last executing test programs:

3m33.740737206s ago: executing program 1 (id=2413):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x9, &(0x7f0000006680))
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@newtaction={0x140, 0x30, 0x1, 0x70bd29, 0x20, {}, [{0x12c, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc}}}, @m_ife={0xe4, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x9e, 0x6, "05acd7b04d56602fd00621cfdea00cdefee0a0f2b5d3c5ae410ff474fd62140500c8da82713d5521b5f796709e5706c45860853b7df07d1b550150dae2f0ddfb4a864ba1c85d21d80412f5ee961efefd11898c915bb144edd9bcf7bab21282b96b515850817253996f51c7b62bbe6c8b1f4f6539a360cd6049280e9fe322e8388067beb78158ee53044b99dafa67a16bca312db0045e46ae8273"}, {0xc}, {0xc}}}]}]}, 0x140}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
syz_usb_connect(0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000005c0)=@newtaction={0x674, 0x30, 0x1, 0x0, 0x1, {}, [{0x660, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x6, 0x0, 0xf}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x13, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}, @m_csum={0x4c, 0x12, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0xff, 0x3ff, 0x3, 0x7, 0x8001}, 0x7e}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x1}}}}, @m_vlan={0x100, 0x17, 0x0, 0x0, {{0x9}, {0x58, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_PRIORITY={0x5, 0x6, 0x1}, @TCA_VLAN_PUSH_VLAN_ID={0x6, 0x3, 0x9e3}, @TCA_VLAN_PUSH_VLAN_PRIORITY={0x5, 0x6, 0x3}, @TCA_VLAN_PUSH_VLAN_PRIORITY={0x5, 0x6, 0x1}, @TCA_VLAN_PUSH_VLAN_PRIORITY={0x5, 0x6, 0x3}, @TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6, 0x4, 0x8100}, @TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6, 0x4, 0x8100}, @TCA_VLAN_PARMS={0x1c, 0x2, {{0x5, 0x9, 0x20000000, 0xff, 0xa}, 0x2}}]}, {0x7e, 0x6, "930d1de286afaded4f93db7622f9ab826a3625c2bbae777ad749f04590eab6bdfb97e2b10c4ec552c945c52ae2792a6c0741a26148d29b5f5d7351464309a43fef966a40b5eeb390d902015c0cd31eb101d1455e9a5d41f64b35264bea0950985cf75f793176cce3aedcaceec15838896e8befea678a513430a8"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x3}}}}, @m_ctinfo={0x180, 0x16, 0x0, 0x0, {{0xb}, {0x54, 0x2, 0x0, 0x1, [@TCA_CTINFO_ACT={0x18, 0x3, {0x2, 0x7, 0x3, 0x8, 0x3}}, @TCA_CTINFO_PARMS_DSCP_MASK={0x8, 0x5, 0x392849ad}, @TCA_CTINFO_ZONE={0x6}, @TCA_CTINFO_PARMS_DSCP_MASK={0x8, 0x5, 0x2}, @TCA_CTINFO_ACT={0x18, 0x3, {0x0, 0x0, 0x20000000, 0x157d, 0x8}}, @TCA_CTINFO_PARMS_DSCP_STATEMASK={0x8, 0x6, 0x80000001}]}, {0x102, 0x6, "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"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x3}}}}, @m_mpls={0x118, 0x1a, 0x0, 0x0, {{0x9}, {0x3c, 0x2, 0x0, 0x1, [@TCA_MPLS_TTL={0x5, 0x7, 0x4}, @TCA_MPLS_LABEL={0x8, 0x5, 0x3f244}, @TCA_MPLS_BOS={0x5}, @TCA_MPLS_TTL={0x5, 0x7, 0x7}, @TCA_MPLS_TC={0x5, 0x6, 0x5}, @TCA_MPLS_LABEL={0x8, 0x5, 0x579ad}, @TCA_MPLS_TTL={0x5, 0x7, 0x9e}]}, {0xb4, 0x6, "8bca40587500f7f52a51397d70542d00557fee899b7ffb75379e57ab5c4b506bbba39dd632c87e476138028ad5fbd69419900460a67304b01bd20b8c77ba8e7a0e757bd38e1759c66560baa54f2da8a795f136db20cc8629e329b6db3eee22cbfbd3c77f77ef040bc90b9d21b2e13952e8e822994802b71243617bc0ba9aef23783195fb51071e31184cc1460838be606f6bf0f688516889fe27c284cef99ab22973855c8e1d82d695bf5a335b75845d"}, {0xc}, {0xc, 0x8, {0x1, 0x2}}}}, @m_nat={0xf0, 0x19, 0x0, 0x0, {{0x8}, {0x54, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0xffffff80, 0x7, 0x20000000, 0x5, 0xf060403}, @multicast2, @private=0xa010102}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x0, 0xe, 0x1, 0x100, 0x80000001}, @local, @multicast1}}]}, {0x77, 0x6, "04bd7fd50ddf73bd5a09782a84403905c0f33aa49199947505468ab579883005cf8cb4bdcc104c857386d069b3d446ec75f7e93a7d1585fe739ab2e9af37c55194624e4665cd1d136a1c161623e6d7289cdd1ce6ac46b72c9af4203a6f9649aed30ee3f1d13c9807caec52f1b3549baf7bcfdc"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}, @m_mirred={0xfc, 0xb, 0x0, 0x0, {{0xb}, {0x64, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x3, 0x2, 0x2313fd87690a4a67, 0x4, 0x10}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0xc4d9, 0x80, 0x1, 0x0, 0x7fff}, 0x1}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x2, 0x200, 0x4, 0x2, 0x8282}, 0x1}}]}, {0x6d, 0x6, "75e5b12620198cb7b61cba676537f5e4ceb12d7b33f0a019ba7edeacd404bb363c4b5e1b80498ae16526bdeb24e955c1a7b4c5ca452bbff555b88ab3775e3ef50708ff1c8029f8368af343f55cfd363da3cf56e02f32b2116b903dadfb23a6d14bb5ef21a503b89003"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}]}]}, 0x674}, 0x1, 0x0, 0x0, 0x804}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000400)='ramfs\x00', 0x2000000, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')
creat(&(0x7f0000000300)='./bus\x00', 0x15d)
r3 = open(&(0x7f00000000c0)='./bus\x00', 0x14103e, 0x0)
r4 = open(&(0x7f0000000000)='./file0\x00', 0x143042, 0xfe)
ftruncate(r4, 0x2008002)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$sock_SIOCOUTQ(r5, 0x5411, 0x0)
sendfile(r3, r4, 0x0, 0x80000001)
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000077290404019957c2010204010902120010000904430000317d5500000000"], 0x0)
syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0)
syz_open_dev$hidraw(&(0x7f0000002300), 0x1, 0x14a042)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'gretap0\x00'})

3m30.510836514s ago: executing program 1 (id=2433):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x1d, &(0x7f00000007c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000a7080000000000007b8a20ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYRESDEC=r0, @ANYRES8, @ANYRESOCT], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
r3 = bpf$TOKEN_CREATE(0x24, &(0x7f00000002c0)={0x0, r2}, 0x8)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000705000000060000000510000084000400", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/24, @ANYRES32=r3, @ANYBLOB], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000d40)=ANY=[@ANYBLOB="180000000000e3ff000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000500000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r5}, 0x10)
unlink(&(0x7f0000000080)='./cgroup\x00')
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000180)={'netdevsim0\x00'})
r7 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r7, 0x8933, &(0x7f0000000600))
r8 = socket$netlink(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
sendmsg$nl_route_sched(r8, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@getchain={0x34, 0x66, 0x800, 0x70bd2b, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0x8, 0x5}, {0x3, 0xb}, {0xb, 0x7}}, [{0x8, 0xb, 0x100}, {0x8, 0xb, 0x200}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r9, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000280)={0x34, r10, 0x1, 0x0, 0x0, {{}, {}, {0x18, 0x17, {0x0, 0x0, @l2={'eth', 0x3a, 'team0\x00'}}}}}, 0x34}}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
r13 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r13, 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha1-generic\x00'}, 0x58)

3m30.088987281s ago: executing program 1 (id=2436):
socket$nl_route(0x10, 0x3, 0x0)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x0, 0x0)
r1 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x4, 0x0, 0x3}, &(0x7f0000000380)=<r2=>0x0, &(0x7f00000002c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000000c0)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, 0x1})
r4 = syz_open_dev$video4linux(&(0x7f0000000300), 0x3, 0x101200)
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_INTERVAL(r4, 0xc040564b, &(0x7f0000000340)={0x9, 0x0, 0x1016, 0x81, 0x3, {0x6, 0x800}})
openat$sr(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x10, &(0x7f0000000380)=ANY=[], &(0x7f00000000c0)='syzkaller\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x4, 0x2}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3a, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0xc090}, 0x80d1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$vim2m(0x0, 0x47b, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r6, 0xc008561c, &(0x7f0000000080)={0xf0f071, 0x19})
r7 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x4206, r7)
ptrace(0x4208, r7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r8, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r9, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
recvmmsg(r8, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB="611230000000000061134c0000000000bf20000000000000160005003f1b48013d03010000000000950000d0ff000000bc26000000000000bf67000000000000070600000fff07006702000003000000360600000ee600f0bf052000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f9ffad430100000000009500000000000000050000000000000095000000000000004d9bd591d568253e9988431ec068e3a83683d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf5fe7030586"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
io_uring_enter(r1, 0x47f6, 0x0, 0x0, 0x0, 0x0)

3m29.620963944s ago: executing program 1 (id=2438):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) (async)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0) (async)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0) (async)
pivot_root(&(0x7f0000000080)='./file0/../file0/../file0/../file0\x00', &(0x7f00000000c0)='./file0\x00') (async)
io_uring_enter(0xffffffffffffffff, 0x5bf6, 0xd149, 0x0, 0x0, 0x0) (async)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x6, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0xfe, 0x0, 0x7ffffffe}]})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x2000000000000020, &(0x7f0000000040)=0x6, 0x4) (async, rerun: 64)
r2 = syz_clone(0xa0000280, 0x0, 0x0, 0x0, 0x0, 0x0) (async, rerun: 64)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r3, &(0x7f00000000c0)=ANY=[], 0xff2e) (async)
ptrace(0x10, r2) (async, rerun: 64)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) (async, rerun: 64)
ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r2, 0x10, &(0x7f0000000140)={0x2}) (async)
rt_sigsuspend(0x0, 0x0) (async, rerun: 64)
socketpair(0x1f, 0x4, 0x5, &(0x7f0000000000)) (async, rerun: 64)
ioperm(0xffff1dc1, 0x2, 0x7f) (async, rerun: 64)
openat$dma_heap(0xffffff9c, &(0x7f0000000080), 0x8100, 0x0) (async, rerun: 64)
ioperm(0xbf38, 0x0, 0x401) (async, rerun: 64)
request_key(0x0, 0x0, 0x0, 0xfffffffffffffffe) (rerun: 64)

3m29.540873232s ago: executing program 1 (id=2439):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000080)="1400000035000b3fd300000000000000128e5178", 0x14}], 0x1}, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'syz_tun\x00'})
r0 = socket$kcm(0x11, 0x3, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.events\x00', 0x26e1, 0x0)
sendmsg$kcm(r0, &(0x7f00000001c0)={&(0x7f0000000100)=@phonet={0x23, 0x0, 0x0, 0xd}, 0x80, &(0x7f00000018c0)=[{&(0x7f0000000080)="27050200160014000600602f86dd", 0x5ea}], 0x1}, 0x0)

3m29.325610191s ago: executing program 1 (id=2441):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x1d, &(0x7f00000007c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000a7080000000000007b8a20ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYRESDEC=r0, @ANYRES8, @ANYRESOCT=r1], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
r3 = bpf$TOKEN_CREATE(0x24, &(0x7f00000002c0)={0x0, r2}, 0x8)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000705000000060000000510000084000400", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/24, @ANYRES32=r3, @ANYBLOB], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000d40)=ANY=[@ANYBLOB="180000000000e3ff000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000500000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r5}, 0x10)
unlink(&(0x7f0000000080)='./cgroup\x00')
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000180)={'netdevsim0\x00'})
r7 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r7, 0x8933, &(0x7f0000000600))
r8 = socket$netlink(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
sendmsg$nl_route_sched(r8, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@getchain={0x34, 0x66, 0x800, 0x70bd2b, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0x8, 0x5}, {0x3, 0xb}, {0xb, 0x7}}, [{0x8, 0xb, 0x100}, {0x8, 0xb, 0x200}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r9, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000280)={0x34, r10, 0x1, 0x0, 0x0, {{}, {}, {0x18, 0x17, {0x0, 0x0, @l2={'eth', 0x3a, 'team0\x00'}}}}}, 0x34}}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
r13 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r13, 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha1-generic\x00'}, 0x58)

3m29.222025932s ago: executing program 32 (id=2441):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x1d, &(0x7f00000007c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000a7080000000000007b8a20ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYRESDEC=r0, @ANYRES8, @ANYRESOCT=r1], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
r3 = bpf$TOKEN_CREATE(0x24, &(0x7f00000002c0)={0x0, r2}, 0x8)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000705000000060000000510000084000400", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/24, @ANYRES32=r3, @ANYBLOB], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000d40)=ANY=[@ANYBLOB="180000000000e3ff000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000500000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r5}, 0x10)
unlink(&(0x7f0000000080)='./cgroup\x00')
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000180)={'netdevsim0\x00'})
r7 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r7, 0x8933, &(0x7f0000000600))
r8 = socket$netlink(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
sendmsg$nl_route_sched(r8, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@getchain={0x34, 0x66, 0x800, 0x70bd2b, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0x8, 0x5}, {0x3, 0xb}, {0xb, 0x7}}, [{0x8, 0xb, 0x100}, {0x8, 0xb, 0x200}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r9, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000280)={0x34, r10, 0x1, 0x0, 0x0, {{}, {}, {0x18, 0x17, {0x0, 0x0, @l2={'eth', 0x3a, 'team0\x00'}}}}}, 0x34}}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
r13 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r13, 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha1-generic\x00'}, 0x58)

4.978908467s ago: executing program 3 (id=3514):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000060000900020073797a31000000000900010073797a3000000000080005400000000d08000640ffffff000800034000000008580100000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000002c01038040000080080003400000000234000280300002"], 0x1ec}}, 0x0)

4.890066648s ago: executing program 4 (id=3515):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000040)='contention_end\x00', r0}, 0x18)
unshare(0x68040200)
r1 = socket(0x2b, 0x80801, 0x1)
setsockopt$IP6T_SO_SET_ADD_COUNTERS(r1, 0x29, 0x41, &(0x7f0000000180)={'nat\x00', 0x2, [{}, {}]}, 0x44)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_pressure(r2, &(0x7f00000000c0)='io.pressure\x00', 0x2, 0x0)
write$cgroup_pressure(r3, &(0x7f0000000340)={'some', 0x20, 0x7, 0x20, 0xffffa}, 0x2f)
close(r3)

4.889182245s ago: executing program 3 (id=3516):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x5, 0x4, 0x4, 0x4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000001000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b70300000000ffff850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x41, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000540)={0x26, 'hash\x00', 0x0, 0x0, 'sha512-generic\x00'}, 0x58)
r5 = accept4(r4, 0x0, 0x0, 0x0)
sendmmsg$inet(r5, &(0x7f0000001200)=[{{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f00000003c0)="ba", 0x1}, {&(0x7f00000005c0)='0', 0xcea40}], 0x2}}], 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xf000000, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

4.72541394s ago: executing program 4 (id=3519):
pipe2(&(0x7f0000000240), 0x84000) (async)
r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x2, 0x842)
ioctl$EVIOCGBITSND(r0, 0x40044591, 0x0)
ioperm(0x0, 0x9, 0x5) (async)
msgsnd(0x0, 0x0, 0x0, 0x0) (async)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000340)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}})
r2 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000e00), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_GET(r2, &(0x7f0000000ec0)={0x0, 0x0, &(0x7f0000000e80)={&(0x7f0000000e40)={0x14, r3, 0xc1f, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x90}, 0x4000804) (async)
r4 = io_uring_setup(0x203c, &(0x7f00000000c0)={0x0, 0xd4b5, 0x0, 0x3})
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0x19, 0x20000002, 0x0) (async)
r5 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000140)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r5, &(0x7f0000000200)='.request_key_auth\x00', &(0x7f0000000240)=@secondary)

3.842321435s ago: executing program 4 (id=3523):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000100000000000e7ff190001000004006f8aeb9b97"], 0x48)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000000)={0x0, r0}, 0x8)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000040)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000002c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_open_dev$tty20(0xc, 0x4, 0x0)
r3 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_subtree(r3, 0x0, 0x2, 0x0)
write$cgroup_subtree(r4, 0x0, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000200)='fd/3\x00')
io_submit(0x0, 0x1, &(0x7f00000000c0)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x0, r6, 0x0}])
sendmsg$nl_route(r5, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000881}, 0x0)
r7 = socket(0x22, 0x2, 0x1)
r8 = gettid()
timer_create(0x7, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r8}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
recvmsg$kcm(r7, &(0x7f0000000840)={0x0, 0x0, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x15, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0xd0}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {0x7, 0x0, 0xb, 0x6}, {0x85, 0x0, 0x0, 0x5}, {0x4}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x6, 0xa, 0x9, 0xfff0, 0xf1}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x6, 0x1, 0xb, 0xa, 0x8}, {0x7, 0x0, 0x0, 0x8}, {0x7, 0x1, 0xb, 0x4, 0x9}, {}, {}, {0x18, 0x6, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sk_reuseport, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

3.70965589s ago: executing program 3 (id=3524):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x5, 0x4, 0x4, 0x4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000001000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b70300000000ffff850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x41, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000540)={0x26, 'hash\x00', 0x0, 0x0, 'sha512-generic\x00'}, 0x58)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000001200)=[{{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f00000003c0)="ba", 0x1}, {&(0x7f00000005c0)='0', 0xcea40}], 0x2}}], 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xf000000, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

2.83954546s ago: executing program 2 (id=3525):
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000340)=[{0x1, 0x2, 0xf, 0x2}, {0x5, 0x5, 0x5, 0x9}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000026c0)={0xffffffffffffffff, 0xe0, &(0x7f00000025c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, &(0x7f0000002380)=[0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f00000023c0), &(0x7f0000002400)=[0x0, 0x0, 0x0, 0x0], 0x0, 0x4d, &(0x7f0000002440)=[{}, {}, {}, {}], 0x20, 0x10, &(0x7f0000002480), 0x0, 0x0, 0xee, 0x8, 0x8, &(0x7f0000002500)}}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f0000002540)=@abs, 0x6e)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r4, 0x0, 0x4)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="01000044010001000001b0578ac2cc0000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_LOOKUP_BATCH(0x19, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x6c, r5}, 0x38)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
syz_init_net_socket$ax25(0x3, 0x2, 0x0)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x42031, 0xffffffffffffffff, 0x0)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x7e832, 0xffffffffffffffff, 0x0)
setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, &(0x7f0000000040)={0x0, 0x1115000, 0x0, 0x0, 0x2}, 0x1c)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
setsockopt$SO_J1939_ERRQUEUE(r0, 0x6b, 0x4, &(0x7f0000000140), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

