last executing test programs:

8.300337373s ago: executing program 1 (id=171):
epoll_create1(0x0)
r0 = getpid()
socketpair$unix(0x1, 0x2, 0x0, 0x0)
mknod$loop(0x0, 0x0, 0x1)
syz_usbip_server_init(0x4)
ioctl(0xffffffffffffffff, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0500000004000000ff0f00000200000000000000b3f735ac085203366eabe8ddddff1a342e9295db2545ca90d64b4d74d617495fe837676c72af671059d5317c1c3ddfdde7ebdd74ed0d4326a28706039408044db9f7e94ac9778d6038403b772c9158c3a3c7fee2f9417db1fa3114f8217ef3272b5d26e348d61073d60f1cffaf7d274a3722e5d44c9ea93af0ee8b6082034a8b0f622bec87f8802f859fc0c02b00c64e4624d2", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r2 = socket(0x25, 0x1, 0x0)
setsockopt$TIPC_IMPORTANCE(r2, 0x10f, 0x7f, &(0x7f00000000c0), 0x4)
r3 = openat$autofs(0xffffff9c, &(0x7f0000000380), 0xe8980dfcf04574f6, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r3, 0xc0189376, &(0x7f00000003c0)={{0x1, 0x1, 0x18, r1, {0x1}}, './file0\x00'})
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(r0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
getpid()
mkdir(&(0x7f0000000140)='./file0\x00', 0xc)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000001000)=ANY=[@ANYBLOB='trans=virtio,noextend,access=any,cache=fscache,version=9p2000.u'])
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)={[{@metacopy_on, 0x3a}, {@metacopy_off}, {@xino_off}], [{@hash}, {@permit_directio}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@euid_eq}], 0x2f})
r5 = open(&(0x7f0000000380)='./file0\x00', 0x0, 0x0)
getdents(r5, &(0x7f0000000180)=""/98, 0x62)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000002580)=@newtaction={0x94, 0x30, 0x1, 0x0, 0x0, {0x7a}, [{0x80, 0x1, [@m_ife={0x7c, 0x14, 0x0, 0x0, {{0x8}, {0x28, 0x2, 0x0, 0x1, [@TCA_IFE_METALST={0x18, 0x6, [@IFE_META_SKBMARK={0x8, 0x1, @val=0xffffff01}, @IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_SKBMARK={0x8, 0x1, @val=0x3}]}, @TCA_IFE_SMAC={0xa, 0x4, @multicast}]}, {0x30, 0x6, "2bd89d29db9cd3d3421247653117cc1ee73f9f117b1a7f08d6b97561bede0c5e5bb2d516bb47f67acc1cd3a1"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x94}}, 0x0)

7.646447415s ago: executing program 3 (id=174):
modify_ldt$write(0x1, &(0x7f0000000040)={0xc}, 0x10)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x62000000, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = getpid()
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d00000067000000050000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000500)=@bpf_tracing={0x1a, 0x5, &(0x7f0000000400)=@raw=[@map_fd, @jmp={0x5, 0x1, 0x3, 0x6, 0x0, 0x50, 0x8}, @map_fd={0x18, 0x3}], &(0x7f0000000640)='GPL\x00', 0x6, 0x49, &(0x7f0000000680)=""/73, 0x0, 0x2, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, &(0x7f0000000700)={0x6, 0x4}, 0x8, 0x10, &(0x7f0000000740)={0x2, 0x7, 0x1, 0x80}, 0x10, 0x2ccaa, 0xffffffffffffffff, 0x7, 0x0, &(0x7f0000000cc0)=[{0x2, 0x4, 0xd, 0xb}, {0x4, 0x4, 0x207, 0x4}, {0x3, 0x5, 0x5, 0xa}, {0x1, 0x2, 0x7, 0x3}, {0x2, 0x5, 0xa}, {0x3, 0x4, 0xb, 0x342941b6c525dbcf}, {0x3, 0x1003, 0x3, 0x9}], 0x10, 0x3, @void, @value}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=@newspdinfo={0x14, 0x24, 0x21}, 0x14}}, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x14, &(0x7f0000000900)=ANY=[@ANYBLOB="1800000000000700000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r6, 0xfca804a0, 0xe, 0x590, &(0x7f00000002c0)="4ce02b9d64e50d293ddb0ae4b8a0", 0x0, 0x4003, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x15b, &(0x7f00000002c0)=ANY=[@ANYRESHEX=r1], &(0x7f0000000340)='syzkaller\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r7, 0x1800000000000060, 0x0, 0x0, 0x0, 0x0, 0x2300, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x0, 0x400, 0x0, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
unshare(0x62040200)
ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, &(0x7f0000000380)={0x100000, 0x0, 0x0, r3, 0x8})
unshare(0x62040200)
socket$igmp(0x2, 0x3, 0x2)

6.282462965s ago: executing program 0 (id=179):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0, 0x0, 0x10000}, 0x31)
gettid()
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe(&(0x7f0000000080))
r1 = socket$kcm(0x2, 0xc, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='memory.events.local\x00', 0x26e1, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_usb_connect(0x0, 0x24, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x0)
setsockopt$sock_attach_bpf(r1, 0x1, 0x3e, &(0x7f00000000c0)=r2, 0x4)
sendmsg$kcm(r1, &(0x7f0000004900)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000002800)="c239", 0x2}], 0x1}, 0x0)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
r4 = userfaultfd(0x1)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000ffa000/0x3000)=nil, 0x3000}, 0x1})
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
syz_io_uring_setup(0x1757, &(0x7f0000000000)={0x0, 0xfffffffd, 0x4, 0x0, 0x1f4}, &(0x7f0000000100), &(0x7f0000000140))
ioctl$UFFDIO_UNREGISTER(r4, 0x8010aa02, &(0x7f0000000180)={&(0x7f0000ffa000/0x3000)=nil, 0x3000})
sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYRES64=r4, @ANYRES16=r3, @ANYBLOB="010000000000000000220c0000000800040000000021"], 0x24}}, 0x0)
mount$fuse(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(0xffffffffffffffff, &(0x7f0000002140)={0x2020}, 0x2020)

5.749201063s ago: executing program 3 (id=181):
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000040)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d66736361636865"])
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000002c0)=[@in6={0xa, 0x4e20, 0x0, @private2}]}, &(0x7f0000000180)=0xc)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x84, &(0x7f0000000000)={r2, @in6={{0xa, 0x0, 0x0, @empty}}}, 0x90)
write$binfmt_script(0xffffffffffffffff, 0x0, 0xfffffe5d)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0, r3}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = getpid()
process_vm_readv(r4, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r5 = inotify_init1(0x0)
fcntl$setown(r5, 0x8, 0xffffffffffffffff)
fcntl$getownex(r5, 0x10, &(0x7f0000000380)={0x0, <r6=>0x0})
move_pages(r6, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$getsig(0x4202, r6, 0x10, &(0x7f0000000600))
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
r8 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
r9 = creat(&(0x7f0000000380)='./bus\x00', 0x0)
fcntl$setstatus(r9, 0x4, 0x4000)
io_setup(0x202, &(0x7f0000000200)=<r10=>0x0)
io_submit(r10, 0x3, &(0x7f0000000500)=[&(0x7f0000000280)={0x25, 0xe7030003, 0x8, 0x6, 0x0, r9}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x8, 0x4, 0xffffffffffffffff, &(0x7f0000000680)="51d7b89709a7694badece638661543b0b969fdb7fd6e6ef8c5cfcf206069828b6aa2d43a354e9ee824f8a591c4557e29d058d2a731dd206859611abca14b5c781f17f794d2749aa91da7aae28c7d432ba0bb486f5ed0178f574fd798484c49825fe69abb3bb3587b6e0fa6de8b20724bf029a24fda4dff9cceb53c4789c7c6e946c9719baa41ea60bf7afd42975c7a552add58de1e89dc84a8b596b5927553c6448914b828a9d248d796f52c2c07c9127e6ab7f420f1a09090b699a9c8fe7a37ff896f6a007996b8bb61a74cd73e5168ecff178c9eb07cb51be59ca4fe0a", 0xde, 0x2, 0x0, 0x1}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x5, 0xff, r9, &(0x7f0000000780)="6c034fb5d09fac074ecddcf14b8e1ae56948f483c7c46537f43113db71832fd6645ed8ee835f61e68444fd0001830b459371834d27cf6d219080254752e7e312b4b408bddfc365a96f533cd815d550421a15793754de72a8e7843851e469b7d40a73d7a6ca52e436af4a084c5a2a3ebe18aaa467e18751eda7759c3deee7124ce1857edaa8f119ab448db8b248af6eaa46cc7c5970", 0x95, 0x5, 0x0, 0x1, r8}])
bind$inet6(r7, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
sendto$inet6(r7, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_MD5SIG(r7, 0x6, 0xe, &(0x7f0000000340)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x39, 0x0, "b0fd7b07ff8a216915a8d3215a3225178096acf74c85ad01ba95fd9d0543750fb5a62a045888e8febca073f1f821abb8083f4d192383c47b3800abd4d841e2d4b56039653b95d0cd0a00a6ea35bdfaf6"}, 0xd8)
sendto$inet6(r7, &(0x7f0000000080)="44f9b108b1cdc885c9c533d21f474bec8bfef1df1e2da71e578dc6b91d09f7ab15378571d8e27546090000006e75436914ab717528ee4b7a9beaf908d11137c11903064e83b4951f4d433a54049f0c85d92d7083fd38844cbb0c6c5eb508ddc2dc7a590aa7941b1e9eeb5a688138dea09b776cbfa784cbf550bf3074fb0d775da4df5a3f48bbdf452eeb6b923da9d0e25b80f76a873664b5753444fe05f33e5f91045540836c3cd6af10f0cd018f0c6f57f926ac959a5628c45088fbe0c87fbe6cbcda4662d2a12f6d00"/215, 0xd0d0c2ac, 0x0, 0x0, 0x32)
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x7}, 0x0)

5.100045621s ago: executing program 2 (id=184):
r0 = socket(0x11, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r3=>0x0})
setsockopt$packet_int(r0, 0x107, 0x14, &(0x7f0000000080)=0x97, 0x4)
r4 = socket$kcm(0xa, 0x922000000003, 0x11)
setsockopt$sock_attach_bpf(r4, 0x29, 0x24, &(0x7f00000000c0), 0x4)
sendmsg$kcm(r4, &(0x7f0000000000)={&(0x7f00000002c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000180)="2510cd9b000000000000ad440da9c9959bb65801ff685b928de9ba193e466e00018f408ce9194b60bbe193449392a9f359f395469645db0dcc31d97a9662517501a096eccb89af277b74c124cac493c17cb265c226109702585c1bb6da", 0x5d}], 0x1}, 0x0)
bind$packet(r0, &(0x7f0000000180)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @dev}, 0x14)
r5 = openat$vcsa(0xffffff9c, 0x0, 0x101001, 0x0)
ioctl$VIDIOC_QUERY_DV_TIMINGS(r5, 0x80845663, 0x0)
r6 = openat$snapshot(0xffffff9c, &(0x7f00000002c0), 0x40040, 0x0)
dup3(r6, r2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x7ce650e6dbad9526, 0x2, 0x4, 0x6, 0x7268f, r5, 0x6, '\x00', r3, r5, 0x4, 0x5, 0x0, 0x0, @void, @value, @value=r5}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
open_tree(0xffffffffffffffff, 0x0, 0x0)
socket$inet6(0xa, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x40000000000ead}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
read$msr(r7, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
r8 = openat$sequencer2(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
ioctl$SNDCTL_SEQ_NRSYNTHS(r8, 0xc004510e, &(0x7f0000001280))

4.49071168s ago: executing program 3 (id=185):
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@remote, 0x0, 0x2}, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
linkat(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0xffffffffffffffff, 0x0, 0x0)
ioctl$FS_IOC_GETFSLABEL(r0, 0x400452c8, 0x0)

4.370305706s ago: executing program 3 (id=186):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x48b, 0x0, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000005940), 0x0, 0x0)
ioctl$SG_EMULATED_HOST(r1, 0x530c, 0x0)
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0xc004743e, 0x20001439)
r2 = openat$ppp(0xffffffffffffff9c, 0x0, 0x10000, 0x0)
ioctl$PPPIOCATTACH(r2, 0x4004743d, &(0x7f0000000240))
bpf$MAP_CREATE(0x0, &(0x7f00000012c0)=ANY=[@ANYBLOB='\v\x00', @ANYBLOB="09d033c0ea863acdbd679f9f701314215ed2be2be583e20e8530af056cd3c11340970a0bf8ce0cbceb496221f4bf818d9a426c5619dfd037e77838dd2b024d1aeb2a26069dc3d5f8e1b847eb98ff8ef2cfa0147829622882e657326f442f8bcf84c5c763f176b9539c187ea42cdca450425c0ac7e5f7f772c9119d70f1a454a2ef72583f40b156f0925d144fdb97fedc942ae5c0d81d8aad", @ANYRES32=r0, @ANYRES32=r1, @ANYRES32, @ANYBLOB='\x00'/26], 0x48)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
r4 = getpid()
process_vm_readv(r4, &(0x7f0000002400)=[{&(0x7f0000000300)=""/54, 0x36}, {&(0x7f0000006180)=""/143, 0x8f}], 0x2, &(0x7f0000008640), 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc))
r6 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$VT_RESIZEX(r6, 0x4bfb, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f0000000000)={@private0={0xfc, 0x0, '\x00', 0x1}, 0x0, 0x0, 0x2, 0x3, 0x0, 0x4}, 0x20)
ioctl$TIOCMGET(r6, 0x5415, &(0x7f00000011c0))
syz_open_procfs(0x0, 0x0)
r7 = userfaultfd(0x801)
ioctl$UFFDIO_API(r7, 0xc018aa3f, &(0x7f0000000040))
ioctl$UFFDIO_WRITEPROTECT(r7, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000800000/0x800000)=nil, 0x802000}, 0x2})
fcntl$dupfd(r7, 0x0, r7)
r8 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ip6_flowlabel\x00')
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000001200)=ANY=[@ANYBLOB="180000000000000000000000000000007919b80000080000950000000000000087ea71e5aae1e19d6f0e04b8109452b5b72bee70df60caa041ba9d9ceedb07d245a2db1edb66db041ce9083fb3f5426be663cc59dc741d920f1fbed14f5582952fddd5b1bb0277348c8cf79b9a64fb1cf971cc7635efbc2e1799d79d2c38a0d9500f3639b6e710b8d0f8125470acfc8224"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
pread64(r8, &(0x7f0000000180)=""/4100, 0x1004, 0x1000000)
getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, &(0x7f0000000040), &(0x7f00000000c0)=0x30)

4.129912515s ago: executing program 3 (id=187):
read$FUSE(0xffffffffffffffff, &(0x7f0000004180)={0x2020, 0x0, 0x0, 0x0, 0x0, <r0=>0x0}, 0x2020)
socket$kcm(0x10, 0x400000002, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r1 = syz_open_procfs(r0, 0x0)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r1, 0x541b, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
pwritev2(r4, &(0x7f0000000240)=[{&(0x7f0000000040)="d0600b401f39b97bf93ecf49759e94b4519a0de2f87e5c417273a5dce55efb335b22dce602ca972f116438489fdab766171401f130eb1c9e78ec70db15755f97ca197fc3da0b85ea0d2f7bdffcc1caa5810430b5448f4ae272489f5c7ac1e4660c4f7b0446d5457181924a3d4dbfdfee93a14379adfe7c1effdacb69a945", 0xfe50}], 0x1, 0xa, 0x6e6f2b53, 0x10)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="0209000002000000000000e6ff000000"], 0x10}}, 0x0)
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x200, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xf, 0x3, &(0x7f0000000600)=ANY=[@ANYBLOB="18000000000000000000000000000000950000000000000020e6fac62e6a727255d52f257a293de82cbca6c4bf897400020000e51642e6f9dea92515f17fa133161bc4118edc2adec2b0ec305099ec0e8e86ab9e09b536ac19553233b1732323d0fa424675b0053e2f2fd9982de629dff76913eec87fe4a0552c0da65f0cb0ed3897c04e36ef9af0837c62ce9359cf78b21ea144a02cc24b04e68d69384e6c9d7e2b1ff9da89a734f302e6848ba9cc00da2eaea2dc02611c4b68db28869277d024380f1ca4d8e8f4ff066fc813"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_device, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000002c0)={r6, r7, 0x6}, 0x10)
mount(&(0x7f0000000000)=@sr0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='ext4\x00', 0x0, 0x0)
r8 = syz_open_dev$usbfs(&(0x7f0000000480), 0xc, 0x141341)
ioctl$USBDEVFS_IOCTL(r8, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r8, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect)
sendmmsg$inet(r4, &(0x7f0000005240), 0x264e33, 0xff88)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000000100))
r9 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000080)='./binderfs2/custom1\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r9, 0xc0306201, &(0x7f00000003c0)={0xc, 0x0, &(0x7f00000001c0)=[@register_looper, @acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_THREAD_EXIT(r9, 0x40046208, 0x0)

3.620120409s ago: executing program 1 (id=188):
syz_clone3(&(0x7f0000000300)={0x8818080, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, &(0x7f0000000100), &(0x7f0000000140), {0xb}, &(0x7f0000000180)=""/62, 0x3e, &(0x7f00000001c0)=""/203, &(0x7f00000002c0)=[0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0], 0x6}, 0x58)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
r1 = syz_io_uring_setup(0x10d, &(0x7f00000003c0), &(0x7f0000000380)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r1, 0x3f70, 0x0, 0x0, 0x0, 0x0)
mount$afs(&(0x7f0000000540)=ANY=[@ANYBLOB='#syz1:'], &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0) (fail_nth: 10)
ioctl$BTRFS_IOC_GET_FEATURES(r0, 0x80189439, &(0x7f0000000380))
r4 = memfd_create(&(0x7f0000000000)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\xf2\xed\x04\x00\x00\x00\xd4N\x12\x9b\x1f\t\xd1Z+\x86T\x16\xf8\x01\x00\x00\x00\x9f+\x8d!\x0fG\xab\xc2\xdc\xa3\xb3\xae8\x9f9?\xefo\xa4k\x01\xb2>\xa1\x9c\x86xm\xe6\x9bZ4\x91\x1a\xdb\xdd\x89\xb9\xc0LF;\xd6\x84\x195\x06\x00\x00\x00~\xf3S\x12\"p^\xc1jP\x8a\xc6[\xbd\xe7q]\xdd\r\x1aZS\x01*\x1b\xfd\xbcMA\xdc\x98ag3}\xaa[\xa1\x19\n\xd3q\xa1\x00\xb3\xf9\x91r\x7f\xdc\xf1\xc3G,\xdb\xccS\x15\x95b\x17\xab\xe4?\x81\x84\xb8\x92P\x99YO\xf1/\xd3]9\'\'\x1d', 0x809fc60335250fc4)
fcntl$notify(r4, 0x402, 0xd)
copy_file_range(r4, 0x0, r4, 0x0, 0x0, 0x0)

