team0 (unregistering): Port device team_slave_0 removed
[  147.200495][ T6119] 8021q: adding VLAN 0 to HW filter on device batadv0
[  147.832312][ T6260] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.42'.
[  148.289452][ T6255] loop4: detected capacity change from 0 to 7
[  148.320332][ T6119] veth0_vlan: entered promiscuous mode
[  148.392314][    C2] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  148.459973][ T6119] veth1_vlan: entered promiscuous mode
[  148.476743][    C2] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  148.484356][   T39] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  148.514717][    C2] Buffer I/O error on dev loop4, logical block 0, async page read
[  148.524543][    C2] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  148.543209][    C2] Buffer I/O error on dev loop4, logical block 0, async page read
[  148.666535][   T39] usb 7-1: Using ep0 maxpacket: 16
[  148.687398][ T6119] veth0_macvtap: entered promiscuous mode
[  148.702678][ T6228] Buffer I/O error on dev loop4, logical block 0, async page read
[  148.705016][   T39] usb 7-1: unable to get BOS descriptor or descriptor too short
[  148.707293][ T5949] Bluetooth: hci1: Malformed LE Event: 0x0d
[  148.709190][ T6228] Buffer I/O error on dev loop4, logical block 0, async page read
[  148.734747][ T6119] veth1_macvtap: entered promiscuous mode
[  148.740594][   T39] usb 7-1: unable to read config index 0 descriptor/start: -71
[  148.744283][   T39] usb 7-1: can't read configurations, error -71
[  148.751197][ T6228] Buffer I/O error on dev loop4, logical block 0, async page read
[  148.830563][ T6119] batman_adv: batadv0: Interface activated: batadv_slave_0
[  148.851402][ T6119] batman_adv: batadv0: Interface activated: batadv_slave_1
[  148.875275][   T89] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  148.889258][   T89] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  148.901357][   T89] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  148.905241][   T89] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  149.269992][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  149.284545][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  149.385494][    T9] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  149.465852][  T101] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  149.471388][  T101] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  149.563982][    T9] usb 8-1: Using ep0 maxpacket: 16
[  149.584262][ T6286] netlink: 144552 bytes leftover after parsing attributes in process `syz.2.47'.
[  149.625228][ T5949] Bluetooth: hci0: Malformed LE Event: 0x0d
[  149.653435][    T9] usb 8-1: unable to get BOS descriptor or descriptor too short
[  149.657638][    T9] usb 8-1: no configurations
[  149.660369][    T9] usb 8-1: can't read configurations, error -22
[  150.252194][ T6293] netlink: 144552 bytes leftover after parsing attributes in process `syz.4.48'.
[  150.755979][ T6299] netlink: 36 bytes leftover after parsing attributes in process `syz.4.50'.
[  151.336926][ T6303] Bluetooth: hci2: Frame reassembly failed (-84)
[  151.921075][    T9] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  152.112672][    T9] usb 5-1: Using ep0 maxpacket: 16
[  152.193494][ T5955] Bluetooth: hci3: Malformed LE Event: 0x0d
[  152.193741][    T9] usb 5-1: unable to get BOS descriptor or descriptor too short
[  152.244747][    T9] usb 5-1: unable to read config index 0 descriptor/start: -71
[  152.248857][    T9] usb 5-1: can't read configurations, error -71
[  153.376442][ T5955] Bluetooth: hci2: command 0xfc11 tx timeout
[  153.386288][ T5949] Bluetooth: hci2: Entering manufacturer mode failed (-110)
[  154.138014][ T6340] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  155.346195][   T29] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  155.565902][   T29] usb 9-1: Using ep0 maxpacket: 16
[  155.629267][ T5949] Bluetooth: hci4: Malformed LE Event: 0x0d
[  155.664767][   T29] usb 9-1: unable to get BOS descriptor or descriptor too short
[  155.702011][   T29] usb 9-1: unable to read config index 0 descriptor/start: -71
[  155.706214][   T29] usb 9-1: can't read configurations, error -71
[  156.528353][ T6377] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.71'.
[  156.553165][ T6365] syz.3.70 uses obsolete (PF_INET,SOCK_PACKET)
[  158.118621][ T1120] sr 2:0:0:0: [sr0] tag#21 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  158.123210][ T1120] sr 2:0:0:0: [sr0] tag#21 Sense Key : Illegal Request [current] 
[  158.128222][ T1120] sr 2:0:0:0: [sr0] tag#21 Add. Sense: Invalid command operation code
[  158.131923][ T1120] sr 2:0:0:0: [sr0] tag#21 CDB: Write(10) 2a 00 00 00 00 00 00 00 02 00
[  158.135833][ T1120] critical target error, dev sr0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 2
[  158.141510][ T1120] Buffer I/O error on dev sr0, logical block 0, lost async page write
[  158.310073][ T6012] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  158.533143][ T6012] usb 7-1: Using ep0 maxpacket: 16
[  158.572259][ T5949] Bluetooth: hci1: Malformed LE Event: 0x0d
[  158.620219][ T6012] usb 7-1: unable to get BOS descriptor or descriptor too short
[  158.627493][ T6012] usb 7-1: unable to read config index 0 descriptor/start: -71
[  158.633678][ T6012] usb 7-1: can't read configurations, error -71
[  158.993617][ T6420] netlink: 8 bytes leftover after parsing attributes in process `syz.4.81'.
[  159.022203][ T6420] =======================================================
[  159.022203][ T6420] WARNING: The mand mount option has been deprecated and
[  159.022203][ T6420]          and is ignored by this kernel. Remove the mand
[  159.022203][ T6420]          option from the mount to silence this warning.
[  159.022203][ T6420] =======================================================
[  159.330325][ T6428] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.83'.
[  159.456903][ T6432] netlink: 24 bytes leftover after parsing attributes in process `syz.2.86'.
[  160.728082][ T6461] netlink: 'syz.2.95': attribute type 1 has an invalid length.
[  160.777895][   T29] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  160.948596][ T6463] warning: `syz.2.96' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  160.961939][   T29] usb 5-1: Using ep0 maxpacket: 16
[  160.984419][ T5949] Bluetooth: hci3: Malformed LE Event: 0x0d
[  160.999290][   T29] usb 5-1: unable to get BOS descriptor or descriptor too short
[  161.021160][   T29] usb 5-1: unable to read config index 0 descriptor/start: -71
[  161.028350][   T29] usb 5-1: can't read configurations, error -71
[  161.430513][   T40] kauditd_printk_skb: 143 callbacks suppressed
[  161.430600][   T40] audit: type=1326 audit(1776245983.411:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6464 comm="syz.2.97" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3fcc code=0x7ffc0000
[  161.432849][ T6467] process 'syz.2.97' launched './file2' with NULL argv: empty string added
[  161.447960][   T40] audit: type=1326 audit(1776245983.411:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6464 comm="syz.2.97" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3fcc code=0x7ffc0000
[  161.562357][   T40] audit: type=1326 audit(1776245983.411:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6464 comm="syz.2.97" exe="/syz-executor" sig=0 arch=40000003 syscall=297 compat=1 ip=0xf7fd3fcc code=0x7ffc0000
[  161.604033][   T40] audit: type=1326 audit(1776245983.411:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6464 comm="syz.2.97" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3fcc code=0x7ffc0000
[  161.701878][   T40] audit: type=1326 audit(1776245983.411:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6464 comm="syz.2.97" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3fcc code=0x7ffc0000
[  161.717202][   T40] audit: type=1326 audit(1776245983.411:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6464 comm="syz.2.97" exe="/syz-executor" sig=0 arch=40000003 syscall=358 compat=1 ip=0xf7fd3fcc code=0x7ffc0000
[  161.857732][   T40] audit: type=1326 audit(1776245983.441:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6464 comm="syz.2.97" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3fcc code=0x7ffc0000
[  161.866919][   T40] audit: type=1326 audit(1776245983.441:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6464 comm="syz.2.97" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3fcc code=0x7ffc0000
[  162.246877][   T40] audit: type=1326 audit(1776245983.441:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6464 comm="syz.2.97" exe="/syz-executor" sig=0 arch=40000003 syscall=425 compat=1 ip=0xf7fd3fcc code=0x7ffc0000
[  162.270726][   T40] audit: type=1326 audit(1776245983.781:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6464 comm="syz.2.97" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7fd3fcc code=0x7ffc0000
[  162.981700][ T6495] IPVS: length: 251 != 8
[  163.002497][ T6495] netlink: 8 bytes leftover after parsing attributes in process `syz.3.105'.
[  163.268921][ T6505] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.103'.
[  164.767406][   T24] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  164.931016][   T24] usb 8-1: Using ep0 maxpacket: 16
[  165.014747][ T5949] Bluetooth: hci0: Malformed LE Event: 0x0d
[  165.038853][   T24] usb 8-1: unable to get BOS descriptor or descriptor too short
[  165.090992][   T24] usb 8-1: unable to read config index 0 descriptor/start: -71
[  165.094858][   T24] usb 8-1: can't read configurations, error -71
[  166.710079][ T6545] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  167.894768][ T6550] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  167.918334][ T6550] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  167.949962][ T6550] netlink: 'syz.0.119': attribute type 2 has an invalid length.
[  167.985571][ T6550] !: entered promiscuous mode
[  168.400326][   T24] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  178.388916][ T6613] xt_CT: You must specify a L4 protocol and not use inversions on it
[  178.509841][ T6616] xt_SECMARK: mode already set to 1 cannot mix with rules for mode 0
[  178.822684][ T6626] fuse: Unknown parameter 'rootm000000040000'
[  179.746880][ T6649] mmap: syz.0.141 (6649) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  179.941151][   T24] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  180.155797][   T24] usb 8-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  180.162663][   T24] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  180.200734][   T24] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  180.204522][   T24] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  180.260661][   T24] usb 8-1: config 0 descriptor??
[  180.348758][   T24] usbhid 8-1:0.0: couldn't find an input interrupt endpoint
[  180.433442][ T6658] xt_CT: You must specify a L4 protocol and not use inversions on it
[  180.476501][ T6661] netlink: 144552 bytes leftover after parsing attributes in process `syz.2.145'.