2.629733476s ago: executing program 4 (id=3526):
r0 = fcntl$dupfd(0xffffffffffffffff, 0x2, 0xffffffffffffffff)
fanotify_mark(0xffffffffffffffff, 0x1, 0x8000020, r0, 0x0)
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
chdir(&(0x7f0000000100)='./file0\x00')
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb0100180000000000000030000000300000000200000000000000010000040800000000000000020000002000000000000000000000090300000000000000"], 0x0, 0x4a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
recvmmsg(r5, &(0x7f0000002f40)=[{{&(0x7f0000000180)=@vsock={0x28, 0x0, 0x0, @hyper}, 0x80, &(0x7f0000000400)=[{&(0x7f00000005c0)=""/153, 0x99}, {&(0x7f00000003c0)=""/26, 0x1a}, {&(0x7f0000000680)=""/4096, 0x1000}, {&(0x7f0000001680)=""/83, 0x53}, {&(0x7f0000001700)=""/200, 0xc8}], 0x5, &(0x7f0000001800)=""/225, 0xe1}, 0x5fd}, {{&(0x7f0000001900)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x80, &(0x7f0000001ec0), 0x0, &(0x7f0000001f40)=""/4096, 0x1000}, 0x80000000}], 0x2, 0x100, &(0x7f0000002f80)={0x77359400})
syz_emit_ethernet(0x82, &(0x7f0000000300)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @local, @val={@val={0x88a8, 0x3, 0x1, 0x1}, {0x8100, 0x0, 0x0, 0x4}}, {@ipv6={0x86dd, @gre_packet={0x1, 0x6, "0961d3", 0x44, 0x2f, 0xff, @private1={0xfc, 0x1, '\x00', 0x1}, @loopback, {[], {{0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x880b, 0x0, 0x3}, {0x1}, {0x0, 0x0, 0x1, 0x1}, {0x8, 0x88be, 0x1, {{0x6, 0x1, 0x8, 0x3, 0x0, 0x0, 0x3, 0x2}, 0x1, {0x9}}}, {0x8, 0x22eb, 0x4, {{0x1, 0x2, 0x1, 0x3, 0x1, 0x3, 0x2, 0x6}, 0x2, {0x9, 0xe, 0x0, 0x0, 0x1, 0x0, 0x3, 0x1}}}}}}}}}, 0x0)
sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000000100000008000100400000000c000200700f0000000000000c0006e403000000000000000a000a00272d5d29212b0000140007"], 0x6c}}, 0x0)

2.039130214s ago: executing program 3 (id=3528):
memfd_create(&(0x7f0000000a00)='\xa3\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\xf5 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xacz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8ck\xc6S\xc3g\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\xc9\xff \xd8\x9d\xad\x11\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\xd00\x88y\xebX\x92\xd5\xbb\xa1h7\xf3\xe0\x0f\xbd\x02\xe4\n\xf9\xb1\x87\x8aM\xfeG\xb2L\xbd\x92-\xcd\x1f\xf4\xe1,\xb7G|\xec\"\xa2\xab\xf6\x84\xe0\xcf1\x9aYb\xf5\x88\xa8\x83.\xe9\xd6\xc6p\xa7o\x86%\xc6-\xdb', 0x3)
r0 = socket(0x10, 0x803, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffa000/0x2000)=nil, 0x2000, &(0x7f0000000000))
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x10, &(0x7f0000000300)=ANY=[@ANYRES8], &(0x7f0000000080)='syzkaller\x00', 0x8, 0xac, &(0x7f0000000140)=""/172, 0x41000, 0x48, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000740)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="e846000040000900ffffffff000000000200000004001f00d04601"], 0x46e8}, 0x1, 0x0, 0x0, 0x4040040}, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0x9, 0x4, 0x4, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007b00000018110000", @ANYRES32=r5], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='mmap_lock_acquire_returned\x00', r6}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="050000000000000069113200000000008510000002000000850000000500000095000000000000009500a50500000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000340)='sys_enter\x00', r7, 0x0, 0x4}, 0x18)
r8 = socket$alg(0x26, 0x5, 0x0)
getsockopt$inet_sctp6_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f0000000040)={<r9=>0x0, 0x7}, &(0x7f0000000080)=0x8)
getsockopt$inet_sctp_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000140)={r9, 0x9, 0x2, [0x0, 0xb]}, &(0x7f00000001c0)=0xc)
r10 = accept4(r8, 0x0, 0x0, 0x0)
accept4(r10, 0x0, 0x0, 0x800)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)

1.922834575s ago: executing program 2 (id=3529):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf) (async)
fcntl$dupfd(r0, 0x0, r0) (async)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x1c, r3, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}}, 0x1c}}, 0x4000840)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000001c0), r1) (async)
r5 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
close(r5) (async)
recvmmsg(0xffffffffffffffff, &(0x7f0000001d00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001dc0)=""/67, 0x43}}], 0x1, 0x0, 0x0) (async, rerun: 64)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) (async, rerun: 64)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r6 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x4) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) (async, rerun: 32)
sendmmsg$unix(r8, &(0x7f0000000000), 0x400000000000041, 0x0) (async, rerun: 32)
sched_setaffinity(r6, 0x8, &(0x7f0000000240)=0x200002) (async)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async, rerun: 32)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000003000000030000000020000000000"], 0x0, 0x4a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28) (async, rerun: 32)
r9 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r9, 0xc0145401, &(0x7f0000000040)={0xffffffffffffffff, 0x0, 0x1, 0x3, 0x6}) (async)
r10 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r10, 0x5423, &(0x7f0000000100)=0x5)
execve(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)

1.819972492s ago: executing program 2 (id=3530):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000040)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x15, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0xd0}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {0x7, 0x0, 0xb, 0x6}, {0x85, 0x0, 0x0, 0x5}, {0x4}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x6, 0xa, 0x9, 0xfff0, 0x41}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x6, 0x1, 0xb, 0xa, 0x8}, {0x7, 0x0, 0x0, 0x8}, {0x7, 0x1, 0xb, 0x4, 0x9}, {0x7, 0x0, 0x0, 0x4, 0x0, 0x20}, {}, {0x18, 0x6, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sk_reuseport, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

1.739148091s ago: executing program 0 (id=3531):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000009a40)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000040900010073797a300000000040000000030a01080000000019000000010000000900030073797a320000000014000480080002400000000008000140000000000900010073797a300000000050000000060a010400000000000000000100000008000b40000000000900010073797a30000000002800048024000180090001006d65746100000000140002800800014000000012080002400000001914000000110001"], 0xd8}}, 0x80)

1.738654648s ago: executing program 2 (id=3532):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x9, &(0x7f0000006680))
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
mlock(&(0x7f0000c00000/0x400000)=nil, 0x400000)
mremap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000, 0x7, &(0x7f0000fff000/0x1000)=nil)
madvise(&(0x7f0000003000/0x1000)=nil, 0x7f7884acbfff, 0x14)
write(0xffffffffffffffff, &(0x7f0000000480), 0x0)
r3 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
r4 = getpid()
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r5 = mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0)
mq_timedreceive(r5, &(0x7f000001d600)=""/102381, 0xec29, 0x20000004, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r3, 0xc1105517, &(0x7f0000000340)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x6, 0x0, 0x4, r4, 0x0, 0x0, 'syz1\x00', 0x0})
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r3, 0xc1105518, &(0x7f0000000c40)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20200, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x80000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffa, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0xfffffffffffffffc, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x8000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000000000, 0xfffffffc, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffc, 0x7, 0x5]})
setpgid(0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)

1.649997666s ago: executing program 0 (id=3533):
r0 = syz_open_dev$I2C(&(0x7f0000000040), 0x0, 0x0)
ioctl$I2C_PEC(r0, 0x708, 0x2)
ioctl$I2C_SMBUS(r0, 0x720, &(0x7f0000000000)={0x1, 0x4, 0x5, &(0x7f0000000080)={0x17, "90f541f144d76e03c7b2986e7fe5282990000000000000000000000000002e00"}})

1.589594734s ago: executing program 0 (id=3534):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, 0x0, &(0x7f0000000300))
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000580)={0x44, r2, 0x7, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0x18, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x14, 0x3, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ip6tnl0\x00'}]}]}]}]}, 0x44}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
pivot_root(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='./file0\x00')
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x4000}})
write$FUSE_NOTIFY_RETRIEVE(r3, &(0x7f0000000100)={0x30, 0x5, 0x0, {0x0, 0x1}}, 0x30)
read$FUSE(r3, &(0x7f00000021c0)={0x2020}, 0x2020)
umount2(&(0x7f00000001c0)='./file0\x00', 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'cts(cbc(aes))\x00'}, 0x58)
socket$kcm(0x10, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r6 = dup(r5)
write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0xfffffd2c)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
r8 = syz_io_uring_setup(0x235, &(0x7f0000000100)={0x0, 0x4533, 0x10100, 0x0, 0x2b1, 0x0, r7}, &(0x7f00000001c0)=<r9=>0x0, &(0x7f0000000340)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {0x201}, 0x1})
r11 = epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r12=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r11, 0x1, r12, &(0x7f0000000100)={0x20000014})
epoll_wait(r11, &(0x7f0000000200)=[{}], 0x0, 0x400)
io_uring_enter(r8, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x2402c000}, 0x10000040)
openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})

1.379826726s ago: executing program 4 (id=3535):
landlock_restrict_self(0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
syz_clone(0xc285a00, 0x0, 0x0, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
rseq(&(0x7f0000000040), 0x20, 0x0, 0x0)
r0 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0)
ioctl$FBIOPUT_CON2FBMAP(r0, 0x4610, 0x0)
rseq(&(0x7f0000000040), 0xffffffffffffff02, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f00000002c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
prlimit64(0x0, 0x6, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="0200000004000000060000000405000000000000", @ANYRES32, @ANYBLOB="800000000000eeffffffffffffff000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x4)
fcntl$getown(r2, 0x9)
r4 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
connect$rose(r4, &(0x7f00000002c0)=@short={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, 0x2, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}}, 0x1c)
r5 = syz_open_dev$sndctrl(&(0x7f0000000340), 0x0, 0x100)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r5, 0xc2c45513, &(0x7f0000000480)={{0x0, 0x0, 0x0, 0xfffff001, '\x00', 0x800}, 0x1, [0x80000001, 0x1, 0x8, 0x7a, 0x68, 0x9, 0x1, 0x7e5813a0, 0xffffffff, 0x2, 0x4, 0x3, 0xfffffffb, 0x65e, 0xfffffff9, 0x8, 0x9, 0x9, 0x7, 0x2025db26, 0x400, 0x3, 0x3ff, 0x3, 0x7, 0x7, 0x80000000, 0xd, 0x67f, 0x7, 0x2, 0x2, 0xe, 0x6, 0x8, 0x40, 0x80000000, 0x8, 0x5d, 0x80000001, 0x7, 0x1000, 0xfffffffc, 0x3, 0x7, 0x80, 0x0, 0x9, 0x2, 0xe9, 0x1, 0x3, 0x40, 0x6, 0x7, 0x6, 0x4, 0x5f, 0xffffff7b, 0x7fffffff, 0x1, 0xb, 0x3, 0x4, 0x4, 0x3, 0x3c63a146, 0x80, 0x4, 0x174, 0x2, 0x4, 0x1458, 0x5, 0x4, 0x3, 0x0, 0x1f300000, 0x9, 0xa, 0xdff, 0x9, 0x9, 0x5, 0xf00a, 0x3, 0x3, 0xf, 0x8, 0xfffffff9, 0x5, 0x4, 0x0, 0x3, 0xa, 0x8132, 0x5, 0x134eb6a6, 0x9, 0x14, 0x18000000, 0xb, 0xa, 0xc08, 0x4, 0x3, 0x10001, 0x1, 0x8, 0x0, 0x2baa8000, 0x6, 0x6, 0x5, 0x7, 0x1, 0x122c39a, 0x4, 0x6, 0x2, 0x400, 0x401, 0x8, 0xcf, 0xfffffffe, 0x8000, 0x7, 0xa]})
mount(&(0x7f0000000000)=@nullb, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000040)='hfsplus\x00', 0x8002, 0x0)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000), &(0x7f0000000200), 0xa7c, r3}, 0x38)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
mount(&(0x7f0000000240)=@filename='./file0\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x10008, 0x0)

1.07011576s ago: executing program 3 (id=3536):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
fsopen(&(0x7f0000000180)='devtmpfs\x00', 0x0) (async)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001140)='net\x00') (async)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r1, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x2c) (async)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}) (async)
r4 = socket$kcm(0x10, 0x2, 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f0000000040), r0) (async)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000740)="d8000000180081054e81f782db4cb904021d08040603d70d0000000000002f00160006000400a8000600200003400700027c035c0461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db798262f3d40fad95667e0065cdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9a94100"/216, 0xd8}], 0x1, 0x0, 0x0, 0x4a0f0000}, 0x0) (async)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) (async)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
sched_setattr(0x0, &(0x7f0000000100)={0x61, 0x5, 0x0, 0x7a, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffff}, 0x0)
io_uring_setup(0x1834, &(0x7f0000000140)={0x0, 0x296b, 0x1000, 0x1, 0x66})
r5 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r5, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16) (async)
connect$inet(r5, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10) (async)
setsockopt$inet_IP_XFRM_POLICY(r5, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x6}, {0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0x1}, {{@in=@multicast2, 0x0, 0x33}, 0x0, @in=@loopback, 0x3504, 0x0, 0x0, 0xb7, 0xfffffffe, 0x5}}, 0xe8) (async)
openat$apparmor_thread_current(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) (async)
sendmmsg(r5, &(0x7f0000007fc0), 0x800001d, 0x0)

876.985178ms ago: executing program 3 (id=3537):
fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0x541b, &(0x7f0000000040)={0xffffffffffffffff, 0x8e59, 0xfffffffffffffffa, 0x3})
r1 = creat(&(0x7f00000001c0)='./file0\x00', 0x8)
close(r1)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
fsopen(&(0x7f00000003c0)='hfsplus\x00', 0x1)
r3 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x5c, 0x30, 0x1, 0x0, 0x0, {}, [{0x48, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x7, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x0, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x57)
sendmsg$xdp(r3, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
recvmmsg(r3, &(0x7f0000000b40)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=""/11, 0xb}}], 0x5df, 0x2, 0x0)
setsockopt$packet_int(r2, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f0000003180)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x10001, 0xf84, 0x3}, 0x1c)

309.705301ms ago: executing program 2 (id=3538):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000600900020073797a31000000000900010073797a3000000000080005400000000d08000640ffffff000800034000000008580100000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000002c01038040000080080003400000000234000280300002"], 0x1ec}}, 0x0)

308.911759ms ago: executing program 4 (id=3539):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
shmctl$IPC_RMID(0x0, 0x0)
gettid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000100001ff00000000000000000000000a2c000000050a01020000000000000000020000000900030073797a32000000000900010073797a300000000014000000020a031747d21400000000000000000014000000110001"], 0x68}}, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000100001000b000000000000000000000a20000000000a0300000000000000d400010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f08000340000000045c0000000c0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xe8}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000400)={{0x14}, [@NFT_MSG_NEWSETELEM={0x2c, 0xe, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0x54}}, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$TUNSETPERSIST(0xffffffffffffffff, 0x400454cb, 0x0)

220.629475ms ago: executing program 0 (id=3540):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000040)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x15, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0xd0}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {0x7, 0x0, 0xb, 0x6}, {0x85, 0x0, 0x0, 0x5}, {0x4}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x6, 0xa, 0x9, 0xfff0, 0x41}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x6, 0x1, 0xb, 0xa, 0x8}, {0x7, 0x0, 0x0, 0x8}, {0x7, 0x1, 0xb, 0x4, 0x9}, {0x7, 0x0, 0x0, 0x4, 0x0, 0x300}, {}, {0x18, 0x6, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sk_reuseport, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

220.019263ms ago: executing program 2 (id=3541):
readv(0xffffffffffffffff, &(0x7f0000000480)=[{&(0x7f0000000280)=""/111, 0x6f}, {&(0x7f00000001c0)=""/38, 0x26}, {&(0x7f0000000300)=""/89, 0x59}, {&(0x7f0000000380)=""/227, 0xe3}], 0x4)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = landlock_create_ruleset(&(0x7f0000000000)={0x0, 0x3, 0x3}, 0x18, 0x0)
landlock_restrict_self(r1, 0x0)
r2 = semget(0x3, 0x1, 0x204)
r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/time_for_children\x00')
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r3, 0x8004b707, 0x0)
semctl$SEM_STAT(r2, 0x3, 0x12, &(0x7f00000001c0)=""/124)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000094b24610b11342003d9d0102030109021b000100000000090400390009"], 0x0)
socket$key(0xf, 0x3, 0x2)
gettid()
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x80002, 0x0)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x1a, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[], 0x2a, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
r6 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r6, 0xc0045627, &(0x7f0000000100)=0x3)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r6, 0xc0845657, &(0x7f0000000200)={0x0, @bt={0xa02, 0x870, 0x1, 0x2, 0xd59f80, 0x19f2, 0x3f, 0x19ef, 0x3, 0x8, 0x2800, 0x6, 0x2, 0xba2, 0xc, 0x30, {0x8, 0xffffffff}, 0xd0, 0x9}})
io_uring_enter(0xffffffffffffffff, 0x2def, 0x4000, 0x0, 0x0, 0x0)
r7 = openat$rfkill(0xffffffffffffff9c, 0x0, 0x801, 0x0)
write$rfkill(r7, &(0x7f0000000080)={0x0, 0x1, 0x3, 0x1}, 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000240)='writeback_sb_inodes_requeue\x00', r0}, 0x18)
openat$dir(0xffffffffffffff9c, &(0x7f0000001a00)='./file1\x00', 0x0, 0x88)
mount(&(0x7f0000000080)=@nullb, &(0x7f0000000000)='./file1\x00', &(0x7f0000000040)='erofs\x00', 0xc006, 0x0)

79.447565ms ago: executing program 0 (id=3542):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000009a40)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000040900010073797a300000000040000000030a01080000000022000000010000000900030073797a320000000014000480080002400000000008000140000000000900010073797a300000000050000000060a010400000000000000000100000008000b40000000000900010073797a30000000002800048024000180090001006d65746100000000140002800800014000000012080002400000001914000000110001"], 0xd8}}, 0x80)