3.480479209s ago: executing program 2 (id=189):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$VT_ACTIVATE(r0, 0x5606, 0x4)

3.350051356s ago: executing program 1 (id=190):
modify_ldt$write(0x1, &(0x7f0000000040)={0xc}, 0x10)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x62000000, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = getpid()
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d00000067000000050000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000500)=@bpf_tracing={0x1a, 0x5, &(0x7f0000000400)=@raw=[@map_fd, @jmp={0x5, 0x1, 0x3, 0x6, 0x0, 0x50, 0x8}, @map_fd={0x18, 0x3}], &(0x7f0000000640)='GPL\x00', 0x6, 0x49, &(0x7f0000000680)=""/73, 0x0, 0x2, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, &(0x7f0000000700)={0x6, 0x4}, 0x8, 0x10, &(0x7f0000000740)={0x2, 0x7, 0x1, 0x80}, 0x10, 0x2ccaa, 0xffffffffffffffff, 0x7, 0x0, &(0x7f0000000cc0)=[{0x2, 0x4, 0xd, 0xb}, {0x4, 0x4, 0x207, 0x4}, {0x3, 0x5, 0x5, 0xa}, {0x1, 0x2, 0x7, 0x3}, {0x2, 0x5, 0xa}, {0x3, 0x4, 0xb, 0x342941b6c525dbcf}, {0x3, 0x1003, 0x3, 0x9}], 0x10, 0x3, @void, @value}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=@newspdinfo={0x14, 0x24, 0x21}, 0x14}}, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x14, &(0x7f0000000900)=ANY=[@ANYBLOB="1800000000000700000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r6, 0xfca804a0, 0xe, 0x590, &(0x7f00000002c0)="4ce02b9d64e50d293ddb0ae4b8a0", 0x0, 0x4003, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x15b, &(0x7f00000002c0)=ANY=[@ANYRESHEX=r1], &(0x7f0000000340)='syzkaller\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r7, 0x1800000000000060, 0x0, 0x0, 0x0, 0x0, 0x2300, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x0, 0x400, 0x0, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
unshare(0x62040200)
ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, &(0x7f0000000380)={0x100000, 0x0, 0x0, r3, 0x8})
unshare(0x62040200)
socket$igmp(0x2, 0x3, 0x2)

3.349734533s ago: executing program 2 (id=191):
syz_emit_ethernet(0x42, &(0x7f0000000240)=ANY=[@ANYBLOB="bbbbbbbbbbbb00000000000086dd6076b2af00062f00fc000004cba1414ec4b4b50000000000ff0200000000000000000000000000010000883e"], 0x0)
r0 = socket$unix(0x1, 0x5, 0x0)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCL_SELLOADLUT(r1, 0x541c, &(0x7f00000000c0))
sendmmsg$unix(r0, &(0x7f00000075c0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24000000}}], 0x1, 0x8800)
r2 = openat$tun(0xffffff9c, &(0x7f00000001c0), 0x6400a0, 0x0)
ioctl$SIOCSIFHWADDR(r2, 0x8924, &(0x7f0000000200)={'veth1_vlan\x00', @remote})
connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0x0, @none}, 0xe)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = syz_open_dev$sndpcmc(&(0x7f0000000500), 0x1, 0x40101)
ioctl$SNDRV_PCM_IOCTL_DROP(r4, 0x4143, 0x0)
r5 = socket(0x10, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x9)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=ANY=[@ANYBLOB="4800000010000305000000000000000000cf0000", @ANYRES32=0x0, @ANYBLOB="00000000000000002000128008000100677470001400028008000100", @ANYRES32=r8], 0x48}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000200)=@newqdisc={0x3c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_OVERHEAD={0x8}]}}]}, 0x3c}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="a000000010003b0e2a1a86eb2636037f00000000", @ANYRES32=r6, @ANYBLOB="0200000000008000800012000800010076746936740002"], 0xa0}}, 0x0)
r9 = socket(0x10, 0x3, 0x0)
sendmmsg(r9, &(0x7f0000000000), 0x400000000000235, 0x0)
sendmsg$IPSET_CMD_DESTROY(r3, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x68, 0x3, 0x6, 0x401, 0x0, 0x0, {0x7, 0x0, 0x8}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x68}, 0x1, 0x0, 0x0, 0x4004080}, 0x0) (fail_nth: 5)

3.160424089s ago: executing program 0 (id=192):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x1, 0x20}, 0xc)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000000180)=0x3, 0x4)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x8a}, 0x9c)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f00000000c0)={0x1, 0x2, 0x10, 0x9, 0x0, 0x2, 0x10, 0x44, 0x6, 0x0, 0x77, 0x5, 0x8, 0xb}, 0xe)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000a00)={0x0, @in6={{0xa, 0x4e23, 0xfe800000, @loopback}}, 0x7, 0x0, 0xf401, 0x0, 0x54}, 0x9c)

3.160037533s ago: executing program 2 (id=193):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000300))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040))
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000002c0)={0x4c, 0x0, &(0x7f0000000340)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000540)={0x4c, 0x0, &(0x7f0000000440)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x18, 0x0, &(0x7f00000001c0)={0x30, 0x30, 0x30}}}], 0x54, 0x0, &(0x7f0000000600)="4bb16fc96dcf827965e297e4bcdc4cc27c7f5cce42d3404ebf85cb80c1e0f1800190544fb4577f9c7b137beb432502670dac13efbd760cd34255de3bf80391ae67bfe4a9e6cef0df81e89597f675b813d1ba2a46"})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000500)={0x4c, 0x0, &(0x7f0000000580)=[@transaction_sg={0x40086303, {0x1, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})

2.90982714s ago: executing program 2 (id=194):
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa2c"], 0xfdef)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)={0x40, 0x9, 0x6, 0x801, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x39}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_ADT={0x10, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x2}}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x2, 0x0, 0x0, 0x0, 0x2}, 0x10}}, 0x34000)
socket$tipc(0x1e, 0x5, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r2 = socket(0x2, 0x80805, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)={0x34, r4, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8}, @ETHTOOL_A_CHANNELS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x34}}, 0x0)
sendmmsg$inet(r2, &(0x7f0000000880)=[{{&(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10, &(0x7f0000000100)}, 0x20000000}], 0x1, 0x0)

2.909567052s ago: executing program 0 (id=195):
r0 = socket(0x10, 0x80002, 0x0)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
socket$packet(0x11, 0x2, 0x300)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x4e24, @loopback}, 0x10)
sendmmsg(r2, &(0x7f00000057c0)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f00000004c0)="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", 0x24c}, {&(0x7f00000002c0)="e4d561e9744108000000e9b4ec081c8eb4534bc5b9284f843e2bc71745", 0x1d}, {&(0x7f0000001e80)="d05d67afc746cff8fa10e483e9eaae867d31e22831b4bea09d2b9e867d06ab0eccd98dee45bbd11af441dc93334d0270f6527428cf0d1bef4f5789bf5acf2e44d415c2e774b8af25275915bdd38fe5a74b87a4d9a1848ed513f92bb0672d88425bcf9fdc7b07cdeb96451ccf522215e76dae12391d3fc0258ca86ea22eb857bfc7f9dc565f3e2dd7412060421997bb92", 0x90}, {&(0x7f0000000980)="21e35e62c07eb3b95754d4c8ae60419349648a512aab6c478d95c5f71f25ceb5079ce5da8adbc54a10dcc07e36d67d4b880ae396b5c3de2ab65094fa", 0x3c}], 0x4}}], 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0x21, &(0x7f0000000040), 0x4)
write$binfmt_misc(r2, &(0x7f00000000c0), 0xbf)
shutdown(r2, 0x1)
recvmmsg(r2, &(0x7f00000048c0)=[{{0x0, 0x0, &(0x7f0000004a00)=[{&(0x7f0000000a00)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
sendmsg$netlink(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)=ANY=[@ANYBLOB="d824000028000100020000080000000008"], 0x24d8}], 0x1}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="340000001300290a00", @ANYRES32, @ANYBLOB="000000000000000014"], 0x34}}, 0x0)

2.540408756s ago: executing program 0 (id=196):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, 0x0, 0x0)

2.539988354s ago: executing program 2 (id=197):
epoll_create1(0x0)
r0 = getpid()
socketpair$unix(0x1, 0x2, 0x0, 0x0)
mknod$loop(0x0, 0x0, 0x1)
syz_usbip_server_init(0x4)
ioctl(0xffffffffffffffff, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0500000004000000ff0f00000200000000000000b3f735ac085203366eabe8ddddff1a342e9295db2545ca90d64b4d74d617495fe837676c72af671059d5317c1c3ddfdde7ebdd74ed0d4326a28706039408044db9f7e94ac9778d6038403b772c9158c3a3c7fee2f9417db1fa3114f8217ef3272b5d26e348d61073d60f1cffaf7d274a3722e5d44c9ea93af0ee8b6082034a8b0f622bec87f8802f859fc0c02b00c64e4624d2", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r2 = socket(0x25, 0x1, 0x0)
setsockopt$TIPC_IMPORTANCE(r2, 0x10f, 0x7f, &(0x7f00000000c0), 0x4)
r3 = openat$autofs(0xffffff9c, &(0x7f0000000380), 0xe8980dfcf04574f6, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r3, 0xc0189376, &(0x7f00000003c0)={{0x1, 0x1, 0x18, r1, {0x1}}, './file0\x00'})
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(r0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = getpid()
mkdir(&(0x7f0000000140)='./file0\x00', 0xc)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000001000)=ANY=[@ANYBLOB='trans=virtio,noextend,access=any,cache=fscache,version=9p2000.u'])
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)={[{@metacopy_on, 0x3a}, {@metacopy_off}, {@xino_off}], [{@hash}, {@permit_directio}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@euid_eq}], 0x2f})
open(&(0x7f0000000380)='./file0\x00', 0x0, 0x0)
getpgrp(r5)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000002580)=@newtaction={0x94, 0x30, 0x1, 0x0, 0x0, {0x7a}, [{0x80, 0x1, [@m_ife={0x7c, 0x14, 0x0, 0x0, {{0x8}, {0x28, 0x2, 0x0, 0x1, [@TCA_IFE_METALST={0x18, 0x6, [@IFE_META_SKBMARK={0x8, 0x1, @val=0xffffff01}, @IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_SKBMARK={0x8, 0x1, @val=0x3}]}, @TCA_IFE_SMAC={0xa, 0x4, @multicast}]}, {0x30, 0x6, "2bd89d29db9cd3d3421247653117cc1ee73f9f117b1a7f08d6b97561bede0c5e5bb2d516bb47f67acc1cd3a1"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x94}}, 0x0)

2.539580118s ago: executing program 0 (id=198):
read$FUSE(0xffffffffffffffff, &(0x7f0000004180)={0x2020, 0x0, 0x0, 0x0, 0x0, <r0=>0x0}, 0x2020)
socket$kcm(0x10, 0x400000002, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r1 = syz_open_procfs(r0, 0x0)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r1, 0x541b, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
iopl(0x3)
r4 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
pwritev2(r4, &(0x7f0000000240)=[{&(0x7f0000000040)="d0600b401f39b97bf93ecf49759e94b4519a0de2f87e5c417273a5dce55efb335b22dce602ca972f116438489fdab766171401f130eb1c9e78ec70db15755f97ca197fc3da0b85ea0d2f7bdffcc1caa5810430b5448f4ae272489f5c7ac1e4660c4f7b0446d5457181924a3d4dbfdfee93a14379adfe7c1effdacb69a945", 0xfe50}], 0x1, 0xa, 0x6e6f2b53, 0x10)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="0209000002000000000000e6ff000000"], 0x10}}, 0x0)
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x200, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xf, 0x3, &(0x7f0000000600)=ANY=[@ANYBLOB="18000000000000000000000000000000950000000000000020e6fac62e6a727255d52f257a293de82cbca6c4bf897400020000e51642e6f9dea92515f17fa133161bc4118edc2adec2b0ec305099ec0e8e86ab9e09b536ac19553233b1732323d0fa424675b0053e2f2fd9982de629dff76913eec87fe4a0552c0da65f0cb0ed3897c04e36ef9af0837c62ce9359cf78b21ea144a02cc24b04e68d69384e6c9d7e2b1ff9da89a734f302e6848ba9cc00da2eaea2dc02611c4b68db28869277d024380f1ca4d8e8f4ff066fc813"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_device, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000002c0)={r6, r7, 0x6}, 0x10)
mount(&(0x7f0000000000)=@sr0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='ext4\x00', 0x0, 0x0)
r8 = syz_open_dev$usbfs(&(0x7f0000000480), 0xc, 0x141341)
ioctl$USBDEVFS_IOCTL(r8, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r8, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect)
sendmmsg$inet(r4, &(0x7f0000005240), 0x264e33, 0xff88)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000000100))
r9 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000080)='./binderfs2/custom1\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r9, 0xc0306201, &(0x7f00000003c0)={0xc, 0x0, &(0x7f00000001c0)=[@register_looper, @acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_THREAD_EXIT(r9, 0x40046208, 0x0)

2.478476462s ago: executing program 1 (id=199):
syz_emit_ethernet(0x42, &(0x7f0000000240)=ANY=[@ANYBLOB="bbbbbbbbbbbb00000000000086dd6076b2af00062f00fc000004cba1414ec4b4b50000000000ff0200000000000000000000000000010000883e"], 0x0)
r0 = socket$unix(0x1, 0x5, 0x0)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCL_SELLOADLUT(r1, 0x541c, &(0x7f00000000c0))
sendmmsg$unix(r0, &(0x7f00000075c0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24000000}}], 0x1, 0x8800)
r2 = openat$tun(0xffffff9c, &(0x7f00000001c0), 0x6400a0, 0x0)
ioctl$SIOCSIFHWADDR(r2, 0x8924, &(0x7f0000000200)={'veth1_vlan\x00', @remote})
connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0x0, @none}, 0xe)
syz_emit_vhci(&(0x7f0000000380)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = syz_open_dev$sndpcmc(&(0x7f0000000500), 0x1, 0x40101)
ioctl$TCSETSW(r1, 0x5403, &(0x7f0000000140)={0x3, 0x5, 0xfffff937, 0x81, 0x5, "50edb7abc15f88cb41c1db8ddf3c80359e31a3"})
ioctl$SNDRV_PCM_IOCTL_DROP(r4, 0x4143, 0x0)
r5 = socket(0x10, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x9)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=ANY=[@ANYBLOB="4800000010000305000000000000000000cf0000", @ANYRES32=0x0, @ANYBLOB="00000000000000002000128008000100677470001400028008000100", @ANYRES32=r8], 0x48}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000200)=@newqdisc={0x3c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_OVERHEAD={0x8}]}}]}, 0x3c}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="a000000010003b0e2a1a86eb2636037f00000000", @ANYRES32=r6, @ANYBLOB="0200000000008000800012000800010076746936740002"], 0xa0}}, 0x0)
r9 = socket(0x10, 0x3, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f00000002c0)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r10}, 0x10)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000001340)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000880), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x49)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={r11, 0xe0, &(0x7f0000000480)={0x0, <r12=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
r13 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0)={r12}, 0x4)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000840)={r13, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r14=>0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd6e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1, 0x4, 0x40, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', r14, 0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
sendmmsg(r9, &(0x7f0000000000), 0x400000000000235, 0x0)
sendmsg$IPSET_CMD_DESTROY(r3, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="6800000003060104000000000000000007000008cddc0900020073797a300000000009003d0073797a32000000000500010007000000050001000700000005000100070000000900020073597a32000000000900020073797a31000000000900020073797a7000000000007cd781c6e602f32818dd5f207f76e34cd19f45ec3001ed93105e1cec1e7a44f4e7e3b899a2ef37b1108cbf1f7a23f5929e35e3fdc573fe32602963c68a3ae0872401daf30697e5e6c735366f976df3638690c7da8034eab21686ef58526154806589206484e13f6fc18928e371b86b820f917989cbc5c5e5d630c570172cc93c4e2d631d"], 0x68}, 0x1, 0x0, 0x0, 0x4004080}, 0x0)

2.260432167s ago: executing program 1 (id=200):
r0 = socket$kcm(0x10, 0x2, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00'})
r1 = openat$dsp1(0xffffff9c, &(0x7f0000000100), 0x20200, 0x0)
write$dsp(r1, &(0x7f0000000140)="238220e6684aa5abb6b9d897534a0b0bf02f185d1cfb30128be15c75c029f7886c82e4e0d2fdffa82199e3a87261611699428d0e3040a62b9788597dc489d575c3050e1d0e94e64c89af7774a9d55a83213ca00d308bfed6146b04930b9ad1443c1b0fabd6bbd04d986f225095b297e9dadab1ea246d7413467ab309028a743f72397df1c8155a37529d296c2e9f0e0a7abb78ba61cc877c7224fa7c7db6456e71abe33fa48ac47cad96d2152342512377405f05947156e97b80674eb0bb644b37", 0xc1)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bd2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
futex(0x0, 0x4, 0xffffffbe, 0x0, 0x0, 0x4000001)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x300000a, 0x4031, 0xffffffffffffffff, 0x0)
r3 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
r4 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f00000000c0))
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a8000000850000000500000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000003880)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000240)=ANY=[@ANYRES32=r5, @ANYRES32, @ANYBLOB='/\x00'/12, @ANYRES32, @ANYBLOB="8ff28d3d6db5e0d24f18ada0d4", @ANYRES64=0x0], 0x20)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000400)=ANY=[@ANYRES32, @ANYRES32=r5, @ANYBLOB="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", @ANYRES32, @ANYBLOB, @ANYRES64=0x0], 0x20)
ioctl$UFFDIO_REGISTER(r4, 0xc020aa08, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x0, 0x2})
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
r6 = dup(0xffffffffffffffff)
ioctl$TIOCL_SETSEL(r6, 0x541c, &(0x7f0000001200)={0x2, {0xc, 0xa03, 0x100}})
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)