[  180.787117][ T6665] syz.2.148: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  180.844481][ T6665] CPU: 0 UID: 0 PID: 6665 Comm: syz.2.148 Not tainted syzkaller #0 PREEMPT(full) 
[  180.844505][ T6665] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  180.844515][ T6665] Call Trace:
[  180.844522][ T6665]  <TASK>
[  180.844543][ T6665]  dump_stack_lvl+0x100/0x190
[  180.844592][ T6665]  warn_alloc.cold+0x95/0x1c1
[  180.844613][ T6665]  ? __pfx_warn_alloc+0x10/0x10
[  180.844629][ T6665]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  180.844657][ T6665]  ? lockdep_hardirqs_on+0x78/0x100
[  180.844692][ T6665]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  180.844724][ T6665]  ? kasan_save_stack+0x3f/0x50
[  180.844740][ T6665]  ? kasan_save_stack+0x30/0x50
[  180.844755][ T6665]  ? kasan_save_track+0x14/0x30
[  180.844775][ T6665]  ? xskq_create+0xfb/0x1d0
[  180.844799][ T6665]  __vmalloc_node_range_noprof+0x1252/0x1530
[  180.844831][ T6665]  ? xskq_create+0xfb/0x1d0
[  180.844861][ T6665]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  180.844894][ T6665]  ? xskq_create+0xfb/0x1d0
[  180.844915][ T6665]  vmalloc_user_noprof+0x9e/0xe0
[  180.844939][ T6665]  ? xskq_create+0xfb/0x1d0
[  180.844962][ T6665]  xskq_create+0xfb/0x1d0
[  180.844988][ T6665]  xsk_setsockopt+0x743/0xab0
[  180.845008][ T6665]  ? __pfx_aa_sk_perm+0x10/0x10
[  180.845028][ T6665]  ? __pfx_xsk_setsockopt+0x10/0x10
[  180.845049][ T6665]  ? find_held_lock+0x2b/0x80
[  180.845069][ T6665]  ? aa_sock_opt_perm+0xfe/0x1b0
[  180.845094][ T6665]  ? __pfx_xsk_setsockopt+0x10/0x10
[  180.845120][ T6665]  do_sock_setsockopt+0xf3/0x1d0
[  180.845141][ T6665]  __sys_setsockopt+0x119/0x190
[  180.845170][ T6665]  __ia32_sys_setsockopt+0xbc/0x160
[  180.845191][ T6665]  ? __do_fast_syscall_32+0x98/0x940
[  180.845208][ T6665]  ? lockdep_hardirqs_on+0x78/0x100
[  180.845226][ T6665]  __do_fast_syscall_32+0xe7/0x940
[  180.845247][ T6665]  do_fast_syscall_32+0x32/0x70
[  180.845265][ T6665]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  180.845284][ T6665] RIP: 0023:0xf7fd3fcc
[  180.845298][ T6665] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  180.845311][ T6665] RSP: 002b:00000000f549650c EFLAGS: 00000292 ORIG_RAX: 000000000000016e
[  180.845329][ T6665] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000011b
[  180.845339][ T6665] RDX: 0000000000000006 RSI: 0000000080000000 RDI: 0000000000000004
[  180.845349][ T6665] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  180.845356][ T6665] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  180.845365][ T6665] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  180.845409][ T6665]  </TASK>
[  180.845613][ T6665] Mem-Info:
[  180.845740][ T6665] active_anon:6698 inactive_anon:550 isolated_anon:0
[  180.845740][ T6665]  active_file:22037 inactive_file:34464 isolated_file:0
[  180.845740][ T6665]  unevictable:1768 dirty:5 writeback:0
[  180.845740][ T6665]  slab_reclaimable:9207 slab_unreclaimable:51866
[  180.845740][ T6665]  mapped:24582 shmem:2744 pagetables:1119
[  180.845740][ T6665]  sec_pagetables:300 bounce:0
[  180.845740][ T6665]  kernel_misc_reclaimable:0
[  180.845740][ T6665]  free:38176 free_pcp:16611 free_cma:0
[  180.845872][ T6665] Node 0 active_anon:72kB inactive_anon:2200kB active_file:8kB inactive_file:4kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:2012kB dirty:4kB writeback:0kB shmem:5520kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8324kB pagetables:1716kB sec_pagetables:1132kB all_unreclaimable? no Balloon:0kB
[  180.846007][ T6665] Node 1 active_anon:26720kB inactive_anon:0kB active_file:88140kB inactive_file:137852kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:96316kB dirty:16kB writeback:0kB shmem:5456kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:5000kB pagetables:2760kB sec_pagetables:68kB all_unreclaimable? no Balloon:0kB
[  180.846196][ T6665] Node 0 DMA free:2040kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:304kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:328kB local_pcp:136kB free_cma:0kB
[  180.846335][ T6665] lowmem_reserve[]: 0 285 285 285 285
[  180.846493][ T6665] Node 0 DMA32 free:19632kB boost:0kB min:13064kB low:16328kB high:19592kB reserved_highatomic:0KB free_highatomic:0KB active_anon:200kB inactive_anon:2024kB active_file:8kB inactive_file:4kB unevictable:3536kB writepending:4kB zspages:0kB present:1032196kB managed:292372kB mlocked:0kB bounce:0kB free_pcp:4864kB local_pcp:3892kB free_cma:0kB
[  180.846632][ T6665] lowmem_reserve[]: 0 0 0 0 0
[  180.846774][ T6665] Node 1 DMA32 free:131032kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:26720kB inactive_anon:0kB active_file:88140kB inactive_file:137852kB unevictable:3536kB writepending:16kB zspages:2272kB present:1048432kB managed:948212kB mlocked:0kB bounce:0kB free_pcp:61244kB local_pcp:19860kB free_cma:0kB
[  180.846815][ T6665] lowmem_reserve[]: 0 0 0 0 0
[  180.846846][ T6665] Node 0 DMA: 26*4kB (UM) 34*8kB (UM) 24*16kB (UM) 12*32kB (UM) 6*64kB (UM) 4*128kB (M) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2040kB
[  180.857298][ T6665] Node 0 DMA32: 234*4kB (UME) 76*8kB (UME) 46*16kB (UME) 170*32kB (UME) 42*64kB (UM) 12*128kB (UME) 4*256kB (ME) 5*512kB (M) 2*1024kB (M) 1*2048kB (M) 0*4096kB = 19624kB
[  180.857479][ T6665] Node 1 DMA32: 1016*4kB (UME) 439*8kB (UME) 248*16kB (UM) 146*32kB (UME) 72*64kB (UME) 73*128kB (UME) 38*256kB (UM) 18*512kB (UM) 14*1024kB (UM) 5*2048kB (UME) 14*4096kB (UM) = 131032kB
[  180.857708][ T6665] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  180.857723][ T6665] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  180.857735][ T6665] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  180.857748][ T6665] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  180.857761][ T6665] 59621 total pagecache pages
[  180.857768][ T6665] 379 pages in swap cache
[  180.857775][ T6665] Free swap  = 118532kB
[  180.857782][ T6665] Total swap = 124996kB
[  180.857790][ T6665] 524155 pages RAM
[  180.857796][ T6665] 0 pages HighMem/MovableOnly
[  180.857802][ T6665] 210169 pages reserved
[  180.857807][ T6665] 0 pages cma reserved
[  180.983826][ T6671] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  180.985258][ T6671] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  181.977528][ T6679] 9p: Bad value for 'rfdno'
[  183.104446][ T6015] usb 8-1: USB disconnect, device number 8
[  183.284451][ T6690] netlink: 144552 bytes leftover after parsing attributes in process `syz.2.154'.
[  183.307364][  T988] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  183.485012][  T988] usb 9-1: Using ep0 maxpacket: 16
[  183.539544][  T988] usb 9-1: unable to get BOS descriptor or descriptor too short
[  183.542345][ T5949] Bluetooth: hci4: Malformed LE Event: 0x0d
[  183.584571][  T988] usb 9-1: unable to read config index 0 descriptor/start: -71
[  183.589771][  T988] usb 9-1: can't read configurations, error -71
[  184.348174][ T6706] 9p: Bad value for 'rfdno'
[  184.362792][ T6708] netlink: 28 bytes leftover after parsing attributes in process `syz.3.160'.
[  185.044769][ T6719] netlink: 144552 bytes leftover after parsing attributes in process `syz.4.164'.
[  185.253022][ T6726] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.167'.
[  185.373864][ T6727] loop4: detected capacity change from 0 to 7
[  185.451618][    T9] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  185.484357][ T6691] Buffer I/O error on dev loop4, logical block 0, async page read
[  185.490457][ T6691] Buffer I/O error on dev loop4, logical block 0, async page read
[  185.499105][ T6691] Buffer I/O error on dev loop4, logical block 0, async page read
[  185.510181][ T6691] Buffer I/O error on dev loop4, logical block 0, async page read
[  185.529512][ T6691] Buffer I/O error on dev loop4, logical block 0, async page read
[  185.648712][    T9] usb 9-1: Using ep0 maxpacket: 16
[  185.667999][ T5949] Bluetooth: hci4: Malformed LE Event: 0x0d
[  185.676630][    T9] usb 9-1: unable to get BOS descriptor or descriptor too short
[  185.684717][    T9] usb 9-1: unable to read config index 0 descriptor/start: -71
[  185.690358][    T9] usb 9-1: can't read configurations, error -71
[  185.912792][ T6732] 9p: Bad value for 'rfdno'
[  186.007618][ T6734] netlink: 4 bytes leftover after parsing attributes in process `syz.2.170'.
[  186.557455][ T6748] netlink: 144552 bytes leftover after parsing attributes in process `syz.2.174'.
[  187.025953][ T6761] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.179'.
[  187.225335][ T6765] loop4: detected capacity change from 0 to 7
[  187.344902][ T6691] Buffer I/O error on dev loop4, logical block 0, async page read
[  187.371921][ T6691] Buffer I/O error on dev loop4, logical block 0, async page read
[  187.383085][ T6691] Buffer I/O error on dev loop4, logical block 0, async page read
[  187.411257][ T6691] Buffer I/O error on dev loop4, logical block 0, async page read
[  187.426481][ T6691] Buffer I/O error on dev loop4, logical block 0, async page read
[  187.487803][  T988] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  187.735522][  T988] usb 8-1: Using ep0 maxpacket: 16
[  187.792513][ T5949] Bluetooth: hci0: Malformed LE Event: 0x0d
[  187.794744][  T988] usb 8-1: unable to get BOS descriptor or descriptor too short
[  187.947723][  T988] usb 8-1: unable to read config index 0 descriptor/start: -71
[  187.977683][  T988] usb 8-1: can't read configurations, error -71
[  188.222640][ T6776] netlink: 144552 bytes leftover after parsing attributes in process `syz.0.183'.
[  188.634729][ T6790] netlink: 8 bytes leftover after parsing attributes in process `syz.2.185'.