0s ago: executing program 0 (id=3543):
r0 = memfd_create(&(0x7f0000000480)='\xff\x00l\x1e\xa0</\x00\x8eO4._\x14zC\x8a\xe8\xe0u\xe0\xff\xf1\xb2\xfd\xf6nz\x05-]\xc2Vk\xaeky\xd3\x83\xe2\xc7\xd3\xe6M^\x98ox\x14\t\xe9Q1\x1dK\x9a\x045\xd37\xb22\xfdD(\xd2\xdd\xa0\xff\x0f\x00\x00\x00\x00\x00\x00v\n\xd8?]k\x14N\x18\xf4\xc2j\xed6g\xfd\xd2\xd4\xe3\x1f\xa6 \xa0\x8d\xb5\x9aE<2`]<\x8cR\xd69\x0fO\xbf\xc3\xbd\xb0\x96\x90\x91k\x86\x1a\x10\xd2\xf5\x8b\xfc\xf4\xd0[\x12\xf5+\x1aS\x02/Yx\xf2jJb\x97\x9c/\x1f5i\xc6\x861\x9a\xff\xc3\xe7\xbfU\xd5\xac\xccB=\x8f\xfd\x84\xeepQ\x93nn\x0f\xc6\xa9?\xad\x8b~\x96@i=G\x9ft\x1d\xcc\xc6Ys7\x7f\x8ehv\xd3$\x13s\xa0\xbfi\xfaFS\xa9=Xe\xf8tI\x15\x882\x8b\x8e-X\xb8\xf2\x9du\x15S^\xec\xce\xfaf$S\x9f\xe7Ed\n\x84\\ u\xd2\x16\xc1\xa5\xa0\xaa\xe8.i\xc8\x0e\vt\xe2\xf1lA\x93\xdd\xce\x8f$\x06v\xbe\xe7\x95nN\xc5\xaa\x1ev\xc6P\x9c\\G&y\x8bYA\xc3}\xd9\x86[\xb2\xf3\x0f\x90%\xcb\x81\xe8\xea\xbcs\x95\xe9\x8eXH\x19m\xdfOY\xf1E9-\xc8\xe7\x13^+(\x034\x82\xafiOO\x14\x8f^\x8c', 0x7)
syz_open_dev$usbfs(&(0x7f0000000080), 0x5, 0x381440)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x200000a, 0x12, r0, 0x3ba3c000)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r2)
sendmsg$NLBL_MGMT_C_LISTDEF(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)={0x1c, r3, 0x1, 0x70bd29, 0x25dfdbfc, {}, [@NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x8000)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000c80)=ANY=[@ANYBLOB="340000001200010000000000fbdbdf25fc0100000000000000000000000000000000000000006c00"], 0x34}}, 0x0)
fcntl$addseals(r0, 0x409, 0x2)
r5 = openat$udambuf(0xffffff9c, &(0x7f0000000000), 0x2)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r7, 0xae60)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r8, 0x4090ae82, &(0x7f00000002c0)={[0x8aba, 0x4, 0x4, 0x804, 0x7, 0xf, 0x120000, 0xff, 0x0, 0x8, 0x8000000000000001, 0x2, 0x0, 0x101, 0x6, 0x1], 0x8000000, 0x141200})
ioctl$KVM_SET_VCPU_EVENTS(r8, 0x4400ae8f, &(0x7f0000000100)=@x86={0x9, 0x19, 0x9, 0x0, 0x1000, 0x8, 0x9f, 0x2, 0x6, 0x6, 0x7, 0xa, 0x0, 0x1, 0xfffffeff, 0xf8, 0x2, 0x9e, 0x3, '\x00', 0x3, 0x8})
ioctl$KVM_CAP_HYPERV_SYNIC(r8, 0x4068aea3, &(0x7f0000000080))
ioctl$KVM_RUN(r8, 0xae80, 0x0)
ioctl$UDMABUF_CREATE(r5, 0x40187542, &(0x7f0000000040)={r0, 0x1, 0x0, 0x1000})

kernel console output (not intermixed with test programs):

