last executing test programs:

5.204553474s ago: executing program 3 (id=219):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x48882, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
openat$sr(0xffffff9c, &(0x7f0000000540), 0x101000, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

4.991967124s ago: executing program 3 (id=220):
r0 = syz_open_dev$ptys(0xc, 0x3, 0x1)
r1 = openat$nmem0(0xffffffffffffff9c, &(0x7f00000005c0), 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESOCT=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r2}, 0x18)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)={0x5c, 0x1, 0x1, 0x201, 0x0, 0x0, {0xa}, [@CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x4ad}]}, @CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x23}}}, {0x14, 0x4, @private0={0xfc, 0x0, '\x00', 0x1}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x8040850}, 0x24008840)
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x8, 0x40})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000200)={'syzkaller0\x00'})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000d80)={&(0x7f0000000340)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x4, [@func={0xa, 0x0, 0x0, 0xc, 0x1}]}, {0x0, [0x61, 0x0]}}, 0x0, 0x28}, 0x28)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x6)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000740)=[{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000280)="ed8ad4a0900889c70a4ddd6643c8", 0xe}, {&(0x7f0000000300)="0e56541fe2de98ef36d325a6268d4985b806e732e8380bfbc324da376af761a8efb194dc2bdbdee7f943", 0x2a}, {&(0x7f0000000400)="8dddcaec6b197531caaf6ec5f05afcf5b999b08675e321a28a1ad89002c81952fc93797870475355036ec337fbd4fcac358bc63f6926d0a1f3520757f33e84d739cd1bf3e42983097634057ec503c7d9b7fe16dcb60f94191ad2a7dffb8da78d7acf795cf6fbc40c34e0c0141cd46ee0c0671b3aebfd1b33493f2a90330c111b704fd92143d4011cc98fd760c35be25ab07c", 0x92}, {&(0x7f00000004c0)="9e5ae65af35350ce7a8c7689016c29d7b5a645792b69096e69d783f75aaf12571223250286115ef61a7351413a022c7d04a64fd66297bece07b30aa882482ace2a275802e924b642818c1fc0b27bb746dddbea7b7224b24ce23db35e29497f2c707a3710d078f6dd8a2e6dc40c402cf1fd9f608eb51e2f2a508f29f4120afb2eb9e51d153ac2c467f3fc8f73091deb2d3195e6675841bc415fadee1d240b3ea1d8c7663bfd7243b5bcbc7a02e4eee8557fa69f429f888e26acc19897f99c068f37", 0xc1}, {&(0x7f0000000600)="1ff7ede2f69f04c68b230ddd29fd9457e0dc1741596457d1b82d727e0f4c5a53e73d9e102ae6649c56f884ea52cfcacdc2a812afc4e597b66732782abb1a529666bc314890ff2077f52a45d24b16fe2ca4c5e02729df46e11b090f951a108f08290276772a3188bdbd95116aa5daceca545f981bd931673b220c5a511857a6666e18cedf7fb7", 0x86}, {&(0x7f00000006c0)="a6fcf4", 0x3}], 0x6, &(0x7f0000000a00)=[@assoc={0x10, 0x117, 0x4, 0x69}, @assoc={0x10, 0x117, 0x4, 0x2}, @assoc={0x10, 0x117, 0x4, 0x7fffffff}, @iv={0x100, 0x117, 0x2, 0xf0, "982e58c7c0ad0c44478ded35524d25ad4116a4073526a981a7c149284eadcbf3667837e19cde9cbfc16fe51f88a02baabca0cf9d17733f4c14747f568e14e1e8853b37a2dc1225d3c1007236c0961eed27b4dcabd3a07c31ab827e2a98cb43dc3e4f7662e6072005690270f5e4e747deeb599d761198f1fecb88af2f70dfe05bab61ea4b319eb9d26450c8161e39730cd71bef629662aabaf4c31cd4199c50339c1f64d25b16a1adc590879be482340f6ab71f8ed1e155676531d1d384c06eceb759165a78000a5a264570c83d1f4ae60af1f0d8f8810f86d9230df4e593a52df4a1b614444f2e523421363dcfdb29c2"}], 0x130, 0x24044001}], 0x1, 0x84)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
r8 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_FILL_RING(r8, 0x11b, 0x5, &(0x7f00000000c0)=0x40, 0x4)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r5, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)

4.91433314s ago: executing program 2 (id=221):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_int(r3, 0x0, 0x13, &(0x7f0000000000)=0x3, 0x4)
bind$inet(r3, &(0x7f0000000380)={0x2, 0x4e22, @empty}, 0x10)
listen(r3, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000140)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @private=0xa010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0xc2}}}}}}, 0x0)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1/file0\x00', 0x0)
unlinkat(0xffffffffffffff9c, 0x0, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="c0260000410007010000000007000000027c00000400fc80a72601"], 0x26c0}}, 0x4010)

4.504602395s ago: executing program 0 (id=222):
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000080)=""/54, 0x28}, {&(0x7f00000002c0)=""/168, 0x24}], 0x2, &(0x7f0000008640)=[{&(0x7f0000000740)=""/108, 0x5f}], 0x54bec2f3d19dd6f6, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2e, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = syz_open_dev$usbfs(&(0x7f0000000080), 0xf, 0x8041)
r5 = fsopen(&(0x7f00000000c0)='jffs2\x00', 0x1)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r4, 0x8108551b, &(0x7f00000001c0)={0x0, 0x2, "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"})
ioctl$USBDEVFS_ALLOC_STREAMS(r4, 0x8008551c, &(0x7f0000000000)=ANY=[@ANYBLOB="4a1800000b00000081020885047e860b8c83", @ANYRESHEX=r3, @ANYRES64=r5, @ANYRES16=r0, @ANYRESHEX])
r6 = socket$inet_smc(0x2b, 0x1, 0x0)
set_mempolicy(0x2, &(0x7f0000000400)=0xfffffffffffff999, 0x4)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x482, 0x0)
ioctl$TCSETS(r7, 0x5402, &(0x7f0000000200)={0xfffffffc, 0x0, 0x6, 0x0, 0xff, "db8f2d2b3b7596160c6981acf8805944823a7f"})
getsockopt$inet_pktinfo(r6, 0x0, 0x8, 0x0, 0x0)
memfd_secret(0x0)
msgctl$IPC_STAT(0x0, 0x2, &(0x7f0000000a40)=""/4096)
ppoll(0x0, 0x0, &(0x7f0000000280)={0x77359400}, &(0x7f0000000300)={[0x10000, 0x7f55]}, 0x8)
unshare(0x40020000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
connect$unix(r8, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r9, &(0x7f00000bd000), 0x318, 0x0)

4.092495137s ago: executing program 3 (id=223):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeed, 0x8031, 0xffffffffffffffff, 0xf6d0d000)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600002, 0x600002, 0x7, &(0x7f0000a00000/0x600000)=nil)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$int_in(r0, 0x40000000af01, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000380), 0x24c200, 0x0)
ioctl$TUNGETFEATURES(r1, 0x800454cf, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x5)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_usbip_server_init(0x2)
syz_emit_vhci(0x0, 0x0)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="04050400c8"], 0x7)
syz_io_uring_setup(0x49f, &(0x7f00000000c0)={0x0, 0xe7a8, 0x2, 0x7ffe, 0x40024e}, 0x0, &(0x7f0000000040))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
epoll_wait(0xffffffffffffffff, 0x0, 0x0, 0x80000001)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
mbind(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1, 0x0, 0x0, 0x2)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}, 0x1, 0x0, 0x0, 0x4048011}, 0x8010)

4.084577624s ago: executing program 1 (id=224):
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000080)=""/54, 0x28}, {&(0x7f00000002c0)=""/168, 0x24}], 0x2, &(0x7f0000008640)=[{&(0x7f0000000740)=""/108, 0x5f}], 0x54bec2f3d19dd6f6, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2e, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = syz_open_dev$usbfs(&(0x7f0000000080), 0xf, 0x8041)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r4, 0x8108551b, 0x0)
ioctl$USBDEVFS_ALLOC_STREAMS(r4, 0x8008551c, &(0x7f0000000000)=ANY=[@ANYBLOB="4a1800000b00000081020885047e860b8c83", @ANYRESHEX=r3, @ANYRES64, @ANYRES16=r0, @ANYRESHEX])
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
set_mempolicy(0x2, &(0x7f0000000400)=0xfffffffffffff999, 0x4)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x482, 0x0)
ioctl$TCSETS(r6, 0x5402, &(0x7f0000000200)={0xfffffffc, 0x0, 0x6, 0x0, 0xff, "db8f2d2b3b7596160c6981acf8805944823a7f"})
getsockopt$inet_pktinfo(r5, 0x0, 0x8, 0x0, 0x0)
r7 = memfd_secret(0x0)
msgctl$IPC_STAT(0x0, 0x2, &(0x7f0000000a40)=""/4096)
ppoll(&(0x7f0000000100)=[{r7, 0x200}], 0x1, &(0x7f0000000280)={0x77359400}, &(0x7f0000000300)={[0x10000, 0x7f55]}, 0x8)
unshare(0x40020000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
connect$unix(r8, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r9, &(0x7f00000bd000), 0x318, 0x0)

4.077354325s ago: executing program 2 (id=225):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000080)={{0x1, 0x1, 0x6a, r0, {0x8000}}, './file0\x00'})
sendmsg$L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x44, 0x0, 0x4b6b9d28c5b9a46b, 0x70bd25, 0x25dfdbfb, {}, [@L2TP_ATTR_DATA_SEQ={0x5, 0x4, 0x4}, @L2TP_ATTR_DEBUG={0x8}, @L2TP_ATTR_UDP_ZERO_CSUM6_TX={0x5, 0x21, 0x1}, @L2TP_ATTR_IP_SADDR={0x8, 0x18, @remote}, @L2TP_ATTR_OFFSET={0x6, 0x3, 0x7}, @L2TP_ATTR_UDP_ZERO_CSUM6_RX={0x5, 0x22, 0x1}]}, 0x44}}, 0x40004)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newlink={0x2c, 0x10, 0x800, 0x0, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4422}, [@IFLA_IFALIASn={0x4}, @IFLA_PROMISCUITY={0x8, 0x1e, 0xfffffffe}]}, 0x2c}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="500000001000010400"/20, @ANYRESDEC=r0, @ANYBLOB="0000000000008000280012800a00010076786c616e000000180002"], 0x50}}, 0x0)
syz_io_uring_setup(0x34b7, 0x0, &(0x7f00000001c0), &(0x7f0000000500))
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000c40)=ANY=[@ANYBLOB="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"], 0x294}}, 0x4048014)
connect$bt_l2cap(r3, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0xb}, 0xe)
sendmmsg$sock(r3, &(0x7f0000004100)=[{{0x0, 0x0, 0x0}}], 0xffffff80, 0x0)
shutdown(r3, 0x1)
r5 = openat$sysfs(0xffffff9c, &(0x7f0000000100)='/sys/power/pm_trace_dev_match', 0x185200, 0x22)
r6 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000300)={'virt_wifi0\x00', <r7=>0x0})
setsockopt$inet6_mreq(r6, 0x29, 0x1b, &(0x7f0000000000)={@remote, r7}, 0x14)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=@newtfilter={0x24, 0x11, 0x1, 0x70bd28, 0x2000, {0x0, 0x0, 0x74, r7, {0xfffd, 0x1}, {0x1, 0xfff1}, {0xfff2, 0xd}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x30004804}, 0x4840)
ioctl$sock_SIOCADDRT(r1, 0x890b, &(0x7f00000003c0)={0x0, @generic={0x3, "55102dda0b4bd2254e91c8e53a1b"}, @can={0x1d, r7}, @nfc={0x27, 0x0, 0x0, 0x5}, 0x8, 0x0, 0x0, 0x0, 0x200, &(0x7f0000000240)='veth1_vlan\x00', 0x8, 0x8, 0x7fff})
setsockopt$SO_RDS_TRANSPORT(r5, 0x114, 0x8, &(0x7f0000000000), 0xffffffffffffffe1)

3.304954566s ago: executing program 0 (id=226):
openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x6)
socket(0x10, 0x3, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
r0 = openat(0xffffffffffffffff, &(0x7f00000010c0)='./file0\x00', 0x20c01, 0x0)
socket(0x2, 0x80805, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='fd\x00')
exit(0x7)
statx(r1, 0x0, 0x1000, 0x10, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x1, 0x0, 0x0, 0x4ee59ce4, 0xfffffffffffffffe, 0xfffffffc}, 0x0)
fsmount(0xffffffffffffffff, 0x1, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001180)={&(0x7f0000000000)={0xa, 0x0, @empty}, 0x10, &(0x7f0000001080)=[{0x0}, {&(0x7f0000001040)="9d7fcf3efc63f4a6a555ba8b4726d7ccaf8a207100e69cfac4377876021d7131b838059f96bd206d4776368ed2a92432e5af71", 0x33}], 0x2, &(0x7f0000001940)=[@ip_tos_int={{0x10, 0x29, 0x32}}, @ip_pktinfo={{0x18, 0xe, 0x8, {0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev}}}, @ip_pktinfo={{0x18, 0x0, 0x8, {0x0, @empty, @loopback}}}], 0x40}, 0x400c018)
r4 = socket$netlink(0x10, 0x3, 0x4)
write(r4, &(0x7f00000000c0)="2900000014000d200d69a51d54efbdeb0101b6ff02159f7ec6cff25fb7f7930884191c47bb3f6b1933", 0x29)
sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x88, 0x24, 0xf0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0xffff}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [], 0x0, [0x4, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c4, 0x0, 0x0, 0x0, 0x3dc], [0x1, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x1000]}}}}]}, 0x88}}, 0x20000000)

3.153492505s ago: executing program 2 (id=227):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xb, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{}, 0x1}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x9)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x15)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r4}, 0x18)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r6 = openat$hpet(0xffffff9c, &(0x7f0000000080), 0x101000, 0x0)
syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f00000000c0)=@ethtool_gfeatures={0x33}})
creat(&(0x7f0000000100)='./file0\x00', 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYRESHEX=r6, @ANYRES16=r3, @ANYBLOB="c51639dee8ba87ac08bc632d88127eb2210e040e0c6fa498d2a75c280df7a2e78e9be0df845d792c4a6fdfda4ddbe98fa3719d50dde4a13b3ea07e55864b3ba4a1af7ea74e54b5ac8f29991dba424aac7877f62f4d05dc461585a5d555a14c330d5ad2a036e2d579", @ANYRESDEC=0x0])
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x42202)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r7, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r7, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick=0xffffff3f, {}, {}, @raw32}], 0xffc8)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r7, 0x4040534e, &(0x7f0000000180)={0x92, @time={0x65757100, 0x1000000}})
socket$nl_netfilter(0x10, 0x3, 0xc)
lseek(0xffffffffffffffff, 0x0, 0x4)

2.920070503s ago: executing program 1 (id=228):
mknod(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet_icmp(0x2, 0x2, 0x1)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, <r2=>0x0}, &(0x7f0000000400)=0xc)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=@ipv6_delrule={0x50, 0x21, 0x1, 0x70bd26, 0x25dfdbfd, {0xa, 0x14, 0x10, 0x7, 0x4, 0x0, 0x0, 0x3, 0x10010}, [@FRA_SRC={0x14, 0x2, @remote}, @FRA_DST={0x14, 0x1, @loopback}, @FIB_RULE_POLICY=@FRA_UID_RANGE={0xc, 0x14, {0x0, r2}}]}, 0x50}}, 0x4850)
fstat(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0})
lchown(&(0x7f0000000080)='./file0\x00', r2, r3)
mount(&(0x7f0000000140)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000)='nilfs2\x00', 0x0, &(0x7f0000000980)='norecovery')

2.881439658s ago: executing program 1 (id=229):
socket$can_raw(0x1d, 0x3, 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000100)=ANY=[], 0x0, 0x3, 0x0, 0x0, 0x41100, 0x1, '\x00', 0x0, 0x2}, 0xffffff8f)
mq_open(&(0x7f00000007c0)='\r\x00elinu\xef\xe3elinux\x00\x86\xf6\x92\n#*\xac\x02\xce\xf8D\\\x9a\xe6[]L+\xf6\v\xe8\xf2\xd3\b\x15\n\xb8F!Q9o\x1f#\xbdt\r\xfb\"\x18%\xfdM\xaf_t\xd2\xdcJ\x10\a|\x9en\xbd\xeb\x14\x7f\xb9\x83\xfe\nf\xc26\xbab\x1a\xdf\xb1\xbdU\xd7Lo\xe7\xac\x81\x10k\xce-\xf5@\xbb\x9d;\xe8\xf6\xffQ\x04\xaai\x92k\x1b;\xddM\xa2\xe1-\x0e\xd8\xde\x00\xff\x18\xdd\bL\xfb\xa2.\xb6{\xb5\x85#\x88\xdc\xf0\x0f\x05\xf1\xc4 \xdeV\x80q\xf7\x04\xf5\x85T\x1f\xc2S]G\xc9lw\xd3J\xc5\xe8\x02\xcb\xbbAHxr\xac\xb77F\xdf\x1c\xcb\xd4\xce\x88L\xf1\xf9[\x98\xd4+pTx\x95\xb5\x1b]x\x1a\x95\xe1c6\xe7`83\xb7n#\xe0\xc1_\xec\xba\xde\a\x8b\xc5\x86woo\xbc\x1c\xa3r\x82\xf3enq-\x90/\xed\xff\xad+\x03\x10\t\xda\xfd\xa2\xd0\xef4\n%\xf1\xd8S\\\xec\xa31_\v\x8a\xf2\x18\xa6\xb1\xbb\x8b9\x1e\xff\xf8\xcdX\xf7h\b\xaf\x01\x84\xd4\x06Ml(Bw=\x13\xa1&\xd3\xec\xa9\x8ba\x86\x9d\xf4\x11\n\x89z\xa5\xac\xcbh\xc2\x1b\xeay\xbf\x06\x80\xff\xdf\x93\xef\x7f\xb1\xaf\xa0\xae', 0x80, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00'}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000080)=0x90000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000280)={@local, 0x1})
ioctl$IOCTL_VMCI_CTX_GET_CPT_STATE(r0, 0x7b1, &(0x7f0000002680)={0x0, 0x1, 0x0, 0x5})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000080), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000007, 0x38011, r2, 0x0)
sendfile(r2, r2, 0x0, 0x40008)
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
write$uinput_user_dev(r3, &(0x7f00000005c0)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x47b07c7d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x763b, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000], [0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf0d, 0x0, 0x80000]}, 0x45c)
ioctl$UI_SET_SWBIT(r3, 0x4004556d, 0x0)
r4 = dup(r3)
ioctl$UI_SET_EVBIT(r4, 0x40045564, 0x5)
ioctl$UI_DEV_CREATE(r4, 0x5501)
bind$unix(0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/mdstat\x00', 0x0, 0x0)