1.298411297s ago: executing program 3 (id=201):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2ed0300000000000000af99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14008c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000006da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3ab60fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d6b7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd45e2f7ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4978ea8e4aa37014191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e8ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa165099c5ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88cf573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e48701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867857ed13a4fa4ae033a09673866cd77f4bcdaaa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d9a0e06da200481cde8bf475bc3e1fe9c0b4a4a268921738938aa9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a000000000000000000000000000000000000000000000000000048e43dc605510a771eb74ea75e6051ecab9576c97eab243f9c2695c39c8cc4be294f97"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0, 0x0, 0x10000}, 0x31)
gettid()
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe(&(0x7f0000000080))
r1 = socket$kcm(0x2, 0xc, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='memory.events.local\x00', 0x26e1, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_usb_connect(0x0, 0x24, &(0x7f00000003c0)=ANY=[@ANYBLOB="120100007ce7c810d804300a47ce01020301090212000100000000090427e28a6f4c9cc80000000de67a00b190cbccc85bb3e758"], 0x0)
setsockopt$sock_attach_bpf(r1, 0x1, 0x3e, &(0x7f00000000c0)=r2, 0x4)
sendmsg$kcm(r1, &(0x7f0000004900)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000002800)="c239", 0x2}], 0x1}, 0x0)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
r4 = userfaultfd(0x1)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000ffa000/0x3000)=nil, 0x3000}, 0x1})
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
syz_io_uring_setup(0x1757, &(0x7f0000000000)={0x0, 0xfffffffd, 0x4, 0x0, 0x1f4}, &(0x7f0000000100), &(0x7f0000000140))
ioctl$UFFDIO_UNREGISTER(r4, 0x8010aa02, &(0x7f0000000180)={&(0x7f0000ffa000/0x3000)=nil, 0x3000})
sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYRES64=r4, @ANYRES16=r3, @ANYBLOB="010000000000000000220c0000000800040000000021"], 0x24}}, 0x0)
mount$fuse(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(0xffffffffffffffff, &(0x7f0000002140)={0x2020}, 0x2020)

467.399763ms ago: executing program 0 (id=202):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
getxattr(0x0, 0x0, 0x0, 0x0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r2, &(0x7f0000000240)={0x1f, 0x9, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r2, 0x6, 0x1, 0x0, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r1, 0x0)
syz_emit_ethernet(0x8e, &(0x7f00000002c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd6000000000580600fe8000000000000000000000000000bbfe8000000000000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="64c20000907800001e0401a11e0c1607ffffffffff07000005120000000005000000000000000000000022034913127224407c80fe8a3616bebf3400006cc81e0a00405882a08027c1000000af4da24683a66f31b3828097fc94160368f41846a66bf38a342b9806485a646d0bf46bec6e21ebe6d81fb6d735ab3dbbc2e8af32a91b2c38f483548215209607a7a1dcb6982fb491aa1455d77b42c55537e4bb026c1dfac7fab79774dcb0c1a267cabff68eac745bf1fc126ea71bf29369d6fc841d"], 0x0)
r3 = socket$rxrpc(0x21, 0x2, 0x2)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0)
fcntl$lock(r4, 0x7, &(0x7f00000003c0)={0x0, 0x2})
fcntl$lock(r4, 0x24, &(0x7f0000000140)={0x2, 0x0, 0x8})
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_FLUSH(r4, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="580200005233f957dec5", @ANYRES16=r5, @ANYBLOB="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"], 0x258}, 0x1, 0x0, 0x0, 0x4004}, 0x800)
connect$rxrpc(r3, &(0x7f0000000100)=@in4={0x21, 0x0, 0x1c, 0x2, {0x2, 0x0, @loopback}}, 0x24)

0s ago: executing program 1 (id=203):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = openat$binderfs(0xffffff9c, &(0x7f0000000080)='./binderfs/custom0\x00', 0x800, 0x0)
ioctl$BINDER_GET_FROZEN_INFO(r1, 0xc00c620f, &(0x7f00000000c0)={r0})
ptrace(0x10, r0)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000140)={0xa, 0x4e21, 0xd5fe, @local, 0x9}, 0x1c)
rt_sigqueueinfo(r0, 0x18, &(0x7f00000001c0)={0x17, 0x5, 0x5})
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mountinfo\x00')
pipe2$9p(&(0x7f0000000240)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r5, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r6 = dup(r5)
write$FUSE_BMAP(r6, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r6, &(0x7f0000000440)=ANY=[@ANYBLOB="b0000000000000ab284dc9a94095f54e34f11a5a480d2115805745f8a24d"], 0xb0)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@aname={'aname', 0x3d, '[\\}:*'}}]}})
r7 = open(&(0x7f0000000080)='./file1\x00', 0x10b942, 0x0)
sendfile(r7, r3, 0x0, 0x80000000)
ptrace$getregset(0x4204, r0, 0x202, &(0x7f0000000040)={&(0x7f0000000000)=""/32, 0x20})