1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  574.796744][ T6004] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  574.799830][ T6004] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  574.804599][ T6004] usb 9-1: config 0 descriptor??
[  574.809198][T16383] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  575.019874][T16388] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2624'.
[  575.218173][ T6004] plantronics 0003:047F:FFFF.0016: unknown main item tag 0xd
[  575.222346][ T6004] plantronics 0003:047F:FFFF.0016: No inputs registered, leaving
[  575.253265][ T6004] plantronics 0003:047F:FFFF.0016: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  575.278521][T16395] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2628'.
[  575.287392][T16397] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  575.378925][ T5954] Bluetooth: hci3: ACL packet for unknown connection handle 0
[  575.506533][T16406] netlink: 68 bytes leftover after parsing attributes in process `syz.2.2633'.
[  575.512692][T16406] x_tables: (null)_tables: SNAT.2 target: invalid size 48 (kernel) != (user) 56
[  576.050839][T16416] ./file0: Can't lookup blockdev
[  576.575775][ T6004] usb 9-1: reset high-speed USB device number 5 using dummy_hcd
[  576.716675][T16421] loop2: detected capacity change from 0 to 7
[  576.719080][T16421] Dev loop2: unable to read RDB block 7
[  576.720941][T16421]  loop2: unable to read partition table
[  576.722752][T16421] loop2: partition table beyond EOD, truncated
[  576.724682][T16421] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  578.089139][T16448] openvswitch: netlink: Missing key (keys=50, expected=2000)
[  578.162778][T16400] Set syz1 is full, maxelem 65536 reached
[  578.244009][T16456] netlink: 'syz.3.2648': attribute type 6 has an invalid length.
[  578.293038][  T836] usb 9-1: USB disconnect, device number 5
[  578.763851][T16474] netlink: 52 bytes leftover after parsing attributes in process `syz.4.2652'.
[  578.786369][T16474] netlink: 52 bytes leftover after parsing attributes in process `syz.4.2652'.
[  579.115833][T16487] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2656'.
[  579.263685][   T40] kauditd_printk_skb: 25 callbacks suppressed
[  579.263701][   T40] audit: type=1326 audit(2000000000.000:1408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16491 comm="syz.3.2657" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x0
[  579.337509][T16490] ./file0: Can't lookup blockdev
[  580.083995][T16512] netlink: 'syz.3.2663': attribute type 6 has an invalid length.
[  580.225831][T15336] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[  580.383274][T15336] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  580.388720][T15336] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  580.392913][T15336] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  580.402330][T15336] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  580.409020][T15336] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  580.413909][T15336] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  580.426863][T15336] usb 7-1: config 0 descriptor??
[  580.430894][T16509] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  580.463091][    T8] usb 8-1: new high-speed USB device number 18 using dummy_hcd
[  580.589500][T16518] netlink: del zone limit has 4 unknown bytes
[  580.615695][    T8] usb 8-1: Using ep0 maxpacket: 8
[  580.621262][    T8] usb 8-1: config 0 has an invalid interface number: 55 but max is 0
[  580.624998][    T8] usb 8-1: config 0 has no interface number 0
[  580.627769][    T8] usb 8-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  580.632198][    T8] usb 8-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  580.637927][    T8] usb 8-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  580.645357][    T8] usb 8-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  580.650295][    T8] usb 8-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  580.653687][    T8] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  580.666375][    T8] usb 8-1: config 0 descriptor??
[  580.685677][    T8] ldusb 8-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  580.871793][T15336] plantronics 0003:047F:FFFF.0017: unknown main item tag 0xd
[  580.901229][T15336] plantronics 0003:047F:FFFF.0017: No inputs registered, leaving
[  580.930116][T15336] plantronics 0003:047F:FFFF.0017: hiddev1,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  580.992297][T16519] program syz.3.2664 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  581.006887][T16521] Process accounting resumed
[  581.020034][T15336] usb 8-1: USB disconnect, device number 18
[  581.038903][T15336] ldusb 8-1:0.55: LD USB Device #0 now disconnected
[  581.049154][T16523] Process accounting resumed
[  581.072940][   T72] usb 7-1: USB disconnect, device number 20
[  581.192077][T16528] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2668'.
[  582.371280][T16554] ./file0: Can't lookup blockdev
[  582.437882][T16562] loop2: detected capacity change from 0 to 7
[  582.460625][T16562] Dev loop2: unable to read RDB block 7
[  582.463033][T16562]  loop2: unable to read partition table
[  582.465732][T16562] loop2: partition table beyond EOD, truncated
[  582.469446][T16562] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  583.961303][   T40] audit: type=1326 audit(2000000004.689:1409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16594 comm="syz.4.2687" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  583.974787][   T40] audit: type=1326 audit(2000000004.699:1410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16594 comm="syz.4.2687" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  583.984247][   T40] audit: type=1326 audit(2000000004.699:1411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16594 comm="syz.4.2687" exe="/syz-executor" sig=0 arch=40000003 syscall=324 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  583.996674][   T40] audit: type=1326 audit(2000000004.699:1412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16594 comm="syz.4.2687" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  584.003237][   T40] audit: type=1326 audit(2000000004.699:1413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16594 comm="syz.4.2687" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  584.011489][   T40] audit: type=1326 audit(2000000004.699:1414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16594 comm="syz.4.2687" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  584.023370][   T40] audit: type=1326 audit(2000000004.699:1415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16594 comm="syz.4.2687" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  584.031650][   T40] audit: type=1326 audit(2000000004.699:1416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16594 comm="syz.4.2687" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  584.039081][   T40] audit: type=1326 audit(2000000004.709:1417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16594 comm="syz.4.2687" exe="/syz-executor" sig=0 arch=40000003 syscall=3 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  584.205912][T16599] can0: slcan on ttyS3.
[  584.409855][T16605] netlink: 52 bytes leftover after parsing attributes in process `syz.3.2689'.
[  584.412430][T16605] netlink: 52 bytes leftover after parsing attributes in process `syz.3.2689'.
[  584.675407][T16611] ./file0: Can't lookup blockdev
[  584.739568][T16584] can0 (unregistered): slcan off ttyS3.
[  584.912605][T16615] netlink: 1280 bytes leftover after parsing attributes in process `syz.0.2693'.
[  584.922777][T16615] openvswitch: netlink: Flow actions attr not present in new flow.
[  585.808818][T16643] FAULT_INJECTION: forcing a failure.
[  585.808818][T16643] name failslab, interval 1, probability 0, space 0, times 0
[  585.813584][T16643] CPU: 3 UID: 0 PID: 16643 Comm: syz.4.2701 Not tainted 6.14.0-rc2-syzkaller #0
[  585.813604][T16643] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  585.813617][T16643] Call Trace:
[  585.813623][T16643]  <TASK>
[  585.813630][T16643]  dump_stack_lvl+0x16c/0x1f0
[  585.813673][T16643]  should_fail_ex+0x50a/0x650
[  585.813700][T16643]  ? fs_reclaim_acquire+0xae/0x150
[  585.813732][T16643]  should_failslab+0xc2/0x120
[  585.813756][T16643]  __kmalloc_noprof+0xce/0x4f0
[  585.813774][T16643]  ? d_absolute_path+0x137/0x1b0
[  585.813832][T16643]  ? tomoyo_encode2+0x100/0x3e0
[  585.813875][T16643]  tomoyo_encode2+0x100/0x3e0
[  585.813901][T16643]  tomoyo_realpath_from_path+0x1a7/0x710
[  585.813928][T16643]  tomoyo_path_number_perm+0x248/0x5b0
[  585.813943][T16643]  ? tomoyo_path_number_perm+0x235/0x5b0
[  585.813962][T16643]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  585.813998][T16643]  ? __pfx_lock_release+0x10/0x10
[  585.814021][T16643]  ? trace_lock_acquire+0x14e/0x1f0
[  585.814038][T16643]  ? lock_acquire+0x2f/0xb0
[  585.814055][T16643]  ? __fget_files+0x40/0x3a0
[  585.814076][T16643]  ? __fget_files+0x206/0x3a0
[  585.814095][T16643]  security_file_ioctl_compat+0x9b/0x240
[  585.814117][T16643]  __do_compat_sys_ioctl+0x4e/0x2c0
[  585.814145][T16643]  __do_fast_syscall_32+0x73/0x120
[  585.814162][T16643]  do_fast_syscall_32+0x32/0x80
[  585.814177][T16643]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  585.814206][T16643] RIP: 0023:0xf7f43579
[  585.814219][T16643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  585.814233][T16643] RSP: 002b:00000000f506655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  585.814249][T16643] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000c05c6104
[  585.814259][T16643] RDX: 0000000080000340 RSI: 0000000000000000 RDI: 0000000000000000
[  585.814268][T16643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  585.814277][T16643] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  585.814285][T16643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  585.814305][T16643]  </TASK>
[  585.814438][T16643] ERROR: Out of memory at tomoyo_realpath_from_path.
[  586.094738][T16653] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2699'.
[  586.585204][T16658] ./file0: Can't lookup blockdev
[  586.600669][T16661] netlink: 'syz.3.2705': attribute type 4 has an invalid length.
[  586.635480][T16661] netlink: 'syz.3.2705': attribute type 4 has an invalid length.
[  586.677799][T16664] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2706'.
[  587.465537][   T72] usb 8-1: new high-speed USB device number 19 using dummy_hcd
[  587.529922][T16673] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  587.598412][T16675] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2710'.
[  587.601272][T16675] netlink: 43 bytes leftover after parsing attributes in process `syz.2.2710'.
[  587.602329][T16678] nfs: Unknown parameter '
'
[  587.603983][T16675] netlink: 'syz.2.2710': attribute type 6 has an invalid length.
[  587.608262][T16675] netlink: 'syz.2.2710': attribute type 5 has an invalid length.
[  587.610528][T16675] netlink: 43 bytes leftover after parsing attributes in process `syz.2.2710'.
[  587.617816][   T72] usb 8-1: Using ep0 maxpacket: 8
[  587.621194][   T72] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  587.626644][   T72] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  587.630935][   T72] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  587.634805][   T72] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  587.641111][   T72] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  587.644971][   T72] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  587.867203][T16668] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  587.871252][T16668] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  588.099231][   T72] usb 8-1: usb_control_msg returned -71
[  588.103833][   T72] usbtmc 8-1:16.0: can't read capabilities
[  588.121451][   T72] usb 8-1: USB disconnect, device number 19
[  588.122710][T16693] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2713'.
[  589.228510][T16711] ./file0: Can't lookup blockdev
[  589.247775][  T836] usb 7-1: new high-speed USB device number 21 using dummy_hcd
[  589.304793][   T40] kauditd_printk_skb: 77 callbacks suppressed
[  589.313910][   T40] audit: type=1326 audit(2000000010.029:1495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16703 comm="syz.4.2718" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  589.395541][  T836] usb 7-1: Using ep0 maxpacket: 16
[  589.404252][  T836] usb 7-1: config 0 has no interfaces?
[  589.409630][  T836] usb 7-1: New USB device found, idVendor=28bd, idProduct=0071, bcdDevice= 0.00
[  589.409960][   T40] audit: type=1326 audit(2000000010.029:1496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16703 comm="syz.4.2718" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  589.413389][  T836] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  589.422268][   T40] audit: type=1326 audit(2000000010.029:1497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16703 comm="syz.4.2718" exe="/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  589.422309][   T40] audit: type=1326 audit(2000000010.029:1498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16703 comm="syz.4.2718" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  589.447208][   T40] audit: type=1326 audit(2000000010.029:1499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16703 comm="syz.4.2718" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  589.452141][  T836] usb 7-1: config 0 descriptor??
[  589.456450][   T40] audit: type=1326 audit(2000000010.029:1500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16703 comm="syz.4.2718" exe="/syz-executor" sig=0 arch=40000003 syscall=280 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  589.682121][T16707] 9pnet_fd: Insufficient options for proto=fd
[  589.686234][T16707] overlay: ./file1 is not a directory
[  589.693054][   T72] usb 7-1: USB disconnect, device number 21
[  589.954172][T16716] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  589.957292][T16716] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  590.130553][T16726] ./file0: Can't lookup blockdev
[  591.223392][T16737] can0: slcan on ttyS3.
[  591.742613][T16745] ./file0: Can't lookup blockdev
[  591.823632][T16749] netlink: 52 bytes leftover after parsing attributes in process `syz.3.2730'.
[  591.826420][T16749] netlink: 52 bytes leftover after parsing attributes in process `syz.3.2730'.
[  591.860689][   T40] audit: type=1326 audit(2000000012.589:1501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16750 comm="syz.3.2731" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x0
[  591.896598][T16735] can0 (unregistered): slcan off ttyS3.
[  591.936014][T15785] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  592.085771][T15785] usb 9-1: Using ep0 maxpacket: 16
[  592.090054][T15785] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  592.094437][T15785] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  592.098927][T15785] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  592.104176][T15785] usb 9-1: New USB device found, idVendor=1781, idProduct=0898, bcdDevice= 0.00
[  592.108321][T15785] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  592.113821][T15785] usb 9-1: config 0 descriptor??
[  592.125697][T15785] input: PXRC Flight Controller Adapter as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/input/input29
[  592.137600][ T5341] pxrc 9-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[  592.147199][ T5341] pxrc 9-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[  592.180756][ T5341] pxrc 9-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[  592.335271][T16741] vivid-000: =================  START STATUS  =================
[  592.339416][T16741] vivid-000: Test Pattern: 75% Colorbar
[  592.341815][T16741] vivid-000: Fill Percentage of Frame: 100
[  592.343978][T16741] vivid-000: Horizontal Movement: No Movement
[  592.345829][T16741] vivid-000: Vertical Movement: No Movement
[  592.347555][T16741] vivid-000: OSD Text Mode: All
[  592.348977][T16741] vivid-000: Show Border: false
[  592.350383][T16741] vivid-000: Show Square: false
[  592.351828][T16741] vivid-000: Sensor Flipped Horizontally: false
[  592.353802][T16741] vivid-000: Sensor Flipped Vertically: false
[  592.356035][T16741] vivid-000: Insert SAV Code in Image: false
[  592.358234][T16741] vivid-000: Insert EAV Code in Image: false
[  592.359998][T16741] vivid-000: Insert Video Guard Band: false
[  592.362365][T16741] vivid-000: Reduced Framerate: false
[  592.364249][T16741] vivid-000: HDMI 000-0 Is Connected To: Output HDMI 023-0
[  592.366456][T16741] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator
[  592.368702][T16741] vivid-000: Enable Capture Cropping: false
[  592.370458][T16741] vivid-000: Enable Capture Composing: true
[  592.372263][T16741] vivid-000: Enable Capture Scaler: true
[  592.373958][T16741] vivid-000: Timestamp Source: End of Frame
[  592.376064][T16741] vivid-000: Colorspace: sRGB
[  592.377539][T16741] vivid-000: Transfer Function: Default
[  592.379309][T16741] vivid-000: Y'CbCr Encoding: Default
[  592.380965][T16741] vivid-000: HSV Encoding: Hue 0-179
[  592.382466][T16741] vivid-000: Quantization: Default
[  592.383996][T16741] vivid-000: Apply Alpha To Red Only: false
[  592.386023][T16741] vivid-000: Standard Aspect Ratio: 4x3
[  592.387644][T16741] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[  592.389806][T16741] vivid-000: DV Timings: 640x480p59 inactive
[  592.391702][T16741] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[  592.393838][T16741] vivid-000: Maximum EDID Blocks: 2
[  592.395468][T16741] vivid-000: Limited RGB Range (16-235): false
[  592.397430][T16741] vivid-000: Rx RGB Quantization Range: Automatic
[  592.399295][T16741] vivid-000: Power Present: 0x00000001
[  592.400888][T16741] tpg source WxH: 320x180 (Y'CbCr)
[  592.402333][T16741] tpg field: 1
[  592.403375][T16741] tpg crop: 320x180@0x0
[  592.404654][T16741] tpg compose: 320x180@0x0
[  592.406283][T16741] tpg colorspace: 8
[  592.407478][T16741] tpg transfer function: 0/0
[  592.408876][T16741] tpg Y'CbCr encoding: 0/0
[  592.410076][T16741] tpg quantization: 0/0
[  592.411236][T16741] tpg RGB range: 0/2
[  592.412376][T16741] vivid-000: ==================  END STATUS  ==================
[  592.780895][T16769] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2738'.
[  594.213926][T16786] ./file0: Can't lookup blockdev
[  594.294598][   T57] usb 9-1: USB disconnect, device number 6
[  594.343779][T16788] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2743'.
[  595.162332][T16794] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  595.248109][T16797] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2746'.
[  595.251045][T16797] netlink: 43 bytes leftover after parsing attributes in process `syz.0.2746'.
[  595.253620][T16797] netlink: 'syz.0.2746': attribute type 6 has an invalid length.
[  595.256462][T16797] netlink: 'syz.0.2746': attribute type 5 has an invalid length.
[  595.259279][T16797] netlink: 43 bytes leftover after parsing attributes in process `syz.0.2746'.
[  596.078515][   T40] audit: type=1326 audit(2000000016.809:1502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16815 comm="syz.3.2752" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  596.084992][   T40] audit: type=1326 audit(2000000016.809:1503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16815 comm="syz.3.2752" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  596.094792][   T40] audit: type=1326 audit(2000000016.809:1504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16815 comm="syz.3.2752" exe="/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf748e579 code=0x7ffc0000
[  596.103672][   T40] audit: type=1326 audit(2000000016.809:1505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16815 comm="syz.3.2752" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  596.130550][   T40] audit: type=1326 audit(2000000016.809:1506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16815 comm="syz.3.2752" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  596.137662][   T40] audit: type=1326 audit(2000000016.819:1507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16815 comm="syz.3.2752" exe="/syz-executor" sig=0 arch=40000003 syscall=280 compat=1 ip=0xf748e579 code=0x7ffc0000
[  596.302724][T16820] orangefs_mount: mount request failed with -4
[  596.716955][T16849] ./file0: Can't lookup blockdev
[  597.870026][T16871] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  597.876034][   T35] usb 7-1: new high-speed USB device number 22 using dummy_hcd
[  598.040746][   T35] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  598.045745][   T35] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  598.050070][   T35] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  598.061059][   T35] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  598.067158][   T35] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  598.070750][   T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  598.076852][   T35] usb 7-1: config 0 descriptor??
[  598.080124][T16869] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  598.442704][T16879] ./file0: Can't lookup blockdev
[  598.514358][   T35] plantronics 0003:047F:FFFF.0018: unknown main item tag 0xd
[  598.518953][   T35] plantronics 0003:047F:FFFF.0018: No inputs registered, leaving
[  598.529028][   T35] plantronics 0003:047F:FFFF.0018: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  598.767016][ T5984] usb 7-1: USB disconnect, device number 22
[  599.196103][T16893] overlayfs: overlapping lowerdir path
[  599.324158][T16900] tmpfs: Bad value for 'mpol'
[  599.345845][   T40] audit: type=1326 audit(2000000020.059:1508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16899 comm="syz.2.2777" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x0
[  599.555707][ T6003] usb 8-1: new low-speed USB device number 20 using dummy_hcd
[  599.570894][T16907] ./file0: Can't lookup blockdev
[  599.685455][ T6003] usb 8-1: device descriptor read/64, error -71
[  599.925464][ T6003] usb 8-1: new low-speed USB device number 21 using dummy_hcd
[  600.055720][ T6003] usb 8-1: device descriptor read/64, error -71
[  600.175902][ T6003] usb usb8-port1: attempt power cycle
[  600.608413][ T6003] usb 8-1: new low-speed USB device number 22 using dummy_hcd
[  600.636264][ T6003] usb 8-1: device descriptor read/8, error -71
[  600.682169][T16921] netlink: 'syz.0.2783': attribute type 6 has an invalid length.
[  601.306224][ T6003] usb 8-1: new low-speed USB device number 23 using dummy_hcd
[  601.368660][ T6003] usb 8-1: device descriptor read/8, error -71
[  601.482693][ T6003] usb usb8-port1: unable to enumerate USB device
[  601.698109][T16918] can0: slcan on ttyS3.
[  602.121990][T16916] can0 (unregistered): slcan off ttyS3.
[  602.378998][   T40] audit: type=1326 audit(2000000023.109:1509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16939 comm="syz.0.2788" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6579 code=0x7ffc0000
[  602.391214][   T40] audit: type=1326 audit(2000000023.109:1510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16939 comm="syz.0.2788" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6579 code=0x7ffc0000
[  602.405825][   T40] audit: type=1326 audit(2000000023.109:1511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16939 comm="syz.0.2788" exe="/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf7fb6579 code=0x7ffc0000
[  602.413065][   T40] audit: type=1326 audit(2000000023.109:1512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16939 comm="syz.0.2788" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6579 code=0x7ffc0000
[  602.419616][   T40] audit: type=1326 audit(2000000023.109:1513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16939 comm="syz.0.2788" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6579 code=0x7ffc0000
[  602.426656][   T40] audit: type=1326 audit(2000000023.109:1514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16939 comm="syz.0.2788" exe="/syz-executor" sig=0 arch=40000003 syscall=280 compat=1 ip=0xf7fb6579 code=0x7ffc0000
[  603.111885][T16962] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2792'.
[  603.524192][T16967] program syz.3.2793 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  603.859188][T16969] FAULT_INJECTION: forcing a failure.
[  603.859188][T16969] name failslab, interval 1, probability 0, space 0, times 0
[  603.859300][T16969] CPU: 0 UID: 0 PID: 16969 Comm: syz.4.2794 Not tainted 6.14.0-rc2-syzkaller #0
[  603.859313][T16969] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  603.859328][T16969] Call Trace:
[  603.859332][T16969]  <TASK>
[  603.859337][T16969]  dump_stack_lvl+0x16c/0x1f0
[  603.859360][T16969]  should_fail_ex+0x50a/0x650
[  603.859376][T16969]  ? fs_reclaim_acquire+0xae/0x150
[  603.859394][T16969]  should_failslab+0xc2/0x120
[  603.859410][T16969]  __kmalloc_noprof+0xce/0x4f0
[  603.859444][T16969]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  603.859458][T16969]  ? tomoyo_realpath_from_path+0xbf/0x710
[  603.859474][T16969]  tomoyo_realpath_from_path+0xbf/0x710
[  603.859488][T16969]  ? tomoyo_path_number_perm+0x235/0x5b0
[  603.859499][T16969]  tomoyo_path_number_perm+0x248/0x5b0
[  603.859509][T16969]  ? tomoyo_path_number_perm+0x235/0x5b0
[  603.859520][T16969]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  603.859542][T16969]  ? __pfx_lock_release+0x10/0x10
[  603.859553][T16969]  ? trace_lock_acquire+0x14e/0x1f0
[  603.859563][T16969]  ? lock_acquire+0x2f/0xb0
[  603.859574][T16969]  ? __fget_files+0x40/0x3a0
[  603.859587][T16969]  ? __fget_files+0x206/0x3a0
[  603.859599][T16969]  security_file_ioctl_compat+0x9b/0x240
[  603.859613][T16969]  __do_compat_sys_ioctl+0x4e/0x2c0
[  603.859630][T16969]  __do_fast_syscall_32+0x73/0x120
[  603.859641][T16969]  do_fast_syscall_32+0x32/0x80
[  603.859651][T16969]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  603.859669][T16969] RIP: 0023:0xf7f43579
[  603.859677][T16969] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  603.859687][T16969] RSP: 002b:00000000f506655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  603.859697][T16969] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000000031f
[  603.859702][T16969] RDX: 0000000080000140 RSI: 0000000000000000 RDI: 0000000000000000
[  603.859708][T16969] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  603.859714][T16969] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  603.859719][T16969] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  603.859731][T16969]  </TASK>
[  603.859770][T16969] ERROR: Out of memory at tomoyo_realpath_from_path.
[  604.316540][T16984] netlink: 'syz.3.2795': attribute type 10 has an invalid length.
[  604.323825][T16984] team0: Port device netdevsim0 added
[  605.282501][   T40] audit: type=1326 audit(2000000025.999:1515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16987 comm="syz.0.2800" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6579 code=0x7ffc0000
[  605.295460][   T40] audit: type=1326 audit(2000000025.999:1516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16987 comm="syz.0.2800" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6579 code=0x7ffc0000
[  605.303229][   T40] audit: type=1326 audit(2000000025.999:1517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16987 comm="syz.0.2800" exe="/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf7fb6579 code=0x7ffc0000
[  605.326435][   T40] audit: type=1326 audit(2000000025.999:1518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16987 comm="syz.0.2800" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6579 code=0x7ffc0000
[  606.175663][ T5984] usb 7-1: new high-speed USB device number 23 using dummy_hcd
[  606.326821][ T5984] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  606.330061][ T5984] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  606.333487][ T5984] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  606.342168][ T5984] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  606.346573][ T5984] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  606.349397][ T5984] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  606.352865][ T5984] usb 7-1: config 0 descriptor??
[  606.354761][T17006] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  606.429413][T17014] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2806'.
[  606.571910][T17020] xt_cgroup: xt_cgroup: no path or classid specified
[  606.760622][ T5984] plantronics 0003:047F:FFFF.0019: unknown main item tag 0xd
[  606.763607][ T5984] plantronics 0003:047F:FFFF.0019: No inputs registered, leaving
[  606.768554][ T5984] plantronics 0003:047F:FFFF.0019: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  607.017233][ T5984] usb 7-1: USB disconnect, device number 23
[  607.583087][T17032] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2809'.
[  608.145375][   T40] kauditd_printk_skb: 2 callbacks suppressed
[  608.145393][   T40] audit: type=1326 audit(2000000028.869:1521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17040 comm="syz.3.2813" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  608.165628][T17049] ./file0: Can't lookup blockdev
[  608.175735][   T40] audit: type=1326 audit(2000000028.869:1522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17040 comm="syz.3.2813" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  608.185792][   T40] audit: type=1326 audit(2000000028.869:1523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17040 comm="syz.3.2813" exe="/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf748e579 code=0x7ffc0000
[  608.203149][   T40] audit: type=1326 audit(2000000028.869:1524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17040 comm="syz.3.2813" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  608.218815][   T40] audit: type=1326 audit(2000000028.869:1525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17040 comm="syz.3.2813" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  608.230320][T17047] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2814'.