2.355124631s ago: executing program 1 (id=230):
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000080)=""/54, 0x28}, {&(0x7f00000002c0)=""/168, 0x24}], 0x2, &(0x7f0000008640)=[{&(0x7f0000000740)=""/108, 0x5f}], 0x54bec2f3d19dd6f6, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2e, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = syz_open_dev$usbfs(&(0x7f0000000080), 0xf, 0x8041)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r4, 0x8108551b, 0x0)
ioctl$USBDEVFS_ALLOC_STREAMS(r4, 0x8008551c, &(0x7f0000000000)=ANY=[@ANYBLOB="4a1800000b00000081020885047e860b8c83", @ANYRESHEX=r3, @ANYRES64, @ANYRES16=r0, @ANYRESHEX])
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
set_mempolicy(0x2, &(0x7f0000000400)=0xfffffffffffff999, 0x4)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x482, 0x0)
ioctl$TCSETS(r6, 0x5402, &(0x7f0000000200)={0xfffffffc, 0x0, 0x6, 0x0, 0xff, "db8f2d2b3b7596160c6981acf8805944823a7f"})
getsockopt$inet_pktinfo(r5, 0x0, 0x8, 0x0, 0x0)
r7 = memfd_secret(0x0)
msgctl$IPC_STAT(0x0, 0x2, &(0x7f0000000a40)=""/4096)
ppoll(&(0x7f0000000100)=[{r7, 0x200}], 0x1, &(0x7f0000000280)={0x77359400}, &(0x7f0000000300)={[0x10000, 0x7f55]}, 0x8)
unshare(0x40020000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
connect$unix(r8, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r9, &(0x7f00000bd000), 0x318, 0x0)

2.294493239s ago: executing program 0 (id=231):
setrlimit(0x2, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000340), 0xb00, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0xe)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x94)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000006940), 0x0, 0x2, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmmsg$sock(r4, &(0x7f00000044c0), 0x4000000000001c0, 0x0)
recvfrom(r5, 0x0, 0x0, 0x22, 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x0, 0x0, 0x53, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17}, 0x94)
r6 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r6, 0x40047438, &(0x7f0000000180)=""/246)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
move_pages(0x0, 0x0, &(0x7f0000002600), &(0x7f0000002640), 0x0, 0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x102})
ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, &(0x7f0000000080)={'syzkaller0\x00', 0x400})
socket$nl_route(0x10, 0x3, 0x0)
ioctl$PPPIOCSFLAGS1(r6, 0x40047459, &(0x7f00000003c0)=0xc26080b)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000280)=ANY=[], 0xfce1)
r8 = openat$ppp(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
ioctl$EVIOCGPROP(r8, 0x40047438, &(0x7f0000000180)=""/246)

2.204453401s ago: executing program 3 (id=232):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x1, 0xfffffffe)
sendto$inet6(r1, &(0x7f0000000100)="7800000018002507b9409b14ffff0b000204be040207fe056406040c5c001f003f0006010d0085a168d0bf46d32345653610648d270005000a06024e49935ade4a460c89b6ec0cff3959547f509058ba86c902007a00004a3200040016000803180000000000e000e218d1ddf66ed538f252325000000000", 0x78, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x6a)
syz_io_uring_setup(0x497, &(0x7f0000000400)={0x0, 0x7079, 0x0, 0x14, 0x28b}, &(0x7f0000000140)=<r5=>0x0, &(0x7f0000000200))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
ioctl$TIOCSISO7816(r4, 0xc0285443, &(0x7f0000000100)={0x5, 0x6a6bcd02, 0xc2, 0xff, 0x3})
syz_io_uring_submit(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0500000003000000003800003f00000000000000", @ANYRES16, @ANYRES64=r5, @ANYRES32, @ANYBLOB="00000000010000000000000000"], 0x50)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r6, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
syz_emit_ethernet(0x4e, &(0x7f0000000140)=ANY=[], 0x0)
syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
r8 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000003c0)="5c00000013006bcd9e3fe3dceb48aa31086b8703110000001fa1ff0000000000040014000d000a000d0000009ee517d34460bc24eab556a705251e6182949a3651f60a84c9f5d1938037e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)
write$bt_hci(r6, &(0x7f00000005c0)=ANY=[@ANYBLOB="0e000100020075"], 0x8)
write$6lowpan_enable(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000280), 0x4)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001900)={0x184, 0x19, 0x1, 0x0, 0x25dfdbfb, {0x1d, 0xd601, 0x9}, [@nested={0x50, 0x12, 0x0, 0x1, [@nested={0x4c, 0xf8, 0x0, 0x1, [@typed={0x14, 0x133, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}}, @nested={0x31, 0xfb, 0x0, 0x1, [@generic="b5416b2b80f72979594745504f3a0aa6b036f86ce32d83591c6224e53de96804e6172083eaaa90cf56dd042b72"]}]}]}, @nested={0x120, 0x6, 0x0, 0x1, [@nested={0x11c, 0xac, 0x0, 0x1, [@nested={0x118, 0x13e, 0x0, 0x1, [@nested={0x114, 0xa0, 0x0, 0x1, [@nested={0x110, 0x61, 0x0, 0x1, [@nested={0x10c, 0x9d, 0x0, 0x1, [@nested={0x108, 0x63, 0x0, 0x1, [@typed={0x8, 0x60, 0x0, 0x0, @uid}, @nested={0xfc, 0x90, 0x0, 0x1, [@nested={0x99, 0x44, 0x0, 0x1, [@typed={0x8, 0xb0, 0x0, 0x0, @str='GPL\x00'}, @generic="a4f2bdc07e8cc0404f617143e4f7b263ba6fc1453ff8932426cb0b2024dd0f1b7350887762644cd52aa60500cdf7e959a84b3dad1bc88841ef786cbde7d6215a38138e3e97b00517bbc1841901c1583a335075ea5754b2eaa78293f03551b0562fb5a45f1f7cbb3d6e117248069b9fb39c95d130e184c9b4c03c06137216485441b97dd59aa0e33633390ce64b"]}, @nested={0x59, 0x84, 0x0, 0x1, [@generic="578f41f21346600e8b97c8547badffbc172d50c86fbb143d0bfd04bd981257b4b68897845ab03be89e385e60e3b5b9022e699ec98db9b119e703878e33759b6390cb0d3969ae645f7370b17f51dcc1425bad654f2c"]}]}]}]}]}]}]}]}]}]}, 0x184}, 0x1, 0x0, 0x0, 0x5}, 0x0)

2.073493014s ago: executing program 2 (id=233):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x1e1a00, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x30, r2, 0x1, 0x70bd26, 0x25dfdbfd, {{}, {}, {0x0, 0x18, {0x10, @bearer=@l2={'eth', 0x3a, 'wlan1\x00'}}}}}, 0x30}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg$TIPC_CMD_ENABLE_BEARER(r1, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x34, r2, 0x300, 0x70bd28, 0x25dfdbfd, {{}, {}, {0x18, 0x17, {0x3, 0x2, @udp='udp:syz2\x00'}}}, ["", "", "", "", ""]}, 0x34}, 0x1, 0x0, 0x0, 0xc804}, 0x4040000)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000280)=ANY=[@ANYBLOB="00000000000000001a2048"])
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x5)
syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000008d804dd000000000000010902000921fffffd01b3460067239fa26b4f0905810308000300fd"], 0x0)
syz_usb_connect$uac1(0x5, 0xf9, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000940)={0xa, &(0x7f0000000800)={0xa, 0x6, 0x110, 0x1, 0xd7, 0x40, 0x0, 0x63}, 0x43, &(0x7f0000000840)=ANY=[@ANYBLOB="050300000018100af7030010000f000600c000000030407f000000ff001c100a020400ffff0f007c00cf000000c000ff00cfbf01000f60000003100b07100210120400"], 0x1, [{0x4, &(0x7f00000008c0)=@lang_id={0x4, 0x3, 0x411}}]})
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r4}, 0x10)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
bpf$BPF_LINK_UPDATE(0x1d, 0x0, 0x0)
setpriority(0x0, 0x0, 0xacf0165)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
set_tid_address(&(0x7f00000001c0))
r5 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x2, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r5, 0xc10c5541, &(0x7f0000000080)={0x3, 0x7})
openat$vmci(0xffffffffffffff9c, &(0x7f0000000680), 0x2, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4048aecb, &(0x7f0000000080))

1.681717941s ago: executing program 3 (id=234):
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000080)=""/54, 0x28}, {&(0x7f00000002c0)=""/168, 0x24}], 0x2, &(0x7f0000008640)=[{&(0x7f0000000740)=""/108, 0x5f}], 0x54bec2f3d19dd6f6, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2e, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = syz_open_dev$usbfs(&(0x7f0000000080), 0xf, 0x8041)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r3, 0x8108551b, &(0x7f00000001c0)={0x0, 0x2, "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"})
ioctl$USBDEVFS_ALLOC_STREAMS(r3, 0x8008551c, 0x0)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
set_mempolicy(0x2, &(0x7f0000000400)=0xfffffffffffff999, 0x4)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x482, 0x0)
ioctl$TCSETS(r5, 0x5402, &(0x7f0000000200)={0xfffffffc, 0x0, 0x6, 0x0, 0xff, "db8f2d2b3b7596160c6981acf8805944823a7f"})
getsockopt$inet_pktinfo(r4, 0x0, 0x8, 0x0, 0x0)
r6 = memfd_secret(0x0)
msgctl$IPC_STAT(0x0, 0x2, &(0x7f0000000a40)=""/4096)
ppoll(&(0x7f0000000100)=[{r6, 0x200}], 0x1, &(0x7f0000000280)={0x77359400}, &(0x7f0000000300)={[0x10000, 0x7f55]}, 0x8)
unshare(0x40020000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r8, &(0x7f00000bd000), 0x318, 0x0)

1.232557442s ago: executing program 0 (id=235):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000080)={{0x1, 0x1, 0x6a, r0, {0x8000}}, './file0\x00'})
sendmsg$L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x44, 0x0, 0x4b6b9d28c5b9a46b, 0x70bd25, 0x25dfdbfb, {}, [@L2TP_ATTR_DATA_SEQ={0x5, 0x4, 0x4}, @L2TP_ATTR_DEBUG={0x8}, @L2TP_ATTR_UDP_ZERO_CSUM6_TX={0x5, 0x21, 0x1}, @L2TP_ATTR_IP_SADDR={0x8, 0x18, @remote}, @L2TP_ATTR_OFFSET={0x6, 0x3, 0x7}, @L2TP_ATTR_UDP_ZERO_CSUM6_RX={0x5, 0x22, 0x1}]}, 0x44}}, 0x40004)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newlink={0x2c, 0x10, 0x800, 0x0, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4422}, [@IFLA_IFALIASn={0x4}, @IFLA_PROMISCUITY={0x8, 0x1e, 0xfffffffe}]}, 0x2c}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="500000001000010400"/20, @ANYRESDEC=r0, @ANYBLOB="0000000000008000280012800a00010076786c616e000000180002"], 0x50}}, 0x0)
syz_io_uring_setup(0x34b7, 0x0, &(0x7f00000001c0), &(0x7f0000000500))
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000c40)=ANY=[@ANYBLOB="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"], 0x294}}, 0x4048014)
connect$bt_l2cap(r3, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0xb}, 0xe)
sendmmsg$sock(r3, &(0x7f0000004100)=[{{0x0, 0x0, 0x0}}], 0xffffff80, 0x0)
shutdown(r3, 0x1)
r5 = openat$sysfs(0xffffff9c, &(0x7f0000000100)='/sys/power/pm_trace_dev_match', 0x185200, 0x22)
r6 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000300)={'virt_wifi0\x00', <r7=>0x0})
setsockopt$inet6_mreq(r6, 0x29, 0x1b, &(0x7f0000000000)={@remote, r7}, 0x14)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=@newtfilter={0x24, 0x11, 0x1, 0x70bd28, 0x2000, {0x0, 0x0, 0x74, r7, {0xfffd, 0x1}, {0x1, 0xfff1}, {0xfff2, 0xd}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x30004804}, 0x4840)
ioctl$sock_SIOCADDRT(r1, 0x890b, &(0x7f00000003c0)={0x0, @generic={0x3, "55102dda0b4bd2254e91c8e53a1b"}, @can={0x1d, r7}, @nfc={0x27, 0x0, 0x0, 0x5}, 0x8, 0x0, 0x0, 0x0, 0x200, &(0x7f0000000240)='veth1_vlan\x00', 0x8, 0x8, 0x7fff})
setsockopt$SO_RDS_TRANSPORT(r5, 0x114, 0x8, &(0x7f0000000000), 0xffffffffffffffe1)

733.547173ms ago: executing program 3 (id=236):
r0 = socket$kcm(0x1e, 0x2, 0x0)
setsockopt$sock_attach_bpf(r0, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
sendmsg$kcm(r0, &(0x7f0000000200)={&(0x7f0000000100)=@tipc=@id, 0x80, 0xffffffffffffffff}, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0)
ioctl$TCSETS(r2, 0x404c4701, &(0x7f0000000040)={0x1, 0x0, 0x0, 0x400000, 0x14, "3eccd8000000000000000010000000040100"})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
unshare(0x8010800)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r7, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r9=>0x0})
syz_init_net_socket$ax25(0x3, 0x3, 0xcf)
sendmsg$nl_route(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x20, 0x68, 0x5fb9a818fb7378e9, 0x40000, 0x25dfdbff, {}, [@NHA_OIF={0x8, 0x5, r9}]}, 0x20}}, 0x8040)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=@newnexthop={0x38, 0x68, 0x1, 0x100003, 0x7ffffffd, {}, [@NHA_GROUP={0xc, 0x2, [{0x1, 0x15}]}, @NHA_RES_GROUP={0xc, 0xc, 0x0, 0x1, [@NHA_RES_GROUP_BUCKETS={0x6, 0x1, 0x3fd4}]}, @NHA_GROUP_TYPE={0x6, 0x3, 0x1}]}, 0x38}, 0x1, 0x0, 0x0, 0x4008018}, 0x4000080)
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000003c0)=@newlink={0x20, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, r9, 0x192}}, 0x20}}, 0x0)
r11 = fsopen(&(0x7f0000000100)='vfat\x00', 0x0)
fsconfig$FSCONFIG_SET_PATH(r11, 0x3, &(0x7f0000000180)='utf8', &(0x7f0000000340)='./file2\x00', 0xffffffffffffff9c)
bind$inet(r5, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x17}}, 0x10)
setsockopt$sock_int(r5, 0x1, 0x6, &(0x7f0000000000)=0x4, 0x4)
connect$inet(r5, &(0x7f0000000280)={0x2, 0x0, @broadcast}, 0x10)
sendmmsg$inet(r5, &(0x7f0000004d00)=[{{0x0, 0x6000, 0x0, 0x0, 0x0, 0x0, 0x30000}}], 0x300, 0xf00)

726.225919ms ago: executing program 1 (id=244):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000}, 0x94)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000002c0)=ANY=[@ANYRESHEX=r1, @ANYRESDEC=r1, @ANYRES8], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000240)='qgroup_meta_convert\x00', r2, 0x0, 0x10000000}, 0x18)
brk(0x20ffc004)
r3 = dup(r0)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0x7aad, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x0, 0x0, r3}, &(0x7f0000000180)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
r7 = signalfd(0xffffffffffffffff, &(0x7f00000003c0)={[0x0, 0xe000000]}, 0x8)
close(r7)
fcntl$setstatus(r7, 0x4, 0x2c00)
fcntl$setown(r7, 0x8, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f00000000c0)=@IORING_OP_WRITE={0x17, 0x11, 0x4004, @fd_index=0x1, 0xfffffffffffffffd, &(0x7f00000192c0)="4c5cb6935c7d0cf311521b88775a92841920e9bbefdeb9a2a08b5ca8e65cbb64e7473d3fb59587a9419a84996948422007e27b21397f7420233378218eedbbb072605940b52647cef0e3207b5f928b10d79d86e3f436c6933ea8f4f12cf3ace08153359e0f3ee1bf447e5e0c", 0x6c, 0x4, 0x1})
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
io_uring_enter(r4, 0x2ced, 0xef92, 0x0, 0x0, 0x0)
connect$llc(0xffffffffffffffff, &(0x7f0000000180)={0x1a, 0x0, 0xf9, 0x8, 0x0, 0x0, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3e}}, 0x10)
syz_open_dev$vim2m(&(0x7f0000000140), 0x1, 0x2)
readv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000001180)=""/4085, 0xff5}], 0x1)
r8 = socket(0x15, 0x5, 0x0)
getsockopt(r8, 0x200000000114, 0x2713, &(0x7f0000019380)=""/102399, &(0x7f0000000280)=0x18fff)
r9 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r9)
ptrace$pokeuser(0x6, r9, 0x118, 0x5ffffffd)
r10 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r10, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r10, 0x117, 0x1, &(0x7f0000000200)="31cbeff38e93aead56b6c5820fae9d6dcd3292ea54c7be5d00000000000000", 0x1f)
accept4(r10, 0x0, 0x0, 0x800)