[  188.859058][ T6793] fuse: Bad value for 'fd'
[  189.257949][ T6811] xt_SECMARK: mode already set to 1 cannot mix with rules for mode 0
[  189.472666][   T24] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  189.688346][   T24] usb 7-1: Using ep0 maxpacket: 16
[  189.700046][ T5949] Bluetooth: hci1: Malformed LE Event: 0x0d
[  189.701482][   T24] usb 7-1: unable to get BOS descriptor or descriptor too short
[  189.710222][   T24] usb 7-1: unable to read config index 0 descriptor/start: -71
[  189.727224][   T24] usb 7-1: can't read configurations, error -71
[  190.117606][   T40] kauditd_printk_skb: 3 callbacks suppressed
[  190.117628][   T40] audit: type=1326 audit(1776246012.071:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6814 comm="syz.0.195" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82fcc code=0x7ffc0000
[  190.135596][   T40] audit: type=1326 audit(1776246012.071:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6814 comm="syz.0.195" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82fcc code=0x7ffc0000
[  190.150865][   T40] audit: type=1326 audit(1776246012.071:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6814 comm="syz.0.195" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7f82fcc code=0x7ffc0000
[  190.167692][   T40] audit: type=1326 audit(1776246012.071:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6814 comm="syz.0.195" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82fcc code=0x7ffc0000
[  190.191140][   T40] audit: type=1326 audit(1776246012.071:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6814 comm="syz.0.195" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82fcc code=0x7ffc0000
[  190.254450][   T40] audit: type=1326 audit(1776246012.071:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6814 comm="syz.0.195" exe="/syz-executor" sig=0 arch=40000003 syscall=265 compat=1 ip=0xf7f82fcc code=0x7ffc0000
[  190.271284][   T40] audit: type=1326 audit(1776246012.071:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6814 comm="syz.0.195" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82fcc code=0x7ffc0000
[  190.335586][   T40] audit: type=1326 audit(1776246012.071:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6814 comm="syz.0.195" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82fcc code=0x7ffc0000
[  190.404744][   T40] audit: type=1326 audit(1776246012.071:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6814 comm="syz.0.195" exe="/syz-executor" sig=0 arch=40000003 syscall=83 compat=1 ip=0xf7f82fcc code=0x7ffc0000
[  190.459574][   T40] audit: type=1326 audit(1776246012.071:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6814 comm="syz.0.195" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f82fcc code=0x7ffc0000
[  190.748960][ T6831] sp0: Synchronizing with TNC
[  190.996453][ T6841] netlink: 4 bytes leftover after parsing attributes in process `syz.2.201'.
[  191.907551][ T6033] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  192.067224][ T6033] usb 9-1: Using ep0 maxpacket: 16
[  192.154214][ T5949] Bluetooth: hci4: Malformed LE Event: 0x0d
[  192.165823][ T6033] usb 9-1: unable to get BOS descriptor or descriptor too short
[  192.228602][ T6033] usb 9-1: unable to read config index 0 descriptor/start: -71
[  192.233616][ T6033] usb 9-1: can't read configurations, error -71
[  192.744357][ T6873] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  193.258610][ T6883] block nbd4: shutting down sockets
[  193.574338][ T6897] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.216'.
[  193.699999][ T6894] loop4: detected capacity change from 0 to 7
[  193.903115][ T6691] Buffer I/O error on dev loop4, logical block 0, async page read
[  193.942709][ T6691] Buffer I/O error on dev loop4, logical block 0, async page read
[  193.950083][ T6691] Buffer I/O error on dev loop4, logical block 0, async page read
[  193.961078][ T6691] Buffer I/O error on dev loop4, logical block 0, async page read
[  193.987992][ T6691] Buffer I/O error on dev loop4, logical block 0, async page read
[  195.324264][ T6072] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  195.541025][ T6072] usb 8-1: Using ep0 maxpacket: 16
[  195.565646][ T6072] usb 8-1: unable to get BOS descriptor or descriptor too short
[  195.566255][ T5949] Bluetooth: hci0: Malformed LE Event: 0x0d
[  195.574468][ T6072] usb 8-1: unable to read config index 0 descriptor/start: -71
[  195.611518][ T6072] usb 8-1: can't read configurations, error -71
[  195.737737][ T6921] netlink: 16 bytes leftover after parsing attributes in process `syz.0.222'.
[  196.185995][ T6923] 9p: Bad value for 'rfdno'
[  196.965555][ T6938] netlink: 8 bytes leftover after parsing attributes in process `syz.3.229'.
[  197.635361][ T6944] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  197.646875][ T6944] netlink: 'syz.4.230': attribute type 2 has an invalid length.
[  197.667924][ T6944] !: entered promiscuous mode
[  198.088240][ T6012] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  198.632479][ T6956] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.233'.
[  198.746431][ T6957] loop4: detected capacity change from 0 to 7
[  198.777275][ T6072] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  198.841378][ T6691] Buffer I/O error on dev loop4, logical block 0, async page read
[  198.858455][ T6691] Buffer I/O error on dev loop4, logical block 0, async page read
[  198.865745][ T6691] Buffer I/O error on dev loop4, logical block 0, async page read
[  198.891456][ T6691] Buffer I/O error on dev loop4, logical block 0, async page read
[  198.896377][ T6691] Buffer I/O error on dev loop4, logical block 0, async page read
[  198.949126][ T6072] usb 8-1: Using ep0 maxpacket: 16
[  198.982891][ T5949] Bluetooth: hci0: Malformed LE Event: 0x0d
[  199.000703][ T6072] usb 8-1: unable to get BOS descriptor or descriptor too short
[  199.008061][ T6072] usb 8-1: unable to read config index 0 descriptor/start: -71
[  199.016630][ T6072] usb 8-1: can't read configurations, error -71
[  199.216877][ T1413] ieee802154 phy0 wpan0: encryption failed: -22
[  199.236913][ T1413] ieee802154 phy1 wpan1: encryption failed: -22
[  199.723085][ T6966] orangefs: client-core tried to read wrong size
[  200.177495][ T6983] netlink: 20 bytes leftover after parsing attributes in process `syz.3.241'.
[  200.197376][   T29] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  200.283631][ T6987] batman_adv: batadv0: Adding interface: dummy0
[  200.303107][ T6987] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  200.409383][ T6987] batman_adv: batadv0: Interface activated: dummy0
[  200.410384][ T6992] xt_TCPMSS: Only works on TCP SYN packets
[  200.427448][   T29] usb 5-1: Using ep0 maxpacket: 16
[  200.444157][   T29] usb 5-1: unable to get BOS descriptor or descriptor too short
[  200.447191][   T29] usb 5-1: unable to read config index 0 descriptor/start: -71
[  200.447226][   T29] usb 5-1: can't read configurations, error -71
[  200.471056][ T6989] batadv0: mtu less than device minimum
[  200.503337][ T5949] Bluetooth: hci3: Malformed LE Event: 0x0d
[  200.518985][ T6989] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  200.551700][ T6989] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  200.574547][ T6989] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  200.580049][ T6989] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  200.588749][ T6989] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  200.601176][ T6989] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  200.626113][ T6989] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  200.633864][ T6989] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  200.652659][ T6989] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  201.780021][ T7013] orangefs: client-core tried to read wrong size
[  202.154528][ T7018] 9p: Bad value for 'rfdno'
[  202.301581][ T7017] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.249'.
[  203.619037][   T40] kauditd_printk_skb: 13 callbacks suppressed
[  203.619057][   T40] audit: type=1326 audit(1776246025.581:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7027 comm="syz.3.253" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704efcc code=0x7ffc0000
[  203.644426][   T40] audit: type=1326 audit(1776246025.581:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7027 comm="syz.3.253" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704efcc code=0x7ffc0000
[  203.750758][   T40] audit: type=1326 audit(1776246025.591:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7027 comm="syz.3.253" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf704efcc code=0x7ffc0000
[  203.825538][   T40] audit: type=1326 audit(1776246025.591:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7027 comm="syz.3.253" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704efcc code=0x7ffc0000
[  203.917220][   T40] audit: type=1326 audit(1776246025.591:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7027 comm="syz.3.253" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704efcc code=0x7ffc0000
[  203.926943][ T7031] netlink: 144552 bytes leftover after parsing attributes in process `syz.0.254'.
[  204.082029][   T40] audit: type=1326 audit(1776246025.591:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7027 comm="syz.3.253" exe="/syz-executor" sig=0 arch=40000003 syscall=265 compat=1 ip=0xf704efcc code=0x7ffc0000
[  204.092480][   T40] audit: type=1326 audit(1776246025.591:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7027 comm="syz.3.253" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704efcc code=0x7ffc0000
[  204.125391][   T40] audit: type=1326 audit(1776246025.591:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7027 comm="syz.3.253" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704efcc code=0x7ffc0000
[  204.178430][   T40] audit: type=1326 audit(1776246025.591:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7027 comm="syz.3.253" exe="/syz-executor" sig=0 arch=40000003 syscall=83 compat=1 ip=0xf704efcc code=0x7ffc0000
[  204.221488][   T40] audit: type=1326 audit(1776246025.591:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7027 comm="syz.3.253" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704efcc code=0x7ffc0000
[  204.532466][ T7038] dvmrp1: tun_chr_ioctl cmd 1074025677
[  204.536330][ T7038] dvmrp1: linktype set to 804
[  204.575703][ T7040] netlink: 'syz.0.257': attribute type 10 has an invalid length.
[  204.688069][ T7041] netlink: 'syz.0.257': attribute type 10 has an invalid length.
[  204.726361][ T7040] team0: Port device dummy0 added
[  204.788343][ T7041] team0: Port device dummy0 removed
[  204.795639][ T7041] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  206.503179][ T7083] 9p: Bad value for 'rfdno'
[  206.947000][ T7087] netlink: 'syz.0.262': attribute type 1 has an invalid length.
[  207.023957][ T7087] 8021q: adding VLAN 0 to HW filter on device bond1
[  207.075093][ T7092] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  207.356340][ T7086] bond1: (slave gretap1): making interface the new active one
[  207.389413][ T7086] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  208.759837][ T7102] mkiss: ax0: crc mode is auto.
[  209.352851][ T7110] netlink: 144552 bytes leftover after parsing attributes in process `syz.4.265'.
[  210.887886][ T7125] net_ratelimit: 10 callbacks suppressed
[  210.887911][ T7125] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  211.102635][ T7127] netlink: 24 bytes leftover after parsing attributes in process `syz.4.267'.
[  211.271320][ T7131] 9p: Bad value for 'rfdno'
[  211.741953][ T7145] block nbd2: shutting down sockets
[  211.807641][ T7149] netlink: 144552 bytes leftover after parsing attributes in process `syz.4.274'.