[  608.235740][   T40] audit: type=1326 audit(2000000028.869:1526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17040 comm="syz.3.2813" exe="/syz-executor" sig=0 arch=40000003 syscall=280 compat=1 ip=0xf748e579 code=0x7ffc0000
[  608.971128][T17066] ./file0: Can't lookup blockdev
[  609.373194][T17072] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2820'.
[  609.701834][T17081] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2823'.
[  611.065530][   T35] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  611.356654][T17113] random: crng reseeded on system resumption
[  611.359109][   T35] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  611.362957][   T35] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  611.371513][   T35] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  611.375878][   T35] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  611.380014][   T35] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  611.385061][   T35] usb 9-1: config 0 descriptor??
[  611.405521][T17119] ./file0: Can't lookup blockdev
[  611.583228][T17124] FAULT_INJECTION: forcing a failure.
[  611.583228][T17124] name failslab, interval 1, probability 0, space 0, times 0
[  611.602301][T17124] CPU: 3 UID: 0 PID: 17124 Comm: syz.0.2834 Not tainted 6.14.0-rc2-syzkaller #0
[  611.602327][T17124] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  611.602338][T17124] Call Trace:
[  611.602344][T17124]  <TASK>
[  611.602351][T17124]  dump_stack_lvl+0x16c/0x1f0
[  611.602388][T17124]  should_fail_ex+0x50a/0x650
[  611.602413][T17124]  ? fs_reclaim_acquire+0xae/0x150
[  611.602445][T17124]  should_failslab+0xc2/0x120
[  611.602469][T17124]  __kmalloc_noprof+0xce/0x4f0
[  611.602489][T17124]  ? d_absolute_path+0x137/0x1b0
[  611.602511][T17124]  ? tomoyo_encode2+0x100/0x3e0
[  611.602533][T17124]  tomoyo_encode2+0x100/0x3e0
[  611.602557][T17124]  tomoyo_realpath_from_path+0x1a7/0x710
[  611.602591][T17124]  tomoyo_path_number_perm+0x248/0x5b0
[  611.602608][T17124]  ? tomoyo_path_number_perm+0x235/0x5b0
[  611.602629][T17124]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  611.602671][T17124]  ? __pfx_lock_release+0x10/0x10
[  611.602693][T17124]  ? trace_lock_acquire+0x14e/0x1f0
[  611.602713][T17124]  ? lock_acquire+0x2f/0xb0
[  611.602731][T17124]  ? __fget_files+0x40/0x3a0
[  611.602753][T17124]  ? __fget_files+0x206/0x3a0
[  611.602775][T17124]  security_file_ioctl_compat+0x9b/0x240
[  611.602798][T17124]  __do_compat_sys_ioctl+0x4e/0x2c0
[  611.602826][T17124]  __do_fast_syscall_32+0x73/0x120
[  611.602846][T17124]  do_fast_syscall_32+0x32/0x80
[  611.602863][T17124]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  611.602891][T17124] RIP: 0023:0xf7fb6579
[  611.602906][T17124] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  611.602922][T17124] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  611.602939][T17124] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000000031f
[  611.602950][T17124] RDX: 0000000080000140 RSI: 0000000000000000 RDI: 0000000000000000
[  611.602961][T17124] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  611.602970][T17124] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  611.602980][T17124] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  611.603002][T17124]  </TASK>
[  611.603018][T17124] ERROR: Out of memory at tomoyo_realpath_from_path.
[  611.687327][   T35] plantronics 0003:047F:FFFF.001A: unknown main item tag 0xd
[  611.690496][   T35] plantronics 0003:047F:FFFF.001A: No inputs registered, leaving
[  611.707270][   T35] plantronics 0003:047F:FFFF.001A: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  611.716660][   T35] usb 9-1: USB disconnect, device number 7
[  612.225611][T17144] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  612.287763][T17145] /dev/nullb0: Can't open blockdev
[  612.290495][T17145] ./file0: Can't lookup blockdev
[  612.618942][T17140] netlink: 'syz.4.2839': attribute type 6 has an invalid length.
[  613.545418][   T57] usb 8-1: new high-speed USB device number 24 using dummy_hcd
[  613.815412][   T57] usb 8-1: Using ep0 maxpacket: 16
[  613.825378][   T57] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  613.835413][   T57] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  613.838789][   T57] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  613.865514][   T57] usb 8-1: New USB device found, idVendor=1781, idProduct=0898, bcdDevice= 0.00
[  613.869174][   T57] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  613.886587][   T57] usb 8-1: config 0 descriptor??
[  613.897645][   T57] input: PXRC Flight Controller Adapter as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input32
[  613.906253][ T5341] pxrc 8-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[  613.946196][ T5341] pxrc 8-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[  613.985518][ T5341] pxrc 8-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[  614.157848][T17181] ./file0: Can't lookup blockdev
[  614.163950][T17152] vivid-000: =================  START STATUS  =================
[  614.166171][T17152] vivid-000: Test Pattern: 75% Colorbar
[  614.167785][T17152] vivid-000: Fill Percentage of Frame: 100
[  614.169800][T17152] vivid-000: Horizontal Movement: No Movement
[  614.172079][T17152] vivid-000: Vertical Movement: No Movement
[  614.174362][T17152] vivid-000: OSD Text Mode: All
[  614.176124][T17152] vivid-000: Show Border: false
[  614.177772][T17152] vivid-000: Show Square: false
[  614.181248][T17152] vivid-000: Sensor Flipped Horizontally: false
[  614.183496][T17152] vivid-000: Sensor Flipped Vertically: false
[  614.185811][T17152] vivid-000: Insert SAV Code in Image: false
[  614.188107][T17152] vivid-000: Insert EAV Code in Image: false
[  614.190452][T17152] vivid-000: Insert Video Guard Band: false
[  614.192741][T17152] vivid-000: Reduced Framerate: false
[  614.194735][T17152] vivid-000: HDMI 000-0 Is Connected To: Output HDMI 023-0
[  614.197571][T17152] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator
[  614.200480][T17152] vivid-000: Enable Capture Cropping: false
[  614.202724][T17152] vivid-000: Enable Capture Composing: true
[  614.205379][T17152] vivid-000: Enable Capture Scaler: true
[  614.207534][T17152] vivid-000: Timestamp Source: End of Frame
[  614.209768][T17152] vivid-000: Colorspace: sRGB
[  614.211529][T17152] vivid-000: Transfer Function: Default
[  614.213709][T17152] vivid-000: Y'CbCr Encoding: Default
[  614.216357][T17152] vivid-000: HSV Encoding: Hue 0-179
[  614.218618][T17152] vivid-000: Quantization: Default
[  614.220672][T17152] vivid-000: Apply Alpha To Red Only: false
[  614.222925][T17152] vivid-000: Standard Aspect Ratio: 4x3
[  614.225011][T17152] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[  614.227912][T17152] vivid-000: DV Timings: 640x480p59 inactive
[  614.230139][T17152] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[  614.232901][T17152] vivid-000: Maximum EDID Blocks: 2
[  614.235041][T17152] vivid-000: Limited RGB Range (16-235): false
[  614.237742][T17152] vivid-000: Rx RGB Quantization Range: Automatic
[  614.240183][T17152] vivid-000: Power Present: 0x00000001
[  614.242253][T17152] tpg source WxH: 320x180 (Y'CbCr)
[  614.244184][T17152] tpg field: 1
[  614.245577][T17152] tpg crop: 320x180@0x0
[  614.247728][T17152] tpg compose: 320x180@0x0
[  614.249479][T17152] tpg colorspace: 8
[  614.251024][T17152] tpg transfer function: 0/0
[  614.252826][T17152] tpg Y'CbCr encoding: 0/0
[  614.254494][T17152] tpg quantization: 0/0
[  614.256140][T17152] tpg RGB range: 0/2
[  614.257772][T17152] vivid-000: ==================  END STATUS  ==================
[  615.099534][T17192] can0: slcan on ttyS3.
[  615.166529][T17198] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2851'.
[  615.685912][T17187] can0 (unregistered): slcan off ttyS3.
[  615.781845][   T57] usb 8-1: USB disconnect, device number 24
[  616.138124][   T57] usb 8-1: new high-speed USB device number 25 using dummy_hcd
[  616.636543][   T57] usb 8-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  616.643334][   T57] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  616.818402][   T57] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  616.821144][   T57] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  616.898958][   T57] usb 8-1: config 0 descriptor??
[  616.938750][   T57] usbhid 8-1:0.0: couldn't find an input interrupt endpoint
[  617.442637][T17224] ./file0: Can't lookup blockdev
[  618.871032][T15336] usb 8-1: USB disconnect, device number 25
[  619.053862][T17244] can0: slcan on ttyS3.
[  619.521649][T17230] can0 (unregistered): slcan off ttyS3.
[  619.940020][T17262] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2867'.
[  620.259370][T17266] ./file0: Can't lookup blockdev
[  620.527859][   T40] audit: type=1326 audit(2000000041.259:1527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17267 comm="syz.3.2870" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  620.538294][   T40] audit: type=1326 audit(2000000041.259:1528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17267 comm="syz.3.2870" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf748e598 code=0x7ffc0000
[  620.549341][   T40] audit: type=1326 audit(2000000041.259:1529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17267 comm="syz.3.2870" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf748e598 code=0x7ffc0000
[  620.558567][   T40] audit: type=1326 audit(2000000041.259:1530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17267 comm="syz.3.2870" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  620.583184][   T40] audit: type=1326 audit(2000000041.259:1531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17267 comm="syz.3.2870" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf748e598 code=0x7ffc0000
[  620.592336][   T40] audit: type=1326 audit(2000000041.259:1532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17267 comm="syz.3.2870" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf748e598 code=0x7ffc0000
[  620.601480][   T40] audit: type=1326 audit(2000000041.259:1533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17267 comm="syz.3.2870" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf748e598 code=0x7ffc0000
[  620.610804][   T40] audit: type=1326 audit(2000000041.259:1534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17267 comm="syz.3.2870" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf748e598 code=0x7ffc0000
[  620.620922][   T40] audit: type=1326 audit(2000000041.259:1535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17267 comm="syz.3.2870" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf748e598 code=0x7ffc0000
[  620.629992][   T40] audit: type=1326 audit(2000000041.259:1536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17267 comm="syz.3.2870" exe="/syz-executor" sig=0 arch=40000003 syscall=174 compat=1 ip=0xf748e579 code=0x7ffc0000
[  621.035749][T17278] can0: slcan on ttyS3.
[  621.125579][  T836] usb 7-1: new high-speed USB device number 24 using dummy_hcd
[  621.277257][  T836] usb 7-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  621.281789][  T836] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  621.287880][  T836] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  621.291665][  T836] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  621.303823][  T836] usb 7-1: config 0 descriptor??
[  621.312462][  T836] usbhid 7-1:0.0: couldn't find an input interrupt endpoint
[  621.526045][T17269] can0 (unregistered): slcan off ttyS3.
[  621.972193][T17294] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2877'.
[  622.238373][T17300] netlink: 52 bytes leftover after parsing attributes in process `syz.3.2879'.
[  622.241918][T17300] netlink: 52 bytes leftover after parsing attributes in process `syz.3.2879'.
[  622.655612][T17308] ./file0: Can't lookup blockdev
[  622.983727][T17313] netlink: del zone limit has 4 unknown bytes
[  623.156412][T17315] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  623.589500][T17322] netlink: 'syz.0.2885': attribute type 7 has an invalid length.
[  623.656393][T17326] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  623.801409][T17329] /dev/nullb0: Can't open blockdev
[  623.805400][T17329] ./file0: Can't lookup blockdev
[  623.946720][ T1412] ieee802154 phy0 wpan0: encryption failed: -22
[  623.949236][ T1412] ieee802154 phy1 wpan1: encryption failed: -22
[  623.989735][T15336] usb 7-1: USB disconnect, device number 24
[  624.057907][T17334] 8021q: adding VLAN 0 to HW filter on device bond1
[  624.201525][T17320] netlink: 'syz.3.2884': attribute type 6 has an invalid length.
[  624.686111][   T72] usb 8-1: new full-speed USB device number 26 using dummy_hcd
[  624.837231][   T72] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  624.840747][   T72] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64
[  624.844039][   T72] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  624.846880][   T72] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  624.851550][T17344] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  624.854672][T17344] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  624.862289][   T72] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  625.072536][ T5984] usb 8-1: USB disconnect, device number 26
[  625.340512][   T57] usb 7-1: new high-speed USB device number 25 using dummy_hcd
[  625.512721][   T57] usb 7-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  625.516969][   T57] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  625.521966][   T57] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  625.525984][   T57] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  625.537484][   T57] usb 7-1: config 0 descriptor??
[  625.547855][   T57] usbhid 7-1:0.0: couldn't find an input interrupt endpoint
[  625.842562][T17368] ./file0: Can't lookup blockdev
[  626.015575][ T5947] Bluetooth: hci2: command 0x0405 tx timeout
[  628.035134][   T30] usb 7-1: USB disconnect, device number 25
[  628.341401][   T40] kauditd_printk_skb: 957 callbacks suppressed
[  628.341420][   T40] audit: type=1326 audit(2000000049.069:2494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17412 comm="syz.3.2911" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  628.356065][   T40] audit: type=1326 audit(2000000049.069:2495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17412 comm="syz.3.2911" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  628.365484][   T40] audit: type=1326 audit(2000000049.069:2496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17412 comm="syz.3.2911" exe="/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf748e579 code=0x7ffc0000
[  628.373916][   T40] audit: type=1326 audit(2000000049.069:2497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17412 comm="syz.3.2911" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  628.390117][   T40] audit: type=1326 audit(2000000049.069:2498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17412 comm="syz.3.2911" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  628.400815][   T40] audit: type=1326 audit(2000000049.079:2499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17412 comm="syz.3.2911" exe="/syz-executor" sig=0 arch=40000003 syscall=280 compat=1 ip=0xf748e579 code=0x7ffc0000
[  628.835544][T17428] trusted_key: encrypted_key: insufficient parameters specified
[  629.165458][T17433] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2912'.
[  629.184985][T17437] /dev/sg0: Can't lookup blockdev
[  629.191498][T17437] netlink: 108 bytes leftover after parsing attributes in process `syz.3.2917'.
[  629.200912][T17428] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2915'.
[  629.239472][T17440] bridge0: port 1(bridge_slave_0) entered disabled state
[  629.242500][T17440] bridge0: port 2(bridge_slave_1) entered disabled state
[  629.281408][   T40] audit: type=1326 audit(2000000050.009:2500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17439 comm="syz.3.2918" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x0
[  629.775464][   T72] usb 7-1: new high-speed USB device number 26 using dummy_hcd
[  630.301299][   T72] usb 7-1: device descriptor read/64, error -71
[  630.449310][T17461] netlink: 112 bytes leftover after parsing attributes in process `syz.3.2924'.
[  630.487277][T17463] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2925'.
[  630.545513][   T72] usb 7-1: new high-speed USB device number 27 using dummy_hcd
[  630.661333][T17468] loop2: detected capacity change from 0 to 7
[  630.663770][T17468] Dev loop2: unable to read RDB block 7
[  630.666305][T17468]  loop2: unable to read partition table
[  630.668228][T17468] loop2: partition table beyond EOD, truncated
[  630.669976][T17468] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  630.675628][   T72] usb 7-1: device descriptor read/64, error -71
[  630.801305][   T72] usb usb7-port1: attempt power cycle
[  631.146137][   T72] usb 7-1: new high-speed USB device number 28 using dummy_hcd
[  631.176128][   T72] usb 7-1: device descriptor read/8, error -71
[  631.589270][T17494] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2933'.
[  631.855558][   T72] usb 7-1: new high-speed USB device number 29 using dummy_hcd
[  631.876044][   T72] usb 7-1: device descriptor read/8, error -71
[  631.990640][   T72] usb usb7-port1: unable to enumerate USB device
[  632.506731][T17512] sd 0:0:0:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x24 ascq=0x0
[  632.871749][T17518] can0: slcan on ttyS3.
[  632.963462][T17526] netlink: del zone limit has 4 unknown bytes
[  632.965677][T17518] support for cryptoloop has been removed.  Use dm-crypt instead.
[  633.156378][T17517] can0 (unregistered): slcan off ttyS3.
[  634.497840][T17540] trusted_key: encrypted_key: insufficient parameters specified
[  634.536120][T17540] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2945'.
[  635.285530][T17546] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2948'.
[  635.289253][T17546] netlink: 43 bytes leftover after parsing attributes in process `syz.3.2948'.
[  635.298292][T17546] netlink: 'syz.3.2948': attribute type 6 has an invalid length.
[  635.301418][T17546] netlink: 'syz.3.2948': attribute type 5 has an invalid length.
[  635.304839][T17546] netlink: 43 bytes leftover after parsing attributes in process `syz.3.2948'.
[  635.602550][   T72] usb 8-1: new high-speed USB device number 27 using dummy_hcd
[  635.638648][T17555] (unnamed net_device) (uninitialized): option mode: invalid value (133)
[  635.735535][   T72] usb 8-1: device descriptor read/64, error -71
[  635.985492][   T72] usb 8-1: new high-speed USB device number 28 using dummy_hcd
[  636.115471][   T72] usb 8-1: device descriptor read/64, error -71
[  636.225777][   T72] usb usb8-port1: attempt power cycle
[  636.737608][   T40] audit: type=1326 audit(2000000057.469:2501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17561 comm="syz.4.2954" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  636.745452][   T72] usb 8-1: new high-speed USB device number 29 using dummy_hcd
[  636.745500][   T40] audit: type=1326 audit(2000000057.469:2502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17561 comm="syz.4.2954" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  636.761217][   T40] audit: type=1326 audit(2000000057.469:2503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17561 comm="syz.4.2954" exe="/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  636.766109][   T72] usb 8-1: device descriptor read/8, error -71
[  636.769986][   T40] audit: type=1326 audit(2000000057.469:2504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17561 comm="syz.4.2954" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  636.780714][   T40] audit: type=1326 audit(2000000057.469:2505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17561 comm="syz.4.2954" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  636.789502][   T40] audit: type=1326 audit(2000000057.469:2506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17561 comm="syz.4.2954" exe="/syz-executor" sig=0 arch=40000003 syscall=280 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  637.005558][   T72] usb 8-1: new high-speed USB device number 30 using dummy_hcd
[  637.026373][   T72] usb 8-1: device descriptor read/8, error -71
[  637.136417][   T72] usb usb8-port1: unable to enumerate USB device
[  637.192310][T17582] netlink: 'syz.4.2960': attribute type 6 has an invalid length.
[  637.247036][T17584] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  637.746090][T17596] rdma_rxe: rxe_newlink: failed to add bond0
[  637.848812][T17600] netlink: del zone limit has 4 unknown bytes
[  638.518932][T17614] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2970'.
[  638.632242][T17621] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2967'.
[  639.021553][T17625] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2972'.
[  639.251165][T17627] can0: slcan on ttyS3.
[  639.431775][T17630] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2973'.
[  639.599334][T17620] can0 (unregistered): slcan off ttyS3.
[  640.024487][   T40] audit: type=1326 audit(2000000060.749:2507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17631 comm="syz.4.2974" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  640.031643][   T40] audit: type=1326 audit(2000000060.749:2508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17631 comm="syz.4.2974" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  640.038684][   T40] audit: type=1326 audit(2000000060.759:2509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17631 comm="syz.4.2974" exe="/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  640.046898][   T40] audit: type=1326 audit(2000000060.759:2510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17631 comm="syz.4.2974" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  640.125551][   T30] usb 7-1: new high-speed USB device number 30 using dummy_hcd
[  640.265578][   T30] usb 7-1: device descriptor read/64, error -71
[  640.515956][   T30] usb 7-1: new high-speed USB device number 31 using dummy_hcd
[  640.655645][   T30] usb 7-1: device descriptor read/64, error -71
[  640.765508][   T30] usb usb7-port1: attempt power cycle
[  640.800160][T17652] can0: slcan on ttyS3.
[  640.878972][T17653] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2979'.
[  641.115453][   T30] usb 7-1: new high-speed USB device number 32 using dummy_hcd
[  641.147367][   T30] usb 7-1: device descriptor read/8, error -71
[  641.353116][T17662] netlink: 'syz.4.2981': attribute type 6 has an invalid length.
[  641.356648][T17662] netlink: 176 bytes leftover after parsing attributes in process `syz.4.2981'.
[  641.386345][   T30] usb 7-1: new high-speed USB device number 33 using dummy_hcd
[  641.406170][   T30] usb 7-1: device descriptor read/8, error -71
[  641.436129][T17648] can0 (unregistered): slcan off ttyS3.
[  641.448731][T17666] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  641.637153][   T30] usb usb7-port1: unable to enumerate USB device
[  642.752776][T17697] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2993'.
[  642.819364][ T5954] Bluetooth: hci3: Invalid connection link type handle 0x00c8
[  643.955838][T17718] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2996'.
[  644.276105][T17724] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2998'.
[  644.278782][T17724] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2998'.
[  644.328269][T17726] netlink: 'syz.2.2999': attribute type 10 has an invalid length.
[  644.333205][T17727] netlink: 'syz.2.2999': attribute type 10 has an invalid length.
[  644.355242][T17726] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  644.399773][T17731] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3000'.
[  644.695781][    T8] usb 7-1: new high-speed USB device number 34 using dummy_hcd
[  644.724998][T17740] FAULT_INJECTION: forcing a failure.
[  644.724998][T17740] name failslab, interval 1, probability 0, space 0, times 0
[  644.731691][T17740] CPU: 2 UID: 0 PID: 17740 Comm: syz.3.3004 Not tainted 6.14.0-rc2-syzkaller #0
[  644.731714][T17740] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  644.731724][T17740] Call Trace:
[  644.731730][T17740]  <TASK>
[  644.731737][T17740]  dump_stack_lvl+0x16c/0x1f0
[  644.731775][T17740]  should_fail_ex+0x50a/0x650
[  644.731799][T17740]  ? fs_reclaim_acquire+0xae/0x150
[  644.731832][T17740]  should_failslab+0xc2/0x120
[  644.731856][T17740]  __kmalloc_noprof+0xce/0x4f0
[  644.731874][T17740]  ? d_absolute_path+0x137/0x1b0
[  644.731895][T17740]  ? tomoyo_encode2+0x100/0x3e0
[  644.731921][T17740]  tomoyo_encode2+0x100/0x3e0
[  644.731943][T17740]  tomoyo_realpath_from_path+0x1a7/0x710
[  644.731968][T17740]  tomoyo_path_number_perm+0x248/0x5b0
[  644.731984][T17740]  ? tomoyo_path_number_perm+0x235/0x5b0
[  644.732003][T17740]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  644.732038][T17740]  ? __pfx_lock_release+0x10/0x10
[  644.732059][T17740]  ? trace_lock_acquire+0x14e/0x1f0
[  644.732076][T17740]  ? lock_acquire+0x2f/0xb0
[  644.732093][T17740]  ? __fget_files+0x40/0x3a0
[  644.732112][T17740]  ? __fget_files+0x206/0x3a0
[  644.732147][T17740]  security_file_ioctl_compat+0x9b/0x240
[  644.732171][T17740]  __do_compat_sys_ioctl+0x4e/0x2c0
[  644.732198][T17740]  __do_fast_syscall_32+0x73/0x120
[  644.732217][T17740]  do_fast_syscall_32+0x32/0x80
[  644.732232][T17740]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  644.732260][T17740] RIP: 0023:0xf748e579
[  644.732273][T17740] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  644.732295][T17740] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  644.732312][T17740] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000c0845657
[  644.732322][T17740] RDX: 0000000080000380 RSI: 0000000000000000 RDI: 0000000000000000
[  644.732331][T17740] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  644.732340][T17740] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  644.732350][T17740] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  644.732372][T17740]  </TASK>
[  644.733163][T17740] ERROR: Out of memory at tomoyo_realpath_from_path.
[  644.855596][    T8] usb 7-1: device descriptor read/64, error -71
[  645.235531][    T8] usb 7-1: new high-speed USB device number 35 using dummy_hcd
[  645.365614][    T8] usb 7-1: device descriptor read/64, error -71
[  645.386227][T17752] ./file0: Can't lookup blockdev
[  645.413808][T17745] slcan: can't register candev
[  645.475653][    T8] usb usb7-port1: attempt power cycle
[  645.710694][ T9621] bond0 (unregistering): Released all slaves
[  645.743381][T17759] ./file0: Can't lookup blockdev
[  645.798060][ T9621] tipc: Disabling bearer <eth:team0>
[  645.804945][ T9621] tipc: Left network mode
[  645.830321][    T8] usb 7-1: new high-speed USB device number 36 using dummy_hcd
[  645.854505][    T8] usb 7-1: device descriptor read/8, error -71
[  646.095676][    T8] usb 7-1: new high-speed USB device number 37 using dummy_hcd
[  646.116677][    T8] usb 7-1: device descriptor read/8, error -71
[  646.121025][ T9621] hsr_slave_0: left promiscuous mode
[  646.123876][ T9621] hsr_slave_1: left promiscuous mode
[  646.229284][    T8] usb usb7-port1: unable to enumerate USB device
[  646.244546][T17764] ./file0: Can't lookup blockdev
[  647.556192][T17777] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3013'.
[  647.979529][T17780] slcan: can't register candev
[  648.935073][T17802] ./file0: Can't lookup blockdev
[  649.732613][ T5985] usb 8-1: new high-speed USB device number 31 using dummy_hcd
[  649.898098][ T5985] usb 8-1: device descriptor read/64, error -71
[  650.201234][ T5985] usb 8-1: new high-speed USB device number 32 using dummy_hcd
[  650.345607][ T5985] usb 8-1: device descriptor read/64, error -71
[  650.351311][    C1] vkms_vblank_simulate: vblank timer overrun
[  650.457008][ T5985] usb usb8-port1: attempt power cycle
[  650.832138][ T5985] usb 8-1: new high-speed USB device number 33 using dummy_hcd
[  650.875639][ T5985] usb 8-1: device descriptor read/8, error -71
[  650.896006][   T57] libceph: connect (1)[c::]:6789 error -101
[  650.898283][   T57] libceph: mon0 (1)[c::]:6789 connect error
[  650.937207][T17825] ceph: No mds server is up or the cluster is laggy
[  651.125710][ T5985] usb 8-1: new high-speed USB device number 34 using dummy_hcd
[  651.146547][ T5985] usb 8-1: device descriptor read/8, error -71
[  651.255834][ T5985] usb usb8-port1: unable to enumerate USB device
[  651.280574][T17836] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3026'.
[  651.330159][ T9621] IPVS: stop unused estimator thread 0...
[  651.450867][T17840] loop2: detected capacity change from 0 to 7
[  651.453480][T17840] Dev loop2: unable to read RDB block 7
[  651.455230][T17840]  loop2: unable to read partition table
[  651.457739][T17840] loop2: partition table beyond EOD, truncated
[  651.459556][T17840] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  651.615535][ T5947] Bluetooth: hci0: command 0x0405 tx timeout
[  651.926004][T17850] ./file0: Can't lookup blockdev
[  652.514931][   T40] kauditd_printk_skb: 3 callbacks suppressed
[  652.514947][   T40] audit: type=1326 audit(2000000073.239:2514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17845 comm="syz.4.3031" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  652.526892][   T40] audit: type=1326 audit(2000000073.239:2515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17845 comm="syz.4.3031" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  652.535411][   T40] audit: type=1326 audit(2000000073.249:2516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17845 comm="syz.4.3031" exe="/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  652.541566][   T40] audit: type=1326 audit(2000000073.259:2517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17845 comm="syz.4.3031" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  652.548033][   T40] audit: type=1326 audit(2000000073.259:2518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17845 comm="syz.4.3031" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  652.554575][   T40] audit: type=1326 audit(2000000073.259:2519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17845 comm="syz.4.3031" exe="/syz-executor" sig=0 arch=40000003 syscall=280 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  652.841487][T17858] gtp1: entered promiscuous mode