262.708315ms ago: executing program 2 (id=237):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r1 = fanotify_init(0x200, 0x0)
r2 = dup2(r1, r0)
write$FUSE_GETXATTR(r2, 0x0, 0x0) (fail_nth: 1)

261.997322ms ago: executing program 0 (id=238):
r0 = syz_open_dev$evdev(&(0x7f00000001c0), 0x2, 0x0)
ioctl$EVIOCGBITSND(r0, 0x40044591, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000140)={'\x00', 0xfff8, 0x7f, 0x10000, 0x0, 0x6, <r1=>0x0})
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000012c0)=[{{&(0x7f0000000340)=@file={0x1, './file0/file0\x00'}, 0x6e, &(0x7f0000000200)=[{&(0x7f0000000500)="e65a4ec9fc87816b7e9aae74a3a14782f19321b175c57c760ce989d160e25e15ee1192c0ebf27085f9fe9f7f957e355b87753c03a20c754f8836b3313becc79f45fd912ff8da6193141b9a6db3fb917507366b6b750156f7c91c8d567b7153091ed3a25142a881fdaa4e9b1f40beff930d4a2b9f72a72bd9", 0x78}], 0x1, 0x0, 0x0, 0x20000080}}, {{&(0x7f00000005c0)=@file={0x0, './file0/file0\x00'}, 0x6e, &(0x7f0000000400)=[{&(0x7f0000000640)="aa820a0eb3a85f1ce6a939664d3590e4c5380519b31052315e1eb76d92334786233aadf2a473135b936e10373017cc3818022d16b92f4744d38730187dc5ceffa707849809600ec38ffbffcae1be492a81ff3ae1b40d977c4c2d320fc7ebfb6a5acd57613fddbb3f9073e31d35284fb3676c5e75906bf76a391c12e69a7023c7aef3c048dd06ad525df3894381aba91d7babfff71efe709097734e8a262b898f1f2f7d1feb90dc0ab40f6ea41e1ee50b40d8f122e849d531504ed310d7ae27443fc23f75d7c3a3070809734e5985acfc4d3f591a2ed29a5d0e1f3421cc90a1509f", 0xe1}, {&(0x7f00000007c0)="a103c59a6e51391ec07b3e61ab01630e0cd500afa28abe254b73ad98bb0db38e94755be3e933406373630bf4ddefc83dca0a6c5fde8ba04b383fd68cac0e8eba835bb42fc99aa4673292bd10ad75dd9312a15b977c9af4f1c381b4a351bdd1fb87a0dba87d280af543eaf6f51cc33c2787443e656b1963b6b5f87c9c87a9385ca873f40cc6bf4dbd50dba136b22579ec117fe2579109aaa217e8a7815f9f0f141552a3b7c877e8800d4435baf699e66f3120453fc6fd837fd6b1c4851e1f583ca8", 0xc1}], 0x2, &(0x7f0000001380)=ANY=[@ANYBLOB="180000004100000002000000ab20143904824dcd4dbb8a69685b9b0aa438c6cc0ddcfa6451b6f8d55ef712", @ANYRES32=r1, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="180000000100000001000000", @ANYRES32=r2, @ANYRES32=r2, @ANYRES32, @ANYBLOB="100000000100000001000000", @ANYRES32=r0], 0x40, 0x4c844}}, {{&(0x7f0000000940)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000000b80)=[{&(0x7f00000008c0)="1ba027bab9ed61a8a5c5d26ebaf2b85668ff63604b48eff93fed0ee5c23d257e2490515992746f0cf5c9bfc9607f0b176e209e1f255d90", 0x37}, {&(0x7f0000000a00)="3268bc8ca4c5c188a5518b", 0xb}, {&(0x7f0000000a40)="29166e98503ea0c84c8e4f9ba51ab287bef7f7501c06a905837769841aa485b8ed51424ed1b370f6a6586308f35f469b7aa23835f84cfaca1f95268b0cc70bc8df644946bfe7ce31a3a42ae9b5fb116c1dfb76084025741cc985e8d938be3e88f3cf088f6564f4775145f4e1ea0ec82281e25351c7149aaeb986fb63633e9f4d3e4d616736020f7fa7394543095eeff476d7e8e746a4742f85aa5e74180561d2270ddd19c846f788aff4ae4cece9a8d6a5f4cd02122479c30d007044a517d074a3d44e6342414198f7", 0xc9}, {&(0x7f0000000b40)="936e7091dfe92e733e60", 0xa}], 0x4, &(0x7f0000000bc0)=ANY=[@ANYBLOB="180000000100000002000000", @ANYRES32=r1, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="200000000100000001000000", @ANYRES32=r3, @ANYRES32, @ANYRES32=r0, @ANYRES32, @ANYRES32=r2, @ANYBLOB="240000000100000001000000", @ANYRES32, @ANYRES32=r2, @ANYRES32, @ANYRES32=r2, @ANYRES32=r2, @ANYRES32=r2, @ANYBLOB="316531e0dc65974a01000000", @ANYRES32=r3, @ANYRES32=r3], 0x70, 0x4800}}, {{&(0x7f0000000c40)=@file={0x1}, 0x6e, &(0x7f0000000fc0)=[{&(0x7f0000000cc0)="bc2326bae1e513292ae65a42130a484d68c0d84d57e1b282c966f51f8169c31d6eaf35caac84a846c70d0b207ff9e50cad2183f4774eb239744e73e3f637b3ba99b089f4c5a60518af9d4506cc3f27a3ec108587820a478763427a573c69767cf11042a7defd06514e160b44212fbd453769de851790e1e1a4f4c0f6", 0x7c}, {&(0x7f0000000d40)="5052e892db2806a9996e1fac9dd343711e09f343765b6277dd577f18e5923d353ae687734f0229abe26d214a6cd36e49e4fde541eefadde705ee95f22fb75309b45835c0263bae8c791cc4da85521d9ad868c829260aa91a3674747312972acdf8a06a5012767d7f8c17a4a12535a5a0e003206995f0b345ca95cfcdc2dda7d41991419f4e419d8be7ab34156b89d14725e93a95bfcf01561a698a7d7788d4ece83e115034f055042df3c4625ff29016aaf4aab9f01c59b91d5fadfa90f9cca651acb613692e02343368d2603b4c01e7abf508a0b2519b34b7b6475c0b40b05e3fa18b65f1b4cb692575e1265a", 0xed}, {&(0x7f0000000e40)="e26b372a0a2bf70e9f4feaf9322b2ac3b64654f7238a304dc30475dd873a09", 0x1f}, {&(0x7f0000000e80)="68952547b1f64ad8b139b24898b14a185fe5bffaa5c7afa4e080f3f8f41ba66d31e7c3fad4fb40f64acf9dc64f366e38fa9f3be3a1bde28f938f8962e910200ee9f0b553c40d84499019f204b969efed8a9958567e779e82fb832257cde10b82f13c0eb381d1887fd3ef3761b5992a8ec0d54bf105761d08a710a50814d22a44fc4066d043aaa9471f20731f06672e44fae8edcb3b3999e10ab0b41005cf40f3d487f7779e932b69cd26d8d9e0ebb78034a5db7138609c4c0b7f9c7216027c0481633463eab0cd97fd00ccb7aa7ea3cf1cc3829764c45e9e1089", 0xda}], 0x4, 0x0, 0x0, 0x100}}, {{&(0x7f0000001000)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f00000011c0)=[{&(0x7f0000001080)="d5ad5a0b792c103771d8ca496e723d6ac1117859d3beedc3cbdb635c5bcc4ccaa5e71eb805f16f3b9e5b9de768ca422c2bf11e37bd5c6f700cb7afd8c6c1", 0x3e}, {&(0x7f0000001100)="57028ff0cc83956dd8177fb7ccc48362d64f89d7f74f3a6308a0c419bbfd5e7ba4f52dec3575d772e23101f5bacd5ccf1e9be116608c08c792f6413f385f633eaaca40c2a6ab9a970f", 0x49}], 0x2, &(0x7f0000001240)=[@cred={{0x18, 0x1, 0x2, {r1}}}, @rights={{0x10, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, r3, 0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff, r2, r2, 0xffffffffffffffff, r3]}}], 0x5c, 0x4844}}], 0x5, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_io_uring_setup(0x10e, &(0x7f0000000140)={0x0, 0x334e, 0x10, 0x3, 0x801}, &(0x7f00000003c0)=<r5=>0x0, &(0x7f0000000300)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_OPENAT={0x12, 0x4, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000040)='./file0/file0\x00', 0x60, 0x185100})
openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80882)
io_uring_enter(r4, 0x7277, 0x40006, 0x43, 0x0, 0x0)
syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01)
r7 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r7, &(0x7f0000000440), 0x10)
listen(r7, 0x0)
r8 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r8, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r8, &(0x7f0000000580)=[{&(0x7f0000001180)="15", 0x1}], 0x1)
r9 = openat$uinput(0xffffffffffffff9c, &(0x7f00000010c0), 0x2, 0x0)
ioctl$UI_DEV_SETUP(r9, 0x405c5503, &(0x7f0000000480)={{0x0, 0xefae, 0x0, 0x3}, 'syz1\x00', 0x4d})
ioctl$UI_SET_KEYBIT(r9, 0x40045565, 0x2c0)
ioctl$UI_DEV_CREATE(r9, 0x5501)
r10 = accept4$unix(r7, 0x0, 0x0, 0x80800)
recvmsg(r10, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000740)=""/70, 0x46}], 0x1}, 0x4c2103a0)
socket$nl_netfilter(0x10, 0x3, 0xc)
mremap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2000, 0x7, &(0x7f0000ffd000/0x2000)=nil)
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="0500000004000000080000000b"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

202.583036ms ago: executing program 2 (id=239):
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x0, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x3ffa, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0xfffe, 0x0, 0xa40}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f00000001c0)={'fscrypt:', @desc3}, &(0x7f0000000300)={0x0, "10f8b00f37651afa3619457e9e16eb9a2732bd7ca767a320c4c57e2370e6e4ac36d5cd133c26f88778b60974c73dc649dc65676cea8fc6ebfe50a657648e37bd", 0x20}, 0x48, 0xfffffffffffffffa)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r4, &(0x7f0000000280)='asymmetric\x00', &(0x7f0000000380))
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r5, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x7})
ioctl$sock_netdev_private(r5, 0x8949, &(0x7f0000000000)) (fail_nth: 1)
rseq(&(0x7f00000004c0)={0x0, 0x0, 0x0, 0x3}, 0x20, 0x400000000, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000000000)={0x14, 0x2d, 0x1, 0x70bd26, 0x25dfdbfc, {0x4}}, 0x14}}, 0x20000000)
io_uring_setup(0x2f00, &(0x7f0000000700)={0x0, 0xe8e2, 0x400, 0x20001, 0x2d6})
openat$kvm(0xffffffffffffff9c, &(0x7f0000004300), 0x1, 0x0)

104.546157ms ago: executing program 1 (id=240):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r2}, 0x18)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r2, 0x40089413, &(0x7f0000000380)=0x3)
write$binfmt_misc(r1, &(0x7f0000000000), 0xd)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000100)={0x3, 0x40, 0xfa00, {{0xa, 0x4e22, 0x2, @empty, 0xffffffff}, {0xa, 0x4e20, 0x101, @remote, 0x7}, 0xffffffffffffffff, 0x6}}, 0x48)
write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f00000000c0)={0xc, 0x8, 0xfa00, {&(0x7f00000025c0)}}, 0x10)

0s ago: executing program 0 (id=241):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000faff0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3, 0x0, 0x5}, 0x18)
r4 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x0)
ioctl$EVIOCGRAB(r4, 0x40044590, &(0x7f0000000200)=0x7ffffffc)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000009780)={0x2020}, 0x2020)
socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000ac0), r5)
sendmsg$NLBL_CALIPSO_C_REMOVE(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, r6, 0x1, 0x70bd25, 0x25dfdbff, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40005}, 0x8000)
ioctl$BLKZEROOUT(0xffffffffffffffff, 0x127f, &(0x7f00000000c0)={0xffff, 0x80600})
r7 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r7, 0x4008ae90, &(0x7f0000000140))

