last executing test programs:

2m6.528479535s ago: executing program 2 (id=843):
r0 = memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x0)
openat$cachefiles(0xffffff9c, &(0x7f00000001c0), 0x20401, 0x0) (async)
r1 = openat$cachefiles(0xffffff9c, &(0x7f00000001c0), 0x20401, 0x0)
write$UHID_INPUT(r1, &(0x7f0000000200)={0x8, {"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", 0x1000}}, 0x1006)
ioctl$VHOST_SET_FEATURES(r1, 0x4008af00, &(0x7f0000000080)=0x8000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f0000000040)) (async)
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f0000000040))
pidfd_getfd(r1, 0xffffffffffffffff, 0x0) (async)
pidfd_getfd(r1, 0xffffffffffffffff, 0x0)
add_key$fscrypt_v1(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) (async)
add_key$fscrypt_v1(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r3, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x800000000000000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}]})
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f00000003c0)={[0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x2004cb], 0x0, 0x202}) (async)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f00000003c0)={[0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x2004cb], 0x0, 0x202})
ioctl$KVM_SET_PIT2(r3, 0x4070aea0, &(0x7f0000000300)={[{0x0, 0x8000, 0xe0, 0x0, 0x0, 0x4, 0x4, 0x1, 0x0, 0x2, 0x40, 0x0, 0x400001}, {0x0, 0x0, 0xff, 0xfe, 0x4, 0x0, 0x81, 0x0, 0x0, 0x2, 0x0, 0x4}, {0x7, 0x0, 0x0, 0x11, 0x5, 0xfc, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xe0ec}]})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
write$binfmt_script(r0, &(0x7f0000000040)={'#! ', './file0', [{0x20, '\t'}]}, 0xd) (async)
write$binfmt_script(r0, &(0x7f0000000040)={'#! ', './file0', [{0x20, '\t'}]}, 0xd)
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

2m6.332010768s ago: executing program 2 (id=846):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000380)={0x0, 0x13, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="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"], 0x150}}, 0x0)

2m6.331764767s ago: executing program 2 (id=847):
r0 = epoll_create1(0x0)
r1 = creat(&(0x7f00000001c0)='./bus\x00', 0x4e)
close(r1)
syz_io_uring_setup(0x17af, &(0x7f0000001200)={0x0, 0x7995, 0x13290, 0x0, 0xfffffffd}, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket(0x1000000000000010, 0x80802, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'batadv_slave_1\x00', <r3=>0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="200000001100010100000000008000000000c3ff", @ANYRES32=r3], 0x20}}, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x4040)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r5, 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000180), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r0])
bpf$MAP_CREATE(0x0, 0x0, 0x48)
getsockname$inet(r1, &(0x7f0000000200)={0x2, 0x0, @empty}, &(0x7f0000000240)=0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f00000003c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_open_dev$dri(&(0x7f0000000140), 0x2, 0x400)

2m5.441387017s ago: executing program 2 (id=862):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1bb25eee17c805e64c6d37a91036000000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
getgroups(0x3, &(0x7f0000000c80)=[0xee01, 0xee00, 0xffffffffffffffff])
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x38, 0x1403, 0x1, 0x70bd2a, 0x25dfdbfe, "", [{{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'bond0\x00'}}]}, 0x85}, 0x1, 0x0, 0x0, 0x4000840}, 0x24004000)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f00005f5000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)={0x2, 0x5, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, [@sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000}]}, 0x20}}, 0x140)
socket$nl_rdma(0x10, 0x3, 0x14)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000000)={@local, @random="b4e001a9ebe2", @val, {@ipv6={0x86dd, @generic={0x0, 0x6, "76cd8a", 0x20, 0x0, 0x1, @rand_addr=' \x01\x00', @dev, {[@hopopts={0x0, 0x3, '\x00', [@calipso={0x7, 0x10, {0x0, 0x2, 0x0, 0xd600, [0x4]}}, @pad1, @padn={0x1, 0x1, [0x0]}]}]}}}}}, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
r6 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x0, 0x0, 0x0, r5}, &(0x7f0000000180)=<r7=>0x0, &(0x7f00000001c0)=<r8=>0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), r5)
syz_io_uring_submit(r7, r8, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r6, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r9 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r10 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r10}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r10, &(0x7f0000006840)={0x2020, 0x0, <r11=>0x0, <r12=>0x0}, 0x2020)
syz_fuse_handle_req(r10, &(0x7f00000042c0)="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", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r10, &(0x7f0000004200)={0x50, 0x0, r11}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x3, {0x5, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, {0x0, 0x2000000000, 0x0, 0x2, 0x0, 0x0, 0x4, 0x0, 0x4, 0x2000, 0x7, r12, 0x0, 0xf0ee, 0xffffffff}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
open(&(0x7f00000001c0)='./file0/file0\x00', 0x1800, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

2m4.999348877s ago: executing program 2 (id=864):
ioctl$VIDIOC_QUERYBUF_DMABUF(0xffffffffffffffff, 0xc04c5609, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x3)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x6800, 0xc0)
syz_emit_vhci(&(0x7f00000001c0)=ANY=[@ANYBLOB="04130902c900b515c8000000"], 0xc)
r1 = socket$tipc(0x1e, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x94)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000440)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
setpgid(r2, 0x0)
setpgid(0x0, r2)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x400, 0x0)
openat$thread_pidfd(0xffffff9c, 0x0, 0x101000, 0x0)
poll(0x0, 0x0, 0xc)
ioctl$DRM_IOCTL_MODE_GETPLANE(r0, 0xc02064b6, 0x0)
ioctl$DRM_IOCTL_MODE_DIRTYFB(r0, 0xc01864b1, 0x0)
syz_emit_vhci(0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, 0x0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, 0x0, &(0x7f0000000540))
lseek(r1, 0x1a0, 0x2)
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r0, 0x84, 0x5, 0x0, 0x0)
getsockopt$PNPIPE_IFINDEX(r0, 0x113, 0x2, 0x0, &(0x7f00000006c0))
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x40)
syz_emit_vhci(0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000880), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_RADAR_DETECT(r0, &(0x7f00000009c0)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x801}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20048810}, 0x40094)

2m4.041844992s ago: executing program 2 (id=871):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010000100000000000000000000fc000a20000000000a0300000000fff5000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000001c08000640ffffff000800034000000028580000000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000002c0003802800008008000340000000021c00028018000280080001"], 0xec}}, 0x0)

1m49.044790537s ago: executing program 32 (id=871):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010000100000000000000000000fc000a20000000000a0300000000fff5000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000001c08000640ffffff000800034000000028580000000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000002c0003802800008008000340000000021c00028018000280080001"], 0xec}}, 0x0)

3.799522999s ago: executing program 4 (id=1848):
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xb}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
mmap(&(0x7f00001e0000/0x4000)=nil, 0x4000, 0x2000000, 0x8010, r0, 0x8f0a3000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f00000000c0))
syz_usbip_server_init(0x4)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB="611230000000000061134c0000000000bf2005c6c1c0000015000200071b1700bd030100000000009500000000000000bc26080000000000bf67000000000000070300000fff0700670200000300000016060a000ee600f0bf050000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f9ffad430100000000009500000000000000050000000000000095000000000000004d9bd591d568253e9988431ec068e3a82983d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf719506d2d6b05fe7030586"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
unshare(0x20020680)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x40440, 0x0)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
getsockopt$bt_BT_RCVMTU(r5, 0x112, 0xd, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
unshare(0x2a020480)

2.889227786s ago: executing program 3 (id=1854):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vlan0\x00'})
sendmsg$nl_route(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=@newlink={0x34, 0x10, 0x403, 0x70bd26, 0x0, {0x0, 0x0, 0x4, 0x0, 0x300}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvtap={{0xc}, {0x4}}}]}, 0x34}}, 0x0)

2.820171951s ago: executing program 3 (id=1855):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040))
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="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"/417, @ANYRES64, @ANYRES32, @ANYRESHEX], 0x50)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b00000000000000000000000100000000000000", @ANYRES32=r2, @ANYBLOB="0300"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="03000000030000000200000000000000000000000000000000000000bb25b08a8eb1e2737cb292b231efd1024685725488189c0693a8a4f60e1d758da49d2da484ef8bf627dcf70d66294d00"/88], 0x50)
mkdir(&(0x7f00000009c0)='./file0\x00', 0x0)
mkdir(&(0x7f0000000100)='./file0\x00', 0xb9)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000300)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@verity_on}]})
mkdirat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0/file0\x00', 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
open(&(0x7f0000000380)='./file0\x00', 0x0, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000280)={r3, &(0x7f0000000740)="87567f469905880b086471b3672d79865e53a5215d57eec1520016494a36e11f83bf25864509a531e191eba3778b8a12c42fb8c267b6312c972c46400a970b9d1ad00eb08bb732a71549b85157172722aaa655df6af03bd3152ae8816ff69cd9cbf5ea849a34134d3a55ac32fdeb67b01c5c2249350b9144574a2fa028fd29ed30f221d3aa9e34a931bbda2d61cc14aaec18763b9759503c19637f805d69fd5ccc8c243c8f6a1b2a063ca2795e1c81b16b7259d2462202cb28bed53ee16b7c19a1637fd1090f798e407728b353a45d4a88e21b82df03bb1aed574e", &(0x7f0000000480)=@buf="188330239587b6ec504dce23c61a22fa9604c474b8093738c9326e196b58297eb03284a744dd2db4919f76a5bc18bbde28ed34219b7045f37410b3b2b6280726f62a80bbdffa3aef94e6f1bf104ec1decda6572e84bbae5c9f975d3c7df489e2e94e6c2d98ed863105a37c17785bda4a120127f172149765e3781a017988401d9154d1990e560b67de50e69fe978c952383b5a3de9aa2ce8c4", 0x4}, 0x1c)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$can_j1939(0x1d, 0x2, 0x7)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000380)={'vcan0\x00', <r7=>0x0})
r8 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r8, &(0x7f0000000080)={0x1d, r7, 0x0, {0x0, 0x0, 0x4}}, 0x18)
sendmsg$can_j1939(r8, &(0x7f00000001c0)={&(0x7f0000000040), 0x18, &(0x7f0000000180)={&(0x7f00000000c0)="92", 0x1a000}}, 0xee)
close(r8)
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000940)=@newtfilter={0x24, 0x11, 0x1, 0x74bd2b, 0x0, {0x0, 0x0, 0x74, r9, {0x6, 0x3}, {0x5, 0x4}, {0xfff1, 0xfff3}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x4010}, 0x0)
write$dsp(0xffffffffffffffff, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000080)={[{0x80000000, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xa9}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffffffffffc}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x5, 0xff}]})

2.680883251s ago: executing program 1 (id=1856):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0e000000040000000400000003"], 0x48)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x20}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0x0, 0x8}}, {{0x5, 0x0, 0x3}, {0x95, 0x0, 0x0, 0xb500}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfe00}, {0x6, 0x0, 0x6, 0x9}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff0, 0x50}, {0x7, 0x1, 0xb, 0x6, 0x8, 0x20}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x7, 0x0, 0x7, 0x0}, {0x18, 0x2, 0x2, 0x0, r1}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

2.680706101s ago: executing program 1 (id=1857):
r0 = epoll_create1(0x0)
r1 = creat(&(0x7f00000001c0)='./bus\x00', 0x4e)
close(r1)
syz_io_uring_setup(0x17af, &(0x7f0000001200)={0x0, 0x7995, 0x13290, 0x0, 0xfffffffd}, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket(0x1000000000000010, 0x80802, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'batadv_slave_1\x00', <r3=>0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="200000001100010100000000008000000000ffff", @ANYRES32=r3], 0x20}}, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x4040)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r5, 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000180), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r0])
bpf$MAP_CREATE(0x0, 0x0, 0x48)
getsockname$inet(r1, &(0x7f0000000200)={0x2, 0x0, @empty}, &(0x7f0000000240)=0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f00000003c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_open_dev$dri(&(0x7f0000000140), 0x2, 0x400)

2.550826404s ago: executing program 3 (id=1858):
fsopen(&(0x7f00000003c0)='hpfs\x00', 0x1)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_TIOCOUTQ(r1, 0x5411, &(0x7f0000000380))
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)=ANY=[@ANYBLOB='DD\x00\x00', @ANYRES16=r2, @ANYBLOB="29010000000000000000330000000e0001006e657464657673696d0000000f0002006e657464657673696d3000000d0087006c325f64726f707300000000"], 0x44}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f000071b000/0x4000)=nil, 0x4000, 0x12)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="00000000a1516f0c000d000000000000bfb02acdfdbb54d1da810b6e7a1f59576703899f90c7e2fd9909b2bb37001d530000000000", @ANYRES16=r2, @ANYRES8=r1, @ANYRES64=r0], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3a, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x20000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='xs_stream_read_data\x00', r3, 0x0, 0x400000000000}, 0x18)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
mkdir(0x0, 0x0)
mount$tmpfs(0x0, 0x0, &(0x7f0000000400), 0x20c800, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
openat$sysctl(0xffffffffffffff9c, 0x0, 0x1, 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(0xffffffffffffffff, 0x84, 0x15, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x183341, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
io_uring_setup(0x56fd, &(0x7f0000000500)={0x0, 0xaebc, 0x400, 0x0, 0x2001b9})
r4 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r4, 0x0, 0x27, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r5, &(0x7f0000000440), 0x10)
unshare(0x62040200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x8031, 0xffffffffffffffff, 0x0)
r6 = socket$inet(0xa, 0x5, 0x7836)
connect$inet(r6, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)

2.451172135s ago: executing program 4 (id=1859):
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={0x54, 0x12, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0x0, [], [0x0, 0x0, 0x0, 0xffffff7f]}}, [@INET_DIAG_REQ_BYTECODE={0x8, 0x3, "06010000"}]}, 0x54}}, 0x0)

2.450647682s ago: executing program 4 (id=1861):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0xc, 0x20, &(0x7f00000006c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x4}}, @printk={@ld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1}}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0xfca804a0, 0x10, 0x38, &(0x7f00000002c0)="b800000500000000", &(0x7f0000000300)=""/8, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0}, 0x4c)

2.391046485s ago: executing program 4 (id=1862):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
write$P9_RSETATTR(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x4b, &(0x7f0000000200)=0x81)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
dup(0xffffffffffffffff)
r2 = syz_io_uring_setup(0x10e, &(0x7f0000000140), &(0x7f0000000240)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_SHUTDOWN={0x22, 0x13})
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/sys/net/ipv4/vs/sync_refresh_period\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x457)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r5, 0x4010ae68, &(0x7f00000000c0)={0x18053002})
io_uring_enter(r2, 0x47f9, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r2, 0x5bf6, 0xd149, 0x0, 0x0, 0x0)
rt_sigsuspend(&(0x7f0000000040)={[0x20000001]}, 0x8)
socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
syz_open_dev$swradio(&(0x7f0000000000), 0x1, 0x2)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="300000001000070100dd21200100005b91325b38", @ANYRES32=0x0, @ANYBLOB="000000000080000008001b00000000000500100005"], 0x30}}, 0x0)

2.208344191s ago: executing program 3 (id=1867):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000380)={0x0, 0x13, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="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"], 0x150}}, 0x0)

2.130444199s ago: executing program 3 (id=1868):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r2, 0x0, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x7, 0x0, 0x0, 0x7fdfffff}]})
syz_init_net_socket$rose(0xb, 0x5, 0x0)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000d80)=ANY=[@ANYBLOB="240000002c00010000000000200000000400008010000c"], 0x24}], 0x1}, 0x0)

1.960746491s ago: executing program 0 (id=1870):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x48882, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x1, @sliced={0x3, [0xb7, 0x1ff, 0x3, 0x7, 0xd, 0x9, 0x200, 0x8, 0x4, 0x6, 0x0, 0x0, 0x2, 0x2f49, 0x3, 0x6, 0x6, 0x2, 0x0, 0x3, 0x5, 0x9, 0xfff8, 0x1, 0x6, 0x3, 0xfff, 0xfff2, 0x2, 0xff, 0xbe12, 0x4, 0x81, 0x9, 0x800, 0x0, 0x4, 0x6, 0x7, 0x2, 0x4, 0x400, 0x8, 0xf601, 0x8, 0x5, 0x4, 0x3]}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0)
syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x72303)
ioctl$NBD_SET_TIMEOUT(r0, 0xab09, 0x9)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="1400000a0b04000000000000000002000002300004802c0001800a00010071756f74610000001c0003800c000140000000000000e4390c000440f6000000000000000900010073797a30000000000900020073797a3200000000140000001100010000000000000000000000000aaea07410c2e645f8a90696466ee2230bb6dc"], 0x84}}, 0x90)
r2 = syz_init_net_socket$ax25(0x3, 0x5, 0x6)
r3 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
r6 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffa, 0x10100, 0x0, 0x0, 0x0, r5}, &(0x7f0000000180)=<r7=>0x0, &(0x7f00000001c0)=<r8=>0x0)
io_uring_enter(r5, 0x47f9, 0x0, 0x0, 0x0, 0x0)
r9 = socket(0x2b, 0x80801, 0x1)
setsockopt$EBT_SO_SET_COUNTERS(r9, 0x0, 0x81, &(0x7f0000000240)={'filter\x00', 0x0, 0x0, 0x0, [0x3, 0x6, 0x101, 0x8, 0x7, 0x1ff], 0x1, 0x0, 0x0, [{}]}, 0x60)
flock(r4, 0x8)
flock(0xffffffffffffffff, 0x1)
syz_io_uring_submit(r7, r8, &(0x7f0000000040)=@IORING_OP_OPENAT={0x12, 0xa, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f00000007c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x40})
io_uring_enter(r6, 0x708, 0x41e3, 0x0, 0x0, 0x0)
io_setup(0x8, &(0x7f0000000680)=<r10=>0x0)
io_pgetevents(r10, 0x2, 0x0, 0x0, &(0x7f0000000080)={0x0, 0x989680}, &(0x7f0000000780)={0x0})
read$dsp(r3, &(0x7f00000000c0)=""/15, 0xf)
bind$ax25(r2, &(0x7f0000000100)={{0x3, @default, 0x1}, [@null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null]}, 0x48)
bind$ax25(r5, &(0x7f0000000300)={{0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x6}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}]}, 0x48)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)

