last executing test programs:

7.31112092s ago: executing program 1 (id=2198):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x3)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2, 0x0, 0x0, 0x1}}}}}}, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000580)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x4}}}}}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000003800)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r2 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000d5e9bd40eb030200c0ba050000010902115c01000000000904000001b504b100090581"], 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r3, 0x40047438, &(0x7f0000000180)=""/246)
r4 = syz_open_dev$evdev(&(0x7f0000000000), 0x4, 0x0)
syz_usb_control_io(r2, &(0x7f00000005c0)={0x18, &(0x7f0000000280)={0x40, 0x10, 0xb4, {0xb4, 0x2d, "f1a11055b082e94bd03722afba595960071998f94a5d51580ab249c2d1edb2661512c0e3d2f472cb1e4158682091337679c34eb8112c8a14241702b935b1b9c525e8cbe789381dd8e69d0125c553546ea7dbbf1b8da463259a4a5a99b4ca30e4a35f561126d17a65c6c37a5a9d056c644c9ebf2c4d8e25a41ddf0f031bed5fe2bc95085c5602927c4565b12291fd526d11e67e2235e1bd93be5aa4dd295df0ae8615755676547555edb4de8b028495854f3f"}}, &(0x7f0000000340)={0x0, 0x3, 0x91, @string={0x91, 0x3, "d86075b38d06c27c487cab18f5cd318c74ace82ae43c1ce170b0606dbc2ab03e53090fac81e942f6fa8599839cc9acf604ceb5a5e2feda99c86550838d9db4b929177d5016ebc7a098708c3b0723861cd105687bf9dbebda29f44efbf4d94cb947881f15a709e7187ddf7363c46b7370b90645ce7c2ba6bfeba2203f9faafbbaad8311bc9456a0a494d8e2a170a2cb"}}, &(0x7f0000000400)={0x0, 0xf, 0x10b, {0x5, 0xf, 0x10b, 0x6, [@ss_cap={0xa, 0x10, 0x3, 0x0, 0x8, 0x20, 0x0, 0x27}, @wireless={0xb, 0x10, 0x1, 0x2, 0x40, 0x1, 0x0, 0x4, 0x5}, @generic={0xbb, 0x10, 0x0, "1add56bf79e7038b34fb003a5a889cc137d4e2593b328f3a3f8315bc7c5ec6b92c99c7ab3cad417226a698380126b80fa68df649935a18bad2d5c2a82cf1626e852b4b0dade2550146ad45e5b611c52cff7c3f1fe3b23bff32716ee0b15924afde08abd2b9bc8e55aad5be0f6364c7a6c1659648642234ec1a6295de51147f79885512ccf6c21aeb37fca670c606b7eba819239466d67889d998f2040d5f9a3e55759ddb8a07e1143c80b94843a8c7b6fb8e777415c78ef0"}, @ssp_cap={0x18, 0x10, 0xa, 0x20, 0x3, 0x5, 0x1e, 0x71a, [0xffc000, 0xc0, 0xc00f]}, @ss_container_id={0x14, 0x10, 0x4, 0x5, "542fbf92845d0a59e8c0b362413c8bff"}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x0, 0x6, 0x6, 0x2}]}}, &(0x7f0000000140)={0x20, 0x29, 0xf, {0xf, 0x29, 0x80, 0x8, 0x6, 0xce, "7305ed80", "657256cf"}}, &(0x7f0000000540)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x3, 0x0, 0xa, 0x6a, 0x4, 0x2, 0x1}}}, &(0x7f0000000a80)={0x44, &(0x7f0000000600)={0x20, 0xf, 0xad, "e03925347e00470fa9423336d743a5e9b30765725d8ffa3d83a99fa769575a99912a917e2344586b6e03151b38c25236b617596543d4d2b9e088355a8134fa07e433c2f13e4ad18ed597b91e7e93e20c0d173a882b2c2e3ede0b40434f1b8b618fbde2edb6f16001013cddb7dfbaf7067c5d02c059aae2da2acd2702abdc6475af07d2fc5645d0ab4047f2309bfe29f1067a2f25ca836229c2e1ace9855f361936edfa59627f50060a0ccb29ac"}, &(0x7f00000006c0)={0x0, 0xa, 0x1, 0x6}, &(0x7f0000000700)={0x0, 0x8, 0x1, 0xe}, &(0x7f0000000740)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f0000000780)={0x20, 0x0, 0x4, {0x8, 0x8}}, &(0x7f00000007c0)={0x40, 0x7, 0x2, 0x100}, &(0x7f0000000800)={0x40, 0x9, 0x1, 0x40}, &(0x7f0000000840)={0x40, 0xb, 0x2, "f805"}, &(0x7f0000000880)={0x40, 0xf, 0x2, 0x4}, &(0x7f00000008c0)={0x40, 0x13, 0x6, @local}, &(0x7f0000000900)={0x40, 0x17, 0x6, @link_local}, &(0x7f0000000940)={0x40, 0x19, 0x2, "35a4"}, &(0x7f0000000980)={0x40, 0x1a, 0x2}, &(0x7f00000009c0)={0x40, 0x1c, 0x1, 0x6}, &(0x7f0000000a00)={0x40, 0x1e, 0x1, 0x4}, &(0x7f0000000a40)={0x40, 0x21, 0x1, 0x2}})
ioctl$EVIOCGKEYCODE_V2(r4, 0x80284504, &(0x7f0000000040)=""/165)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0x4000c00)

4.196495842s ago: executing program 1 (id=2204):
r0 = socket(0x3, 0x4, 0x0)
sendmsg$inet(r0, &(0x7f00000018c0)={&(0x7f0000000080)={0x2, 0x4e22, @loopback}, 0x10, &(0x7f0000000440)=[{&(0x7f0000000180)="f9920cf983b697abaf96", 0xa}, {&(0x7f0000000880)="a8cd8f0fccb2baf14d811a21d4d6f9ef512b3c7a6e616faf09b345f7968042fe48536d11686c363e68d4089c32c422fe8ae58d86f3d98b2574c2f9eda14a9f86c93908fd1f409aaf170cac9c84ac01291f14ca6cb8fad353ddf35468f02c908b097bb543311f9c56ca23ec228b138062879a9b1f5dbabd07945852c90aad461a5cd605b585a4ae9204df4b96e724b93d8e09c5542dc3296fcbbfcb81a9f7221263da7cb2c8eac338f3275c5c6655fd4210a8f8d050dee44dc3b8584a03e47c83a2f664361c4739b5133cdcbff0911616ba99e4f1e99c261edddc76374bdace7641af9dacae5b8c9b43e6367d3a7fd222a1f285abd600659eb44c59e5a68de4cf130172b5be106523d2c63d3f5cc9e97c56aa9c0f46dda9f0efdcf670fb2b4920d595ba4de782476823ef17bb3f0b673f88d267bedddb18a9222fd93b1fa2b0a438a107851ecb691c5d8e03ead108d4316c98088f8eb3b2426b3780a3255a16e800e53b8dd1df8bb664bf6f8e0c6685071a4a5364e5b17d98fa07c85b20cfdb0c17566604fcced863431a929a0fe385d80f02cad830194da29a31facaf9d148d66712bcbf8b0f0527b65329a1edc33f807721e62cab3a018c4f4b8f3d26c6d814592bbbb25a35d2aaecc896765a23603d1685963c01905f5c745e2d5cdd923ad27c7e13ff554bc445e39a74f12eda7bd5b5c170aa8fb9e728bd761c2c4d66a87a0aa7dd0f26e6c77c967bdefd9b8373720e26c6fcb381e8b3145e531c22728ead14a79d21cf89bb89332dc1ad17e2b8afb93c05422e2998a311845bceda24e4f055c3133117d0df02c12722d8116b606d1643589f27cd37fec8f3519f90dc2e7cfffba7d44249a400c3865855791e4a68143c5faaee408f946aa9b6050f4e65cd5b875cbcd11bf0e56d03a3fa2043cd65f2a4dd5ade88f34c253d0734e5af6a4e111800e918cac865ae47ce7e77fbfa67eb317e74ba5f62e21b0bbc1ace7d4e49fc2c64184c4890ccaf3c6e1a51a7285faef44b186c183d66033e91a124a03dbd131c3a1ce0b023633cc0f4158096d0c8db41d340c27eba9004ae1b1de950ecdeb03173389453f1db4f1ad382814ba8b82302782dee0a338b35eec5e1e217061669735de243ec36fbf0f01d44ad38884847f99887bdf5a79866a9650d88e658f95f57e8b39dbbc5db894702954dad4685e3db6fe9317c6e934e1b0cc866f63b736e88f817b08df009c50533ad68795984269c0beeb2ec3993dcbaf65480c23e20fece8a462d35a9b2848165f511768eeda0c2463a98e9c51215473fc39dd0e80606fa2afb2548a450db2927d93cbae1d6e71aa88e9dcb0d349d2feaf3d98ee4fa4c26be50544516c6a28a9ac881538469944f914ac9c9e18bd378978fea2cb340b615f948e7447b808095d9a184a9794cbfdef46b352e52be95368beee6c96d37db98015f4fc8a571e32e4f08e128d16400965e1f7396df4126de58f948595f01e4deb5d262c0b52053cb65200442551d9bffb05f73a249aa5a1d4dfbd6e70a04c75af8eed2823b8a33da9b93e703bb0ebbcf01786c85e38252a5734ffbf628512dc0ea96cff9f9050e2c18a74cd9694a9a3584ab98984004671821551ff6266d2cc4bddb786d756cc19e680e363872f85d0311b970c5d8ba37e0503f1af567e3b1b3f35e0a77eb87393720502ffd3efe495f9a51c95c466d442dc8b7b66a36e0d28fefead741cbd1baf684641123f7f837abd1ad91e3da80705890aa17e620e0f0f00c6265b9af4f8e7772b7d2b792a6e5946fd8d0db91a1bd88cabe51eef88a65bfc70d36fe94010563b502eae0305868590cbbbeb2abc07d9f491d862f72ce9165aeaa6803638f7d94f9a9a070b90ef630f721eaa027b85ee56d8ac142ff6939d61b91109706856a4e33cd92a6b0e6469a9bbb6c8d1240394ef784e4d4e26b3f2f0896cb5e60339c2527f59aa4ae4b54a5eed8a103852ff4d40efabf52efd2bef818c898ce9431f5855ccf8ea73f6e67c54b7bd02006db1626abf0f48f32d14f45b7af7435a1610239759eed607a4bbe219d25da790a3aa246ff86476b71ac8642764adfb9650c7278da31310fef5d7ddd7ea1d611d5a88cb14a04265044f5c7c2f2fee23a965f02d54ea120a5d4c1a3372ba44b2bccc496cd3b1088babe99a00f909420752c6dcae562067933c4e0a50d4e64d943323231f0568e91cedb7d7f26aa6000d4794d4b1768ca700a98061d22af78744a8e37071423e3d654b16f23f078de666520a84e3787f2343a8ebf472e4150bf62559bbcf63d1997ffdd8b7e47f9ea8312fff66e8957d9adb638e3029e4f7b2caa9f8711f41f6f4ffaa6932a097751995623d8fb5af4133c15708bd26e588b6be279ee4f428133b798ac07c860b31dfd0caa39b6b1ba93f3b09deda150be243457b7f3077589719415b2a80ca9b76d1fd47f1967baee4c5fb0b50ce10bee0ee220becd2494cdf927587d1b213ab9f60e4c7e9747f4bf813d9948a1f9d87b62c4bbf5cd3f52156896888985749795361c37b206fcb61e6a0ec6b908f83a6159f167e2709a939d1871af14976f94f826a6a514ed28b55468b288c7132850d33b44db55eaa6dbc17fb091eb89f72a84153124991dae7accf69b68fb970493c849baf807de3118f6d9e02dc5f47f0f3c774e54645afe71f827f9c75845e58b03b89d2ed37c96b7a6dd081f84ca48b049b77e903a1d1b0b9ec0e009089cc3212b62f1c00e82be68e4b5553b7eaa61edff68227168e43d821013da677ff2a1631b1faa104ce488ad369e67d61cdd1da9e68982958a54192e6b24164260074dfa825870a40374ed75b4ae9f4f837405f9d487dd7651b35381635ba067c6e4e16cb58916152794bdf2e4b410706b98e7b088f098651df707b5f002c911d447a712bc70b02772544dfc3c66d68073404a6e844013567355e874c4ce28600d9174ed35ce377c4ea09e73ba7bb9f67e8ed51b4fb676da3a57c0f47ce22484538ec122cfd040fee830ebea8b54b159019ba69428e9bee665d1c4931e6f0ca50d6a01cd7415bb8186964a55ff8af5d544d76c8fec048c167c1e93fe8217e8a126a2ecf728be010dc742323fee741591792c8d3b0092c812685db9465a18f0e4fbc5d8a33ebfcb780c24da7a9ba713b7f3fe3a9b4e9f32a906ba6de086e455a0b91e7b6c241334221c9c49389dba1ebcd68a11c54b1baf947dffcee189f1c30fda55e35d853f695664a0f6d4b41af44d6e8e44948ab396c14fdd467885d765ae5d0ce8a5d4bc474f59246d902784187bb9e0f15f7fdb452f40d90f3b489c178b8c554c387d6660d22498e9b66eec27a57c2fcb2de4441bb51395945ef4f71402977767517d13726ba879aad55c136bad0ac7265758eb07f305e4e60a55991b6a61f9d508ed1951a056006561ac901f203c7dfef9f41abad06eaf4b9fbeb213bce86d2840cb30dfe20022fa557d33a9d42b1dcc710c5ae29b2a76bdfe3589dd10287dc05684ba8acff09976af1f3b45b6d87ad4151b8d1430d20b96d3a2956e6cfdd8893d53ecce05259c7214bd8f04d96a01cfc523a2a36e3f37a7e7f87dc3275899ac3c273cdcbe163c67b397de2d41b93c43e2c6a8b1d13ba22306e88e82744010f260b434c3e2a5d88b7d17edad828b7ab5cf2e5651d2a47253d8b43dc7788307da73b8f08049a32e4fc4eae7eb9b00914e20c05addb28578194d120f54ed8a5d9b81b7fa59434ad187791305677f9a7f28ef4115788f63af2f9bd825253ff5b1dae2c70813794752e123702b198eaaac685a480170c5f53f752930d4f02db1b16b34c82b9609700c23061a78a8914bbe8877f6420b1939c0167738a2b8fc62ed3f9c414d59cacb15604853e6e3deabcf11e83f43a0f0a1b52d941f2be15320da48482ad60e9bc61d60965d986ab3436a687641e0024a24b99bf42ba6312a7c57f9f88325b06ab07176965b0d0f3c53e6d5adcff04f441bcf82c2cc88c3280792e081a29220bef6151cbeadfc4675727aab41ffe7dec99d12b812616c8d66a107e6dae262796e6fedaaf093d3f99d0394cc268f6784fd48710fd8b5adf7c6f0e3efd46029b141537c4dce68075cc27ccef226344dbba92190490c5178b3c58c8324fcac8965d2b4d03f561ff0a1df20e71159be0d385353578e29bf87b7a6e4f6e5e5c1a9d3955ddff6e31657796d5c7ddf4f78e3e1aa9e056b17fd2f7a4009b30f068b68adb393e496738aa450c2c48844988849405eafb220b5e26e5045d881d7fe0291e3f7f00616d9253f4b1dd01fd33c63e5a67d4b12bc1f48705553206caa34a621c2036c1e0f1828d57a5d4749c8065365c1dae06e6fac20381d38ba133c596759bf3fde917fa1fd123e9ba2dca7fb0fb7c2f3c98ce8be541c68444efcb8ff2dcdec04660f2676a26646f86870cd0a7d86d1b8a517d4a36e57fa5237b0d1f4636b259b39af25a7b6e2efb00234c6b67d12fbece37682355dea7b9cd36e2ea75bf8306081ad0e60f9fefa3f4042525353fe5c0a4407a8f493e76925e6fa5ac9493f56dc81a21b7810ab22b7383217a5409e5c590d772c09f26a4504cbf8fe9749d2272b7b257f7e1d65ae15bf31a2501c04f81162c27f6f99b0e345749e6b0ca19bc388b191d590e1fcfdfbf140db20007257d937653047ae156cfccf3b539c68faee178a6e18d797f102a011a9e4a076b23afcc4839548bbe0d2dd4a87e50a53ac308cf041b6c3920317c908cbfc7c9d084a60f50c269fccde655f75ea24d2d21d5289112a224656becfacaeb672fae02f1810be0104521cd490c24f616850302df1822a1cad30b17e944d380c5da0e4b2b0416bbb71f130790af643e3b669489dd0f10200353031a460ee177eb02e8e39c2cd7339bf6fcd87659c47271c35b6cc6ccbf7eef83bc78d856db9b321ea30ce3c9e4e917ad0260771139b280777cef1dfafd55a4694104e2dc1d2bd1e33e5057b48bcc432d0f7d12b3b98e42e4fda82d6ace1a2199f603b8f032c85f82a19daef16df3fba951898a3e1f2d6269ccad307b5b82e49469f2882c87aaf8bcc8049a48c1df585160611310c5320af6f092465cee15af620ec0ba396668e206e54940be03e10f79932e349f04ae0cafe0d81003b670ce54bde18fc367f492788b7789a9d9bce496bb7ab12f01858ea191ca333842ecd1a2c289731d80b1867bbb5f107d1f09ac9ce69cfb64e617466c5faa4f28fd3eb5d6f036e15add2ebdec5200b91997eeabf894c9ae8afead07eddfb7b3e28dc9ab062d51380ce0c143299bb878512e3cc926693c2e0bc1e8aa884555669764e733931b215b8744761de8489c9ddc3265890a47f8ceb00300165792c1566fdf5ca252ccef2106b7deb37824e368c1ab48996ad87c96076fe874f42696fb671b9fab8cb403b50db1409", 0xf00}, {&(0x7f0000000240)="a60e040233cbded3b24fec041c804b57", 0x10}, {&(0x7f0000000340)='os', 0x2}, {&(0x7f0000000500)="dfa6fe0bdeac2bd919ef32e4e46c6a74a7f0bfd56d464b4e4aae166aaaff2aca60d37d9d2dfcb49cf92efcfb2ca9ba713811d11157c3cb9d791a1366eadef3bce4128f7bfd9e66d92633ad1a92c9acf18ec6a044496c028531258052fee502e1b091db0a805f764f73c6bc090a40903f1b71e39ee35dfe84ce806cf381456842499e4dd4bf7f75297d11", 0x8a}, {&(0x7f00000003c0)="0ce8c25a0d5eef5077", 0x9}, {&(0x7f0000000680)="440e1564683fe2e797311a54cd7efa4af85f66129b75718d2e40253128956abf8f2f67d8c16adee736c3eb32b3f339ca83e5d55c318f65d3febd2b6ff116bf73e717100634029a6cc532dc75d4cde5509c1358201bc955a4d2a4c7d67a1c5c773c657ef38b26974ee2a00a1435defc5aff17f9d476e0d6007158d8413f17e4fc09113b5d84126daa0def9482da6562a0015787f42ad6d204ec6f6624526ae7f6b3f7e9f5c21426da8ebefdf2ca8e47f89d268fd8e832d308c1d13d0d4f46e5498d35456118800597b615", 0xca}, {&(0x7f0000000780)="f9b6e11c8eb5d232c8c6ada542698e6c2f38d0aae3d6c01e56a2099faece63df0621034715a6b357151020ba4f021cb9a21de316ed69a20f7ea75be9b2423ea138a17ee01a1b0fd9e39fd30a539901d2c692a2a85431e7ab5a8fd07e310e6a360f31644ab97cd0a64c03d5a5e7a55fc655b7dafb9a2ef1a2c8f5c29e5dca3ffaee41a160b34e76dc033210d128f8897f85fd764cdff780303391d1cf5fdacd6d4e4e1cdba6113bff887d951909c364d015a258e2c160d9", 0xb7}], 0x8, &(0x7f0000001880)=[@ip_tos_int={{0x10, 0x0, 0x1, 0x8}}, @ip_tos_u8={{0xd, 0x0, 0x1, 0xb}}], 0x20}, 0x20000800)
ioctl$sock_ipv6_tunnel_SIOCADDPRL(r0, 0x89f5, &(0x7f0000001940)={'sit0\x00', &(0x7f0000001900)={@dev={0xac, 0x14, 0x14, 0x17}, 0x0, 0x0, 0x30, 0x0, [{@multicast1}, {}, {@initdev}]}})
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="b6bd375f0080"], 0x14}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$video(&(0x7f0000000000), 0x485, 0x40000)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x48c00, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000240), 0x0, 0x40, &(0x7f00000001c0)={0xa, 0x4e20, 0x40, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x6}, 0x1c)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000400)={0x2, 0x5a6b9e18ff896410}, 0x4)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0401273, 0x0)
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0185648, &(0x7f0000000100)={0xfffffff, 0x1, 0x3, 0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0x990903, 0x5, '\x00', @ptr=0x5}})
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_sys\x00', 0x275a, 0x0)
fcntl$lock(r4, 0x6, &(0x7f0000000000)={0x0, 0x0, 0x8})
fcntl$lock(r4, 0x26, &(0x7f0000000080)={0x1, 0x0, 0x2007, 0x1fd})
fcntl$lock(r4, 0x26, &(0x7f00000000c0)={0x1, 0x2, 0x9, 0x401})
close_range(r3, 0xffffffffffffffff, 0x0)
write$rfkill(r2, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)