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:49313' (ED25519) to the list of known hosts.
[   47.062589][ T5955] cgroup: Unknown subsys name 'net'
[   47.168509][ T5955] cgroup: Unknown subsys name 'cpuset'
[   47.173030][ T5955] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   48.178130][ T5955] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   51.922549][ T5335] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   51.925335][ T5335] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   51.927724][ T5335] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   51.937666][ T5978] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   51.940932][ T5985] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   51.940973][ T5978] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   51.944255][ T5986] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   51.946167][ T5978] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   51.947897][ T5980] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   51.948703][ T5986] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   51.948853][ T5980] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   51.951130][ T5978] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   51.960112][   T63] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   51.962098][ T5985] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   51.962250][ T5978] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   51.962513][ T5978] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   51.964468][ T5335] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   51.971608][   T63] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   51.971925][ T5335] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   51.974498][   T63] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   52.238168][ T5971] chnl_net:caif_netlink_parms(): no params data found
[   52.266386][ T5983] chnl_net:caif_netlink_parms(): no params data found
[   52.307057][ T5975] chnl_net:caif_netlink_parms(): no params data found
[   52.319383][ T5979] chnl_net:caif_netlink_parms(): no params data found
[   52.435949][ T5971] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.438131][ T5971] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.440382][ T5971] bridge_slave_0: entered allmulticast mode
[   52.443383][ T5971] bridge_slave_0: entered promiscuous mode
[   52.487071][ T5971] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.489363][ T5971] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.491575][ T5971] bridge_slave_1: entered allmulticast mode
[   52.494310][ T5971] bridge_slave_1: entered promiscuous mode
[   52.564799][ T5971] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   52.589598][ T5979] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.592428][ T5979] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.595775][ T5979] bridge_slave_0: entered allmulticast mode
[   52.599751][ T5979] bridge_slave_0: entered promiscuous mode
[   52.606805][ T5971] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   52.654826][ T5975] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.657341][ T5975] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.659611][ T5975] bridge_slave_0: entered allmulticast mode
[   52.662547][ T5975] bridge_slave_0: entered promiscuous mode
[   52.665787][ T5979] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.668096][ T5979] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.670334][ T5979] bridge_slave_1: entered allmulticast mode
[   52.672964][ T5979] bridge_slave_1: entered promiscuous mode
[   52.697782][ T5983] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.699985][ T5983] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.702217][ T5983] bridge_slave_0: entered allmulticast mode
[   52.705016][ T5983] bridge_slave_0: entered promiscuous mode
[   52.708585][ T5975] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.710867][ T5975] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.713129][ T5975] bridge_slave_1: entered allmulticast mode
[   52.717919][ T5975] bridge_slave_1: entered promiscuous mode
[   52.760031][ T5971] team0: Port device team_slave_0 added
[   52.762634][ T5983] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.765767][ T5983] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.768687][ T5983] bridge_slave_1: entered allmulticast mode
[   52.771719][ T5983] bridge_slave_1: entered promiscuous mode
[   52.812398][ T5971] team0: Port device team_slave_1 added
[   52.855468][ T5975] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   52.860137][ T5979] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   52.902367][ T5975] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   52.923161][ T5979] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   52.954589][ T5983] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   52.989416][ T5979] team0: Port device team_slave_0 added
[   52.991933][ T5971] batman_adv: batadv0: Adding interface: batadv_slave_0
[   52.994210][ T5971] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   53.002154][ T5971] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   53.008874][ T5983] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   53.012452][ T5975] team0: Port device team_slave_0 added
[   53.016821][ T5979] team0: Port device team_slave_1 added
[   53.019407][ T5971] batman_adv: batadv0: Adding interface: batadv_slave_1
[   53.022210][ T5971] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   53.032796][ T5971] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   53.052866][ T5975] team0: Port device team_slave_1 added
[   53.113404][ T5979] batman_adv: batadv0: Adding interface: batadv_slave_0
[   53.116650][ T5979] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   53.124845][ T5979] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   53.129958][ T5983] team0: Port device team_slave_0 added
[   53.146155][ T5979] batman_adv: batadv0: Adding interface: batadv_slave_1
[   53.148928][ T5979] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   53.157874][ T5979] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   53.163069][ T5983] team0: Port device team_slave_1 added
[   53.165435][ T5975] batman_adv: batadv0: Adding interface: batadv_slave_0
[   53.167633][ T5975] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   53.175559][ T5975] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   53.182527][ T5975] batman_adv: batadv0: Adding interface: batadv_slave_1
[   53.185703][ T5975] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   53.193471][ T5975] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   53.270162][ T5983] batman_adv: batadv0: Adding interface: batadv_slave_0
[   53.272337][ T5983] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   53.280598][ T5983] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   53.303329][ T5971] hsr_slave_0: entered promiscuous mode
[   53.307951][ T5971] hsr_slave_1: entered promiscuous mode
[   53.312394][ T5983] batman_adv: batadv0: Adding interface: batadv_slave_1
[   53.314607][ T5983] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   53.322394][ T5983] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   53.393360][ T5979] hsr_slave_0: entered promiscuous mode
[   53.395723][ T5979] hsr_slave_1: entered promiscuous mode
[   53.397710][ T5979] debugfs: 'hsr0' already exists in 'hsr'
[   53.399502][ T5979] Cannot create hsr debugfs directory
[   53.451137][ T5975] hsr_slave_0: entered promiscuous mode
[   53.453354][ T5975] hsr_slave_1: entered promiscuous mode
[   53.455723][ T5975] debugfs: 'hsr0' already exists in 'hsr'
[   53.457437][ T5975] Cannot create hsr debugfs directory
[   53.479871][ T5983] hsr_slave_0: entered promiscuous mode
[   53.482070][ T5983] hsr_slave_1: entered promiscuous mode
[   53.485291][ T5983] debugfs: 'hsr0' already exists in 'hsr'
[   53.487066][ T5983] Cannot create hsr debugfs directory
[   53.778356][ T5971] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   53.785357][ T5971] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   53.790472][ T5971] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   53.799666][ T5971] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   53.833916][ T5979] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   53.840791][ T5979] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   53.844982][ T5979] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   53.856689][ T5979] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   53.887861][ T5975] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   53.892135][ T5975] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   53.902278][ T5975] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   53.907539][ T5975] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   53.956343][ T5983] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   53.963917][ T5983] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   53.968175][ T5983] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   53.975733][ T5983] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   53.994898][   T63] Bluetooth: hci2: command tx timeout
[   53.994932][ T5973] Bluetooth: hci3: command tx timeout
[   53.997009][ T5976] Bluetooth: hci0: command tx timeout
[   53.999096][ T5971] 8021q: adding VLAN 0 to HW filter on device bond0
[   53.999321][ T5335] Bluetooth: hci1: command tx timeout
[   54.041566][ T5971] 8021q: adding VLAN 0 to HW filter on device team0
[   54.065381][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.067689][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.079614][ T5979] 8021q: adding VLAN 0 to HW filter on device bond0
[   54.084206][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.087082][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.125514][ T5979] 8021q: adding VLAN 0 to HW filter on device team0
[   54.133176][ T5975] 8021q: adding VLAN 0 to HW filter on device bond0
[   54.146960][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.149245][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.152406][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.154663][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.180374][ T5983] 8021q: adding VLAN 0 to HW filter on device bond0
[   54.189416][ T5975] 8021q: adding VLAN 0 to HW filter on device team0
[   54.218140][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.220374][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.223895][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.226196][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.235874][ T5983] 8021q: adding VLAN 0 to HW filter on device team0
[   54.249550][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.252600][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.258958][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.261961][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.293453][ T5983] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   54.298441][ T5983] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   54.311754][ T5975] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   54.331438][ T5971] 8021q: adding VLAN 0 to HW filter on device batadv0
[   54.374799][ T5971] veth0_vlan: entered promiscuous mode
[   54.383763][ T5971] veth1_vlan: entered promiscuous mode
[   54.408136][ T5979] 8021q: adding VLAN 0 to HW filter on device batadv0
[   54.410729][ T5971] veth0_macvtap: entered promiscuous mode
[   54.416057][ T5971] veth1_macvtap: entered promiscuous mode
[   54.432277][ T5971] batman_adv: batadv0: Interface activated: batadv_slave_0
[   54.440076][ T5971] batman_adv: batadv0: Interface activated: batadv_slave_1
[   54.458010][   T46] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   54.460977][   T46] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   54.470598][ T5979] veth0_vlan: entered promiscuous mode
[   54.472979][   T46] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   54.476897][   T46] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   54.487201][ T5975] 8021q: adding VLAN 0 to HW filter on device batadv0
[   54.491987][ T5983] 8021q: adding VLAN 0 to HW filter on device batadv0
[   54.505583][ T5979] veth1_vlan: entered promiscuous mode
[   54.529993][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.532983][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   54.557626][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.560117][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   54.566002][ T5975] veth0_vlan: entered promiscuous mode
[   54.577331][ T5983] veth0_vlan: entered promiscuous mode
[   54.582237][ T5983] veth1_vlan: entered promiscuous mode
[   54.592306][ T5979] veth0_macvtap: entered promiscuous mode
[   54.596710][ T5979] veth1_macvtap: entered promiscuous mode
[   54.602164][ T5971] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   54.604694][ T5975] veth1_vlan: entered promiscuous mode
[   54.627215][ T5979] batman_adv: batadv0: Interface activated: batadv_slave_0
[   54.645872][ T5979] batman_adv: batadv0: Interface activated: batadv_slave_1
[   54.649660][ T5983] veth0_macvtap: entered promiscuous mode
[   54.659623][   T60] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   54.662724][ T5983] veth1_macvtap: entered promiscuous mode
[   54.667216][ T5975] veth0_macvtap: entered promiscuous mode
[   54.670206][   T60] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   54.673392][   T60] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   54.686389][   T60] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   54.691354][ T5975] veth1_macvtap: entered promiscuous mode
[   54.721184][ T5983] batman_adv: batadv0: Interface activated: batadv_slave_0
[   54.732116][ T5975] batman_adv: batadv0: Interface activated: batadv_slave_0
[   54.739735][ T5983] batman_adv: batadv0: Interface activated: batadv_slave_1
[   54.753207][ T5975] batman_adv: batadv0: Interface activated: batadv_slave_1
[   54.765253][   T13] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   54.768854][   T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.771305][   T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   54.778242][   T13] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   54.786245][   T13] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   54.801097][   T13] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   54.807466][   T13] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   54.811072][   T60] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   54.818473][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.819102][   T60] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   54.821245][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   54.824749][   T60] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   54.868318][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.870878][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   54.886464][ T6064] fuse: Unknown parameter 'use00000000000000000000'
[   54.903192][   T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.908782][   T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   54.922849][   T74] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.928504][   T74] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   54.929915][   T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.939864][   T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.389908][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   55.590085][ T6076] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[   55.592228][ T6076] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   55.599913][ T6076] vhci_hcd vhci_hcd.0: Device attached
[   55.615305][ T6080] syz.3.5 uses obsolete (PF_INET,SOCK_PACKET)
[   55.654013][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   55.674109][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   55.697062][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   55.793810][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[   55.799440][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   55.893871][ T6058] usb 40-1: SetAddress Request (2) to port 0
[   55.895927][ T6058] usb 40-1: new SuperSpeed USB device number 2 using vhci_hcd
[   55.901847][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   56.004262][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   56.006996][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   56.009688][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   56.083410][ T5976] Bluetooth: hci1: command tx timeout
[   56.085965][ T5976] Bluetooth: hci2: command tx timeout
[   56.087727][ T5976] Bluetooth: hci3: command tx timeout
[   56.089485][ T5976] Bluetooth: hci0: command tx timeout
[   56.646821][ T6096] netlink: 48 bytes leftover after parsing attributes in process `syz.3.7'.
[   56.863821][ T6077] vhci_hcd: connection reset by peer
[   56.873415][ T1146] vhci_hcd: stop threads
[   56.875451][ T1146] vhci_hcd: release socket
[   56.882414][ T1146] vhci_hcd: disconnect device
[   56.896986][ T6095] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7'.
[   57.613619][ T6101] fuse: Invalid rootmode
[   57.825849][ T6108] netlink: 'syz.0.9': attribute type 10 has an invalid length.
[   57.840009][ T6108] netlink: 40 bytes leftover after parsing attributes in process `syz.0.9'.
[   57.858645][ T6108] dummy0: entered promiscuous mode
[   57.862891][ T6108] bridge0: port 3(dummy0) entered blocking state
[   57.866250][ T6108] bridge0: port 3(dummy0) entered disabled state
[   57.869119][ T6108] dummy0: entered allmulticast mode
[   57.872705][ T6108] bridge0: port 3(dummy0) entered blocking state
[   57.875059][ T6108] bridge0: port 3(dummy0) entered forwarding state
[   57.928745][ T6106] Bluetooth: MGMT ver 1.23
[   58.163917][ T5335] Bluetooth: hci0: command tx timeout
[   58.164118][ T5976] Bluetooth: hci3: command tx timeout
[   58.166111][   T63] Bluetooth: hci2: command tx timeout
[   58.167376][ T5976] Bluetooth: hci1: command tx timeout
[   58.947601][ T6123] netdevsim netdevsim1: Direct firmware load for @ failed with error -2
[   58.950299][ T6123] netdevsim netdevsim1: Falling back to sysfs fallback for: @
[   59.009854][ T6125] fuse: Bad value for 'fd'
[   59.051869][ T6126] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[   59.053957][ T6126] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   59.060606][ T6126] vhci_hcd vhci_hcd.0: Device attached
[   59.443916][   T61] usb 42-1: SetAddress Request (2) to port 0
[   59.445875][   T61] usb 42-1: new SuperSpeed USB device number 2 using vhci_hcd
[   59.968054][ T6127] vhci_hcd: connection reset by peer
[   59.984372][   T93] vhci_hcd: stop threads
[   59.985734][   T93] vhci_hcd: release socket
[   59.994944][   T93] vhci_hcd: disconnect device
[   60.233898][ T5335] Bluetooth: hci1: command tx timeout
[   60.234733][ T5973] Bluetooth: hci0: command tx timeout
[   60.235002][ T5976] Bluetooth: hci2: command tx timeout
[   60.239521][   T63] Bluetooth: hci3: command tx timeout
[   60.433687][ T6138] overlayfs: "xino" feature enabled using 2 upper inode bits.
[   60.969906][ T6153] input: syz1 as /devices/virtual/input/input5
[   61.122358][ T6058] usb 40-1: device descriptor read/8, error -110
[   61.129990][ T6157] binder: 6156:6157 ioctl c0306201 0 returned -14
[   61.160061][ T6163] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   61.235309][ T6164] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   61.244691][ T6163] netlink: 12 bytes leftover after parsing attributes in process `syz.3.21'.
[   61.312049][ T6170] fuse: Bad value for 'user_id'
[   61.323820][ T6170] fuse: Bad value for 'user_id'
[   61.534780][ T6058] usb usb40-port1: attempt power cycle
[   61.547217][ T6172] netlink: 4 bytes leftover after parsing attributes in process `syz.1.22'.
[   61.584343][ T6176] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[   61.586914][ T6176] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   61.606352][ T6176] vhci_hcd vhci_hcd.0: Device attached
[   61.904033][ T4182] usb 38-1: SetAddress Request (2) to port 0
[   61.906027][ T4182] usb 38-1: new SuperSpeed USB device number 2 using vhci_hcd
[   62.120012][ T6058] usb usb40-port1: unable to enumerate USB device
[   62.373388][ T6177] vhci_hcd: connection reset by peer
[   62.376750][   T46] vhci_hcd: stop threads
[   62.378596][   T46] vhci_hcd: release socket
[   62.380552][   T46] vhci_hcd: disconnect device
[   63.179132][ T6211] program syz.0.27 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   63.342122][ T6208] BFS-fs: bfs_fill_super(): No BFS filesystem on nullb0 (magic=00000000)
[   63.347609][ T6208] ubi31: attaching mtd0
[   63.350434][ T6208] ubi31: scanning is finished
[   63.351941][ T6208] ubi31: empty MTD device detected
[   63.452530][ T6208] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[   63.461242][ T6208] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[   63.464401][ T6208] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[   63.467370][ T6208] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[   63.473049][ T6215] input: syz1 as /devices/virtual/input/input6
[   63.477050][ T6208] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[   63.480451][ T6208] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[   63.482978][ T6208] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 4241489360
[   63.486381][ T6208] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[   63.490850][ T6219] ubi31: background thread "ubi_bgt31d" started, PID 6219
[   64.473810][   T61] usb 42-1: device descriptor read/8, error -110
[   64.681959][ T6249] netlink: 4 bytes leftover after parsing attributes in process `syz.1.32'.
[   64.702152][ T6249] netlink: 12 bytes leftover after parsing attributes in process `syz.1.32'.
[   64.926260][   T61] usb usb42-port1: attempt power cycle
[   65.121062][ T6251] netlink: 48 bytes leftover after parsing attributes in process `syz.2.33'.
[   65.260742][ T6253] netlink: 4 bytes leftover after parsing attributes in process `syz.2.33'.
[   65.487847][ T6255] netlink: 48 bytes leftover after parsing attributes in process `syz.2.34'.
[   65.534346][   T61] usb usb42-port1: unable to enumerate USB device
[   65.715925][ T6257] netlink: 4 bytes leftover after parsing attributes in process `syz.2.34'.
[   66.157011][ T6265] netlink: 48 bytes leftover after parsing attributes in process `syz.1.36'.
[   66.328119][ T6270] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   66.331789][ T6270] overlayfs: "xino" feature enabled using 2 upper inode bits.
[   66.347751][ T6267] netlink: 4 bytes leftover after parsing attributes in process `syz.1.36'.
[   66.379328][ T6270] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type
[   66.383100][ T6270] overlayfs: failed to look up (tracing) for ino (-66)
[   66.412780][ T6270] netlink: 292 bytes leftover after parsing attributes in process `syz.0.37'.
[   66.415944][ T6270] netlink: 292 bytes leftover after parsing attributes in process `syz.0.37'.
[   66.954345][ T4182] usb 38-1: device descriptor read/8, error -110
[   67.076383][ T6278] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[   67.078770][ T6278] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   67.086283][ T6278] vhci_hcd vhci_hcd.0: Device attached
[   67.614535][ T4182] usb usb38-port1: attempt power cycle
[   67.804858][ T6288] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[   67.807669][ T6288] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   67.811234][ T6288] vhci_hcd vhci_hcd.0: Device attached
[   68.155796][ T6279] vhci_hcd: connection closed
[   68.157999][   T60] vhci_hcd: stop threads
[   68.162059][   T60] vhci_hcd: release socket
[   68.163827][   T61] usb 42-1: SetAddress Request (6) to port 0
[   68.166021][   T61] usb 42-1: new SuperSpeed USB device number 6 using vhci_hcd
[   68.166083][   T60] vhci_hcd: disconnect device
[   68.183795][   T61] usb 42-1: enqueue for inactive port 0
[   68.354383][ T6289] vhci_hcd: connection closed
[   68.354722][   T74] vhci_hcd: stop threads
[   68.357641][   T74] vhci_hcd: release socket
[   68.359104][   T74] vhci_hcd: disconnect device
[   68.383993][ T6058] usb 44-1: enqueue for inactive port 0
[   68.584282][   T61] usb usb42-port1: attempt power cycle
[   68.594362][ T4182] usb usb38-port1: unable to enumerate USB device
[   68.915275][ T6058] usb usb44-port1: attempt power cycle
[   69.194707][   T61] usb usb42-port1: unable to enumerate USB device
[   69.315672][ T6305] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[   69.318489][ T6305] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   69.322863][ T6305] vhci_hcd vhci_hcd.0: Device attached
[   69.399031][ T6309] program syz.0.44 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   69.560363][ T6058] usb usb44-port1: unable to enumerate USB device
[   69.633984][   T34] usb 42-1: SetAddress Request (10) to port 0
[   69.636061][   T34] usb 42-1: new SuperSpeed USB device number 10 using vhci_hcd
[   70.160604][ T6306] vhci_hcd: connection reset by peer
[   70.164056][   T46] vhci_hcd: stop threads
[   70.165468][   T46] vhci_hcd: release socket
[   70.167152][   T46] vhci_hcd: disconnect device
[   70.880876][ T1419] ieee802154 phy0 wpan0: encryption failed: -22
[   70.883759][ T1419] ieee802154 phy1 wpan1: encryption failed: -22
[   70.975607][ T6323] netlink: 4 bytes leftover after parsing attributes in process `syz.2.46'.
[   72.979393][ T6343] fuse: Bad value for 'rootmode'
[   74.068879][ T6360] Zero length message leads to an empty skb
[   74.166927][ T6364] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null.
[   74.177906][   T40] audit: type=1326 audit(1758956447.984:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6363 comm="syz.3.54" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f78579 code=0x7ffc0000
[   74.186560][   T40] audit: type=1326 audit(1758956447.984:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6363 comm="syz.3.54" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f78579 code=0x7ffc0000
[   74.206827][   T40] audit: type=1326 audit(1758956447.984:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6363 comm="syz.3.54" exe="/syz-executor" sig=0 arch=40000003 syscall=27 compat=1 ip=0xf7f78579 code=0x7ffc0000
[   74.228542][   T40] audit: type=1326 audit(1758956447.984:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6363 comm="syz.3.54" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f78579 code=0x7ffc0000
[   74.239208][   T40] audit: type=1326 audit(1758956448.004:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6363 comm="syz.3.54" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f78579 code=0x7ffc0000
[   74.250530][   T40] audit: type=1326 audit(1758956448.004:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6363 comm="syz.3.54" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f78579 code=0x7ffc0000
[   74.263236][   T40] audit: type=1326 audit(1758956448.004:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6363 comm="syz.3.54" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f78579 code=0x7ffc0000
[   74.271847][   T40] audit: type=1326 audit(1758956448.004:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6363 comm="syz.3.54" exe="/syz-executor" sig=0 arch=40000003 syscall=345 compat=1 ip=0xf7f78579 code=0x7ffc0000
[   74.281397][   T40] audit: type=1326 audit(1758956448.004:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6363 comm="syz.3.54" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f78579 code=0x7ffc0000
[   74.288824][   T40] audit: type=1326 audit(1758956448.004:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6363 comm="syz.3.54" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f78579 code=0x7ffc0000
[   74.382548][ T6366] input: syz1 as /devices/virtual/input/input7
[   74.713876][   T34] usb 42-1: device descriptor read/8, error -110
[   75.135926][   T34] usb usb42-port1: attempt power cycle
[   75.161000][ T6391] kernel profiling enabled (shift: 17)
[   75.180669][ T6391] process 'syz.3.60' launched './file0' with NULL argv: empty string added
[   75.704792][   T34] usb usb42-port1: unable to enumerate USB device
[   75.737453][ T6397] input: syz1 as /devices/virtual/input/input8
[   76.032587][ T6401] fuse: Bad value for 'fd'
[   76.843856][ T6405] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[   76.845943][ T6405] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[   76.848433][ T6405] vhci_hcd vhci_hcd.0: Device attached
[   77.050518][ T6412] netlink: 48 bytes leftover after parsing attributes in process `syz.0.65'.
[   77.263142][ T6420] netlink: 4 bytes leftover after parsing attributes in process `syz.0.65'.
[   77.348762][ T4182] usb 42-1: SetAddress Request (14) to port 0
[   77.351091][ T4182] usb 42-1: new SuperSpeed USB device number 14 using vhci_hcd
[   78.223400][ T6426] netlink: 48 bytes leftover after parsing attributes in process `syz.1.68'.
[   78.442658][ T6430] netlink: 4 bytes leftover after parsing attributes in process `syz.1.68'.
[   78.728314][ T6409] vhci_hcd: connection reset by peer
[   78.734894][   T13] vhci_hcd: stop threads
[   78.736431][   T13] vhci_hcd: release socket
[   78.738383][   T13] vhci_hcd: disconnect device
[   79.525283][ T6447] netlink: 4 bytes leftover after parsing attributes in process `syz.1.70'.
[   80.401621][ T6459] Bluetooth: MGMT ver 1.23
[   80.406490][ T6461] fuse: Unknown parameter 'user_id00000000000000000000'
[   81.153079][ T6472] netlink: 4 bytes leftover after parsing attributes in process `syz.2.76'.
[   81.698084][  T841] cfg80211: failed to load regulatory.db
[   82.393966][ T4182] usb 42-1: device descriptor read/8, error -110
[   82.656103][ T6487] fuse: Unknown parameter '0x0000000000000004'
[   82.889213][ T4182] usb usb42-port1: attempt power cycle
[   83.484626][ T4182] usb usb42-port1: unable to enumerate USB device
[   83.631508][ T6498] netlink: 48 bytes leftover after parsing attributes in process `syz.2.82'.
[   83.906744][ T6505] netlink: 4 bytes leftover after parsing attributes in process `syz.2.82'.
[   83.960991][ T6509] random: crng reseeded on system resumption
[   83.969450][ T6509] Restarting kernel threads ...
[   83.971701][ T6509] Done restarting kernel threads.
[   83.986464][ T6509] qrtr: Invalid version 0
[   84.612495][ T6522] netlink: 'syz.0.88': attribute type 3 has an invalid length.
[   84.765516][ T6527] program syz.3.89 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   84.903983][ T6528] netlink: 4 bytes leftover after parsing attributes in process `syz.2.87'.
[   85.053926][ T4182] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   85.215092][ T6538] fuse: Bad value for 'fd'
[   85.217011][ T4182] usb 8-1: Using ep0 maxpacket: 8
[   85.221499][ T4182] usb 8-1: config index 0 descriptor too short (expected 2304, got 36)
[   85.226500][ T4182] usb 8-1: config 255 has too many interfaces: 33, using maximum allowed: 32
[   85.229424][ T4182] usb 8-1: config 255 has an invalid descriptor of length 179, skipping remainder of the config
[   85.233419][ T4182] usb 8-1: config 255 has 0 interfaces, different from the descriptor's value: 33
[   85.237440][ T4182] usb 8-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[   85.240824][ T4182] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   85.306464][ T6539] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[   85.308592][ T6539] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   85.311617][ T6539] vhci_hcd vhci_hcd.0: Device attached
[   85.394766][ T6540] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4)
[   85.396765][ T6540] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   85.413792][ T6540] vhci_hcd vhci_hcd.0: Device attached
[   85.458371][ T6527] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   85.466530][ T6527] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   85.479146][ T4182] usb 8-1: string descriptor 0 read error: -71
[   85.492905][ T6541] vhci_hcd: connection closed
[   85.493177][   T46] vhci_hcd: stop threads
[   85.496224][   T24] vhci_hcd: vhci_device speed not set
[   85.498051][   T46] vhci_hcd: release socket
[   85.499591][ T4182] usb 8-1: USB disconnect, device number 2
[   85.499741][   T46] vhci_hcd: disconnect device
[   85.563879][   T24] usb 39-1: new full-speed USB device number 2 using vhci_hcd
[   85.566141][   T24] usb 39-1: enqueue for inactive port 0
[   85.605779][ T6277] vhci_hcd: vhci_device speed not set
[   85.633931][   T24] vhci_hcd: vhci_device speed not set
[   85.663832][ T6277] usb 41-1: new full-speed USB device number 2 using vhci_hcd
[   85.742478][ T6544] vhci_hcd: connection reset by peer
[   85.744593][   T60] vhci_hcd: stop threads
[   85.746299][   T60] vhci_hcd: release socket
[   85.748251][   T60] vhci_hcd: disconnect device
[   86.201546][ T6549] fuse: Unknown parameter 'v