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:31805' (ED25519) to the list of known hosts.
[   35.217688][ T5261] cgroup: Unknown subsys name 'net'
[   35.350033][ T5261] cgroup: Unknown subsys name 'cpuset'
[   35.354928][ T5261] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   36.661162][ T5261] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   40.128302][ T5345] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   40.150112][ T5349] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   40.153462][ T5349] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   40.157589][ T5349] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   40.160185][ T5349] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   40.163045][ T5349] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   40.166453][ T5349] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   40.169358][ T5349] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   40.172043][ T5349] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   40.177396][ T5356] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   40.179486][ T5356] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   40.181496][ T5356] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   40.194972][ T5354] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   40.200157][ T5354] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   40.200782][ T5356] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   40.202487][ T5355] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   40.206864][ T5355] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   40.208607][ T5355] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   40.215502][ T5345] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   40.234503][ T5345] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   40.237595][ T5345] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   40.244653][ T5345] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   40.247786][ T5345] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   40.249741][ T5345] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   40.435577][ T5357] chnl_net:caif_netlink_parms(): no params data found
[   40.446372][ T5343] chnl_net:caif_netlink_parms(): no params data found
[   40.451363][ T5348] chnl_net:caif_netlink_parms(): no params data found
[   40.460382][ T5346] chnl_net:caif_netlink_parms(): no params data found
[   40.710101][ T5357] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.712641][ T5357] bridge0: port 1(bridge_slave_0) entered disabled state
[   40.716523][ T5357] bridge_slave_0: entered allmulticast mode
[   40.719698][ T5357] bridge_slave_0: entered promiscuous mode
[   40.723312][ T5343] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.725847][ T5343] bridge0: port 1(bridge_slave_0) entered disabled state
[   40.727856][ T5343] bridge_slave_0: entered allmulticast mode
[   40.730667][ T5343] bridge_slave_0: entered promiscuous mode
[   40.763422][ T5346] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.766951][ T5346] bridge0: port 1(bridge_slave_0) entered disabled state
[   40.769479][ T5346] bridge_slave_0: entered allmulticast mode
[   40.772289][ T5346] bridge_slave_0: entered promiscuous mode
[   40.775366][ T5357] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.777781][ T5357] bridge0: port 2(bridge_slave_1) entered disabled state
[   40.780264][ T5357] bridge_slave_1: entered allmulticast mode
[   40.783030][ T5357] bridge_slave_1: entered promiscuous mode
[   40.787332][ T5343] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.789816][ T5343] bridge0: port 2(bridge_slave_1) entered disabled state
[   40.792497][ T5343] bridge_slave_1: entered allmulticast mode
[   40.795538][ T5343] bridge_slave_1: entered promiscuous mode
[   40.811237][ T5348] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.813131][ T5348] bridge0: port 1(bridge_slave_0) entered disabled state
[   40.815791][ T5348] bridge_slave_0: entered allmulticast mode
[   40.818003][ T5348] bridge_slave_0: entered promiscuous mode
[   40.820836][ T5346] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.823597][ T5346] bridge0: port 2(bridge_slave_1) entered disabled state
[   40.826466][ T5346] bridge_slave_1: entered allmulticast mode
[   40.829670][ T5346] bridge_slave_1: entered promiscuous mode
[   40.853767][ T5348] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.856110][ T5348] bridge0: port 2(bridge_slave_1) entered disabled state
[   40.858641][ T5348] bridge_slave_1: entered allmulticast mode
[   40.861516][ T5348] bridge_slave_1: entered promiscuous mode
[   40.904995][ T5343] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   40.925954][ T5357] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   40.930806][ T5343] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   40.971131][ T5346] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   40.975603][ T5357] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   40.993885][ T5343] team0: Port device team_slave_0 added
[   40.998875][ T5348] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   41.003381][ T5346] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   41.020551][ T5343] team0: Port device team_slave_1 added
[   41.024498][ T5348] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   41.106855][ T5346] team0: Port device team_slave_0 added
[   41.110106][ T5357] team0: Port device team_slave_0 added
[   41.125165][ T5343] batman_adv: batadv0: Adding interface: batadv_slave_0
[   41.127725][ T5343] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   41.137004][ T5343] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   41.144185][ T5348] team0: Port device team_slave_0 added
[   41.146877][ T5346] team0: Port device team_slave_1 added
[   41.149355][ T5357] team0: Port device team_slave_1 added
[   41.151909][ T5343] batman_adv: batadv0: Adding interface: batadv_slave_1
[   41.155703][ T5343] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   41.163914][ T5343] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   41.183094][ T5348] team0: Port device team_slave_1 added
[   41.234322][ T5357] batman_adv: batadv0: Adding interface: batadv_slave_0
[   41.236268][ T5357] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   41.242922][ T5357] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   41.246995][ T5346] batman_adv: batadv0: Adding interface: batadv_slave_0
[   41.249538][ T5346] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   41.258863][ T5346] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   41.264744][ T5346] batman_adv: batadv0: Adding interface: batadv_slave_1
[   41.266612][ T5346] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   41.273304][ T5346] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   41.277164][ T5348] batman_adv: batadv0: Adding interface: batadv_slave_0
[   41.279495][ T5348] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   41.288373][ T5348] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   41.292761][ T5357] batman_adv: batadv0: Adding interface: batadv_slave_1
[   41.295500][ T5357] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   41.304684][ T5357] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   41.335769][ T5348] batman_adv: batadv0: Adding interface: batadv_slave_1
[   41.337629][ T5348] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   41.344476][ T5348] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   41.354417][ T5343] hsr_slave_0: entered promiscuous mode
[   41.357694][ T5343] hsr_slave_1: entered promiscuous mode
[   41.472082][ T5346] hsr_slave_0: entered promiscuous mode
[   41.474356][ T5346] hsr_slave_1: entered promiscuous mode
[   41.476471][ T5346] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   41.478630][ T5346] Cannot create hsr debugfs directory
[   41.482256][ T5357] hsr_slave_0: entered promiscuous mode
[   41.484873][ T5357] hsr_slave_1: entered promiscuous mode
[   41.487301][ T5357] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   41.489331][ T5357] Cannot create hsr debugfs directory
[   41.506346][ T5348] hsr_slave_0: entered promiscuous mode
[   41.509566][ T5348] hsr_slave_1: entered promiscuous mode
[   41.512378][ T5348] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   41.515133][ T5348] Cannot create hsr debugfs directory
[   41.758330][ T5346] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   41.765128][ T5346] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   41.768671][ T5346] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   41.772127][ T5346] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   41.802939][ T5357] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   41.808310][ T5357] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   41.815365][ T5357] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   41.820150][ T5357] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   41.854820][ T5343] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   41.862261][ T5343] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   41.866606][ T5343] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   41.888283][ T5343] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   41.908660][ T5348] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   41.916825][ T5348] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   41.922459][ T5348] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   41.930098][ T5348] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   41.961916][ T5346] 8021q: adding VLAN 0 to HW filter on device bond0
[   41.995767][ T5346] 8021q: adding VLAN 0 to HW filter on device team0
[   42.017861][ T5357] 8021q: adding VLAN 0 to HW filter on device bond0
[   42.022185][ T1106] bridge0: port 1(bridge_slave_0) entered blocking state
[   42.024453][ T1106] bridge0: port 1(bridge_slave_0) entered forwarding state
[   42.038026][ T1106] bridge0: port 2(bridge_slave_1) entered blocking state
[   42.039916][ T1106] bridge0: port 2(bridge_slave_1) entered forwarding state
[   42.054563][ T5348] 8021q: adding VLAN 0 to HW filter on device bond0
[   42.061184][ T5357] 8021q: adding VLAN 0 to HW filter on device team0
[   42.075119][ T5348] 8021q: adding VLAN 0 to HW filter on device team0
[   42.080366][ T1106] bridge0: port 1(bridge_slave_0) entered blocking state
[   42.082286][ T1106] bridge0: port 1(bridge_slave_0) entered forwarding state
[   42.087175][ T1106] bridge0: port 2(bridge_slave_1) entered blocking state
[   42.089095][ T1106] bridge0: port 2(bridge_slave_1) entered forwarding state
[   42.097653][ T1106] bridge0: port 1(bridge_slave_0) entered blocking state
[   42.099609][ T1106] bridge0: port 1(bridge_slave_0) entered forwarding state
[   42.110141][ T5343] 8021q: adding VLAN 0 to HW filter on device bond0
[   42.129153][ T1109] bridge0: port 2(bridge_slave_1) entered blocking state
[   42.131039][ T1109] bridge0: port 2(bridge_slave_1) entered forwarding state
[   42.140467][ T5343] 8021q: adding VLAN 0 to HW filter on device team0
[   42.153425][ T1109] bridge0: port 1(bridge_slave_0) entered blocking state
[   42.155358][ T1109] bridge0: port 1(bridge_slave_0) entered forwarding state
[   42.159263][ T1109] bridge0: port 2(bridge_slave_1) entered blocking state
[   42.161166][ T1109] bridge0: port 2(bridge_slave_1) entered forwarding state
[   42.214675][ T5355] Bluetooth: hci2: command tx timeout
[   42.293995][ T5355] Bluetooth: hci3: command tx timeout
[   42.296257][ T5355] Bluetooth: hci0: command tx timeout
[   42.298410][ T5355] Bluetooth: hci1: command tx timeout
[   42.318502][ T5357] 8021q: adding VLAN 0 to HW filter on device batadv0
[   42.329189][ T5346] 8021q: adding VLAN 0 to HW filter on device batadv0
[   42.379224][ T5343] 8021q: adding VLAN 0 to HW filter on device batadv0
[   42.389847][ T5357] veth0_vlan: entered promiscuous mode
[   42.400948][ T5346] veth0_vlan: entered promiscuous mode
[   42.407527][ T5357] veth1_vlan: entered promiscuous mode
[   42.416760][ T5348] 8021q: adding VLAN 0 to HW filter on device batadv0
[   42.431228][ T5346] veth1_vlan: entered promiscuous mode
[   42.448768][ T5343] veth0_vlan: entered promiscuous mode
[   42.463145][ T5357] veth0_macvtap: entered promiscuous mode
[   42.474232][ T5357] veth1_macvtap: entered promiscuous mode
[   42.478583][ T5343] veth1_vlan: entered promiscuous mode
[   42.494507][ T5348] veth0_vlan: entered promiscuous mode
[   42.500126][ T5346] veth0_macvtap: entered promiscuous mode
[   42.508779][ T5357] batman_adv: batadv0: Interface activated: batadv_slave_0
[   42.515353][ T5346] veth1_macvtap: entered promiscuous mode
[   42.522324][ T5357] batman_adv: batadv0: Interface activated: batadv_slave_1
[   42.526904][ T5348] veth1_vlan: entered promiscuous mode
[   42.536954][ T5343] veth0_macvtap: entered promiscuous mode
[   42.543828][ T5343] veth1_macvtap: entered promiscuous mode
[   42.547117][ T5357] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   42.550424][ T5357] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   42.553524][ T5357] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   42.558253][ T5357] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   42.565177][ T5346] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   42.568421][ T5346] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   42.572116][ T5346] batman_adv: batadv0: Interface activated: batadv_slave_0
[   42.587037][ T5346] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   42.590319][ T5346] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   42.595125][ T5346] batman_adv: batadv0: Interface activated: batadv_slave_1
[   42.602401][ T5343] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   42.605378][ T5343] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   42.607909][ T5343] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   42.610605][ T5343] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   42.614216][ T5343] batman_adv: batadv0: Interface activated: batadv_slave_0
[   42.622072][ T5346] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   42.625636][ T5346] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   42.628139][ T5346] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   42.630561][ T5346] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   42.635521][ T5348] veth0_macvtap: entered promiscuous mode
[   42.647384][ T5348] veth1_macvtap: entered promiscuous mode
[   42.650061][ T5343] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   42.653257][ T5343] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   42.656027][ T5343] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   42.658749][ T5343] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   42.662379][ T5343] batman_adv: batadv0: Interface activated: batadv_slave_1
[   42.669901][ T5343] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   42.672984][ T5343] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   42.676377][ T5343] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   42.679392][ T5343] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   42.702875][ T5348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   42.707018][ T5348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   42.710358][ T5348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   42.715142][ T5348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   42.718249][ T5348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   42.722935][ T5348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   42.728357][ T5348] batman_adv: batadv0: Interface activated: batadv_slave_0
[   42.759083][ T5348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   42.762136][ T5348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   42.766356][ T5348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   42.769889][ T5348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   42.773319][ T5348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   42.777240][ T5348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   42.780436][ T5348] batman_adv: batadv0: Interface activated: batadv_slave_1
[   42.787355][ T5348] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   42.790109][ T5348] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   42.792755][ T5348] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   42.795592][ T5348] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   42.810256][   T64] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   42.812438][   T64] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   42.831959][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   42.834344][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   42.842724][ T1106] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   42.846780][ T1106] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   42.863733][   T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   42.867408][   T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   42.875827][   T64] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   42.878581][   T64] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   42.902630][   T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   42.906717][   T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   42.912117][   T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   42.912334][ T5346] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   42.917213][   T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   42.933558][ T1095] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   42.942366][ T1095] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   43.013952][ T5407] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[   43.015763][ T5407] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   43.021942][ T5410] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4)
[   43.022485][ T5407] vhci_hcd vhci_hcd.0: Device attached
[   43.023684][ T5410] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   43.033600][ T5410] vhci_hcd vhci_hcd.0: Device attached
[   43.235064][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   43.264037][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   43.268132][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   43.270834][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   43.273541][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   43.276632][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   43.279344][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   43.282520][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   43.285607][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   43.287779][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   43.300722][ T5428] usb 2-1: USB disconnect, device number 2
[   43.305421][ T5427] 9pnet_virtio: no channels available for device syz
[   43.308787][ T5427] overlay: Bad value for 'metacopy'
[   43.390118][ T5384] vhci_hcd: vhci_device speed not set
[   43.443034][ T5429] hub 2-0:1.0: USB hub found
[   43.468047][ T5429] hub 2-0:1.0: 6 ports detected
[   43.478437][ T5384] usb 17-1: new full-speed USB device number 2 using vhci_hcd
[   43.545468][ T5423] /dev/sr0: Can't open blockdev
[   43.633767][ T5386] usb 2-1: new high-speed USB device number 3 using ehci-pci
[   43.785245][ T5424] overlay: Bad value for 'metacopy'
[   43.849029][ T5386] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[   43.852182][ T5386] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[   43.855279][ T5386] usb 2-1: Product: QEMU USB Tablet
[   43.863716][ T5386] usb 2-1: Manufacturer: QEMU
[   43.865456][ T5386] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[   43.951312][ T5386] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0002/input/input5
[   43.971862][ T5411] vhci_hcd: connection closed
[   43.972879][ T1106] vhci_hcd: stop threads
[   43.979336][ T1106] vhci_hcd: release socket
[   43.980781][ T1106] vhci_hcd: disconnect device
[   44.040145][ T5386] hid-generic 0003:0627:0001.0002: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[   44.294479][ T5345] Bluetooth: hci2: command tx timeout
[   44.374025][ T5345] Bluetooth: hci1: command tx timeout
[   44.376236][ T5345] Bluetooth: hci0: command tx timeout
[   44.378450][ T5345] Bluetooth: hci3: command tx timeout
[   44.893817][ T4802] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   44.966290][ T5416] vhci_hcd: connection reset by peer
[   44.970687][ T1109] vhci_hcd: stop threads
[   44.972362][ T1109] vhci_hcd: release socket
[   45.003819][ T1109] vhci_hcd: disconnect device
[   45.043796][ T4802] usb 5-1: Using ep0 maxpacket: 8
[   45.062464][ T4802] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[   45.065692][ T4802] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[   45.069174][ T4802] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   45.071986][ T4802] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   45.074864][ T4802] usb 5-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[   45.079348][ T4802] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   45.082362][ T4802] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   45.128074][ T4802] usbtmc 5-1:16.0: bulk endpoints not found
[   45.914998][ T5441] netlink: 'syz.3.6': attribute type 10 has an invalid length.
[   45.917411][ T5441] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.6'.
[   45.920515][ T5441] openvswitch: netlink: Key type 29 is not supported
[   46.373861][ T5355] Bluetooth: hci2: command tx timeout
[   46.453751][ T5355] Bluetooth: hci3: command tx timeout
[   46.455626][ T5355] Bluetooth: hci0: command tx timeout
[   46.457257][ T5355] Bluetooth: hci1: command tx timeout
[   46.691989][ T5453] netlink: 'syz.3.9': attribute type 10 has an invalid length.
[   46.700709][ T5453] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.9'.
[   46.703333][ T5453] openvswitch: netlink: Key type 29 is not supported
[   46.925724][ T5464] netlink: 4 bytes leftover after parsing attributes in process `syz.3.11'.
[   47.037801][ T5465] afs: Unknown parameter 'floc'
[   47.423358][ T5471] overlay: Bad value for 'metacopy'
[   47.622971][ T5458] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   47.627394][ T5458] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   47.638596][ T5458] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   47.642874][ T5458] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   47.646414][ T5458] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   47.650988][ T5458] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   47.660672][ T5458] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   47.662591][ T5458] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   47.668888][ T5458] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   47.671464][ T5458] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   47.673213][ T5458] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   47.678909][ T5458] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   47.984911][   T65] usb 5-1: USB disconnect, device number 2
[   48.273190][ T5479] mmap: syz.0.15 (5479) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   48.294348][ T5474] UBIFS error (pid: 5474): cannot open "./file0", error -22
[   48.314521][ T5405] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   48.484323][ T5405] usb 6-1: Using ep0 maxpacket: 8
[   48.488046][ T5405] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[   48.490941][ T5405] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   48.495155][ T5405] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   48.498846][ T5405] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   48.502259][ T5405] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   48.507615][ T5405] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   48.512494][ T5405] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   48.614105][ T5384] vhci_hcd: vhci_device speed not set
[   48.755403][ T5405] usb 6-1: usb_control_msg returned -32
[   48.757386][ T5405] usbtmc 6-1:16.0: can't read capabilities
[   48.863835][ T5345] Bluetooth: hci0: command 0x0c1a tx timeout
[   49.207953][ T5483] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[   49.210305][ T5483] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   49.213396][ T5483] vhci_hcd vhci_hcd.0: Device attached
[   49.403852][ T5404] vhci_hcd: vhci_device speed not set
[   49.415811][ T5489] overlay: Bad value for 'metacopy'
[   49.463874][ T5404] usb 19-1: new full-speed USB device number 2 using vhci_hcd
[   49.653875][ T5345] Bluetooth: hci1: command 0x0c1a tx timeout
[   49.734075][ T5355] Bluetooth: hci2: command 0x0c1a tx timeout
[   49.735739][ T5345] Bluetooth: hci3: command 0x0c1a tx timeout
[   49.860897][ T5496] warning: `syz.2.19' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   49.945495][ T5499] usb 2-1: USB disconnect, device number 3
[   50.001975][ T5500] hub 2-0:1.0: USB hub found
[   50.005262][ T5498] /dev/sr0: Can't open blockdev
[   50.005293][ T5500] hub 2-0:1.0: 6 ports detected
[   50.068332][ T5484] vhci_hcd: connection reset by peer
[   50.070038][   T12] vhci_hcd: stop threads
[   50.073045][   T12] vhci_hcd: release socket
[   50.076460][   T12] vhci_hcd: disconnect device
[   50.234196][  T828] usb 2-1: new high-speed USB device number 4 using ehci-pci
[   50.428294][  T828] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[   50.440335][  T828] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[   50.443006][  T828] usb 2-1: Product: QEMU USB Tablet
[   50.445868][  T828] usb 2-1: Manufacturer: QEMU
[   50.451040][  T828] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[   50.538869][  T828] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0003/input/input6
[   50.550577][ T5506] /dev/sr0: Can't open blockdev
[   50.657206][  T828] hid-generic 0003:0627:0001.0003: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[   50.933928][ T5345] Bluetooth: hci0: command 0x0c1a tx timeout
[   51.141822][   T65] usb 6-1: USB disconnect, device number 2
[   51.259745][ T5510] netlink: 'syz.1.21': attribute type 10 has an invalid length.
[   51.262032][ T5510] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.21'.
[   51.265289][ T5510] openvswitch: netlink: Key type 29 is not supported
[   51.733767][ T5345] Bluetooth: hci1: command 0x0c1a tx timeout
[   51.740087][ T5518] 9pnet_virtio: no channels available for device syz
[   51.823925][ T5345] Bluetooth: hci3: command 0x0c1a tx timeout
[   51.826103][ T5345] Bluetooth: hci2: command 0x0c1a tx timeout
[   51.833413][ T5518] overlay: Bad value for 'metacopy'
[   52.303915][   T65] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   52.465195][   T65] usb 8-1: Using ep0 maxpacket: 8
[   52.469278][   T65] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[   52.471426][   T65] usb 8-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[   52.474342][   T65] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   52.481396][   T65] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   52.485040][   T65] usb 8-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[   52.488386][   T65] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   52.490756][   T65] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   52.496993][   T65] usbtmc 8-1:16.0: bulk endpoints not found
[   52.679620][ T5540] usb 2-1: USB disconnect, device number 4
[   52.756337][ T5533] /dev/sr0: Can't open blockdev
[   52.783878][ T5533] hub 2-0:1.0: USB hub found
[   52.785575][ T5533] hub 2-0:1.0: 6 ports detected
[   52.973713][ T4802] usb 2-1: new high-speed USB device number 5 using ehci-pci