1.887882823s ago: executing program 3 (id=1871):
r0 = socket$l2tp(0x2, 0x2, 0x73)
unlink(&(0x7f0000000340)='./cgroup.cpu/cpuset.cpus\x00')
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="150a0000000000007910480000000000610410000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r1 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r2 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r2, 0x7a7, &(0x7f00000000c0)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r2, 0x7a0, &(0x7f00000009c0)={@host})
ioctl$IOCTL_VMCI_DATAGRAM_RECEIVE(r2, 0x7cb, &(0x7f0000000980)={&(0x7f0000000100)={{@hyper}, {}, 0x400, "1710194bd1372be65d5d1be456d243acca17147843aa07e4676b6e5e13d51fe3b442ddd575b7ea5ad5807b65f6ffac80b65547d4a62858f758a3c310e491a45dff1707cfb8288781aa397d3e28b552db90c3fd57f459b4e3da5126b8963a25e860e40c989341b47e8b95063656f91660d61ae86764cd5302c60b77fff946ee5d5b95a65deb8a11af66212c0a3802da8734cf65656145658ef881a33b771b9134fe2e1407a2ffeb9ae90b1cd06a1e2438c7cd1667c0d3dc53f15fd720ed9adc68ca0bf8cb3a5f3e8f2b48ec05a30d52182f3be35dc35ddad91cd4123051996b766cf7f2791773011420d79b507bba3f90ba48eb066b68d56570e96cdac68675271dc756c582705ced77c094ae8f12a4f268fd1c5ed18f1264e27fcc5d2cced8dc50569b03dffbb749caffa1748c5f7c5fc60a7264e04c53bef6c2cba5ed946d420a97a2fa74cb564f80206f75b408bb69c27ab96ae43936e5c497bc56409f13221e4736c3229193f32dfeae901c32027c5941b73beee853b0fcccfb97d02b8675ca92bfe97adcf83d49f8a405dc9be0cfbaa239a73b40b37ee1c03ae15bf08b05d594d3ae80c131b6a0f958a0b5e09653d5d541c29fa4203671c3e8d3898a5618d7d05e7742dad4a6696ae13deef6c402e2afea4acf40d2c14ed5092a438170f1681d4b97eab16fcbfa86d7a361c02f89069d58c2b32c58d5ef7babf62b97c7ac97e413f53bea59cdbf72fc1c14718b1fa6306da64c9700df190c356a9e972d9e63cc9b0383cc8cab28a02a4b3d4f8b96d485dedb3e6a3f4e40d110676dc8de884d3f915b04f220072d4d68697b106faa3577b5011f3144f235439f1aac9f59d37adcc58ba20f209442df7c1328834bdd3933c0796e2975fa5e9b5cc2653b15b7be37172df2d84329307831f2977cac3cca11676512d2d351e00d09889681f9e0e6c172f2d0c3c15eb75ffe6297aecc1cc9d3ebc80735a50b07c7b1eedadbc9f637e26dd4035322abcb77f93fcd9feb2c33bf37c34595dc9bb2e16ada83dc541f98880dd6d4e0ef38e27adf412d1e08a5c1ce83acdc4f40674d9dc14fbff2f42eb71ba5fac19fc742e00c4c15154fcf8f79ad4cd4c8183d4b2d9693eab7f0da562a9ffba7058b272b280611d877f0b05dda462a5e605ea5a8803ad17ce5a9c5f88ec6fef54f407f5f26dc218b21ac5899d03946fdc4d95791f09a272ef0f1388d718c3d38727b1fbbb2c9f22f2d5091c2d0963b971ab47402130e3ca8e201609c34d4379f75257240f9ff0fe921e29bdcc1319bf77a469739ebfc1d1f8605bfb6d46c0cdc31692254715082be9152eabb5a9f2c562c06a985f573b63f02aad0eb63ff970e5a9a28d209b657cd20dc572238ef1d5bbc57041f77c70fca6b5314b6bff2a9b1a03ed2269456e6467664ac0ec2d2304916885fd1f91d5c3b32b924de"}, 0x418})
r3 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d010110000000090400"], 0x0)
syz_usb_control_io(r3, 0x0, 0x0)
syz_usb_control_io(r3, 0x0, 0x0)
r4 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$EVIOCGMASK(r4, 0x5b02, 0x0)
socketpair(0x2, 0x80003, 0xff, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
r5 = openat$cuse(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020, 0x0, <r6=>0x0}, 0x2020)
r7 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000980), 0x0, 0x0)
ioctl$FBIOGETCMAP(r7, 0x4604, &(0x7f0000000ac0)={0x0, 0x1, &(0x7f00000009c0)=[0x0], &(0x7f0000000a00), &(0x7f0000000a40), 0x0})
write$FUSE_OPEN(r5, &(0x7f00000020c0)={0x20, 0x0, r6, {0x0, 0x7}}, 0x20)
r8 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r8, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'rfc3686(chacha20-simd)\x00'}, 0x58)
close_range(r0, 0xffffffffffffffff, 0x0)

1.715104112s ago: executing program 1 (id=1872):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vlan0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=@newlink={0x28, 0x10, 0x403, 0x70bd26, 0x0, {0x0, 0x0, 0x4, 0x0, 0x300}, [@IFLA_LINK={0x8, 0x5, r2}]}, 0x28}}, 0x0)

1.714779197s ago: executing program 1 (id=1873):
r0 = socket$l2tp(0x2, 0x2, 0x73)
unlink(&(0x7f0000000340)='./cgroup.cpu/cpuset.cpus\x00')
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="150a0000000000007910480000000000610410000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r1 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r2 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r2, 0x7a7, &(0x7f00000000c0)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r2, 0x7a0, &(0x7f00000009c0)={@host})
ioctl$IOCTL_VMCI_DATAGRAM_RECEIVE(r2, 0x7cb, &(0x7f0000000980)={&(0x7f0000000100)={{@hyper}, {}, 0x400, "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"}, 0x418}) (fail_nth: 1)
r3 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d010110000000090400"], 0x0)
syz_usb_control_io(r3, 0x0, 0x0)
syz_usb_control_io(r3, 0x0, 0x0)
r4 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$EVIOCGMASK(r4, 0x5b02, 0x0)
socketpair(0x2, 0x80003, 0xff, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
r5 = openat$cuse(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000000080)={0x2020, 0x0, <r6=>0x0}, 0x2020)
r7 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000980), 0x0, 0x0)
ioctl$FBIOGETCMAP(r7, 0x4604, &(0x7f0000000ac0)={0x0, 0x1, &(0x7f00000009c0)=[0x0], &(0x7f0000000a00), &(0x7f0000000a40), 0x0})
write$FUSE_OPEN(r5, &(0x7f00000020c0)={0x20, 0x0, r6, {0x0, 0x7}}, 0x20)
r8 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r8, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'rfc3686(chacha20-simd)\x00'}, 0x58)
close_range(r0, 0xffffffffffffffff, 0x0)

1.441100885s ago: executing program 4 (id=1874):
r0 = openat$udambuf(0xffffff9c, &(0x7f0000000240), 0x2)
r1 = signalfd4(r0, &(0x7f00000002c0)={[0x3, 0x401]}, 0x8, 0x800)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), r1)
syz_emit_vhci(&(0x7f0000000180)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
socket$kcm(0x2b, 0x7, 0x0)
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x5, &(0x7f00000004c0)={0x0, @in={{0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0xb}}}}, 0x84)
syz_open_dev$vbi(&(0x7f0000000040), 0x2, 0x2)
pselect6(0x40, &(0x7f0000000040)={0xc}, 0x0, 0x0, 0x0, 0x0)
openat$udambuf(0xffffff9c, &(0x7f0000000240), 0x2) (async)
signalfd4(r0, &(0x7f00000002c0)={[0x3, 0x401]}, 0x8, 0x800) (async)
socket$nl_xfrm(0x10, 0x3, 0x6) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), r1) (async)
syz_emit_vhci(&(0x7f0000000180)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) (async)
socket$kcm(0x2b, 0x7, 0x0) (async)
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x5, &(0x7f00000004c0)={0x0, @in={{0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0xb}}}}, 0x84) (async)
syz_open_dev$vbi(&(0x7f0000000040), 0x2, 0x2) (async)
pselect6(0x40, &(0x7f0000000040)={0xc}, 0x0, 0x0, 0x0, 0x0) (async)

1.440839677s ago: executing program 4 (id=1875):
socket$l2tp(0x2, 0x2, 0x73)
unlink(&(0x7f0000000340)='./cgroup.cpu/cpuset.cpus\x00')
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="150a0000000000007910480000000000610410000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f00000000c0)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f00000009c0)={@host})
ioctl$IOCTL_VMCI_DATAGRAM_RECEIVE(r0, 0x7cb, &(0x7f0000000980)={&(0x7f0000000100)={{@hyper}, {}, 0x400, "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"}, 0x418})
r1 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d010110000000090400"], 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
r2 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$EVIOCGMASK(r2, 0x5b02, 0x0)
socketpair(0x2, 0x80003, 0xff, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000120000000000000000000000850000006d000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='contention_end\x00', r3}, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1e000000fffffeff030000000000000000400400", @ANYRES32, @ANYBLOB="0f00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="01ffffff0000000000000e000000ffffffffffffffea000000000000"], 0x50)
bpf$ITER_CREATE(0x21, &(0x7f0000000400), 0x8)
bpf$PROG_BIND_MAP(0x23, &(0x7f00000000c0)={0xffffffffffffffff, r4}, 0xc)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x509b, @void, @value}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r7, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000003c0)={'wlan1\x00'})
sendto$packet(r7, &(0x7f00000002c0)="05031400d3fc140000004788031c09102c28", 0x12, 0x4, 0x0, 0x0)
socket$rds(0x15, 0x5, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r5}, 0x10)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x820000, 0x0)

1.221001025s ago: executing program 0 (id=1876):
ioctl$VIDIOC_QUERYBUF_DMABUF(0xffffffffffffffff, 0xc04c5609, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x3)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x6800, 0xc0)
syz_emit_vhci(&(0x7f00000001c0)=@HCI_EVENT_PKT={0x4, @hci_ev_num_comp_pkts={{0x13, 0x9}, {0x2, [{0xc9, 0xfff8}, {0xc8}]}}}, 0xc)
socket$tipc(0x1e, 0x2, 0x0)
openat$thread_pidfd(0xffffff9c, 0x0, 0x101000, 0x0)
poll(0x0, 0x0, 0x5)
ioctl$DRM_IOCTL_MODE_GETPLANE(r0, 0xc02064b6, 0x0)
ioctl$DRM_IOCTL_MODE_DIRTYFB(r0, 0xc01864b1, 0x0)
syz_emit_vhci(0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000840)='./bus\x00', 0xa4)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r1, 0xc0505350, &(0x7f0000000480)={{0x0, 0xfc}, {}, 0x4, 0x5, 0x7})
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.self_freezing\x00', 0x275a, 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0xc0189436, &(0x7f0000000140))
ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, 0x0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, 0x0, &(0x7f0000000540))
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r0, 0x84, 0x5, 0x0, 0x0)
getsockopt$PNPIPE_IFINDEX(r0, 0x113, 0x2, 0x0, &(0x7f00000006c0))
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x40)
syz_emit_vhci(0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000880), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_RADAR_DETECT(r0, &(0x7f00000009c0)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x801}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20048810}, 0x40094)
syz_emit_vhci(0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f00000010c0)={0x0, 0x0, 0x0, &(0x7f0000001080)=[0x0], 0x0, 0x0, 0x0, 0x1})

1.169752699s ago: executing program 0 (id=1877):
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
mknod(0x0, 0x0, 0x0)
syz_open_dev$tty20(0xc, 0x4, 0x1)
socket$tipc(0x1e, 0x5, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$RTC_PIE_ON(r0, 0x7005)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000140)={0x4}, 0x10)
write(r1, &(0x7f0000000000)="1c0000001a005f0214f9f407000904001f000000fd02000200020000", 0x1c)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffce8, &(0x7f0000000280)=0x6)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, 0x0, &(0x7f0000000380)={0x3ff, 0xfffffffffffffffb}, 0x0, 0x0)

301.075674ms ago: executing program 0 (id=1878):
socket$inet(0x2, 0x2, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)

300.810968ms ago: executing program 0 (id=1879):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000680), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00'})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYRESHEX=r0, @ANYRES16=r1, @ANYRES64=r0, @ANYRESHEX, @ANYBLOB="08007d80040002000600eb00fcff0000d4007d8053000200a53b3277c8f0413dec14dd9815d653ec35781c51f89229db8affaa69c77923c23c832206b5e2f0e524d3c4f541a105a6dc0741cc2b8b9ea497c5301aa6903c81e4f7411c8bfadea1f1357a4b34940a0040000200d18e5bf63dd3de4e00eed03f9f1ce6099b602b"], 0x184}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2) (async)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a30000000005c000000030a0101000000000000000001000000"], 0xa4}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) (async)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c) (async)
socket$inet(0x2, 0x3, 0x2) (async)
r5 = creat(&(0x7f0000000180)='./file0\x00', 0x94) (async)
r6 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r6, &(0x7f0000000000)={0xa, 0x0, 0x4, @loopback, 0x0, 0x26}, 0x20) (async)
r7 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r7, &(0x7f0000000100)={0xa, 0x0, 0x200002, @empty, 0x0, 0x2}, 0x20)
connect$l2tp6(r7, &(0x7f0000000040)={0xa, 0x0, 0x1, @ipv4={'\x00', '\xff\xff', @local}, 0xfffffffe, 0x3}, 0x20) (async)
close(r5) (async)
r8 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x181) (async)
execve(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$F2FS_IOC_MOVE_RANGE(r9, 0x541b, &(0x7f0000000040)={<r10=>0xffffffffffffffff})
close_range(r10, 0xffffffffffffffff, 0x0)
r11 = syz_io_uring_setup(0x14f, &(0x7f0000000300)={0x0, 0x4941, 0x400, 0x0, 0x2c, 0x0, r3}, &(0x7f0000000240)=<r12=>0x0, &(0x7f0000000280)=<r13=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r12, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) (async)
r14 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r14, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030033000b35d25a806c8c6f94f90424fc60040207000a000200053582c137153e37000c0980fc0b10000300", 0x33fe0}], 0x1}, 0x0) (async)
r15 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
syz_io_uring_submit(r12, r13, &(0x7f00000002c0)=@IORING_OP_OPENAT2={0x1c, 0x38, 0x0, r8, &(0x7f00000001c0)={0x2000, 0x241, 0x3}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0xa4e067560742c600, {0x0, r15}})
io_uring_enter(r11, 0x5951, 0x7a89, 0x0, 0x0, 0x0)

211.080025ms ago: executing program 0 (id=1880):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_int(r1, 0x1, 0x7, &(0x7f0000000080), 0x4)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x80, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000280)={0x1, &(0x7f0000528000)=[{0x6, 0x0, 0x6}]}, 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f0000000240)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xa2, &(0x7f0000000140)=""/162, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000340)=[{0x0, 0x1, 0xa, 0xb}, {0x5, 0x2, 0x13, 0x6}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
syz_open_dev$I2C(&(0x7f0000003000), 0x0, 0x0)
syz_init_net_socket$rose(0xb, 0x5, 0xf0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$EBT_SO_GET_INFO(r5, 0x0, 0x80, &(0x7f00000002c0)={'filter\x00', 0x0, 0x0, 0x0, [0x1, 0xffffffffffffffff, 0x0, 0xae, 0x401, 0x8]}, &(0x7f0000000280)=0x50)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='fdinfo/3\x00')
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r7, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r8=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv4_newaddr={0x20, 0x14, 0x509, 0x0, 0x0, {0x2, 0x1f, 0x0, 0x0, r8}, [@IFA_LOCAL={0x8, 0x2, @private=0xa010100}]}, 0x20}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6(0xa, 0x1, 0x0)
r9 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r9, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="020300090a0000000000000000000000030006000000000002000000ac1414fbffffff0000000000020001000000000000000002fffffffb0300050000000000020000000000000000000000000000000313726a786b6739e9e448099ba43bf227ae225243499b5bfaca58945207c93ae314"], 0x50}}, 0x0)

210.951827ms ago: executing program 1 (id=1881):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="4400000010004b04000023dc5ad93c5c2b7b0000", @ANYRES32=0x0, @ANYBLOB="0000000000ff0000240012800b0001006272696467650000140002800500160003"], 0x44}}, 0x0)