[  212.528889][ T7173] 9p: Bad value for 'rfdno'
[  212.640595][ T7175] overlayfs: failed to resolve './bus/file0': -2
[  212.649002][ T7175] syz_tun: entered allmulticast mode
[  212.677515][ T7177] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  212.835262][ T7177] netlink: 24 bytes leftover after parsing attributes in process `syz.0.283'.
[  213.293255][ T7189] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.286'.
[  214.346898][ T7202] 9p: Bad value for 'rfdno'
[  215.389913][ T7223] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.299'.
[  217.029269][ T7248] netlink: 132 bytes leftover after parsing attributes in process `syz.3.314'.
[  217.035500][ T7248] FAULT_INJECTION: forcing a failure.
[  217.035500][ T7248] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  217.063173][ T7248] CPU: 2 UID: 0 PID: 7248 Comm: syz.3.314 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  217.063198][ T7248] Tainted: [L]=SOFTLOCKUP
[  217.063203][ T7248] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  217.063211][ T7248] Call Trace:
[  217.063217][ T7248]  <TASK>
[  217.063223][ T7248]  dump_stack_lvl+0x100/0x190
[  217.063252][ T7248]  should_fail_ex.cold+0x5/0xa
[  217.063271][ T7248]  _copy_from_user+0x2e/0xd0
[  217.063289][ T7248]  kstrtouint_from_user+0xd6/0x1d0
[  217.063308][ T7248]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  217.063327][ T7248]  ? __lock_acquire+0x4a5/0x2630
[  217.063356][ T7248]  proc_fail_nth_write+0x83/0x220
[  217.063380][ T7248]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  217.063406][ T7248]  vfs_write+0x2aa/0x1070
[  217.063423][ T7248]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  217.063445][ T7248]  ? __pfx_vfs_write+0x10/0x10
[  217.063458][ T7248]  ? find_held_lock+0x2b/0x80
[  217.063472][ T7248]  ? __fget_files+0x215/0x3d0
[  217.063492][ T7248]  ? __fget_files+0x21f/0x3d0
[  217.063538][ T7248]  ksys_write+0x12a/0x250
[  217.063555][ T7248]  ? __pfx_ksys_write+0x10/0x10
[  217.063573][ T7248]  ? rcu_is_watching+0x12/0xc0
[  217.063590][ T7248]  do_int80_emulation+0x141/0x700
[  217.063617][ T7248]  asm_int80_emulation+0x1a/0x20
[  217.063636][ T7248] RIP: 0023:0xf7185cab
[  217.063652][ T7248] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  217.063668][ T7248] RSP: 002b:00000000f543d4bc EFLAGS: 00000246 ORIG_RAX: 0000000000000004
[  217.063683][ T7248] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f543d5d0
[  217.063692][ T7248] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  217.063700][ T7248] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  217.063708][ T7248] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  217.063716][ T7248] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  217.063741][ T7248]  </TASK>
[  217.147641][ T7252] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  217.396787][ T7250] netlink: 'syz.2.308': attribute type 1 has an invalid length.
[  217.705890][ T7250] 8021q: adding VLAN 0 to HW filter on device bond1
[  218.201550][ T7264] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(9)
[  218.209512][ T7264] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  218.347880][ T7264] vhci_hcd vhci_hcd.0: Device attached
[  218.599737][ T7268] vhci_hcd: connection closed
[  218.604560][ T7071] vhci_hcd vhci_hcd.4: stop threads
[  218.640344][ T7071] vhci_hcd vhci_hcd.4: release socket
[  218.702543][ T6072] usb 46-1: SetAddress Request (2) to port 0
[  218.707178][ T6072] usb 46-1: new SuperSpeed USB device number 2 using vhci_hcd
[  218.712200][ T7071] vhci_hcd vhci_hcd.4: disconnect device
[  218.789802][ T7280] netlink: 16 bytes leftover after parsing attributes in process `syz.2.315'.
[  218.811087][ T7279] netlink: 132 bytes leftover after parsing attributes in process `syz.0.316'.
[  218.828162][ T6072] usb 46-1: enqueue for inactive port 0
[  218.896495][ T7281] Illegal XDP return value 4294967294 on prog  (id 23) dev syz_tun, expect packet loss!
[  219.234482][ T6072] usb usb46-port1: attempt power cycle
[  219.591732][ T7285] netlink: 144552 bytes leftover after parsing attributes in process `syz.2.318'.
[  219.907990][ T6072] usb usb46-port1: unable to enumerate USB device
[  220.080678][ T7283] tipc: Started in network mode
[  220.085680][ T7283] tipc: Node identity 5abe7f91100c, cluster identity 4711
[  220.112193][ T7283] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  220.175761][ T7283] syzkaller0: entered promiscuous mode
[  220.185441][ T7283] syzkaller0: entered allmulticast mode
[  220.188968][ T7283] tipc: Resetting bearer <eth:syzkaller0>
[  220.294065][ T7282] tipc: Resetting bearer <eth:syzkaller0>
[  221.204475][ T7304] netlink: 4 bytes leftover after parsing attributes in process `syz.2.324'.
[  221.936425][ T7311] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.326'.
[  223.070990][ T7314] netlink: 144552 bytes leftover after parsing attributes in process `syz.3.327'.
[  223.314738][ T7316] netlink: 36 bytes leftover after parsing attributes in process `syz.2.328'.
[  223.373887][ T7318] netlink: 36 bytes leftover after parsing attributes in process `syz.3.329'.
[  226.602969][ T7282] tipc: Disabling bearer <eth:syzkaller0>
[  226.894775][ T5294] Bluetooth: hci0: command 0x0406 tx timeout
[  226.912898][ T5294] Bluetooth: hci3: command 0x0406 tx timeout
[  226.918594][ T5294] Bluetooth: hci1: command 0x0406 tx timeout
[  227.199803][ T7324] netlink: 'syz.0.330': attribute type 3 has an invalid length.
[  227.203416][ T7324] netlink: 'syz.0.330': attribute type 1 has an invalid length.
[  227.209329][ T7324] netlink: 228 bytes leftover after parsing attributes in process `syz.0.330'.
[  227.488935][ T7327] netlink: 16 bytes leftover after parsing attributes in process `syz.0.331'.
[  227.796259][ T7330] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.332' sets config #1
[  227.819716][ T7330] binder: 7328:7330 ioctl 40026f33 80000300 returned -22
[  227.845414][ T7330] binder: 7328:7330 ioctl 89f0 80000180 returned -22
[  230.464223][ T6033] tipc: Node number set to 1253212049
[  230.751806][ T7343] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.336'.
[  230.784838][ T7344] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.335'.
[  230.787872][   T40] kauditd_printk_skb: 13 callbacks suppressed
[  230.787892][   T40] audit: type=1804 audit(1776246052.731:214): pid=7340 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.333" name="/newroot/86/file0" dev="tmpfs" ino=517 res=1 errno=0
[  230.852669][ T7345] netlink: 144552 bytes leftover after parsing attributes in process `syz.3.337'.
[  230.901090][ T7347] loop4: detected capacity change from 0 to 7
[  231.043097][    C2] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  231.047216][    C2] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  231.051078][    C2] Buffer I/O error on dev loop4, logical block 0, async page read
[  231.066130][    C2] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  231.081936][    C2] Buffer I/O error on dev loop4, logical block 0, async page read
[  231.117102][    C2] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  231.136274][    C2] Buffer I/O error on dev loop4, logical block 0, async page read
[  231.180083][    C3] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  231.184589][    C3] Buffer I/O error on dev loop4, logical block 0, async page read
[  231.195551][    C3] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  231.200705][    C3] Buffer I/O error on dev loop4, logical block 0, async page read
[  231.287242][    T9] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  231.468127][    T9] usb 7-1: Using ep0 maxpacket: 32
[  231.474781][    T9] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  231.574763][    T9] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  231.579129][    T9] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  231.637318][    T9] usb 7-1: Product: syz
[  231.639302][    T9] usb 7-1: Manufacturer: syz
[  231.676957][    T9] usb 7-1: SerialNumber: syz
[  231.681788][   T40] audit: type=1326 audit(1776246053.631:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7353 comm="syz.3.339" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704efcc code=0x7ffc0000
[  231.688884][    T9] usb 7-1: config 0 descriptor??
[  231.739789][   T40] audit: type=1326 audit(1776246053.631:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7353 comm="syz.3.339" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704efcc code=0x7ffc0000
[  231.784873][ T7357] netlink: 4 bytes leftover after parsing attributes in process `syz.0.340'.
[  231.788662][ T7350] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  231.804876][   T40] audit: type=1326 audit(1776246053.691:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7353 comm="syz.3.339" exe="/syz-executor" sig=0 arch=40000003 syscall=437 compat=1 ip=0xf704efcc code=0x7ffc0000
[  231.823788][ T7359] pim6reg: entered allmulticast mode
[  231.835113][   T40] audit: type=1326 audit(1776246053.691:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7353 comm="syz.3.339" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704efcc code=0x7ffc0000
[  231.835160][   T40] audit: type=1326 audit(1776246053.691:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7353 comm="syz.3.339" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704efcc code=0x7ffc0000
[  231.835200][   T40] audit: type=1326 audit(1776246053.691:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7353 comm="syz.3.339" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf704efcc code=0x7ffc0000
[  231.835236][   T40] audit: type=1326 audit(1776246053.691:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7353 comm="syz.3.339" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704efcc code=0x7ffc0000
[  231.835270][   T40] audit: type=1326 audit(1776246053.691:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7353 comm="syz.3.339" exe="/syz-executor" sig=0 arch=40000003 syscall=14 compat=1 ip=0xf704efcc code=0x7ffc0000
[  231.835308][   T40] audit: type=1326 audit(1776246053.691:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7353 comm="syz.3.339" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704efcc code=0x7ffc0000
[  232.848986][ T7355] pim6reg: left allmulticast mode
[  232.946724][ T6072] usb 7-1: USB disconnect, device number 9
[  233.541505][ T7377] binder: BINDER_SET_CONTEXT_MGR already set
[  233.587351][ T7377] binder: 7375:7377 ioctl 4018620d 80004a80 returned -16
[  233.625273][ T7376] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  233.708530][ T7376] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  233.893269][ T7376] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  233.904067][ T7376] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  233.975962][ T7385] gretap1: entered promiscuous mode
[  233.988348][ T7376] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  234.030475][ T7390] netlink: 144552 bytes leftover after parsing attributes in process `syz.2.348'.