4.101769072s ago: executing program 0 (id=2205):
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000000)=<r0=>0x0)
process_vm_writev(r0, &(0x7f0000001680)=[{&(0x7f0000000040)=""/137, 0x89}, {&(0x7f0000000100)=""/35, 0x23}, {&(0x7f0000000140)=""/115, 0x73}, {&(0x7f00000001c0)=""/200, 0xc8}, {&(0x7f00000002c0)=""/25, 0x19}, {&(0x7f0000000300)=""/253, 0xfd}, {&(0x7f0000000400)=""/143, 0x8f}, {&(0x7f00000004c0)=""/4096, 0x1000}, {&(0x7f00000014c0)=""/187, 0xbb}, {&(0x7f0000001580)=""/216, 0xd8}], 0xa, &(0x7f0000001bc0)=[{&(0x7f0000001700)=""/87, 0x57}, {&(0x7f0000001780)=""/5, 0x5}, {&(0x7f00000017c0)=""/192, 0xc0}, {&(0x7f0000001880)=""/211, 0xd3}, {&(0x7f0000001980)=""/251, 0xfb}, {&(0x7f0000001a80)=""/3, 0x3}, {&(0x7f0000001ac0)}, {&(0x7f0000001b00)=""/160, 0xa0}], 0x8, 0x0)
r1 = openat$vnet(0xffffff9c, &(0x7f0000001c00), 0x2, 0x0)
ioctl$VHOST_GET_FEATURES(r1, 0x8008af00, &(0x7f0000001c40))
r2 = openat$ipvs(0xffffff9c, &(0x7f0000001c80)='/proc/sys/net/ipv4/vs/drop_entry\x00', 0x2, 0x0)
ioctl$KDFONTOP_GET(r2, 0x4b72, &(0x7f00000020c0)={0x1, 0x8, 0x13, 0x16, 0x17c, &(0x7f0000001cc0)})
sendto$inet_nvme_pdu(r2, &(0x7f0000002100)=@data_h2c_hdigest={{0x6, 0x1, 0x18, 0x1c, 0x199}, 0x84ff, 0x0, 0xff, 0x80000000, "6ff1cfa2"}, 0x80, 0x0, 0x0, 0x0)
ioctl$VIDIOC_PREPARE_BUF(r2, 0xc04c565d, &(0x7f0000002280)=@multiplanar_userptr={0x2, 0x4, 0x4, 0x400, 0x9, {0x0, 0xea60}, {0x0, 0x8, 0xe6, 0x0, 0x2, 0x37, "281592fe"}, 0xd9ee, 0x2, {&(0x7f0000002200)=[{0x5, 0xfffffff5, {&(0x7f0000002180)}}, {0x5, 0x1, {&(0x7f00000021c0)}, 0x3}]}, 0x1, 0x0, <r3=>r2})
ioctl$VIDIOC_QUERYBUF_DMABUF(r2, 0xc04c5609, &(0x7f0000002300)={0x800, 0x5, 0x4, 0x170030, 0x0, {}, {0x4, 0x2, 0x0, 0x3e, 0x59, 0x6, "a6ac44e1"}, 0xf3b, 0x4, {}, 0x9, 0x0, r3})
write$dsp(r2, &(0x7f0000002380)="1a3493dd63", 0x5)
r4 = dup(r2)
ioctl$COMEDI_CMD(r4, 0x80406409, &(0x7f00000024c0)={0xa, 0x10000, 0x40, 0x3, 0x2, 0x5, 0x100, 0x7, 0x2, 0x0, 0x4, 0x2, &(0x7f00000023c0)=[0x9a8, 0x8, 0x7f, 0xab0f, 0x2, 0x6, 0x8], 0x7, &(0x7f0000002400)="ff5de92d28973a4fc52fcf2a0ef121300d1dff4bedb470e988da69bfe458bf3b4c3e392d2a4eb507a25dae8c460472414bab04d133cf2be15847063a1bb608d71eeb805e882bc2549af79ce845dcb02c38ec896c998971d899f4629ffc48e50359f4753cb017f77c74e558f25faa5f524f1ec6fad9eb5b6d0cb8d8e43a21fb5eda15eaca09", 0x85})
prctl$PR_SET_THP_DISABLE(0x29, 0x0)
write$UHID_DESTROY(r2, &(0x7f0000002500), 0x4)
ioctl$KDADDIO(r2, 0x4b34, 0x0)
socketpair$unix(0x1, 0xfe2c1e8c1c2a4e3d, 0x0, &(0x7f0000002540))
preadv2(r2, &(0x7f00000026c0)=[{&(0x7f0000002580)=""/110, 0x6e}, {&(0x7f0000002600)=""/159, 0x9f}], 0x2, 0x5, 0xb1eb, 0x0)
ioctl$SNDRV_PCM_IOCTL_XRUN(r2, 0x4148, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r2, 0xc0045005, &(0x7f0000002700)=0x4)
write$P9_RLOCK(r4, &(0x7f0000002740)={0x8, 0x35, 0x2, 0x1}, 0x8)
ioctl$BLKPG(r2, 0x1269, &(0x7f0000002840)={0x1, 0x0, 0x94, &(0x7f0000002780)={0x2803, 0x4, 0x14}})
syz_clone(0x0, &(0x7f0000002880)="035282c9f0c29c89508a452e817c7df036495c0fbcdd9695613bb52f3fc6562e7b7e049ea10b681b8e8ccd81d85595ece59160a3fc", 0x35, &(0x7f00000028c0), &(0x7f0000002900), &(0x7f0000002940)="77dabb57fc38217af1874b2110e25e87d82327d9165f0611091bb600c51222c51f891e0b3443d5e3dce8f5a606cf74758f206a66739127f54513a834138929bd600e9bf58f4308bdf4549825f5342499e554857dfc7132257a35a3")
r5 = openat$iommufd(0xffffff9c, &(0x7f00000029c0), 0x100, 0x0)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r5, 0x461f1000)
r6 = openat$cdrom(0xffffff9c, &(0x7f0000002a00), 0x210000, 0x0)
ioctl$CDROM_SET_OPTIONS(r6, 0x5320, 0x0)
openat$ptmx(0xffffff9c, &(0x7f0000002a40), 0x12000, 0x0)
write$6lowpan_enable(r4, &(0x7f0000002a80)='1', 0x1)
pipe2(&(0x7f0000002ac0)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x4000)
ioctl$EXT4_IOC_MIGRATE(r7, 0x6609)

4.065792745s ago: executing program 1 (id=2206):
inotify_add_watch(0xffffffffffffffff, 0x0, 0x400017e)
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0)
ioctl$COMEDI_SETRSUBD(r0, 0x6410)
openat(0xffffffffffffff9c, &(0x7f0000001740)='.\x00', 0x515001, 0x408)

4.041312889s ago: executing program 0 (id=2207):
r0 = socket(0x3, 0x4, 0x0)
sendmsg$inet(r0, &(0x7f00000018c0)={&(0x7f0000000080)={0x2, 0x4e22, @loopback}, 0x10, &(0x7f0000000440)=[{&(0x7f0000000180)="f9920cf983b697abaf96", 0xa}, {&(0x7f0000000880)="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", 0xf00}, {&(0x7f0000000240)="a60e040233cbded3b24fec041c804b57", 0x10}, {&(0x7f0000000340)='os', 0x2}, {&(0x7f0000000500)="dfa6fe0bdeac2bd919ef32e4e46c6a74a7f0bfd56d464b4e4aae166aaaff2aca60d37d9d2dfcb49cf92efcfb2ca9ba713811d11157c3cb9d791a1366eadef3bce4128f7bfd9e66d92633ad1a92c9acf18ec6a044496c028531258052fee502e1b091db0a805f764f73c6bc090a40903f1b71e39ee35dfe84ce806cf381456842499e4dd4bf7f75297d11", 0x8a}, {&(0x7f00000003c0)="0ce8c25a0d5eef5077", 0x9}, {&(0x7f0000000680)="440e1564683fe2e797311a54cd7efa4af85f66129b75718d2e40253128956abf8f2f67d8c16adee736c3eb32b3f339ca83e5d55c318f65d3febd2b6ff116bf73e717100634029a6cc532dc75d4cde5509c1358201bc955a4d2a4c7d67a1c5c773c657ef38b26974ee2a00a1435defc5aff17f9d476e0d6007158d8413f17e4fc09113b5d84126daa0def9482da6562a0015787f42ad6d204ec6f6624526ae7f6b3f7e9f5c21426da8ebefdf2ca8e47f89d268fd8e832d308c1d13d0d4f46e5498d35456118800597b615", 0xca}, {&(0x7f0000000780)="f9b6e11c8eb5d232c8c6ada542698e6c2f38d0aae3d6c01e56a2099faece63df0621034715a6b357151020ba4f021cb9a21de316ed69a20f7ea75be9b2423ea138a17ee01a1b0fd9e39fd30a539901d2c692a2a85431e7ab5a8fd07e310e6a360f31644ab97cd0a64c03d5a5e7a55fc655b7dafb9a2ef1a2c8f5c29e5dca3ffaee41a160b34e76dc033210d128f8897f85fd764cdff780303391d1cf5fdacd6d4e4e1cdba6113bff887d951909c364d015a258e2c160d9", 0xb7}], 0x8, &(0x7f0000001880)=[@ip_tos_int={{0x10, 0x0, 0x1, 0x8}}, @ip_tos_u8={{0xd, 0x0, 0x1, 0xb}}], 0x20}, 0x20000800)
ioctl$sock_ipv6_tunnel_SIOCADDPRL(r0, 0x89f5, &(0x7f0000001940)={'sit0\x00', &(0x7f0000001900)={@dev={0xac, 0x14, 0x14, 0x17}, 0x0, 0x0, 0x30, 0x0, [{@multicast1}, {}, {@initdev}]}})
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="b6bd375f0080"], 0x14}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$video(&(0x7f0000000000), 0x485, 0x40000)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x48c00, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000400)={0x2, 0x5a6b9e18ff896410}, 0x4)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0401273, 0x0)
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000000)={0x0, 0x0, 0x8})
fcntl$lock(0xffffffffffffffff, 0x26, &(0x7f00000000c0)={0x1, 0x2, 0x9, 0x401})
syz_open_dev$dmmidi(&(0x7f0000000140), 0x1, 0x8000)
write$rfkill(r2, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)