0s ago: executing program 1 (id=1882):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
write$P9_RSETATTR(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x4b, &(0x7f0000000200)=0x81)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
dup(0xffffffffffffffff)
r2 = syz_io_uring_setup(0x10e, &(0x7f0000000140), &(0x7f0000000240)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_SHUTDOWN={0x22, 0x13})
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/sys/net/ipv4/vs/sync_refresh_period\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x457)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r5, 0x4010ae68, &(0x7f00000000c0)={0x18053002})
io_uring_enter(r2, 0x47f9, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r2, 0x5bf6, 0xd149, 0x0, 0x0, 0x0)
rt_sigsuspend(&(0x7f0000000040)={[0x20000001]}, 0x8)
socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
syz_open_dev$swradio(&(0x7f0000000000), 0x1, 0x2)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="300000001000070100dd21200100005b91325b38", @ANYRES32=0x0, @ANYBLOB="000000000080000008001b00000000000500100005"], 0x30}}, 0x0)

kernel console output (not intermixed with test programs):

yscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  110.532519][   T39] audit: type=1326 audit(1737422362.556:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8130 comm="syz.1.509" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf711e579 code=0x7ffc0000
[  110.538728][   T39] audit: type=1326 audit(1737422362.556:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8130 comm="syz.1.509" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  110.546149][   T39] audit: type=1326 audit(1737422362.556:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8130 comm="syz.1.509" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  110.554265][   T39] audit: type=1326 audit(1737422362.556:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8130 comm="syz.1.509" exe="/syz-executor" sig=0 arch=40000003 syscall=345 compat=1 ip=0xf711e579 code=0x7ffc0000
[  110.560324][   T39] audit: type=1326 audit(1737422362.556:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8130 comm="syz.1.509" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  110.566627][   T39] audit: type=1326 audit(1737422362.556:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8130 comm="syz.1.509" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  110.574287][   T39] audit: type=1326 audit(1737422362.556:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8130 comm="syz.1.509" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf711e579 code=0x7ffc0000
[  110.581068][   T39] audit: type=1326 audit(1737422362.556:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8130 comm="syz.1.509" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  111.278628][ T8156] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  111.288733][ T8156] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  111.538717][ T8162] netlink: 'syz.1.517': attribute type 72 has an invalid length.
[  112.168170][ T8187] syzkaller1: entered promiscuous mode
[  112.169825][ T8187] syzkaller1: entered allmulticast mode
[  112.445882][ T8196] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  112.447802][ T8196] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  112.450427][ T8196] vhci_hcd vhci_hcd.0: Device attached
[  112.652092][   T56] vhci_hcd: vhci_device speed not set
[  112.723593][   T56] usb 41-1: new full-speed USB device number 4 using vhci_hcd
[  113.037695][ T8204] loop9: detected capacity change from 0 to 7
[  113.046152][ T8204] Dev loop9: unable to read RDB block 7
[  113.048510][ T8204]  loop9: unable to read partition table
[  113.051919][ T8204] loop9: partition table beyond EOD, truncated
[  113.054306][ T8204] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  113.054306][ T8204] 
) failed (rc=-5)
[  113.087439][ T8204] sp0: Synchronizing with TNC
[  113.097119][ T8204] [U] �
[  113.179369][ T8210] __nla_validate_parse: 4 callbacks suppressed
[  113.179383][ T8210] netlink: 256 bytes leftover after parsing attributes in process `syz.0.532'.
[  113.185062][ T8210] netlink: 32 bytes leftover after parsing attributes in process `syz.0.532'.
[  113.212496][ T8212] netlink: 256 bytes leftover after parsing attributes in process `syz.0.533'.
[  113.216258][ T8212] netlink: 32 bytes leftover after parsing attributes in process `syz.0.533'.
[  113.282992][ T8216] netlink: 8 bytes leftover after parsing attributes in process `syz.0.535'.
[  113.646216][ T8224] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  113.648126][ T8224] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  113.651356][ T8224] vhci_hcd vhci_hcd.0: Device attached
[  113.791937][ T8198] vhci_hcd: connection reset by peer
[  113.795537][ T1135] vhci_hcd: stop threads
[  113.797739][ T1135] vhci_hcd: release socket
[  113.803203][ T1135] vhci_hcd: disconnect device
[  113.990635][ T6117] vhci_hcd: vhci_device speed not set
[  114.050547][ T6117] usb 39-1: new full-speed USB device number 3 using vhci_hcd
[  114.285301][ T8242] vlan2: entered allmulticast mode
[  114.506115][ T8248] netlink: 12 bytes leftover after parsing attributes in process `syz.2.544'.
[  114.567689][ T8250] netlink: 8 bytes leftover after parsing attributes in process `syz.3.545'.
[  114.574731][ T8253] Cannot find map_set index 0 as target
[  114.616090][ T8258] netlink: 28 bytes leftover after parsing attributes in process `syz.3.548'.
[  114.618678][ T8258] netlink: 28 bytes leftover after parsing attributes in process `syz.3.548'.
[  114.621811][ T8258] netlink: 36 bytes leftover after parsing attributes in process `syz.3.548'.
[  115.370028][ T8228] vhci_hcd: connection reset by peer
[  115.372920][ T7866] vhci_hcd: stop threads
[  115.374225][ T7866] vhci_hcd: release socket
[  115.375794][ T7866] vhci_hcd: disconnect device
[  116.178254][ T8307] (unnamed net_device) (uninitialized): (slave gretap0): Device is not bonding slave
[  116.180677][ T8307] (unnamed net_device) (uninitialized): option active_slave: invalid value (gretap0)
[  116.270140][ T1135] Bluetooth: hci4: Frame reassembly failed (-84)
[  116.272202][ T1135] Bluetooth: hci4: Frame reassembly failed (-84)
[  116.350601][ T6089] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  116.381227][ T8317] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  116.383641][ T8317] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  116.387528][ T8317] vhci_hcd vhci_hcd.0: Device attached
[  116.514776][ T6089] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7
[  116.518195][ T6089] usb 5-1: New USB device found, idVendor=2040, idProduct=1605, bcdDevice= a.94
[  116.521109][ T6089] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  116.529698][ T6089] usb 5-1: config 0 descriptor??
[  117.556320][ T8318] vhci_hcd: connection closed
[  117.557718][ T7866] vhci_hcd: stop threads
[  117.560605][ T7866] vhci_hcd: release socket
[  117.562049][ T7866] vhci_hcd: disconnect device
[  117.883058][   T56] vhci_hcd: vhci_device speed not set
[  118.284626][ T8338] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  118.290878][ T5942] Bluetooth: hci4: command 0x1003 tx timeout
[  118.291365][ T5952] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  118.343832][ T8342] __nla_validate_parse: 3 callbacks suppressed
[  118.343843][ T8342] netlink: 12 bytes leftover after parsing attributes in process `syz.2.571'.
[  118.714722][ T6089] usb 5-1: USB disconnect, device number 4
[  119.109167][ T8371] netlink: 180 bytes leftover after parsing attributes in process `syz.0.582'.
[  119.112374][ T8371] netlink: 24 bytes leftover after parsing attributes in process `syz.0.582'.
[  119.115097][ T8371] netlink: 16 bytes leftover after parsing attributes in process `syz.0.582'.
[  119.117922][ T8371] netlink: 24 bytes leftover after parsing attributes in process `syz.0.582'.
[  119.250579][ T6117] vhci_hcd: vhci_device speed not set
[  119.886267][ T8390] loop9: detected capacity change from 0 to 7
[  119.911507][ T8390] Dev loop9: unable to read RDB block 7
[  119.913769][ T8390]  loop9: unable to read partition table
[  119.916334][ T8390] loop9: partition table beyond EOD, truncated
[  119.918733][ T8390] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  119.918733][ T8390] 
) failed (rc=-5)
[  119.946213][ T8390] sp0: Synchronizing with TNC
[  119.961480][ T8390] [U] �
[  120.386126][ T8403] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  120.389002][ T8403] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  120.391928][ T8403] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  120.394354][ T8403] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  120.396919][ T8403] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  120.399353][ T8403] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  120.402484][ T8403] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  120.404913][ T8403] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  120.407457][ T8403] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  120.561329][ T8411] netlink: 'syz.3.594': attribute type 4 has an invalid length.
[  120.704021][ T8416] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  120.706194][ T8416] UDF-fs: Scanning with blocksize 2048 failed
[  120.708780][ T8416] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  120.710945][ T8416] UDF-fs: Scanning with blocksize 4096 failed
[  120.789394][ T8419] netlink: 180 bytes leftover after parsing attributes in process `syz.0.595'.
[  120.793384][ T8419] netlink: 24 bytes leftover after parsing attributes in process `syz.0.595'.
[  120.796000][ T8419] netlink: 16 bytes leftover after parsing attributes in process `syz.0.595'.
[  120.810847][ T8419] netlink: 24 bytes leftover after parsing attributes in process `syz.0.595'.
[  120.823629][ T8423] netlink: 'syz.1.597': attribute type 4 has an invalid length.
[  120.874133][ T8421] netlink: 'syz.3.598': attribute type 12 has an invalid length.
[  121.502431][ T8459] netlink: 8 bytes leftover after parsing attributes in process `syz.3.610'.
[  122.682224][ T8487] (unnamed net_device) (uninitialized): (slave gretap0): Device is not bonding slave
[  122.685107][ T8487] (unnamed net_device) (uninitialized): option active_slave: invalid value (gretap0)
[  122.710788][ T6117] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  122.803064][ T8491] bridge1: the hash_elasticity option has been deprecated and is always 16
[  122.880088][ T6117] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  122.885153][ T6117] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  122.889362][ T6117] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  122.893348][ T6117] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  122.909163][ T6117] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  122.912278][ T6117] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  122.914702][ T6117] usb 5-1: Manufacturer: syz
[  122.930669][ T6117] usb 5-1: config 0 descriptor??
[  123.613212][ T6117] appleir 0003:05AC:8243.0003: unknown main item tag 0x0
[  123.630607][ T6117] appleir 0003:05AC:8243.0003: No inputs registered, leaving
[  123.637965][ T6117] appleir 0003:05AC:8243.0003: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0
[  123.743368][ T8480] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  123.747256][ T8480] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  123.754490][ T8480] __nla_validate_parse: 8 callbacks suppressed
[  123.754499][ T8480] netlink: 12 bytes leftover after parsing attributes in process `syz.0.616'.
[  123.796655][ T6089] usb 5-1: USB disconnect, device number 5
[  123.929723][ T8525] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  123.931657][ T8525] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  123.934822][ T8525] vhci_hcd vhci_hcd.0: Device attached
[  123.984041][ T8529] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4)
[  123.985933][ T8529] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  123.988197][ T8529] vhci_hcd vhci_hcd.0: Device attached
[  124.015126][ T8535] netlink: 12 bytes leftover after parsing attributes in process `syz.1.627'.
[  124.098161][ T8529] netlink: 40 bytes leftover after parsing attributes in process `syz.2.626'.
[  124.121233][ T5979] vhci_hcd: vhci_device speed not set
[  124.181183][ T5979] usb 43-1: new full-speed USB device number 5 using vhci_hcd
[  124.380126][ T8561] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  124.382541][ T8561] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  124.386561][ T8561] vhci_hcd vhci_hcd.0: Device attached
[  124.560724][   T56] vhci_hcd: vhci_device speed not set
[  124.620564][ T6006] usb 5-1: new low-speed USB device number 6 using dummy_hcd
[  124.623619][   T56] usb 37-1: new full-speed USB device number 2 using vhci_hcd
[  124.770717][    T8] vhci_hcd: vhci_device speed not set
[  124.806116][ T6006] usb 5-1: config index 0 descriptor too short (expected 17003, got 27)
[  124.809150][ T6006] usb 5-1: config 77 has an invalid descriptor of length 97, skipping remainder of the config
[  124.812898][ T6006] usb 5-1: config 77 has 0 interfaces, different from the descriptor's value: 10
[  124.816050][ T6006] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  124.819248][ T6006] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  124.840565][    T8] usb 41-1: new full-speed USB device number 5 using vhci_hcd
[  125.027708][ T8563] usb 37-1: recv xbuf, 0
[  125.029173][ T7866] vhci_hcd: stop threads
[  125.029540][ T8561] netlink: 'syz.0.629': attribute type 12 has an invalid length.
[  125.030510][ T7866] vhci_hcd: release socket
[  125.030576][ T7866] vhci_hcd: disconnect device
[  125.033751][ T8561] netlink: 132 bytes leftover after parsing attributes in process `syz.0.629'.
[  125.041550][ T6006] usb 5-1: string descriptor 0 read error: -71
[  125.048890][ T6006] usb 5-1: USB disconnect, device number 6
[  125.101023][   T56] vhci_hcd: vhci_device speed not set
[  125.263075][ T8531] vhci_hcd: connection reset by peer
[  125.274146][ T7860] vhci_hcd: stop threads
[  125.275892][ T7860] vhci_hcd: release socket
[  125.277906][ T7860] vhci_hcd: disconnect device
[  125.313758][ T8527] vhci_hcd: connection reset by peer
[  125.316190][ T7866] vhci_hcd: stop threads
[  125.317791][ T7866] vhci_hcd: release socket
[  125.321315][ T7866] vhci_hcd: disconnect device
[  125.603400][ T8582] netlink: 180 bytes leftover after parsing attributes in process `syz.2.635'.
[  125.606051][ T8582] netlink: 24 bytes leftover after parsing attributes in process `syz.2.635'.
[  125.608556][ T8582] netlink: 16 bytes leftover after parsing attributes in process `syz.2.635'.
[  125.611180][ T8582] netlink: 24 bytes leftover after parsing attributes in process `syz.2.635'.
[  126.000254][ T8593] netlink: 44 bytes leftover after parsing attributes in process `syz.0.640'.
[  126.379822][ T8615] netlink: 180 bytes leftover after parsing attributes in process `syz.2.649'.
[  127.309515][ T8648] xt_TPROXY: Can be used only with -p tcp or -p udp
[  127.839273][ T8660] netlink: 'syz.1.661': attribute type 12 has an invalid length.
[  128.096357][ T8678] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  128.098978][ T8678] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  128.103144][ T8678] vhci_hcd vhci_hcd.0: Device attached
[  128.160304][   T39] kauditd_printk_skb: 47 callbacks suppressed
[  128.160314][   T39] audit: type=1326 audit(1737422380.196:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8683 comm="syz.0.666" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  128.168396][   T39] audit: type=1326 audit(1737422380.206:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8683 comm="syz.0.666" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  128.174802][   T39] audit: type=1326 audit(1737422380.206:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8683 comm="syz.0.666" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  128.182202][   T39] audit: type=1326 audit(1737422380.206:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8683 comm="syz.0.666" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  128.188262][   T39] audit: type=1326 audit(1737422380.206:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8683 comm="syz.0.666" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  128.194855][   T39] audit: type=1326 audit(1737422380.206:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8683 comm="syz.0.666" exe="/syz-executor" sig=0 arch=40000003 syscall=345 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  128.201328][   T39] audit: type=1326 audit(1737422380.206:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8683 comm="syz.0.666" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  128.207439][   T39] audit: type=1326 audit(1737422380.206:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8683 comm="syz.0.666" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  128.214026][   T39] audit: type=1326 audit(1737422380.206:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8683 comm="syz.0.666" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  128.220425][   T39] audit: type=1326 audit(1737422380.206:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8683 comm="syz.0.666" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  128.332356][ T6117] vhci_hcd: vhci_device speed not set
[  128.391114][ T6117] usb 39-1: new full-speed USB device number 4 using vhci_hcd
[  129.290357][ T8710] __nla_validate_parse: 12 callbacks suppressed
[  129.290374][ T8710] netlink: 20 bytes leftover after parsing attributes in process `syz.0.674'.
[  129.310869][ T5979] vhci_hcd: vhci_device speed not set
[  129.560025][ T8723] netlink: 12 bytes leftover after parsing attributes in process `syz.0.679'.
[  129.719303][ T8736] netlink: 112 bytes leftover after parsing attributes in process `syz.2.683'.
[  129.758802][ T8680] vhci_hcd: connection reset by peer
[  129.761993][ T7866] vhci_hcd: stop threads
[  129.763239][ T7866] vhci_hcd: release socket
[  129.764849][ T7866] vhci_hcd: disconnect device
[  129.766918][ T8738] netlink: 'syz.2.684': attribute type 4 has an invalid length.
[  129.865444][ T8746] xt_TPROXY: Can be used only with -p tcp or -p udp
[  130.010605][    T8] vhci_hcd: vhci_device speed not set
[  130.021003][   T63] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  130.170791][   T63] usb 6-1: Using ep0 maxpacket: 8
[  130.461081][   T63] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  130.464319][   T63] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  130.468296][   T63] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  130.474202][   T63] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  130.478510][   T63] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  130.485153][   T63] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  130.488801][   T63] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  130.665712][ T8755] netlink: 'syz.3.688': attribute type 12 has an invalid length.
[  130.720952][   T63] usb 6-1: usb_control_msg returned -32
[  130.722589][   T63] usbtmc 6-1:16.0: can't read capabilities
[  130.774923][ T8762] serio: Serial port ptm0
[  131.424368][ T8740] usbtmc 6-1:16.0: usb_control_msg returned -32
[  131.428734][ T6089] usb 6-1: USB disconnect, device number 6
[  131.739830][ T5952] Bluetooth: hci3: command 0x0405 tx timeout
[  131.834968][ T8796] netlink: 44 bytes leftover after parsing attributes in process `syz.0.701'.
[  131.982242][ T8805] xt_TPROXY: Can be used only with -p tcp or -p udp
[  132.203519][ T1412] ieee802154 phy0 wpan0: encryption failed: -22
[  132.205861][ T1412] ieee802154 phy1 wpan1: encryption failed: -22
[  132.986196][ T8835] netlink: 12 bytes leftover after parsing attributes in process `syz.3.712'.
[  133.037408][ T8838] netlink: 8 bytes leftover after parsing attributes in process `syz.3.713'.
[  133.172692][ T8842] nvme_fabrics: missing parameter 'transport=%s'
[  133.174664][ T8842] nvme_fabrics: missing parameter 'nqn=%s'
[  133.384836][ T8857] netlink: 4 bytes leftover after parsing attributes in process `syz.1.717'.
[  133.470531][ T6117] vhci_hcd: vhci_device speed not set
[  133.975464][ T8863] netlink: 'syz.1.718': attribute type 6 has an invalid length.
[  134.354712][ T8865] bridge0: port 2(bridge_slave_1) entered disabled state
[  134.357813][ T8865] bridge0: port 1(bridge_slave_0) entered disabled state
[  134.422895][ T8865] net_ratelimit: 1054 callbacks suppressed
[  134.422972][ T8865] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  134.736437][ T8875] netlink: 'syz.0.724': attribute type 12 has an invalid length.
[  134.812875][ T8880] siw: device registration error -23
[  134.945274][ T8893] netlink: 12 bytes leftover after parsing attributes in process `syz.0.727'.
[  135.718069][ T8932] netlink: 'syz.1.738': attribute type 4 has an invalid length.
[  136.689797][ T8950] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  136.693355][ T8950] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  136.695775][ T8950] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[  136.742999][ T8951] netlink: 'syz.3.744': attribute type 25 has an invalid length.
[  136.745556][ T8951] netlink: 'syz.3.744': attribute type 44 has an invalid length.
[  137.617580][ T8962] Process accounting paused
[  137.713242][ T8991] netlink: 20 bytes leftover after parsing attributes in process `syz.1.756'.
[  137.757574][ T8986] netlink: 'syz.2.754': attribute type 12 has an invalid length.
[  138.192716][ T9017] netlink: 180 bytes leftover after parsing attributes in process `syz.3.759'.
[  138.195509][ T9017] netlink: 24 bytes leftover after parsing attributes in process `syz.3.759'.
[  138.198050][ T9017] netlink: 16 bytes leftover after parsing attributes in process `syz.3.759'.
[  138.200718][ T9017] netlink: 24 bytes leftover after parsing attributes in process `syz.3.759'.
[  138.795041][ T9026] siw: device registration error -23
[  139.277867][ T9036] bio_check_eod: 2 callbacks suppressed
[  139.278211][ T9036] syz.2.765: attempt to access beyond end of device
[  139.278211][ T9036] nbd2: rw=4096, sector=0, nr_sectors = 1 limit=0
[  139.342942][ T9036] XFS (nbd2): SB validate failed with error -5.
[  139.577106][ T9049] netlink: 4 bytes leftover after parsing attributes in process `syz.3.769'.
[  139.900838][ T9057] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  140.560582][   T25] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  140.710673][   T25] usb 6-1: Using ep0 maxpacket: 8
[  140.713721][   T25] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  140.716032][   T25] usb 6-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  140.718782][   T25] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  140.721634][   T25] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  140.902621][ T9082] xt_TPROXY: Can be used only with -p tcp or -p udp
[  141.285932][ T9088] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  141.288494][ T9088] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  141.291832][ T9088] vhci_hcd vhci_hcd.0: Device attached
[  141.500589][ T6117] vhci_hcd: vhci_device speed not set
[  141.536780][ T9098] netlink: 20 bytes leftover after parsing attributes in process `syz.0.784'.
[  141.561491][ T6117] usb 41-1: new full-speed USB device number 6 using vhci_hcd
[  141.841710][ T9104] netlink: 'syz.3.787': attribute type 12 has an invalid length.
[  142.767432][ T9090] vhci_hcd: connection reset by peer
[  142.770141][   T12] vhci_hcd: stop threads
[  142.774944][   T12] vhci_hcd: release socket
[  142.776562][   T12] vhci_hcd: disconnect device
[  142.842167][ T9155] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  142.880345][ T9155] batman_adv: batadv0: Removing interface: batadv_slave_1
[  143.331282][ T5979] usb 6-1: USB disconnect, device number 7
[  145.466697][ T9229] netlink: 180 bytes leftover after parsing attributes in process `syz.2.817'.
[  145.469308][ T9229] netlink: 24 bytes leftover after parsing attributes in process `syz.2.817'.
[  145.471972][ T9229] netlink: 16 bytes leftover after parsing attributes in process `syz.2.817'.
[  145.474500][ T9229] netlink: 24 bytes leftover after parsing attributes in process `syz.2.817'.
[  145.709287][ T9231] (unnamed net_device) (uninitialized): (slave gretap0): Device is not bonding slave
[  145.712356][ T9231] (unnamed net_device) (uninitialized): option active_slave: invalid value (gretap0)
[  145.946408][ T9243] Bluetooth: MGMT ver 1.23
[  145.994008][   T39] kauditd_printk_skb: 22 callbacks suppressed
[  145.994023][   T39] audit: type=1326 audit(1737422398.036:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9244 comm="syz.0.822" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  145.999167][ T9245] xt_TPROXY: Can be used only with -p tcp or -p udp
[  146.004861][   T39] audit: type=1326 audit(1737422398.036:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9244 comm="syz.0.822" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  146.013970][   T39] audit: type=1326 audit(1737422398.036:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9244 comm="syz.0.822" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  146.019904][   T39] audit: type=1326 audit(1737422398.036:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9244 comm="syz.0.822" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  146.027008][   T39] audit: type=1326 audit(1737422398.036:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9244 comm="syz.0.822" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  146.033255][   T39] audit: type=1326 audit(1737422398.036:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9244 comm="syz.0.822" exe="/syz-executor" sig=0 arch=40000003 syscall=345 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  146.039953][   T39] audit: type=1326 audit(1737422398.036:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9244 comm="syz.0.822" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  146.050047][ T9248] netlink: 44 bytes leftover after parsing attributes in process `syz.0.823'.
[  146.050198][   T39] audit: type=1326 audit(1737422398.036:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9244 comm="syz.0.822" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  146.066322][   T39] audit: type=1326 audit(1737422398.036:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9244 comm="syz.0.822" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  146.075307][   T39] audit: type=1326 audit(1737422398.036:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9244 comm="syz.0.822" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  146.075842][ T9250] netlink: 12 bytes leftover after parsing attributes in process `syz.0.824'.
[  146.761166][ T9262] netlink: 8 bytes leftover after parsing attributes in process `syz.2.829'.
[  146.851483][ T6117] vhci_hcd: vhci_device speed not set