[  234.038547][ T7376] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  234.038799][ T7385] batman_adv: batadv0: Adding interface: gretap1
[  234.044317][ T7385] batman_adv: batadv0: The MTU of interface gretap1 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  234.060040][ T7385] batman_adv: batadv0: Not using interface gretap1 (retrying later): interface not active
[  234.210092][ T7376] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  234.246678][ T7376] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  234.301662][ T7392] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.349'.
[  234.335267][ T7394] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.350'.
[  234.423567][ T7395] loop4: detected capacity change from 0 to 7
[  234.439893][ T7376] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  234.728772][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  234.742345][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  234.750126][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  234.799817][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  234.806936][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  235.552645][ T7412] xt_TPROXY: Can be used only with -p tcp or -p udp
[  235.765460][ T5958] Bluetooth: hci0: command 0x0406 tx timeout
[  235.890679][ T5958] Bluetooth: hci3: unexpected cc 0x0c12 length: 85 > 3
[  235.898331][ T5958] Bluetooth: hci3: unexpected event for opcode 0x0c12
[  235.928146][ T5958] Bluetooth: hci1: command 0x0406 tx timeout
[  236.147635][ T7417] netlink: 144552 bytes leftover after parsing attributes in process `syz.3.358'.
[  236.257276][ T5958] Bluetooth: hci4: command 0x0c1a tx timeout
[  236.332562][ T7421] IPv6: sit1: Disabled Multicast RS
[  236.546985][ T7427] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.361'.
[  236.776528][ T7428] loop4: detected capacity change from 0 to 7
[  236.787387][    C2] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  236.809871][    C2] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  236.823419][    C2] Buffer I/O error on dev loop4, logical block 0, async page read
[  236.929359][   T40] kauditd_printk_skb: 15 callbacks suppressed
[  236.929380][   T40] audit: type=1804 audit(1776246058.901:239): pid=7430 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.362" name="/newroot/99/file0" dev="tmpfs" ino=588 res=1 errno=0
[  236.961959][ T7430] ref_ctr increment failed for inode: 0x24c offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff888029efc980
[  237.016428][ T7429] uprobe: syz.0.362:7429 failed to unregister, leaking uprobe
[  237.019476][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  237.036616][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  237.042876][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  237.049479][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  237.314696][ T7433] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.364'.
[  237.942671][ T5958] Bluetooth: hci0: command 0x0406 tx timeout
[  238.018484][ T5958] Bluetooth: hci1: command 0x0406 tx timeout
[  238.337660][ T5958] Bluetooth: hci4: command 0x0c1a tx timeout
[  238.423455][ T7442] binder: 7441:7442 ioctl c0306201 80000080 returned -14
[  238.429240][ T7442] binder: 7441:7442 ioctl c0306201 800003c0 returned -14
[  238.631379][ T5958] Bluetooth: hci0: unexpected cc 0x0c12 length: 85 > 3
[  238.636217][ T5958] Bluetooth: hci0: unexpected event for opcode 0x0c12
[  238.723362][ T7450] netlink: 144552 bytes leftover after parsing attributes in process `syz.0.370'.
[  239.193590][ T7461] ref_ctr increment failed for inode: 0x1f4 offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff888013558c40
[  239.215909][   T40] audit: type=1804 audit(1776246061.171:240): pid=7461 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.373" name="/newroot/80/file0" dev="tmpfs" ino=500 res=1 errno=0
[  239.243353][ T7460] uprobe: syz.4.373:7460 failed to unregister, leaking uprobe
[  239.331089][ T7464] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.374'.
[  239.584647][ T7463] loop4: detected capacity change from 0 to 7
[  239.723446][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  239.743893][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  239.796917][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  239.876681][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  239.885714][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  240.421548][ T5958] Bluetooth: hci4: command 0x0c1a tx timeout
[  241.951295][ T7488] capability: warning: `syz.3.381' uses deprecated v2 capabilities in a way that may be insecure
[  242.207345][ T5958] Bluetooth: hci4: unexpected cc 0x0c12 length: 85 > 3
[  242.210213][ T5958] Bluetooth: hci4: unexpected event for opcode 0x0c12
[  242.586345][ T7499] netlink: 144552 bytes leftover after parsing attributes in process `syz.4.382'.
[  242.829454][ T7501] pim6reg: entered allmulticast mode
[  242.842913][ T7503] netlink: 48 bytes leftover after parsing attributes in process `syz.4.383'.
[  242.843548][ T7501] pim6reg: left allmulticast mode
[  243.174201][ T7503] netlink: 8 bytes leftover after parsing attributes in process `syz.4.383'.
[  243.402687][ T7516] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.386'.
[  243.544107][ T7515] loop4: detected capacity change from 0 to 7
[  243.631672][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  243.636130][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  243.644973][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  243.650480][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  243.654734][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  244.032470][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  244.174151][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  244.249282][ T7520] i2c i2c-1: dtv_property_process_set: SET cmd 0xfbe19e69 undefined
[  244.298359][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  244.303609][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  244.314227][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  244.314532][ T7520] netlink: 132 bytes leftover after parsing attributes in process `syz.4.387'.
[  245.911615][ T7536] netlink: 144552 bytes leftover after parsing attributes in process `syz.2.393'.
[  245.941065][ T7538] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.396' sets config #1
[  245.967468][ T7538] binder: 7537:7538 ioctl 40026f33 80000300 returned -22
[  246.012341][ T7538] binder: 7537:7538 ioctl 89f0 80000180 returned -22
[  246.325043][ T7549] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.400'.
[  247.508422][ T7561] 9p: Bad value for 'rfdno'
[  247.662737][ T7563] netlink: 28 bytes leftover after parsing attributes in process `syz.2.402'.
[  247.667461][ T7563] netlink: 36 bytes leftover after parsing attributes in process `syz.2.402'.
[  248.865639][ T7568] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.408' sets config #1
[  248.891609][ T7568] binder: 7567:7568 ioctl 40026f33 80000300 returned -22
[  248.911927][ T7568] binder: 7567:7568 ioctl 89f0 80000180 returned -22
[  248.921750][ T5958] Bluetooth: hci1: ACL packet for unknown connection handle 200
[  249.585003][ T7580] netlink: 144552 bytes leftover after parsing attributes in process `syz.0.406'.
[  249.978837][ T7579] netlink: 8 bytes leftover after parsing attributes in process `syz.2.411'.
[  250.023204][ T7585] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.413'.
[  250.175526][ T7587] loop4: detected capacity change from 0 to 7
[  250.246798][    C0] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  250.308445][    C1] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  250.318719][    C1] Buffer I/O error on dev loop4, logical block 0, async page read
[  250.372883][ T7592] 9p: Bad value for 'rfdno'
[  250.460294][ T7590] netlink: 32 bytes leftover after parsing attributes in process `syz.4.415'.
[  250.509845][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  250.519379][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  250.537908][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  250.546109][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  250.738972][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  250.743725][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  250.758963][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  250.775180][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  250.780056][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  251.110000][ T7600] IPv6: NLM_F_CREATE should be specified when creating new route
[  251.220106][ T7603] netlink: 144552 bytes leftover after parsing attributes in process `syz.0.421'.
[  251.347779][ T6013] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[  251.547516][ T6013] usb 9-1: Using ep0 maxpacket: 16
[  251.640802][ T6013] usb 9-1: unable to get BOS descriptor or descriptor too short
[  251.672718][ T6013] usb 9-1: unable to read config index 0 descriptor/start: -71
[  251.680106][ T6013] usb 9-1: can't read configurations, error -71
[  252.541020][ T7618] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.424'.
[  252.609485][ T7621] loop4: detected capacity change from 0 to 7
[  255.277502][ T6012] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  255.457241][ T6012] usb 7-1: Using ep0 maxpacket: 16
[  255.491234][ T6012] usb 7-1: unable to get BOS descriptor or descriptor too short
[  255.506862][ T6012] usb 7-1: unable to read config index 0 descriptor/start: -71
[  255.515026][ T6012] usb 7-1: can't read configurations, error -71
[  257.927145][ T6013] usb 9-1: new high-speed USB device number 12 using dummy_hcd
[  258.062505][ T7689] capability: warning: `syz.0.446' uses 32-bit capabilities (legacy support in use)
[  258.137219][ T6013] usb 9-1: Using ep0 maxpacket: 16
[  258.193658][ T6013] usb 9-1: unable to get BOS descriptor or descriptor too short
[  258.219138][ T6013] usb 9-1: unable to read config index 0 descriptor/start: -71
[  258.222190][ T6013] usb 9-1: can't read configurations, error -71
[  258.989713][    T9] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[  259.169785][ T7700] netlink: 'syz.4.448': attribute type 1 has an invalid length.
[  259.183258][    T9] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  259.199892][    T9] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  259.213763][    T9] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  259.228922][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  259.265800][ T7697] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  259.306342][    T9] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  259.621001][ T7706] devpts: Bad value for 'max'
[  259.706283][    T9] usb 8-1: USB disconnect, device number 15
[  260.745964][ T1413] ieee802154 phy0 wpan0: encryption failed: -22
[  260.788793][ T1413] ieee802154 phy1 wpan1: encryption failed: -22
[  261.375570][ T7724] netlink: 'syz.0.451': attribute type 7 has an invalid length.
[  261.825963][ T6012] usb 9-1: new high-speed USB device number 14 using dummy_hcd
[  262.027237][ T6012] usb 9-1: Using ep0 maxpacket: 16
[  262.052687][ T6012] usb 9-1: unable to get BOS descriptor or descriptor too short
[  262.062080][ T6012] usb 9-1: unable to read config index 0 descriptor/start: -71
[  262.068996][ T6012] usb 9-1: can't read configurations, error -71
[  262.724537][ T7724] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10)
[  262.751179][ T7724] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  262.764318][ T7724] vhci_hcd vhci_hcd.0: Device attached
[  262.838317][ T7728] vhci_hcd: connection closed
[  262.859124][  T179] vhci_hcd vhci_hcd.0: stop threads
[  262.863024][  T179] vhci_hcd vhci_hcd.0: release socket
[  262.865978][  T179] vhci_hcd vhci_hcd.0: disconnect device
[  262.869976][ T7732] 9p: Bad value for 'rfdno'
[  262.881462][ T7733] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.458'.
[  263.199267][ T7736] loop4: detected capacity change from 0 to 7
[  263.247165][ T7739] netlink: 144552 bytes leftover after parsing attributes in process `syz.3.460'.
[  263.338615][ T7333] buffer_io_error: 5 callbacks suppressed
[  263.338633][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  263.348192][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  263.395034][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  263.411383][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  263.416608][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  263.463740][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  263.534706][ T7746] netlink: 'syz.0.462': attribute type 1 has an invalid length.