4.039766492s ago: executing program 1 (id=2208):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=@newtaction={0x168, 0x30, 0x1, 0x0, 0x0, {}, [{0x154, 0x1, [@m_ct={0x44, 0xe, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x0, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x3}}}}, @m_nat={0x10c, 0xd, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0xed, 0xc3ca, 0x5, 0x93, 0x9}, @dev={0xac, 0x14, 0x14, 0x17}, @multicast1}}]}, {0xba, 0x6, "1c7d8fba78e2349fdcc91edfde8ec15cacb551549f53eb7712a9155a11e4354381dee22879229d58ba7a92ec44e3aef0d874ecf719e2492e1df4786168fe6f0a9c22c9ed3eefc164039c7f144bc2c740812e621140e2e8fa7d915cb0b2526185553114f19652c205e3c68feef540b4e7350df0240802617f2eb96233440aa26bb27ffb1b9a831faf7c3df255df586b559ccc0cf269bba5b3455da6103a1714a234ce6c2d162c5c90a143eb400e5536131102ddd3826f"}, {0xc}, {0xc, 0x8, {0x1, 0x2}}}}]}]}, 0x168}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x20401, 0x80}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x6, &(0x7f0000000380)=0xf725)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000540)=ANY=[@ANYBLOB="4001000010003306000000000400000000000000000000000000000000000001fe8000"/48, @ANYRES16=r0, @ANYRES16=r0, @ANYRESHEX=r0], 0x140}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
openat$cuse(0xffffff9c, &(0x7f00000001c0), 0x2, 0x0)
sendmmsg$unix(r2, &(0x7f0000000fc0)=[{{&(0x7f00000005c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000840)=[{&(0x7f0000000640)="66eb4ee9ee51", 0x6}, {&(0x7f0000000680)="66b23c0f6910dbb8879cecbdf7da1c990ef0449f71cffc2d68d02ebd26e04e7fc737fe036dd9c360f2d63b3338bedf71dddb3119d7df773c676a75effaa90b65749f8c93cba7416252707047c8f70745d444d47583b45ba74c045a5aa9addfc9851417c8bd754e3abc47c28579b6b73f50fb6f17b206c82c8522f7aab80adb7b4fdd7d6c897df9b2567b05c9a4f9bdca4ed2b88773400f40ab6f4d1a858318b87e0f47a9ace6c46aa4eff2931746d8c22628c1df205a936c4c919971a1290f61e6b301ed718af07e44eafb9305ddee3de2b08c", 0xd3}, {&(0x7f0000000780)}, {&(0x7f00000007c0)="4249c0f256a0f251514a6ce8759f45f10cd60000cc83ca6f64c8d3d04941c0eb01b7d910f7f75486e71e0f0b29f416a003628c23201c43e9920ecdb1acfb1cc7dcd300cefab7f01c7e1129ecc7117fc50dce6b6a524d4f7d9c507af57f4bc540f1bdb6", 0x63}, {&(0x7f0000000b00)="e09d56054865675f9e317a2802bdee7bcba419c77121062cf6352a16ffbec9ea38f4b53c2620b8917ffbb0e4731d21d0ada94a3aafc97c33065962627052c98eb1390d8fb65b8bcdc0ba857727bc8e05318d054469", 0x55}, {&(0x7f0000000980)="c56ea39adf7321134e6adcdcbce976e4121e25bb4564e60cf705b7ccca77ce8b9f0b734c2bbb9c1ef1fc9ffffe8a6d0127a39a9ceefbc8d998f2db2bd5d0c8d0864dca0d166ea7b29e58116852a1d667f7fd8def57ecb3bccef0cce03cb8f1b190c87a88fa0fd5b5bccaea8186e8284a10921b21b286609dc86d79db17a3d9bb8cb1aeb30f656f6d7a0d083148a9211bfdb1a09a1cb09c4306d90a37cd66fe7413b35a5b1bf319272ef8a2ef5cc85f8af411c564e8a1", 0xb6}, {&(0x7f0000000a40)="59f81cd1966bcd4aed1b687ab2d3c1e17de0283081fdbfb39321e70edada63f9293854aef61de5f94f2a6d0a536ba198e5a74da8898ddc25dd95959a2f313b6c8d6b276795d3c8342b2f7472d1c7f479d119980f10a8310935dfea63d77a67e8933f516071441e3017797f65f244af910b1c7f8940c50947e6cdf9c6e272db6eed6b", 0x82}], 0x7, &(0x7f0000000c80)=[@cred={{0x18, 0x1, 0x2, {r0}}}], 0x18}}], 0x1, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10138, 0x2, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f00000002c0)={0x40042700, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r4 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000040)={'macsec0\x00', @multicast})
write$tun(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="080008000201095bb54b3a066fc2497ce300680000800900456f005900660000401190780a010102ac1414aa4f204e2200459078c10200006279cb22459ff50866ff829694a603d3c443eead410baf7b350c12fa15932138ee8f6a6d2afdde33d5a4298b32860f"], 0x67)
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000080)=ANY=[@ANYBLOB="000000000000000014030000"])
symlink(&(0x7f0000000880)='.\x00', &(0x7f00000008c0)='./file0\x00')
mount$nfs(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="0910220000f20000"])
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r6 = socket$inet(0x2, 0x3, 0x4)
setsockopt$inet_mreqsrc(r6, 0x0, 0x27, &(0x7f0000000040)={@local, @dev={0xac, 0x14, 0x14, 0xb}}, 0xc)
setsockopt$inet_mreq(r5, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8)
socket$netlink(0x10, 0x3, 0x0)

4.002606829s ago: executing program 3 (id=2209):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00'}, 0x10)
r0 = io_uring_setup(0x21dd, &(0x7f00000001c0)={0x0, 0x1fffff, 0x0, 0x2, 0xd5})
io_uring_register$IORING_REGISTER_FILES_UPDATE2(r0, 0xd, &(0x7f0000000140)={0x7, 0x0, 0x0, 0x0}, 0x20)
set_mempolicy_home_node(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x3, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE2(r0, 0xe, &(0x7f0000001180)={0xfff, 0x0, &(0x7f00000000c0)=[{0x0}], &(0x7f0000000180), 0x20000107}, 0x20)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000500)
socket$inet_tcp(0x2, 0x1, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r3 = syz_io_uring_setup(0x3aaa, &(0x7f0000000640)={0x0, 0x3228, 0x400, 0x0, 0xfffffffd}, &(0x7f0000002000)=<r4=>0x0, &(0x7f00000002c0)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x22})
io_uring_enter(r3, 0x48e9, 0x0, 0x2, 0x0, 0x0)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000dc0)={0x0, 0x6, 0x1, 0x3, 0xc, "00623a7d8207feffffff001000"})
syz_open_pts(r2, 0x0)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x12}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0a00000004e80000ff0f000007000000000000b791700cb2e82dfbb60b00cef93c0229bc0ef26f825f231f29c1bc58a5fd857c5d2f59f75a72c45a01db53f523ff231c5cc355a72f21f99fa4f05c2d1e171de79d4190ea7720cf95d35311900bbce3cec30891b8bd69380ee189353d33ae46f9588f100813a1e628fd9461a2a62d0fb29c714b158d8e373e80eb17", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000f7000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000bdb200b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r8, 0x2000000, 0xe, 0x0, &(0x7f0000000500)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x10001, 0xd0, 0x0, 0x0, 0x0, 0x0}, 0x50)
close_range(r6, 0xffffffffffffffff, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r9, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
r10 = dup(0xffffffffffffffff)
write$FUSE_DIRENTPLUS(r10, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_GETXATTR(r10, &(0x7f0000000480)={0x18}, 0x18)

3.146684884s ago: executing program 3 (id=2210):
syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00')
socket$inet6_tcp(0xa, 0x1, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = openat$tun(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000002280)={'pim6reg0\x00', 0x2102})
ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000080)={'pimreg1\x00', 0x400})
ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000480)={'macvlan1\x00', 0x600})
openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x40, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000009780)={0x2020}, 0x2020)
write$FUSE_DIRENTPLUS(r2, 0x0, 0xfffffffffffffd05)
mount$9p_xen(&(0x7f00000000c0), &(0x7f0000000140)='./file0\x00', &(0x7f0000000200), 0x4000, 0x0)
mount$tmpfs(0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0)
read$FUSE(r2, &(0x7f0000006380)={0x2020}, 0x2020)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x24c01, 0x0)

2.636459652s ago: executing program 0 (id=2212):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a3c000000090a010400000000000000000a0000040900010073797a3100000000080005400000000209000200737997310000000008000a40fffffffc14000000110001"], 0x64}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000000)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}, @NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xb}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x64}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
close_range(r0, 0xffffffffffffffff, 0x0)

2.089893619s ago: executing program 3 (id=2213):
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r1 = syz_clone3(&(0x7f0000001880)={0x100000200, 0x0, 0x0, 0x0, {}, 0x0, 0xffffffffffffffae, 0x0, 0x0}, 0x58)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_int(r3, 0x6, 0x25, 0x0, &(0x7f0000000080))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x3, 0xfff, 0x0, 0xb49, 0xc, 0x8, 0x0, 0x3}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
madvise(&(0x7f000003e000/0x3000)=nil, 0x3000, 0x14)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r6, 0x8910, &(0x7f0000000000)={'vlan0\x00', @ifru_ivalue=0x8})
ioctl$sock_netdev_private(r6, 0x8914, &(0x7f0000000000))
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB='fd', @ANYBLOB=',rootmode=00000000000000000040000,usep_id=', @ANYRESHEX=r2, @ANYRESDEC=0x0, @ANYRES64=r4, @ANYRESDEC=0x0, @ANYBLOB="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", @ANYRES32=r3, @ANYRESHEX=r0, @ANYRES64=r3, @ANYRES16=r1])
r7 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r7, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x5, 0x7a880bb668777da9}, 0x9c)
r8 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x3, &(0x7f0000000200)=@framed, 0x0, 0x5, 0xe2, &(0x7f00000002c0)=""/226, 0x0, 0x0, '\x00', 0x0, 0x25, r8, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0), 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14}, 0x94)
r9 = epoll_create1(0x0)
r10 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/stat\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r9, 0x1, r10, &(0x7f0000000040))
epoll_ctl$EPOLL_CTL_MOD(r9, 0x3, r10, &(0x7f00000000c0)={0x60000005})
dup3(r5, r4, 0x80000)
read$FUSE(r2, &(0x7f0000002100)={0x2020}, 0x2020)

2.082162375s ago: executing program 0 (id=2214):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$gtp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$GTP_CMD_NEWPDP(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)={0x24, r1, 0x1, 0x0, 0x0, {}, [@GTPA_LINK={0x8}, @GTPA_VERSION={0x8, 0x2, 0x1}]}, 0x24}}, 0x8000)
r2 = socket$inet6(0xa, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x4, 0x0, &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x32, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0a00000000401400e27f000001000000000000"], 0x48)
bpf$MAP_DELETE_ELEM(0x2, 0x0, 0x0)
bpf$MAP_LOOKUP_ELEM(0x3, &(0x7f0000000000)={r3, 0x0, 0x0}, 0x1c)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000280)={@mcast1, 0x800, 0x0, 0x103, 0x1}, 0x20)
setsockopt$inet6_int(r2, 0x29, 0x1000000000021, &(0x7f0000000000)=0x5, 0x4)
chdir(&(0x7f0000000140)='./file0\x00')
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
socket$packet(0x11, 0x3, 0x300)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_CHANNEL(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000240)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01002abd7000fccbdf250900000005000700000000000800010001000000050008"], 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x20010)
r6 = socket$inet_sctp(0x2, 0x5, 0x84)
sendmmsg$inet_sctp(r6, &(0x7f0000002b80)=[{&(0x7f0000000000)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000001440)=[{&(0x7f0000000040)='@', 0x1}], 0x1, &(0x7f0000001480)=[@prinfo={0x14, 0x84, 0x5, {0x20}}, @sndinfo={0x1c, 0x84, 0x2, {0x0, 0x2}}], 0x30}], 0x1, 0x40)
r7 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r7, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
setsockopt$MRT6_DEL_MFC_PROXY(r2, 0x29, 0xd3, &(0x7f00000001c0)={{0xa, 0x4e24, 0x81cf, @local, 0x9}, {0xa, 0x4e20, 0x2, @private0, 0x400}, 0x0, {[0x400, 0x4, 0x2, 0x4, 0x8, 0xb3, 0x2, 0x6]}}, 0x5c)

2.001194285s ago: executing program 0 (id=2216):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r0 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000000)={@remote, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0xc)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="380000000314230c2abd7000ff05df250900020073797a310000000008004100727865001400330073797a5f74756e"], 0x38}, 0x1, 0x0, 0x0, 0x8845}, 0x4000)
r2 = openat$sr(0xffffff9c, &(0x7f0000000080), 0x80000, 0x0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000000440)={0x53, 0xfffffffffffffffc, 0x0, 0x3, @buffer={0x0, 0x29, &(0x7f0000000040)=""/41}, &(0x7f0000000200), 0x0, 0x0, 0x1, 0x1, 0x0})
r3 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r3, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r3, &(0x7f0000005140)=[{{0x0, 0x0, 0x0}, 0xfffffdef}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)=[@ip_tos_int={{0x10, 0x0, 0x34, 0x1af3}}], 0x10}}], 0x2, 0x0)
r4 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_GET(r2, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="100027bd23000000df250400000006001b004e21000006001d0000000000"], 0x24}}, 0x4080)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000700), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000100)={<r6=>0xffffffffffffffff}, 0x13f, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_BIND_IP(r5, &(0x7f0000000180)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e21, 0x10001, @local, 0xb}, r6}}, 0x30)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r8=>0x0})
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000400000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', r8}, 0x94)
r9 = getpid()
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(r10, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r11, @ANYBLOB="010026bd700000000000695b1cf60e00010000000000000000696d0000000f0002006e657464657673696d30000008008b00", @ANYRES32=r9, @ANYBLOB], 0x3c}, 0x1, 0x0, 0x0, 0x4040010}, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r5, &(0x7f00000002c0)={0x4, 0x8, 0xfa00, {r6, 0x5}}, 0x10)
mount_setattr(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x100004, 0x10001d, 0x40000}, 0x20)
write$RDMA_USER_CM_CMD_CONNECT(r5, &(0x7f0000000380)={0x6, 0x118, 0xfa00, {{0x1, 0x8, "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", 0x0, 0x4, 0x5, 0xf, 0xd, 0x0, 0x6, 0x1}, r6}}, 0x120)
ioctl$int_out(0xffffffffffffffff, 0x2, &(0x7f00000004c0))
write$RDMA_USER_CM_CMD_NOTIFY(r5, &(0x7f00000000c0)={0xf, 0x8, 0xfa00, {r6, 0x4}}, 0x10)

1.916059157s ago: executing program 2 (id=2217):
inotify_add_watch(0xffffffffffffffff, 0x0, 0x400017e)
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'pcl812\x00', [0x4f27, 0x5, 0xfffd, 0x4, 0x5, 0xcc7, 0x8, 0x8, 0xa, 0x100, 0x2, 0x3, 0x1, 0x1, 0x6, 0x101, 0x0, 0x1a449, 0x3, 0x40000003, 0x89, 0xcaa7, 0x0, 0x20001e58, 0xb, 0xe69, 0x7, 0x8, 0x6, 0x0, 0xfffffff8]})
ioctl$COMEDI_SETRSUBD(r0, 0x6410)
openat(0xffffffffffffff9c, 0x0, 0x515001, 0x408)

1.914978529s ago: executing program 2 (id=2218):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x3, 0x5, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x3a8bc000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
set_tid_address(0x0)

1.724797894s ago: executing program 1 (id=2219):
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xb, 0x4, 0x5, 0x10007ff}, 0x50)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000105002, 0x0)
io_setup(0x226, &(0x7f0000000000)=<r4=>0x0)
io_setup(0x4fd, &(0x7f0000000040))
r5 = openat$vmci(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r5, 0x7a7, &(0x7f0000000080)=0xb0000)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_SWAP(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, 0x6, 0x6, 0x801, 0x0, 0x0, {0x2, 0x0, 0x7}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4081}, 0x40890)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r5, 0x7a0, &(0x7f0000000000)={@my=0x0})
ioctl$IOCTL_VMCI_CTX_GET_CPT_STATE(r5, 0x7b1, &(0x7f0000000140)={0x0, 0x5, 0x0, 0xc})
io_submit(r4, 0x1, &(0x7f0000000240)=[&(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x2, r3, &(0x7f0000000a00)="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", 0x200, 0x200}])
syz_usbip_server_init(0x6)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, &(0x7f0000000040)={0x0, 0x8, 0x0, 0x4})
socket$netlink(0x10, 0x3, 0x15)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
ptrace$ARCH_SHSTK_UNLOCK(0x1e, r0, 0x0, 0x5004)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000140)='syzkaller\x00', 0x6, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)