[  147.022260][ T9272] netlink: 'syz.0.833': attribute type 4 has an invalid length.
[  147.114701][ T9270] netlink: 'syz.2.832': attribute type 12 has an invalid length.
[  147.178021][ T9280] netlink: 24 bytes leftover after parsing attributes in process `syz.1.835'.
[  147.180906][ T9280] netlink: 8 bytes leftover after parsing attributes in process `syz.1.835'.
[  147.183389][ T9280] netlink: 24 bytes leftover after parsing attributes in process `syz.1.835'.
[  147.495778][ T9304] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[  147.704748][ T9322] netlink: 180 bytes leftover after parsing attributes in process `syz.1.849'.
[  147.707204][ T9322] netlink: 24 bytes leftover after parsing attributes in process `syz.1.849'.
[  147.709640][ T9322] netlink: 16 bytes leftover after parsing attributes in process `syz.1.849'.
[  147.712421][ T9322] netlink: 24 bytes leftover after parsing attributes in process `syz.1.849'.
[  147.811353][ T9325] FAULT_INJECTION: forcing a failure.
[  147.811353][ T9325] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  147.815568][ T9325] CPU: 2 UID: 0 PID: 9325 Comm: syz.3.850 Not tainted 6.13.0-syzkaller #0
[  147.818381][ T9325] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  147.821348][ T9325] Call Trace:
[  147.822292][ T9325]  <TASK>
[  147.823209][ T9325]  dump_stack_lvl+0x16c/0x1f0
[  147.824748][ T9325]  should_fail_ex+0x497/0x5b0
[  147.826143][ T9325]  _copy_from_user+0x2e/0xd0
[  147.827497][ T9325]  get_compat_msghdr+0xa8/0x170
[  147.828914][ T9325]  ? __pfx_get_compat_msghdr+0x10/0x10
[  147.830513][ T9325]  ___sys_sendmsg+0x1b0/0x1e0
[  147.831885][ T9325]  ? __pfx____sys_sendmsg+0x10/0x10
[  147.833390][ T9325]  ? __pfx_lock_release+0x10/0x10
[  147.834843][ T9325]  ? trace_lock_acquire+0x14e/0x1f0
[  147.836339][ T9325]  ? __fget_files+0x206/0x3a0
[  147.837757][ T9325]  __sys_sendmsg+0x16e/0x220
[  147.839058][ T9325]  ? __pfx___sys_sendmsg+0x10/0x10
[  147.840600][ T9325]  __do_fast_syscall_32+0x73/0x120
[  147.842040][ T9325]  do_fast_syscall_32+0x32/0x80
[  147.843419][ T9325]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  147.845172][ T9325] RIP: 0023:0xf709e579
[  147.846297][ T9325] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  147.851481][ T9325] RSP: 002b:00000000f509055c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  147.853830][ T9325] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000580
[  147.856012][ T9325] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  147.858246][ T9325] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  147.860452][ T9325] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  147.862702][ T9325] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  147.864953][ T9325]  </TASK>
[  147.926137][ T9331] netlink: 12 bytes leftover after parsing attributes in process `syz.3.853'.
[  147.960818][ T5942] Bluetooth: hci0: Opcode 0x1407 failed: -110
[  147.961322][ T5952] Bluetooth: hci0: command 0x1407 tx timeout
[  148.587802][ T9353] infiniband syz0: set down
[  148.589277][ T9353] infiniband syz0: added bond0
[  148.629773][ T9353] RDS/IB: syz0: added
[  148.632222][ T9353] smc: adding ib device syz0 with port count 1
[  148.634045][ T9353] smc:    ib device syz0 port 1 has pnetid 
[  150.088592][ T9393] netlink: 20 bytes leftover after parsing attributes in process `syz.3.874'.
[  151.954836][ T9471] __nla_validate_parse: 2 callbacks suppressed
[  151.954846][ T9471] netlink: 8 bytes leftover after parsing attributes in process `syz.1.903'.
[  152.163355][ T9479] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  152.239114][ T9486] netlink: 'syz.1.909': attribute type 2 has an invalid length.
[  152.242355][ T9486] netlink: 'syz.1.909': attribute type 1 has an invalid length.
[  152.245470][ T9486] netlink: 112860 bytes leftover after parsing attributes in process `syz.1.909'.
[  152.249139][ T9486] nbd: couldn't find device at index 1568768
[  152.402031][ T9497] Cannot find map_set index 1328 as target
[  152.632242][ T9504] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.732655][ T9504] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.796942][ T9504] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.949545][ T9504] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  153.015588][ T9504] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  153.023574][ T9504] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  153.031814][ T9504] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  153.038645][ T9504] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  153.287467][ T9517] siw: device registration error -23
[  153.669219][ T9522] random: crng reseeded on system resumption
[  154.139336][ T9526] netlink: 20 bytes leftover after parsing attributes in process `syz.0.922'.
[  154.322871][ T9534] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  154.326307][ T9534] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  154.639862][ T9542] netlink: 'syz.3.929': attribute type 4 has an invalid length.
[  154.953491][ T9548] netlink: 'syz.3.932': attribute type 10 has an invalid length.
[  155.327269][ T9563] netlink: 8 bytes leftover after parsing attributes in process `syz.0.935'.
[  156.061079][ T9583] capability: warning: `syz.0.941' uses 32-bit capabilities (legacy support in use)
[  156.393024][ T9595] netlink: 8 bytes leftover after parsing attributes in process `syz.0.945'.
[  156.395666][ T9595] nbd: must specify an index to disconnect
[  157.119323][ T5952] block nbd0: Receive control failed (result -32)
[  157.120173][ T9596] block nbd0: shutting down sockets
[  157.377718][ T9624] netlink: 44 bytes leftover after parsing attributes in process `syz.1.952'.
[  157.407670][   T39] kauditd_printk_skb: 4 callbacks suppressed
[  157.407679][   T39] audit: type=1326 audit(1737422409.446:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9625 comm="syz.1.953" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  157.416028][   T39] audit: type=1326 audit(1737422409.446:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9625 comm="syz.1.953" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  157.424531][   T39] audit: type=1326 audit(1737422409.456:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9625 comm="syz.1.953" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf711e579 code=0x7ffc0000
[  157.434102][   T39] audit: type=1326 audit(1737422409.456:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9625 comm="syz.1.953" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  157.443073][   T39] audit: type=1326 audit(1737422409.456:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9625 comm="syz.1.953" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  157.451971][   T39] audit: type=1326 audit(1737422409.456:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9625 comm="syz.1.953" exe="/syz-executor" sig=0 arch=40000003 syscall=345 compat=1 ip=0xf711e579 code=0x7ffc0000
[  157.459934][   T39] audit: type=1326 audit(1737422409.456:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9625 comm="syz.1.953" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  157.469107][   T39] audit: type=1326 audit(1737422409.456:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9625 comm="syz.1.953" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  157.480223][   T39] audit: type=1326 audit(1737422409.456:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9625 comm="syz.1.953" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf711e579 code=0x7ffc0000
[  157.489505][   T39] audit: type=1326 audit(1737422409.456:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9625 comm="syz.1.953" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  157.493447][ T9628] netlink: 132 bytes leftover after parsing attributes in process `syz.1.954'.
[  157.505263][ T9628] netlink: 72 bytes leftover after parsing attributes in process `syz.1.954'.
[  159.438709][ T9690] tmpfs: Unknown parameter 'quotauid'
[  160.191770][ T9714] syz.3.968: vmalloc error: size 2147483264, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[  160.196227][ T9714] CPU: 1 UID: 0 PID: 9714 Comm: syz.3.968 Not tainted 6.13.0-syzkaller #0
[  160.198767][ T9714] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  160.201868][ T9714] Call Trace:
[  160.202849][ T9714]  <TASK>
[  160.203793][ T9714]  dump_stack_lvl+0x16c/0x1f0
[  160.205647][ T9714]  warn_alloc+0x24d/0x3a0
[  160.207433][ T9714]  ? __pfx_warn_alloc+0x10/0x10
[  160.209437][ T9714]  ? __pfx_mark_lock+0x10/0x10
[  160.211500][ T9714]  ? __might_fault+0x13b/0x190
[  160.213443][ T9714]  ? __pfx_lock_release+0x10/0x10
[  160.215436][ T9714]  __vmalloc_node_range_noprof+0x10df/0x1530
[  160.217908][ T9714]  ? __might_fault+0xe3/0x190
[  160.219810][ T9714]  ? _copy_from_user+0x59/0xd0
[  160.221814][ T9714]  ? compat_do_replace+0x1ae/0x750
[  160.223898][ T9714]  ? compat_copy_ebt_replace_from_user+0x307/0x420
[  160.226519][ T9714]  ? __pfx_compat_copy_ebt_replace_from_user+0x10/0x10
[  160.229031][ T9714]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  160.231339][ T9714]  ? compat_do_replace+0x1ae/0x750
[  160.233287][ T9714]  vmalloc_noprof+0x6b/0x90
[  160.234725][ T9714]  ? compat_do_replace+0x1ae/0x750
[  160.236301][ T9714]  compat_do_replace+0x1ae/0x750
[  160.238180][ T9714]  ? lock_acquire.part.0+0x11b/0x380
[  160.239798][ T9714]  ? __pfx_compat_do_replace+0x10/0x10
[  160.241388][ T9714]  ? aa_get_newest_label+0x376/0x680
[  160.242922][ T9714]  ? __pfx_aa_get_newest_label+0x10/0x10
[  160.244819][ T9714]  ? bpf_lsm_capable+0x9/0x10
[  160.246307][ T9714]  ? security_capable+0x7e/0x260
[  160.247748][ T9714]  do_ebt_set_ctl+0x4af/0x580
[  160.249206][ T9714]  ? sockopt_release_sock+0x52/0x60
[  160.250731][ T9714]  ? __pfx_do_ebt_set_ctl+0x10/0x10
[  160.252255][ T9714]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  160.253840][ T9714]  ? nf_sockopt_find.constprop.0+0x221/0x290
[  160.255571][ T9714]  nf_setsockopt+0x8a/0xf0
[  160.256904][ T9714]  ip_setsockopt+0xcb/0xf0
[  160.258212][ T9714]  udp_setsockopt+0x7d/0xd0
[  160.259552][ T9714]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  160.261268][ T9714]  do_sock_setsockopt+0x222/0x480
[  160.262752][ T9714]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  160.264372][ T9714]  ? lock_acquire+0x2f/0xb0
[  160.265710][ T9714]  __sys_setsockopt+0x1a0/0x230
[  160.267132][ T9714]  __ia32_sys_setsockopt+0xbc/0x160
[  160.268680][ T9714]  ? lockdep_hardirqs_on+0x7c/0x110
[  160.270565][ T9714]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  160.272497][ T9714]  __do_fast_syscall_32+0x73/0x120
[  160.273983][ T9714]  do_fast_syscall_32+0x32/0x80
[  160.275395][ T9714]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  160.277228][ T9714] RIP: 0023:0xf709e579
[  160.278416][ T9714] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  160.283941][ T9714] RSP: 002b:00000000f509055c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  160.286351][ T9714] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000000000000
[  160.288629][ T9714] RDX: 0000000000000080 RSI: 0000000020000000 RDI: 00000000000000e0
[  160.290904][ T9714] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  160.293273][ T9714] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  160.296279][ T9714] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  160.298820][ T9714]  </TASK>
[  160.300671][ T9714] Mem-Info:
[  160.301615][ T9714] active_anon:5556 inactive_anon:98 isolated_anon:0
[  160.301615][ T9714]  active_file:12211 inactive_file:35508 isolated_file:0
[  160.301615][ T9714]  unevictable:1768 dirty:272 writeback:0
[  160.301615][ T9714]  slab_reclaimable:8186 slab_unreclaimable:59804
[  160.301615][ T9714]  mapped:24016 shmem:2337 pagetables:717
[  160.301615][ T9714]  sec_pagetables:304 bounce:0
[  160.301615][ T9714]  kernel_misc_reclaimable:0
[  160.301615][ T9714]  free:50544 free_pcp:3928 free_cma:0
[  160.315413][ T9714] Node 0 active_anon:512kB inactive_anon:392kB active_file:200kB inactive_file:1468kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:1628kB dirty:8kB writeback:0kB shmem:3552kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9748kB pagetables:800kB sec_pagetables:1116kB all_unreclaimable? yes
[  160.324531][ T9714] Node 1 active_anon:21712kB inactive_anon:0kB active_file:48644kB inactive_file:140564kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:94436kB dirty:1080kB writeback:0kB shmem:5796kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2760kB pagetables:2068kB sec_pagetables:100kB all_unreclaimable? no
[  160.333872][ T9714] Node 0 DMA free:2984kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:180kB local_pcp:16kB free_cma:0kB
[  160.342267][ T9714] lowmem_reserve[]: 0 299 0 0 0
[  160.343735][ T9714] Node 0 DMA32 free:19180kB boost:0kB min:13904kB low:17380kB high:20856kB reserved_highatomic:2048KB active_anon:512kB inactive_anon:392kB active_file:200kB inactive_file:1468kB unevictable:3536kB writepending:8kB present:1032196kB managed:306284kB mlocked:0kB bounce:0kB free_pcp:3540kB local_pcp:0kB free_cma:0kB
[  160.352506][ T9714] lowmem_reserve[]: 0 0 0 0 0
[  160.362414][ T9714] Node 1 DMA32 free:178144kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB active_anon:21712kB inactive_anon:0kB active_file:48644kB inactive_file:140564kB unevictable:3536kB writepending:1080kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:16000kB local_pcp:12000kB free_cma:0kB
[  160.371271][ T9714] lowmem_reserve[]: 0 0 0 0 0
[  160.372898][ T9714] Node 0 DMA: 53*4kB (U) 25*8kB (U) 46*16kB (U) 51*32kB (U) 3*64kB (U) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2972kB
[  160.376917][ T9714] Node 0 DMA32: 45*4kB (EH) 133*8kB (MEH) 119*16kB (UME) 99*32kB (UMEH) 40*64kB (UME) 43*128kB (UME) 9*256kB (UM) 1*512kB (M) 1*1024kB (U) 0*2048kB 0*4096kB = 18220kB
[  160.381871][ T9714] Node 1 DMA32: 427*4kB (UME) 346*8kB (UME) 192*16kB (UME) 626*32kB (UME) 565*64kB (UME) 179*128kB (UME) 77*256kB (UME) 32*512kB (UME) 12*1024kB (UME) 3*2048kB (ME) 9*4096kB (UM) = 178044kB
[  160.387376][ T9714] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  160.390167][ T9714] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  160.392976][ T9714] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  160.395768][ T9714] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  160.398514][ T9714] 50137 total pagecache pages
[  160.399951][ T9714] 80 pages in swap cache
[  160.401507][ T9714] Free swap  = 121720kB
[  160.402548][ T9723] netlink: 8 bytes leftover after parsing attributes in process `syz.0.971'.
[  160.402815][ T9714] Total swap = 124996kB
[  160.406655][ T9714] 524155 pages RAM
[  160.407840][ T9714] 0 pages HighMem/MovableOnly
[  160.409302][ T9714] 206681 pages reserved
[  160.410600][ T9714] 0 pages cma reserved
[  160.437422][ T9725] netlink: 'syz.0.972': attribute type 4 has an invalid length.
[  160.459955][ T9727] netlink: 16 bytes leftover after parsing attributes in process `syz.1.973'.
[  160.462761][ T9727] netlink: 16 bytes leftover after parsing attributes in process `syz.1.973'.
[  160.656244][ T9738] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  161.794307][ T9769] netlink: 12 bytes leftover after parsing attributes in process `syz.0.985'.
[  161.796864][ T9769] netlink: 12 bytes leftover after parsing attributes in process `syz.0.985'.
[  162.638360][ T5952] Bluetooth: hci0: unexpected event for opcode 0x0c56
[  162.642037][ T9787] netlink: 76 bytes leftover after parsing attributes in process `syz.1.988'.
[  162.682858][ T9790] (unnamed net_device) (uninitialized): (slave gretap0): Device is not bonding slave
[  162.685743][ T9790] (unnamed net_device) (uninitialized): option active_slave: invalid value (gretap0)
[  163.081771][ T9800] netlink: 20 bytes leftover after parsing attributes in process `syz.3.992'.
[  163.734398][ T9838] netlink: 'syz.1.1003': attribute type 4 has an invalid length.
[  163.811931][ T9840] netlink: 'syz.1.1004': attribute type 1 has an invalid length.
[  163.881387][ T9842] 8021q: adding VLAN 0 to HW filter on device bond1
[  163.888265][ T9842] vlan3: entered promiscuous mode
[  163.890242][ T9842] bond1: entered promiscuous mode
[  163.895093][ T9842] bond1: left promiscuous mode
[  165.083994][ T5942] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  165.100283][ T5942] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  165.103770][ T5942] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  165.106636][ T5942] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  165.110684][ T5942] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  165.114784][ T5942] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  165.232950][ T9884] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1014'.
[  165.326306][ T9876] siw: device registration error -23
[  165.389526][ T9874] chnl_net:caif_netlink_parms(): no params data found
[  165.419160][ T9890] nvme_fabrics: missing parameter 'transport=%s'
[  165.421304][ T9890] nvme_fabrics: missing parameter 'nqn=%s'
[  165.489314][ T9874] bridge0: port 1(bridge_slave_0) entered blocking state
[  165.491498][ T9874] bridge0: port 1(bridge_slave_0) entered disabled state
[  165.493617][ T9874] bridge_slave_0: entered allmulticast mode
[  165.495770][ T9874] bridge_slave_0: entered promiscuous mode
[  165.498359][ T9874] bridge0: port 2(bridge_slave_1) entered blocking state
[  165.500706][ T9874] bridge0: port 2(bridge_slave_1) entered disabled state
[  165.502789][ T9874] bridge_slave_1: entered allmulticast mode
[  165.504950][ T9874] bridge_slave_1: entered promiscuous mode
[  165.534770][ T9874] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  165.541703][ T9874] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  165.579335][ T9874] team0: Port device team_slave_0 added
[  165.583201][ T9874] team0: Port device team_slave_1 added
[  165.606475][ T9874] batman_adv: batadv0: Adding interface: batadv_slave_0
[  165.608511][ T9874] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  165.616695][ T9874] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  165.620914][ T9874] batman_adv: batadv0: Adding interface: batadv_slave_1
[  165.622941][ T9874] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  165.630240][ T9874] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  165.655529][ T9874] hsr_slave_0: entered promiscuous mode
[  165.657598][ T9874] hsr_slave_1: entered promiscuous mode
[  165.659935][ T9874] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  165.662231][ T9874] Cannot create hsr debugfs directory
[  165.766621][ T9874] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  165.771899][ T9874] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  165.777948][ T9874] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  165.783175][ T9874] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  165.796346][ T9874] bridge0: port 2(bridge_slave_1) entered blocking state
[  165.798547][ T9874] bridge0: port 2(bridge_slave_1) entered forwarding state
[  165.801631][ T9874] bridge0: port 1(bridge_slave_0) entered blocking state
[  165.803726][ T9874] bridge0: port 1(bridge_slave_0) entered forwarding state
[  165.835341][ T9874] 8021q: adding VLAN 0 to HW filter on device bond0
[  165.854988][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  165.859789][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  165.895071][ T9874] 8021q: adding VLAN 0 to HW filter on device team0
[  165.900824][ T9899] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1016'.
[  165.909441][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  165.911705][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  165.915406][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  165.917471][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  165.997682][ T9874] 8021q: adding VLAN 0 to HW filter on device batadv0
[  166.091265][ T9874] veth0_vlan: entered promiscuous mode
[  166.095308][ T9874] veth1_vlan: entered promiscuous mode
[  166.106936][ T9874] veth0_macvtap: entered promiscuous mode
[  166.110003][ T9874] veth1_macvtap: entered promiscuous mode
[  166.117454][ T9874] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  166.120580][ T9874] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  166.123383][ T9874] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  166.126814][ T9874] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  166.129639][ T9874] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  166.133448][ T9874] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  166.136229][ T9874] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  166.139243][ T9874] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  166.142629][ T9874] batman_adv: batadv0: Interface activated: batadv_slave_0
[  166.147775][ T9874] batman_adv: batadv0: Interface activated: batadv_slave_1
[  166.152257][ T9874] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  166.154783][ T9874] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  166.157344][ T9874] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  166.159826][ T9874] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  166.338481][ T1135] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  166.345740][ T1135] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  166.355087][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  166.357413][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  166.677991][ T9926] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1018'.
[  167.160652][ T5952] Bluetooth: hci4: command tx timeout
[  167.218530][ T9947] IPVS: set_ctl: invalid protocol: 60 172.20.20.187:20000
[  167.519661][ T9958] (unnamed net_device) (uninitialized): (slave gretap0): Device is not bonding slave
[  167.523931][ T9958] (unnamed net_device) (uninitialized): option active_slave: invalid value (gretap0)
[  167.766940][ T9964] could not allocate digest TFM handle sha384-arm64
[  167.970893][ T9975] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1035'.
[  169.230059][T10020] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  169.232080][T10020] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  169.234865][T10020] vhci_hcd vhci_hcd.0: Device attached
[  169.241024][ T5944] Bluetooth: hci4: command 0x041b tx timeout
[  169.413612][  T832] vhci_hcd: vhci_device speed not set
[  169.470861][  T832] usb 39-1: new full-speed USB device number 5 using vhci_hcd
[  170.133224][ T5938] Bluetooth: hci2: command 0x0406 tx timeout
[  170.135175][ T5938] Bluetooth: hci3: command 0x0405 tx timeout
[  170.136931][ T5938] Bluetooth: hci0: command 0x1407 tx timeout
[  170.776602][T10047] netlink: 'syz.3.1053': attribute type 10 has an invalid length.
[  170.849825][T10048] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1053'.
[  170.866770][T10048] bridge_slave_1: left allmulticast mode
[  170.869334][T10048] bridge_slave_1: left promiscuous mode
[  170.881433][T10048] bridge0: port 2(bridge_slave_1) entered disabled state
[  170.984494][T10048] bridge_slave_0: left allmulticast mode
[  170.986159][T10048] bridge_slave_0: left promiscuous mode
[  170.988977][T10048] bridge0: port 1(bridge_slave_0) entered disabled state
[  171.032137][T10021] vhci_hcd: connection reset by peer
[  171.034362][   T12] vhci_hcd: stop threads
[  171.035729][   T12] vhci_hcd: release socket
[  171.037111][   T12] vhci_hcd: disconnect device
[  171.063205][T10058] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  171.068474][T10060] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1057'.
[  171.098888][T10064] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1058'.
[  171.106924][T10064] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1058'.
[  171.109509][T10064] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1058'.
[  171.113759][T10064] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1058'.
[  171.140962][T10056] netlink: 188 bytes leftover after parsing attributes in process `syz.4.1048'.
[  171.279565][T10076] xt_TPROXY: Can be used only with -p tcp or -p udp
[  171.321088][ T5292] Bluetooth: hci4: command 0x041b tx timeout
[  171.348043][T10077] netlink: 180 bytes leftover after parsing attributes in process `syz.1.1062'.
[  171.350762][T10077] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1062'.
[  171.450963][   T39] kauditd_printk_skb: 8 callbacks suppressed
[  171.450973][   T39] audit: type=1326 audit(1737422423.496:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10078 comm="syz.4.1064" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  171.459202][   T39] audit: type=1326 audit(1737422423.496:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10078 comm="syz.4.1064" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  171.466165][   T39] audit: type=1326 audit(1737422423.506:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10078 comm="syz.4.1064" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  171.472656][   T39] audit: type=1326 audit(1737422423.506:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10078 comm="syz.4.1064" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  171.478789][   T39] audit: type=1326 audit(1737422423.506:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10078 comm="syz.4.1064" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  171.486253][   T39] audit: type=1326 audit(1737422423.516:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10078 comm="syz.4.1064" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  171.494542][   T39] audit: type=1326 audit(1737422423.516:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10078 comm="syz.4.1064" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70ce5a7 code=0x7ffc0000
[  171.501182][   T39] audit: type=1326 audit(1737422423.516:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10078 comm="syz.4.1064" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  171.507475][   T39] audit: type=1326 audit(1737422423.516:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10078 comm="syz.4.1064" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70ce5a7 code=0x7ffc0000
[  171.513729][   T39] audit: type=1326 audit(1737422423.516:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10078 comm="syz.4.1064" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  171.563690][T10079] bridge_slave_1: left allmulticast mode
[  171.566028][T10079] bridge_slave_1: left promiscuous mode
[  171.568408][T10079] bridge0: port 2(bridge_slave_1) entered disabled state
[  171.573296][T10079] bridge_slave_0: left allmulticast mode
[  171.575578][T10079] bridge_slave_0: left promiscuous mode
[  171.577939][T10079] bridge0: port 1(bridge_slave_0) entered disabled state
[  173.147948][T10138] __nla_validate_parse: 4 callbacks suppressed
[  173.150002][T10138] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1083'.
[  173.153188][T10138] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1083'.