[   53.013834][ T5355] Bluetooth: hci0: command 0x0c1a tx timeout
[   53.152881][ T4802] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[   53.158272][ T4802] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[   53.162154][ T4802] usb 2-1: Product: QEMU USB Tablet
[   53.171133][ T4802] usb 2-1: Manufacturer: QEMU
[   53.177188][ T4802] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[   53.218098][ T4802] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0004/input/input7
[   53.426379][ T4802] hid-generic 0003:0627:0001.0004: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[   53.627252][ T5554] xt_cluster: node mask cannot exceed total number of nodes
[   53.632490][ T5554] netlink: 8 bytes leftover after parsing attributes in process `syz.2.30'.
[   53.653378][ T5553] netlink: 60 bytes leftover after parsing attributes in process `syz.2.30'.
[   53.823757][ T5345] Bluetooth: hci1: command 0x0c1a tx timeout
[   53.870012][ T5569] usb 2-1: USB disconnect, device number 5
[   53.903722][ T5345] Bluetooth: hci2: command 0x0c1a tx timeout
[   53.906649][ T5345] Bluetooth: hci3: command 0x0c1a tx timeout
[   53.935059][ T5551] /dev/sr0: Can't open blockdev
[   54.001651][ T5570] hub 2-0:1.0: USB hub found
[   54.021698][ T5570] hub 2-0:1.0: 6 ports detected
[   54.326758][  T828] usb 2-1: new high-speed USB device number 6 using ehci-pci
[   54.864015][ T5404] vhci_hcd: vhci_device speed not set
[   54.948895][  T828] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[   54.956930][  T828] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[   54.959331][  T828] usb 2-1: Product: QEMU USB Tablet
[   54.960883][  T828] usb 2-1: Manufacturer: QEMU
[   54.962584][  T828] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[   54.982344][ T5575] netlink: 8 bytes leftover after parsing attributes in process `syz.0.32'.
[   54.992743][  T828] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0005/input/input8
[   55.071921][  T828] hid-generic 0003:0627:0001.0005: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[   55.178558][ T5405] usb 8-1: USB disconnect, device number 2
[   55.331281][ T5582] FAULT_INJECTION: forcing a failure.
[   55.331281][ T5582] name failslab, interval 1, probability 0, space 0, times 0
[   55.341088][ T5582] CPU: 2 UID: 0 PID: 5582 Comm: syz.0.33 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[   55.344729][ T5582] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   55.348511][ T5582] Call Trace:
[   55.349662][ T5582]  <TASK>
[   55.350721][ T5582]  dump_stack_lvl+0x16c/0x1f0
[   55.352397][ T5582]  should_fail_ex+0x497/0x5b0
[   55.354072][ T5582]  ? fs_reclaim_acquire+0xae/0x160
[   55.356169][ T5582]  should_failslab+0xc2/0x120
[   55.357776][ T5582]  kmem_cache_alloc_noprof+0x6e/0x2f0
[   55.359625][ T5582]  ? vm_area_dup+0x53/0x300
[   55.361233][ T5582]  vm_area_dup+0x53/0x300
[   55.362768][ T5582]  __split_vma+0x181/0x1210
[   55.364384][ T5582]  ? __pfx___split_vma+0x10/0x10
[   55.366082][ T5582]  ? __pfx___lock_acquire+0x10/0x10
[   55.367900][ T5582]  vma_modify.constprop.0+0x156d/0x2440
[   55.369810][ T5582]  ? reacquire_held_locks+0x450/0x4c0
[   55.371706][ T5582]  ? __pfx_vma_modify.constprop.0+0x10/0x10
[   55.373693][ T5582]  vma_modify_flags+0x209/0x2a0
[   55.374906][ T5582]  ? __pfx_vma_modify_flags+0x10/0x10
[   55.376374][ T5582]  mprotect_fixup+0x2c2/0xbe0
[   55.377711][ T5582]  ? __pfx_mprotect_fixup+0x10/0x10
[   55.379101][ T5582]  do_mprotect_pkey+0x986/0xd00
[   55.380799][ T5582]  ? __pfx_do_mprotect_pkey+0x10/0x10
[   55.382715][ T5582]  ? __pfx_lock_release+0x10/0x10
[   55.384504][ T5582]  ? syscall_user_dispatch+0x77/0x140
[   55.386374][ T5582]  __ia32_sys_mprotect+0x75/0xb0
[   55.387882][ T5582]  __do_fast_syscall_32+0x73/0x120
[   55.389314][ T5582]  do_fast_syscall_32+0x32/0x80
[   55.391056][ T5582]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   55.393285][ T5582] RIP: 0023:0xf740e579
[   55.394533][ T5582] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   55.401015][ T5582] RSP: 002b:00000000f56f656c EFLAGS: 00000296 ORIG_RAX: 000000000000007d
[   55.403683][ T5582] RAX: ffffffffffffffda RBX: 00000000201da000 RCX: 0000000000003000
[   55.406239][ T5582] RDX: 000000000000000c RSI: 0000000000000000 RDI: 0000000000000000
[   55.408957][ T5582] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   55.411665][ T5582] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   55.414359][ T5582] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   55.416978][ T5582]  </TASK>
[   55.869005][ T5598] afs: Unknown parameter 'floc'
[   56.351420][ T5594] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   56.354925][ T5594] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   56.363919][ T5594] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   56.365627][ T5594] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   56.761167][ T5612] usb 2-1: USB disconnect, device number 6
[   56.884457][ T5613] hub 2-0:1.0: USB hub found
[   56.888108][ T5613] hub 2-0:1.0: 6 ports detected
[   57.073754][ T5543] usb 2-1: new high-speed USB device number 7 using ehci-pci
[   57.247728][ T5543] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[   57.251025][ T5543] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[   57.253930][ T5543] usb 2-1: Product: QEMU USB Tablet
[   57.255311][ T5543] usb 2-1: Manufacturer: QEMU
[   57.256828][ T5405] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[   57.257246][ T5543] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[   57.288652][ T5543] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0006/input/input9
[   57.358185][ T5543] hid-generic 0003:0627:0001.0006: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[   57.413707][ T5405] usb 8-1: Using ep0 maxpacket: 8
[   57.417480][ T5405] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[   57.419679][ T5405] usb 8-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[   57.422566][ T5405] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   57.429703][ T5405] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   57.432241][ T5405] usb 8-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[   57.436524][ T5405] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   57.438867][ T5405] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   57.444461][ T5405] usbtmc 8-1:16.0: bulk endpoints not found
[   57.575449][ T5345] Bluetooth: hci0: command 0x0c1a tx timeout
[   58.334028][   T65] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   58.373906][ T5345] Bluetooth: hci3: command 0x0c1a tx timeout
[   58.378501][ T5345] Bluetooth: hci2: command 0x0c1a tx timeout
[   58.378544][ T5345] Bluetooth: hci1: command 0x0c1a tx timeout
[   58.483771][   T65] usb 5-1: Using ep0 maxpacket: 8
[   58.492154][   T65] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[   58.494382][   T65] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[   58.497102][   T65] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   58.499612][   T65] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   58.513142][   T65] usb 5-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[   58.516956][   T65] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   58.519787][   T65] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   58.530433][   T65] usbtmc 5-1:16.0: bulk endpoints not found
[   58.632444][ T5642] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   60.037150][   T65] usb 8-1: USB disconnect, device number 3
[   60.939852][ T5653] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   60.942506][ T5653] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   60.945677][ T5653] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   60.947719][ T5653] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   60.984009][ T5658] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[   60.985644][ T5658] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   60.987956][ T5658] vhci_hcd vhci_hcd.0: Device attached
[   61.163929][   T65] vhci_hcd: vhci_device speed not set
[   61.225090][   T65] usb 19-1: new full-speed USB device number 3 using vhci_hcd
[   61.854615][ T5659] vhci_hcd: connection reset by peer
[   61.858146][   T45] vhci_hcd: stop threads
[   61.859802][   T45] vhci_hcd: release socket
[   61.861654][   T45] vhci_hcd: disconnect device
[   62.044706][ T5403] usb 5-1: USB disconnect, device number 3
[   62.214057][ T5356] Bluetooth: hci0: command 0x0c1a tx timeout
[   62.723894][ T5384] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   62.873830][ T5384] usb 7-1: Using ep0 maxpacket: 8
[   62.884760][ T5384] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[   62.887608][ T5384] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   62.890930][ T5384] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   62.894637][ T5384] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   62.898089][ T5384] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   62.902485][ T5384] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   62.906193][ T5384] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   63.024706][ T5356] Bluetooth: hci3: command 0x0c1a tx timeout
[   63.025043][ T5345] Bluetooth: hci1: command 0x0c1a tx timeout
[   63.025059][ T5355] Bluetooth: hci2: command 0x0c1a tx timeout
[   63.133379][ T5384] usb 7-1: usb_control_msg returned -32
[   63.134894][ T5384] usbtmc 7-1:16.0: can't read capabilities
[   63.453860][ T5683] netlink: 'syz.3.54': attribute type 4 has an invalid length.
[   63.993807][ T5384] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[   64.127926][ T5694] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[   64.130315][ T5694] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   64.138149][ T5694] vhci_hcd vhci_hcd.0: Device attached
[   64.145440][ T5384] usb 8-1: Using ep0 maxpacket: 8
[   64.149767][ T5384] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[   64.152623][ T5384] usb 8-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[   64.157210][ T5384] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   64.160937][ T5384] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   64.165339][ T5384] usb 8-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[   64.169974][ T5384] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   64.173174][ T5384] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   64.185357][ T5384] usbtmc 8-1:16.0: bulk endpoints not found
[   64.271288][ T5697] overlay: Bad value for 'metacopy'
[   64.315911][ T1411] vhci_hcd: vhci_device speed not set
[   64.373978][ T1411] usb 13-1: new full-speed USB device number 2 using vhci_hcd
[   64.394839][  T828] usb 7-1: USB disconnect, device number 2
[   65.006883][ T5695] vhci_hcd: connection reset by peer
[   65.008809][   T83] vhci_hcd: stop threads
[   65.009949][   T83] vhci_hcd: release socket
[   65.011898][   T83] vhci_hcd: disconnect device
[   65.143755][ T5706] usb 2-1: USB disconnect, device number 7
[   65.201020][ T5707] hub 2-0:1.0: USB hub found
[   65.202695][ T5707] hub 2-0:1.0: 6 ports detected
[   65.204482][ T5704] /dev/sr0: Can't open blockdev
[   65.419129][  T828] usb 2-1: new high-speed USB device number 8 using ehci-pci
[   65.625802][  T828] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[   65.641184][  T828] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[   65.656887][  T828] usb 2-1: Product: QEMU USB Tablet
[   65.671153][  T828] usb 2-1: Manufacturer: QEMU
[   65.680449][  T828] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[   65.734654][  T828] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0007/input/input10
[   65.806608][  T828] hid-generic 0003:0627:0001.0007: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[   66.363779][   T65] vhci_hcd: vhci_device speed not set
[   66.737777][ T5385] usb 8-1: USB disconnect, device number 4
[   67.091142][ T5723] FAULT_INJECTION: forcing a failure.
[   67.091142][ T5723] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   67.099726][ T5723] CPU: 0 UID: 0 PID: 5723 Comm: syz.2.63 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[   67.103264][ T5723] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   67.106428][ T5723] Call Trace:
[   67.107652][ T5723]  <TASK>
[   67.108733][ T5723]  dump_stack_lvl+0x16c/0x1f0
[   67.110440][ T5723]  should_fail_ex+0x497/0x5b0
[   67.112140][ T5723]  _copy_from_user+0x30/0xf0
[   67.113816][ T5723]  get_compat_msghdr+0xa8/0x170
[   67.115608][ T5723]  ? __pfx_get_compat_msghdr+0x10/0x10
[   67.117580][ T5723]  ? find_held_lock+0x2d/0x110
[   67.119315][ T5723]  ___sys_recvmsg+0x193/0x1a0
[   67.120881][ T5723]  ? __pfx____sys_recvmsg+0x10/0x10
[   67.122591][ T5723]  ? lock_acquire+0x2f/0xb0
[   67.124209][ T5723]  ? __fget_files+0x40/0x3f0
[   67.125903][ T5723]  ? __pfx___might_resched+0x10/0x10
[   67.127704][ T5723]  ? fdget+0x176/0x210
[   67.128900][ T5723]  do_recvmmsg+0x51a/0x750
[   67.130534][ T5723]  ? __pfx_do_recvmmsg+0x10/0x10
[   67.133329][ T5723]  ? __pfx_lock_release+0x10/0x10
[   67.133351][ T5723]  ? vfs_write+0x14d/0x1140
[   67.133369][ T5723]  ? __fget_files+0x244/0x3f0
[   67.133381][ T5723]  __sys_recvmmsg+0x21e/0x280
[   67.133397][ T5723]  ? __pfx___sys_recvmmsg+0x10/0x10
[   67.133413][ T5723]  ? __pfx_ksys_write+0x10/0x10
[   67.133425][ T5723]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[   67.133438][ T5723]  ? lockdep_hardirqs_on+0x7c/0x110
[   67.133452][ T5723]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   67.133465][ T5723]  __do_fast_syscall_32+0x73/0x120
[   67.133480][ T5723]  do_fast_syscall_32+0x32/0x80
[   67.133493][ T5723]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   67.133508][ T5723] RIP: 0023:0xf743e579
[   67.133518][ T5723] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   67.133528][ T5723] RSP: 002b:00000000f572656c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[   67.133539][ T5723] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000840
[   67.133546][ T5723] RDX: 0000000000000414 RSI: 0000000000000000 RDI: 0000000000000000
[   67.133552][ T5723] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   67.133558][ T5723] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   67.133565][ T5723] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   67.133576][ T5723]  </TASK>
[   67.253008][ T5730] Zero length message leads to an empty skb
[   68.928071][ T5743] netlink: 8 bytes leftover after parsing attributes in process `syz.3.68'.
[   68.930442][ T5743] netlink: 8 bytes leftover after parsing attributes in process `syz.3.68'.
[   69.175578][ T5755] usb 2-1: USB disconnect, device number 8
[   69.226518][ T5755] hub 2-0:1.0: USB hub found
[   69.228807][ T5755] hub 2-0:1.0: 6 ports detected
[   69.246012][ T5754] /dev/sr0: Can't open blockdev
[   69.420351][ T5356] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   69.423737][  T828] usb 2-1: new high-speed USB device number 9 using ehci-pci
[   69.425500][ T5356] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   69.429404][ T5356] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   69.432707][ T5356] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   69.437856][ T5356] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   69.441484][ T5356] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   69.484248][ T1411] vhci_hcd: vhci_device speed not set
[   69.555460][ T5757] chnl_net:caif_netlink_parms(): no params data found
[   69.629006][  T828] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[   69.631426][  T828] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[   69.633514][  T828] usb 2-1: Product: QEMU USB Tablet
[   69.637896][  T828] usb 2-1: Manufacturer: QEMU
[   69.639668][  T828] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[   69.668900][  T828] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0008/input/input11
[   69.674882][ T5757] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.678417][ T5757] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.681153][ T5757] bridge_slave_0: entered allmulticast mode
[   69.688834][ T5757] bridge_slave_0: entered promiscuous mode
[   69.693119][ T5757] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.696179][ T5757] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.698948][ T5757] bridge_slave_1: entered allmulticast mode
[   69.702291][ T5757] bridge_slave_1: entered promiscuous mode
[   69.739107][  T828] hid-generic 0003:0627:0001.0008: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[   69.743272][ T5757] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   69.754842][ T5757] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   69.900979][ T5757] team0: Port device team_slave_0 added
[   69.910898][ T5757] team0: Port device team_slave_1 added
[   69.929696][ T5766] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[   69.932089][ T5766] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   69.941860][ T5766] vhci_hcd vhci_hcd.0: Device attached
[   69.949370][ T5757] batman_adv: batadv0: Adding interface: batadv_slave_0
[   69.951584][ T5757] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   69.961059][ T5757] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   69.966173][ T5757] batman_adv: batadv0: Adding interface: batadv_slave_1
[   69.968307][ T5757] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   69.977464][ T5757] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   70.045949][ T5757] hsr_slave_0: entered promiscuous mode
[   70.062448][ T5757] hsr_slave_1: entered promiscuous mode
[   70.064551][ T5757] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   70.066563][ T5757] Cannot create hsr debugfs directory
[   70.094688][ T5769] overlay: Bad value for 'metacopy'
[   70.143464][ T5757] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.220479][ T5757] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.224639][ T1411] vhci_hcd: vhci_device speed not set
[   70.231810][ T5771] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[   70.233482][ T5771] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   70.236986][ T5771] vhci_hcd vhci_hcd.0: Device attached
[   70.286868][ T1411] usb 13-1: device descriptor read/64, error -110
[   70.308965][ T5757] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.310571][ T5774] 9pnet_virtio: no channels available for device syz
[   70.372640][ T5757] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.413991][ T5385] vhci_hcd: vhci_device speed not set
[   70.473897][ T5385] usb 19-1: new full-speed USB device number 4 using vhci_hcd
[   70.477030][ T1411] vhci_hcd: vhci_device speed not set
[   70.540006][ T5757] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   70.543881][ T1411] usb 13-1: new full-speed USB device number 3 using vhci_hcd
[   70.559378][ T5757] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   70.562967][ T5757] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   70.567509][ T5757] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   70.609710][ T5757] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.620013][ T5757] 8021q: adding VLAN 0 to HW filter on device team0
[   70.629171][   T45] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.631483][   T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[   70.638397][   T45] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.640358][   T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[   70.698360][ T1374] ieee802154 phy0 wpan0: encryption failed: -22
[   70.700189][ T1374] ieee802154 phy1 wpan1: encryption failed: -22
[   70.807178][ T5757] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.859950][ T5757] veth0_vlan: entered promiscuous mode
[   70.874373][ T5757] veth1_vlan: entered promiscuous mode
[   70.892935][ T5757] veth0_macvtap: entered promiscuous mode
[   70.900878][ T5757] veth1_macvtap: entered promiscuous mode
[   70.919195][ T5757] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   70.923189][ T5757] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.928860][ T5757] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   70.932681][ T5757] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.936263][ T5757] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   70.940240][ T5757] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.942986][ T5757] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   70.947066][ T5757] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.952454][ T5757] batman_adv: batadv0: Interface activated: batadv_slave_0
[   70.952797][ T5767] vhci_hcd: connection reset by peer
[   70.968800][ T5757] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.968940][   T83] vhci_hcd: stop threads
[   70.972375][ T5757] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.977342][ T5757] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.977369][   T83] vhci_hcd: release socket
[   70.981065][   T83] vhci_hcd: disconnect device
[   70.982168][ T5757] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.988696][ T5757] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.992397][ T5757] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.996272][ T5757] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.000092][ T5757] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.004968][ T5757] batman_adv: batadv0: Interface activated: batadv_slave_1
[   71.025301][ T5757] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   71.035528][ T5757] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   71.038528][ T5757] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   71.056112][ T5757] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.134520][ T1095] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.137201][ T1095] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.142457][ T5772] vhci_hcd: connection reset by peer
[   71.150768][ T1095] vhci_hcd: stop threads
[   71.156723][ T1109] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.158797][ T1109] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.159124][ T1095] vhci_hcd: release socket
[   71.162920][ T1095] vhci_hcd: disconnect device
[   71.514239][ T5356] Bluetooth: hci4: command tx timeout
[   71.529362][ T5788] usb 2-1: USB disconnect, device number 9
[   71.645166][ T5786] /dev/sr0: Can't open blockdev
[   71.956278][ T5789] hub 2-0:1.0: USB hub found
[   71.968442][ T5789] hub 2-0:1.0: 6 ports detected
[   72.574770][   T65] usb 2-1: new high-speed USB device number 10 using ehci-pci
[   72.713845][   T25] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   72.785750][   T65] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[   72.788248][   T65] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[   72.790338][   T65] usb 2-1: Product: QEMU USB Tablet
[   72.791746][   T65] usb 2-1: Manufacturer: QEMU
[   72.792984][   T65] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[   72.809679][   T65] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0009/input/input12
[   72.826191][   T65] hid-generic 0003:0627:0001.0009: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[   72.884530][   T25] usb 6-1: Using ep0 maxpacket: 8
[   72.888774][   T25] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[   72.891092][   T25] usb 6-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[   72.894671][   T25] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   72.901443][   T25] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   72.921006][   T25] usb 6-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[   72.953139][   T25] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   72.991981][   T25] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   73.178465][   T25] usbtmc 6-1:16.0: bulk endpoints not found
[   73.573795][ T5356] Bluetooth: hci4: command tx timeout
[   73.690213][ T5799] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[   73.691763][ T5799] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   73.694555][ T5799] vhci_hcd vhci_hcd.0: Device attached
[   73.847947][ T5809] overlay: Bad value for 'metacopy'
[   74.522170][ T5800] vhci_hcd: connection closed
[   74.522772][   T64] vhci_hcd: stop threads
[   74.533384][   T64] vhci_hcd: release socket
[   74.543449][   T64] vhci_hcd: disconnect device
[   75.286898][ T5829] usb 2-1: USB disconnect, device number 10
[   75.312304][ T5828] /dev/sr0: Can't open blockdev
[   75.358192][ T5828] hub 2-0:1.0: USB hub found
[   75.360633][ T5828] hub 2-0:1.0: 6 ports detected
[   75.523843][   T25] usb 2-1: new high-speed USB device number 11 using ehci-pci
[   75.574529][ T5385] vhci_hcd: vhci_device speed not set
[   75.643899][ T1411] vhci_hcd: vhci_device speed not set
[   75.653888][ T5356] Bluetooth: hci4: command tx timeout
[   75.708243][   T25] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[   75.711725][   T25] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[   75.715642][   T25] usb 2-1: Product: QEMU USB Tablet
[   75.717491][   T25] usb 2-1: Manufacturer: QEMU
[   75.719210][   T25] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[   75.738324][   T25] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.000A/input/input13
[   75.819563][   T25] hid-generic 0003:0627:0001.000A: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[   75.838125][   T58] cfg80211: failed to load regulatory.db
[   75.861811][ T5836] usb 2-1: USB disconnect, device number 11
[   75.905000][ T5835] /dev/sr0: Can't open blockdev
[   75.933239][ T5835] hub 2-0:1.0: USB hub found
[   75.937886][ T5835] hub 2-0:1.0: 6 ports detected
[   76.061811][   T57] usb 6-1: USB disconnect, device number 3
[   76.110957][ T5838] netlink: 12 bytes leftover after parsing attributes in process `syz.1.82'.
[   76.183762][  T828] usb 2-1: new high-speed USB device number 12 using ehci-pci
[   76.368049][  T828] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[   76.371048][  T828] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[   76.377295][ T5839] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   76.385836][  T828] usb 2-1: Product: QEMU USB Tablet
[   76.387349][  T828] usb 2-1: Manufacturer: QEMU
[   76.388923][  T828] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[   76.407463][  T828] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.000B/input/input14
[   76.417063][  T828] hid-generic 0003:0627:0001.000B: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[   76.643789][   T57] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[   76.775463][ T5841] Illegal XDP return value 4294967294 on prog  (id 25) dev N/A, expect packet loss!
[   76.793869][   T57] usb 6-1: Using ep0 maxpacket: 8
[   76.805192][   T57] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[   76.808313][   T57] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[   76.810629][   T57] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[   76.823751][   T57] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[   76.827834][   T57] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[   76.843702][   T57] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[   76.847616][   T57] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[   76.856275][   T57] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[   76.859500][   T57] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[   76.862080][   T57] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[   76.865770][   T57] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[   76.869560][   T57] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[   76.873387][   T57] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[   76.885858][   T57] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[   76.889501][   T57] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[   76.891773][   T57] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[   76.893864][   T57] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[   76.896247][   T57] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[   76.899214][   T57] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[   76.902069][   T57] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[   76.913734][   T57] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[   76.918659][   T57] usb 6-1: string descriptor 0 read error: -22