Ôd'
[   86.228298][ T6553] input: syz1 as /devices/virtual/input/input9
[   86.393584][ T6569] netlink: 48 bytes leftover after parsing attributes in process `syz.2.98'.
[   86.646854][ T6572] netlink: 4 bytes leftover after parsing attributes in process `syz.2.98'.
[   86.690570][ T6577] netlink: 48 bytes leftover after parsing attributes in process `syz.0.99'.
[   86.940814][ T6581] netlink: 4 bytes leftover after parsing attributes in process `syz.0.99'.
[   87.914687][ T6585] netlink: 48 bytes leftover after parsing attributes in process `syz.2.100'.
[   88.126494][ T6596] netlink: 4 bytes leftover after parsing attributes in process `syz.2.100'.
[   89.155747][ T6610] program syz.1.104 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   89.326354][ T6613] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4)
[   89.329165][ T6613] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   89.333468][ T6613] vhci_hcd vhci_hcd.0: Device attached
[   89.433885][ T6547] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   89.528069][ T6620] fuse: Bad value for 'fd'
[   89.536552][ T6620] netlink: 220 bytes leftover after parsing attributes in process `syz.3.106'.
[   89.539655][ T6620] netlink: 28 bytes leftover after parsing attributes in process `syz.3.106'.
[   89.542339][ T6620] netlink: 28 bytes leftover after parsing attributes in process `syz.3.106'.
[   89.545531][ T6620] netlink: 28 bytes leftover after parsing attributes in process `syz.3.106'.
[   89.548773][ T6620] netlink: 28 bytes leftover after parsing attributes in process `syz.3.106'.
[   89.559090][ T6614] vhci_hcd: connection closed
[   89.561710][ T1146] vhci_hcd: stop threads
[   89.564983][ T1146] vhci_hcd: release socket
[   89.566351][ T1146] vhci_hcd: disconnect device
[   89.583817][ T6547] usb 6-1: Using ep0 maxpacket: 8
[   89.586824][ T6547] usb 6-1: config index 0 descriptor too short (expected 2304, got 36)
[   89.589523][ T6547] usb 6-1: config 255 has too many interfaces: 33, using maximum allowed: 32
[   89.592351][ T6547] usb 6-1: config 255 has an invalid descriptor of length 179, skipping remainder of the config
[   89.596232][ T6547] usb 6-1: config 255 has 0 interfaces, different from the descriptor's value: 33
[   89.599656][ T6547] usb 6-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[   89.602486][ T6547] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   89.693502][ T6627] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   89.696791][ T6627] block device autoloading is deprecated and will be removed.
[   89.700219][ T6625] md: md2 stopped.
[   89.702892][ T6625] FAULT_INJECTION: forcing a failure.
[   89.702892][ T6625] name failslab, interval 1, probability 0, space 0, times 1
[   89.707318][ T6625] CPU: 0 UID: 0 PID: 6625 Comm: syz.0.108 Not tainted syzkaller #0 PREEMPT(full) 
[   89.707334][ T6625] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   89.707340][ T6625] Call Trace:
[   89.707344][ T6625]  <TASK>
[   89.707349][ T6625]  dump_stack_lvl+0x16c/0x1f0
[   89.707369][ T6625]  should_fail_ex+0x512/0x640
[   89.707388][ T6625]  ? fs_reclaim_acquire+0xae/0x150
[   89.707406][ T6625]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[   89.707422][ T6625]  should_failslab+0xc2/0x120
[   89.707438][ T6625]  __kmalloc_noprof+0xd2/0x510
[   89.707454][ T6625]  tomoyo_realpath_from_path+0xc2/0x6e0
[   89.707471][ T6625]  ? tomoyo_profile+0x47/0x60
[   89.707482][ T6625]  tomoyo_path_number_perm+0x245/0x580
[   89.707495][ T6625]  ? tomoyo_path_number_perm+0x237/0x580
[   89.707510][ T6625]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   89.707536][ T6625]  ? find_held_lock+0x2b/0x80
[   89.707547][ T6625]  ? hook_file_ioctl_common+0x145/0x410
[   89.707565][ T6625]  ? __fget_files+0x20e/0x3c0
[   89.707580][ T6625]  security_file_ioctl_compat+0x9b/0x240
[   89.707595][ T6625]  __ia32_compat_sys_ioctl+0xc3/0x370
[   89.707615][ T6625]  __do_fast_syscall_32+0x7c/0x300
[   89.707626][ T6625]  do_fast_syscall_32+0x32/0x80
[   89.707636][ T6625]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   89.707652][ T6625] RIP: 0023:0xf707e579
[   89.707665][ T6625] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   89.707679][ T6625] RSP: 002b:00000000f546e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   89.707697][ T6625] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000004004092b
[   89.707707][ T6625] RDX: 0000000000000003 RSI: 0000000000000000 RDI: 0000000000000000
[   89.707716][ T6625] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   89.707727][ T6625] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   89.707736][ T6625] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   89.707759][ T6625]  </TASK>
[   89.707765][ T6625] ERROR: Out of memory at tomoyo_realpath_from_path.
[   89.821907][ T6610] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   89.835086][ T6610] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   89.847770][ T6547] usb 6-1: string descriptor 0 read error: -71
[   89.861918][ T6547] usb 6-1: USB disconnect, device number 2
[   89.864661][ T6625] md2: using deprecated bitmap file support
[   90.783820][ T6277] vhci_hcd: vhci_device speed not set
[   91.491206][ T6678] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[   91.493854][ T6678] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   91.497373][ T6678] vhci_hcd vhci_hcd.0: Device attached
[   91.636577][ T6684] netdevsim netdevsim2: Direct firmware load for @ failed with error -2
[   91.639278][ T6684] netdevsim netdevsim2: Falling back to sysfs fallback for: @
[   91.674194][   T53] vhci_hcd: vhci_device speed not set
[   91.696950][ T6685] fuse: Bad value for 'fd'
[   91.733851][   T53] usb 43-1: new full-speed USB device number 2 using vhci_hcd
[   91.778640][ T6679] vhci_hcd: connection reset by peer
[   91.781097][ T1146] vhci_hcd: stop threads
[   91.782467][ T1146] vhci_hcd: release socket
[   91.784145][ T1146] vhci_hcd: disconnect device
[   92.017610][ T6690] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   92.017610][ T6690]    program syz.1.120 not setting count and/or reply_len properly
[   92.733018][ T6702] netlink: 8 bytes leftover after parsing attributes in process `syz.0.122'.
[   92.894334][ T6702] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   93.739727][ T6737] FAULT_INJECTION: forcing a failure.
[   93.739727][ T6737] name failslab, interval 1, probability 0, space 0, times 0
[   93.744911][ T6737] CPU: 1 UID: 0 PID: 6737 Comm: syz.0.131 Not tainted syzkaller #0 PREEMPT(full) 
[   93.744928][ T6737] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   93.744934][ T6737] Call Trace:
[   93.744938][ T6737]  <TASK>
[   93.744942][ T6737]  dump_stack_lvl+0x16c/0x1f0
[   93.744964][ T6737]  should_fail_ex+0x512/0x640
[   93.744985][ T6737]  ? fs_reclaim_acquire+0xae/0x150
[   93.745003][ T6737]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[   93.745020][ T6737]  should_failslab+0xc2/0x120
[   93.745035][ T6737]  __kmalloc_noprof+0xd2/0x510
[   93.745051][ T6737]  tomoyo_realpath_from_path+0xc2/0x6e0
[   93.745069][ T6737]  ? tomoyo_profile+0x47/0x60
[   93.745080][ T6737]  tomoyo_path_number_perm+0x245/0x580
[   93.745093][ T6737]  ? tomoyo_path_number_perm+0x237/0x580
[   93.745108][ T6737]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   93.745135][ T6737]  ? find_held_lock+0x2b/0x80
[   93.745146][ T6737]  ? hook_file_ioctl_common+0x145/0x410
[   93.745177][ T6737]  ? __fget_files+0x20e/0x3c0
[   93.745193][ T6737]  security_file_ioctl_compat+0x9b/0x240
[   93.745209][ T6737]  __ia32_compat_sys_ioctl+0xc3/0x370
[   93.745229][ T6737]  __do_fast_syscall_32+0x7c/0x300
[   93.745240][ T6737]  do_fast_syscall_32+0x32/0x80
[   93.745250][ T6737]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   93.745265][ T6737] RIP: 0023:0xf707e579
[   93.745274][ T6737] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   93.745284][ T6737] RSP: 002b:00000000f546e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   93.745299][ T6737] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000004068aea3
[   93.745306][ T6737] RDX: 0000000080000380 RSI: 0000000000000000 RDI: 0000000000000000
[   93.745312][ T6737] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   93.745319][ T6737] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   93.745325][ T6737] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   93.745338][ T6737]  </TASK>
[   93.745354][ T6737] ERROR: Out of memory at tomoyo_realpath_from_path.
[   93.788978][ T6729] fuse: Unknown parameter 'v