[  173.156106][T10138] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1083'.
[  173.158870][T10138] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1083'.
[  173.213966][T10142] overlay: Unknown parameter 'uid<00000000000000000000'
[  173.221208][T10142] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1082'.
[  173.400852][ T5292] Bluetooth: hci4: command 0x041b tx timeout
[  174.564056][T10177] netlink: 'syz.0.1090': attribute type 4 has an invalid length.
[  174.591195][  T832] vhci_hcd: vhci_device speed not set
[  174.595523][T10181] tap0: tun_chr_ioctl cmd 2147767517
[  175.480668][ T5292] Bluetooth: hci4: command 0x041b tx timeout
[  175.694964][T10206] xt_TPROXY: Can be used only with -p tcp or -p udp
[  175.697054][T10213] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1100'.
[  175.811671][T10217] overlay: Bad value for 'workdir'
[  175.865047][T10225] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1104'.
[  175.880267][T10227] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  175.882205][T10227] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  175.884925][T10227] vhci_hcd vhci_hcd.0: Device attached
[  175.948029][T10233] A link change request failed with some changes committed already. Interface bond_slave_0 may have been left with an inconsistent configuration, please check.
[  176.091282][    T9] vhci_hcd: vhci_device speed not set
[  176.150749][    T9] usb 43-1: new full-speed USB device number 6 using vhci_hcd
[  176.703701][   T39] kauditd_printk_skb: 525 callbacks suppressed
[  176.703712][   T39] audit: type=1326 audit(1737422428.746:785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.0.1108" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  176.711916][   T39] audit: type=1326 audit(1737422428.746:786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.0.1108" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  176.717941][   T39] audit: type=1326 audit(1737422428.756:787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.0.1108" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  176.724854][   T39] audit: type=1326 audit(1737422428.756:788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.0.1108" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  176.731216][   T39] audit: type=1326 audit(1737422428.756:789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.0.1108" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  176.737357][   T39] audit: type=1326 audit(1737422428.756:790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.0.1108" exe="/syz-executor" sig=0 arch=40000003 syscall=345 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  176.743668][   T39] audit: type=1326 audit(1737422428.756:791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.0.1108" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  176.749645][   T39] audit: type=1326 audit(1737422428.756:792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.0.1108" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  176.755781][   T39] audit: type=1326 audit(1737422428.756:793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.0.1108" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  176.762008][   T39] audit: type=1326 audit(1737422428.756:794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.0.1108" exe="/syz-executor" sig=0 arch=40000003 syscall=365 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  176.928664][ T5292] Bluetooth: hci3: unexpected event for opcode 0x202a
[  177.013898][T10259] xt_TPROXY: Can be used only with -p tcp or -p udp
[  177.178126][T10264] netlink: 'syz.0.1114': attribute type 4 has an invalid length.
[  177.236931][T10228] vhci_hcd: connection reset by peer
[  177.239332][   T12] vhci_hcd: stop threads
[  177.257553][   T12] vhci_hcd: release socket
[  177.259273][   T12] vhci_hcd: disconnect device
[  177.531560][T10271] netlink: 180 bytes leftover after parsing attributes in process `syz.3.1116'.
[  177.535405][T10271] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1116'.
[  177.538726][T10271] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1116'.
[  177.683829][T10275] openvswitch: netlink: Duplicate or invalid key (type 0).
[  177.686242][T10275] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  178.267818][T10298] netlink: 'syz.0.1127': attribute type 1 has an invalid length.
[  178.270090][T10298] netlink: 'syz.0.1127': attribute type 4 has an invalid length.
[  178.275572][T10298] __nla_validate_parse: 8 callbacks suppressed
[  178.275580][T10298] netlink: 15363 bytes leftover after parsing attributes in process `syz.0.1127'.
[  178.633213][T10312] (unnamed net_device) (uninitialized): (slave gretap0): Device is not bonding slave
[  178.636035][T10312] (unnamed net_device) (uninitialized): option active_slave: invalid value (gretap0)
[  178.866709][T10321] netlink: 180 bytes leftover after parsing attributes in process `syz.3.1136'.
[  178.869727][T10321] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1136'.
[  178.872657][T10321] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1136'.
[  178.875332][T10321] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1136'.
[  180.112478][T10335] netlink: 'syz.3.1141': attribute type 12 has an invalid length.
[  180.456375][   T56] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  180.542798][T10375] pimreg: entered allmulticast mode
[  180.670674][   T56] usb 9-1: Using ep0 maxpacket: 8
[  180.676310][   T56] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[  180.678691][   T56] usb 9-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  180.687782][   T56] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  180.693890][   T56] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  180.749032][T10379] netlink: 180 bytes leftover after parsing attributes in process `syz.1.1149'.
[  180.752019][T10379] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1149'.
[  180.754643][T10379] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1149'.
[  180.757274][T10379] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1149'.
[  181.194552][T10381] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  181.198732][T10381] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  181.202866][T10381] bond0 (unregistering): Released all slaves
[  181.240618][    T9] vhci_hcd: vhci_device speed not set
[  181.287898][T10395] netlink: 'syz.0.1152': attribute type 1 has an invalid length.
[  181.548486][T10408] A link change request failed with some changes committed already. Interface bond_slave_0 may have been left with an inconsistent configuration, please check.
[  181.991951][T10423] openvswitch: netlink: nsh attr 15105 is out of range max 3
[  181.994644][T10423] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  182.027683][T10425] syz.1.1162: attempt to access beyond end of device
[  182.027683][T10425] nbd1: rw=0, sector=0, nr_sectors = 1 limit=0
[  182.032938][T10425] (syz.1.1162,10425,0):ocfs2_get_sector:1769 ERROR: status = -5
[  182.035221][T10425] (syz.1.1162,10425,0):ocfs2_sb_probe:749 ERROR: status = -5
[  182.037427][T10425] (syz.1.1162,10425,0):ocfs2_fill_super:990 ERROR: superblock probe failed!
[  182.040000][T10425] (syz.1.1162,10425,0):ocfs2_fill_super:1178 ERROR: status = -5
[  182.264533][T10428] netlink: 180 bytes leftover after parsing attributes in process `syz.1.1163'.
[  183.202800][   T56] usb 9-1: USB disconnect, device number 2
[  183.308359][T10480] __nla_validate_parse: 8 callbacks suppressed
[  183.308370][T10480] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1182'.
[  183.640711][ T5938] Bluetooth: hci4: command 0x041b tx timeout
[  183.752592][T10495] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1186'.
[  183.755257][T10495] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1186'.
[  183.757819][T10495] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1186'.
[  183.760418][T10495] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1186'.
[  183.771349][T10497] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1189'.
[  183.881388][T10499] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1190'.
[  184.030355][T10504] netlink: 'syz.1.1192': attribute type 12 has an invalid length.
[  184.438696][T10531] netlink: 'syz.0.1196': attribute type 4 has an invalid length.
[  184.447070][T10533] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1197'.
[  184.483186][ T5292] Bluetooth: hci3: SCO packet for unknown connection handle 200
[  184.487397][ T5292] Bluetooth: hci3: SCO packet for unknown connection handle 200
[  184.606123][T10540] bridge0: port 4(vlan2) entered blocking state
[  184.610520][T10540] bridge0: port 4(vlan2) entered disabled state
[  184.612756][T10540] vlan2: entered allmulticast mode
[  184.615953][T10540] vlan2: left allmulticast mode
[  184.728689][T10551] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1202'.
[  184.837907][T10554] Cannot find map_set index 24579 as target
[  185.142762][T10572] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1204'.
[  186.917115][T10620] vlan2: entered allmulticast mode
[  186.918716][T10620] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode
[  186.922706][T10620] mac80211_hwsim hwsim3 wlan1: left allmulticast mode
[  186.934232][   T39] kauditd_printk_skb: 4 callbacks suppressed
[  186.934242][   T39] audit: type=1326 audit(1737422438.976:799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10621 comm="syz.1.1221" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  186.943636][   T39] audit: type=1326 audit(1737422438.976:800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10621 comm="syz.1.1221" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  186.950937][   T39] audit: type=1326 audit(1737422438.976:801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10621 comm="syz.1.1221" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf711e579 code=0x7ffc0000
[  186.957138][   T39] audit: type=1326 audit(1737422438.976:802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10621 comm="syz.1.1221" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  186.963667][   T39] audit: type=1326 audit(1737422438.976:803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10621 comm="syz.1.1221" exe="/syz-executor" sig=0 arch=40000003 syscall=345 compat=1 ip=0xf711e579 code=0x7ffc0000
[  186.969801][   T39] audit: type=1326 audit(1737422438.976:804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10621 comm="syz.1.1221" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  186.976588][   T39] audit: type=1326 audit(1737422438.976:805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10621 comm="syz.1.1221" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  186.984387][   T39] audit: type=1326 audit(1737422438.976:806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10621 comm="syz.1.1221" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf711e579 code=0x7ffc0000
[  186.992594][   T39] audit: type=1326 audit(1737422438.976:807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10621 comm="syz.1.1221" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  187.000674][   T39] audit: type=1326 audit(1737422438.976:808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10621 comm="syz.1.1221" exe="/syz-executor" sig=0 arch=40000003 syscall=365 compat=1 ip=0xf711e579 code=0x7ffc0000
[  188.164440][T10657] devpts: called with bogus options
[  188.734036][T10687] __nla_validate_parse: 12 callbacks suppressed
[  188.734047][T10687] netlink: 180 bytes leftover after parsing attributes in process `syz.4.1238'.
[  188.738474][T10687] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1238'.
[  188.741597][T10687] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1238'.
[  188.746243][T10687] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1238'.
[  189.747605][T10710] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  190.037141][T10722] (unnamed net_device) (uninitialized): (slave gretap0): Device is not bonding slave
[  190.041555][T10722] (unnamed net_device) (uninitialized): option active_slave: invalid value (gretap0)
[  190.406149][T10740] random: crng reseeded on system resumption
[  191.142077][ T1103] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1
[  191.143999][ T1103] ata1: failed to read log page 10h (errno=-5)
[  191.145760][ T1103] ata1.00: exception Emask 0x1 SAct 0x20000 SErr 0x0 action 0x0
[  191.147917][ T1103] ata1.00: irq_stat 0x40000000
[  191.149283][ T1103] ata1.00: failed command: WRITE FPDMA QUEUED
[  191.151379][ T1103] ata1.00: cmd 61/18:88:12:0a:10/00:00:00:00:00/40 tag 17 ncq dma 12288 out
[  191.151379][ T1103]          res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[  191.156758][ T1103] ata1.00: status: { DRDY }
[  191.158113][ T1103] ata1.00: error: { ABRT }
[  191.164762][ T1103] ata1.00: configured for UDMA/100
[  191.166536][ T1103] ata1: EH complete
[  191.174783][T10768] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1256'.
[  191.237944][T10770] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  191.239913][T10770] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  191.243611][T10770] vhci_hcd vhci_hcd.0: Device attached
[  191.504932][    T9] vhci_hcd: vhci_device speed not set
[  191.570648][    T9] usb 39-1: new full-speed USB device number 6 using vhci_hcd
[  192.114238][T10789] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1260'.
[  192.116943][T10789] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1260'.
[  192.119723][T10789] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1260'.
[  192.122938][T10789] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1260'.
[  192.403317][T10773] vhci_hcd: connection reset by peer
[  192.405633][ T1135] vhci_hcd: stop threads
[  192.406881][ T1135] vhci_hcd: release socket
[  192.408377][ T1135] vhci_hcd: disconnect device
[  192.613717][T10803] netlink: 'syz.1.1264': attribute type 4 has an invalid length.
[  193.088369][T10809] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1266'.
[  193.217082][T10811] FAULT_INJECTION: forcing a failure.
[  193.217082][T10811] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  193.221251][T10811] CPU: 2 UID: 0 PID: 10811 Comm: syz.4.1267 Not tainted 6.13.0-syzkaller #0
[  193.223749][T10811] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  193.226804][T10811] Call Trace:
[  193.227782][T10811]  <TASK>
[  193.228651][T10811]  dump_stack_lvl+0x16c/0x1f0
[  193.230024][T10811]  should_fail_ex+0x497/0x5b0
[  193.231422][T10811]  _copy_to_user+0x32/0xd0
[  193.232759][T10811]  simple_read_from_buffer+0xd0/0x160
[  193.234293][T10811]  proc_fail_nth_read+0x198/0x270
[  193.235744][T10811]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  193.237620][T10811]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  193.239291][T10811]  vfs_read+0x1df/0xbe0
[  193.240517][T10811]  ? __fget_files+0x1fc/0x3a0
[  193.241849][T10811]  ? __pfx___mutex_lock+0x10/0x10
[  193.243320][T10811]  ? __pfx_vfs_read+0x10/0x10
[  193.244665][T10811]  ? __fget_files+0x206/0x3a0
[  193.245985][T10811]  ksys_read+0x12b/0x250
[  193.247193][T10811]  ? __pfx_ksys_read+0x10/0x10
[  193.248588][T10811]  __do_fast_syscall_32+0x73/0x120
[  193.250103][T10811]  do_fast_syscall_32+0x32/0x80
[  193.251558][T10811]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  193.253401][T10811] RIP: 0023:0xf70ce579
[  193.254582][T10811] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  193.260091][T10811] RSP: 002b:00000000f50c0590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  193.262518][T10811] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f50c0620
[  193.264776][T10811] RDX: 000000000000000f RSI: 00000000f7403ff4 RDI: 0000000000000000
[  193.267047][T10811] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  193.269360][T10811] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  193.271658][T10811] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  193.273958][T10811]  </TASK>
[  193.642235][ T1412] ieee802154 phy0 wpan0: encryption failed: -22
[  193.644077][ T1412] ieee802154 phy1 wpan1: encryption failed: -22
[  195.169881][   T39] kauditd_printk_skb: 4 callbacks suppressed
[  195.169892][   T39] audit: type=1326 audit(1737422447.206:813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10853 comm="syz.0.1276" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  195.180920][   T39] audit: type=1326 audit(1737422447.206:814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10853 comm="syz.0.1276" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  195.187628][   T39] audit: type=1326 audit(1737422447.216:815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10853 comm="syz.0.1276" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  195.194325][   T39] audit: type=1326 audit(1737422447.216:816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10853 comm="syz.0.1276" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  195.200370][   T39] audit: type=1326 audit(1737422447.216:817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10853 comm="syz.0.1276" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  195.206971][   T39] audit: type=1326 audit(1737422447.216:818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10853 comm="syz.0.1276" exe="/syz-executor" sig=0 arch=40000003 syscall=345 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  195.213450][   T39] audit: type=1326 audit(1737422447.216:819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10853 comm="syz.0.1276" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  195.221475][   T39] audit: type=1326 audit(1737422447.216:820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10853 comm="syz.0.1276" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  195.234869][   T39] audit: type=1326 audit(1737422447.276:821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10853 comm="syz.0.1276" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  195.248866][   T39] audit: type=1326 audit(1737422447.276:822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10853 comm="syz.0.1276" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x7ffc0000
[  195.443862][T10874] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1277'.
[  195.446510][T10874] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1277'.
[  195.448967][T10874] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1277'.
[  195.452052][T10874] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1277'.
[  195.805392][T10882] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1278'.
[  196.066002][T10892] 9pnet_fd: Insufficient options for proto=fd
[  196.168836][T10898] IPVS: sync thread started: state = MASTER, mcast_ifn = geneve0, syncid = 0, id = 0
[  196.690567][    T9] vhci_hcd: vhci_device speed not set
[  197.219520][T10923] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1290'.
[  197.222229][T10923] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1290'.
[  197.224628][T10923] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1290'.
[  197.955112][T10945] syz.4.1294[10945] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  197.955165][T10945] syz.4.1294[10945] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  197.959622][T10946] syz.4.1294[10946] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  197.963507][T10945] syz.4.1294[10945] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  197.966951][T10946] syz.4.1294[10946] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  197.970117][T10946] syz.4.1294[10946] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  198.072540][T10950] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1294'.
[  198.359120][T10956] netlink: 180 bytes leftover after parsing attributes in process `syz.4.1296'.
[  198.860221][T10978] netlink: 'syz.0.1301': attribute type 12 has an invalid length.
[  200.428452][ T5938] Bluetooth: hci0: unexpected event 0x20 length: 8 > 7
[  200.618872][T11047] netlink: 'syz.3.1309': attribute type 4 has an invalid length.
[  200.946502][T11069] __nla_validate_parse: 12 callbacks suppressed
[  200.946513][T11069] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1312'.
[  201.072268][T11080] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1315'.
[  201.076971][T11080] netlink: 'syz.1.1315': attribute type 25 has an invalid length.
[  201.087318][T11080] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  201.089920][T11080] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  201.092693][T11080] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  201.095164][T11080] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  201.143552][T11083] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1316'.
[  202.739009][T11136] vlan2: entered allmulticast mode
[  202.740759][T11136] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode
[  202.747125][T11136] mac80211_hwsim hwsim9 wlan1: left allmulticast mode
[  202.938833][   T39] kauditd_printk_skb: 5 callbacks suppressed
[  202.938848][   T39] audit: type=1326 audit(1737422454.976:828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11142 comm="syz.1.1330" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  202.949218][   T39] audit: type=1326 audit(1737422454.976:829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11142 comm="syz.1.1330" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  202.957806][   T39] audit: type=1326 audit(1737422454.986:830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11142 comm="syz.1.1330" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf711e579 code=0x7ffc0000
[  202.965798][   T39] audit: type=1326 audit(1737422454.986:831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11142 comm="syz.1.1330" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  202.974341][   T39] audit: type=1326 audit(1737422454.986:832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11142 comm="syz.1.1330" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  202.984570][   T39] audit: type=1326 audit(1737422454.986:833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11142 comm="syz.1.1330" exe="/syz-executor" sig=0 arch=40000003 syscall=345 compat=1 ip=0xf711e579 code=0x7ffc0000
[  202.992488][   T39] audit: type=1326 audit(1737422454.986:834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11142 comm="syz.1.1330" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  202.999706][   T39] audit: type=1326 audit(1737422454.986:835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11142 comm="syz.1.1330" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  203.000719][T11145] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  203.008391][   T39] audit: type=1326 audit(1737422454.986:836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11142 comm="syz.1.1330" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf711e579 code=0x7ffc0000
[  203.018556][   T39] audit: type=1326 audit(1737422454.986:837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11142 comm="syz.1.1330" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  203.214973][T11164] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1337'.
[  203.262648][T11166] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.383493][T11166] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.408639][T11174] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1339'.
[  203.412627][T11174] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1339'.
[  203.449623][T11177] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1340'.
[  203.452811][T11177] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1340'.
[  203.455435][T11177] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1340'.
[  203.458804][T11177] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1340'.
[  203.500641][T11166] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.614999][T11166] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.709492][T11166] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  203.715652][T11166] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  203.720634][T11166] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  203.725535][T11166] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  203.948504][T11189] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  203.950389][T11189] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  203.957270][T11189] vhci_hcd vhci_hcd.0: Device attached
[  204.140589][   T57] vhci_hcd: vhci_device speed not set
[  204.200683][   T57] usb 37-1: new full-speed USB device number 3 using vhci_hcd
[  204.544281][T11206] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  204.692658][T11206] batman_adv: batadv0: Removing interface: batadv_slave_1
[  205.222905][T11190] vhci_hcd: connection reset by peer
[  205.225389][ T7866] vhci_hcd: stop threads
[  205.226859][ T7866] vhci_hcd: release socket
[  205.228282][ T7866] vhci_hcd: disconnect device
[  205.955410][T11231] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1354'.
[  206.254037][T11238] (unnamed net_device) (uninitialized): (slave gretap0): Device is not bonding slave
[  206.256880][T11238] (unnamed net_device) (uninitialized): option active_slave: invalid value (gretap0)
[  206.614285][T11265] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1363'.
[  206.644276][T11267] x_tables: duplicate underflow at hook 1
[  207.478311][T11279] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1366'.
[  207.918142][T11292] netlink: 'syz.0.1370': attribute type 12 has an invalid length.
[  207.969892][T11302] overlayfs: refusing to follow metacopy origin for (/file0)
[  208.275129][T11322] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1375'.
[  208.821657][T11342] Driver unsupported XDP return value 0 on prog  (id 317) dev N/A, expect packet loss!
[  208.834280][T11348] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1382'.
[  208.842184][T11342] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  209.340566][   T57] vhci_hcd: vhci_device speed not set
[  209.751022][T11386] vlan3: entered allmulticast mode
[  209.752841][T11386] mac80211_hwsim hwsim5 wlan1: entered allmulticast mode
[  209.757201][T11386] mac80211_hwsim hwsim5 wlan1: left allmulticast mode
[  209.876127][   T39] kauditd_printk_skb: 34 callbacks suppressed
[  209.876141][   T39] audit: type=1326 audit(1737422461.916:872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11388 comm="syz.1.1394" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  209.887294][   T39] audit: type=1326 audit(1737422461.926:873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11388 comm="syz.1.1394" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  209.895000][   T39] audit: type=1326 audit(1737422461.926:874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11388 comm="syz.1.1394" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf711e579 code=0x7ffc0000