[   76.920337][   T57] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   76.922665][   T57] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   76.930098][   T57] adutux 6-1:246.0: ADU100  now attached to /dev/usb/adutux0
[   77.458231][ T5854] usb 2-1: USB disconnect, device number 12
[   77.507673][ T5849] /dev/sr0: Can't open blockdev
[   77.571231][ T5849] hub 2-0:1.0: USB hub found
[   77.575971][ T5849] hub 2-0:1.0: 6 ports detected
[   77.734217][ T5356] Bluetooth: hci4: command tx timeout
[   77.823766][   T58] usb 2-1: new high-speed USB device number 13 using ehci-pci
[   77.838965][ T5859] binder: 5856:5859 ioctl c00c620f 20000340 returned -22
[   78.009839][   T58] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[   78.014780][   T58] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[   78.021135][   T58] usb 2-1: Product: QEMU USB Tablet
[   78.022600][   T58] usb 2-1: Manufacturer: QEMU
[   78.024010][   T58] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[   78.045447][   T58] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.000C/input/input15
[   78.115430][   T58] hid-generic 0003:0627:0001.000C: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[   78.403600][ T5870] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4)
[   78.405757][ T5870] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   78.409543][ T5870] vhci_hcd vhci_hcd.0: Device attached
[   78.521108][ T5867] syz.2.89 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   78.523542][ T5874] overlay: Bad value for 'metacopy'
[   78.593949][   T58] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[   78.594753][ T5385] vhci_hcd: vhci_device speed not set
[   78.656550][ T5385] usb 13-1: new full-speed USB device number 4 using vhci_hcd
[   78.753747][   T58] usb 8-1: Using ep0 maxpacket: 8
[   78.757402][   T58] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[   78.760815][   T58] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   78.764317][   T58] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   78.767779][   T58] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   78.772973][   T58] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   78.778435][   T58] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   78.782147][   T58] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   79.007673][   T58] usb 8-1: usb_control_msg returned -32
[   79.009196][   T58] usbtmc 8-1:16.0: can't read capabilities
[   79.054438][   T58] usb 6-1: USB disconnect, device number 4
[   79.276588][ T5871] vhci_hcd: connection reset by peer
[   79.278291][ T1095] vhci_hcd: stop threads
[   79.279544][ T1095] vhci_hcd: release socket
[   79.280787][ T1095] vhci_hcd: disconnect device
[   79.516968][ T5885] fuse: Bad value for 'fd'
[   80.921902][ T5907] usb 2-1: USB disconnect, device number 13
[   80.981514][ T5909] FAT-fs (nullb0): bogus number of reserved sectors
[   80.984628][ T5904] /dev/sr0: Can't open blockdev
[   80.986934][ T5909] FAT-fs (nullb0): Can't find a valid FAT filesystem
[   81.039280][ T5910] hub 2-0:1.0: USB hub found
[   81.049280][ T5910] hub 2-0:1.0: 6 ports detected
[   81.099682][ T5914] netlink: 'syz.0.99': attribute type 10 has an invalid length.
[   81.101840][ T5914] ipvlan1: entered promiscuous mode
[   81.121349][ T5914] team0: Device ipvlan1 failed to register rx_handler
[   81.263964][   T58] usb 2-1: new high-speed USB device number 14 using ehci-pci
[   81.332595][ T5436] usb 8-1: USB disconnect, device number 5
[   81.367602][ T5924] netlink: 4 bytes leftover after parsing attributes in process `syz.3.102'.
[   81.458091][   T58] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[   81.462570][   T58] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[   81.466229][   T58] usb 2-1: Product: QEMU USB Tablet
[   81.468913][   T58] usb 2-1: Manufacturer: QEMU
[   81.475095][   T58] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[   81.536549][   T58] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.000D/input/input16
[   81.624095][   T58] hid-generic 0003:0627:0001.000D: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[   82.933767][ T5356] Bluetooth: hci4: command tx timeout
[   83.203817][ T5403] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   83.354291][ T5403] usb 7-1: Using ep0 maxpacket: 16
[   83.363375][ T5403] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   83.367662][ T5403] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   83.370622][ T5403] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[   83.375157][ T5403] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[   83.378908][ T5403] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   83.385380][ T5403] usb 7-1: config 0 descriptor??
[   83.673105][ T5953] netlink: 'syz.0.109': attribute type 1 has an invalid length.
[   83.678061][ T5953] netlink: 224 bytes leftover after parsing attributes in process `syz.0.109'.
[   83.734867][ T5954] overlayfs: missing 'lowerdir'
[   83.746203][ T5954] overlayfs: workdir and upperdir must be separate subtrees
[   83.805468][ T5385] vhci_hcd: vhci_device speed not set
[   83.812314][ T5403] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[   83.823563][ T5403] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[   83.825706][ T5403] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[   83.827686][ T5403] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[   83.830124][ T5403] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[   83.834221][ T5403] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[   83.836976][ T5403] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[   83.840300][ T5403] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[   83.842358][ T5403] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[   83.846147][ T5403] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[   83.878263][ T5403] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/0003:045E:07DA.000E/input/input17
[   83.896660][ T5403] microsoft 0003:045E:07DA.000E: input,hidraw1: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[   84.011378][ T5940] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   84.030008][ T5940] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   84.265761][ T5940] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   84.289757][ T5940] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   84.399088][   T58] usb 7-1: USB disconnect, device number 3
[   84.634586][ T5968] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[   84.636412][ T5968] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   84.638522][ T5968] vhci_hcd vhci_hcd.0: Device attached
[   84.716872][ T5971] overlay: Bad value for 'metacopy'
[   84.824314][   T25] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   84.824997][ T5436] vhci_hcd: vhci_device speed not set
[   84.884329][ T5436] usb 15-1: new full-speed USB device number 2 using vhci_hcd
[   84.973726][   T25] usb 5-1: Using ep0 maxpacket: 8
[   84.978995][   T25] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[   84.981920][   T25] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   84.994442][   T25] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   84.998035][   T25] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   85.001334][   T25] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   85.007452][   T25] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   85.010596][   T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   85.060628][ T5976] FAULT_INJECTION: forcing a failure.
[   85.060628][ T5976] name failslab, interval 1, probability 0, space 0, times 0
[   85.101157][ T5976] CPU: 3 UID: 0 PID: 5976 Comm: syz.3.114 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[   85.104933][ T5976] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.108715][ T5976] Call Trace:
[   85.109907][ T5976]  <TASK>
[   85.110975][ T5976]  dump_stack_lvl+0x16c/0x1f0
[   85.112609][ T5976]  should_fail_ex+0x497/0x5b0
[   85.114282][ T5976]  ? fs_reclaim_acquire+0xae/0x160
[   85.116112][ T5976]  should_failslab+0xc2/0x120
[   85.117788][ T5976]  __kmalloc_noprof+0xcb/0x410
[   85.119516][ T5976]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   85.121487][ T5976]  tomoyo_realpath_from_path+0xbf/0x710
[   85.123459][ T5976]  ? tomoyo_path_number_perm+0x232/0x5b0
[   85.125418][ T5976]  tomoyo_path_number_perm+0x245/0x5b0
[   85.127363][ T5976]  ? tomoyo_path_number_perm+0x232/0x5b0
[   85.129351][ T5976]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   85.131602][ T5976]  ? trace_lock_acquire+0x14a/0x1d0
[   85.133438][ T5976]  ? lock_acquire+0x2f/0xb0
[   85.135107][ T5976]  ? __fget_files+0x40/0x3f0
[   85.136758][ T5976]  ? __fget_files+0x244/0x3f0
[   85.138397][ T5976]  security_file_ioctl_compat+0x9b/0x240
[   85.140420][ T5976]  __do_compat_sys_ioctl+0x52/0x2b0
[   85.142303][ T5976]  __do_fast_syscall_32+0x73/0x120
[   85.144068][ T5976]  do_fast_syscall_32+0x32/0x80
[   85.145786][ T5976]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   85.147975][ T5976] RIP: 0023:0xf73be579
[   85.149437][ T5976] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   85.156289][ T5976] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   85.159184][ T5976] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080045432
[   85.161877][ T5976] RDX: 0000000020000500 RSI: 0000000000000000 RDI: 0000000000000000
[   85.164670][ T5976] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   85.167467][ T5976] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   85.170255][ T5976] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   85.172993][ T5976]  </TASK>
[   85.180863][ T5976] ERROR: Out of memory at tomoyo_realpath_from_path.
[   85.199843][ T5977] RDS: rds_bind could not find a transport for ::ffff:100.1.1.1, load rds_tcp or rds_rdma?
[   85.473804][   T25] usb 5-1: usb_control_msg returned -32
[   85.475323][   T25] usbtmc 5-1:16.0: can't read capabilities
[   85.883530][ T5988] fuse: Bad value for 'fd'
[   85.885347][ T5969] vhci_hcd: connection reset by peer
[   85.887917][   T64] vhci_hcd: stop threads
[   85.889192][   T64] vhci_hcd: release socket
[   85.890565][   T64] vhci_hcd: disconnect device
[   86.743752][ T5404] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[   86.913738][ T5404] usb 8-1: Using ep0 maxpacket: 8
[   86.924287][ T5404] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[   86.926575][ T5404] usb 8-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[   86.930077][ T5404] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   86.933165][ T5404] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   86.936863][ T5404] usb 8-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[   86.940548][ T5404] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   86.943621][ T5404] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   86.951299][ T5404] usbtmc 8-1:16.0: bulk endpoints not found
[   87.524332][ T1411] usb 5-1: USB disconnect, device number 4
[   87.568204][ T6002] netlink: 'syz.0.119': attribute type 1 has an invalid length.
[   87.892994][ T5998] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   87.903872][ T5998] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   87.907562][ T5998] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   87.907935][ T5998] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   87.908048][ T5998] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[   87.908462][ T5998] Bluetooth: hci4: Opcode 0x0406 failed: -4
[   87.918113][ T5998] Bluetooth: hci4: Opcode 0x0406 failed: -4
[   88.199645][ T6018] lo speed is unknown, defaulting to 1000
[   88.208523][ T6018] lo speed is unknown, defaulting to 1000
[   88.231310][ T6018] lo speed is unknown, defaulting to 1000
[   88.297323][ T6018] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   88.341835][ T6018] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[   88.423782][ T6018] lo speed is unknown, defaulting to 1000
[   88.442715][ T6018] lo speed is unknown, defaulting to 1000
[   88.457851][ T6018] lo speed is unknown, defaulting to 1000
[   88.475765][ T6018] lo speed is unknown, defaulting to 1000
[   88.494562][ T6018] lo speed is unknown, defaulting to 1000
[   88.508236][ T6018] lo speed is unknown, defaulting to 1000
[   89.184727][ T6038] FAULT_INJECTION: forcing a failure.
[   89.184727][ T6038] name failslab, interval 1, probability 0, space 0, times 0
[   89.188129][ T6038] CPU: 3 UID: 0 PID: 6038 Comm: syz.1.128 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[   89.190985][ T6038] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   89.193862][ T6038] Call Trace:
[   89.194755][ T6038]  <TASK>
[   89.195560][ T6038]  dump_stack_lvl+0x16c/0x1f0
[   89.196841][ T6038]  should_fail_ex+0x497/0x5b0
[   89.198110][ T6038]  should_failslab+0xc2/0x120
[   89.199396][ T6038]  kmem_cache_alloc_noprof+0x6e/0x2f0
[   89.200824][ T6038]  ? skb_clone+0x190/0x3f0
[   89.202017][ T6038]  skb_clone+0x190/0x3f0
[   89.203155][ T6038]  netlink_deliver_tap+0xb26/0xcf0
[   89.204554][ T6038]  netlink_unicast+0x5e1/0x7f0
[   89.205824][ T6038]  ? __pfx_netlink_unicast+0x10/0x10
[   89.207229][ T6038]  ? __phys_addr_symbol+0x30/0x80
[   89.208561][ T6038]  ? __check_object_size+0x488/0x710
[   89.209964][ T6038]  netlink_sendmsg+0x8b8/0xd70
[   89.211239][ T6038]  ? __pfx_netlink_sendmsg+0x10/0x10
[   89.212631][ T6038]  ? lock_acquire+0x2f/0xb0
[   89.213934][ T6038]  ____sys_sendmsg+0x9ae/0xb40
[   89.215235][ T6038]  ? __pfx_____sys_sendmsg+0x10/0x10
[   89.216686][ T6038]  ? get_compat_msghdr+0x11b/0x170
[   89.218063][ T6038]  ? __pfx___lock_acquire+0x10/0x10
[   89.219482][ T6038]  ___sys_sendmsg+0x135/0x1e0
[   89.220730][ T6038]  ? __pfx____sys_sendmsg+0x10/0x10
[   89.222108][ T6038]  ? lock_acquire+0x2f/0xb0
[   89.223384][ T6038]  ? __fget_files+0x40/0x3f0
[   89.224633][ T6038]  ? fdget+0x176/0x210
[   89.225726][ T6038]  __sys_sendmsg+0x117/0x1f0
[   89.226959][ T6038]  ? __pfx___sys_sendmsg+0x10/0x10
[   89.228334][ T6038]  ? __fget_files+0x244/0x3f0
[   89.229631][ T6038]  __do_fast_syscall_32+0x73/0x120
[   89.230986][ T6038]  do_fast_syscall_32+0x32/0x80
[   89.232288][ T6038]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   89.233986][ T6038] RIP: 0023:0xf748e579
[   89.235066][ T6038] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   89.240111][ T6038] RSP: 002b:00000000f577656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   89.242332][ T6038] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200000c0
[   89.244434][ T6038] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   89.246504][ T6038] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   89.248599][ T6038] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   89.250688][ T6038] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   89.252785][ T6038]  </TASK>
[   89.257252][ T5345] Bluetooth: hci0: command 0x0c1a tx timeout
[   89.271086][ T6038] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.275784][ T6038] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.277673][ T6038] bridge0: port 2(bridge_slave_1) entered forwarding state
[   89.286424][ T6038] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   89.542292][ T1411] usb 8-1: USB disconnect, device number 6
[   89.554364][ T6047] netlink: 4 bytes leftover after parsing attributes in process `syz.1.131'.
[   89.832282][ T6057] FAULT_INJECTION: forcing a failure.
[   89.832282][ T6057] name failslab, interval 1, probability 0, space 0, times 0
[   89.838119][ T6057] CPU: 0 UID: 0 PID: 6057 Comm: syz.2.134 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[   89.841871][ T6057] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   89.844511][ T6057] Call Trace:
[   89.845361][ T6057]  <TASK>
[   89.846086][ T6057]  dump_stack_lvl+0x16c/0x1f0
[   89.847307][ T6057]  should_fail_ex+0x497/0x5b0
[   89.848439][ T6057]  ? fs_reclaim_acquire+0xae/0x160
[   89.850007][ T6057]  should_failslab+0xc2/0x120
[   89.851654][ T6057]  __kmalloc_noprof+0xcb/0x410
[   89.853387][ T6057]  ? ethnl_set_linkmodes+0x658/0xdc0
[   89.855316][ T6057]  ethnl_default_notify+0x14f/0x720
[   89.857230][ T6057]  ? __pfx_ethnl_default_notify+0x10/0x10
[   89.859370][ T6057]  ? __pfx___nla_validate_parse+0x10/0x10
[   89.861405][ T6057]  ? __pfx_ethnl_default_notify+0x10/0x10
[   89.863391][ T6057]  ethtool_notify+0xbf/0x200
[   89.865088][ T6057]  ethnl_default_set_doit+0x38a/0x6f0
[   89.867036][ T6057]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[   89.869153][ T6057]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[   89.871758][ T6057]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[   89.874438][ T6057]  genl_family_rcv_msg_doit+0x202/0x2f0
[   89.876443][ T6057]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[   89.878175][ T6057]  ? bpf_lsm_capable+0x9/0x10
[   89.879517][ T6057]  ? security_capable+0x7e/0x260
[   89.881208][ T6057]  ? ns_capable+0xd7/0x110
[   89.882379][ T6057]  genl_rcv_msg+0x565/0x800
[   89.883617][ T6057]  ? __pfx_genl_rcv_msg+0x10/0x10
[   89.885101][ T6057]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[   89.887144][ T6057]  netlink_rcv_skb+0x165/0x410
[   89.888813][ T6057]  ? __pfx_genl_rcv_msg+0x10/0x10
[   89.890519][ T6057]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   89.892158][ T6057]  ? down_read+0xc9/0x330
[   89.893311][ T6057]  ? __pfx_down_read+0x10/0x10
[   89.894565][ T6057]  ? netlink_deliver_tap+0x1ae/0xcf0
[   89.896008][ T6057]  genl_rcv+0x28/0x40
[   89.897031][ T6057]  netlink_unicast+0x53c/0x7f0
[   89.898186][ T6057]  ? __pfx_netlink_unicast+0x10/0x10
[   89.899567][ T6057]  ? __phys_addr_symbol+0x30/0x80
[   89.901074][ T6057]  ? __check_object_size+0x488/0x710
[   89.903001][ T6057]  netlink_sendmsg+0x8b8/0xd70
[   89.904729][ T6057]  ? __pfx_netlink_sendmsg+0x10/0x10
[   89.906742][ T6057]  ? lock_acquire+0x2f/0xb0
[   89.908447][ T6057]  ____sys_sendmsg+0x9ae/0xb40
[   89.909943][ T6057]  ? __pfx_____sys_sendmsg+0x10/0x10
[   89.911560][ T6057]  ? get_compat_msghdr+0x11b/0x170
[   89.913532][ T6057]  ? __pfx___lock_acquire+0x10/0x10
[   89.915502][ T6057]  ___sys_sendmsg+0x135/0x1e0
[   89.916814][ T6057]  ? __pfx____sys_sendmsg+0x10/0x10
[   89.918211][ T6057]  ? lock_acquire+0x2f/0xb0
[   89.919559][ T6057]  ? __fget_files+0x40/0x3f0
[   89.921066][ T6057]  ? fdget+0x176/0x210
[   89.922605][ T6057]  __sys_sendmsg+0x117/0x1f0
[   89.924489][ T6057]  ? __pfx___sys_sendmsg+0x10/0x10
[   89.926501][ T6057]  ? __fget_files+0x244/0x3f0
[   89.928368][ T6057]  __do_fast_syscall_32+0x73/0x120
[   89.930038][ T6057]  do_fast_syscall_32+0x32/0x80
[   89.931537][ T6057]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   89.933974][ T6057] RIP: 0023:0xf743e579
[   89.935566][ T6057] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   89.941960][ T6057] RSP: 002b:00000000f572656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   89.945111][ T6057] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000280
[   89.948065][ T6057] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   89.950789][ T6057] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   89.953464][ T6057] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   89.956423][ T6057] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   89.959418][ T6057]  </TASK>
[   89.983806][ T5355] Bluetooth: hci3: command 0x0c1a tx timeout
[   89.985644][ T5355] Bluetooth: hci2: command 0x0c1a tx timeout
[   89.987746][ T5355] Bluetooth: hci1: command 0x0c1a tx timeout
[   89.989435][ T5345] Bluetooth: hci4: command 0x0c1a tx timeout
[   90.043764][ T5436] vhci_hcd: vhci_device speed not set
[   90.206192][ T6062] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4)
[   90.208125][ T6062] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   90.214599][ T6062] vhci_hcd vhci_hcd.0: Device attached
[   90.336364][ T6069] overlay: Bad value for 'metacopy'
[   90.423801][   T58] vhci_hcd: vhci_device speed not set
[   90.493788][   T58] usb 13-1: new full-speed USB device number 5 using vhci_hcd
[   90.603702][ T5403] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[   90.685105][ T6074] hfs: can't find a HFS filesystem on dev nullb0
[   90.756885][ T5403] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[   90.759642][ T5403] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[   90.763310][ T5403] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[   90.766888][ T5403] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[   90.770450][ T5403] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[   90.776287][ T5403] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[   90.779017][ T5403] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[   90.781164][ T5403] usb 7-1: Product: syz
[   90.782262][ T5403] usb 7-1: Manufacturer: syz
[   90.787474][ T5403] cdc_wdm 7-1:1.0: skipping garbage
[   90.788913][ T5403] cdc_wdm 7-1:1.0: skipping garbage
[   90.792554][ T5403] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[   90.794645][ T5403] cdc_wdm 7-1:1.0: Unknown control protocol
[   91.008621][ T5403] usb 7-1: USB disconnect, device number 4
[   91.053895][   T57] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[   91.125948][ T6063] vhci_hcd: connection reset by peer
[   91.128150][   T64] vhci_hcd: stop threads
[   91.129661][   T64] vhci_hcd: release socket
[   91.131298][   T64] vhci_hcd: disconnect device
[   91.203847][   T57] usb 6-1: Using ep0 maxpacket: 8
[   91.207348][   T57] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[   91.224095][   T57] usb 6-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[   91.236694][   T57] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   91.252314][   T57] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   91.255722][   T57] usb 6-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[   91.259939][   T57] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   91.262420][   T57] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   91.289032][   T57] usbtmc 6-1:16.0: bulk endpoints not found
[   91.826931][ T6049] syz.3.132 (6049) used greatest stack depth: 20784 bytes left
[   91.902728][ T6079] FAULT_INJECTION: forcing a failure.
[   91.902728][ T6079] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   91.906474][ T6079] CPU: 1 UID: 0 PID: 6079 Comm: syz.2.141 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[   91.909470][ T6079] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   91.912475][ T6079] Call Trace:
[   91.913370][ T6079]  <TASK>
[   91.914150][ T6079]  dump_stack_lvl+0x16c/0x1f0
[   91.915394][ T6079]  should_fail_ex+0x497/0x5b0
[   91.916633][ T6079]  _copy_from_user+0x30/0xf0
[   91.917859][ T6079]  ia32_restore_sigcontext+0xc4/0x5d0
[   91.919299][ T6079]  ? __pfx_ia32_restore_sigcontext+0x10/0x10
[   91.920856][ T6079]  ? __pfx_lock_release+0x10/0x10
[   91.922181][ T6079]  ? _raw_spin_unlock_irq+0x23/0x50
[   91.923546][ T6079]  ? lockdep_hardirqs_on+0x7c/0x110
[   91.924902][ T6079]  __do_compat_sys_sigreturn+0x140/0x1f0
[   91.926493][ T6079]  ? __pfx___do_compat_sys_sigreturn+0x10/0x10
[   91.928254][ T6079]  do_int80_emulation+0x104/0x200
[   91.930007][ T6079]  asm_int80_emulation+0x1a/0x20
[   91.931746][ T6079] RIP: 0023:0xf743e598
[   91.933079][ T6079] Code: 00 00 51 52 55 89 e5 0f 34 cd 80 5d 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 90 58 b8 77 00 00 00 cd 80 <90> 8d b4 26 00 00 00 00 b8 ad 00 00 00 cd 80 90 90 90 90 90 90 90
[   91.938492][ T6079] RSP: 002b:00000000f5725774 EFLAGS: 00000296 ORIG_RAX: 0000000000000077
[   91.940804][ T6079] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000000000
[   91.942877][ T6079] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000000
[   91.945125][ T6079] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   91.947832][ T6079] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   91.950085][ T6079] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   91.952348][ T6079]  </TASK>
[   92.055010][ T5356] Bluetooth: hci4: command 0x0c1a tx timeout
[   93.363809][ T1411] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[   93.495216][ T1411] usb 8-1: device descriptor read/64, error -71
[   93.553767][ T5404] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[   93.703730][ T5404] usb 5-1: Using ep0 maxpacket: 8
[   93.708547][ T5404] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[   93.710969][ T5404] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[   93.713868][ T5404] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   93.717247][ T5404] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   93.720437][ T5404] usb 5-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[   93.724357][ T5404] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   93.727086][ T5404] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   93.733799][ T1411] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[   93.744540][ T5404] usbtmc 5-1:16.0: bulk endpoints not found
[   93.863826][ T1411] usb 8-1: device descriptor read/64, error -71
[   93.975688][ T1411] usb usb8-port1: attempt power cycle
[   94.134790][ T5356] Bluetooth: hci4: command 0x0c1a tx timeout
[   94.323881][ T1411] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[   94.347974][ T1411] usb 8-1: device descriptor read/8, error -71
[   94.425122][   T25] usb 6-1: USB disconnect, device number 5
[   94.524841][ T6107] trusted_key: syz.1.148 sent an empty control message without MSG_MORE.
[   94.570709][   T39] audit: type=1400 audit(1728182028.866:2): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=26260A3AF6EFF374925873ECE44CF3460B0BA260624F2A08BDBB6D3C92592016EA4E0F401876B1958B3F9AA5153386EED838C49D3A pid=6111 comm="syz.2.149"
[   94.583859][ T1411] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[   94.604803][ T1411] usb 8-1: device descriptor read/8, error -71
[   94.733797][ T1411] usb usb8-port1: unable to enumerate USB device
[   95.643751][   T58] vhci_hcd: vhci_device speed not set
[   95.718863][ T6127] syz.2.151 uses obsolete (PF_INET,SOCK_PACKET)
[   96.121665][ T6134] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[   96.123438][ T6134] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   96.126226][ T6134] vhci_hcd vhci_hcd.0: Device attached
[   96.213821][ T5356] Bluetooth: hci4: command 0x0c1a tx timeout
[   96.260106][ T6137] overlay: Bad value for 'metacopy'
[   96.313910][ T5403] vhci_hcd: vhci_device speed not set
[   96.387460][ T5403] usb 19-1: new full-speed USB device number 5 using vhci_hcd
[   96.562692][ T6141] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4)
[   96.564584][ T6141] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   96.577210][ T6141] vhci_hcd vhci_hcd.0: Device attached
[   96.714179][ T6144] 9pnet_virtio: no channels available for device syz
[   96.717444][ T6144] overlay: Bad value for 'metacopy'
[   96.753779][ T1411] vhci_hcd: vhci_device speed not set
[   96.758386][  T828] usb 5-1: USB disconnect, device number 5