[  652.843777][T17858] gtp1: entered allmulticast mode
[  653.985437][ T5985] usb 8-1: new high-speed USB device number 35 using dummy_hcd
[  654.115606][ T5985] usb 8-1: device descriptor read/64, error -71
[  654.193586][T17891] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3044'.
[  654.382529][T17887] ./file0: Can't lookup blockdev
[  654.475435][ T5985] usb 8-1: new high-speed USB device number 36 using dummy_hcd
[  654.484090][   T40] audit: type=1326 audit(2000000075.209:2520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17892 comm="syz.2.3045" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  654.496737][   T40] audit: type=1326 audit(2000000075.209:2521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17892 comm="syz.2.3045" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  654.505628][   T40] audit: type=1326 audit(2000000075.209:2522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17892 comm="syz.2.3045" exe="/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  654.514382][   T40] audit: type=1326 audit(2000000075.209:2523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17892 comm="syz.2.3045" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  654.605443][ T5985] usb 8-1: device descriptor read/64, error -71
[  654.715723][ T5985] usb usb8-port1: attempt power cycle
[  655.055505][ T5985] usb 8-1: new high-speed USB device number 37 using dummy_hcd
[  655.076118][ T5985] usb 8-1: device descriptor read/8, error -71
[  655.315418][ T5985] usb 8-1: new high-speed USB device number 38 using dummy_hcd
[  655.336206][ T5985] usb 8-1: device descriptor read/8, error -71
[  655.445800][ T5985] usb usb8-port1: unable to enumerate USB device
[  655.907226][T17918] loop2: detected capacity change from 0 to 7
[  655.910385][T17918] Dev loop2: unable to read RDB block 7
[  655.912652][T17918]  loop2: unable to read partition table
[  655.915123][T17918] loop2: partition table beyond EOD, truncated
[  655.923200][T17918] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  656.348653][T17936] can0: slcan on ttyS3.
[  656.425201][T17934] veth3: entered promiscuous mode
[  656.659359][T17942] ./file0: Can't lookup blockdev
[  656.936240][T17926] can0 (unregistered): slcan off ttyS3.
[  657.613406][T17956] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  657.615798][T17956] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  657.620120][T17956] vhci_hcd vhci_hcd.0: Device attached
[  657.990650][   T57] usb 38-1: SetAddress Request (2) to port 0
[  657.994158][   T57] usb 38-1: new SuperSpeed USB device number 2 using vhci_hcd
[  658.567833][T17958] vhci_hcd: connection reset by peer
[  658.572168][ T9615] vhci_hcd: stop threads
[  658.573885][ T9615] vhci_hcd: release socket
[  658.579424][ T9615] vhci_hcd: disconnect device
[  658.596751][   T40] kauditd_printk_skb: 8 callbacks suppressed
[  658.596772][   T40] audit: type=1326 audit(2000000079.299:2532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17971 comm="syz.4.3065" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  658.609780][   T40] audit: type=1326 audit(2000000079.299:2533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17971 comm="syz.4.3065" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  658.620661][   T40] audit: type=1326 audit(2000000079.299:2534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17971 comm="syz.4.3065" exe="/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  658.629485][   T40] audit: type=1326 audit(2000000079.299:2535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17971 comm="syz.4.3065" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  658.638672][   T40] audit: type=1326 audit(2000000079.299:2536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17971 comm="syz.4.3065" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  658.648910][   T40] audit: type=1326 audit(2000000079.299:2537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17971 comm="syz.4.3065" exe="/syz-executor" sig=0 arch=40000003 syscall=280 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  658.858315][T17985] ./file0: Can't lookup blockdev
[  659.069335][T17983] netlink: del zone limit has 4 unknown bytes
[  659.175633][   T40] audit: type=1326 audit(2000000079.899:2538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17986 comm="syz.4.3069" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  659.237611][   T40] audit: type=1326 audit(2000000079.899:2539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17986 comm="syz.4.3069" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  659.243886][   T40] audit: type=1326 audit(2000000079.899:2540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17986 comm="syz.4.3069" exe="/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  659.256733][   T40] audit: type=1326 audit(2000000079.899:2541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17986 comm="syz.4.3069" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  659.559546][T17996] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  659.572470][T17993] ADFS-fs (nullb0): error: can't find an ADFS filesystem on dev nullb0.
[  659.910758][T18015] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3084'.
[  660.382973][    T8] libceph: connect (1)[c::]:6789 error -101
[  660.386169][    T8] libceph: mon0 (1)[c::]:6789 connect error
[  660.405452][T15785] usb 9-1: new full-speed USB device number 8 using dummy_hcd
[  660.435876][T18020] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3077'.
[  660.444431][T18013] ceph: No mds server is up or the cluster is laggy
[  660.561016][T15785] usb 9-1: device descriptor read/64, error -71
[  660.835517][T15785] usb 9-1: new full-speed USB device number 9 using dummy_hcd
[  661.184654][T18033] ./file0: Can't lookup blockdev
[  661.386821][T15785] usb 9-1: device descriptor read/64, error -71
[  661.569905][T15785] usb usb9-port1: attempt power cycle
[  661.693783][T18040] ./file0: Can't lookup blockdev
[  661.985641][T15785] usb 9-1: new full-speed USB device number 10 using dummy_hcd
[  662.026602][T15785] usb 9-1: device descriptor read/8, error -71
[  662.267698][T18046] bridge1: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  662.407048][T18051] loop2: detected capacity change from 0 to 7
[  662.409685][T18051] Dev loop2: unable to read RDB block 7
[  662.411396][T18051]  loop2: unable to read partition table
[  662.413147][T18051] loop2: partition table beyond EOD, truncated
[  662.414919][T18051] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  663.005948][T18063] 9pnet_fd: p9_fd_create_unix (18063): address too long: ./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  663.045393][T15785] usb 9-1: new full-speed USB device number 11 using dummy_hcd
[  663.080882][T18065] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3090'.
[  663.083452][   T57] usb 38-1: device descriptor read/8, error -110
[  663.118754][T18065] trusted_key: syz.3.3090 sent an empty control message without MSG_MORE.
[  663.395180][T15785] usb 9-1: device not accepting address 11, error -71
[  663.397391][T15785] usb usb9-port1: unable to enumerate USB device
[  663.466863][T18078] ./file0: Can't lookup blockdev
[  663.600842][   T57] usb usb38-port1: attempt power cycle
[  664.166107][T18086] netlink: 56 bytes leftover after parsing attributes in process `syz.3.3096'.
[  664.542360][T18094] can0: slcan on ttyS3.
[  664.602983][T18098] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3092'.
[  664.903116][T18112] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  664.903116][T18112]    program syz.4.3098 not setting count and/or reply_len properly
[  665.016138][   T57] usb usb38-port1: unable to enumerate USB device
[  665.024635][T18074] can0 (unregistered): slcan off ttyS3.
[  665.065456][   T30] usb 8-1: new high-speed USB device number 39 using dummy_hcd
[  665.112756][   T40] kauditd_printk_skb: 8 callbacks suppressed
[  665.112772][   T40] audit: type=1326 audit(2000000085.839:2550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18110 comm="syz.2.3104" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  665.124889][   T40] audit: type=1326 audit(2000000085.839:2551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18110 comm="syz.2.3104" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  665.135914][   T40] audit: type=1326 audit(2000000085.839:2552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18110 comm="syz.2.3104" exe="/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  665.144949][   T40] audit: type=1326 audit(2000000085.839:2553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18110 comm="syz.2.3104" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  665.154314][   T40] audit: type=1326 audit(2000000085.839:2554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18110 comm="syz.2.3104" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  665.163348][   T40] audit: type=1326 audit(2000000085.849:2555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18110 comm="syz.2.3104" exe="/syz-executor" sig=0 arch=40000003 syscall=280 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  665.210975][T18115] 9pnet_fd: p9_fd_create_unix (18115): address too long: ./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  665.218587][   T30] usb 8-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  665.254403][    C1] vkms_vblank_simulate: vblank timer overrun
[  665.266408][   T30] usb 8-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  665.272354][   T30] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  665.277382][   T30] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  665.278918][T18109] syz.4.3098: page allocation failure: order:6, mode:0x40cc0(GFP_KERNEL|__GFP_COMP), nodemask=(null),cpuset=/,mems_allowed=0-1
[  665.284754][T18109] CPU: 3 UID: 0 PID: 18109 Comm: syz.4.3098 Not tainted 6.14.0-rc2-syzkaller #0
[  665.284767][T18109] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  665.284775][T18109] Call Trace:
[  665.284779][T18109]  <TASK>
[  665.284785][T18109]  dump_stack_lvl+0x16c/0x1f0
[  665.284810][T18109]  warn_alloc+0x24d/0x3a0
[  665.284827][T18109]  ? __pfx_warn_alloc+0x10/0x10
[  665.284838][T18109]  ? psi_memstall_leave+0x17d/0x250
[  665.284862][T18109]  ? __alloc_pages_direct_compact+0x1b1/0x590
[  665.284875][T18109]  ? __pfx___alloc_pages_direct_compact+0x10/0x10
[  665.284889][T18109]  ? psi_memstall_leave+0x17d/0x250
[  665.284901][T18109]  __alloc_frozen_pages_noprof+0xf2f/0x2470
[  665.284916][T18109]  ? arch_stack_walk+0xa7/0x100
[  665.284964][T18109]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  665.284978][T18109]  ? stack_trace_save+0x95/0xd0
[  665.284997][T18109]  ? __pfx_stack_trace_save+0x10/0x10
[  665.285012][T18109]  ? hlock_class+0x4e/0x130
[  665.285030][T18109]  ? kasan_save_stack+0x42/0x60
[  665.285043][T18109]  ? kasan_save_stack+0x33/0x60
[  665.285053][T18109]  ? kasan_save_track+0x14/0x30
[  665.285063][T18109]  ? __kasan_kmalloc+0xaa/0xb0
[  665.285072][T18109]  ? do_check_common+0x4c1b/0xd1d0
[  665.285113][T18109]  ? bpf_check+0x90d0/0xc9f0
[  665.285126][T18109]  ? bpf_prog_load+0xe3c/0x2480
[  665.285139][T18109]  ? __sys_bpf+0x5677/0x57a0
[  665.285150][T18109]  ? __ia32_sys_bpf+0x76/0xe0
[  665.285162][T18109]  ? __do_fast_syscall_32+0x73/0x120
[  665.285172][T18109]  ? do_fast_syscall_32+0x32/0x80
[  665.285180][T18109]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  665.285200][T18109]  __alloc_pages_noprof+0xb/0x1b0
[  665.285212][T18109]  ___kmalloc_large_node+0x84/0x1b0
[  665.285230][T18109]  __kmalloc_large_node_noprof+0x1c/0x70
[  665.285246][T18109]  __kmalloc_node_track_caller_noprof.cold+0x5/0x5f
[  665.285292][T18109]  ? copy_array.constprop.0+0x84/0xf0
[  665.285304][T18109]  krealloc_noprof+0x1fb/0x360
[  665.285318][T18109]  copy_array.constprop.0+0x84/0xf0
[  665.285328][T18109]  copy_verifier_state+0x205/0xe40
[  665.285340][T18109]  ? kasan_save_track+0x14/0x30
[  665.285352][T18109]  do_check_common+0x4df1/0xd1d0
[  665.285375][T18109]  ? __pfx_mark_fastcall_pattern_for_call+0x10/0x10
[  665.285392][T18109]  ? __pfx_do_check_common+0x10/0x10
[  665.285407][T18109]  ? kvfree+0x47/0x50
[  665.285423][T18109]  ? check_cfg+0x403/0x8e0
[  665.285437][T18109]  bpf_check+0x90d0/0xc9f0
[  665.285460][T18109]  ? __pfx_bpf_check+0x10/0x10
[  665.285477][T18109]  ? lockdep_hardirqs_on+0x7c/0x110
[  665.285501][T18109]  ? read_tsc+0x9/0x20
[  665.285512][T18109]  ? ktime_get_with_offset+0x20b/0x3b0
[  665.285524][T18109]  ? bpf_obj_name_cpy+0x156/0x1b0
[  665.285538][T18109]  bpf_prog_load+0xe3c/0x2480
[  665.285553][T18109]  ? __pfx_bpf_prog_load+0x10/0x10
[  665.285565][T18109]  ? find_held_lock+0x2d/0x110
[  665.285581][T18109]  ? __might_fault+0x13b/0x190
[  665.285599][T18109]  ? __might_fault+0xe3/0x190
[  665.285615][T18109]  __sys_bpf+0x5677/0x57a0
[  665.285628][T18109]  ? __pfx___sys_bpf+0x10/0x10
[  665.285640][T18109]  ? lock_acquire.part.0+0x11b/0x380
[  665.285652][T18109]  ? find_held_lock+0x2d/0x110
[  665.285669][T18109]  ? do_futex+0x123/0x350
[  665.285681][T18109]  ? __pfx_do_futex+0x10/0x10
[  665.285695][T18109]  ? preempt_schedule_notrace_thunk+0x1a/0x30
[  665.285733][T18109]  ? __pfx___ia32_sys_futex_time32+0x10/0x10
[  665.285745][T18109]  ? trace_irq_enable.constprop.0+0x35/0x140
[  665.285763][T18109]  __ia32_sys_bpf+0x76/0xe0
[  665.285776][T18109]  __do_fast_syscall_32+0x73/0x120
[  665.285786][T18109]  do_fast_syscall_32+0x32/0x80
[  665.285796][T18109]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  665.285811][T18109] RIP: 0023:0xf7f43579
[  665.285821][T18109] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  665.285830][T18109] RSP: 002b:00000000f506655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  665.285840][T18109] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000840
[  665.285851][T18109] RDX: 0000000000000090 RSI: 0000000000000000 RDI: 0000000000000000
[  665.285856][T18109] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  665.285862][T18109] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  665.285868][T18109] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  665.285879][T18109]  </TASK>
[  665.419423][T18109] Mem-Info:
[  665.420931][T18109] active_anon:5295 inactive_anon:3897 isolated_anon:0
[  665.420931][T18109]  active_file:5005 inactive_file:13847 isolated_file:0
[  665.420931][T18109]  unevictable:2280 dirty:173 writeback:0
[  665.420931][T18109]  slab_reclaimable:6058 slab_unreclaimable:106540
[  665.420931][T18109]  mapped:26337 shmem:8741 pagetables:788
[  665.420931][T18109]  sec_pagetables:325 bounce:0
[  665.420931][T18109]  kernel_misc_reclaimable:0
[  665.420931][T18109]  free:28360 free_pcp:344 free_cma:0
[  665.436072][T18109] Node 0 active_anon:760kB inactive_anon:100kB active_file:348kB inactive_file:36kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:24kB dirty:0kB writeback:0kB shmem:5128kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9424kB pagetables:1100kB sec_pagetables:1148kB all_unreclaimable? yes
[  665.444773][T18109] Node 1 active_anon:20420kB inactive_anon:15388kB active_file:19672kB inactive_file:55352kB unevictable:5584kB isolated(anon):0kB isolated(file):0kB mapped:105324kB dirty:692kB writeback:0kB shmem:29636kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:2048kB writeback_tmp:0kB kernel_stack:2776kB pagetables:2052kB sec_pagetables:152kB all_unreclaimable? no
[  665.454249][T18109] Node 0 DMA free:2008kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  665.463926][T18109] lowmem_reserve[]: 0 297 0 0 0
[  665.466235][T18109] Node 0 DMA32 free:21480kB boost:8192kB min:21864kB low:25280kB high:28696kB reserved_highatomic:2048KB active_anon:736kB inactive_anon:100kB active_file:348kB inactive_file:36kB unevictable:3536kB writepending:0kB present:1032196kB managed:305044kB mlocked:0kB bounce:0kB free_pcp:112kB local_pcp:0kB free_cma:0kB
[  665.474534][T18109] lowmem_reserve[]: 0 0 0 0 0
[  665.476203][T18109] Node 1 DMA32 free:91256kB boost:43008kB min:90152kB low:101936kB high:113720kB reserved_highatomic:2048KB active_anon:20700kB inactive_anon:14716kB active_file:19672kB inactive_file:55352kB unevictable:5592kB writepending:688kB present:1048432kB managed:948252kB mlocked:2056kB bounce:0kB free_pcp:1016kB local_pcp:116kB free_cma:0kB
[  665.484984][T18109] lowmem_reserve[]: 0 0 0 0 0
[  665.486545][   T30] usb 8-1: rejected 1 configuration due to insufficient available bus power
[  665.487885][T18109] Node 0 
[  665.490754][   T30] usb 8-1: no configuration chosen from 1 choice
[  665.492272][T18109] DMA: 96*4kB (UE) 43*8kB (UE) 8*16kB (UE) 20*32kB (UE) 4*64kB (E) 2*128kB (E) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2008kB
[  665.501631][T18109] Node 0 DMA32: 540*4kB (UMEH) 375*8kB (UME) 160*16kB (UMH) 154*32kB (UMEH) 74*64kB (UME) 24*128kB (UME) 4*256kB (M) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 21480kB
[  665.509837][T18109] Node 1 DMA32: 206*4kB (UME) 788*8kB (UMEH) 1122*16kB (UME) 728*32kB (UME) 339*64kB (UMEH) 130*128kB (UME) 14*256kB (UM) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 90296kB
[  665.518137][T18109] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  665.523574][T18109] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  665.527530][T18109] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  665.530983][T18109] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  665.536847][T18109] 27936 total pagecache pages
[  665.539284][T18109] 507 pages in swap cache
[  665.541507][T18109] Free swap  = 97832kB
[  665.543640][T18109] Total swap = 124996kB
[  665.546317][T18109] 524155 pages RAM
[  665.548276][T18109] 0 pages HighMem/MovableOnly
[  665.550666][T18109] 206991 pages reserved
[  665.553564][T18109] 0 pages cma reserved
[  665.955608][    T8] usb 9-1: new high-speed USB device number 12 using dummy_hcd
[  665.986517][T18126] ./file0: Can't lookup blockdev
[  666.110402][    T8] usb 9-1: Using ep0 maxpacket: 8
[  666.114115][    T8] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  666.118284][    T8] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  666.121638][    T8] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  666.124534][    T8] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  666.128547][    T8] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  666.131016][    T8] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  666.341058][    T8] usb 9-1: GET_CAPABILITIES returned 0
[  666.342904][    T8] usbtmc 9-1:16.0: can't read capabilities
[  666.542320][   T35] usb 9-1: USB disconnect, device number 12
[  667.755394][ T5985] usb 8-1: USB disconnect, device number 39
[  667.905448][T18149] netlink: 'syz.3.3115': attribute type 6 has an invalid length.
[  668.215534][ T5985] usb 7-1: new high-speed USB device number 38 using dummy_hcd
[  668.585680][T18162] ./file0: Can't lookup blockdev
[  668.630513][ T5985] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  668.634117][ T5985] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  668.689271][ T5985] usb 7-1: Product: syz
[  668.691033][ T5985] usb 7-1: Manufacturer: syz
[  668.692967][ T5985] usb 7-1: SerialNumber: syz
[  668.699991][ T5985] usb 7-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  668.722838][    T8] usb 7-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  669.045572][   T69] usb 9-1: new high-speed USB device number 13 using dummy_hcd
[  669.213982][   T69] usb 9-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  669.217751][   T69] usb 9-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  669.220876][   T69] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  669.224030][   T69] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  669.230709][   T69] usb 9-1: rejected 1 configuration due to insufficient available bus power
[  669.233822][   T69] usb 9-1: no configuration chosen from 1 choice
[  669.640551][T18176] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3124'.
[  669.800970][    T8] ath9k_htc 7-1:1.0: ath9k_htc: Target is unresponsive
[  669.803187][    T8] ath9k_htc: Failed to initialize the device
[  669.877566][    T8] usb 7-1: ath9k_htc: USB layer deinitialized
[  670.250027][T18188] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  670.605826][   T30] usb 7-1: USB disconnect, device number 38
[  670.680276][T18199] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3130'.
[  671.002680][T18203] ./file0: Can't lookup blockdev
[  671.227916][T18205] can0: slcan on ttyS3.
[  671.566190][T18196] can0 (unregistered): slcan off ttyS3.
[  671.815676][   T30] usb 9-1: USB disconnect, device number 13
[  673.106957][T18242] IPv6: NLM_F_CREATE should be specified when creating new route
[  673.303246][T18246] ./file0: Can't lookup blockdev
[  673.435507][   T35] usb 9-1: new high-speed USB device number 14 using dummy_hcd
[  673.598185][   T35] usb 9-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  673.602222][   T35] usb 9-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  673.607340][   T35] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  673.610023][   T35] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  673.617966][   T35] usb 9-1: config 0 descriptor??
[  673.628591][   T35] usbhid 9-1:0.0: couldn't find an input interrupt endpoint
[  673.840151][T18253] can0: slcan on ttyS3.
[  674.335027][T18252] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3146'.
[  674.586139][T18250] can0 (unregistered): slcan off ttyS3.
[  674.701765][T18258] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3148'.
[  674.718336][T18260] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3147'.
[  674.742673][T18260] fuse: Bad value for 'fd'
[  674.748368][T18260] 9pnet_fd: Insufficient options for proto=fd
[  676.204628][   T69] usb 9-1: USB disconnect, device number 14
[  676.633579][T18297] ./file0: Can't lookup blockdev
[  676.909929][T18301] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  677.206735][T18315] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3163'.
[  677.210167][T18315] netlink: 43 bytes leftover after parsing attributes in process `syz.2.3163'.
[  677.213859][T18315] netlink: 'syz.2.3163': attribute type 6 has an invalid length.
[  677.216872][ T5947] Bluetooth: hci1: command 0x0406 tx timeout
[  677.224468][T18315] netlink: 'syz.2.3163': attribute type 5 has an invalid length.
[  677.227520][T18315] netlink: 43 bytes leftover after parsing attributes in process `syz.2.3163'.
[  677.445502][   T72] usb 9-1: new high-speed USB device number 15 using dummy_hcd
[  677.602339][T18332] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3166'.
[  677.607034][   T72] usb 9-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  677.611096][   T72] usb 9-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  677.618762][   T72] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  677.622346][   T72] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  677.636036][   T72] usb 9-1: config 0 descriptor??
[  677.641084][   T72] usbhid 9-1:0.0: couldn't find an input interrupt endpoint
[  677.893300][T18346] can0: slcan on ttyS3.
[  678.435968][T18326] can0 (unregistered): slcan off ttyS3.
[  678.560110][T18354] netlink: 304 bytes leftover after parsing attributes in process `syz.2.3175'.
[  678.562915][T18354] netlink: 304 bytes leftover after parsing attributes in process `syz.2.3175'.
[  678.847644][T18364] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3179'.
[  678.851444][T18364] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3179'.
[  679.779316][   T40] audit: type=1326 audit(2000000100.509:2556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18373 comm="syz.0.3181" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6579 code=0x7ffc0000
[  679.788397][   T40] audit: type=1326 audit(2000000100.509:2557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18373 comm="syz.0.3181" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6579 code=0x7ffc0000
[  679.796827][   T40] audit: type=1326 audit(2000000100.509:2558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18373 comm="syz.0.3181" exe="/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf7fb6579 code=0x7ffc0000
[  679.805754][   T40] audit: type=1326 audit(2000000100.509:2559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18373 comm="syz.0.3181" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6579 code=0x7ffc0000
[  679.813750][   T40] audit: type=1326 audit(2000000100.509:2560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18373 comm="syz.0.3181" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6579 code=0x7ffc0000
[  679.823165][   T40] audit: type=1326 audit(2000000100.509:2561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18373 comm="syz.0.3181" exe="/syz-executor" sig=0 arch=40000003 syscall=280 compat=1 ip=0xf7fb6579 code=0x7ffc0000
[  680.223785][ T5985] usb 9-1: USB disconnect, device number 15
[  680.273474][T18385] xt_hashlimit: overflow, try lower: 17592186044416/6
[  680.676355][T18395] __nla_validate_parse: 2 callbacks suppressed
[  680.676373][T18395] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3188'.
[  680.845893][T18398] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3186'.
[  681.536617][T18411] loop2: detected capacity change from 0 to 7
[  681.539617][T18411] Dev loop2: unable to read RDB block 7
[  681.541891][T18411]  loop2: unable to read partition table
[  681.544363][T18411] loop2: partition table beyond EOD, truncated
[  681.548175][T18411] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  681.641411][ T5951] Bluetooth: hci4: sending frame failed (-49)
[  681.645704][ T5947] Bluetooth: hci4: Opcode 0x1003 failed: -49
[  681.726198][T18419] PF_CAN: dropped non conform CAN skbuff: dev type 65534, len 60
[  681.833594][ T5947] Bluetooth: hci5: sending frame failed (-49)
[  681.838379][ T5951] Bluetooth: hci5: Opcode 0x1003 failed: -49
[  682.155479][   T35] usb 7-1: new high-speed USB device number 39 using dummy_hcd
[  682.331402][   T35] usb 7-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  682.335624][ T5951] Bluetooth: hci3: command 0x0406 tx timeout
[  682.343679][   T35] usb 7-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  682.350529][   T35] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  682.354524][   T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  682.371326][   T35] usb 7-1: config 0 descriptor??
[  682.408168][   T35] usbhid 7-1:0.0: couldn't find an input interrupt endpoint
[  682.820824][T18444] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  683.366475][T18457] 9pnet_fd: Insufficient options for proto=fd
[  683.530915][T18459] netlink: 44 bytes leftover after parsing attributes in process `syz.0.3205'.
[  683.626057][ T9630] Bluetooth: hci4: Frame reassembly failed (-84)
[  684.622179][   T35] usb 7-1: USB disconnect, device number 39
[  685.127683][T18495] ./file0: Can't lookup blockdev
[  685.127862][T18497] netlink: 44 bytes leftover after parsing attributes in process `syz.4.3216'.
[  685.133548][T18497] netlink: 43 bytes leftover after parsing attributes in process `syz.4.3216'.
[  685.142663][T18497] netlink: 'syz.4.3216': attribute type 6 has an invalid length.
[  685.148656][T18497] netlink: 'syz.4.3216': attribute type 5 has an invalid length.
[  685.152254][T18497] netlink: 43 bytes leftover after parsing attributes in process `syz.4.3216'.
[  685.279736][T18499] veth0_to_team: entered promiscuous mode
[  685.281415][T18499] veth0_to_team: entered allmulticast mode
[  685.390306][ T1412] ieee802154 phy0 wpan0: encryption failed: -22
[  685.392356][ T1412] ieee802154 phy1 wpan1: encryption failed: -22
[  685.615619][ T5951] Bluetooth: hci4: command 0x1003 tx timeout
[  685.619510][ T5954] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  685.757152][T18511] netlink: 44 bytes leftover after parsing attributes in process `syz.4.3221'.
[  685.896476][T18519] loop2: detected capacity change from 0 to 7
[  685.899866][T18519] Dev loop2: unable to read RDB block 7
[  685.902176][T18519]  loop2: unable to read partition table
[  685.904732][T18519] loop2: partition table beyond EOD, truncated
[  685.908565][T18519] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  685.955455][   T72] usb 7-1: new high-speed USB device number 40 using dummy_hcd
[  685.981207][T18525] vlan2: entered promiscuous mode
[  685.982968][T18525] vlan2: entered allmulticast mode
[  685.984555][T18525] hsr_slave_1: entered allmulticast mode
[  685.999126][T18525] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3225'.
[  686.147946][   T72] usb 7-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  686.152155][   T72] usb 7-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  686.157646][   T72] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  686.164267][   T72] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  686.170157][   T72] usb 7-1: config 0 descriptor??
[  686.185267][   T72] usbhid 7-1:0.0: couldn't find an input interrupt endpoint
[  686.190255][    C1] vkms_vblank_simulate: vblank timer overrun
[  686.300520][T18525] hsr_slave_1 (unregistering): left allmulticast mode
[  686.344755][T18525] hsr_slave_1 (unregistering): left promiscuous mode
[  686.424897][T18526] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  688.032351][T18561] ./file0: Can't lookup blockdev
[  688.398569][T18563] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  688.503448][T18568] netlink: 44 bytes leftover after parsing attributes in process `syz.0.3236'.
[  688.585859][T18570] loop2: detected capacity change from 0 to 7
[  688.590202][T18570] Dev loop2: unable to read RDB block 7
[  688.592585][T18570]  loop2: unable to read partition table