Ôd'
[   93.954400][ T6740] openvswitch: netlink: VXLAN extension message has 4 unknown bytes.
[   94.188423][ T6751] netlink: 48 bytes leftover after parsing attributes in process `syz.0.135'.
[   94.254244][ T6752] input: syz1 as /devices/virtual/input/input10
[   94.295386][ T6754] program syz.1.136 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   94.438722][ T6758] netlink: 4 bytes leftover after parsing attributes in process `syz.0.135'.
[   94.603840][   T24] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   94.785985][   T24] usb 6-1: Using ep0 maxpacket: 8
[   94.791229][   T24] usb 6-1: config index 0 descriptor too short (expected 2304, got 36)
[   94.794887][   T24] usb 6-1: config 255 has too many interfaces: 33, using maximum allowed: 32
[   94.798235][   T24] usb 6-1: config 255 has an invalid descriptor of length 179, skipping remainder of the config
[   94.806230][   T24] usb 6-1: config 255 has 0 interfaces, different from the descriptor's value: 33
[   94.830671][   T24] usb 6-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[   94.842914][   T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   95.059022][ T6754] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   95.062008][ T6754] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   95.144403][   T24] usb 6-1: string descriptor 0 read error: -71
[   95.147114][   T24] usb 6-1: USB disconnect, device number 3
[   95.437594][ T6767] input: syz1 as /devices/virtual/input/input11
[   95.784580][ T6765] input: syz1 as /devices/virtual/input/input12
[   96.864728][   T53] vhci_hcd: vhci_device speed not set
[   97.244151][ T6795] netlink: 'syz.0.146': attribute type 5 has an invalid length.
[   97.247553][ T6795] netlink: 4 bytes leftover after parsing attributes in process `syz.0.146'.
[   97.622405][ T6803] netlink: 48 bytes leftover after parsing attributes in process `syz.0.147'.
[   98.035841][ T6804] netlink: 4 bytes leftover after parsing attributes in process `syz.0.147'.
[   98.568869][ T6812] sch_tbf: burst 32855 is lower than device lo mtu (65550) !
[   99.099297][ T6823] FAULT_INJECTION: forcing a failure.
[   99.099297][ T6823] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   99.143815][ T6823] CPU: 1 UID: 0 PID: 6823 Comm: syz.2.152 Not tainted syzkaller #0 PREEMPT(full) 
[   99.143841][ T6823] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   99.143851][ T6823] Call Trace:
[   99.143857][ T6823]  <TASK>
[   99.143863][ T6823]  dump_stack_lvl+0x16c/0x1f0
[   99.143893][ T6823]  should_fail_ex+0x512/0x640
[   99.143923][ T6823]  _copy_from_user+0x2e/0xd0
[   99.143945][ T6823]  copy_from_sockptr_offset.constprop.0+0x136/0x170
[   99.143968][ T6823]  ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10
[   99.143995][ T6823]  sk_setsockopt+0x162/0x3af0
[   99.144009][ T6823]  ? __pfx___might_resched+0x10/0x10
[   99.144026][ T6823]  ? __pfx_sk_setsockopt+0x10/0x10
[   99.144039][ T6823]  ? aa_sk_perm+0x2f4/0xb10
[   99.144057][ T6823]  ? __pfx_bpf_send_signal_common+0x10/0x10
[   99.144077][ T6823]  ? __pfx_aa_sk_perm+0x10/0x10
[   99.144097][ T6823]  ? find_held_lock+0x2b/0x80
[   99.144113][ T6823]  ? aa_sock_opt_perm+0xfd/0x1c0
[   99.144131][ T6823]  do_sock_setsockopt+0x193/0x1d0
[   99.144148][ T6823]  __sys_setsockopt+0x120/0x1a0
[   99.144171][ T6823]  __ia32_sys_setsockopt+0xbc/0x160
[   99.144190][ T6823]  ? syscall_trace_enter+0xee/0x240
[   99.144212][ T6823]  __do_fast_syscall_32+0x7c/0x300
[   99.144237][ T6823]  do_fast_syscall_32+0x32/0x80
[   99.144253][ T6823]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   99.144272][ T6823] RIP: 0023:0xf7f66579
[   99.144286][ T6823] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   99.144300][ T6823] RSP: 002b:00000000f545655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[   99.144315][ T6823] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000001
[   99.144326][ T6823] RDX: 0000000000000024 RSI: 0000000080000000 RDI: 0000000000000004
[   99.144336][ T6823] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   99.144344][ T6823] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   99.144351][ T6823] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   99.144370][ T6823]  </TASK>
[   99.423115][ T6833] warning: `syz.1.153' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   99.826030][ T6838] netdevsim netdevsim3: Direct firmware load for @ failed with error -2
[   99.829014][ T6838] netdevsim netdevsim3: Falling back to sysfs fallback for: @
[  100.000665][ T6842] fuse: Bad value for 'fd'
[  100.038494][ T6762] syz.3.137 (6762) used greatest stack depth: 19816 bytes left
[  101.099879][ T6859] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  101.101940][ T6859] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  101.188429][ T6859] vhci_hcd vhci_hcd.0: Device attached
[  101.567473][ T6293] usb 44-1: SetAddress Request (6) to port 0
[  101.573975][ T6293] usb 44-1: new SuperSpeed USB device number 6 using vhci_hcd
[  101.596620][ T6872] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  101.689136][ T6860] vhci_hcd: connection reset by peer
[  101.712301][   T12] vhci_hcd: stop threads
[  101.713795][   T12] vhci_hcd: release socket
[  101.716113][ T6874] netdevsim netdevsim2: Direct firmware load for @ failed with error -2
[  101.718243][   T12] vhci_hcd: disconnect device
[  101.721126][ T6874] netdevsim netdevsim2: Falling back to sysfs fallback for: @
[  101.784279][ T6877] fuse: Bad value for 'fd'
[  102.194123][ T6890] input: syz1 as /devices/virtual/input/input13
[  102.534364][   T24] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  102.544259][ T6903] input: syz1 as /devices/virtual/input/input14
[  102.555917][ T6907] netlink: 12 bytes leftover after parsing attributes in process `syz.3.175'.
[  102.683828][   T24] usb 6-1: Using ep0 maxpacket: 8
[  102.688104][   T24] usb 6-1: config index 0 descriptor too short (expected 2304, got 36)
[  102.690815][   T24] usb 6-1: config 255 has too many interfaces: 33, using maximum allowed: 32
[  102.696268][   T24] usb 6-1: config 255 has an invalid descriptor of length 179, skipping remainder of the config
[  102.699943][   T24] usb 6-1: config 255 has 0 interfaces, different from the descriptor's value: 33
[  102.703328][   T24] usb 6-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  102.707179][   T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  102.931355][ T6897] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  102.942323][ T6897] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  102.961259][   T24] usb 6-1: string descriptor 0 read error: -71
[  102.965818][   T24] usb 6-1: USB disconnect, device number 4
[  103.503062][ T6922] FAULT_INJECTION: forcing a failure.
[  103.503062][ T6922] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  103.508808][ T6922] CPU: 2 UID: 0 PID: 6922 Comm: syz.0.178 Not tainted syzkaller #0 PREEMPT(full) 
[  103.508830][ T6922] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  103.508840][ T6922] Call Trace:
[  103.508846][ T6922]  <TASK>
[  103.508852][ T6922]  dump_stack_lvl+0x16c/0x1f0
[  103.508881][ T6922]  should_fail_ex+0x512/0x640
[  103.508910][ T6922]  _copy_to_user+0x32/0xd0
[  103.508931][ T6922]  simple_read_from_buffer+0xcb/0x170
[  103.508950][ T6922]  proc_fail_nth_read+0x197/0x240
[  103.508969][ T6922]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  103.508989][ T6922]  ? rw_verify_area+0xcf/0x6c0
[  103.509005][ T6922]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  103.509024][ T6922]  vfs_read+0x1e1/0xcf0
[  103.509047][ T6922]  ? __pfx_vfs_read+0x10/0x10
[  103.509064][ T6922]  ? find_held_lock+0x2b/0x80
[  103.509087][ T6922]  ? __fget_files+0x20e/0x3c0
[  103.509112][ T6922]  ksys_read+0x12a/0x250
[  103.509131][ T6922]  ? __pfx_ksys_read+0x10/0x10
[  103.509167][ T6922]  ? rcu_is_watching+0x12/0xc0
[  103.509190][ T6922]  __do_fast_syscall_32+0x7c/0x300
[  103.509207][ T6922]  do_fast_syscall_32+0x32/0x80
[  103.509223][ T6922]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  103.509243][ T6922] RIP: 0023:0xf707e579
[  103.509256][ T6922] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  103.509285][ T6922] RSP: 002b:00000000f544d590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  103.509301][ T6922] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00000000f544d620
[  103.509311][ T6922] RDX: 000000000000000f RSI: 00000000f7415ff4 RDI: 0000000000000000
[  103.509322][ T6922] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  103.509331][ T6922] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  103.509340][ T6922] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  103.509362][ T6922]  </TASK>
[  103.577379][    C2] vkms_vblank_simulate: vblank timer overrun
[  103.708234][ T6925] input: syz1 as /devices/virtual/input/input15
[  103.932565][ T6940] netdevsim netdevsim1: Direct firmware load for @ failed with error -2
[  103.943792][ T6940] netdevsim netdevsim1: Falling back to sysfs fallback for: @
[  104.053821][ T6947] fuse: Bad value for 'fd'
[  104.118762][ T6949] input: syz1 as /devices/virtual/input/input16
[  104.820232][ T6957] FAULT_INJECTION: forcing a failure.
[  104.820232][ T6957] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  104.825752][ T6957] CPU: 2 UID: 0 PID: 6957 Comm: syz.3.187 Not tainted syzkaller #0 PREEMPT(full) 
[  104.825775][ T6957] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  104.825786][ T6957] Call Trace:
[  104.825792][ T6957]  <TASK>
[  104.825799][ T6957]  dump_stack_lvl+0x16c/0x1f0
[  104.825829][ T6957]  should_fail_ex+0x512/0x640
[  104.825861][ T6957]  _copy_from_user+0x2e/0xd0
[  104.825882][ T6957]  copy_from_sockptr_offset+0x15c/0x1b0
[  104.825902][ T6957]  ? __pfx_copy_from_sockptr_offset+0x10/0x10
[  104.825927][ T6957]  ? find_held_lock+0x2b/0x80
[  104.825950][ T6957]  do_tcp_getsockopt+0x161/0x25d0
[  104.825972][ T6957]  ? __lock_acquire+0x62e/0x1ce0
[  104.825998][ T6957]  ? __pfx_do_tcp_getsockopt+0x10/0x10
[  104.826032][ T6957]  ? __lock_acquire+0xb97/0x1ce0
[  104.826052][ T6957]  ? _parse_integer_limit+0x17f/0x1d0
[  104.826079][ T6957]  ? aa_label_sk_perm+0x195/0x600
[  104.826100][ T6957]  ? _kstrtoull+0x145/0x200
[  104.826122][ T6957]  ? __pfx__kstrtoull+0x10/0x10
[  104.826147][ T6957]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  104.826174][ T6957]  ? __lock_acquire+0x62e/0x1ce0
[  104.826210][ T6957]  ? __pfx___might_resched+0x10/0x10
[  104.826228][ T6957]  ? get_pid_task+0xfc/0x250
[  104.826254][ T6957]  ? aa_sk_perm+0x2f4/0xb10
[  104.826279][ T6957]  ? __pfx_aa_sk_perm+0x10/0x10
[  104.826301][ T6957]  ? __lock_acquire+0x62e/0x1ce0
[  104.826329][ T6957]  tcp_getsockopt+0xdf/0x100
[  104.826356][ T6957]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  104.826376][ T6957]  do_sock_getsockopt+0x34a/0x440
[  104.826396][ T6957]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  104.826414][ T6957]  ? __fget_files+0x204/0x3c0
[  104.826446][ T6957]  __sys_getsockopt+0x123/0x1b0
[  104.826476][ T6957]  __ia32_sys_getsockopt+0xbc/0x160
[  104.826521][ T6957]  ? lockdep_hardirqs_on+0x7c/0x110
[  104.826547][ T6957]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  104.826573][ T6957]  __do_fast_syscall_32+0x7c/0x300
[  104.826592][ T6957]  do_fast_syscall_32+0x32/0x80
[  104.826608][ T6957]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  104.826629][ T6957] RIP: 0023:0xf7f78579
[  104.826643][ T6957] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  104.826659][ T6957] RSP: 002b:00000000f546655c EFLAGS: 00000296 ORIG_RAX: 000000000000016d
[  104.826676][ T6957] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000006
[  104.826687][ T6957] RDX: 0000000000000023 RSI: 0000000080000040 RDI: 0000000080000240
[  104.826698][ T6957] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  104.826708][ T6957] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  104.826718][ T6957] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  104.826740][ T6957]  </TASK>
[  104.933748][    C2] vkms_vblank_simulate: vblank timer overrun
[  105.423900][ T6277] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  105.774133][ T6277] usb 8-1: Using ep0 maxpacket: 8
[  105.777452][ T6277] usb 8-1: config index 0 descriptor too short (expected 2304, got 36)
[  105.780188][ T6277] usb 8-1: config 255 has too many interfaces: 33, using maximum allowed: 32
[  105.782966][ T6277] usb 8-1: config 255 has an invalid descriptor of length 179, skipping remainder of the config
[  105.803843][ T6277] usb 8-1: config 255 has 0 interfaces, different from the descriptor's value: 33
[  105.806906][ T6277] usb 8-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  105.809757][ T6277] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  106.027559][ T6963] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  106.031302][ T6963] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  106.042973][ T6277] usb 8-1: string descriptor 0 read error: -71
[  106.054430][ T6277] usb 8-1: USB disconnect, device number 3
[  106.387827][ T6982] input: syz1 as /devices/virtual/input/input17
[  106.603691][ T6992] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  106.608621][ T6992] batadv_slave_0: entered promiscuous mode
[  106.633885][ T6293] usb 44-1: device descriptor read/8, error -110
[  106.657723][ T6991] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  106.659827][ T6991] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  106.662251][ T6991] vhci_hcd vhci_hcd.0: Device attached
[  106.933942][  T840] vhci_hcd: vhci_device speed not set
[  106.975652][ T6994] vhci_hcd: connection closed
[  106.976515][   T93] vhci_hcd: stop threads
[  106.980794][   T93] vhci_hcd: release socket
[  106.982348][   T93] vhci_hcd: disconnect device
[  106.986919][ T7001] netdevsim netdevsim3: Direct firmware load for @ failed with error -2
[  106.990273][ T7001] netdevsim netdevsim3: Falling back to sysfs fallback for: @
[  106.993814][  T840] usb 41-1: new full-speed USB device number 3 using vhci_hcd
[  106.996740][  T840] usb 41-1: enqueue for inactive port 0
[  107.059921][ T6293] usb usb44-port1: attempt power cycle
[  107.063914][  T840] vhci_hcd: vhci_device speed not set
[  107.077785][ T7004] fuse: Bad value for 'fd'
[  107.320690][ T7007] FAULT_INJECTION: forcing a failure.
[  107.320690][ T7007] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  107.325812][ T7007] CPU: 2 UID: 0 PID: 7007 Comm: syz.0.200 Not tainted syzkaller #0 PREEMPT(full) 
[  107.325827][ T7007] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  107.325834][ T7007] Call Trace:
[  107.325838][ T7007]  <TASK>
[  107.325842][ T7007]  dump_stack_lvl+0x16c/0x1f0
[  107.325863][ T7007]  should_fail_ex+0x512/0x640
[  107.325883][ T7007]  _copy_from_user+0x2e/0xd0
[  107.325895][ T7007]  get_compat_msghdr+0xa7/0x170
[  107.325912][ T7007]  ? __pfx_get_compat_msghdr+0x10/0x10
[  107.325934][ T7007]  ___sys_sendmsg+0x1ae/0x1d0
[  107.325952][ T7007]  ? __pfx____sys_sendmsg+0x10/0x10
[  107.325974][ T7007]  ? find_held_lock+0x2b/0x80
[  107.325994][ T7007]  __sys_sendmsg+0x16d/0x220
[  107.326011][ T7007]  ? __pfx___sys_sendmsg+0x10/0x10
[  107.326033][ T7007]  ? rcu_is_watching+0x12/0xc0
[  107.326047][ T7007]  __do_fast_syscall_32+0x7c/0x300
[  107.326059][ T7007]  do_fast_syscall_32+0x32/0x80
[  107.326069][ T7007]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  107.326084][ T7007] RIP: 0023:0xf707e579
[  107.326093][ T7007] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  107.326103][ T7007] RSP: 002b:00000000f546e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  107.326114][ T7007] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000400
[  107.326120][ T7007] RDX: 0000000000044001 RSI: 0000000000000000 RDI: 0000000000000000
[  107.326127][ T7007] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  107.326133][ T7007] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  107.326139][ T7007] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  107.326152][ T7007]  </TASK>
[  107.813151][ T6293] usb usb44-port1: unable to enumerate USB device
[  107.887372][ T7018] input: syz1 as /devices/virtual/input/input18
[  107.946566][ T7023] program syz.2.206 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  108.183936][ T6277] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  108.344472][ T6277] usb 7-1: Using ep0 maxpacket: 8
[  108.348358][ T6277] usb 7-1: config index 0 descriptor too short (expected 2304, got 36)
[  108.351313][ T6277] usb 7-1: config 255 has too many interfaces: 33, using maximum allowed: 32
[  108.355201][ T6277] usb 7-1: config 255 has an invalid descriptor of length 179, skipping remainder of the config
[  108.358984][ T6277] usb 7-1: config 255 has 0 interfaces, different from the descriptor's value: 33
[  108.362647][ T6277] usb 7-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  108.366185][ T6277] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  108.448123][ T7027] capability: warning: `syz.0.207' uses deprecated v2 capabilities in a way that may be insecure
[  108.577931][ T7023] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  108.581706][ T7023] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  108.592970][ T6277] usb 7-1: string descriptor 0 read error: -71
[  108.595654][ T6277] usb 7-1: USB disconnect, device number 2
[  108.820862][ T7031] FAULT_INJECTION: forcing a failure.
[  108.820862][ T7031] name failslab, interval 1, probability 0, space 0, times 0
[  108.827591][ T7031] CPU: 3 UID: 0 PID: 7031 Comm: syz.1.208 Not tainted syzkaller #0 PREEMPT(full) 
[  108.827615][ T7031] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  108.827626][ T7031] Call Trace:
[  108.827632][ T7031]  <TASK>
[  108.827640][ T7031]  dump_stack_lvl+0x16c/0x1f0
[  108.827670][ T7031]  should_fail_ex+0x512/0x640
[  108.827696][ T7031]  ? __kvmalloc_node_noprof+0x124/0x620
[  108.827720][ T7031]  should_failslab+0xc2/0x120
[  108.827743][ T7031]  __kvmalloc_node_noprof+0x137/0x620
[  108.827762][ T7031]  ? unwind_next_frame+0x3f4/0x20a0
[  108.827780][ T7031]  ? rcu_is_watching+0x12/0xc0
[  108.827797][ T7031]  ? fuse_readdir_uncached+0x20c/0x1be0
[  108.827823][ T7031]  ? fuse_readdir_uncached+0x20c/0x1be0
[  108.827841][ T7031]  fuse_readdir_uncached+0x20c/0x1be0
[  108.827863][ T7031]  ? unwind_next_frame+0x3f4/0x20a0
[  108.827883][ T7031]  ? __kasan_check_byte+0x13/0x50
[  108.827905][ T7031]  ? is_bpf_text_address+0x8a/0x1a0
[  108.827926][ T7031]  ? rcu_is_watching+0x12/0xc0
[  108.827945][ T7031]  ? __pfx_fuse_readdir_uncached+0x10/0x10
[  108.827966][ T7031]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  108.827987][ T7031]  ? is_bpf_text_address+0x94/0x1a0
[  108.828009][ T7031]  ? kernel_text_address+0x8d/0x100
[  108.828026][ T7031]  ? __kernel_text_address+0xd/0x40
[  108.828041][ T7031]  ? unwind_get_return_address+0x59/0xa0
[  108.828059][ T7031]  ? arch_stack_walk+0xa6/0x100
[  108.828088][ T7031]  ? stack_trace_save+0x8e/0xc0
[  108.828108][ T7031]  ? __pfx_stack_trace_save+0x10/0x10
[  108.828130][ T7031]  ? check_path.constprop.0+0x24/0x50
[  108.828158][ T7031]  ? save_trace+0x4e/0x380
[  108.828177][ T7031]  ? add_lock_to_list+0x9d/0x130
[  108.828216][ T7031]  ? find_held_lock+0x2b/0x80
[  108.828233][ T7031]  ? fuse_readdir+0x9e1/0x1d90
[  108.828257][ T7031]  fuse_readdir+0x9f5/0x1d90
[  108.828278][ T7031]  ? down_read_killable+0x220/0x4b0
[  108.828296][ T7031]  ? find_held_lock+0x2b/0x80
[  108.828313][ T7031]  ? __pfx_down_read_killable+0x10/0x10
[  108.828332][ T7031]  ? common_file_perm+0x1a9/0x340
[  108.828360][ T7031]  iterate_dir+0x293/0xaf0
[  108.828382][ T7031]  __ia32_sys_getdents64+0x13b/0x2c0
[  108.828403][ T7031]  ? __pfx___ia32_sys_getdents64+0x10/0x10
[  108.828422][ T7031]  ? __pfx_filldir64+0x10/0x10
[  108.828443][ T7031]  ? rcu_is_watching+0x12/0xc0
[  108.828464][ T7031]  __do_fast_syscall_32+0x7c/0x300
[  108.828483][ T7031]  do_fast_syscall_32+0x32/0x80
[  108.828500][ T7031]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  108.828521][ T7031] RIP: 0023:0xf70ee579
[  108.828536][ T7031] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  108.828552][ T7031] RSP: 002b:00000000f54bd55c EFLAGS: 00000296 ORIG_RAX: 00000000000000dc
[  108.828569][ T7031] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800001c0
[  108.828579][ T7031] RDX: 0000000000000086 RSI: 0000000000000000 RDI: 0000000000000000
[  108.828590][ T7031] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  108.828599][ T7031] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  108.828610][ T7031] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  108.828634][ T7031]  </TASK>
[  108.959785][ T5335] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  109.458379][ T7042] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  109.460461][ T7042] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  109.463569][ T7042] vhci_hcd vhci_hcd.0: Device attached
[  109.597101][ T7049] netlink: 48 bytes leftover after parsing attributes in process `syz.1.212'.
[  109.633978][ T6547] vhci_hcd: vhci_device speed not set
[  109.693882][ T6547] usb 37-1: new full-speed USB device number 2 using vhci_hcd
[  109.761214][ T7044] vhci_hcd: connection reset by peer
[  109.792507][ T7054] netlink: 4 bytes leftover after parsing attributes in process `syz.1.212'.
[  109.797663][   T93] vhci_hcd: stop threads
[  109.799088][   T93] vhci_hcd: release socket
[  109.802725][   T93] vhci_hcd: disconnect device
[  110.041236][ T7059] netdevsim netdevsim3: Direct firmware load for @ failed with error -2
[  110.046437][ T7059] netdevsim netdevsim3: Falling back to sysfs fallback for: @
[  110.130542][ T7060] fuse: Bad value for 'fd'
[  110.300130][ T7062] FAULT_INJECTION: forcing a failure.
[  110.300130][ T7062] name failslab, interval 1, probability 0, space 0, times 0
[  110.304593][ T7062] CPU: 2 UID: 0 PID: 7062 Comm: syz.2.214 Not tainted syzkaller #0 PREEMPT(full) 
[  110.304607][ T7062] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  110.304614][ T7062] Call Trace:
[  110.304618][ T7062]  <TASK>
[  110.304622][ T7062]  dump_stack_lvl+0x16c/0x1f0
[  110.304644][ T7062]  should_fail_ex+0x512/0x640
[  110.304661][ T7062]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  110.304676][ T7062]  should_failslab+0xc2/0x120
[  110.304691][ T7062]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  110.304704][ T7062]  ? getname_flags.part.0+0x4c/0x550
[  110.304722][ T7062]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  110.304741][ T7062]  getname_flags.part.0+0x4c/0x550
[  110.304757][ T7062]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  110.304776][ T7062]  getname_flags+0x93/0xf0
[  110.304788][ T7062]  user_path_at+0x24/0x60
[  110.304800][ T7062]  do_faccessat+0x139/0xba0
[  110.304815][ T7062]  ? __pfx_do_faccessat+0x10/0x10
[  110.304829][ T7062]  ? __pfx_ksys_write+0x10/0x10
[  110.304844][ T7062]  __ia32_sys_faccessat2+0x95/0x100
[  110.304859][ T7062]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  110.304883][ T7062]  __do_fast_syscall_32+0x7c/0x300
[  110.304896][ T7062]  do_fast_syscall_32+0x32/0x80
[  110.304906][ T7062]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  110.304920][ T7062] RIP: 0023:0xf7f66579
[  110.304929][ T7062] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  110.304939][ T7062] RSP: 002b:00000000f545655c EFLAGS: 00000296 ORIG_RAX: 00000000000001b7
[  110.304950][ T7062] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000280