[   96.824439][ T1411] usb 17-1: new full-speed USB device number 3 using vhci_hcd
[   97.004539][ T6135] vhci_hcd: connection reset by peer
[   97.006807][   T83] vhci_hcd: stop threads
[   97.008370][   T83] vhci_hcd: release socket
[   97.018961][   T83] vhci_hcd: disconnect device
[   97.039663][ T6157] lo speed is unknown, defaulting to 1000
[   97.093030][ T6159] usb 2-1: USB disconnect, device number 14
[   97.354518][ T6155] /dev/sr0: Can't open blockdev
[   97.394635][ T6162] hub 2-0:1.0: USB hub found
[   97.401662][ T6162] hub 2-0:1.0: 6 ports detected
[   97.518453][ T6142] vhci_hcd: connection reset by peer
[   97.546022][   T12] vhci_hcd: stop threads
[   97.547311][   T12] vhci_hcd: release socket
[   97.548647][   T12] vhci_hcd: disconnect device
[   97.583793][ T5543] usb 2-1: new high-speed USB device number 15 using ehci-pci
[   97.626378][ T6157] lo speed is unknown, defaulting to 1000
[   97.729394][ T6164] lo speed is unknown, defaulting to 1000
[   97.823426][ T5543] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[   97.827444][ T5543] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[   97.866033][ T5543] usb 2-1: Product: QEMU USB Tablet
[   97.867819][ T5543] usb 2-1: Manufacturer: QEMU
[   97.869506][ T5543] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[   97.891965][ T5543] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.000F/input/input18
[   97.974443][ T5543] hid-generic 0003:0627:0001.000F: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[   98.420519][   T39] audit: type=1326 audit(1728182032.716:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6167 comm="syz.1.158" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[   98.446545][   T39] audit: type=1326 audit(1728182032.726:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6167 comm="syz.1.158" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[   98.459061][ T6168] audit: audit_lost=1 audit_rate_limit=0 audit_backlog_limit=64
[   98.461960][ T6168] audit: out of memory in audit_log_start
[   98.464228][   T39] audit: type=1326 audit(1728182032.736:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6167 comm="syz.1.158" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf748e579 code=0x7ffc0000
[   98.482486][   T39] audit: type=1326 audit(1728182032.736:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6167 comm="syz.1.158" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[   98.494360][   T39] audit: type=1326 audit(1728182032.736:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6167 comm="syz.1.158" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[   98.501989][   T39] audit: type=1326 audit(1728182032.736:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6167 comm="syz.1.158" exe="/syz-executor" sig=0 arch=40000003 syscall=10 compat=1 ip=0xf748e579 code=0x7ffc0000
[   98.542194][   T39] audit: type=1326 audit(1728182032.736:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6167 comm="syz.1.158" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[   98.883965][   T57] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[   99.164305][   T57] usb 6-1: device descriptor read/64, error -71
[   99.386546][ T6178] tmpfs: Bad value for 'mpol'
[   99.423938][   T57] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[   99.553840][   T57] usb 6-1: device descriptor read/64, error -71
[   99.676846][   T57] usb usb6-port1: attempt power cycle
[   99.706126][ T6184] netlink: 12 bytes leftover after parsing attributes in process `syz.3.163'.
[   99.708655][ T6184] netlink: 'syz.3.163': attribute type 6 has an invalid length.
[   99.716868][ T6184] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   99.719365][ T6184] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   99.721632][ T6184] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   99.723903][ T6184] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   99.729495][ T6184] vxlan0: entered promiscuous mode
[   99.809288][   T39] kauditd_printk_skb: 12 callbacks suppressed
[   99.809299][   T39] audit: type=1326 audit(1728182034.106:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6185 comm="syz.0.164" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf740e579 code=0x0
[   99.864029][ T6187] fuse: Bad value for 'fd'
[   99.874492][ T6187] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[  100.023789][   T57] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  100.044536][   T57] usb 6-1: device descriptor read/8, error -71
[  100.090179][ T6190] input: syz0 as /devices/virtual/input/input19
[  100.293831][   T57] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  100.314509][   T57] usb 6-1: device descriptor read/8, error -71
[  100.429732][   T57] usb usb6-port1: unable to enumerate USB device
[  100.576696][ T6194] lo speed is unknown, defaulting to 1000
[  100.750857][ T6198] lo speed is unknown, defaulting to 1000
[  100.864997][ T6202] lo speed is unknown, defaulting to 1000
[  101.484261][ T5403] vhci_hcd: vhci_device speed not set
[  101.656491][ T6201] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  101.658938][ T6201] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  101.669229][ T6201] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  101.670897][ T6201] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  101.672475][ T6201] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  101.818707][ T6214] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[  101.820454][ T6214] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  101.833766][ T6214] vhci_hcd vhci_hcd.0: Device attached
[  101.963787][ T1411] vhci_hcd: vhci_device speed not set
[  102.013797][   T58] vhci_hcd: vhci_device speed not set
[  102.026411][ T6224] overlay: Bad value for 'metacopy'
[  102.083938][   T58] usb 15-1: new full-speed USB device number 3 using vhci_hcd
[  102.246286][ T6222] netlink: 4 bytes leftover after parsing attributes in process `syz.0.172'.
[  102.253128][ T6222] netlink: 28 bytes leftover after parsing attributes in process `syz.0.172'.
[  102.313295][ T6234] netlink: 4 bytes leftover after parsing attributes in process `syz.3.173'.
[  102.371189][ T6238] lo speed is unknown, defaulting to 1000
[  102.615842][ T6219] vhci_hcd: connection reset by peer
[  102.618740][ T1208] vhci_hcd: stop threads
[  102.620427][ T1208] vhci_hcd: release socket
[  102.622480][ T1208] vhci_hcd: disconnect device
[  102.631219][ T6243] lo speed is unknown, defaulting to 1000
[  102.668995][ T6245] lo speed is unknown, defaulting to 1000
[  102.764259][   T39] audit: type=1326 audit(1728182037.036:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6249 comm="syz.0.178" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000
[  102.773565][   T39] audit: type=1326 audit(1728182037.036:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6249 comm="syz.0.178" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000
[  102.868358][   T39] audit: type=1326 audit(1728182037.036:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6249 comm="syz.0.178" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf740e579 code=0x7ffc0000
[  102.875239][   T39] audit: type=1326 audit(1728182037.036:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6249 comm="syz.0.178" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000
[  102.892387][   T39] audit: type=1326 audit(1728182037.036:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6249 comm="syz.0.178" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000
[  102.904303][   T39] audit: type=1326 audit(1728182037.036:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6249 comm="syz.0.178" exe="/syz-executor" sig=0 arch=40000003 syscall=10 compat=1 ip=0xf740e579 code=0x7ffc0000
[  102.914003][   T39] audit: type=1326 audit(1728182037.036:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6249 comm="syz.0.178" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000
[  102.929914][   T39] audit: type=1326 audit(1728182037.036:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6249 comm="syz.0.178" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000
[  102.933735][ T5345] Bluetooth: hci0: command 0x0c1a tx timeout
[  102.944696][   T39] audit: type=1326 audit(1728182037.066:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6249 comm="syz.0.178" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf740e579 code=0x7ffc0000
[  103.569030][ T6238] lo speed is unknown, defaulting to 1000
[  103.742923][ T5345] Bluetooth: hci3: command 0x0c1a tx timeout
[  103.742992][ T5356] Bluetooth: hci4: command 0x0c1a tx timeout
[  103.744793][ T5345] Bluetooth: hci2: command 0x0c1a tx timeout
[  103.746767][ T5356] Bluetooth: hci1: command 0x0c1a tx timeout
[  103.819243][ T6245] lo speed is unknown, defaulting to 1000
[  103.858286][ T6259] lo speed is unknown, defaulting to 1000
[  104.033797][   T57] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  104.193786][   T57] usb 5-1: device descriptor read/64, error -71
[  104.463880][   T57] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  104.635538][   T57] usb 5-1: device descriptor read/64, error -71
[  104.671615][ T6274] dlm: no locking on control device
[  104.744129][   T57] usb usb5-port1: attempt power cycle
[  105.096619][   T57] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  105.114607][   T57] usb 5-1: device descriptor read/8, error -71
[  105.363802][   T57] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  105.384539][   T57] usb 5-1: device descriptor read/8, error -71
[  105.494121][   T57] usb usb5-port1: unable to enumerate USB device
[  105.831064][ T6278] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  105.833590][ T6278] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  105.843881][ T6278] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  105.846172][ T6278] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  105.848293][ T6278] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  106.170387][ T6291] usb 2-1: USB disconnect, device number 15
[  106.214313][ T6290] /dev/sr0: Can't open blockdev
[  106.309729][ T6290] hub 2-0:1.0: USB hub found
[  106.311421][ T6290] hub 2-0:1.0: 6 ports detected
[  106.470895][ T6294] FAULT_INJECTION: forcing a failure.
[  106.470895][ T6294] name failslab, interval 1, probability 0, space 0, times 0
[  106.503787][ T5404] usb 2-1: new high-speed USB device number 16 using ehci-pci
[  106.503818][ T6294] CPU: 2 UID: 0 PID: 6294 Comm: syz.1.188 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  106.509769][ T6294] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  106.513575][ T6294] Call Trace:
[  106.513585][ T6294]  <TASK>
[  106.513593][ T6294]  dump_stack_lvl+0x16c/0x1f0
[  106.513633][ T6294]  should_fail_ex+0x497/0x5b0
[  106.513658][ T6294]  ? fs_reclaim_acquire+0xae/0x160
[  106.513682][ T6294]  should_failslab+0xc2/0x120
[  106.513706][ T6294]  __kmalloc_noprof+0xcb/0x410
[  106.513728][ T6294]  ? __get_fs_type+0x21/0x170
[  106.513751][ T6294]  tomoyo_encode2+0x100/0x3e0
[  106.513779][ T6294]  tomoyo_encode+0x2c/0x40
[  106.530093][ T6294]  tomoyo_mount_acl+0x314/0x880
[  106.530128][ T6294]  ? hlock_class+0x4e/0x130
[  106.530148][ T6294]  ? __lock_acquire+0x163e/0x3ce0
[  106.530176][ T6294]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  106.530203][ T6294]  ? __pfx___lock_acquire+0x10/0x10
[  106.530227][ T6294]  ? stack_trace_save+0x95/0xd0
[  106.530247][ T6294]  ? __pfx_lock_release+0x10/0x10
[  106.530281][ T6294]  ? trace_lock_acquire+0x14a/0x1d0
[  106.530300][ T6294]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  106.530324][ T6294]  ? tomoyo_mount_permission+0x146/0x410
[  106.530348][ T6294]  ? lock_acquire+0x2f/0xb0
[  106.530370][ T6294]  ? tomoyo_mount_permission+0x146/0x410
[  106.530396][ T6294]  tomoyo_mount_permission+0x16b/0x410
[  106.530419][ T6294]  ? tomoyo_mount_permission+0x146/0x410
[  106.530443][ T6294]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  106.530476][ T6294]  ? get_current_fs_domain+0x188/0x1f0
[  106.530500][ T6294]  security_sb_mount+0x9b/0x260
[  106.530524][ T6294]  path_mount+0x129/0x1f10
[  106.530545][ T6294]  ? kmem_cache_free+0x152/0x4b0
[  106.530567][ T6294]  ? __pfx_path_mount+0x10/0x10
[  106.530589][ T6294]  ? putname+0x12e/0x170
[  106.530613][ T6294]  __ia32_sys_mount+0x292/0x310
[  106.530633][ T6294]  ? __pfx___ia32_sys_mount+0x10/0x10
[  106.530659][ T6294]  __do_fast_syscall_32+0x73/0x120
[  106.530682][ T6294]  do_fast_syscall_32+0x32/0x80
[  106.530704][ T6294]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  106.530726][ T6294] RIP: 0023:0xf748e579
[  106.530741][ T6294] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  106.530756][ T6294] RSP: 002b:00000000f577656c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  106.530775][ T6294] RAX: ffffffffffffffda RBX: 0000000020000540 RCX: 0000000020000080
[  106.530787][ T6294] RDX: 00000000200000c0 RSI: 0000000000000000 RDI: 0000000000000000
[  106.530798][ T6294] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  106.530809][ T6294] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  106.530820][ T6294] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  106.530842][ T6294]  </TASK>
[  106.689620][ T6303] netlink: 8 bytes leftover after parsing attributes in process `syz.2.191'.
[  106.692028][ T6303] netlink: 8 bytes leftover after parsing attributes in process `syz.2.191'.
[  106.714093][ T6303] netlink: 'syz.2.191': attribute type 2 has an invalid length.
[  106.716127][ T6303] netlink: 100 bytes leftover after parsing attributes in process `syz.2.191'.
[  106.718642][ T6302] lo speed is unknown, defaulting to 1000
[  106.720119][ T6303] FAULT_INJECTION: forcing a failure.
[  106.720119][ T6303] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  106.723863][ T6303] CPU: 1 UID: 0 PID: 6303 Comm: syz.2.191 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  106.726595][ T6303] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  106.729393][ T6303] Call Trace:
[  106.730278][ T6303]  <TASK>
[  106.731076][ T6303]  dump_stack_lvl+0x16c/0x1f0
[  106.732321][ T6303]  should_fail_ex+0x497/0x5b0
[  106.733574][ T6303]  _copy_from_iter+0x29b/0x13e0
[  106.734861][ T6303]  ? __pfx__copy_from_iter+0x10/0x10
[  106.736260][ T6303]  ? __virt_addr_valid+0x1a4/0x590
[  106.737608][ T6303]  ? __virt_addr_valid+0x5e/0x590
[  106.738950][ T6303]  ? __phys_addr_symbol+0x30/0x80
[  106.740287][ T6303]  ? __check_object_size+0x488/0x710
[  106.741680][ T6303]  netlink_sendmsg+0x813/0xd70
[  106.742965][ T6303]  ? __pfx_netlink_sendmsg+0x10/0x10
[  106.744350][ T6303]  ____sys_sendmsg+0x9ae/0xb40
[  106.745736][ T6303]  ? __pfx_____sys_sendmsg+0x10/0x10
[  106.747155][ T6303]  ? get_compat_msghdr+0x11b/0x170
[  106.748507][ T6303]  ? __pfx___lock_acquire+0x10/0x10
[  106.749888][ T6303]  ___sys_sendmsg+0x135/0x1e0
[  106.751134][ T6303]  ? __pfx____sys_sendmsg+0x10/0x10
[  106.752504][ T6303]  ? lock_acquire+0x2f/0xb0
[  106.753696][ T6303]  ? __fget_files+0x40/0x3f0
[  106.754913][ T6303]  ? fdget+0x176/0x210
[  106.755997][ T6303]  __sys_sendmsg+0x117/0x1f0
[  106.757220][ T6303]  ? __pfx___sys_sendmsg+0x10/0x10
[  106.758566][ T6303]  ? __fget_files+0x244/0x3f0
[  106.759833][ T6303]  __do_fast_syscall_32+0x73/0x120
[  106.761188][ T6303]  do_fast_syscall_32+0x32/0x80
[  106.762468][ T6303]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  106.764125][ T6303] RIP: 0023:0xf743e579
[  106.765196][ T6303] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  106.770169][ T6303] RSP: 002b:00000000f572656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  106.772337][ T6303] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000020000180
[  106.774390][ T6303] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  106.776430][ T6303] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  106.778476][ T6303] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  106.780954][ T6303] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  106.783047][ T6303]  </TASK>
[  106.818345][ T5404] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[  106.821778][ T5404] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[  106.824117][ T5404] usb 2-1: Product: QEMU USB Tablet
[  106.825465][ T5404] usb 2-1: Manufacturer: QEMU
[  106.826691][ T5404] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[  106.868034][ T5404] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0010/input/input20
[  106.924755][ T5404] hid-generic 0003:0627:0001.0010: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[  106.958321][ T6307] binder: 6306:6307 unknown command 0
[  106.959800][ T6307] binder: 6306:6307 ioctl c0306201 20000500 returned -22
[  107.097994][   T67] Bluetooth: hci0: command 0x0c1a tx timeout
[  107.130900][ T6309] lo speed is unknown, defaulting to 1000
[  107.273406][ T6302] lo speed is unknown, defaulting to 1000
[  107.287748][ T6317] netlink: 9412 bytes leftover after parsing attributes in process `syz.0.195'.
[  107.296377][ T6317] netlink: 20 bytes leftover after parsing attributes in process `syz.0.195'.
[  107.520088][ T6328] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4)
[  107.522427][ T6328] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  107.527631][ T6328] vhci_hcd vhci_hcd.0: Device attached
[  107.603777][   T58] vhci_hcd: vhci_device speed not set
[  107.637431][ T6332] overlay: Bad value for 'metacopy'
[  107.684747][ T6334] netlink: 8 bytes leftover after parsing attributes in process `syz.1.199'.
[  107.687283][ T6334] netlink: 8 bytes leftover after parsing attributes in process `syz.1.199'.
[  107.695829][ T6334] netlink: 84 bytes leftover after parsing attributes in process `syz.1.199'.
[  107.703898][ T1411] vhci_hcd: vhci_device speed not set
[  107.736461][ T6337] usb 2-1: USB disconnect, device number 16
[  107.764204][ T1411] usb 17-1: new full-speed USB device number 4 using vhci_hcd
[  107.764252][ T6331] /dev/sr0: Can't open blockdev
[  107.803589][ T6331] hub 2-0:1.0: USB hub found
[  107.812157][ T6331] hub 2-0:1.0: 6 ports detected
[  107.895451][   T67] Bluetooth: hci4: command 0x0c1a tx timeout
[  107.896307][ T5356] Bluetooth: hci3: command 0x0c1a tx timeout
[  107.896436][ T5355] Bluetooth: hci1: command 0x0c1a tx timeout
[  107.897427][ T5345] Bluetooth: hci2: command 0x0c1a tx timeout
[  107.976646][ T5385] usb 2-1: new high-speed USB device number 17 using ehci-pci
[  108.158207][ T5385] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[  108.162182][ T5385] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[  108.171646][ T5385] usb 2-1: Product: QEMU USB Tablet
[  108.174235][ T5385] usb 2-1: Manufacturer: QEMU
[  108.176063][ T5385] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[  108.215720][ T5385] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0011/input/input21
[  108.297526][ T5385] hid-generic 0003:0627:0001.0011: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[  108.388397][ T6329] vhci_hcd: connection reset by peer
[  108.390470][ T1095] vhci_hcd: stop threads
[  108.392028][ T1095] vhci_hcd: release socket
[  108.394577][ T1095] vhci_hcd: disconnect device
[  109.024022][ T5403] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  109.173987][ T5403] usb 8-1: Using ep0 maxpacket: 16
[  109.192396][ T5403] usb 8-1: config 0 has an invalid interface number: 39 but max is 0
[  109.198535][ T5403] usb 8-1: config 0 has no interface number 0
[  109.200557][ T5403] usb 8-1: too many endpoints for config 0 interface 39 altsetting 226: 138, using maximum allowed: 30
[  109.203412][ T5403] usb 8-1: config 0 interface 39 altsetting 226 has 0 endpoint descriptors, different from the interface descriptor's value: 138
[  109.212983][ T5403] usb 8-1: config 0 interface 39 has no altsetting 0
[  109.218181][ T5403] usb 8-1: New USB device found, idVendor=04d8, idProduct=0a30, bcdDevice=ce.47
[  109.221457][ T5403] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  109.225206][ T5403] usb 8-1: Product: syz
[  109.226378][ T5403] usb 8-1: Manufacturer: syz
[  109.227953][ T5403] usb 8-1: SerialNumber: syz
[  109.230319][ T5403] usb 8-1: config 0 descriptor??
[  110.068694][ T6347] ------------[ cut here ]------------
[  110.070413][ T6347] kmem_cache of name '9p-fcall-cache' already exists
[  110.073016][ T6347] WARNING: CPU: 0 PID: 6347 at mm/slab_common.c:107 __kmem_cache_create_args+0xb0/0x3c0
[  110.075577][ T6347] Modules linked in:
[  110.076824][ T6347] CPU: 0 UID: 0 PID: 6347 Comm: syz.1.203 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  110.081639][ T6347] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  110.085461][ T6347] RIP: 0010:__kmem_cache_create_args+0xb0/0x3c0
[  110.087705][ T6347] Code: 98 48 3d 10 bb f1 8d 74 25 48 8b 7b 60 48 89 ee e8 c5 68 34 09 85 c0 75 e0 90 48 c7 c7 e8 1f 58 8d 48 89 ee e8 41 b1 7e ff 90 <0f> 0b 90 90 be 20 00 00 00 48 89 ef e8 4f 6a 34 09 48 85 c0 0f 85
[  110.094378][ T6347] RSP: 0018:ffffc90006c3f8f0 EFLAGS: 00010286
[  110.096582][ T6347] RAX: 0000000000000000 RBX: ffff888022270500 RCX: ffffc9002b65c000
[  110.099358][ T6347] RDX: 0000000000040000 RSI: ffffffff814e28c6 RDI: 0000000000000001
[  110.102132][ T6347] RBP: ffffffff8ca1e320 R08: 0000000000000001 R09: 0000000000000000
[  110.105023][ T6347] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000
[  110.107790][ T6347] R13: 0000000000007b09 R14: ffffc90006c3f9e0 R15: 0000000000020018
[  110.110549][ T6347] FS:  0000000000000000(0000) GS:ffff88802b400000(0063) knlGS:00000000f5776b40
[  110.113742][ T6347] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  110.116124][ T6347] CR2: 0000000020001000 CR3: 000000006b112000 CR4: 0000000000352ef0
[  110.118957][ T6347] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  110.121769][ T6347] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  110.124590][ T6347] Call Trace:
[  110.125838][ T6347]  <TASK>
[  110.126941][ T6347]  ? __warn+0xea/0x3d0
[  110.128469][ T6347]  ? __kmem_cache_create_args+0xb0/0x3c0
[  110.130473][ T6347]  ? report_bug+0x3c0/0x580
[  110.131958][ T6347]  ? handle_bug+0x54/0xa0
[  110.133188][ T6347]  ? exc_invalid_op+0x17/0x50
[  110.134736][ T6347]  ? asm_exc_invalid_op+0x1a/0x20
[  110.136160][ T6347]  ? __warn_printk+0x1a6/0x350
[  110.137493][ T6347]  ? __kmem_cache_create_args+0xb0/0x3c0
[  110.139072][ T6347]  p9_client_create+0xe04/0x1150
[  110.140444][ T6347]  ? __pfx_p9_client_create+0x10/0x10
[  110.141941][ T6347]  ? __raw_spin_lock_init+0x3a/0x110
[  110.143421][ T6347]  v9fs_session_init+0x1f8/0x1a80
[  110.144850][ T6347]  ? __pfx_v9fs_session_init+0x10/0x10
[  110.146357][ T6347]  ? kasan_save_track+0x14/0x30
[  110.147832][ T6347]  v9fs_mount+0xc6/0xa50
[  110.148970][ T6347]  ? __pfx_v9fs_mount+0x10/0x10
[  110.150338][ T6347]  ? __pfx_v9fs_mount+0x10/0x10
[  110.152067][ T6347]  legacy_get_tree+0x109/0x220
[  110.153412][ T6347]  vfs_get_tree+0x8f/0x380
[  110.154886][ T6347]  path_mount+0x6e1/0x1f10
[  110.156282][ T6347]  ? kmem_cache_free+0x152/0x4b0
[  110.157845][ T6347]  ? __pfx_path_mount+0x10/0x10
[  110.159277][ T6347]  ? putname+0x12e/0x170
[  110.160510][ T6347]  __ia32_sys_mount+0x292/0x310
[  110.161897][ T6347]  ? __pfx___ia32_sys_mount+0x10/0x10
[  110.163429][ T6347]  __do_fast_syscall_32+0x73/0x120
[  110.164955][ T6347]  do_fast_syscall_32+0x32/0x80
[  110.166357][ T6347]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  110.168136][ T6347] RIP: 0023:0xf748e579
[  110.169313][ T6347] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  110.174510][ T6347] RSP: 002b:00000000f577656c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  110.176890][ T6347] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000020000180
[  110.179099][ T6347] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 00000000200004c0
[  110.181287][ T6347] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  110.183511][ T6347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  110.185937][ T6347] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
SYZFAIL: failed to recv rpc
[  110.188099][ T6347]  </TASK>
[  110.189136][ T6347] Kernel panic - not syncing: kernel: panic_on_warn set ...
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  110.191203][ T6347] CPU: 0 UID: 0 PID: 6347 Comm: syz.1.203 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  110.193998][ T6347] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  110.196846][ T6347] Call Trace:
[  110.197748][ T6347]  <TASK>
[  110.198651][ T6347]  dump_stack_lvl+0x3d/0x1f0
[  110.199879][ T6347]  panic+0x71d/0x800
[  110.200918][ T6347]  ? __pfx_panic+0x10/0x10
[  110.202101][ T6347]  ? show_trace_log_lvl+0x29d/0x3d0
[  110.203480][ T6347]  ? __kmem_cache_create_args+0xb0/0x3c0
[  110.204959][ T6347]  check_panic_on_warn+0xab/0xb0
[  110.206281][ T6347]  __warn+0xf6/0x3d0
[  110.207399][ T6347]  ? __kmem_cache_create_args+0xb0/0x3c0
[  110.209227][ T6347]  report_bug+0x3c0/0x580
[  110.210723][ T6347]  handle_bug+0x54/0xa0
[  110.212171][ T6347]  exc_invalid_op+0x17/0x50
[  110.213741][ T6347]  asm_exc_invalid_op+0x1a/0x20
[  110.215461][ T6347] RIP: 0010:__kmem_cache_create_args+0xb0/0x3c0
[  110.217608][ T6347] Code: 98 48 3d 10 bb f1 8d 74 25 48 8b 7b 60 48 89 ee e8 c5 68 34 09 85 c0 75 e0 90 48 c7 c7 e8 1f 58 8d 48 89 ee e8 41 b1 7e ff 90 <0f> 0b 90 90 be 20 00 00 00 48 89 ef e8 4f 6a 34 09 48 85 c0 0f 85
[  110.224200][ T6347] RSP: 0018:ffffc90006c3f8f0 EFLAGS: 00010286
[  110.226283][ T6347] RAX: 0000000000000000 RBX: ffff888022270500 RCX: ffffc9002b65c000
[  110.229003][ T6347] RDX: 0000000000040000 RSI: ffffffff814e28c6 RDI: 0000000000000001
[  110.231637][ T6347] RBP: ffffffff8ca1e320 R08: 0000000000000001 R09: 0000000000000000
[  110.234327][ T6347] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000
[  110.236552][ T6347] R13: 0000000000007b09 R14: ffffc90006c3f9e0 R15: 0000000000020018
[  110.238672][ T6347]  ? __warn_printk+0x1a6/0x350
[  110.239978][ T6347]  p9_client_create+0xe04/0x1150
[  110.241296][ T6347]  ? __pfx_p9_client_create+0x10/0x10
[  110.242718][ T6347]  ? __raw_spin_lock_init+0x3a/0x110
[  110.244139][ T6347]  v9fs_session_init+0x1f8/0x1a80
[  110.245499][ T6347]  ? __pfx_v9fs_session_init+0x10/0x10
[  110.246962][ T6347]  ? kasan_save_track+0x14/0x30
[  110.248288][ T6347]  v9fs_mount+0xc6/0xa50
[  110.249419][ T6347]  ? __pfx_v9fs_mount+0x10/0x10
[  110.250725][ T6347]  ? __pfx_v9fs_mount+0x10/0x10
[  110.252051][ T6347]  legacy_get_tree+0x109/0x220
[  110.253329][ T6347]  vfs_get_tree+0x8f/0x380
[  110.254521][ T6347]  path_mount+0x6e1/0x1f10
[  110.255668][ T6347]  ? kmem_cache_free+0x152/0x4b0
[  110.256920][ T6347]  ? __pfx_path_mount+0x10/0x10
[  110.258223][ T6347]  ? putname+0x12e/0x170
[  110.259380][ T6347]  __ia32_sys_mount+0x292/0x310
[  110.260679][ T6347]  ? __pfx___ia32_sys_mount+0x10/0x10
[  110.262116][ T6347]  __do_fast_syscall_32+0x73/0x120
[  110.263495][ T6347]  do_fast_syscall_32+0x32/0x80
[  110.264804][ T6347]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  110.266484][ T6347] RIP: 0023:0xf748e579
[  110.267590][ T6347] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  110.272689][ T6347] RSP: 002b:00000000f577656c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  110.274888][ T6347] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000020000180
[  110.276972][ T6347] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 00000000200004c0
[  110.279075][ T6347] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  110.281160][ T6347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  110.283250][ T6347] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  110.285340][ T6347]  </TASK>
[  110.286724][ T6347] Kernel Offset: disabled
[  110.287990][ T6347] Rebooting in 86400 seconds..