[  263.538958][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  263.550263][ T7746] netlink: 4 bytes leftover after parsing attributes in process `syz.0.462'.
[  263.559278][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  263.610531][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  263.618130][ T7333] Buffer I/O error on dev loop4, logical block 0, async page read
[  263.734106][ T7749] x_tables: duplicate underflow at hook 1
[  263.898488][ T7754] orangefs: client-core tried to read wrong size
[  264.075157][ T7760] 9p: Bad value for 'rfdno'
[  264.372262][ T7764] netlink: 32 bytes leftover after parsing attributes in process `syz.4.471'.
[  264.629884][ T7770] netlink: 144552 bytes leftover after parsing attributes in process `syz.4.473'.
[  265.003228][ T7785] 9p: Bad value for 'rfdno'
[  265.057866][ T7780] orangefs: client-core tried to read wrong size
[  265.370718][ T7795] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.479'.
[  265.492301][ T7797] loop4: detected capacity change from 0 to 7
[  267.021359][ T7813] netlink: 8 bytes leftover after parsing attributes in process `syz.0.487'.
[  267.827877][ T7829] IPv6: NLM_F_CREATE should be specified when creating new route
[  267.934484][   T40] audit: type=1326 audit(1776246089.911:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7817 comm="syz.2.488" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3fcc code=0x7ffc0000
[  267.946949][ T7834] program syz.3.493 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  267.953103][   T40] audit: type=1326 audit(1776246089.911:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7817 comm="syz.2.488" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3fcc code=0x7ffc0000
[  268.179041][ T7842] 9p: Bad value for 'rfdno'
[  268.266132][ T7844] 9pnet_virtio: no channels available for device syz
[  268.504374][ T7846] 9pnet_virtio: no channels available for device syz
[  268.850728][ T7843] netlink: 4 bytes leftover after parsing attributes in process `syz.4.497'.
[  269.460938][ T7868] tipc: Failed to obtain node identity
[  269.468544][ T7868] tipc: Enabling of bearer <ib:vxcan1> rejected, failed to enable media
[  269.524805][ T7871] 9p: Bad value for 'rfdno'
[  269.922651][ T7876] bochs-drm 0000:00:01.0: [drm] Unknown color mode 135165; guessing buffer size.
[  269.966337][ T7881] netlink: 12 bytes leftover after parsing attributes in process `syz.0.509'.
[  270.708677][ T5987] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  270.937207][ T5987] usb 5-1: Using ep0 maxpacket: 32
[  270.939791][ T5987] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid maxpacket 12336, setting to 1024
[  270.939830][ T5987] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  270.941975][ T5987] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  270.942007][ T5987] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  270.942027][ T5987] usb 5-1: Product: syz
[  270.942043][ T5987] usb 5-1: Manufacturer: syz
[  270.942058][ T5987] usb 5-1: SerialNumber: syz
[  270.950569][ T5987] usb 5-1: config 0 descriptor??
[  270.951927][ T7890] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  270.962999][ T7900] 9p: Bad value for 'rfdno'
[  271.249668][ T5987] usb 5-1: USB disconnect, device number 11
[  271.477512][ T7905] overlay: Unknown parameter 'subj_role'
[  271.894530][ T7914] netlink: 112 bytes leftover after parsing attributes in process `syz.2.520'.
[  272.361583][ T6013] usb 9-1: new high-speed USB device number 16 using dummy_hcd
[  272.445835][ T7923] 9p: Bad value for 'rfdno'
[  272.602771][ T6013] usb 9-1: New USB device found, idVendor=0fe9, idProduct=db55, bcdDevice=69.fb
[  272.610039][ T6013] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=201
[  272.613428][ T6013] usb 9-1: Product: syz
[  272.616912][ T6013] usb 9-1: Manufacturer: syz
[  272.619268][ T6013] usb 9-1: SerialNumber: syz
[  272.647355][ T6013] usb 9-1: config 0 descriptor??
[  272.695086][ T6013] dvb-usb: found a 'DigitalNow DVB-T Dual USB' in warm state.
[  272.728783][ T6013] dvb-usb: bulk message failed: -22 (2/0)
[  272.783134][ T6013] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  272.811511][ T6013] dvbdev: DVB: registering new adapter (DigitalNow DVB-T Dual USB)
[  272.818685][ T6013] usb 9-1: media controller created
[  272.840265][ T6013] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  272.919980][ T7919] loop2: detected capacity change from 0 to 7
[  272.972861][ T7938] dvb-usb: bulk message failed: -22 (4/0)
[  272.989143][ T7919] Dev loop2: unable to read RDB block 7
[  273.003654][ T7938] cxusb: i2c read failed
[  273.011899][ T7919]  loop2: unable to read partition table
[  273.022460][ T7919] loop2: partition table beyond EOD, truncated
[  273.030636][ T7919] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  273.063435][ T6013] cxusb: set interface failed
[  273.081335][ T6013] dvb-usb: bulk message failed: -22 (1/0)
[  273.128867][ T6013] DVB: Unable to find symbol mt352_attach()
[  273.133098][ T6013] dvb-usb: bulk message failed: -22 (5/0)
[  273.150452][ T6013] zl10353_read_register: readreg error (reg=127, ret==-121)
[  273.155140][ T6013] dvb-usb: no frontend was attached by 'DigitalNow DVB-T Dual USB'
[  273.247476][ T6013] rc_core: IR keymap rc-dvico-mce not found
[  273.250097][ T6013] Registered IR keymap rc-empty
[  273.253617][ T7945] netlink: 8 bytes leftover after parsing attributes in process `syz.0.530'.
[  273.264748][ T6013] rc rc0: DigitalNow DVB-T Dual USB as /devices/platform/dummy_hcd.4/usb9/9-1/rc/rc0
[  273.286603][ T6013] input: DigitalNow DVB-T Dual USB as /devices/platform/dummy_hcd.4/usb9/9-1/rc/rc0/input7
[  273.303624][ T6013] dvb-usb: schedule remote query interval to 100 msecs.
[  273.306719][ T6013] dvb-usb: DigitalNow DVB-T Dual USB successfully initialized and connected.
[  273.328180][ T6013] usb 9-1: USB disconnect, device number 16
[  273.839898][ T6013] dvb-usb: DigitalNow DVB-T Dual USB successfully deinitialized and disconnected.
[  274.720300][ T7925] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  274.752250][ T7962] 9p: Bad value for 'rfdno'
[  274.833498][ T7963] netlink: 'syz.4.534': attribute type 1 has an invalid length.
[  275.167327][ T7966] loop6: detected capacity change from 0 to 524287999
[  275.173941][ T7966] buffer_io_error: 20 callbacks suppressed
[  275.173960][ T7966] Buffer I/O error on dev loop6, logical block 0, async page read
[  275.279146][ T7966] Buffer I/O error on dev loop6, logical block 0, async page read
[  275.285472][ T7966] Buffer I/O error on dev loop6, logical block 0, async page read
[  275.297865][ T7966] Buffer I/O error on dev loop6, logical block 0, async page read
[  275.303236][ T7966] Buffer I/O error on dev loop6, logical block 0, async page read
[  275.340392][ T7966] Buffer I/O error on dev loop6, logical block 0, async page read
[  275.384449][ T7966] Buffer I/O error on dev loop6, logical block 0, async page read
[  275.392379][ T7966] Buffer I/O error on dev loop6, logical block 0, async page read
[  275.395902][ T7966] ldm_validate_partition_table(): Disk read failed.
[  275.434517][ T7966] Buffer I/O error on dev loop6, logical block 0, async page read
[  275.444926][ T7966] Buffer I/O error on dev loop6, logical block 0, async page read
[  275.470130][ T7966] Dev loop6: unable to read RDB block 0
[  275.474445][ T7966]  loop6: unable to read partition table
[  275.503847][ T7966] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x) failed (rc=-5)
[  275.855555][ T7968] ldm_validate_partition_table(): Disk read failed.