[  110.304956][ T7062] RDX: 0000000000000003 RSI: 0000000000000300 RDI: 0000000000000000
[  110.304963][ T7062] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  110.304969][ T7062] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  110.304975][ T7062] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  110.304987][ T7062]  </TASK>
[  110.555402][ T7073] program syz.1.218 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  110.933924][  T840] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  111.067945][ T7085] netlink: zone id is out of range
[  111.070552][ T7085] netlink: del zone limit has 4 unknown bytes
[  111.083810][  T840] usb 6-1: Using ep0 maxpacket: 8
[  111.087458][  T840] usb 6-1: config index 0 descriptor too short (expected 2304, got 36)
[  111.091018][  T840] usb 6-1: config 255 has too many interfaces: 33, using maximum allowed: 32
[  111.095080][  T840] usb 6-1: config 255 has an invalid descriptor of length 179, skipping remainder of the config
[  111.100256][  T840] usb 6-1: config 255 has 0 interfaces, different from the descriptor's value: 33
[  111.105787][  T840] usb 6-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  111.109538][  T840] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  111.318837][ T7073] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  111.322307][ T7073] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  111.333945][  T840] usb 6-1: string descriptor 0 read error: -71
[  111.343020][  T840] usb 6-1: USB disconnect, device number 5
[  111.880330][ T7096] netlink: 48 bytes leftover after parsing attributes in process `syz.2.225'.
[  112.062219][ T7097] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  112.064249][ T7097] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  112.113019][ T7097] vhci_hcd vhci_hcd.0: Device attached
[  112.137304][ T7107] netlink: 4 bytes leftover after parsing attributes in process `syz.2.225'.
[  112.140533][ T7106] usb usb5: usbfs: process 7106 (syz.1.224) did not claim interface 0 before use
[  112.304067][  T840] vhci_hcd: vhci_device speed not set
[  112.374748][  T840] usb 43-1: new full-speed USB device number 3 using vhci_hcd
[  113.031553][ T7121] NILFS (nbd1): device size too small
[  113.066899][ T7122] netdevsim netdevsim2: Direct firmware load for @ failed with error -2
[  113.069801][ T7122] netdevsim netdevsim2: Falling back to sysfs fallback for: @
[  113.098797][ T7102] vhci_hcd: connection reset by peer
[  113.100598][ T1152] vhci_hcd: stop threads
[  113.101903][ T1152] vhci_hcd: release socket
[  113.103575][ T1152] vhci_hcd: disconnect device
[  113.233526][ T7126] fuse: Bad value for 'fd'
[  113.416008][ T7125] input: syz1 as /devices/virtual/input/input19
[  113.877372][ T7138] program syz.2.233 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  113.904305][ T7140] usb usb5: usbfs: process 7140 (syz.1.230) did not claim interface 0 before use
[  113.966627][ T7136] netlink: 'syz.3.232': attribute type 10 has an invalid length.
[  113.969433][ T7136] netlink: 40 bytes leftover after parsing attributes in process `syz.3.232'.
[  113.972855][ T7136] dummy0: entered promiscuous mode
[  113.984290][ T7136] bridge0: port 3(dummy0) entered blocking state
[  113.986360][ T7136] bridge0: port 3(dummy0) entered disabled state
[  113.994138][ T7136] dummy0: entered allmulticast mode
[  114.004860][ T7136] bridge0: port 3(dummy0) entered blocking state
[  114.007101][ T7136] bridge0: port 3(dummy0) entered forwarding state
[  114.134158][ T6058] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  114.376037][ T6058] usb 7-1: Using ep0 maxpacket: 8
[  114.383103][ T6058] usb 7-1: config index 0 descriptor too short (expected 2304, got 36)
[  114.385790][ T6058] usb 7-1: config 255 has too many interfaces: 33, using maximum allowed: 32
[  114.388329][ T6058] usb 7-1: config 255 has an invalid descriptor of length 179, skipping remainder of the config
[  114.391284][ T6058] usb 7-1: config 255 has 0 interfaces, different from the descriptor's value: 33
[  114.403806][ T6058] usb 7-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  114.406615][ T6058] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  114.623925][ T7138] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  114.634240][ T7138] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  114.681359][ T7152] netlink: 48 bytes leftover after parsing attributes in process `syz.0.235'.
[  114.696426][ T6058] usb 7-1: string descriptor 0 read error: -71
[  114.709497][ T6058] usb 7-1: USB disconnect, device number 3
[  114.784881][ T6547] vhci_hcd: vhci_device speed not set
[  114.896413][ T7157] netlink: 4 bytes leftover after parsing attributes in process `syz.0.235'.
[  115.654127][ T7174] FAULT_INJECTION: forcing a failure.
[  115.654127][ T7174] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  115.661042][ T7174] CPU: 3 UID: 0 PID: 7174 Comm: syz.2.237 Not tainted syzkaller #0 PREEMPT(full) 
[  115.661066][ T7174] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  115.661076][ T7174] Call Trace:
[  115.661082][ T7174]  <TASK>
[  115.661089][ T7174]  dump_stack_lvl+0x16c/0x1f0
[  115.661121][ T7174]  should_fail_ex+0x512/0x640
[  115.661152][ T7174]  _copy_to_user+0x32/0xd0
[  115.661173][ T7174]  simple_read_from_buffer+0xcb/0x170
[  115.661194][ T7174]  proc_fail_nth_read+0x197/0x240
[  115.661214][ T7174]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  115.661234][ T7174]  ? rw_verify_area+0xcf/0x6c0
[  115.661252][ T7174]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  115.661270][ T7174]  vfs_read+0x1e1/0xcf0
[  115.661295][ T7174]  ? __pfx_vfs_read+0x10/0x10
[  115.661313][ T7174]  ? find_held_lock+0x2b/0x80
[  115.661337][ T7174]  ? __fget_files+0x20e/0x3c0
[  115.661355][ T7174]  ? handle_mm_fault+0x1b0/0xd10
[  115.661381][ T7174]  ksys_read+0x12a/0x250
[  115.661400][ T7174]  ? __pfx_ksys_read+0x10/0x10
[  115.661422][ T7174]  ? rcu_is_watching+0x12/0xc0
[  115.661444][ T7174]  __do_fast_syscall_32+0x7c/0x300
[  115.661464][ T7174]  do_fast_syscall_32+0x32/0x80
[  115.661481][ T7174]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  115.661503][ T7174] RIP: 0023:0xf7f66579
[  115.661517][ T7174] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  115.661533][ T7174] RSP: 002b:00000000f5456590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  115.661549][ T7174] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f5456620
[  115.661560][ T7174] RDX: 000000000000000f RSI: 00000000f73f5ff4 RDI: 0000000000000000
[  115.661570][ T7174] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  115.661580][ T7174] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  115.661590][ T7174] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  115.661614][ T7174]  </TASK>
[  115.674671][ T7168] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  115.769380][ T7172] input: syz1 as /devices/virtual/input/input20
[  115.865516][ T7168] batadv_slave_0: entered promiscuous mode
[  115.959640][ T7184] FAULT_INJECTION: forcing a failure.
[  115.959640][ T7184] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  115.960209][ T7184] 
[  115.960213][ T7184] ======================================================
[  115.960217][ T7184] WARNING: possible circular locking dependency detected
[  115.960221][ T7184] syzkaller #0 Not tainted
[  115.960226][ T7184] ------------------------------------------------------
[  115.960230][ T7184] syz.2.239/7184 is trying to acquire lock:
[  115.960235][ T7184] ffffffff8e4cea40 (console_owner){-...}-{0:0}, at: console_lock_spinning_enable+0x9f/0xd0
[  115.960268][ T7184] 
[  115.960268][ T7184] but task is already holding lock:
[  115.960271][ T7184] ffff88802b23a458 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130
[  115.960293][ T7184] 
[  115.960293][ T7184] which lock already depends on the new lock.
[  115.960293][ T7184] 
[  115.960296][ T7184] 
[  115.960296][ T7184] the existing dependency chain (in reverse order) is:
[  115.960299][ T7184] 
[  115.960299][ T7184] -> #4 (&rq->__lock){-.-.}-{2:2}:
[  115.960312][ T7184]        _raw_spin_lock_nested+0x31/0x40
[  115.960326][ T7184]        raw_spin_rq_lock_nested+0x29/0x130
[  115.960336][ T7184]        task_rq_lock+0xcf/0x490
[  115.960345][ T7184]        cgroup_move_task+0x81/0x2a0
[  115.960356][ T7184]        css_set_move_task+0x288/0x5f0
[  115.960369][ T7184]        cgroup_post_fork+0x201/0x9e0
[  115.960377][ T7184]        copy_process+0x5cfa/0x7690
[  115.960391][ T7184]        kernel_clone+0xfc/0x930
[  115.960403][ T7184]        user_mode_thread+0xc7/0x110
[  115.960415][ T7184]        rest_init+0x23/0x2b0
[  115.960426][ T7184]        start_kernel+0x3ee/0x4d0
[  115.960439][ T7184]        x86_64_start_reservations+0x18/0x30
[  115.960452][ T7184]        x86_64_start_kernel+0x130/0x190
[  115.960465][ T7184]        common_startup_64+0x13e/0x148
[  115.960476][ T7184] 
[  115.960476][ T7184] -> #3 (&p->pi_lock){-.-.}-{2:2}:
[  115.960489][ T7184]        _raw_spin_lock_irqsave+0x3a/0x60
[  115.960502][ T7184]        try_to_wake_up+0xb7/0x1870
[  115.960511][ T7184]        __wake_up_common+0x135/0x1f0
[  115.960524][ T7184]        __wake_up+0x31/0x60
[  115.960534][ T7184]        tty_port_default_wakeup+0x2a/0x40
[  115.960544][ T7184]        serial8250_tx_chars+0x68e/0x860
[  115.960553][ T7184]        serial8250_handle_irq+0x761/0xcb0
[  115.960563][ T7184]        serial8250_default_handle_irq+0x9a/0x250
[  115.960574][ T7184]        serial8250_interrupt+0xf5/0x1b0
[  115.960585][ T7184]        __handle_irq_event_percpu+0x229/0x7d0
[  115.960595][ T7184]        handle_irq_event+0xab/0x1e0
[  115.960604][ T7184]        handle_edge_irq+0x3ca/0x9e0
[  115.960613][ T7184]        __common_interrupt+0xcd/0x2f0
[  115.960626][ T7184]        common_interrupt+0xba/0xe0
[  115.960637][ T7184]        asm_common_interrupt+0x26/0x40
[  115.960647][ T7184]        pv_native_safe_halt+0xf/0x20
[  115.960662][ T7184]        default_idle+0x13/0x20
[  115.960670][ T7184]        default_idle_call+0x6d/0xb0
[  115.960680][ T7184]        do_idle+0x391/0x510
[  115.960689][ T7184]        cpu_startup_entry+0x4f/0x60
[  115.960698][ T7184]        start_secondary+0x21d/0x2b0
[  115.960712][ T7184]        common_startup_64+0x13e/0x148
[  115.960723][ T7184] 
[  115.960723][ T7184] -> #2 (&tty->write_wait){-.-.}-{3:3}:
[  115.960735][ T7184]        _raw_spin_lock_irqsave+0x3a/0x60
[  115.960749][ T7184]        __wake_up+0x1c/0x60
[  115.960759][ T7184]        tty_port_default_wakeup+0x2a/0x40
[  115.960767][ T7184]        serial8250_tx_chars+0x68e/0x860
[  115.960776][ T7184]        serial8250_handle_irq+0x761/0xcb0
[  115.960787][ T7184]        serial8250_default_handle_irq+0x9a/0x250
[  115.960797][ T7184]        serial8250_interrupt+0xf5/0x1b0
[  115.960808][ T7184]        __handle_irq_event_percpu+0x229/0x7d0
[  115.960818][ T7184]        handle_irq_event+0xab/0x1e0
[  115.960827][ T7184]        handle_edge_irq+0x3ca/0x9e0
[  115.960834][ T7184]        __common_interrupt+0xcd/0x2f0
[  115.960848][ T7184]        common_interrupt+0xba/0xe0
[  115.960858][ T7184]        asm_common_interrupt+0x26/0x40
[  115.960867][ T7184]        _raw_spin_unlock_irqrestore+0x31/0x80
[  115.960881][ T7184]        uart_write+0x2a4/0xb30
[  115.960896][ T7184]        n_tty_write+0x41f/0x11e0
[  115.960906][ T7184]        file_tty_write.constprop.0+0x504/0x9b0
[  115.960922][ T7184]        redirected_tty_write+0xd4/0x150
[  115.960936][ T7184]        vfs_write+0x7d3/0x11d0
[  115.960948][ T7184]        ksys_write+0x12a/0x250
[  115.960959][ T7184]        do_syscall_64+0xcd/0x4c0
[  115.960967][ T7184]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.960976][ T7184] 
[  115.960976][ T7184] -> #1 (&port_lock_key){-.-.}-{3:3}:
[  115.960989][ T7184]        _raw_spin_lock_irqsave+0x3a/0x60
[  115.961002][ T7184]        serial8250_console_write+0x181/0x1890
[  115.961013][ T7184]        console_flush_all+0x801/0xc60
[  115.961022][ T7184]        console_unlock+0xd8/0x210
[  115.961031][ T7184]        vprintk_emit+0x418/0x6d0
[  115.961040][ T7184]        _printk+0xc7/0x100
[  115.961057][ T7184]        register_console+0xc2d/0x11b0
[  115.961067][ T7184]        univ8250_console_init+0x5f/0x90
[  115.961081][ T7184]        console_init+0x14f/0x680
[  115.961094][ T7184]        start_kernel+0x29f/0x4d0
[  115.961107][ T7184]        x86_64_start_reservations+0x18/0x30
[  115.961120][ T7184]        x86_64_start_kernel+0x130/0x190
[  115.961133][ T7184]        common_startup_64+0x13e/0x148
[  115.961143][ T7184] 
[  115.961143][ T7184] -> #0 (console_owner){-...}-{0:0}:
[  115.961156][ T7184]        __lock_acquire+0x12a6/0x1ce0
[  115.961168][ T7184]        lock_acquire+0x179/0x350
[  115.961181][ T7184]        console_lock_spinning_enable+0xb0/0xd0
[  115.961198][ T7184]        console_flush_all+0x7aa/0xc60
[  115.961206][ T7184]        console_unlock+0xd8/0x210
[  115.961215][ T7184]        vprintk_emit+0x418/0x6d0
[  115.961224][ T7184]        _printk+0xc7/0x100
[  115.961236][ T7184]        should_fail_ex+0x4e7/0x640
[  115.961252][ T7184]        strncpy_from_user+0x3b/0x2e0
[  115.961266][ T7184]        strncpy_from_user_nofault+0x7f/0x180
[  115.961281][ T7184]        bpf_bprintf_prepare+0xe90/0x13f0
[  115.961292][ T7184]        bpf_trace_printk+0xda/0x190
[  115.961305][ T7184]        bpf_prog_7c77c7e0f6645ad8+0x3e/0x44
[  115.961312][ T7184]        bpf_trace_run2+0x239/0x590
[  115.961326][ T7184]        __bpf_trace_contention_begin+0xc9/0x110
[  115.961340][ T7184]        trace_contention_begin.constprop.0+0xde/0x160
[  115.961356][ T7184]        __pv_queued_spin_lock_slowpath+0x109/0xcf0
[  115.961372][ T7184]        do_raw_spin_lock+0x20e/0x2b0
[  115.961387][ T7184]        raw_spin_rq_lock_nested+0x7e/0x130
[  115.961396][ T7184]        __schedule+0x307/0x5de0
[  115.961409][ T7184]        schedule+0xe7/0x3a0
[  115.961421][ T7184]        exit_to_user_mode_loop+0x67/0x110
[  115.961437][ T7184]        __do_fast_syscall_32+0x240/0x300
[  115.961445][ T7184]        do_fast_syscall_32+0x32/0x80
[  115.961453][ T7184]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  115.961466][ T7184] 
[  115.961466][ T7184] other info that might help us debug this:
[  115.961466][ T7184] 
[  115.961469][ T7184] Chain exists of:
[  115.961469][ T7184]   console_owner --> &p->pi_lock --> &rq->__lock
[  115.961469][ T7184] 
[  115.961483][ T7184]  Possible unsafe locking scenario:
[  115.961483][ T7184] 
[  115.961486][ T7184]        CPU0                    CPU1
[  115.961488][ T7184]        ----                    ----
[  115.961491][ T7184]   lock(&rq->__lock);
[  115.961497][ T7184]                                lock(&p->pi_lock);
[  115.961503][ T7184]                                lock(&rq->__lock);
[  115.961510][ T7184]   lock(console_owner);
[  115.961516][ T7184] 
[  115.961516][ T7184]  *** DEADLOCK ***
[  115.961516][ T7184] 
[  115.961518][ T7184] 4 locks held by syz.2.239/7184:
[  115.961524][ T7184]  #0: ffff88802b23a458 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130
[  115.961546][ T7184]  #1: ffffffff8e5c1420 (rcu_read_lock){....}-{1:3}, at: bpf_trace_run2+0x1bc/0x590
[  115.961573][ T7184]  #2: ffffffff8e5aee80 (console_lock){+.+.}-{0:0}, at: _printk+0xc7/0x100
[  115.961599][ T7184]  #3: ffffffff8e5aeef0 (console_srcu){....}-{0:0}, at: console_flush_all+0x158/0xc60
[  115.961621][ T7184] 
[  115.961621][ T7184] stack backtrace:
[  115.961626][ T7184] CPU: 1 UID: 0 PID: 7184 Comm: syz.2.239 Not tainted syzkaller #0 PREEMPT(full) 
[  115.961638][ T7184] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  115.961644][ T7184] Call Trace:
[  115.961648][ T7184]  <TASK>
[  115.961651][ T7184]  dump_stack_lvl+0x116/0x1f0
[  115.961668][ T7184]  print_circular_bug+0x275/0x350
[  115.961682][ T7184]  check_noncircular+0x14c/0x170
[  115.961697][ T7184]  __lock_acquire+0x12a6/0x1ce0
[  115.961713][ T7184]  lock_acquire+0x179/0x350
[  115.961726][ T7184]  ? console_lock_spinning_enable+0x9f/0xd0
[  115.961744][ T7184]  ? console_lock_spinning_enable+0x88/0xd0
[  115.961763][ T7184]  console_lock_spinning_enable+0xb0/0xd0
[  115.961780][ T7184]  ? console_lock_spinning_enable+0x9f/0xd0
[  115.961797][ T7184]  console_flush_all+0x7aa/0xc60
[  115.961808][ T7184]  ? __pfx_console_flush_all+0x10/0x10
[  115.961820][ T7184]  ? is_printk_cpu_sync_owner+0x32/0x40
[  115.961833][ T7184]  console_unlock+0xd8/0x210
[  115.961842][ T7184]  ? __pfx_console_unlock+0x10/0x10
[  115.961852][ T7184]  ? do_raw_spin_unlock+0x130/0x230
[  115.961869][ T7184]  ? _printk+0xc7/0x100
[  115.961882][ T7184]  ? __down_trylock_console_sem+0xb0/0x140
[  115.961898][ T7184]  vprintk_emit+0x418/0x6d0
[  115.961909][ T7184]  ? __pfx_vprintk_emit+0x10/0x10
[  115.961920][ T7184]  ? __lock_acquire+0x62e/0x1ce0
[  115.961934][ T7184]  _printk+0xc7/0x100
[  115.961948][ T7184]  ? __pfx__printk+0x10/0x10
[  115.961962][ T7184]  ? lock_acquire+0x179/0x350
[  115.961976][ T7184]  ? __pfx____ratelimit+0x10/0x10
[  115.961991][ T7184]  ? __lock_acquire+0xb97/0x1ce0
[  115.962005][ T7184]  should_fail_ex+0x4e7/0x640
[  115.962022][ T7184]  strncpy_from_user+0x3b/0x2e0
[  115.962037][ T7184]  strncpy_from_user_nofault+0x7f/0x180
[  115.962055][ T7184]  bpf_bprintf_prepare+0xe90/0x13f0
[  115.962067][ T7184]  ? finish_task_switch.isra.0+0x221/0xc10
[  115.962078][ T7184]  ? __pfx_bpf_bprintf_prepare+0x10/0x10
[  115.962089][ T7184]  ? trace_sched_exit_tp+0xd1/0x120
[  115.962105][ T7184]  ? __schedule+0x11a3/0x5de0
[  115.962121][ T7184]  ? bpf_trace_run2+0x3e1/0x590
[  115.962135][ T7184]  bpf_trace_printk+0xda/0x190
[  115.962149][ T7184]  ? __pfx_bpf_trace_printk+0x10/0x10
[  115.962163][ T7184]  ? bpf_trace_run2+0x3e1/0x590
[  115.962180][ T7184]  bpf_prog_7c77c7e0f6645ad8+0x3e/0x44
[  115.962188][ T7184]  bpf_trace_run2+0x239/0x590
[  115.962203][ T7184]  ? __pfx_bpf_trace_run2+0x10/0x10
[  115.962219][ T7184]  ? __lock_acquire+0xb97/0x1ce0
[  115.962233][ T7184]  __bpf_trace_contention_begin+0xc9/0x110
[  115.962248][ T7184]  ? __pfx___bpf_trace_contention_begin+0x10/0x10
[  115.962262][ T7184]  ? __pfx__kstrtoull+0x10/0x10
[  115.962279][ T7184]  trace_contention_begin.constprop.0+0xde/0x160
[  115.962296][ T7184]  __pv_queued_spin_lock_slowpath+0x109/0xcf0
[  115.962314][ T7184]  ? __lock_acquire+0xb97/0x1ce0
[  115.962328][ T7184]  ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[  115.962347][ T7184]  do_raw_spin_lock+0x20e/0x2b0
[  115.962363][ T7184]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  115.962379][ T7184]  ? rcu_qs+0x2b/0xe0
[  115.962409][ T7184]  ? rcu_note_context_switch+0x192/0x1e00
[  115.962422][ T7184]  raw_spin_rq_lock_nested+0x7e/0x130
[  115.962433][ T7184]  ? schedule+0xe7/0x3a0
[  115.962447][ T7184]  __schedule+0x307/0x5de0
[  115.962461][ T7184]  ? ksys_write+0x190/0x250
[  115.962475][ T7184]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  115.962492][ T7184]  ? __pfx___schedule+0x10/0x10
[  115.962506][ T7184]  ? __fget_files+0x20e/0x3c0
[  115.962517][ T7184]  ? handle_mm_fault+0x1b0/0xd10
[  115.962530][ T7184]  ? fput+0x9b/0xd0
[  115.962544][ T7184]  ? ksys_write+0x1ac/0x250
[  115.962557][ T7184]  schedule+0xe7/0x3a0
[  115.962571][ T7184]  exit_to_user_mode_loop+0x67/0x110
[  115.962587][ T7184]  __do_fast_syscall_32+0x240/0x300
[  115.962597][ T7184]  do_fast_syscall_32+0x32/0x80
[  115.962606][ T7184]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  115.962622][ T7184] RIP: 0023:0xf7f66579
[  115.962630][ T7184] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  115.962640][ T7184] RSP: 002b:00000000f5414590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  115.962650][ T7184] RAX: 0000000000000001 RBX: 000000000000000b RCX: 00000000f5414610
[  115.962656][ T7184] RDX: 0000000000000001 RSI: 00000000f73f5ff4 RDI: 0000000000000000
[  115.962662][ T7184] RBP: 00000000f74250b0 R08: 0000000000000000 R09: 0000000000000000
[  115.962668][ T7184] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  115.962674][ T7184] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  115.962683][ T7184]  </TASK>
[  116.413625][ T7184] CPU: 1 UID: 0 PID: 7184 Comm: syz.2.239 Not tainted syzkaller #0 PREEMPT(full) 
[  116.413640][ T7184] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  116.413647][ T7184] Call Trace:
[  116.413651][ T7184]  <TASK>
[  116.413655][ T7184]  dump_stack_lvl+0x116/0x1f0
[  116.413676][ T7184]  should_fail_ex+0x512/0x640
[  116.413695][ T7184]  strncpy_from_user+0x3b/0x2e0
[  116.413711][ T7184]  strncpy_from_user_nofault+0x7f/0x180
[  116.413728][ T7184]  bpf_bprintf_prepare+0xe90/0x13f0
[  116.413741][ T7184]  ? finish_task_switch.isra.0+0x221/0xc10
[  116.413765][ T7184]  ? __pfx_bpf_bprintf_prepare+0x10/0x10
[  116.413780][ T7184]  ? trace_sched_exit_tp+0xd1/0x120
[  116.413796][ T7184]  ? __schedule+0x11a3/0x5de0
[  116.413812][ T7184]  ? bpf_trace_run2+0x3e1/0x590
[  116.413828][ T7184]  bpf_trace_printk+0xda/0x190
[  116.413842][ T7184]  ? __pfx_bpf_trace_printk+0x10/0x10
[  116.413857][ T7184]  ? bpf_trace_run2+0x3e1/0x590
[  116.413874][ T7184]  bpf_prog_7c77c7e0f6645ad8+0x3e/0x44
[  116.413883][ T7184]  bpf_trace_run2+0x239/0x590
[  116.413898][ T7184]  ? __pfx_bpf_trace_run2+0x10/0x10
[  116.413914][ T7184]  ? __lock_acquire+0xb97/0x1ce0
[  116.413929][ T7184]  __bpf_trace_contention_begin+0xc9/0x110
[  116.413944][ T7184]  ? __pfx___bpf_trace_contention_begin+0x10/0x10
[  116.413958][ T7184]  ? __pfx__kstrtoull+0x10/0x10
[  116.413976][ T7184]  trace_contention_begin.constprop.0+0xde/0x160
[  116.413993][ T7184]  __pv_queued_spin_lock_slowpath+0x109/0xcf0
[  116.414011][ T7184]  ? __lock_acquire+0xb97/0x1ce0
[  116.414025][ T7184]  ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[  116.414045][ T7184]  do_raw_spin_lock+0x20e/0x2b0
[  116.414061][ T7184]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  116.414077][ T7184]  ? rcu_qs+0x2b/0xe0
[  116.414087][ T7184]  ? rcu_note_context_switch+0x192/0x1e00
[  116.414099][ T7184]  raw_spin_rq_lock_nested+0x7e/0x130
[  116.414110][ T7184]  ? schedule+0xe7/0x3a0
[  116.414123][ T7184]  __schedule+0x307/0x5de0
[  116.414138][ T7184]  ? ksys_write+0x190/0x250
[  116.414152][ T7184]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  116.414170][ T7184]  ? __pfx___schedule+0x10/0x10
[  116.414184][ T7184]  ? __fget_files+0x20e/0x3c0
[  116.414195][ T7184]  ? handle_mm_fault+0x1b0/0xd10
[  116.414207][ T7184]  ? fput+0x9b/0xd0
[  116.414221][ T7184]  ? ksys_write+0x1ac/0x250
[  116.414234][ T7184]  schedule+0xe7/0x3a0
[  116.414248][ T7184]  exit_to_user_mode_loop+0x67/0x110
[  116.414265][ T7184]  __do_fast_syscall_32+0x240/0x300
[  116.414276][ T7184]  do_fast_syscall_32+0x32/0x80
[  116.414285][ T7184]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  116.414299][ T7184] RIP: 0023:0xf7f66579
[  116.414308][ T7184] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  116.414318][ T7184] RSP: 002b:00000000f5414590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  116.414329][ T7184] RAX: 0000000000000001 RBX: 000000000000000b RCX: 00000000f5414610
[  116.414335][ T7184] RDX: 0000000000000001 RSI: 00000000f73f5ff4 RDI: 0000000000000000
[  116.414341][ T7184] RBP: 00000000f74250b0 R08: 0000000000000000 R09: 0000000000000000
[  116.414347][ T7184] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  116.414354][ T7184] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  116.414363][ T7184]  </TASK>
[  116.754332][   T24] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  117.523820][  T840] vhci_hcd: vhci_device speed not set