VM DIAGNOSIS:
02:34:04  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85034e45 RDI=ffffffff9a63a220 RBP=ffffffff9a63a1e0 RSP=ffffc90006c3f258
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000020 R14=ffffffff85034de0 R15=0000000000000000
RIP=ffffffff85034e6f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020001000 CR3=000000006b112000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a800000000 0000000300000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=00000000003f69d1 RBX=0000000000000001 RCX=ffffffff8b12f709 RDX=0000000000000000
RSI=ffffffff8b4cc8e0 RDI=ffffffff8bb12120 RBP=ffffed10036ea910 RSP=ffffc90000477e08
R8 =0000000000000001 R9 =ffffed10056a7025 R10=ffff88802b53812b R11=0000000000000000
R12=0000000000000001 R13=ffff88801b754880 R14=ffffffff901cce88 R15=0000000000000000
RIP=ffffffff8b130aef RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000000020255000 CR3=00000000006ea000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000062400000000 0000001400000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000200f19 RBX=0000000000000002 RCX=ffffffff8b12f709 RDX=0000000000000000
RSI=ffffffff8b4cc8e0 RDI=ffffffff8bb12120 RBP=ffffed10036ed000 RSP=ffffc90000487e08
R8 =0000000000000001 R9 =ffffed10056c7025 R10=ffff88802b63812b R11=0000000000000000
R12=0000000000000002 R13=ffff88801b768000 R14=ffffffff901cce88 R15=0000000000000000
RIP=ffffffff8b130aef RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00000000f72b18e0 CR3=000000006a03c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=ffffffff81caf364 RBX=0000000000000001 RCX=ffffffff81caf37a RDX=ffff8880207a0000
RSI=0000000000000000 RDI=0000000000000005 RBP=ffff88801ac71020 RSP=ffffc90000f0f7b8
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=ffff88801ac71000 R13=dffffc0000000000 R14=0000000000000002 R15=ffff88801ceb6000
RIP=ffffffff81caf462 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f74b5008 CR3=000000002ac64000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000040 Opmask01=0000000000000200 Opmask02=0000000000100000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffdcea23a40 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6565656565656565 6565656565656565
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffff0000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f6e3a6d5e007325 2e73250064252e73 2500656c6f736e6f 632f7665642f000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f4b1f485e005600 0b56000041000b56 000040494a564b4a 460a5340410a000a
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 63302b642065615f 657261656e632065 686320635f6d000a 305f3320302f303a
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000