1.476265012s ago: executing program 2 (id=2220):
r0 = socket(0x3, 0x4, 0x0)
sendmsg$inet(r0, &(0x7f00000018c0)={&(0x7f0000000080)={0x2, 0x4e22, @loopback}, 0x10, &(0x7f0000000440)=[{&(0x7f0000000180)="f9920cf983b697abaf96", 0xa}, {&(0x7f0000000880)="a8cd8f0fccb2baf14d811a21d4d6f9ef512b3c7a6e616faf09b345f7968042fe48536d11686c363e68d4089c32c422fe8ae58d86f3d98b2574c2f9eda14a9f86c93908fd1f409aaf170cac9c84ac01291f14ca6cb8fad353ddf35468f02c908b097bb543311f9c56ca23ec228b138062879a9b1f5dbabd07945852c90aad461a5cd605b585a4ae9204df4b96e724b93d8e09c5542dc3296fcbbfcb81a9f7221263da7cb2c8eac338f3275c5c6655fd4210a8f8d050dee44dc3b8584a03e47c83a2f664361c4739b5133cdcbff0911616ba99e4f1e99c261edddc76374bdace7641af9dacae5b8c9b43e6367d3a7fd222a1f285abd600659eb44c59e5a68de4cf130172b5be106523d2c63d3f5cc9e97c56aa9c0f46dda9f0efdcf670fb2b4920d595ba4de782476823ef17bb3f0b673f88d267bedddb18a9222fd93b1fa2b0a438a107851ecb691c5d8e03ead108d4316c98088f8eb3b2426b3780a3255a16e800e53b8dd1df8bb664bf6f8e0c6685071a4a5364e5b17d98fa07c85b20cfdb0c17566604fcced863431a929a0fe385d80f02cad830194da29a31facaf9d148d66712bcbf8b0f0527b65329a1edc33f807721e62cab3a018c4f4b8f3d26c6d814592bbbb25a35d2aaecc896765a23603d1685963c01905f5c745e2d5cdd923ad27c7e13ff554bc445e39a74f12eda7bd5b5c170aa8fb9e728bd761c2c4d66a87a0aa7dd0f26e6c77c967bdefd9b8373720e26c6fcb381e8b3145e531c22728ead14a79d21cf89bb89332dc1ad17e2b8afb93c05422e2998a311845bceda24e4f055c3133117d0df02c12722d8116b606d1643589f27cd37fec8f3519f90dc2e7cfffba7d44249a400c3865855791e4a68143c5faaee408f946aa9b6050f4e65cd5b875cbcd11bf0e56d03a3fa2043cd65f2a4dd5ade88f34c253d0734e5af6a4e111800e918cac865ae47ce7e77fbfa67eb317e74ba5f62e21b0bbc1ace7d4e49fc2c64184c4890ccaf3c6e1a51a7285faef44b186c183d66033e91a124a03dbd131c3a1ce0b023633cc0f4158096d0c8db41d340c27eba9004ae1b1de950ecdeb03173389453f1db4f1ad382814ba8b82302782dee0a338b35eec5e1e217061669735de243ec36fbf0f01d44ad38884847f99887bdf5a79866a9650d88e658f95f57e8b39dbbc5db894702954dad4685e3db6fe9317c6e934e1b0cc866f63b736e88f817b08df009c50533ad68795984269c0beeb2ec3993dcbaf65480c23e20fece8a462d35a9b2848165f511768eeda0c2463a98e9c51215473fc39dd0e80606fa2afb2548a450db2927d93cbae1d6e71aa88e9dcb0d349d2feaf3d98ee4fa4c26be50544516c6a28a9ac881538469944f914ac9c9e18bd378978fea2cb340b615f948e7447b808095d9a184a9794cbfdef46b352e52be95368beee6c96d37db98015f4fc8a571e32e4f08e128d16400965e1f7396df4126de58f948595f01e4deb5d262c0b52053cb65200442551d9bffb05f73a249aa5a1d4dfbd6e70a04c75af8eed2823b8a33da9b93e703bb0ebbcf01786c85e38252a5734ffbf628512dc0ea96cff9f9050e2c18a74cd9694a9a3584ab98984004671821551ff6266d2cc4bddb786d756cc19e680e363872f85d0311b970c5d8ba37e0503f1af567e3b1b3f35e0a77eb87393720502ffd3efe495f9a51c95c466d442dc8b7b66a36e0d28fefead741cbd1baf684641123f7f837abd1ad91e3da80705890aa17e620e0f0f00c6265b9af4f8e7772b7d2b792a6e5946fd8d0db91a1bd88cabe51eef88a65bfc70d36fe94010563b502eae0305868590cbbbeb2abc07d9f491d862f72ce9165aeaa6803638f7d94f9a9a070b90ef630f721eaa027b85ee56d8ac142ff6939d61b91109706856a4e33cd92a6b0e6469a9bbb6c8d1240394ef784e4d4e26b3f2f0896cb5e60339c2527f59aa4ae4b54a5eed8a103852ff4d40efabf52efd2bef818c898ce9431f5855ccf8ea73f6e67c54b7bd02006db1626abf0f48f32d14f45b7af7435a1610239759eed607a4bbe219d25da790a3aa246ff86476b71ac8642764adfb9650c7278da31310fef5d7ddd7ea1d611d5a88cb14a04265044f5c7c2f2fee23a965f02d54ea120a5d4c1a3372ba44b2bccc496cd3b1088babe99a00f909420752c6dcae562067933c4e0a50d4e64d943323231f0568e91cedb7d7f26aa6000d4794d4b1768ca700a98061d22af78744a8e37071423e3d654b16f23f078de666520a84e3787f2343a8ebf472e4150bf62559bbcf63d1997ffdd8b7e47f9ea8312fff66e8957d9adb638e3029e4f7b2caa9f8711f41f6f4ffaa6932a097751995623d8fb5af4133c15708bd26e588b6be279ee4f428133b798ac07c860b31dfd0caa39b6b1ba93f3b09deda150be243457b7f3077589719415b2a80ca9b76d1fd47f1967baee4c5fb0b50ce10bee0ee220becd2494cdf927587d1b213ab9f60e4c7e9747f4bf813d9948a1f9d87b62c4bbf5cd3f52156896888985749795361c37b206fcb61e6a0ec6b908f83a6159f167e2709a939d1871af14976f94f826a6a514ed28b55468b288c7132850d33b44db55eaa6dbc17fb091eb89f72a84153124991dae7accf69b68fb970493c849baf807de3118f6d9e02dc5f47f0f3c774e54645afe71f827f9c75845e58b03b89d2ed37c96b7a6dd081f84ca48b049b77e903a1d1b0b9ec0e009089cc3212b62f1c00e82be68e4b5553b7eaa61edff68227168e43d821013da677ff2a1631b1faa104ce488ad369e67d61cdd1da9e68982958a54192e6b24164260074dfa825870a40374ed75b4ae9f4f837405f9d487dd7651b35381635ba067c6e4e16cb58916152794bdf2e4b410706b98e7b088f098651df707b5f002c911d447a712bc70b02772544dfc3c66d68073404a6e844013567355e874c4ce28600d9174ed35ce377c4ea09e73ba7bb9f67e8ed51b4fb676da3a57c0f47ce22484538ec122cfd040fee830ebea8b54b159019ba69428e9bee665d1c4931e6f0ca50d6a01cd7415bb8186964a55ff8af5d544d76c8fec048c167c1e93fe8217e8a126a2ecf728be010dc742323fee741591792c8d3b0092c812685db9465a18f0e4fbc5d8a33ebfcb780c24da7a9ba713b7f3fe3a9b4e9f32a906ba6de086e455a0b91e7b6c241334221c9c49389dba1ebcd68a11c54b1baf947dffcee189f1c30fda55e35d853f695664a0f6d4b41af44d6e8e44948ab396c14fdd467885d765ae5d0ce8a5d4bc474f59246d902784187bb9e0f15f7fdb452f40d90f3b489c178b8c554c387d6660d22498e9b66eec27a57c2fcb2de4441bb51395945ef4f71402977767517d13726ba879aad55c136bad0ac7265758eb07f305e4e60a55991b6a61f9d508ed1951a056006561ac901f203c7dfef9f41abad06eaf4b9fbeb213bce86d2840cb30dfe20022fa557d33a9d42b1dcc710c5ae29b2a76bdfe3589dd10287dc05684ba8acff09976af1f3b45b6d87ad4151b8d1430d20b96d3a2956e6cfdd8893d53ecce05259c7214bd8f04d96a01cfc523a2a36e3f37a7e7f87dc3275899ac3c273cdcbe163c67b397de2d41b93c43e2c6a8b1d13ba22306e88e82744010f260b434c3e2a5d88b7d17edad828b7ab5cf2e5651d2a47253d8b43dc7788307da73b8f08049a32e4fc4eae7eb9b00914e20c05addb28578194d120f54ed8a5d9b81b7fa59434ad187791305677f9a7f28ef4115788f63af2f9bd825253ff5b1dae2c70813794752e123702b198eaaac685a480170c5f53f752930d4f02db1b16b34c82b9609700c23061a78a8914bbe8877f6420b1939c0167738a2b8fc62ed3f9c414d59cacb15604853e6e3deabcf11e83f43a0f0a1b52d941f2be15320da48482ad60e9bc61d60965d986ab3436a687641e0024a24b99bf42ba6312a7c57f9f88325b06ab07176965b0d0f3c53e6d5adcff04f441bcf82c2cc88c3280792e081a29220bef6151cbeadfc4675727aab41ffe7dec99d12b812616c8d66a107e6dae262796e6fedaaf093d3f99d0394cc268f6784fd48710fd8b5adf7c6f0e3efd46029b141537c4dce68075cc27ccef226344dbba92190490c5178b3c58c8324fcac8965d2b4d03f561ff0a1df20e71159be0d385353578e29bf87b7a6e4f6e5e5c1a9d3955ddff6e31657796d5c7ddf4f78e3e1aa9e056b17fd2f7a4009b30f068b68adb393e496738aa450c2c48844988849405eafb220b5e26e5045d881d7fe0291e3f7f00616d9253f4b1dd01fd33c63e5a67d4b12bc1f48705553206caa34a621c2036c1e0f1828d57a5d4749c8065365c1dae06e6fac20381d38ba133c596759bf3fde917fa1fd123e9ba2dca7fb0fb7c2f3c98ce8be541c68444efcb8ff2dcdec04660f2676a26646f86870cd0a7d86d1b8a517d4a36e57fa5237b0d1f4636b259b39af25a7b6e2efb00234c6b67d12fbece37682355dea7b9cd36e2ea75bf8306081ad0e60f9fefa3f4042525353fe5c0a4407a8f493e76925e6fa5ac9493f56dc81a21b7810ab22b7383217a5409e5c590d772c09f26a4504cbf8fe9749d2272b7b257f7e1d65ae15bf31a2501c04f81162c27f6f99b0e345749e6b0ca19bc388b191d590e1fcfdfbf140db20007257d937653047ae156cfccf3b539c68faee178a6e18d797f102a011a9e4a076b23afcc4839548bbe0d2dd4a87e50a53ac308cf041b6c3920317c908cbfc7c9d084a60f50c269fccde655f75ea24d2d21d5289112a224656becfacaeb672fae02f1810be0104521cd490c24f616850302df1822a1cad30b17e944d380c5da0e4b2b0416bbb71f130790af643e3b669489dd0f10200353031a460ee177eb02e8e39c2cd7339bf6fcd87659c47271c35b6cc6ccbf7eef83bc78d856db9b321ea30ce3c9e4e917ad0260771139b280777cef1dfafd55a4694104e2dc1d2bd1e33e5057b48bcc432d0f7d12b3b98e42e4fda82d6ace1a2199f603b8f032c85f82a19daef16df3fba951898a3e1f2d6269ccad307b5b82e49469f2882c87aaf8bcc8049a48c1df585160611310c5320af6f092465cee15af620ec0ba396668e206e54940be03e10f79932e349f04ae0cafe0d81003b670ce54bde18fc367f492788b7789a9d9bce496bb7ab12f01858ea191ca333842ecd1a2c289731d80b1867bbb5f107d1f09ac9ce69cfb64e617466c5faa4f28fd3eb5d6f036e15add2ebdec5200b91997eeabf894c9ae8afead07eddfb7b3e28dc9ab062d51380ce0c143299bb878512e3cc926693c2e0bc1e8aa884555669764e733931b215b8744761de8489c9ddc3265890a47f8ceb00300165792c1566fdf5ca252ccef2106b7deb37824e368c1ab48996ad87c96076fe874f42696fb671b9fab8cb403b50db1409", 0xf00}, {&(0x7f0000000240)="a60e040233cbded3b24fec041c804b57", 0x10}, {&(0x7f0000000340)='os', 0x2}, {&(0x7f0000000500)="dfa6fe0bdeac2bd919ef32e4e46c6a74a7f0bfd56d464b4e4aae166aaaff2aca60d37d9d2dfcb49cf92efcfb2ca9ba713811d11157c3cb9d791a1366eadef3bce4128f7bfd9e66d92633ad1a92c9acf18ec6a044496c028531258052fee502e1b091db0a805f764f73c6bc090a40903f1b71e39ee35dfe84ce806cf381456842499e4dd4bf7f75297d11", 0x8a}, {&(0x7f00000003c0)="0ce8c25a0d5eef5077", 0x9}, {&(0x7f0000000680)="440e1564683fe2e797311a54cd7efa4af85f66129b75718d2e40253128956abf8f2f67d8c16adee736c3eb32b3f339ca83e5d55c318f65d3febd2b6ff116bf73e717100634029a6cc532dc75d4cde5509c1358201bc955a4d2a4c7d67a1c5c773c657ef38b26974ee2a00a1435defc5aff17f9d476e0d6007158d8413f17e4fc09113b5d84126daa0def9482da6562a0015787f42ad6d204ec6f6624526ae7f6b3f7e9f5c21426da8ebefdf2ca8e47f89d268fd8e832d308c1d13d0d4f46e5498d35456118800597b615", 0xca}, {&(0x7f0000000780)="f9b6e11c8eb5d232c8c6ada542698e6c2f38d0aae3d6c01e56a2099faece63df0621034715a6b357151020ba4f021cb9a21de316ed69a20f7ea75be9b2423ea138a17ee01a1b0fd9e39fd30a539901d2c692a2a85431e7ab5a8fd07e310e6a360f31644ab97cd0a64c03d5a5e7a55fc655b7dafb9a2ef1a2c8f5c29e5dca3ffaee41a160b34e76dc033210d128f8897f85fd764cdff780303391d1cf5fdacd6d4e4e1cdba6113bff887d951909c364d015a258e2c160d9", 0xb7}], 0x8, &(0x7f0000001880)=[@ip_tos_int={{0x10, 0x0, 0x1, 0x8}}, @ip_tos_u8={{0xd, 0x0, 0x1, 0xb}}], 0x20}, 0x20000800)
ioctl$sock_ipv6_tunnel_SIOCADDPRL(r0, 0x89f5, &(0x7f0000001940)={'sit0\x00', &(0x7f0000001900)={@dev={0xac, 0x14, 0x14, 0x17}, 0x0, 0x0, 0x30, 0x0, [{@multicast1}, {}, {@initdev}]}})
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="b6bd375f0080"], 0x14}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$video(&(0x7f0000000000), 0x485, 0x40000)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x48c00, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000240), 0x0, 0x40, &(0x7f00000001c0)={0xa, 0x4e20, 0x40, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x6}, 0x1c)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000400)={0x2, 0x5a6b9e18ff896410}, 0x4)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0401273, 0x0)
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0185648, &(0x7f0000000100)={0xfffffff, 0x1, 0x3, 0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0x990903, 0x5, '\x00', @ptr=0x5}})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_sys\x00', 0x275a, 0x0)
fcntl$lock(r3, 0x6, &(0x7f0000000000)={0x0, 0x0, 0x8})
fcntl$lock(r3, 0x26, &(0x7f0000000080)={0x1, 0x0, 0x2007, 0x1fd})
fcntl$lock(r3, 0x26, &(0x7f0000000280)={0x1, 0x0, 0x2f, 0x9})
fcntl$lock(r3, 0x26, &(0x7f00000000c0)={0x1, 0x2, 0x9, 0x401})
close_range(r2, 0xffffffffffffffff, 0x0)
write$rfkill(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)

745.411889ms ago: executing program 3 (id=2221):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$gtp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$GTP_CMD_NEWPDP(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)={0x24, r1, 0x1, 0x0, 0x0, {}, [@GTPA_LINK={0x8}, @GTPA_VERSION={0x8, 0x2, 0x1}]}, 0x24}}, 0x8000)
r2 = socket$inet6(0xa, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x4, 0x0, &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x32, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0a00000000401400e27f000001000000000000"], 0x48)
bpf$MAP_DELETE_ELEM(0x2, 0x0, 0x0)
bpf$MAP_LOOKUP_ELEM(0x3, &(0x7f0000000000)={r3, &(0x7f0000000180), 0x0}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, 0x0, 0x0)
setsockopt$inet6_int(r2, 0x29, 0x1000000000021, &(0x7f0000000000)=0x5, 0x4)
chdir(&(0x7f0000000140)='./file0\x00')
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
socket$packet(0x11, 0x3, 0x300)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_CHANNEL(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000240)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01002abd7000fccbdf250900000005000700000000000800010001000000050008"], 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x20010)
r6 = socket$inet_sctp(0x2, 0x5, 0x84)
sendmmsg$inet_sctp(r6, &(0x7f0000002b80)=[{&(0x7f0000000000)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000001440)=[{&(0x7f0000000040)='@', 0x1}], 0x1, &(0x7f0000001480)=[@prinfo={0x14, 0x84, 0x5, {0x20}}, @sndinfo={0x1c, 0x84, 0x2, {0x0, 0x2}}], 0x30}], 0x1, 0x40)
r7 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r7, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
setsockopt$MRT6_DEL_MFC_PROXY(r2, 0x29, 0xd3, &(0x7f00000001c0)={{0xa, 0x4e24, 0x81cf, @local, 0x9}, {0xa, 0x4e20, 0x2, @private0, 0x400}, 0x0, {[0x400, 0x4, 0x2, 0x4, 0x8, 0xb3, 0x2, 0x6]}}, 0x5c)