[  275.882079][ T7968] Dev loop6: unable to read RDB block 0
[  275.885417][ T7968]  loop6: unable to read partition table
[  275.930143][ T7968] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x) failed (rc=-5)
[  276.348203][ T7987] 9p: Bad value for 'rfdno'
[  276.361021][    C0] ==================================================================
[  276.364451][    C0] BUG: KASAN: slab-use-after-free in _raw_spin_lock_irqsave+0x3a/0x60
[  276.379305][    C0] Read of size 1 at addr ffff888029d18018 by task syz.4.534/7960
[  276.393653][    C0] 
[  276.394778][    C0] CPU: 0 UID: 0 PID: 7960 Comm: syz.4.534 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  276.394804][    C0] Tainted: [L]=SOFTLOCKUP
[  276.394810][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  276.394821][    C0] Call Trace:
[  276.394831][    C0]  <IRQ>
[  276.394840][    C0]  dump_stack_lvl+0x100/0x190
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  276.394876][    C0]  print_report+0x156/0x4c9
[  276.394902][    C0]  ? __virt_addr_valid+0x239/0x430
[  276.394927][    C0]  ? _raw_spin_lock_irqsave+0x3a/0x60
[  276.394954][    C0]  kasan_report+0xdf/0x1d0
[  276.394988][    C0]  ? _raw_spin_lock_irqsave+0x3a/0x60
[  276.395014][    C0]  ? _raw_spin_lock_irqsave+0x3a/0x60
[  276.395038][    C0]  __kasan_check_byte+0x36/0x50
[  276.395153][    C0]  lock_acquire+0x12a/0x370
[  276.395178][    C0]  ? do_raw_spin_unlock+0x53/0x1e0
[  276.395202][    C0]  ? .slowpath+0x9/0x18
[  276.395220][    C0]  _raw_spin_lock_irqsave+0x3a/0x60
[  276.395243][    C0]  ? p9_req_put+0xaf/0x250
[  276.395261][    C0]  p9_req_put+0xaf/0x250
[  276.395280][    C0]  req_done+0x1dc/0x2e0
[  276.395305][    C0]  ? __pfx_req_done+0x10/0x10
[  276.395326][    C0]  ? sched_clock_cpu+0x6c/0x570
[  276.395350][    C0]  ? __pfx_req_done+0x10/0x10
[  276.395372][    C0]  vring_interrupt+0x2ef/0x650
[  276.395395][    C0]  ? __pfx_vring_interrupt+0x10/0x10
[  276.395414][    C0]  __handle_irq_event_percpu+0x235/0x8c0
[  276.395437][    C0]  handle_irq_event+0xab/0x1e0
[  276.395454][    C0]  handle_edge_irq+0x35e/0x960
[  276.395473][    C0]  __common_interrupt+0xd8/0x2f0
[  276.395498][    C0]  common_interrupt+0xb9/0xe0
[  276.395522][    C0]  </IRQ>
[  276.395527][    C0]  <TASK>
[  276.395534][    C0]  asm_common_interrupt+0x26/0x40
[  276.395553][    C0] RIP: 0010:_raw_spin_unlock_irqrestore+0x31/0x80
[  276.395579][    C0] Code: f5 53 48 8b 74 24 10 48 89 fb 48 83 c7 18 e8 36 4a 53 f6 48 89 df e8 0e 9a 53 f6 f7 c5 00 02 00 00 75 23 9c 58 f6 c4 02 75 37 <bf> 01 00 00 00 e8 e5 8a 43 f6 65 8b 05 4e ef 7d 08 85 c0 74 16 5b
[  276.395599][    C0] RSP: 0018:ffffc9000caff708 EFLAGS: 00000246
[  276.395617][    C0] RAX: 0000000000000002 RBX: ffff88804b044d80 RCX: 0000000000000040
[  276.395629][    C0] RDX: 0000000000000000 RSI: ffffffff8de87cd2 RDI: ffffffff8c1b3d60
[  276.395639][    C0] RBP: 0000000000000246 R08: 0000000000000001 R09: 0000000000000000
[  276.395649][    C0] R10: 0000000000000001 R11: 0000000000000000 R12: ffff88802629d7c0
[  276.395659][    C0] R13: 0000000000000246 R14: ffff88804b044d68 R15: ffffc9000caff888
[  276.395678][    C0]  __skb_try_recv_datagram+0x16a/0x500
[  276.395706][    C0]  ? __pfx_sk_busy_loop_end+0x10/0x10
[  276.395728][    C0]  ? __pfx___skb_try_recv_datagram+0x10/0x10
[  276.395752][    C0]  __unix_dgram_recvmsg+0x1bc/0xc30
[  276.395779][    C0]  ? __pfx___unix_dgram_recvmsg+0x10/0x10
[  276.395801][    C0]  ? __lock_acquire+0x4a5/0x2630
[  276.395827][    C0]  unix_dgram_recvmsg+0xd0/0x110
[  276.395850][    C0]  ____sys_recvmsg+0x5b3/0x640
[  276.395870][    C0]  ? __pfx_unix_dgram_recvmsg+0x10/0x10
[  276.395891][    C0]  ? __pfx_____sys_recvmsg+0x10/0x10
[  276.395911][    C0]  ? ___sys_recvmsg+0x177/0x1a0
[  276.395926][    C0]  ? kfree+0x2ce/0x690
[  276.395948][    C0]  ___sys_recvmsg+0x16a/0x1a0
[  276.395966][    C0]  ? __pfx____sys_recvmsg+0x10/0x10
[  276.395986][    C0]  ? lockdep_hardirqs_on+0x78/0x100
[  276.396004][    C0]  ? __pfx___might_resched+0x10/0x10
[  276.396029][    C0]  ? do_recvmmsg+0x356/0x760
[  276.396049][    C0]  do_recvmmsg+0x563/0x760
[  276.396068][    C0]  ? __pfx_do_recvmmsg+0x10/0x10
[  276.396086][    C0]  ? sched_setaffinity+0x2d7/0x400
[  276.396105][    C0]  ? sched_setaffinity+0xe0/0x400
[  276.396119][    C0]  ? __pfx_sched_setaffinity+0x10/0x10
[  276.396132][    C0]  ? fd_install+0x24f/0x580
[  276.396149][    C0]  __sys_recvmmsg+0x21f/0x270
[  276.396163][    C0]  ? __pfx___sys_recvmmsg+0x10/0x10
[  276.396178][    C0]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  276.396201][    C0]  ? __do_fast_syscall_32+0x98/0x940
[  276.396216][    C0]  ? lockdep_hardirqs_on+0x78/0x100
[  276.396228][    C0]  __do_fast_syscall_32+0xe7/0x940
[  276.396244][    C0]  do_fast_syscall_32+0x32/0x70
[  276.396258][    C0]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  276.396274][    C0] RIP: 0023:0xf707efcc
[  276.396287][    C0] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  276.396299][    C0] RSP: 002b:00000000f542b50c EFLAGS: 00000292 ORIG_RAX: 0000000000000151
[  276.396314][    C0] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000040
[  276.396322][    C0] RDX: 00000000080002c1 RSI: 0000000000000002 RDI: 0000000000000000
[  276.396331][    C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  276.396339][    C0] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  276.396348][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  276.396361][    C0]  </TASK>
[  276.396366][    C0] 
[  276.802004][    C0] Allocated by task 7987:
[  276.804626][    C0]  kasan_save_stack+0x30/0x50
[  276.806453][    C0]  kasan_save_track+0x14/0x30
[  276.808259][    C0]  __kasan_kmalloc+0xaa/0xb0
[  276.810461][    C0]  p9_client_create+0xaf/0xd40
[  276.813361][    C0]  v9fs_session_init+0x40/0xce0
[  276.815893][    C0]  v9fs_get_tree+0xb8/0xb50
[  276.817889][    C0]  vfs_get_tree+0x92/0x320
[  276.819674][    C0]  path_mount+0x7d0/0x23d0
[  276.821648][    C0]  __ia32_sys_mount+0x292/0x310
[  276.824026][    C0]  __do_fast_syscall_32+0xe7/0x940
[  276.827289][    C0]  do_fast_syscall_32+0x32/0x70
[  276.830300][    C0]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  276.833420][    C0] 
[  276.834676][    C0] Freed by task 7987:
[  276.836774][    C0]  kasan_save_stack+0x30/0x50
[  276.839483][    C0]  kasan_save_track+0x14/0x30
[  276.843382][    C0]  kasan_save_free_info+0x3b/0x70
[  276.846756][    C0]  __kasan_slab_free+0x5f/0x80
[  276.849831][    C0]  kfree+0x1d8/0x690
[  276.851879][    C0]  p9_client_create+0x72d/0xd40
[  276.854452][    C0]  v9fs_session_init+0x40/0xce0
[  276.857580][    C0]  v9fs_get_tree+0xb8/0xb50
[  276.861242][    C0]  vfs_get_tree+0x92/0x320
[  276.864753][    C0]  path_mount+0x7d0/0x23d0
[  276.869173][    C0]  __ia32_sys_mount+0x292/0x310
[  276.873340][    C0]  __do_fast_syscall_32+0xe7/0x940
[  276.876234][    C0]  do_fast_syscall_32+0x32/0x70
[  276.879386][    C0]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  276.884308][    C0] 
[  276.886101][    C0] The buggy address belongs to the object at ffff888029d18000
[  276.886101][    C0]  which belongs to the cache kmalloc-512 of size 512
[  276.895881][    C0] The buggy address is located 24 bytes inside of
[  276.895881][    C0]  freed 512-byte region [ffff888029d18000, ffff888029d18200)
[  276.906100][    C0] 
[  276.907790][    C0] The buggy address belongs to the physical page:
[  276.912595][    C0] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x29d18
[  276.916855][    C0] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  276.921150][    C0] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  276.924140][    C0] page_type: f5(slab)
[  276.925924][    C0] raw: 00fff00000000040 ffff88801b842c80 dead000000000100 dead000000000122
[  276.930779][    C0] raw: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[  276.936236][    C0] head: 00fff00000000040 ffff88801b842c80 dead000000000100 dead000000000122
[  276.941439][    C0] head: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[  276.946923][    C0] head: 00fff00000000002 ffffea0000a74601 00000000ffffffff 00000000ffffffff
[  276.951763][    C0] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  276.956773][    C0] page dumped because: kasan: bad access detected
[  276.964166][    C0] page_owner tracks the page as allocated
[  276.967585][    C0] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5954, tgid 5954 (syz-executor), ts 107576761558, free_ts 106725028000
[  276.982351][    C0]  post_alloc_hook+0x153/0x170
[  276.985810][    C0]  get_page_from_freelist+0x111d/0x3140
[  276.990504][    C0]  __alloc_frozen_pages_noprof+0x27c/0x2bd0
[  276.995469][    C0]  new_slab+0xa6/0x6b0
[  276.998501][    C0]  refill_objects+0x26b/0x400
[  277.002084][    C0]  __pcs_replace_empty_main+0x1ab/0x660
[  277.004955][    C0]  __kmalloc_noprof+0x688/0x850
[  277.007539][    C0]  fib6_info_alloc+0x40/0x160
[  277.011406][    C0]  ip6_route_info_create+0x14c/0xad0
[  277.015102][    C0]  ip6_route_add+0x4b/0x1d0
[  277.017645][    C0]  addrconf_prefix_route+0x2fb/0x510
[  277.021412][    C0]  inet6_addr_add+0x575/0x9a0
[  277.025418][    C0]  inet6_rtm_newaddr+0x1475/0x1bb0
[  277.028657][    C0]  rtnetlink_rcv_msg+0x95e/0xe90
[  277.033635][    C0]  netlink_rcv_skb+0x159/0x420
[  277.037569][    C0]  netlink_unicast+0x5aa/0x870
[  277.040109][    C0] page last free pid 5947 tgid 5947 stack trace:
[  277.044003][    C0]  __free_frozen_pages+0x7e1/0x10d0
[  277.047593][    C0]  qlist_free_all+0x47/0xe0
[  277.051329][    C0]  kasan_quarantine_reduce+0x1a0/0x1f0
[  277.055161][    C0]  __kasan_slab_alloc+0x69/0x90
[  277.057858][    C0]  __kmalloc_cache_noprof+0x243/0x6f0
[  277.060721][    C0]  netdevice_event+0x308/0x9a0
[  277.063817][    C0]  notifier_call_chain+0x99/0x400
[  277.066321][    C0]  call_netdevice_notifiers_info+0xbe/0x110