[  209.901425][   T39] audit: type=1326 audit(1737422461.926:875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11388 comm="syz.1.1394" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  209.907212][   T39] audit: type=1326 audit(1737422461.926:876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11388 comm="syz.1.1394" exe="/syz-executor" sig=0 arch=40000003 syscall=345 compat=1 ip=0xf711e579 code=0x7ffc0000
[  209.913449][   T39] audit: type=1326 audit(1737422461.926:877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11388 comm="syz.1.1394" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  209.919926][   T39] audit: type=1326 audit(1737422461.926:878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11388 comm="syz.1.1394" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf711e579 code=0x7ffc0000
[  209.927227][   T39] audit: type=1326 audit(1737422461.926:879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11388 comm="syz.1.1394" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  209.933907][   T39] audit: type=1326 audit(1737422461.926:880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11388 comm="syz.1.1394" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  209.940030][   T39] audit: type=1326 audit(1737422461.926:881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11388 comm="syz.1.1394" exe="/syz-executor" sig=0 arch=40000003 syscall=365 compat=1 ip=0xf711e579 code=0x7ffc0000
[  210.094610][T11395] A link change request failed with some changes committed already. Interface bond_slave_0 may have been left with an inconsistent configuration, please check.
[  210.265747][T11404] netlink: 'syz.0.1398': attribute type 10 has an invalid length.
[  210.349545][T11412] netlink: 180 bytes leftover after parsing attributes in process `syz.3.1399'.
[  210.355148][T11412] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1399'.
[  210.358388][T11412] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1399'.
[  210.362567][T11412] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1399'.
[  210.807964][T11421] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1403'.
[  210.917126][ T5938] Bluetooth: hci4: unexpected event for opcode 0x0c1b
[  212.277478][T11461] __nla_validate_parse: 4 callbacks suppressed
[  212.277489][T11461] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1413'.
[  212.282208][T11461] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1413'.
[  212.284884][T11461] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1413'.
[  212.287545][T11461] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1413'.
[  212.665868][T11470] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1417'.
[  212.668678][T11470] nbd: must specify at least one socket
[  212.684157][T11470] netlink: 192 bytes leftover after parsing attributes in process `syz.4.1417'.
[  212.688374][T11470] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1417'.
[  214.426559][T11522] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1430'.
[  214.429237][T11522] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1430'.
[  214.431927][T11522] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1430'.
[  215.527142][T11605] netlink: 'syz.0.1445': attribute type 12 has an invalid length.
[  215.928647][T11633] =======================================================
[  215.928647][T11633] WARNING: The mand mount option has been deprecated and
[  215.928647][T11633]          and is ignored by this kernel. Remove the mand
[  215.928647][T11633]          option from the mount to silence this warning.
[  215.928647][T11633] =======================================================
[  215.939507][T11633] new mount options do not match the existing superblock, will be ignored
[  215.959357][T11630] cgroup: fork rejected by pids controller in /syz0
[  217.032672][T11846] netlink: 'syz.1.1462': attribute type 4 has an invalid length.
[  217.076916][T11848] macvtap1: entered promiscuous mode
[  217.079240][T11848] macvtap1: entered allmulticast mode
[  217.086180][T11848] vlan0: entered allmulticast mode
[  217.089919][T11848] veth0_vlan: entered allmulticast mode
[  217.102847][T11848] vlan0: entered promiscuous mode
[  217.107303][T11848] team0: Device macvtap1 failed to register rx_handler
[  217.114265][T11848] vlan0: left allmulticast mode
[  217.116292][T11848] veth0_vlan: left allmulticast mode
[  217.118509][T11848] vlan0: left promiscuous mode
[  217.269358][T11853] vlan3: entered allmulticast mode
[  217.272605][T11853] mac80211_hwsim hwsim5 wlan1: entered allmulticast mode
[  217.277832][T11853] mac80211_hwsim hwsim5 wlan1: left allmulticast mode
[  217.415242][T11859] syz_tun: left promiscuous mode
[  217.417407][T11859] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  218.078649][T11870] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[  218.080586][T11870] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  218.083490][T11870] vhci_hcd vhci_hcd.0: Device attached
[  218.271132][ T6117] vhci_hcd: vhci_device speed not set
[  218.330855][ T6117] usb 45-1: new full-speed USB device number 2 using vhci_hcd
[  218.599582][T11882] __nla_validate_parse: 7 callbacks suppressed
[  218.599592][T11882] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1473'.
[  219.248923][T11895] program syz.1.1477 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  219.417488][T11871] vhci_hcd: connection reset by peer
[  219.419286][   T12] vhci_hcd: stop threads
[  219.420616][   T12] vhci_hcd: release socket
[  219.422022][   T12] vhci_hcd: disconnect device
[  219.450542][   T39] kauditd_printk_skb: 5 callbacks suppressed
[  219.450558][   T39] audit: type=1326 audit(1737422471.486:887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11899 comm="syz.4.1478" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  219.458558][   T39] audit: type=1326 audit(1737422471.486:888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11899 comm="syz.4.1478" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  219.465313][   T39] audit: type=1326 audit(1737422471.486:889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11899 comm="syz.4.1478" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  219.475237][   T39] audit: type=1326 audit(1737422471.486:890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11899 comm="syz.4.1478" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  219.484517][   T39] audit: type=1326 audit(1737422471.486:891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11899 comm="syz.4.1478" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  219.493441][   T39] audit: type=1326 audit(1737422471.486:892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11899 comm="syz.4.1478" exe="/syz-executor" sig=0 arch=40000003 syscall=345 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  219.501710][   T39] audit: type=1326 audit(1737422471.496:893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11899 comm="syz.4.1478" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  219.508956][   T39] audit: type=1326 audit(1737422471.496:894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11899 comm="syz.4.1478" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  219.522341][   T39] audit: type=1326 audit(1737422471.496:895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11899 comm="syz.4.1478" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  219.528552][   T39] audit: type=1326 audit(1737422471.496:896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11899 comm="syz.4.1478" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  219.609726][T11911] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1481'.
[  220.291912][T11931] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1485'.
[  220.388658][T11940] (unnamed net_device) (uninitialized): (slave gretap0): Device is not bonding slave
[  220.391892][T11940] (unnamed net_device) (uninitialized): option active_slave: invalid value (gretap0)
[  220.487936][T11954] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1494'.
[  220.932401][T11977] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1501'.
[  221.804016][T11997] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1507'.
[  222.044649][T12007] netlink: 'syz.3.1511': attribute type 12 has an invalid length.
[  222.759848][T12057] xt_TPROXY: Can be used only with -p tcp or -p udp
[  223.485480][ T6117] vhci_hcd: vhci_device speed not set
[  223.514947][T12085] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1521'.
[  223.553179][T12093] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1524'.
[  223.581966][T12098] netlink: 'syz.0.1525': attribute type 4 has an invalid length.
[  223.684336][T12110] vlan2: entered allmulticast mode
[  223.685863][T12110] mac80211_hwsim hwsim26 wlan1: entered allmulticast mode
[  223.690017][T12110] mac80211_hwsim hwsim26 wlan1: left allmulticast mode
[  224.559776][T12159] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1532'.
[  226.040793][T12215] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1538'.
[  226.654893][T12241] tmpfs: Unknown parameter 'usrquota	���0ZG��ʧ'
[  227.641907][T12259] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1548'.
[  229.040037][T12300] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1556'.
[  229.483648][T12327] (unnamed net_device) (uninitialized): (slave gretap0): Device is not bonding slave
[  229.486780][T12327] (unnamed net_device) (uninitialized): option active_slave: invalid value (gretap0)
[  230.539302][T12363] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1573'.
[  231.223890][T12396] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  231.225803][T12396] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  231.228130][T12396] vhci_hcd vhci_hcd.0: Device attached
[  231.609468][    T9] vhci_hcd: vhci_device speed not set
[  231.725778][    T9] usb 43-1: new full-speed USB device number 7 using vhci_hcd
[  232.492683][T12397] vhci_hcd: connection reset by peer
[  232.497669][   T12] vhci_hcd: stop threads
[  232.499095][   T12] vhci_hcd: release socket
[  232.502002][   T12] vhci_hcd: disconnect device
[  232.578756][T12426] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1587'.
[  233.167061][T12443] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  233.167174][  T832] IPVS: starting estimator thread 0...
[  233.261204][T12447] IPVS: using max 36 ests per chain, 86400 per kthread
[  233.768161][T12453] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1595'.
[  233.920559][T12455] netlink: 'syz.4.1596': attribute type 12 has an invalid length.
[  234.049000][T12460] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1597'.
[  234.478365][T12479] overlay: Unknown parameter 'uid<00000000000000000000'
[  234.483072][T12479] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1599'.
[  234.997251][T12486] mmap: syz.4.1602 (12486) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  235.615231][T12501] tmpfs: Unknown parameter 'usrquota	���0ZG��ʧ'
[  235.659992][T12503] macvtap1: entered promiscuous mode
[  235.669913][T12503] macvtap1: entered allmulticast mode
[  235.672455][T12503] vlan0: entered allmulticast mode
[  235.674070][T12503] veth0_vlan: entered allmulticast mode
[  235.675679][T12503] vlan0: entered promiscuous mode
[  235.678818][T12503] team0: Device macvtap1 failed to register rx_handler
[  235.685576][T12503] vlan0: left allmulticast mode
[  235.687013][T12503] veth0_vlan: left allmulticast mode
[  235.688545][T12503] vlan0: left promiscuous mode
[  236.085155][T12518] x_tables: ip6_tables: TCPOPTSTRIP target: only valid for protocol 6
[  236.108084][T12513] netlink: 180 bytes leftover after parsing attributes in process `syz.3.1610'.
[  236.112009][T12513] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1610'.
[  236.114611][T12513] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1610'.
[  236.117187][T12513] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1610'.
[  236.648102][T12530] netlink: 180 bytes leftover after parsing attributes in process `syz.1.1614'.
[  236.652661][T12530] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1614'.
[  236.655158][T12530] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1614'.
[  236.658063][T12530] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1614'.
[  236.850651][    T9] vhci_hcd: vhci_device speed not set
[  237.129249][T12534] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1615'.
[  237.132358][T12534] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1615'.
[  237.713976][T12547] macvtap1: entered promiscuous mode
[  237.715966][T12547] macvtap1: entered allmulticast mode
[  238.464834][T12552] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.516586][T12552] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.636045][T12552] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.697872][T12552] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.780674][T12552] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  238.788993][T12552] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  238.793979][T12552] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  238.802165][T12552] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  240.146590][T12578] netlink: 'syz.3.1625': attribute type 12 has an invalid length.
[  240.837770][T12609] tmpfs: Unknown parameter 'usrquota(��ٹ�>�^���@�WՌ~�S�"V���So~�pca�UE������#�Wg�c�w��3�#�U+W�()�-�r�Q��0'
[  241.164802][T12616] program syz.4.1632 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  241.197408][T12614] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  242.510338][   T39] kauditd_printk_skb: 7 callbacks suppressed
[  242.510348][   T39] audit: type=1326 audit(1737422494.546:904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12635 comm="syz.1.1639" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  242.540860][   T39] audit: type=1326 audit(1737422494.546:905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12635 comm="syz.1.1639" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  242.546870][   T39] audit: type=1326 audit(1737422494.566:906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12635 comm="syz.1.1639" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf711e579 code=0x7ffc0000
[  242.564613][   T39] audit: type=1326 audit(1737422494.566:907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12635 comm="syz.1.1639" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  242.571295][   T39] audit: type=1326 audit(1737422494.566:908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12635 comm="syz.1.1639" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  242.578202][   T39] audit: type=1326 audit(1737422494.566:909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12635 comm="syz.1.1639" exe="/syz-executor" sig=0 arch=40000003 syscall=345 compat=1 ip=0xf711e579 code=0x7ffc0000
[  242.584891][   T39] audit: type=1326 audit(1737422494.566:910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12635 comm="syz.1.1639" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  242.593506][   T39] audit: type=1326 audit(1737422494.566:911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12635 comm="syz.1.1639" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  242.599623][   T39] audit: type=1326 audit(1737422494.576:912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12635 comm="syz.1.1639" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf711e579 code=0x7ffc0000
[  242.606909][   T39] audit: type=1326 audit(1737422494.576:913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12635 comm="syz.1.1639" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  242.960587][T12661] random: crng reseeded on system resumption
[  243.171466][T12640] __nla_validate_parse: 6 callbacks suppressed
[  243.171478][T12640] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1640'.
[  243.176505][T12640] bond1: left allmulticast mode
[  243.178000][T12640] bond1: left promiscuous mode
[  243.179555][T12640] bridge0: port 3(bond1) entered disabled state
[  243.184760][T12640] bridge_slave_1: left allmulticast mode
[  243.186358][T12640] bridge_slave_1: left promiscuous mode
[  243.188044][T12640] bridge0: port 2(bridge_slave_1) entered disabled state
[  243.191327][T12640] bridge_slave_0: left allmulticast mode
[  243.192913][T12640] bridge_slave_0: left promiscuous mode
[  243.194648][T12640] bridge0: port 1(bridge_slave_0) entered disabled state
[  243.359267][T12664] devpts: called with bogus options
[  243.672571][T12674] netlink: 'syz.4.1647': attribute type 4 has an invalid length.
[  243.746874][T12680] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1649'.
[  243.816694][T12676] netlink: 180 bytes leftover after parsing attributes in process `syz.1.1645'.
[  243.820035][T12676] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1645'.
[  243.823060][T12676] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1645'.
[  243.825558][T12676] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1645'.
[  244.965672][T12697] netlink: 'syz.3.1655': attribute type 4 has an invalid length.
[  245.432815][T12712] random: crng reseeded on system resumption
[  245.780194][T12718] vlan3: entered allmulticast mode
[  245.782341][T12718] mac80211_hwsim hwsim5 wlan1: entered allmulticast mode
[  245.786356][T12718] mac80211_hwsim hwsim5 wlan1: left allmulticast mode
[  246.123728][T12731] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1663'.
[  246.372197][T12740] A link change request failed with some changes committed already. Interface bond_slave_0 may have been left with an inconsistent configuration, please check.
[  246.836791][T12762] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1673'.
[  246.936466][T12767] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  246.938369][T12767] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  246.940728][T12767] vhci_hcd vhci_hcd.0: Device attached
[  247.820694][ T6117] vhci_hcd: vhci_device speed not set
[  247.825214][T12783] xt_TPROXY: Can be used only with -p tcp or -p udp
[  247.881466][ T6117] usb 43-1: new full-speed USB device number 8 using vhci_hcd
[  247.940686][   T30] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  248.110568][   T30] usb 6-1: Using ep0 maxpacket: 8
[  248.133410][   T30] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  248.135724][   T30] usb 6-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  248.138622][   T30] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  248.142395][   T30] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  248.248097][T12768] vhci_hcd: connection reset by peer
[  248.252118][ T1142] vhci_hcd: stop threads
[  248.253983][ T1142] vhci_hcd: release socket
[  248.258284][ T1142] vhci_hcd: disconnect device
[  249.647045][T12812] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1686'.
[  249.961702][T12818] (unnamed net_device) (uninitialized): (slave gretap0): Device is not bonding slave
[  249.964574][T12818] (unnamed net_device) (uninitialized): option active_slave: invalid value (gretap0)
[  250.693442][   T25] usb 6-1: USB disconnect, device number 8
[  250.787921][T12828] netlink: 180 bytes leftover after parsing attributes in process `syz.3.1692'.
[  250.790941][T12828] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1692'.
[  250.793458][T12828] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1692'.
[  250.796607][T12828] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1692'.
[  251.600946][  T832] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  251.750986][  T832] usb 9-1: Using ep0 maxpacket: 16
[  251.756010][  T832] usb 9-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  251.759020][  T832] usb 9-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  251.762943][  T832] usb 9-1: Product: syz
[  251.764811][  T832] usb 9-1: Manufacturer: syz
[  251.766677][  T832] usb 9-1: SerialNumber: syz
[  251.769767][  T832] usb 9-1: config 0 descriptor??
[  252.499935][ T1014] usb 9-1: USB disconnect, device number 3
[  252.524672][T12868] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1704'.
[  252.582536][T12874] x_tables: ip6_tables: TCPOPTSTRIP target: only valid for protocol 6
[  252.636836][T12872] netlink: 'syz.4.1705': attribute type 12 has an invalid length.
[  252.822286][T12888] netlink: 180 bytes leftover after parsing attributes in process `syz.1.1709'.
[  252.824931][T12888] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1709'.
[  252.827462][T12888] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1709'.
[  252.830019][T12888] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1709'.
[  253.000665][ T6117] vhci_hcd: vhci_device speed not set
[  253.109588][T12911] vivid-004: disconnect
[  253.661660][T12919] xt_TPROXY: Can be used only with -p tcp or -p udp
[  253.823893][T12923] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  253.833806][T12903] vivid-004: reconnect
[  254.342690][T12928] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  254.375956][T12930] netlink: 'syz.0.1718': attribute type 1 has an invalid length.
[  254.721470][T12937] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  254.767519][T12941] __nla_validate_parse: 1 callbacks suppressed
[  254.767530][T12941] netlink: 180 bytes leftover after parsing attributes in process `syz.1.1721'.
[  254.772304][T12941] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1721'.
[  254.775121][T12941] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1721'.
[  254.777657][T12941] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1721'.
[  255.083046][ T1412] ieee802154 phy0 wpan0: encryption failed: -22
[  255.845761][T12963] netlink: 'syz.3.1727': attribute type 21 has an invalid length.
[  256.062738][T12971] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[  256.065024][T12971] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  256.067839][T12971] vhci_hcd vhci_hcd.0: Device attached
[  256.271133][  T832] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  256.335052][ T6117] vhci_hcd: vhci_device speed not set
[  256.410950][ T6117] usb 45-1: new full-speed USB device number 3 using vhci_hcd
[  256.420845][  T832] usb 6-1: Using ep0 maxpacket: 8
[  256.425885][  T832] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  256.430871][  T832] usb 6-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  256.433761][  T832] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  256.445811][  T832] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  257.264147][T12972] vhci_hcd: connection reset by peer
[  257.267488][ T1142] vhci_hcd: stop threads
[  257.270031][ T1142] vhci_hcd: release socket
[  257.276526][ T1142] vhci_hcd: disconnect device
[  257.476686][T13002] netlink: 'syz.0.1740': attribute type 4 has an invalid length.
[  257.478896][T13002] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1740'.
[  257.533863][T13006] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  258.441006][T13027] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1749'.
[  258.443659][T13027] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1749'.
[  258.446188][T13027] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1749'.
[  258.448851][T13027] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1749'.
[  258.901618][   T25] usb 6-1: USB disconnect, device number 9
[  259.042064][T13047] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1753'.
[  259.067834][T13051] x_tables: ip6_tables: TCPOPTSTRIP target: only valid for protocol 6
[  259.728886][T13069] netlink: 'syz.0.1760': attribute type 12 has an invalid length.
[  260.092664][T13088] usb usb4: usbfs: interface 0 claimed by hub while 'syz.4.1762' sets config #-1
[  260.266011][T13097] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  260.347354][T13101] netlink: 'syz.1.1764': attribute type 4 has an invalid length.
[  260.418598][T13103] vlan3: entered allmulticast mode
[  260.421603][T13103] mac80211_hwsim hwsim5 wlan1: entered allmulticast mode
[  260.425530][T13103] mac80211_hwsim hwsim5 wlan1: left allmulticast mode
[  260.723636][T13106] __nla_validate_parse: 2 callbacks suppressed
[  260.723648][T13106] netlink: 180 bytes leftover after parsing attributes in process `syz.1.1766'.
[  260.728047][T13106] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1766'.
[  260.730658][T13106] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1766'.
[  260.733177][T13106] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1766'.
[  261.480138][T13118] netlink: 180 bytes leftover after parsing attributes in process `syz.4.1769'.
[  261.484208][T13118] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1769'.
[  261.487409][T13118] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1769'.
[  261.490091][T13118] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1769'.
[  261.560562][ T6117] vhci_hcd: vhci_device speed not set
[  261.641183][T13124] xt_TPROXY: Can be used only with -p tcp or -p udp
[  262.224103][ T5292] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  262.439197][T13140] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1776'.
[  262.508723][T13142] loop3: detected capacity change from 0 to 524287999
[  262.517051][    C1] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  262.517119][    C1] Buffer I/O error on dev loop3, logical block 0, async page read
[  262.518580][    C1] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  262.518597][    C1] Buffer I/O error on dev loop3, logical block 0, async page read
[  262.519898][    C1] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  262.519912][    C1] Buffer I/O error on dev loop3, logical block 0, async page read
[  262.520032][    C1] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  262.538293][    C1] Buffer I/O error on dev loop3, logical block 0, async page read
[  262.543344][    C3] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  262.545987][    C3] Buffer I/O error on dev loop3, logical block 0, async page read
[  262.548406][    C1] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  262.551137][    C1] Buffer I/O error on dev loop3, logical block 0, async page read
[  262.553984][    C3] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  262.556812][    C3] Buffer I/O error on dev loop3, logical block 0, async page read
[  262.559309][    C3] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  262.562231][    C3] Buffer I/O error on dev loop3, logical block 0, async page read
[  262.565927][T13142] ldm_validate_partition_table(): Disk read failed.
[  262.573491][    C3] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  262.576122][    C3] Buffer I/O error on dev loop3, logical block 0, async page read
[  262.578487][    C3] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  262.581381][    C3] Buffer I/O error on dev loop3, logical block 0, async page read
[  262.584613][T13142] Dev loop3: unable to read RDB block 0
[  262.587977][T13142]  loop3: unable to read partition table
[  262.589763][T13142] loop_reread_partitions: partition scan of loop3 (3��x��C�

) failed (rc=-5)
[  262.602966][ T5353] ldm_validate_partition_table(): Disk read failed.
[  262.607113][ T5353] Dev loop3: unable to read RDB block 0
[  262.614062][ T5353]  loop3: unable to read partition table
[  263.287037][T13164] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1782'.
[  263.689240][T13175] syzkaller1: entered promiscuous mode
[  263.691586][T13175] syzkaller1: entered allmulticast mode
[  265.768024][T13266] netlink: 'syz.1.1803': attribute type 21 has an invalid length.
[  265.777884][T13268] __nla_validate_parse: 11 callbacks suppressed
[  265.777894][T13268] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1804'.
[  265.807424][T13272] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1806'.
[  266.798187][T13295] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1811'.
[  266.849575][T13297] netlink: 'syz.0.1812': attribute type 4 has an invalid length.
[  266.917011][   T39] kauditd_printk_skb: 2211 callbacks suppressed
[  266.917022][   T39] audit: type=1326 audit(1737422518.956:3125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13302 comm="syz.4.1815" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  266.929172][T13301] vlan0: entered allmulticast mode
[  266.932308][T13301] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode
[  266.932754][   T39] audit: type=1326 audit(1737422518.966:3126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13302 comm="syz.4.1815" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  266.943732][T13301] mac80211_hwsim hwsim3 wlan1: left allmulticast mode
[  266.944069][   T39] audit: type=1326 audit(1737422518.966:3127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13302 comm="syz.4.1815" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  266.952885][   T39] audit: type=1326 audit(1737422518.966:3128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13302 comm="syz.4.1815" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  266.959008][   T39] audit: type=1326 audit(1737422518.966:3129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13302 comm="syz.4.1815" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  266.960418][T13307] netlink: 180 bytes leftover after parsing attributes in process `syz.4.1817'.
[  266.967768][   T39] audit: type=1326 audit(1737422518.966:3130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13302 comm="syz.4.1815" exe="/syz-executor" sig=0 arch=40000003 syscall=345 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  266.968708][T13307] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1817'.
[  266.974190][   T39] audit: type=1326 audit(1737422518.966:3131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13302 comm="syz.4.1815" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  266.974213][   T39] audit: type=1326 audit(1737422518.966:3132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13302 comm="syz.4.1815" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  266.974228][   T39] audit: type=1326 audit(1737422518.966:3133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13302 comm="syz.4.1815" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  266.974245][   T39] audit: type=1326 audit(1737422518.966:3134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13302 comm="syz.4.1815" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000
[  267.002360][T13307] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1817'.
[  267.004913][T13307] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1817'.
[  267.184599][T13305] netlink: 180 bytes leftover after parsing attributes in process `syz.1.1816'.
[  267.188036][T13305] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1816'.
[  267.192217][T13305] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1816'.
[  268.201563][T13337] xt_TPROXY: Can be used only with -p tcp or -p udp
[  269.338822][T13373] (unnamed net_device) (uninitialized): (slave gretap0): Device is not bonding slave
[  269.342588][T13373] (unnamed net_device) (uninitialized): option active_slave: invalid value (gretap0)
[  270.350886][T13422] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[  270.352834][T13422] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  270.355138][T13422] vhci_hcd vhci_hcd.0: Device attached
[  270.530889][   T63] vhci_hcd: vhci_device speed not set
[  270.591063][   T63] usb 45-1: new full-speed USB device number 4 using vhci_hcd
[  271.218302][T13450] __nla_validate_parse: 13 callbacks suppressed
[  271.218313][T13450] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1855'.
[  271.490972][T13423] vhci_hcd: connection reset by peer
[  271.492840][ T1142] vhci_hcd: stop threads
[  271.494913][ T1142] vhci_hcd: release socket
[  271.496358][ T1142] vhci_hcd: disconnect device
[  271.625505][T13482] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1864'.
[  271.982043][T13503] netlink: 'syz.3.1868': attribute type 12 has an invalid length.
[  272.204177][T13526] FAULT_INJECTION: forcing a failure.
[  272.204177][T13526] name failslab, interval 1, probability 0, space 0, times 0
[  272.208536][T13526] CPU: 2 UID: 0 PID: 13526 Comm: syz.1.1873 Not tainted 6.13.0-syzkaller #0
[  272.211887][T13526] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  272.215366][T13526] Call Trace:
[  272.216332][T13526]  <TASK>
[  272.217254][T13526]  dump_stack_lvl+0x16c/0x1f0
[  272.218611][T13526]  should_fail_ex+0x497/0x5b0
[  272.219974][T13526]  ? fs_reclaim_acquire+0xae/0x150
[  272.221450][T13526]  should_failslab+0xc2/0x120
[  272.222806][T13526]  __kmalloc_noprof+0xce/0x4f0
[  272.224214][T13526]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  272.225824][T13526]  ? tomoyo_realpath_from_path+0xbf/0x710
[  272.228068][T13526]  tomoyo_realpath_from_path+0xbf/0x710
[  272.229793][T13526]  ? tomoyo_path_number_perm+0x235/0x5b0
[  272.231412][T13526]  tomoyo_path_number_perm+0x248/0x5b0
[  272.233333][T13526]  ? tomoyo_path_number_perm+0x235/0x5b0
[  272.235009][T13526]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  272.236743][T13526]  ? __pfx_lock_release+0x10/0x10
[  272.238196][T13526]  ? trace_lock_acquire+0x14e/0x1f0
[  272.239682][T13526]  ? lock_acquire+0x2f/0xb0
[  272.240975][T13526]  ? __fget_files+0x40/0x3a0
[  272.242306][T13526]  ? __fget_files+0x206/0x3a0
[  272.243652][T13526]  security_file_ioctl_compat+0x9b/0x240
[  272.245243][T13526]  __do_compat_sys_ioctl+0x4e/0x2c0
[  272.247034][T13526]  __do_fast_syscall_32+0x73/0x120
[  272.249093][T13526]  do_fast_syscall_32+0x32/0x80
[  272.250717][T13526]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  272.252594][T13526] RIP: 0023:0xf711e579
[  272.253767][T13526] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  272.259285][T13526] RSP: 002b:00000000f511055c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  272.261701][T13526] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000000007cb
[  272.264527][T13526] RDX: 0000000020000980 RSI: 0000000000000000 RDI: 0000000000000000
[  272.267643][T13526] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  272.270202][T13526] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  272.272450][T13526] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  272.274668][T13526]  </TASK>
[  272.280067][T13526] ERROR: Out of memory at tomoyo_realpath_from_path.
[  272.550827][    T9] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  272.702042][    T9] usb 6-1: Using ep0 maxpacket: 8
[  272.707540][    T9] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  272.709928][    T9] usb 6-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  272.712971][    T9] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  272.720518][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  272.790521][ T1014] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  272.960523][ T1014] usb 9-1: Using ep0 maxpacket: 8
[  272.964105][ T1014] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[  272.967278][ T1014] usb 9-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  272.971487][ T1014] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  272.974560][ T1014] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  273.663666][T13557] netlink: 'syz.0.1878': attribute type 4 has an invalid length.
[  273.701146][T13559] netlink: 72 bytes leftover after parsing attributes in process `syz.0.1879'.
[  273.742609][   T56] usb 6-1: USB disconnect, device number 10
[  273.793703][T13567] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1881'.
[  273.800575][ T5938] Bluetooth: hci4: command 0x041b tx timeout
[  274.185542][T13581] 
[  274.186283][T13581] =============================
[  274.187691][T13581] [ BUG: Invalid wait context ]
[  274.189082][T13581] 6.13.0-syzkaller #0 Not tainted
[  274.190605][T13581] -----------------------------
[  274.192655][T13581] iou-wrk-13579/13581 is trying to lock:
[  274.195491][T13581] ffff88802207e5d8 (&sighand->siglock){-.-.}-{3:3}, at: __lock_task_sighand+0xc2/0x340
[  274.198249][T13581] other info that might help us debug this:
[  274.199945][T13581] context-{5:5}
[  274.200959][T13581] 3 locks held by iou-wrk-13579/13581:
[  274.202470][T13581]  #0: ffff888023efb180 (&wq->lock){+.+.}-{2:2}, at: io_wq_worker+0x3b1/0xdf0
[  274.205030][T13581]  #1: ffffffff8ddbad40 (rcu_read_lock){....}-{1:3}, at: bpf_trace_run2+0x1c2/0x590
[  274.207350][T13581]  #2: ffffffff8ddbad40 (rcu_read_lock){....}-{1:3}, at: __lock_task_sighand+0x3f/0x340
[  274.210127][T13581] stack backtrace:
[  274.211202][T13581] CPU: 3 UID: 0 PID: 13581 Comm: iou-wrk-13579 Not tainted 6.13.0-syzkaller #0
[  274.213777][T13581] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  274.216818][T13581] Call Trace:
[  274.217779][T13581]  <TASK>
[  274.218635][T13581]  dump_stack_lvl+0x116/0x1f0
[  274.219992][T13581]  __lock_acquire+0x878/0x3c40
[  274.221359][T13581]  ? __pfx___lock_acquire+0x10/0x10
[  274.222873][T13581]  ? __pfx___lock_acquire+0x10/0x10
[  274.224381][T13581]  lock_acquire.part.0+0x11b/0x380
[  274.225845][T13581]  ? __lock_task_sighand+0xc2/0x340
[  274.227354][T13581]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  274.228953][T13581]  ? rcu_is_watching+0x12/0xc0
[  274.230340][T13581]  ? trace_lock_acquire+0x14e/0x1f0
[  274.231862][T13581]  ? trace_lock_acquire+0x14e/0x1f0
[  274.233381][T13581]  ? __lock_task_sighand+0xc2/0x340
[  274.234880][T13581]  ? lock_acquire+0x2f/0xb0
[  274.236198][T13581]  ? __lock_task_sighand+0xc2/0x340
[  274.237688][T13581]  _raw_spin_lock_irqsave+0x3a/0x60
[  274.239209][T13581]  ? __lock_task_sighand+0xc2/0x340
[  274.240744][T13581]  __lock_task_sighand+0xc2/0x340
[  274.242229][T13581]  group_send_sig_info+0x290/0x300
[  274.243713][T13581]  ? __pfx_group_send_sig_info+0x10/0x10
[  274.245316][T13581]  ? __pfx___lock_acquire+0x10/0x10
[  274.246810][T13581]  ? __pfx_mark_lock+0x10/0x10
[  274.248192][T13581]  bpf_send_signal_common+0x415/0x520
[  274.249722][T13581]  ? __pfx_bpf_send_signal_common+0x10/0x10
[  274.251455][T13581]  ? trace_lock_acquire+0x14e/0x1f0
[  274.252946][T13581]  ? bpf_trace_run2+0x1c2/0x590
[  274.254346][T13581]  bpf_send_signal+0x1d/0x30
[  274.255706][T13581]  bpf_prog_631417f49dd64198+0x25/0x48
[  274.257265][T13581]  bpf_trace_run2+0x231/0x590
[  274.258621][T13581]  ? __pfx_bpf_trace_run2+0x10/0x10
[  274.260121][T13581]  ? __lock_acquire+0x15a9/0x3c40
[  274.261584][T13581]  ? __pfx___bpf_trace_contention_end+0x10/0x10
[  274.263374][T13581]  __traceiter_contention_end+0x5a/0xa0
[  274.264957][T13581]  trace_contention_end.constprop.0+0xf0/0x170
[  274.266703][T13581]  __pv_queued_spin_lock_slowpath+0x27e/0xc90
[  274.268450][T13581]  ? io_worker_handle_work+0x860/0x1680
[  274.270048][T13581]  ? __pfx_lock_release+0x10/0x10
[  274.271521][T13581]  ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[  274.273405][T13581]  ? lock_acquire.part.0+0x11b/0x380
[  274.274922][T13581]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  274.276538][T13581]  do_raw_spin_lock+0x210/0x2c0
[  274.277939][T13581]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  274.279491][T13581]  ? lock_acquire+0x2f/0xb0
[  274.280797][T13581]  ? io_wq_worker+0x3b1/0xdf0
[  274.282158][T13581]  io_wq_worker+0x3b1/0xdf0
[  274.283479][T13581]  ? __pfx_io_wq_worker+0x10/0x10
[  274.284938][T13581]  ? ret_from_fork+0x23/0x80
[  274.286287][T13581]  ? __pfx_lock_release+0x10/0x10
[  274.287746][T13581]  ? do_raw_spin_lock+0x12d/0x2c0
[  274.289191][T13581]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  274.290742][T13581]  ? __pfx_io_wq_worker+0x10/0x10
[  274.292231][T13581]  ret_from_fork+0x45/0x80
[  274.293519][T13581]  ? __pfx_io_wq_worker+0x10/0x10
[  274.294978][T13581]  ret_from_fork_asm+0x1a/0x30
[  274.296375][T13581]  </TASK>
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  274.864364][T13578] syz_tun (unregistering): left allmulticast mode
[  274.864618][   T56] usb 9-1: USB disconnect, device number 4
[  274.866236][T13578] syz_tun (unregistering): left promiscuous mode
[  274.869907][T13578] bridge0: port 3(syz_tun) entered disabled state
[  275.711979][   T63] vhci_hcd: vhci_device speed not set