636.843871ms ago: executing program 3 (id=2222):
openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xb3, &(0x7f0000000140)=""/179, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.events\x00', 0x26e1, 0x0)
close(r0)
socket$pppl2tp(0x18, 0x1, 0x1)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)=ANY=[@ANYBLOB="140100002e0001b7b70000000000000001"], 0x114}], 0x1, 0x0, 0x0, 0x80}, 0x810)
recvmmsg(r1, &(0x7f0000006b40)=[{{0x0, 0x0, 0x0}, 0x2}], 0x1, 0x40000000, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', @random='\x00\x00#\f!\x00'})
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC(r4, 0x29, 0xcc, &(0x7f00000001c0)={{0xa, 0x0, 0x0, @remote}, {0xa, 0x4e22, 0x0, @mcast1}}, 0x5c)
r5 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
connect$bt_rfcomm(r5, &(0x7f00000001c0)={0x1f, @none, 0x1}, 0xa)
listen(0xffffffffffffffff, 0x0)
syz_io_uring_setup(0xa17, &(0x7f0000000200)={0x0, 0xcc75, 0x400, 0x3, 0x4}, &(0x7f0000000140), &(0x7f0000000280))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="1400000034000701fcffffff00000000017c00000e92d2a51ee9c95592df6907c37102521ed11c296ad340d4b241ff9da63ba73a50417b6ec1f3663a2c85fc661a6f6559e868b38ec0307ad0d0bad8a32207a82835af41a07359ec71a652f3adc94e830ee4f1e11a583504be119e52722789782aaf44ade4663846e3dc6e22a01594d91ff02e9973f0622f12e5100ec602eb5b7967e7efbe268fc5acb50423eb83a03c30dee95b0bfbc18c64c235e2cec6853da93a2d00b2d2f31298eca2a0fc"], 0x14}, 0x1, 0x80000, 0x0, 0x488c0}, 0x4c044)
sendmsg$IPSET_CMD_DESTROY(r3, &(0x7f0000000340)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000380)={&(0x7f0000000580)=ANY=[], 0x60}, 0x1, 0x0, 0x0, 0x4}, 0x20004000)
syz_io_uring_setup(0x110, &(0x7f00000000c0)={0x0, 0x10, 0x0, 0x3, 0x85}, 0x0, &(0x7f0000000280))

580.74183ms ago: executing program 2 (id=2223):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a3c000000090a010400000000000000000a0000040900010073797a3100000000080005400000000209000200737997310000000008000a40fffffffc14000000110001"], 0x64}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000000)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}, @NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xb}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x64}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
close_range(r0, 0xffffffffffffffff, 0x0)

497.708688ms ago: executing program 2 (id=2224):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$sock_int(r0, 0x1, 0xb, &(0x7f0000000240)=0x1a5, 0x4)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r0, &(0x7f00000002c0)="23000000010006", 0x7)
r1 = socket$inet6(0xa, 0x4, 0x7)
socket$nl_route(0x10, 0x3, 0x0)
bind$inet6(r1, &(0x7f0000fa0fe4)={0xa, 0x4e20, 0x7fff, @loopback}, 0x1c)
socket$netlink(0x10, 0x3, 0x10)
socket$netlink(0x10, 0x3, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_int(r2, 0x6, 0x12, 0x0, &(0x7f0000000580))
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000840), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r5, 0x4138ae84, 0x0)
r6 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
rt_sigaction(0x19, &(0x7f00000000c0)={&(0x7f0000000080)="366465f029144d00000081f30fc27f5e06ae0d0fd82e2e460f01d626f00994aff7000000c4c1796f960600000040cd00c4e2f1453c99f340a56544ca0c00", 0x84000004, 0x0}, 0x0, 0x8, &(0x7f0000000000))
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x10, &(0x7f0000000080)=0xf2e, 0x4)
ftruncate(r6, 0x3292e291)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN_LIVE(0xa, &(0x7f00000006c0)={r7, 0x0, 0x0, 0x0, 0x0, 0x20, 0x7f, 0x0, 0x1, 0x0, &(0x7f0000000600)='\x00', 0x0, 0x2, 0x0, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x1e, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x52, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x50032, 0xffffffffffffffff, 0x0)
syz_clone(0x100, 0x0, 0x0, 0x0, 0x0, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="540000000206010300000000000000000000000005000500000000000900020073797a32000000000c0007800800170000000000050004000000000005000100030000000d0003006c6973743a73657400000000"], 0x54}}, 0x0)
r9 = accept4$phonet_pipe(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000001c0)=0x10, 0x81000)
setsockopt$PNPIPE_HANDLE(r9, 0x113, 0x3, &(0x7f0000000200)=0x5, 0x4)
r10 = openat$cgroup_ro(r6, &(0x7f0000000340)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r10, &(0x7f0000000040), 0x55af)

370.929982ms ago: executing program 0 (id=2225):
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000080)='./binderfs/binder1\x00', 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x45, 0x183841)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
brk(0xc00000000000)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0xfff0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x4031, 0xffffffffffffffff, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r3, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000000)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x1, 0x8, 0x0, 0xe}, 0x0)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000100), 0x1c3902, 0x0)
sendfile(r4, r5, 0x0, 0x201f00)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x64, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x38, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @immediate={{0xe}, @val={0x20, 0x2, 0x0, 0x1, [@NFTA_IMMEDIATE_DREG={0x8}, @NFTA_IMMEDIATE_DATA={0x14, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x10, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}]}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x8c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[], 0x54}}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="01000000000000090000000000000c0001010700000000000000180001801400e90073797a5f74756e0000000000000000002e67d414f99e638f22f83f6af639bce0d1545d5c41e20300c5c77bbecfbeee0c1b984a3e3c44253fd426ce627ba18788086a2c27137c3f3956ae38314ea1be5877870e70db56c33a81ed0f0e91f6be299f2d1c873bdbce8d120ea31daf754d040d4d862c1c7927126aa444b56b18b68e8be81fb6279fb57fcdea76d0b2ba593b0fc26b0bbcb1a78d3ed572b408c87ec1d51a4786f755aa04b1811f01c8feeead94b4c3bcb8f9cbbd6a3d1e724c060c1b0fa332de21113b1fa8392d05dee811640941e1b585ddd6c9703dc1509f4d59a67bd33d0c234150691c038251d93ebb1fb689215a88b145ac53c35555a08e7addf4f4196d4c5fbf085ee46ce0cb13543c36a7436b6074dae8f42c7374115772c92c3a89807ff847fc92d43c077cc5ce86a245"], 0x38}, 0x1, 0x0, 0x0, 0x24044815}, 0x0)
prctl$PR_MCE_KILL(0x4e, 0x1, 0x4000)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000100)=0x1, 0x4)
connect$inet(r0, &(0x7f00000006c0)={0x2, 0x0, @dev}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, 0x0, 0x0)

132.379116ms ago: executing program 2 (id=2226):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
io_setup(0x23, &(0x7f00000001c0)=<r2=>0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder1\x00', 0x0, 0x0)
io_submit(r2, 0x1, &(0x7f0000000700)=[&(0x7f00000002c0)={0x0, 0x0, 0x0, 0x5, 0x0, r3, 0x0}])
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000850000000500000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
ioctl$BINDER_WRITE_READ(r3, 0x40046208, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000640)=@filter={'filter\x00', 0x2, 0x4, 0x5b0, 0xffffffff, 0x0, 0x2e8, 0xc8, 0xfeffffff, 0xffffffff, 0x4e8, 0x4e8, 0x4e8, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@dev, @mcast1, [], [0x0, 0x0, 0xff, 0xffffff00], 'macsec0\x00', 'rose0\x00'}, 0x2f2, 0xa4, 0xc8}, @REJECT={0x24}}, {{@uncond, 0x0, 0x1fc, 0x220, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'\x00', {0x4000000000004, 0x0, 0x40, 0x0, 0x0, 0xf8e74ba, 0xfe8c, 0x0, 0xb440adbb44d53f72}, {0x40}}}]}, @common=@unspec=@CONNSECMARK={0x24}}, {{@ipv6={@mcast1, @loopback, [0xff000000, 0xff, 0xff, 0xff000000], [0x0, 0xffffff00, 0xff000000, 0xffffff00], 'veth1_vlan\x00', 'erspan0\x00', {}, {}, 0x88, 0x0, 0x4, 0x8}, 0x0, 0x1dc, 0x200, 0x0, {}, [@common=@rt={{0x138}, {0x6, [], 0x0, 0x0, 0x0, [@local, @remote, @initdev={0xfe, 0x88, '\x00', 0xfc, 0x0}, @local, @private1, @empty, @mcast1, @mcast1, @dev={0xfe, 0x80, '\x00', 0x3b}, @remote, @local, @dev={0xfe, 0x80, '\x00', 0x26}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @private0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2]}}]}, @REJECT={0x24, 'REJECT\x00', 0x0, {0x2}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x60c)
r5 = socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x0, 0x0, 0xd, 0x1, 0x200, 0xffffffffffffffff, 0x8, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x5, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3b}}, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000500), 0x0, 0x48004, &(0x7f0000000180)={0xa, 0x4e20, 0xc, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x7}, 0x1c)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x60, 0x30, 0x1, 0x0, 0x0, {}, [{0x4c, 0x1, [@m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x804}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
io_pgetevents(r2, 0x2, 0x3, &(0x7f0000000500)=[{}, {}, {}], &(0x7f0000000400), &(0x7f0000000cc0)={&(0x7f0000000c80)={[0xd, 0x8]}, 0x8})
r6 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r6, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f0000002340)=[{{&(0x7f0000000d00)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @private}}}, 0x80, &(0x7f0000002380)=[{&(0x7f0000000d80)=""/133, 0x85}, {&(0x7f0000000e40)=""/134, 0x86}, {&(0x7f0000000f00)=""/247, 0xf7}, {&(0x7f0000001000)=""/82, 0x52}, {&(0x7f0000001100)=""/49, 0x31}, {&(0x7f0000001080)=""/86, 0x56}, {&(0x7f00000023c0)=""/4112, 0x1010}], 0x7}, 0x6}, {{0x0, 0x0, &(0x7f0000002200)=[{&(0x7f0000002140)=""/140, 0x8c}], 0x1, &(0x7f0000002240)=""/196, 0xc4}, 0x4}], 0x2, 0x2, 0x0)
lseek(0xffffffffffffffff, 0x9, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x1d, 0x4, 0x2, 0x0, 0x201, 0xffffffffffffffff, 0x8, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x2}, 0x50)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newlink={0x3c, 0x10, 0x44b, 0x0, 0x100, {0x7a, 0x0, 0x0, 0x0, 0x41002, 0x408}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_HELLO_TIME={0x8, 0x2, 0x2}]}}}]}, 0x3c}}, 0x0)

22.8536ms ago: executing program 1 (id=2227):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000140)=ANY=[@ANYBLOB="58000000020605000010000000000000000000000900020073797a310000000005000400000000000c00078008000200000000000000050002000000050001000600000011000300686173683a6e65742c6e6574d3e70000"], 0x58}}, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r6, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000000)={<r7=>0x0, 0x1c, &(0x7f0000000100)=[@in6={0xa, 0x4e24, 0x0, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010100}}]}, &(0x7f0000000180)=0x10)
setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r6, 0x84, 0x10, &(0x7f0000000140)=@assoc_value={r7}, 0x8)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r5, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r8=>0x0]}, &(0x7f0000000240)=0x8)
getsockopt$inet_sctp6_SCTP_RTOINFO(r4, 0x84, 0x0, &(0x7f0000000000)={r8, 0x55e, 0x0, 0x3eae}, &(0x7f0000000040)=0x10)
r9 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r9, 0x40946400, 0x0)
r10 = dup(r5)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r10, 0x10, &(0x7f0000000280)={0x8, 0x0, &(0x7f0000000100)=[{&(0x7f00000000c0)=""/39, 0x27}, {&(0x7f0000000900)=""/4096, 0x1000}, {&(0x7f0000000540)=""/235, 0xeb}, {&(0x7f0000000640)=""/216, 0xd8}, {&(0x7f0000000300)=""/131, 0x83}, {&(0x7f0000000740)=""/180, 0xb4}, {&(0x7f0000001900)=""/184, 0xb8}], &(0x7f0000000480)=[0x9, 0x1, 0x4, 0x9, 0x7, 0x8, 0x3fc000000000000, 0x2, 0x3], 0x7}, 0x20)
ioctl$COMEDI_DEVCONFIG(r9, 0x40946400, &(0x7f00000003c0)={'pcl818\x00', [0x4f23, 0x0, 0x1, 0x0, 0x1, 0x5, 0x8, 0x3, 0xa, 0xfd, 0xfffffffa, 0x1, 0x1, 0x1, 0x6, 0x101, 0xf7fffffe, 0x7f, 0x2, 0x40000003, 0x8c, 0xca9f, 0x0, 0x20001e58, 0xb, 0xe66, 0x3, 0x8, 0x4085, 0x0, 0xfbfffff8]})
ioctl$KVM_GET_STATS_FD_cpu(0xffffffffffffffff, 0xaece)

0s ago: executing program 3 (id=2228):
syz_usb_connect(0x5, 0x24, &(0x7f0000000140)={{0x12, 0x1, 0x110, 0x9, 0x28, 0xfc, 0x10, 0x5ac, 0x291, 0x4325, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x40, 0x0, [{{0x9, 0x4, 0x84, 0x0, 0x0, 0x3, 0xe1, 0x2}}]}}]}}, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0xfbc6, 0x10100, 0x8000003}, &(0x7f0000000080)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {0x230}})
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r5 = openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
readv(r5, &(0x7f0000000200)=[{&(0x7f0000003140)=""/4096, 0x8}], 0xe)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x4, 0x8000000000, 0x1, 0x1, 0x8, 0x8004002004c5, 0x1000, 0x1, 0x0, 0x7, 0xe, 0x0, 0x6, 0x0, 0x49], 0xdddd1000, 0x1c7056})
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x481, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(r7, 0x4068aea3, &(0x7f00000006c0)={0x79, 0x0, 0xc})
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x2)
ioctl$KVM_SET_CPUID(r8, 0x4008ae8a, &(0x7f0000000680)=ANY=[@ANYBLOB="010000000000000001000000060000006a34c81fb000cf6f"])
ioctl$KVM_SET_LAPIC(r8, 0x4400ae8f, &(0x7f0000000b40)={"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"})
r9 = socket$unix(0x1, 0x2, 0x0)
ioctl$KVM_CREATE_GUEST_MEMFD(r7, 0xc040aed4, &(0x7f0000000740)={0xb, 0x7fffffff})
recvmmsg$unix(r9, &(0x7f0000003e80)=[{{&(0x7f0000000300)=@abs, 0x6e, &(0x7f0000000240)=[{&(0x7f0000001480)=""/4096, 0x1000}, {&(0x7f00000004c0)=""/157, 0x9d}, {&(0x7f0000000580)=""/204, 0xcc}, {&(0x7f00000001c0)=""/56, 0x38}], 0x4, &(0x7f0000000740)}}, {{&(0x7f0000000780), 0x6e, &(0x7f0000000980)=[{&(0x7f0000000800)=""/139, 0x8b}, {&(0x7f00000008c0)=""/138, 0x8a}], 0x2, &(0x7f00000009c0)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x10, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x18}}, @cred={{0x18}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}, @cred={{0x18}}, @rights={{0xc}}], 0xbc}}, {{&(0x7f0000000a80)=@abs, 0x6e, &(0x7f0000001040)=[{&(0x7f0000000b00)=""/46, 0x2e}, {&(0x7f0000000f40)=""/202, 0xca}, {&(0x7f0000002480)=""/4096, 0x1000}], 0x3, &(0x7f0000001080)}}, {{&(0x7f00000010c0)=@abs, 0x6e, &(0x7f00000012c0)=[{&(0x7f0000001140)=""/96, 0x60}, {&(0x7f00000011c0)=""/220, 0xdc}], 0x2, &(0x7f0000001300)=[@cred={{0x18}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x50}}, {{&(0x7f0000003480), 0x6e, &(0x7f0000003800)=[{&(0x7f0000003500)=""/131, 0x83}, {&(0x7f0000001380)=""/23, 0x17}, {&(0x7f00000035c0)=""/103, 0x67}, {&(0x7f0000003640)=""/224, 0xe0}, {&(0x7f0000003740)=""/191, 0xbf}], 0x5, &(0x7f0000003840)=[@rights={{0x10, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}], 0x4c}}, {{&(0x7f00000038c0)=@abs, 0x6e, &(0x7f0000003d40)=[{&(0x7f0000003940)=""/214, 0xd6}, {&(0x7f0000003a40)=""/31, 0x1f}, {&(0x7f0000003a80)=""/7, 0x7}, {&(0x7f0000003ac0)=""/87, 0x57}, {&(0x7f0000003b40)=""/36, 0x24}, {&(0x7f0000003b80)=""/173, 0xad}, {&(0x7f0000003c40)=""/105, 0x69}, {&(0x7f0000003cc0)=""/5, 0x5}, {&(0x7f0000003d00)=""/34, 0x22}], 0x9, &(0x7f0000003dc0)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x94}}], 0x6, 0x100, &(0x7f0000003f40)={0x0, 0x3938700})
landlock_create_ruleset(&(0x7f0000000040)={0x0, 0x3, 0x1}, 0x18, 0x2)
r10 = openat$mice(0xffffffffffffff9c, &(0x7f0000000380), 0x28000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="180000000000000b00000000000000009500000000001800"], &(0x7f0000000000)='syzkaller\x00'}, 0x90)
sendmsg$IPVS_CMD_DEL_SERVICE(r10, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000280)={&(0x7f00000003c0)={0xc4, 0x0, 0x1, 0x70bd26, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x1000}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x792}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xff}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3}, @IPVS_CMD_ATTR_DEST={0x28, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0xfffffffe}, @IPVS_DEST_ATTR_TUN_TYPE={0x5, 0xd, 0x1}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@loopback}]}, @IPVS_CMD_ATTR_SERVICE={0x68, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x2}}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x1ff}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x2}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@multicast2}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x20, 0x1}}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x18, 0x8}}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0xcece0bed15e085c8, 0x12}}]}]}, 0xc4}, 0x1, 0x0, 0x0, 0x20000090}, 0x40000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='btrfs_handle_em_exist\x00', r10, 0x0, 0xfffffffffffffffe}, 0xfffffffffffffdd7)

kernel console output (not intermixed with test programs):