[  688.595138][T18570] loop2: partition table beyond EOD, truncated
[  688.597852][T18570] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  688.765415][   T30] usb 7-1: USB disconnect, device number 40
[  689.157870][   T40] audit: type=1326 audit(2000000109.889:2562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18593 comm="syz.2.3244" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  689.166243][   T40] audit: type=1326 audit(2000000109.889:2563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18593 comm="syz.2.3244" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  689.174564][   T40] audit: type=1326 audit(2000000109.889:2564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18593 comm="syz.2.3244" exe="/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  689.183587][   T40] audit: type=1326 audit(2000000109.889:2565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18593 comm="syz.2.3244" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  689.202004][   T40] audit: type=1326 audit(2000000109.889:2566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18593 comm="syz.2.3244" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  689.211654][   T40] audit: type=1326 audit(2000000109.889:2567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18593 comm="syz.2.3244" exe="/syz-executor" sig=0 arch=40000003 syscall=280 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  689.630187][T18600] netlink: 'syz.0.3245': attribute type 2 has an invalid length.
[  689.633978][T18600] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  689.710959][T18603] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  689.713236][T18603] batman_adv: batadv0: Removing interface: batadv_slave_0
[  689.717147][T18603] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  689.719411][T18603] batman_adv: batadv0: Removing interface: batadv_slave_1
[  690.117234][T18620] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3252'.
[  690.117261][T18621] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3252'.
[  690.132099][T18620] erspan0: entered promiscuous mode
[  690.134381][T18620] macvtap1: entered promiscuous mode
[  690.156144][T18620] macvtap1: entered allmulticast mode
[  690.158467][T18620] erspan0: entered allmulticast mode
[  690.187339][T18620] erspan0: left allmulticast mode
[  690.189448][T18620] erspan0: left promiscuous mode
[  691.029597][T18652] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3261'.
[  691.034535][T18652] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3261'.
[  691.168560][T18642] netlink: 64 bytes leftover after parsing attributes in process `syz.2.3257'.
[  691.175445][T18642] nbd: must specify at least one socket
[  691.240524][T18665] autofs4:pid:18665:validate_dev_ioctl: invalid path supplied for cmd(0xc018937a)
[  691.247954][T18663] netlink: 264 bytes leftover after parsing attributes in process `syz.0.3264'.
[  691.434738][ T5954] Bluetooth: hci1: unexpected event for opcode 0x0803
[  691.792604][T18682] can0: slcan on ttyS3.
[  692.080621][T18680] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3268'.
[  692.295875][T18667] can0 (unregistered): slcan off ttyS3.
[  693.394811][T18703] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  693.641006][T18712] netlink: 240 bytes leftover after parsing attributes in process `syz.4.3280'.
[  693.644407][T18712] netlink: 240 bytes leftover after parsing attributes in process `syz.4.3280'.
[  694.279130][T18724] can0: slcan on ttyS3.
[  694.359560][T18725] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3277'.
[  694.385413][   T72] usb 9-1: new high-speed USB device number 16 using dummy_hcd
[  694.538508][   T72] usb 9-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  694.542442][   T72] usb 9-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  694.549282][   T72] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  694.553072][   T72] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  694.560220][   T72] usb 9-1: config 0 descriptor??
[  694.570789][   T72] usbhid 9-1:0.0: couldn't find an input interrupt endpoint
[  694.576227][T18704] can0 (unregistered): slcan off ttyS3.
[  695.050975][T18746] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3287'.
[  695.461136][ T5954] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  695.463876][ T5954] Bluetooth: hci1: Injecting HCI hardware error event
[  695.469811][ T5951] Bluetooth: hci1: hardware error 0x00
[  695.673578][T18757] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  695.911147][T18765] XFS (nullb0): Invalid superblock magic number
[  696.142339][T18775] macvlan0: entered allmulticast mode
[  696.148171][T18775] veth1_vlan: entered allmulticast mode
[  696.159037][T18775] veth1_vlan: left allmulticast mode
[  696.188111][T18775] macvlan0 (unregistering): left allmulticast mode
[  696.529411][T18787] netlink: 56 bytes leftover after parsing attributes in process `syz.3.3298'.
[  697.156789][T18794] can0: slcan on ttyS3.
[  697.246137][   T72] usb 9-1: USB disconnect, device number 16
[  697.535501][T18788] can0 (unregistered): slcan off ttyS3.
[  697.535565][ T5951] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  697.764210][   T40] audit: type=1326 audit(2000000374.492:2568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18803 comm="syz.4.3302" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  697.772219][   T40] audit: type=1326 audit(2000000374.492:2569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18803 comm="syz.4.3302" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  697.784934][   T40] audit: type=1326 audit(2000000374.492:2570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18803 comm="syz.4.3302" exe="/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  697.794089][   T40] audit: type=1326 audit(2000000374.492:2571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18803 comm="syz.4.3302" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  697.806592][   T40] audit: type=1326 audit(2000000374.492:2572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18803 comm="syz.4.3302" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  697.814147][   T40] audit: type=1326 audit(2000000374.492:2573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18803 comm="syz.4.3302" exe="/syz-executor" sig=0 arch=40000003 syscall=280 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  697.825446][   T40] audit: type=1326 audit(2000000374.492:2574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18803 comm="syz.4.3302" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  697.833001][   T40] audit: type=1326 audit(2000000374.492:2575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18803 comm="syz.4.3302" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  697.846169][   T40] audit: type=1326 audit(2000000374.492:2576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18803 comm="syz.4.3302" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  697.853662][   T40] audit: type=1326 audit(2000000374.502:2577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18803 comm="syz.4.3302" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f43579 code=0x7ffc0000
[  698.272735][T18819] 9pnet_fd: Insufficient options for proto=fd
[  698.484875][T18826] netlink: 56 bytes leftover after parsing attributes in process `syz.2.3308'.
[  698.719352][T18832] loop2: detected capacity change from 0 to 7
[  698.721957][T18832] Dev loop2: unable to read RDB block 7
[  698.723653][T18832]  loop2: unable to read partition table
[  698.727615][T18832] loop2: partition table beyond EOD, truncated
[  698.729916][T18832] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  698.801496][T18836] netlink: 'syz.0.3311': attribute type 1 has an invalid length.
[  699.230068][T18839] can0: slcan on ttyS3.
[  699.289567][T18840] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3309'.
[  699.295634][ T5951] Bluetooth: hci3: command 0x0406 tx timeout
[  699.525860][T18827] can0 (unregistered): slcan off ttyS3.
[  700.673872][T18862] netlink: 64 bytes leftover after parsing attributes in process `syz.0.3316'.
[  700.691884][T18862] nbd: must specify at least one socket
[  700.928238][T18870] netlink: 52 bytes leftover after parsing attributes in process `syz.4.3320'.
[  700.931780][T18870] netlink: 52 bytes leftover after parsing attributes in process `syz.4.3320'.
[  701.720044][ T5954] Bluetooth: hci2: Malformed LE Event: 0x0d
[  702.025517][  T836] usb 7-1: new high-speed USB device number 41 using dummy_hcd
[  702.193768][  T836] usb 7-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  702.245527][  T836] usb 7-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  702.249310][  T836] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  702.251943][  T836] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  702.265747][  T836] usb 7-1: config 0 descriptor??
[  702.289093][  T836] usbhid 7-1:0.0: couldn't find an input interrupt endpoint
[  702.560545][T18906] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3332'.
[  702.920039][T18912] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  703.140983][T18916] can0: slcan on ttyS3.
[  703.206030][T18916] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3333'.
[  703.342232][T18920] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING
[  703.586116][T18907] can0 (unregistered): slcan off ttyS3.
[  703.653456][T18928] loop2: detected capacity change from 0 to 7
[  703.656682][T18928] Dev loop2: unable to read RDB block 7
[  703.658349][T18928]  loop2: unable to read partition table
[  703.660106][T18928] loop2: partition table beyond EOD, truncated
[  703.662143][T18928] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  703.710383][T18932] netlink: 96 bytes leftover after parsing attributes in process `syz.0.3338'.
[  703.715505][T18932] vlan2: entered allmulticast mode
[  703.776758][T18934] netlink: 96 bytes leftover after parsing attributes in process `syz.0.3338'.
[  703.781896][T18934] vlan2: entered allmulticast mode
[  704.285354][T18946] netlink: 16215 bytes leftover after parsing attributes in process `syz.4.3342'.
[  704.803498][   T72] usb 7-1: USB disconnect, device number 41
[  705.198206][   T40] kauditd_printk_skb: 16 callbacks suppressed
[  705.198219][   T40] audit: type=1800 audit(2000000381.932:2594): pid=18957 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.3345" name="file0" dev="9p" ino=37889644 res=0 errno=0
[  705.504848][ T5951] Bluetooth: hci4: sending frame failed (-49)
[  705.508428][T18968] netlink: del zone limit has 4 unknown bytes
[  705.512733][ T5954] Bluetooth: hci4: Opcode 0x1003 failed: -49
[  705.600735][T18961] can0: slcan on ttyS3.
[  705.708731][T18961] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3348'.
[  706.265537][T15336] usb 8-1: new high-speed USB device number 40 using dummy_hcd
[  706.279625][T18980] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3351'.
[  706.336672][T18960] can0 (unregistered): slcan off ttyS3.
[  706.417052][T15336] usb 8-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  706.421271][T15336] usb 8-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  706.427160][T15336] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  706.430761][T15336] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  706.436183][T15336] usb 8-1: config 0 descriptor??
[  706.441058][T15336] usbhid 8-1:0.0: couldn't find an input interrupt endpoint
[  706.506595][T18989] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3353'.
[  706.790112][ T9630] Bluetooth: Short BCSP packet
[  707.051376][ T9647] Bluetooth: Error in BCSP hdr checksum
[  707.216889][ T9609] Bluetooth: Error in BCSP hdr checksum
[  707.307585][ T9647] Bluetooth: Error in BCSP hdr checksum
[  707.485654][T16178] Bluetooth: Error in BCSP hdr checksum
[  707.528498][T19002] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3356'.
[  707.755708][ T9609] Bluetooth: Error in BCSP hdr checksum
[  708.774642][ T5947] Bluetooth: hci4: command 0x1003 tx timeout
[  708.781742][ T5954] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  708.890845][ T5947] Bluetooth: hci4: sending frame failed (-49)
[  708.898803][ T5954] Bluetooth: hci4: Opcode 0x1003 failed: -49
[  708.975675][ T5954] Bluetooth: hci5: command 0x1003 tx timeout
[  708.991141][ T5951] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  709.027098][T15336] usb 8-1: USB disconnect, device number 40
[  709.111418][T19016] netlink: 44 bytes leftover after parsing attributes in process `syz.0.3359'.
[  709.357670][T19028] netlink: 'syz.2.3365': attribute type 6 has an invalid length.
[  710.214469][T19044] loop2: detected capacity change from 0 to 7
[  710.217351][T19044] Dev loop2: unable to read RDB block 7
[  710.219504][T19044]  loop2: unable to read partition table
[  710.221855][T19044] loop2: partition table beyond EOD, truncated
[  710.224231][T19044] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  710.347930][T19050] smc: net device wg1 applied user defined pnetid SYZ1
[  710.351174][T19050] smc: ib device syz0 ibport 2 applied user defined pnetid SYZ1
[  710.682190][T19056] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3373'.
[  710.764616][T19060] netlink: 'syz.2.3375': attribute type 6 has an invalid length.
[  711.087057][T19064] netlink: del zone limit has 4 unknown bytes
[  711.636438][T19070] can0: slcan on ttyS3.
[  711.689576][T19074] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3379'.
[  711.855503][ T5951] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  711.892595][T19089] netlink: 'syz.3.3383': attribute type 8 has an invalid length.
[  711.901741][T19089] sctp: [Deprecated]: syz.3.3383 (pid 19089) Use of struct sctp_assoc_value in delayed_ack socket option.
[  711.901741][T19089] Use struct sctp_sack_info instead
[  712.307942][T19101] ./file0: Can't lookup blockdev
[  712.325490][T19069] can0 (unregistered): slcan off ttyS3.
[  712.562060][T19112] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3386'.
[  713.432495][T19128] netlink: del zone limit has 4 unknown bytes
[  713.651823][T19138] netlink: 'syz.0.3397': attribute type 6 has an invalid length.
[  714.681947][T19156] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3402'.
[  715.164793][T19170] input: syz1 as /devices/virtual/input/input36
[  715.237223][T19172] netlink: 'syz.2.3407': attribute type 6 has an invalid length.
[  716.252352][T19199] can0: slcan on ttyS3.
[  716.313627][T19200] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3409'.
[  716.686302][T19178] can0 (unregistered): slcan off ttyS3.
[  717.164551][T19224] netlink: 'syz.2.3418': attribute type 6 has an invalid length.
[  718.255819][ T5951] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  718.265516][T19240] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  718.574570][T19255] siw: device registration error -23
[  718.665557][ T5951] Bluetooth: hci3: command 0x0406 tx timeout
[  719.133551][T19265] can0: slcan on ttyS3.
[  719.540721][T19249] can0 (unregistered): slcan off ttyS3.
[  719.612379][T19278] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  719.747534][T19285] netlink: del zone limit has 4 unknown bytes
[  719.891244][T19292] netlink: 44 bytes leftover after parsing attributes in process `syz.0.3437'.
[  719.902478][T19292] netlink: 43 bytes leftover after parsing attributes in process `syz.0.3437'.
[  719.914068][T19292] netlink: 'syz.0.3437': attribute type 6 has an invalid length.
[  719.925441][T19292] netlink: 'syz.0.3437': attribute type 5 has an invalid length.
[  719.929074][T19292] netlink: 43 bytes leftover after parsing attributes in process `syz.0.3437'.
[  720.204078][T19300] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3440'.
[  720.208076][T19300] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3440'.
[  720.621326][T19312] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3442'.
[  720.669141][T19310] netlink: 'syz.2.3442': attribute type 11 has an invalid length.
[  720.971678][T19319] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  721.263289][T19324] bond0: entered promiscuous mode
[  721.265029][T19324] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  721.286063][ T5984] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  721.595006][T19323] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3443'.
[  721.798842][T19333] bridge_slave_0: left allmulticast mode
[  721.801272][T19333] bridge_slave_0: left promiscuous mode
[  721.803461][T19333] bridge0: port 1(bridge_slave_0) entered disabled state
[  721.811194][T19333] bridge_slave_1: left allmulticast mode
[  721.813193][T19333] bridge_slave_1: left promiscuous mode
[  721.815372][T19333] bridge0: port 2(bridge_slave_1) entered disabled state
[  721.821313][T19333] bond0: (slave bond_slave_0): Releasing backup interface
[  721.829751][T19333] bond0: (slave bond_slave_1): Releasing backup interface
[  721.909582][T19333] team0: Port device team_slave_0 removed
[  721.922401][T19333] team0: Port device team_slave_1 removed
[  722.085775][T19339] loop2: detected capacity change from 0 to 7
[  722.088774][T19339] Dev loop2: unable to read RDB block 7
[  722.090527][T19339]  loop2: unable to read partition table
[  722.092228][T19339] loop2: partition table beyond EOD, truncated
[  722.094015][T19339] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  722.843480][T19349] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3451'.
[  722.852360][T19349] bridge0: port 1(bridge_slave_0) entered disabled state
[  722.974399][T19352] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3452'.
[  722.983403][T19349] bridge_slave_0 (unregistering): left allmulticast mode
[  722.986633][T19349] bridge_slave_0 (unregistering): left promiscuous mode
[  722.989540][T19349] bridge0: port 1(bridge_slave_0) entered disabled state
[  723.254225][T19356] netlink: 'syz.2.3454': attribute type 6 has an invalid length.
[  723.615802][ T5954] Bluetooth: hci4: command 0x1003 tx timeout
[  723.619352][ T5951] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  724.478915][T19382] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3458'.
[  724.727175][T19386] nbd: device at index 64 is going down
[  725.224178][T19403] __nla_validate_parse: 1 callbacks suppressed
[  725.224196][T19403] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3464'.
[  725.242988][T19400] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3463'.
[  725.246699][T19400] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3463'.
[  725.256891][T19403] 8021q: adding VLAN 0 to HW filter on device bond1
[  725.284500][T19403] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3464'.
[  725.342519][ T5954] Bluetooth: hci4: sending frame failed (-49)
[  725.346769][ T5951] Bluetooth: hci4: Opcode 0x1003 failed: -49
[  725.432670][T19412] netlink: 52 bytes leftover after parsing attributes in process `syz.3.3466'.
[  725.437537][T19412] netlink: 52 bytes leftover after parsing attributes in process `syz.3.3466'.
[  725.441171][T19413] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  725.486338][T19417] netlink: 44 bytes leftover after parsing attributes in process `syz.4.3470'.
[  725.809680][T19443] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  725.851758][T19447] netlink: 44 bytes leftover after parsing attributes in process `syz.3.3481'.
[  725.987263][T19458] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3474'.
[  727.315224][   T40] audit: type=1326 audit(2000000404.042:2595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19467 comm="syz.0.3485" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6579 code=0x7ffc0000
[  727.321442][   T40] audit: type=1326 audit(2000000404.042:2596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19467 comm="syz.0.3485" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6579 code=0x7ffc0000
[  727.329577][   T40] audit: type=1326 audit(2000000404.052:2597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19467 comm="syz.0.3485" exe="/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf7fb6579 code=0x7ffc0000
[  727.338397][   T40] audit: type=1326 audit(2000000404.052:2598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19467 comm="syz.0.3485" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6579 code=0x7ffc0000
[  727.346220][   T40] audit: type=1326 audit(2000000404.052:2599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19467 comm="syz.0.3485" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6579 code=0x7ffc0000
[  727.354143][   T40] audit: type=1326 audit(2000000404.052:2600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19467 comm="syz.0.3485" exe="/syz-executor" sig=0 arch=40000003 syscall=280 compat=1 ip=0xf7fb6579 code=0x7ffc0000
[  727.383836][T19472] vivid-007: disconnect
[  727.436948][T19476] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  727.522194][T19473] vivid-007: reconnect
[  727.552401][T19488] netlink: 44 bytes leftover after parsing attributes in process `syz.3.3491'.
[  727.563673][T19490] netlink: 'syz.2.3492': attribute type 6 has an invalid length.
[  727.566507][T19490] netlink: 'syz.2.3492': attribute type 5 has an invalid length.
[  727.719276][T19494] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  727.939212][T19494] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  728.064915][T19494] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  728.222119][T19494] team0: Port device netdevsim0 removed
[  728.227856][T19494] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  728.363530][T19494] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  728.374766][T19494] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  728.392055][T19494] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  728.414052][T19494] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  728.576830][T19521] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  728.642952][T19527] netlink: 'syz.0.3503': attribute type 6 has an invalid length.
[  728.646416][T19527] netlink: 'syz.0.3503': attribute type 5 has an invalid length.
[  728.888801][T19541] loop2: detected capacity change from 0 to 7
[  728.893397][T19541] Dev loop2: unable to read RDB block 7
[  728.897868][T19541]  loop2: unable to read partition table
[  728.900824][T19541] loop2: partition table beyond EOD, truncated
[  728.903295][T19541] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  729.543370][T19555] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  729.651906][T19563] netlink: 'syz.4.3513': attribute type 6 has an invalid length.
[  729.654253][T19563] netlink: 'syz.4.3513': attribute type 5 has an invalid length.
[  729.784609][T19570] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  729.788666][T19570] overlayfs: failed to set xattr on upper
[  729.791571][T19570] overlayfs: ...falling back to redirect_dir=nofollow.
[  729.794475][T19570] overlayfs: ...falling back to index=off.
[  729.797959][T19570] overlayfs: conflicting lowerdir path
[  730.374619][T19588] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  732.536650][T19611] __nla_validate_parse: 12 callbacks suppressed
[  732.536670][T19611] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3526'.
[  732.817036][T19628] netlink: del zone limit has 4 unknown bytes
[  732.940968][T19633] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  733.485534][   T40] audit: type=1326 audit(2000000410.212:2601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19631 comm="syz.2.3532" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  733.495414][   T40] audit: type=1326 audit(2000000410.212:2602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19631 comm="syz.2.3532" exe="/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  733.510696][   T40] audit: type=1326 audit(2000000410.212:2603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19631 comm="syz.2.3532" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  733.519876][   T40] audit: type=1326 audit(2000000410.212:2604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19631 comm="syz.2.3532" exe="/syz-executor" sig=0 arch=40000003 syscall=280 compat=1 ip=0xf7fa8579 code=0x7ffc0000
[  733.541808][T19648] netlink: 188 bytes leftover after parsing attributes in process `syz.3.3536'.
[  734.322986][T19657] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3538'.
[  734.587816][T19665] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3543'.
[  734.590982][T19665] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3543'.
[  734.666045][T15336] usb 7-1: new high-speed USB device number 42 using dummy_hcd
[  734.672075][T19665] ------------[ cut here ]------------
[  734.675178][T19665] kernel BUG at mm/hugetlb.c:2333!
[  734.676989][T19665] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI
[  734.679398][T19665] CPU: 0 UID: 0 PID: 19665 Comm: syz.0.3543 Not tainted 6.14.0-rc2-syzkaller #0
[  734.685320][T19665] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  734.689316][T19665] RIP: 0010:alloc_hugetlb_folio_reserve+0xac/0xc0
[  734.692508][T19665] Code: a3 d0 00 00 00 e8 e4 73 a2 ff 48 c7 c7 40 56 e1 8d e8 88 b2 32 09 48 89 e8 5b 5d 41 5c 41 5d c3 cc cc cc cc e8 c5 73 a2 ff 90 <0f> 0b e8 2d 55 05 00 eb ac 66 66 2e 0f 1f 84 00 00 00 00 00 90 90
[  734.700326][T19665] RSP: 0018:ffffc9002558f8f0 EFLAGS: 00010083
[  734.702067][T19665] RAX: 00000000000008b6 RBX: ffffffff9a83d758 RCX: ffffc9000c402000
[  734.704311][T19665] RDX: 0000000000080000 RSI: ffffffff82167acb RDI: 0000000000000007
[  734.706553][T19665] RBP: ffffea00004d0000 R08: 0000000000000007 R09: 0000000000000000
[  734.708753][T19665] R10: 0000000000000000 R11: 00000000000000e2 R12: 0000000000000000
SYZFAIL: failed to recv rpc
[  734.711263][T19665] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000015
[  734.714361][T19665] FS:  0000000000000000(0000) GS:ffff88802b400000(0063) knlGS:00000000f50d6b40
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  734.717637][T19665] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  734.719867][T19665] CR2: 0000000000000000 CR3: 0000000053e52000 CR4: 0000000000352ef0
[  734.722160][T19665] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  734.724427][T19665] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  734.726718][T19665] Call Trace:
[  734.727696][T19665]  <TASK>
[  734.728621][T19665]  ? die+0x31/0x80
[  734.729959][T19665]  ? do_trap+0x232/0x430
[  734.731202][T19665]  ? alloc_hugetlb_folio_reserve+0xac/0xc0
[  734.732903][T19665]  ? alloc_hugetlb_folio_reserve+0xac/0xc0
[  734.734568][T19665]  ? do_error_trap+0xf4/0x230
[  734.735920][T19665]  ? alloc_hugetlb_folio_reserve+0xac/0xc0
[  734.737873][T19665]  ? handle_invalid_op+0x34/0x40
[  734.739430][T19665]  ? alloc_hugetlb_folio_reserve+0xac/0xc0
[  734.741426][T19665]  ? exc_invalid_op+0x2e/0x50
[  734.743185][T19665]  ? asm_exc_invalid_op+0x1a/0x20
[  734.744625][T19665]  ? alloc_hugetlb_folio_reserve+0xab/0xc0
[  734.746298][T19665]  ? alloc_hugetlb_folio_reserve+0xac/0xc0
[  734.748278][T19665]  memfd_alloc_folio+0x16c/0x3b0
[  734.750321][T19665]  memfd_pin_folios+0xe8c/0x1150
[  734.751957][T19665]  ? __pfx_memfd_pin_folios+0x10/0x10
[  734.753593][T19665]  ? __pfx___lock_acquire+0x10/0x10
[  734.755262][T19665]  ? __pfx_down_read+0x10/0x10
[  734.756922][T19665]  ? __fget_files+0x206/0x3a0
[  734.758524][T19665]  udmabuf_create+0x641/0x11e0
[  734.760022][T19665]  ? __pfx_udmabuf_create+0x10/0x10
[  734.761529][T19665]  ? lock_acquire+0x2f/0xb0
[  734.763006][T19665]  ? __might_fault+0xe3/0x190
[  734.764398][T19665]  ? __might_fault+0xe3/0x190
[  734.765945][T19665]  udmabuf_ioctl+0x193/0x310
[  734.767365][T19665]  ? __pfx_udmabuf_ioctl+0x10/0x10
[  734.768890][T19665]  ? __fget_files+0x206/0x3a0
[  734.770343][T19665]  ? __pfx_udmabuf_ioctl+0x10/0x10
[  734.771816][T19665]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  734.773363][T19665]  __do_fast_syscall_32+0x73/0x120
[  734.774812][T19665]  do_fast_syscall_32+0x32/0x80
[  734.776160][T19665]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  734.777957][T19665] RIP: 0023:0xf7fb6579
[  734.779149][T19665] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  734.785314][T19665] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  734.787806][T19665] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000040187542
[  734.790059][T19665] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[  734.792341][T19665] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  734.794700][T19665] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  734.797182][T19665] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  734.799667][T19665]  </TASK>
[  734.800682][T19665] Modules linked in:
[  734.801992][T19665] ---[ end trace 0000000000000000 ]---
[  734.803592][T19665] RIP: 0010:alloc_hugetlb_folio_reserve+0xac/0xc0
[  734.805444][T19665] Code: a3 d0 00 00 00 e8 e4 73 a2 ff 48 c7 c7 40 56 e1 8d e8 88 b2 32 09 48 89 e8 5b 5d 41 5c 41 5d c3 cc cc cc cc e8 c5 73 a2 ff 90 <0f> 0b e8 2d 55 05 00 eb ac 66 66 2e 0f 1f 84 00 00 00 00 00 90 90
[  734.810905][T19665] RSP: 0018:ffffc9002558f8f0 EFLAGS: 00010083
[  734.812677][T19665] RAX: 00000000000008b6 RBX: ffffffff9a83d758 RCX: ffffc9000c402000
[  734.815004][T19665] RDX: 0000000000080000 RSI: ffffffff82167acb RDI: 0000000000000007
[  734.817271][T19665] RBP: ffffea00004d0000 R08: 0000000000000007 R09: 0000000000000000
[  734.819546][T19665] R10: 0000000000000000 R11: 00000000000000e2 R12: 0000000000000000
[  734.821988][T19665] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000015
[  734.824323][T19665] FS:  0000000000000000(0000) GS:ffff88802b400000(0063) knlGS:00000000f50d6b40
[  734.826748][T19665] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  734.828823][T19665] CR2: 0000000000000000 CR3: 0000000053e52000 CR4: 0000000000352ef0
[  734.831178][T19665] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  734.833554][T19665] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  734.835840][T19665] Kernel panic - not syncing: Fatal exception
[  734.838260][T19665] Kernel Offset: disabled
[  734.839702][T19665] Rebooting in 86400 seconds..