VM DIAGNOSIS:
01:22:06  Registers:
info registers vcpu 0

CPU#0
RAX=000000000007ffff RBX=0000000000000001 RCX=ffffc90027da3000 RDX=0000000000080000
RSI=ffffffff815dc788 RDI=0000000000000007 RBP=0000000000000012 RSP=ffffc90003387368
R8 =0000000000000007 R9 =0000000000000040 R10=0000000000000012 R11=0000000000000000
R12=ffff8880226f0000 R13=0000000000000012 R14=0000000000000001 R15=ffffc900033874a8
RIP=ffffffff81994dd6 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f72718ff CR3=000000004eaf6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000c5fdec RBX=0000000000000001 RCX=ffffffff8b1a8899 RDX=ffffed10056a6fee
RSI=ffffffff8bb19a40 RDI=ffffffff81702c79 RBP=ffffed10039dc910 RSP=ffffc9000047fe08
R8 =0000000000000000 R9 =ffffed10056a6fed R10=ffff88802b537f6b R11=0000000000000001
R12=0000000000000001 R13=ffff88801cee4880 R14=ffffffff901d29d0 R15=0000000000000000
RIP=ffffffff8b1a9c7f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f51e48e1 CR3=000000004eaf6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=ffff888021b78ffa RCX=ffffffff8656c785 RDX=ffff88801f582440
RSI=0000000000000000 RDI=0000000000000003 RBP=0000000000000001 RSP=ffffc90000548b70
R8 =0000000000000003 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000b8f
R12=0000000000000001 R13=0000000000004e20 R14=ffff888021b78ff0 R15=0000000000000001
RIP=ffffffff8656cb1a RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002001c000 CR3=000000005fd7e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000037 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85145395 RDI=ffffffff9a66e200 RBP=ffffffff9a66e1c0 RSP=ffffc90006107200
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=000000002d756f69
R12=0000000000000000 R13=0000000000000037 R14=ffffffff85145330 R15=0000000000000000
RIP=ffffffff851453bf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b700000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c3704b5 CR3=000000005fd7e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000