R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  393.578247][T12639] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  393.578260][T12639]  </TASK>
[  393.979133][   T40] kauditd_printk_skb: 5 callbacks suppressed
[  393.979149][   T40] audit: type=1326 audit(1756721598.591:1271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12646 comm="syz.0.1559" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x0
[  394.073415][   T40] audit: type=1326 audit(1756721598.691:1272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12645 comm="syz.3.1560" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  394.098805][   T40] audit: type=1326 audit(1756721598.691:1273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12645 comm="syz.3.1560" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  394.114356][   T40] audit: type=1326 audit(1756721598.691:1274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12645 comm="syz.3.1560" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  394.121740][   T40] audit: type=1326 audit(1756721598.701:1275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12645 comm="syz.3.1560" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  394.128751][   T40] audit: type=1326 audit(1756721598.701:1276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12645 comm="syz.3.1560" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  394.136785][   T40] audit: type=1326 audit(1756721598.701:1277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12645 comm="syz.3.1560" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  394.143948][   T40] audit: type=1326 audit(1756721598.701:1278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12645 comm="syz.3.1560" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  394.151688][   T40] audit: type=1326 audit(1756721598.701:1279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12645 comm="syz.3.1560" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  394.165094][   T40] audit: type=1326 audit(1756721598.701:1280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12645 comm="syz.3.1560" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  394.460105][T12656] tmpfs: Unknown parameter '"]ŽœÐ^H®›~/�}quota'
[  394.623013][ T5978] usb 40-1: device descriptor read/8, error -110
[  395.169481][ T6048] usb 44-1: device descriptor read/8, error -110
[  395.281148][T12671] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  395.283244][T12671] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  395.293060][T12671] vhci_hcd vhci_hcd.0: Device attached
[  395.336349][ T5978] usb usb40-port1: attempt power cycle
[  395.423519][ T6048] usb 44-1: SetAddress Request (43) to port 0
[  395.425807][ T6048] usb 44-1: new SuperSpeed USB device number 43 using vhci_hcd
[  395.850658][T12672] vhci_hcd: connection reset by peer
[  395.852693][   T13] vhci_hcd: stop threads
[  395.854153][   T13] vhci_hcd: release socket
[  395.856224][   T13] vhci_hcd: disconnect device
[  395.893810][ T5978] usb usb40-port1: unable to enumerate USB device
[  395.913411][T12678] macsec0: entered promiscuous mode
[  395.915210][T12678] macsec0: entered allmulticast mode
[  395.916881][T12678] veth1_macvtap: entered allmulticast mode
[  395.920137][T12678] nfs: Unknown parameter '	"'
[  397.169158][T12695] tmpfs: Unknown parameter '"]ŽœÐ^H®›~/�}quota'
[  397.902939][ T6068] usb 38-1: device descriptor read/8, error -110
[  398.187667][T12709] netlink: 'syz.2.1577': attribute type 1 has an invalid length.
[  398.191250][T12709] netlink: 'syz.2.1577': attribute type 4 has an invalid length.
[  398.196395][T12709] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1577'.
[  398.313395][ T6068] usb usb38-port1: attempt power cycle
[  398.347534][T12714] netlink: 'syz.2.1578': attribute type 1 has an invalid length.
[  398.350069][T12714] netlink: 'syz.2.1578': attribute type 4 has an invalid length.
[  398.354660][T12714] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1578'.
[  398.639481][T12723] tipc: Enabling of bearer <udp:syz1> rejected, already enabled
[  398.767637][T12730] No control pipe specified
[  398.790073][T12731] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1580'.
[  398.878914][T12734] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  398.923488][ T6068] usb usb38-port1: unable to enumerate USB device
[  399.392489][T12738] netlink: 'syz.0.1583': attribute type 4 has an invalid length.
[  399.479702][   T40] kauditd_printk_skb: 43 callbacks suppressed
[  399.479716][   T40] audit: type=1326 audit(1756721604.091:1324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12740 comm="syz.2.1584" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x0
[  399.483669][T12739] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1583'.
[  399.953921][T12759] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  400.476327][ T6048] usb 44-1: device descriptor read/8, error -110
[  400.593453][ T6048] usb usb44-port1: attempt power cycle
[  400.602964][   T59] usb 7-1: new high-speed USB device number 26 using dummy_hcd
[  400.615411][T12772] veth1_macvtap: left allmulticast mode
[  400.617616][T12772] macsec0: left promiscuous mode
[  400.619162][T12772] macsec0: left allmulticast mode
[  400.752905][   T59] usb 7-1: Using ep0 maxpacket: 8
[  400.765136][   T59] usb 7-1: config 0 has no interfaces?
[  400.783570][   T59] usb 7-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[  400.786327][   T59] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  400.788783][   T59] usb 7-1: Product: syz
[  400.790111][   T59] usb 7-1: Manufacturer: syz
[  400.791720][   T59] usb 7-1: SerialNumber: syz
[  400.803165][   T59] usb 7-1: config 0 descriptor??
[  401.014169][   T59] usb 7-1: USB disconnect, device number 26
[  401.093826][T12777] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1593'.
[  401.163446][ T6048] usb usb44-port1: unable to enumerate USB device
[  401.663186][T12789] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  401.665482][T12789] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  401.668175][T12789] vhci_hcd vhci_hcd.0: Device attached
[  401.943271][ T6048] usb 44-1: SetAddress Request (46) to port 0
[  401.953056][   T59] usb 7-1: new high-speed USB device number 27 using dummy_hcd
[  401.983029][ T6048] usb 44-1: new SuperSpeed USB device number 46 using vhci_hcd
[  402.269348][T12790] vhci_hcd: connection reset by peer
[  402.271286][   T13] vhci_hcd: stop threads
[  402.272989][   T13] vhci_hcd: release socket
[  402.274802][   T13] vhci_hcd: disconnect device
[  402.791142][T12811] tipc: Enabling of bearer <udp:syz1> rejected, already enabled
[  402.812927][   T59] usb 7-1: Using ep0 maxpacket: 16
[  402.815749][   T59] usb 7-1: config 0 has an invalid interface number: 132 but max is 0
[  402.818260][   T59] usb 7-1: config 0 has no interface number 0
[  402.821767][   T59] usb 7-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25
[  402.824751][   T59] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  402.827197][   T59] usb 7-1: Product: syz
[  402.828509][   T59] usb 7-1: Manufacturer: syz
[  402.829959][   T59] usb 7-1: SerialNumber: syz
[  402.834233][   T59] usb 7-1: config 0 descriptor??
[  402.836796][   T59] hub 7-1:0.132: bad descriptor, ignoring hub
[  402.838681][   T59] hub 7-1:0.132: probe with driver hub failed with error -5
[  402.842574][   T59] input: bcm5974 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.132/input/input61
[  403.041693][T12817] veth1_vlan: left allmulticast mode
[  403.046775][T12817] macvlan1: left allmulticast mode
[  403.051017][T12817] veth1_macvtap: left allmulticast mode
[  403.053250][T12817] macsec0: left promiscuous mode
[  403.054895][T12817] macsec0: left allmulticast mode
[  403.383132][ T5985] usb 7-1: USB disconnect, device number 27
[  403.784634][T12832] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  403.786743][T12832] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  403.790956][T12832] vhci_hcd vhci_hcd.0: Device attached
[  404.062948][ T6068] usb 38-1: SetAddress Request (42) to port 0
[  404.064949][ T6068] usb 38-1: new SuperSpeed USB device number 42 using vhci_hcd
[  404.376832][T12833] vhci_hcd: connection reset by peer
[  404.379291][   T13] vhci_hcd: stop threads
[  404.387278][   T13] vhci_hcd: release socket
[  404.391835][   T13] vhci_hcd: disconnect device
[  404.806593][T12844] netlink: 'syz.2.1609': attribute type 4 has an invalid length.
[  404.868122][T12846] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1609'.
[  404.998879][T12848] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  405.000980][T12848] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  405.003928][T12848] vhci_hcd vhci_hcd.0: Device attached
[  405.348171][ T5978] usb 40-1: SetAddress Request (26) to port 0
[  405.350323][ T5978] usb 40-1: new SuperSpeed USB device number 26 using vhci_hcd
[  405.573609][T12849] vhci_hcd: connection reset by peer
[  405.575445][   T81] vhci_hcd: stop threads
[  405.577758][   T81] vhci_hcd: release socket
[  405.579406][   T81] vhci_hcd: disconnect device
[  405.700013][   T40] audit: type=1326 audit(1756721610.311:1325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12855 comm="syz.2.1611" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x0
[  406.610280][T12873] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1613'.
[  407.004135][T12876] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1616'.
[  407.147622][ T6048] usb 44-1: device descriptor read/8, error -110
[  407.536167][T12882] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1617'.
[  407.617781][ T6048] usb usb44-port1: attempt power cycle
[  407.742002][T12886] tmpfs: Unknown parameter '"]ŽœÐ^H®›~/�}quota'
[  407.765102][   T40] audit: type=1326 audit(1756721612.371:1326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12883 comm="syz.0.1618" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  407.781618][   T40] audit: type=1326 audit(1756721612.371:1327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12883 comm="syz.0.1618" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  407.794559][   T40] audit: type=1326 audit(1756721612.371:1328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12883 comm="syz.0.1618" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  407.801254][   T40] audit: type=1326 audit(1756721612.371:1329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12883 comm="syz.0.1618" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  407.821505][   T40] audit: type=1326 audit(1756721612.371:1330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12883 comm="syz.0.1618" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  407.836686][   T40] audit: type=1326 audit(1756721612.371:1331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12883 comm="syz.0.1618" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  407.850554][   T40] audit: type=1326 audit(1756721612.371:1332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12883 comm="syz.0.1618" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  407.872917][   T40] audit: type=1326 audit(1756721612.371:1333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12883 comm="syz.0.1618" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  407.881737][   T40] audit: type=1326 audit(1756721612.371:1334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12883 comm="syz.0.1618" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  408.394020][ T6048] usb usb44-port1: unable to enumerate USB device
[  408.826857][T12892] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  408.828918][T12892] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  408.831728][T12892] vhci_hcd vhci_hcd.0: Device attached
[  409.093025][ T6068] usb 38-1: device descriptor read/8, error -110
[  409.133007][ T6048] usb 44-1: SetAddress Request (50) to port 0
[  409.135602][ T6048] usb 44-1: new SuperSpeed USB device number 50 using vhci_hcd
[  409.254738][T12903] tmpfs: Unknown parameter '"]ŽœÐ^H®›~/�}quota'
[  409.484709][T12893] vhci_hcd: connection reset by peer
[  409.487572][   T46] vhci_hcd: stop threads
[  409.488963][   T46] vhci_hcd: release socket
[  409.490416][   T46] vhci_hcd: disconnect device
[  409.503490][ T6068] usb usb38-port1: attempt power cycle
[  409.692037][T12909] can: request_module (can-proto-0) failed.
[  410.063927][ T6068] usb usb38-port1: unable to enumerate USB device
[  410.261339][T12917] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  410.263469][T12917] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  410.272002][T12917] vhci_hcd vhci_hcd.0: Device attached
[  410.382147][T12921] netlink: 'syz.3.1626': attribute type 1 has an invalid length.
[  410.387899][T12921] netlink: 'syz.3.1626': attribute type 4 has an invalid length.
[  410.393192][T12921] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1626'.
[  410.787053][T12918] vhci_hcd: connection reset by peer
[  410.790815][   T46] vhci_hcd: stop threads
[  410.795208][   T46] vhci_hcd: release socket
[  410.799812][ T5978] usb 40-1: device descriptor read/8, error -110
[  410.800471][   T46] vhci_hcd: disconnect device
[  411.203754][ T5978] usb usb40-port1: attempt power cycle
[  411.278547][T12932] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1628'.
[  411.813918][ T5978] usb usb40-port1: unable to enumerate USB device
[  412.526249][T12953] bridge0: entered promiscuous mode
[  412.775042][T12959] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  412.777144][T12959] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  412.780084][T12959] vhci_hcd vhci_hcd.0: Device attached
[  413.053221][ T5978] usb 38-1: SetAddress Request (46) to port 0
[  413.059539][ T5978] usb 38-1: new SuperSpeed USB device number 46 using vhci_hcd
[  413.396142][T12960] vhci_hcd: connection reset by peer
[  413.495926][   T81] vhci_hcd: stop threads
[  413.497746][   T81] vhci_hcd: release socket
[  413.499679][   T81] vhci_hcd: disconnect device
[  414.225692][ T6048] usb 44-1: device descriptor read/8, error -110
[  414.823008][ T6048] usb usb44-port1: attempt power cycle
[  414.869627][T12995] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  414.872672][T12995] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  414.877680][T12995] vhci_hcd vhci_hcd.0: Device attached
[  414.949329][T13009] FAULT_INJECTION: forcing a failure.
[  414.949329][T13009] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  414.996136][T13009] CPU: 3 UID: 0 PID: 13009 Comm: syz.1.1642 Not tainted syzkaller #0 PREEMPT(full) 
[  414.996161][T13009] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  414.996170][T13009] Call Trace:
[  414.996176][T13009]  <TASK>
[  414.996183][T13009]  dump_stack_lvl+0x16c/0x1f0
[  414.996208][T13009]  should_fail_ex+0x512/0x640
[  414.996233][T13009]  _copy_from_user+0x2e/0xd0
[  414.996259][T13009]  get_compat_msghdr+0xa7/0x170
[  414.996279][T13009]  ? __pfx_get_compat_msghdr+0x10/0x10
[  414.996301][T13009]  ? __lock_acquire+0x62e/0x1ce0
[  414.996325][T13009]  ___sys_recvmsg+0x191/0x1a0
[  414.996348][T13009]  ? __pfx____sys_recvmsg+0x10/0x10
[  414.996370][T13009]  ? find_held_lock+0x2b/0x80
[  414.996393][T13009]  ? __pfx___might_resched+0x10/0x10
[  414.996414][T13009]  do_recvmmsg+0x55d/0x750
[  414.996438][T13009]  ? __pfx_do_recvmmsg+0x10/0x10
[  414.996481][T13009]  ? __fget_files+0x20e/0x3c0
[  414.996497][T13009]  ? handle_mm_fault+0x1d0/0xd10
[  414.996516][T13009]  __sys_recvmmsg+0x21c/0x280
[  414.996537][T13009]  ? __pfx___sys_recvmmsg+0x10/0x10
[  414.996560][T13009]  ? __pfx_ksys_write+0x10/0x10
[  414.996582][T13009]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  414.996603][T13009]  ? lockdep_hardirqs_on+0x7c/0x110
[  414.996623][T13009]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  414.996645][T13009]  __do_fast_syscall_32+0x7c/0x3a0
[  414.996668][T13009]  do_fast_syscall_32+0x32/0x80
[  414.996689][T13009]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  414.996707][T13009] RIP: 0023:0xf7fd2579
[  414.996720][T13009] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  414.996735][T13009] RSP: 002b:00000000f54c555c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  414.996751][T13009] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000800000c0
[  414.996761][T13009] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[  414.996769][T13009] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  414.996778][T13009] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  414.996787][T13009] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  414.996807][T13009]  </TASK>
[  415.011566][T13010] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  415.077582][T13010] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  415.083242][T13010] vhci_hcd vhci_hcd.0: Device attached
[  415.217359][T12236] usb 42-1: SetAddress Request (22) to port 0
[  415.219898][T12236] usb 42-1: new SuperSpeed USB device number 22 using vhci_hcd
[  415.395696][ T6048] usb usb44-port1: unable to enumerate USB device
[  415.435042][T13003] vhci_hcd: connection reset by peer
[  415.437994][  T103] vhci_hcd: stop threads
[  415.440084][  T103] vhci_hcd: release socket
[  415.441583][  T103] vhci_hcd: disconnect device
[  415.486813][T13012] vhci_hcd: connection closed
[  415.487413][   T46] vhci_hcd: stop threads
[  415.490843][   T46] vhci_hcd: release socket
[  415.492475][   T46] vhci_hcd: disconnect device
[  416.373139][T13037] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1645'.
[  416.468956][T13040] tipc: Enabling of bearer <udp:syz1> rejected, already enabled
[  416.987758][T13048] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  416.989838][T13048] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  416.995360][T13048] vhci_hcd vhci_hcd.0: Device attached
[  417.431350][T13052] vhci_hcd: connection closed
[  417.431973][  T103] vhci_hcd: stop threads
[  417.432933][ T6068] usb 40-1: SetAddress Request (30) to port 0
[  417.437173][  T103] vhci_hcd: release socket
[  417.437235][ T6068] usb 40-1: new SuperSpeed USB device number 30 using vhci_hcd
[  417.441391][  T103] vhci_hcd: disconnect device
[  418.057881][T13073] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  418.060025][T13073] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  418.063721][T13073] vhci_hcd vhci_hcd.0: Device attached
[  418.133256][ T5978] usb 38-1: device descriptor read/8, error -110
[  418.343513][T10770] usb 44-1: SetAddress Request (54) to port 0