[  277.070489][    C0]  __dev_notify_flags+0x12c/0x2e0
[  277.074193][    C0]  netif_change_flags+0x108/0x160
[  277.078620][    C0]  do_setlink.isra.0+0x1abb/0x3e50
[  277.083342][    C0]  rtnl_newlink+0x11c2/0x2380
[  277.087727][    C0]  rtnetlink_rcv_msg+0x95e/0xe90
[  277.092326][    C0]  netlink_rcv_skb+0x159/0x420
[  277.094825][    C0]  netlink_unicast+0x5aa/0x870
[  277.097201][    C0]  netlink_sendmsg+0x8b0/0xda0
[  277.099587][    C0] 
[  277.100727][    C0] Memory state around the buggy address:
[  277.105113][    C0]  ffff888029d17f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  277.111031][    C0]  ffff888029d17f80: 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc fc
[  277.115618][    C0] >ffff888029d18000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  277.120175][    C0]                             ^
[  277.124142][    C0]  ffff888029d18080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  277.129898][    C0]  ffff888029d18100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  277.135614][    C0] ==================================================================
[  277.139905][    C0] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  277.143931][    C0] CPU: 0 UID: 0 PID: 7960 Comm: syz.4.534 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  277.150339][    C0] Tainted: [L]=SOFTLOCKUP
[  277.152280][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  277.156691][    C0] Call Trace:
[  277.158379][    C0]  <IRQ>
[  277.166499][    C0]  dump_stack_lvl+0x100/0x190
[  277.171497][    C0]  vpanic+0x552/0x970
[  277.174048][    C0]  ? __pfx_vpanic+0x10/0x10
[  277.190867][    C0]  ? __pfx_vprintk_emit+0x10/0x10
[  277.193024][    C0]  ? _raw_spin_lock_irqsave+0x3a/0x60
[  277.196101][    C0]  panic+0xd1/0xe0
[  277.198942][    C0]  ? __pfx_panic+0x10/0x10
[  277.201253][    C0]  ? end_report.part.0+0x23/0x90
[  277.203699][    C0]  ? rcu_is_watching+0x12/0xc0
[  277.206343][    C0]  ? end_report.part.0+0x23/0x90
[  277.210091][    C0]  ? check_panic_on_warn+0x1f/0x90
[  277.213076][    C0]  check_panic_on_warn.cold+0x19/0x34
[  277.215273][    C0]  end_report.part.0+0x3a/0x90
[  277.217360][    C0]  kasan_report.cold+0xe/0x18
[  277.219195][    C0]  ? _raw_spin_lock_irqsave+0x3a/0x60
[  277.221861][    C0]  ? _raw_spin_lock_irqsave+0x3a/0x60
[  277.230532][    C0]  __kasan_check_byte+0x36/0x50
[  277.233323][    C0]  lock_acquire+0x12a/0x370
[  277.236018][    C0]  ? do_raw_spin_unlock+0x53/0x1e0
[  277.243676][    C0]  ? .slowpath+0x9/0x18
[  277.250317][    C0]  _raw_spin_lock_irqsave+0x3a/0x60
[  277.252846][    C0]  ? p9_req_put+0xaf/0x250
[  277.254754][    C0]  p9_req_put+0xaf/0x250
[  277.256574][    C0]  req_done+0x1dc/0x2e0
[  277.264106][    C0]  ? __pfx_req_done+0x10/0x10
[  277.266166][    C0]  ? sched_clock_cpu+0x6c/0x570
[  277.268906][    C0]  ? __pfx_req_done+0x10/0x10
[  277.271341][    C0]  vring_interrupt+0x2ef/0x650
[  277.274240][    C0]  ? __pfx_vring_interrupt+0x10/0x10
[  277.277241][    C0]  __handle_irq_event_percpu+0x235/0x8c0
[  277.280651][    C0]  handle_irq_event+0xab/0x1e0
[  277.283312][    C0]  handle_edge_irq+0x35e/0x960
[  277.286401][    C0]  __common_interrupt+0xd8/0x2f0
[  277.291071][    C0]  common_interrupt+0xb9/0xe0
[  277.294589][    C0]  </IRQ>
[  277.296550][    C0]  <TASK>
[  277.298171][    C0]  asm_common_interrupt+0x26/0x40
[  277.303651][    C0] RIP: 0010:_raw_spin_unlock_irqrestore+0x31/0x80
[  277.315416][    C0] Code: f5 53 48 8b 74 24 10 48 89 fb 48 83 c7 18 e8 36 4a 53 f6 48 89 df e8 0e 9a 53 f6 f7 c5 00 02 00 00 75 23 9c 58 f6 c4 02 75 37 <bf> 01 00 00 00 e8 e5 8a 43 f6 65 8b 05 4e ef 7d 08 85 c0 74 16 5b
[  277.325946][    C0] RSP: 0018:ffffc9000caff708 EFLAGS: 00000246
[  277.329097][    C0] RAX: 0000000000000002 RBX: ffff88804b044d80 RCX: 0000000000000040
[  277.334152][    C0] RDX: 0000000000000000 RSI: ffffffff8de87cd2 RDI: ffffffff8c1b3d60
[  277.338168][    C0] RBP: 0000000000000246 R08: 0000000000000001 R09: 0000000000000000
[  277.343126][    C0] R10: 0000000000000001 R11: 0000000000000000 R12: ffff88802629d7c0
[  277.350008][    C0] R13: 0000000000000246 R14: ffff88804b044d68 R15: ffffc9000caff888
[  277.354996][    C0]  __skb_try_recv_datagram+0x16a/0x500
[  277.358491][    C0]  ? __pfx_sk_busy_loop_end+0x10/0x10
[  277.362401][    C0]  ? __pfx___skb_try_recv_datagram+0x10/0x10
[  277.366489][    C0]  __unix_dgram_recvmsg+0x1bc/0xc30
[  277.370826][    C0]  ? __pfx___unix_dgram_recvmsg+0x10/0x10
[  277.374280][    C0]  ? __lock_acquire+0x4a5/0x2630
[  277.377416][    C0]  unix_dgram_recvmsg+0xd0/0x110
[  277.381745][    C0]  ____sys_recvmsg+0x5b3/0x640
[  277.385392][    C0]  ? __pfx_unix_dgram_recvmsg+0x10/0x10
[  277.390130][    C0]  ? __pfx_____sys_recvmsg+0x10/0x10
[  277.394097][    C0]  ? ___sys_recvmsg+0x177/0x1a0
[  277.398054][    C0]  ? kfree+0x2ce/0x690
[  277.400827][    C0]  ___sys_recvmsg+0x16a/0x1a0
[  277.403890][    C0]  ? __pfx____sys_recvmsg+0x10/0x10
[  277.407512][    C0]  ? lockdep_hardirqs_on+0x78/0x100
[  277.411280][    C0]  ? __pfx___might_resched+0x10/0x10
[  277.414506][    C0]  ? do_recvmmsg+0x356/0x760
[  277.417385][    C0]  do_recvmmsg+0x563/0x760
[  277.419666][    C0]  ? __pfx_do_recvmmsg+0x10/0x10
[  277.422340][    C0]  ? sched_setaffinity+0x2d7/0x400
[  277.424958][    C0]  ? sched_setaffinity+0xe0/0x400
[  277.427670][    C0]  ? __pfx_sched_setaffinity+0x10/0x10
[  277.430156][    C0]  ? fd_install+0x24f/0x580
[  277.432346][    C0]  __sys_recvmmsg+0x21f/0x270
[  277.434530][    C0]  ? __pfx___sys_recvmmsg+0x10/0x10
[  277.437135][    C0]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  277.441440][    C0]  ? __do_fast_syscall_32+0x98/0x940
[  277.443881][    C0]  ? lockdep_hardirqs_on+0x78/0x100
[  277.446787][    C0]  __do_fast_syscall_32+0xe7/0x940
[  277.452043][    C0]  do_fast_syscall_32+0x32/0x70
[  277.456123][    C0]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  277.460317][    C0] RIP: 0023:0xf707efcc
[  277.463069][    C0] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  277.477597][    C0] RSP: 002b:00000000f542b50c EFLAGS: 00000292 ORIG_RAX: 0000000000000151
[  277.484331][    C0] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000040
[  277.489705][    C0] RDX: 00000000080002c1 RSI: 0000000000000002 RDI: 0000000000000000
[  277.494909][    C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  277.499129][    C0] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  277.502704][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  277.506022][    C0]  </TASK>
[  277.521904][    C0] Kernel Offset: disabled
[  277.524064][    C0] Rebooting in 86400 seconds..

VM DIAGNOSIS:
09:41:38  Registers:
info registers vcpu 0

CPU#0
RAX=000000000000005b RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8578d7a5 RDI=ffffffff9b4ab3a0 RBP=ffffffff9b4ab360 RSP=ffffc90000007710
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=20666f2064616552
R12=0000000000000000 R13=000000000000005b R14=0000000000000010 R15=ffffffff8578d740
RIP=ffffffff8578d7cf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88809712e000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f543cff4 CR3=000000006b789000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 8239857d01d36e64 8239857d01d36e64
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 d913f4e89bd36be7 55c84d156a50ab57
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 45425048dac4ac9a 49417406ba4b0d8f
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 cec830a45701bd99 452b2653c7e3f6fc
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 c047e3b12096088f fdc708ffbe8c96e1
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a65668550179a4d 231bcaccd5425d74
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 bbc80c8b42d9ca6d 944a2299726f5165
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ba4b0d8f49417406 6a50ab5755c84d15
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0c0d0e0f08090a0b 0405060700010203
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e7ffd424622e85 37ca5f9c5a9e3612
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 156860cf984b486f 928335539dcbc442
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=ffffea0001725b80 RCX=ffffffff8280a2db RDX=ffff888029a74a00
RSI=ffffffff8280a2ec RDI=ffff888029a74a00 RBP=0000000000000000 RSP=ffffc90003e2f680
R8 =0000000000000005 R9 =00000000000000f5 R10=0000000000000000 R11=0000000000000000
R12=ffffffff8e12df28 R13=0000000000000001 R14=0000000000000001 R15=800000005c96e025
RIP=ffffffff820864ca RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88809722e000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7f06ec0 CR3=000000000e598000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000585858585858 2e7a797300000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000585858585858
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000080000 RBX=0000000000000000 RCX=ffffc90007a82000 RDX=0000000000080000
RSI=ffffffff81fc06f7 RDI=ffff888000bca500 RBP=ffff88802b242dc0 RSP=ffffc9000d30f5d0
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=0000000000000003 R13=ffffed10056485b9 R14=0000000000000001 R15=ffff88802b43c700
RIP=ffffffff81fc06f9 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88809732e000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080002000 CR3=000000004b34d000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000001 RBX=ffff888021922800 RCX=0000000000000001 RDX=0000000000000046
RSI=ffffffff8de619ea RDI=ffffffff8c1b3d60 RBP=ffff88802b53b440 RSP=ffffc9000d23f840
R8 =ffff8880219228b0 R9 =ffff88802b53bdc0 R10=0000000000000000 R11=0000000000000126
R12=ffff88802b53b380 R13=ffff88802b53b498 R14=0000000000000001 R15=0000000000000001
RIP=ffffffff81d8ef97 RFL=00000082 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88809742e000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00000000ffb40d4c CR3=000000004b34d000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000