VM DIAGNOSIS:
07:01:29  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000114ab4 RBX=0000000000000000 RCX=ffffffff8b91db29 RDX=ffffed1005646656
RSI=ffffffff8c163700 RDI=ffffffff8190cb01 RBP=fffffbfff1c52ef8 RSP=ffffffff8e207e08
R8 =0000000000000000 R9 =ffffed1005646655 R10=ffff88802b2332ab R11=0000000000000000
R12=0000000000000000 R13=ffffffff8e2977c0 R14=ffffffff90abac90 R15=0000000000000000
RIP=ffffffff8b91c66f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880974b9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000022fcf000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000031 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8561eca5 RDI=ffffffff9b103780 RBP=ffffffff9b103740 RSP=ffffc9000d93f218
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d
R12=0000000000000000 R13=0000000000000031 R14=ffffffff9b103740 R15=ffffffff8561ec40
RIP=ffffffff8561eccf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880975b9000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000000000000000 CR3=0000000027cd9000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=00000008000008fd RBX=ffff88801c300000 RCX=0000000000000830 RDX=0000000000000008
RSI=00000000000000fd RDI=0000000000000008 RBP=0000000000000008 RSP=ffffc9000d8af8e0
R8 =0000000000000000 R9 =fffffbfff2157592 R10=ffffffff90abac97 R11=0000000000000001
R12=1ffff92001b15f1d R13=0000000000000003 R14=0000000000000003 R15=ffffc9000d8af908
RIP=ffffffff81695748 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880976b9000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000000000000000 CR3=0000000022fcf000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f7395ff4
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=0000000000000014 RCX=ffffffff81bd7f49 RDX=ffff888028c72440
RSI=ffffffff81bd7f6a RDI=0000000000000001 RBP=0000000000000820 RSP=ffffc9000ed1ef40
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000004 R11=0000000000000000
R12=0000000000000988 R13=0000001b023315e6 R14=ffffc9000ed1efe8 R15=ffff88801c75a830
RIP=ffffffff81bb0741 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880977b9000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000000000000000 CR3=0000000027cd9000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000