[  418.346515][T10770] usb 44-1: new SuperSpeed USB device number 54 using vhci_hcd
[  418.526048][ T5978] usb usb38-port1: attempt power cycle
[  418.532666][T13074] vhci_hcd: connection reset by peer
[  418.539253][  T103] vhci_hcd: stop threads
[  418.540632][  T103] vhci_hcd: release socket
[  418.544678][  T103] vhci_hcd: disconnect device
[  418.846252][T13099] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  418.848938][T13099] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  418.853864][T13099] vhci_hcd vhci_hcd.0: Device attached
[  419.153958][ T5978] usb usb38-port1: unable to enumerate USB device
[  419.337295][T13105] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1656'.
[  419.391549][T13101] vhci_hcd: connection closed
[  419.392187][   T46] vhci_hcd: stop threads
[  419.396128][   T46] vhci_hcd: release socket
[  419.397959][   T46] vhci_hcd: disconnect device
[  420.143026][T13120] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  420.145193][T13120] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  420.147867][T13120] vhci_hcd vhci_hcd.0: Device attached
[  420.205568][T13123] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  420.207538][T13123] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  420.210146][T13123] vhci_hcd vhci_hcd.0: Device attached
[  420.313033][T12236] usb 42-1: device descriptor read/8, error -110
[  420.665884][T13121] vhci_hcd: connection reset by peer
[  420.669781][  T103] vhci_hcd: stop threads
[  420.671650][  T103] vhci_hcd: release socket
[  420.674030][  T103] vhci_hcd: disconnect device
[  420.702653][T13129] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1660'.
[  420.713427][T13129] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1660'.
[  420.725853][T12236] usb usb42-port1: attempt power cycle
[  420.731533][T13124] vhci_hcd: connection closed
[  420.733641][   T13] vhci_hcd: stop threads
[  420.736561][   T13] vhci_hcd: release socket
[  420.738321][   T13] vhci_hcd: disconnect device
[  421.066691][T13138] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  421.068785][T13138] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  421.071556][T13138] vhci_hcd vhci_hcd.0: Device attached
[  421.293552][T12236] usb usb42-port1: unable to enumerate USB device
[  421.353013][ T6048] usb 38-1: SetAddress Request (50) to port 0
[  421.357374][ T6048] usb 38-1: new SuperSpeed USB device number 50 using vhci_hcd
[  422.356150][T13139] vhci_hcd: connection reset by peer
[  422.358359][   T81] vhci_hcd: stop threads
[  422.359712][   T81] vhci_hcd: release socket
[  422.361489][   T81] vhci_hcd: disconnect device
[  422.481535][T13158] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  422.533049][ T6068] usb 40-1: device descriptor read/8, error -110
[  422.997164][T13165] tmpfs: Unknown parameter '"]ŽœÐ^H®›~/�}quota'
[  423.000484][   T40] kauditd_printk_skb: 18 callbacks suppressed
[  423.000493][   T40] audit: type=1326 audit(1756721627.611:1353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13162 comm="syz.3.1668" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  423.010785][   T40] audit: type=1326 audit(1756721627.631:1354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13162 comm="syz.3.1668" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  423.017710][   T40] audit: type=1326 audit(1756721627.641:1355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13162 comm="syz.3.1668" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  423.025496][   T40] audit: type=1326 audit(1756721627.651:1356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13162 comm="syz.3.1668" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  423.033216][   T40] audit: type=1326 audit(1756721627.651:1357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13162 comm="syz.3.1668" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  423.042991][   T40] audit: type=1326 audit(1756721627.651:1358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13162 comm="syz.3.1668" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  423.050635][   T40] audit: type=1326 audit(1756721627.651:1359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13162 comm="syz.3.1668" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  423.061971][   T40] audit: type=1326 audit(1756721627.651:1360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13162 comm="syz.3.1668" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  423.070993][   T40] audit: type=1326 audit(1756721627.651:1361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13162 comm="syz.3.1668" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  423.082254][   T40] audit: type=1326 audit(1756721627.651:1362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13162 comm="syz.3.1668" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  423.323414][ T6068] usb usb40-port1: attempt power cycle
[  423.400777][T13174] tmpfs: Unknown parameter '"]ŽœÐ^H®›~/�}quota'
[  423.423177][T10770] usb 44-1: device descriptor read/8, error -110
[  423.813554][T10770] usb usb44-port1: attempt power cycle
[  423.884958][ T6068] usb usb40-port1: unable to enumerate USB device
[  424.075673][T13183] macsec0: entered promiscuous mode
[  424.077494][T13183] macsec0: entered allmulticast mode
[  424.079584][T13183] veth1_macvtap: entered allmulticast mode
[  424.084028][T13183] nfs: Unknown parameter '	"'
[  424.373438][T10770] usb usb44-port1: unable to enumerate USB device
[  424.483664][T13192] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  424.485704][T13192] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  424.488470][T13192] vhci_hcd vhci_hcd.0: Device attached
[  425.043173][T10770] usb 42-1: SetAddress Request (26) to port 0
[  425.046228][T10770] usb 42-1: new SuperSpeed USB device number 26 using vhci_hcd
[  425.833313][T13193] vhci_hcd: connection closed
[  425.833629][T13194] vhci_hcd: sendmsg failed!, ret=-32 for 48
[  425.839172][   T81] vhci_hcd: stop threads
[  425.840765][   T81] vhci_hcd: release socket
[  425.843254][   T81] vhci_hcd: disconnect device
[  426.195680][T13209] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1677'.
[  426.452956][ T6048] usb 38-1: device descriptor read/8, error -110
[  426.708549][T13215] tmpfs: Unknown parameter '"]ŽœÐ^H®›~/�}quota'
[  426.859480][ T6048] usb usb38-port1: attempt power cycle
[  427.164704][T13223] can: request_module (can-proto-0) failed.
[  427.441992][ T6048] usb usb38-port1: unable to enumerate USB device
[  427.558750][T13226] netlink: 'syz.2.1682': attribute type 1 has an invalid length.
[  427.560948][T13226] netlink: 'syz.2.1682': attribute type 4 has an invalid length.
[  427.564389][T13226] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1682'.
[  427.920296][T13241] netlink: 'syz.3.1686': attribute type 4 has an invalid length.
[  428.001952][T13242] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1686'.
[  428.434775][T13249] tmpfs: Unknown parameter '"]ŽœÐ^H®›~/�}quota'
[  428.442485][   T40] kauditd_printk_skb: 32 callbacks suppressed
[  428.442496][   T40] audit: type=1326 audit(1756721633.051:1395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13246 comm="syz.1.1688" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  428.451986][   T40] audit: type=1326 audit(1756721633.061:1396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13246 comm="syz.1.1688" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  428.461653][   T40] audit: type=1326 audit(1756721633.061:1397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13246 comm="syz.1.1688" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  428.468396][   T40] audit: type=1326 audit(1756721633.061:1398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13246 comm="syz.1.1688" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  428.475501][   T40] audit: type=1326 audit(1756721633.071:1399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13246 comm="syz.1.1688" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  428.482479][   T40] audit: type=1326 audit(1756721633.071:1400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13246 comm="syz.1.1688" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  428.489370][   T40] audit: type=1326 audit(1756721633.071:1401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13246 comm="syz.1.1688" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  428.496394][   T40] audit: type=1326 audit(1756721633.071:1402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13246 comm="syz.1.1688" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  428.503293][   T40] audit: type=1326 audit(1756721633.071:1403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13246 comm="syz.1.1688" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  428.510390][   T40] audit: type=1326 audit(1756721633.071:1404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13246 comm="syz.1.1688" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  429.158413][T13260] tmpfs: Unknown parameter '"]ŽœÐ^H®›~/�}quota'
[  430.298794][T13271] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1695'.
[  430.540211][T13272] nfs: Unknown parameter '	"'
[  430.573711][T13284] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  430.576888][T13284] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  430.580882][T13284] vhci_hcd vhci_hcd.0: Device attached
[  430.778969][T13289] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1699'.
[  430.923926][T10770] usb 42-1: device descriptor read/8, error -110
[  430.926024][ T6068] usb 44-1: SetAddress Request (58) to port 0
[  430.927962][ T6068] usb 44-1: new SuperSpeed USB device number 58 using vhci_hcd
[  431.326000][T10770] usb usb42-port1: attempt power cycle
[  431.389949][T13286] vhci_hcd: connection reset by peer
[  431.403067][  T103] vhci_hcd: stop threads
[  431.412626][  T103] vhci_hcd: release socket
[  431.422970][  T103] vhci_hcd: disconnect device
[  431.896120][T10770] usb usb42-port1: unable to enumerate USB device
[  432.112173][T13310] can: request_module (can-proto-0) failed.
[  432.501133][T13320] netlink: 'syz.0.1708': attribute type 4 has an invalid length.
[  432.533679][T13321] tipc: Enabling of bearer <udp:syz1> rejected, already enabled
[  432.677761][T13323] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1708'.
[  433.536540][T13332] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1709'.
[  433.739345][T13338] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  433.741446][T13338] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  433.811330][T13338] vhci_hcd vhci_hcd.0: Device attached
[  434.082989][T10770] usb 38-1: SetAddress Request (54) to port 0
[  434.087577][T10770] usb 38-1: new SuperSpeed USB device number 54 using vhci_hcd
[  434.275484][T13348] tipc: Enabling of bearer <udp:syz1> rejected, already enabled
[  434.295946][T13339] vhci_hcd: connection reset by peer
[  434.298131][ T1164] vhci_hcd: stop threads
[  434.300148][ T1164] vhci_hcd: release socket
[  434.301971][ T1164] vhci_hcd: disconnect device
[  434.387949][T13347] nfs: Unknown parameter '	"'
[  435.035268][   T40] kauditd_printk_skb: 11 callbacks suppressed
[  435.035284][   T40] audit: type=1326 audit(1756721639.651:1416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13355 comm="syz.1.1715" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x0
[  435.042563][T13358] netlink: 'syz.3.1716': attribute type 1 has an invalid length.
[  435.049960][T13358] netlink: 'syz.3.1716': attribute type 4 has an invalid length.
[  435.339321][T13369] tipc: Enabling of bearer <udp:syz1> rejected, already enabled
[  435.972933][ T6068] usb 44-1: device descriptor read/8, error -110
[  436.170062][T13382] nfs: Unknown parameter '	"'
[  436.393619][ T6068] usb usb44-port1: attempt power cycle
[  436.445248][T13389] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  436.447333][T13389] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  436.450532][T13389] vhci_hcd vhci_hcd.0: Device attached
[  436.712964][ T6048] usb 42-1: SetAddress Request (30) to port 0
[  436.715011][ T6048] usb 42-1: new SuperSpeed USB device number 30 using vhci_hcd
[  437.152160][ T6068] usb usb44-port1: unable to enumerate USB device
[  437.393604][ T5978] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  437.822807][T13390] vhci_hcd: connection reset by peer
[  437.825634][  T103] vhci_hcd: stop threads
[  437.827460][  T103] vhci_hcd: release socket
[  437.828943][  T103] vhci_hcd: disconnect device
[  437.843352][T13403] netlink: 'syz.1.1727': attribute type 1 has an invalid length.
[  437.845982][T13403] netlink: 'syz.1.1727': attribute type 4 has an invalid length.
[  437.962958][ T5978] usb 5-1: Using ep0 maxpacket: 16
[  437.970813][ T5978] usb 5-1: config 0 has an invalid interface number: 132 but max is 0
[  437.973731][ T5978] usb 5-1: config 0 has no interface number 0
[  437.973821][T13405] netlink: 'syz.1.1728': attribute type 4 has an invalid length.
[  437.977565][ T5978] usb 5-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25
[  437.981103][ T5978] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  437.984050][ T5978] usb 5-1: Product: syz
[  437.985674][ T5978] usb 5-1: Manufacturer: syz
[  437.987211][ T5978] usb 5-1: SerialNumber: syz
[  437.991677][ T5978] usb 5-1: config 0 descriptor??
[  437.996028][ T5978] hub 5-1:0.132: bad descriptor, ignoring hub
[  437.998577][ T5978] hub 5-1:0.132: probe with driver hub failed with error -5
[  438.003739][ T5978] input: bcm5974 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.132/input/input62
[  438.052355][T13406] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1728'.
[  439.173116][T10770] usb 38-1: device descriptor read/8, error -110
[  439.224387][T13434] macsec0: entered promiscuous mode
[  439.228163][T13434] macsec0: entered allmulticast mode
[  439.232803][T13434] veth1_macvtap: entered allmulticast mode
[  439.242836][T13434] nfs: Unknown parameter '	"'
[  439.351881][T13442] umip_printk: 15 callbacks suppressed
[  439.503716][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  439.589696][T13448] tmpfs: Unknown parameter '"]ŽœÐ^H®›~/�}quota'
[  439.597973][   T40] audit: type=1326 audit(1756721644.211:1417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13446 comm="syz.3.1736" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  439.618584][   T40] audit: type=1326 audit(1756721644.211:1418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13446 comm="syz.3.1736" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  439.624574][T10770] usb usb38-port1: attempt power cycle
[  439.660522][   T40] audit: type=1326 audit(1756721644.221:1419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13446 comm="syz.3.1736" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  439.691585][   T40] audit: type=1326 audit(1756721644.221:1420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13446 comm="syz.3.1736" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  439.713373][   T40] audit: type=1326 audit(1756721644.221:1421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13446 comm="syz.3.1736" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  439.731925][   T40] audit: type=1326 audit(1756721644.221:1422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13446 comm="syz.3.1736" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  439.741307][   T40] audit: type=1326 audit(1756721644.221:1423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13446 comm="syz.3.1736" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  439.748395][   T40] audit: type=1326 audit(1756721644.221:1424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13446 comm="syz.3.1736" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  439.758526][   T40] audit: type=1326 audit(1756721644.221:1425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13446 comm="syz.3.1736" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  439.974856][T13455] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  439.977177][T13455] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  439.980081][T13455] vhci_hcd vhci_hcd.0: Device attached
[  440.244476][T13462] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  440.246626][T13462] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  440.249866][T13462] vhci_hcd vhci_hcd.0: Device attached
[  440.307295][T10770] usb usb38-port1: unable to enumerate USB device
[  440.316866][T13456] vhci_hcd: connection closed
[  440.318590][  T103] vhci_hcd: stop threads
[  440.321382][  T103] vhci_hcd: release socket
[  440.323406][  T103] vhci_hcd: disconnect device
[  440.512962][ T6068] usb 40-1: SetAddress Request (34) to port 0
[  440.515020][ T6068] usb 40-1: new SuperSpeed USB device number 34 using vhci_hcd
[  440.706929][T13464] vhci_hcd: connection reset by peer
[  440.709136][  T103] vhci_hcd: stop threads
[  440.710830][  T103] vhci_hcd: release socket
[  440.712708][  T103] vhci_hcd: disconnect device
[  441.254961][T13485] tipc: Enabling of bearer <udp:syz1> rejected, already enabled
[  441.498727][ T5978] usb 5-1: USB disconnect, device number 32
[  441.822939][ T6048] usb 42-1: device descriptor read/8, error -110
[  442.223700][ T6048] usb usb42-port1: attempt power cycle
[  442.283113][ T5978] usb 7-1: new high-speed USB device number 28 using dummy_hcd
[  442.316427][T13505] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  442.318473][T13505] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  442.321478][T13505] vhci_hcd vhci_hcd.0: Device attached
[  442.477515][ T5978] usb 7-1: config 1 has an invalid interface number: 7 but max is 0
[  442.482285][ T5978] usb 7-1: config 1 has no interface number 0
[  442.487640][ T5978] usb 7-1: config 1 interface 7 altsetting 0 has an endpoint descriptor with address 0xDB, changing to 0x8B
[  442.567896][ T5978] usb 7-1: config 1 interface 7 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  442.570943][ T5978] usb 7-1: config 1 interface 7 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  442.585588][ T5978] usb 7-1: New USB device found, idVendor=1199, idProduct=68a3, bcdDevice= 0.00
[  442.588485][ T5978] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  442.592924][ T5978] usb 7-1: Product: syz
[  442.596606][ T5978] usb 7-1: Manufacturer: syz
[  442.599240][ T5978] usb 7-1: SerialNumber: syz
[  442.606379][T13501] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  442.723049][T10770] usb 38-1: SetAddress Request (58) to port 0
[  442.725396][T10770] usb 38-1: new SuperSpeed USB device number 58 using vhci_hcd