VM DIAGNOSIS:
01:49:56  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff853880b5 RDI=ffffffff9aad4e20 RBP=ffffffff9aad4de0 RSP=ffffc9002558f230
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=552030203a555043
R12=0000000000000000 R13=0000000000000020 R14=ffffffff9aad4de0 R15=0000000000000000
RIP=ffffffff853880df RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000053e52000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2323232323232323 2323232323232323
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=0000000000079696 RCX=ffffffff822749cf RDX=ffff88801c710000
RSI=0000000000000000 RDI=0000000000000007 RBP=0000000000000000 RSP=ffffc90003c8f630
R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000008 R11=000000000000001e
R12=0000000000000001 R13=ffff88803fffa720 R14=0000000000000008 R15=0000000000000001
RIP=ffffffff81b8ee90 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7fe55c0 CR3=000000006afd4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000080000001 RBX=0000000000000040 RCX=ffffffff84c313d3 RDX=ffff88802638a440
RSI=0000000000000040 RDI=0000000000000001 RBP=ffffc900035cf450 RSP=ffffc900035cf308
R8 =0000000000000001 R9 =0000000000000040 R10=0000000000000040 R11=0000000000000012
R12=ffffffff8bd32792 R13=dffffc0000000000 R14=0000000000000002 R15=0000000000000040
RIP=ffffffff81b8eea8 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f1acf985d00 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00005562599e5000 CR3=000000004a924000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=65818fdf65818fdf 65818fdf65818fdf 65818fdf65818fdf 65818fdf65818fdf 65818fdf65818fdf 65818fdf65818fdf 65818fdf65818fdf 65818fdf65818fdf
ZMM22=ce709b14ce709b14 ce709b14ce709b14 ce709b14ce709b14 ce709b14ce709b14 ce709b14ce709b14 ce709b14ce709b14 ce709b14ce709b14 ce709b14ce709b14
ZMM23=29e0cf4f29e0cf4f 29e0cf4f29e0cf4f 29e0cf4f29e0cf4f 29e0cf4f29e0cf4f 29e0cf4f29e0cf4f 29e0cf4f29e0cf4f 29e0cf4f29e0cf4f 29e0cf4f29e0cf4f
ZMM24=e183b314e183b314 e183b314e183b314 e183b314e183b314 e183b314e183b314 e183b314e183b314 e183b314e183b314 e183b314e183b314 e183b314e183b314
ZMM25=c515c60cc515c60c c515c60cc515c60c c515c60cc515c60c c515c60cc515c60c c515c60cc515c60c c515c60cc515c60c c515c60cc515c60c c515c60cc515c60c
ZMM26=5f1667675f166767 5f1667675f166767 5f1667675f166767 5f1667675f166767 5f1667675f166767 5f1667675f166767 5f1667675f166767 5f1667675f166767
ZMM27=5d624e4a5d624e4a 5d624e4a5d624e4a 5d624e4a5d624e4a 5d624e4a5d624e4a 5d624e4a5d624e4a 5d624e4a5d624e4a 5d624e4a5d624e4a 5d624e4a5d624e4a
ZMM28=000000500000004f 0000004e0000004d 0000004c0000004b 0000004a00000049 0000004800000047 0000004600000045 0000004400000043 0000004200000041
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=7c2300007c230000 7c2300007c230000 7c2300007c230000 7c2300007c230000 7c2300007c230000 7c2300007c230000 7c2300007c230000 7c2300007c230000
info registers vcpu 3

CPU#3
RAX=ffff88804eb96070 RBX=dffffc0000000000 RCX=ffffffff81969c6d RDX=1ffff11009d72c0e
RSI=ffff888051aba000 RDI=ffff88804eb96088 RBP=ffffc90003cef638 RSP=ffffc90003cef500
R8 =0000000000000001 R9 =fffff5200079de8e R10=0000000000000003 R11=000000000000001e
R12=ffff888051ab9000 R13=dead000000000122 R14=000000000000000a R15=ffff8880751cfd20
RIP=ffffffff84c22010 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b700000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c3665c0 CR3=000000005ffa4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000