[  442.814237][T13501] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  442.940131][T13506] vhci_hcd: connection reset by peer
[  442.941435][ T6048] usb usb42-port1: unable to enumerate USB device
[  442.941967][  T103] vhci_hcd: stop threads
[  442.946312][  T103] vhci_hcd: release socket
[  442.948464][  T103] vhci_hcd: disconnect device
[  443.978598][T13565] block device autoloading is deprecated and will be removed.
[  445.030860][ T5978] usb 7-1: Incompatible driver and firmware versions
[  445.035473][ T5978] usb 7-1: USB disconnect, device number 28
[  445.051214][T13589] tipc: Enabling of bearer <udp:syz1> rejected, already enabled
[  445.114662][   T40] kauditd_printk_skb: 5 callbacks suppressed
[  445.114673][   T40] audit: type=1326 audit(1756721649.721:1431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13594 comm="syz.2.1759" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x0
[  445.402770][T13608] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1760'.
[  445.573189][ T6068] usb 40-1: device descriptor read/8, error -110
[  446.973950][ T6068] usb usb40-port1: attempt power cycle
[  446.983970][T13627] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  446.986796][T13627] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  446.991040][T13627] vhci_hcd vhci_hcd.0: Device attached
[  447.170179][T13628] vhci_hcd: connection closed
[  447.170729][   T81] vhci_hcd: stop threads
[  447.177010][   T81] vhci_hcd: release socket
[  447.178601][   T81] vhci_hcd: disconnect device
[  447.813047][T10770] usb 38-1: device descriptor read/8, error -110
[  447.815958][ T6068] usb usb40-port1: unable to enumerate USB device
[  450.019641][T10770] usb usb38-port1: attempt power cycle
[  450.370278][T13652] netlink: 'syz.1.1770': attribute type 4 has an invalid length.
[  450.548220][T13654] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1770'.
[  450.632026][T13650] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  450.634528][T13650] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  450.670427][T13650] vhci_hcd vhci_hcd.0: Device attached
[  450.696137][   T40] audit: type=1326 audit(1756721655.321:1432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13659 comm="syz.3.1772" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x0
[  450.840694][T13653] vhci_hcd: connection closed
[  450.842420][   T81] vhci_hcd: stop threads
[  450.845577][   T81] vhci_hcd: release socket
[  450.847259][   T81] vhci_hcd: disconnect device
[  451.073906][T10770] usb usb38-port1: unable to enumerate USB device
[  452.204752][T13686] tmpfs: Unknown parameter '"]ŽœÐ^H®›~/�}quota'
[  452.563022][   T40] audit: type=1326 audit(1756721656.821:1433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13676 comm="syz.0.1777" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  452.573209][   T40] audit: type=1326 audit(1756721656.831:1434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13676 comm="syz.0.1777" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  452.581786][   T40] audit: type=1326 audit(1756721656.831:1435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13676 comm="syz.0.1777" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  452.592021][   T40] audit: type=1326 audit(1756721656.841:1436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13676 comm="syz.0.1777" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  452.600672][   T40] audit: type=1326 audit(1756721656.841:1437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13676 comm="syz.0.1777" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  452.609433][   T40] audit: type=1326 audit(1756721656.841:1438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13676 comm="syz.0.1777" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  452.618329][   T40] audit: type=1326 audit(1756721656.841:1439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13676 comm="syz.0.1777" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  452.627061][   T40] audit: type=1326 audit(1756721656.841:1440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13676 comm="syz.0.1777" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  452.635218][   T40] audit: type=1326 audit(1756721656.841:1441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13676 comm="syz.0.1777" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  454.477012][T13706] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  454.479100][T13706] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  454.482587][T13706] vhci_hcd vhci_hcd.0: Device attached
[  454.742987][T10770] usb 38-1: SetAddress Request (62) to port 0
[  454.746398][T10770] usb 38-1: new SuperSpeed USB device number 62 using vhci_hcd
[  454.819902][T13707] vhci_hcd: connection reset by peer
[  454.821974][  T103] vhci_hcd: stop threads
[  454.823599][  T103] vhci_hcd: release socket
[  454.825300][  T103] vhci_hcd: disconnect device
[  454.895754][T13712] netlink: 'syz.3.1782': attribute type 4 has an invalid length.
[  455.023499][T13713] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1782'.
[  455.697264][T13717] nfs: Unknown parameter '	"'
[  455.896369][T13725] tmpfs: Unknown parameter '"]ŽœÐ^H®›~/�}quota'
[  455.913952][   T40] kauditd_printk_skb: 6 callbacks suppressed
[  455.914001][   T40] audit: type=1326 audit(1756721660.521:1448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13722 comm="syz.3.1785" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  455.929115][   T40] audit: type=1326 audit(1756721660.521:1449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13722 comm="syz.3.1785" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  455.940097][   T40] audit: type=1326 audit(1756721660.541:1450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13722 comm="syz.3.1785" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  455.950076][   T40] audit: type=1326 audit(1756721660.551:1451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13722 comm="syz.3.1785" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  455.958990][   T40] audit: type=1326 audit(1756721660.551:1452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13722 comm="syz.3.1785" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  455.969309][   T40] audit: type=1326 audit(1756721660.561:1453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13722 comm="syz.3.1785" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  455.977890][   T40] audit: type=1326 audit(1756721660.561:1454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13722 comm="syz.3.1785" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  455.988185][   T40] audit: type=1326 audit(1756721660.571:1455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13722 comm="syz.3.1785" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  455.997727][   T40] audit: type=1326 audit(1756721660.571:1456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13722 comm="syz.3.1785" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  456.008011][   T40] audit: type=1326 audit(1756721660.571:1457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13722 comm="syz.3.1785" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  456.294452][T13727] netlink: 'syz.1.1786': attribute type 4 has an invalid length.
[  456.431466][T13728] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1786'.
[  458.505105][T13773] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  458.507213][T13773] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  458.525574][T13773] vhci_hcd vhci_hcd.0: Device attached
[  458.803065][   T67] usb 44-1: SetAddress Request (62) to port 0
[  458.805243][   T67] usb 44-1: new SuperSpeed USB device number 62 using vhci_hcd
[  459.539383][T13779] vhci_hcd: connection reset by peer
[  459.542235][ T1139] vhci_hcd: stop threads
[  459.544149][ T1139] vhci_hcd: release socket
[  459.546040][ T1139] vhci_hcd: disconnect device
[  459.822978][T10770] usb 38-1: device descriptor read/8, error -110
[  460.043073][ T5985] usb 7-1: new high-speed USB device number 29 using dummy_hcd
[  460.192049][T13807] bridge_slave_0: left allmulticast mode
[  460.194382][T13807] bridge_slave_0: left promiscuous mode
[  460.194822][ T5985] usb 7-1: config index 0 descriptor too short (expected 23569, got 27)
[  460.197436][T13807] bridge0: port 1(bridge_slave_0) entered disabled state
[  460.201775][ T5985] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  460.210091][ T5985] usb 7-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  460.214846][ T5985] usb 7-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  460.215575][T13807] bridge_slave_1: left allmulticast mode
[  460.218609][ T5985] usb 7-1: Manufacturer: syz
[  460.220721][T13807] bridge_slave_1: left promiscuous mode
[  460.225714][ T5985] usb 7-1: config 0 descriptor??
[  460.225746][T13807] bridge0: port 2(bridge_slave_1) entered disabled state
[  460.233067][T10770] usb usb38-port1: attempt power cycle
[  460.241148][T13807] bond0: (slave bond_slave_0): Releasing backup interface
[  460.247457][T13807] bond0: (slave bond_slave_1): Releasing backup interface
[  460.252245][T13807] team0: Port device team_slave_0 removed
[  460.256208][T13807] team0: Port device team_slave_1 removed
[  460.258611][T13807] batman_adv: batadv0: Removing interface: batadv_slave_0
[  460.282971][ T5985] rc_core: IR keymap rc-hauppauge not found
[  460.285700][ T5985] Registered IR keymap rc-empty
[  460.289256][ T5985] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0
[  460.294527][ T5985] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0/input63
[  460.311343][T13807] batman_adv: batadv0: Removing interface: batadv_slave_1
[  460.315908][T13807] team0: Port device macvlan1 removed
[  460.333724][T13807] bond1: (slave geneve2): Releasing active interface
[  460.437457][    C2] igorplugusb 7-1:0.0: Error: urb status = -32
[  460.619425][T13827] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  460.646800][   T59] usb 7-1: USB disconnect, device number 29
[  460.903433][T10770] usb usb38-port1: unable to enumerate USB device
[  461.239342][T13836] netlink: 'syz.2.1804': attribute type 4 has an invalid length.
[  461.346416][T13837] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1804'.
[  461.540888][T13844] No control pipe specified
[  461.793553][T13848] tipc: Enabling of bearer <udp:syz1> rejected, already enabled
[  461.849579][T13850] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  461.852437][T13850] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  461.856967][T13850] vhci_hcd vhci_hcd.0: Device attached
[  462.133250][ T5985] usb 40-1: SetAddress Request (38) to port 0
[  462.135373][ T5985] usb 40-1: new SuperSpeed USB device number 38 using vhci_hcd
[  462.426280][T13859] C: renamed from team_slave_0
[  462.431161][T13859] netlink: 'syz.2.1809': attribute type 2 has an invalid length.
[  462.442945][T13859] netlink: 116 bytes leftover after parsing attributes in process `syz.2.1809'.
[  462.453079][T13859] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  462.471821][T13852] vhci_hcd: connection reset by peer
[  462.481593][   T13] vhci_hcd: stop threads
[  462.483229][   T13] vhci_hcd: release socket
[  462.484931][   T13] vhci_hcd: disconnect device
[  462.512093][T13863] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1811'.
[  463.903258][   T67] usb 44-1: device descriptor read/8, error -110
[  464.323586][   T67] usb usb44-port1: attempt power cycle
[  464.867785][T13888] netlink: 'syz.3.1817': attribute type 4 has an invalid length.
[  464.893806][   T67] usb usb44-port1: unable to enumerate USB device
[  464.965238][T13890] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1817'.
[  465.001637][T13892] No control pipe specified
[  465.179951][T13897] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  466.510621][T13916] overlayfs: conflicting lowerdir path
[  466.634053][T13920] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1823'.
[  467.172956][ T5985] usb 40-1: device descriptor read/8, error -110
[  467.311161][T13918] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1822'.
[  467.514667][T13925] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  467.519243][T13925] syzkaller0: entered promiscuous mode
[  467.521286][T13925] syzkaller0: entered allmulticast mode
[  467.565134][ T5985] usb usb40-port1: attempt power cycle
[  467.644962][T13925] tipc: Resetting bearer <eth:syzkaller0>
[  467.659853][T13925] tipc: Disabling bearer <eth:syzkaller0>
[  467.972200][T13936] tmpfs: Unknown parameter '"]ŽœÐ^H®›~/�}quota'
[  467.989897][   T40] kauditd_printk_skb: 4 callbacks suppressed
[  467.990012][   T40] audit: type=1326 audit(1756721672.591:1462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13929 comm="syz.3.1826" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  468.020733][   T40] audit: type=1326 audit(1756721672.601:1463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13929 comm="syz.3.1826" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  468.041521][   T40] audit: type=1326 audit(1756721672.621:1464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13929 comm="syz.3.1826" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  468.064527][   T40] audit: type=1326 audit(1756721672.621:1465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13929 comm="syz.3.1826" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  468.100988][   T40] audit: type=1326 audit(1756721672.621:1466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13929 comm="syz.3.1826" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  468.122152][   T40] audit: type=1326 audit(1756721672.631:1467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13929 comm="syz.3.1826" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  468.164543][   T40] audit: type=1326 audit(1756721672.631:1468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13929 comm="syz.3.1826" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  468.172721][   T40] audit: type=1326 audit(1756721672.631:1469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13929 comm="syz.3.1826" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  468.198455][ T5985] usb usb40-port1: unable to enumerate USB device
[  468.242576][   T40] audit: type=1326 audit(1756721672.631:1470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13929 comm="syz.3.1826" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  469.258831][T13950] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1829'.
[  470.996274][T13979] tmpfs: Unknown parameter '"]ŽœÐ^H®›~/�}quota'
[  471.008336][   T40] audit: type=1326 audit(1756721675.621:1471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13976 comm="syz.2.1837" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  472.792282][T13986] FAULT_INJECTION: forcing a failure.
[  472.792282][T13986] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  472.797754][T13986] CPU: 1 UID: 0 PID: 13986 Comm: syz.2.1839 Not tainted syzkaller #0 PREEMPT(full) 
[  472.797769][T13986] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  472.797775][T13986] Call Trace:
[  472.797779][T13986]  <TASK>
[  472.797782][T13986]  dump_stack_lvl+0x16c/0x1f0
[  472.797801][T13986]  should_fail_ex+0x512/0x640
[  472.797818][T13986]  strncpy_from_user+0x3b/0x2e0
[  472.797845][T13986]  getname_flags.part.0+0x8f/0x550
[  472.797867][T13986]  ? _copy_from_user+0x93/0xd0
[  472.797884][T13986]  getname_flags+0x93/0xf0
[  472.797896][T13986]  user_path_at+0x24/0x60
[  472.797908][T13986]  __ia32_sys_mount+0x1fb/0x310
[  472.797922][T13986]  ? __pfx___ia32_sys_mount+0x10/0x10
[  472.797936][T13986]  ? rcu_is_watching+0x12/0xc0
[  472.797949][T13986]  __do_fast_syscall_32+0x7c/0x3a0
[  472.797964][T13986]  do_fast_syscall_32+0x32/0x80
[  472.797978][T13986]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  472.797992][T13986] RIP: 0023:0xf707e579
[  472.798000][T13986] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  472.798010][T13986] RSP: 002b:00000000f546e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  472.798020][T13986] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000800000c0
[  472.798026][T13986] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000080000380
[  472.798032][T13986] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  472.798038][T13986] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  472.798043][T13986] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  472.798056][T13986]  </TASK>
[  472.877658][T13991] netlink: 'syz.2.1842': attribute type 4 has an invalid length.
[  472.967501][T13994] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1842'.
[  473.175190][T14000] nfs: Unknown parameter '	"'
[  473.684360][T14005] nfs: Unknown parameter '	"'
[  475.325506][T14033] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1850'.
[  475.501230][T14036] netlink: 'syz.2.1852': attribute type 4 has an invalid length.
[  475.584695][T14039] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1852'.
[  475.973584][T14048] netlink: 'syz.3.1855': attribute type 4 has an invalid length.
[  476.450154][T14050] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1855'.
[  477.810327][T14079] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  477.812419][T14079] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  477.815311][T14079] vhci_hcd vhci_hcd.0: Device attached
[  478.083048][ T5985] usb 42-1: SetAddress Request (35) to port 0
[  478.085319][ T5985] usb 42-1: new SuperSpeed USB device number 35 using vhci_hcd
[  478.427536][T14080] vhci_hcd: connection closed
[  478.429996][   T81] vhci_hcd: stop threads
[  478.438637][   T81] vhci_hcd: release socket
[  478.443674][   T81] vhci_hcd: disconnect device
[  478.832970][ T5985] usb 42-1: enqueue for inactive port 0
[  479.263967][ T5985] usb usb42-port1: attempt power cycle
[  479.564549][T14103] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1867'.
[  479.776933][T14107] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1868'.
[  479.848829][ T5985] usb usb42-port1: unable to enumerate USB device
[  479.915807][T14109] netlink: 1 bytes leftover after parsing attributes in process `syz.0.1868'.
[  480.114592][T14112] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1869'.
[  480.126799][T14114] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1870'.
[  480.130370][T14114] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1870'.
[  480.173044][T14118] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1869'.
[  480.176063][T14118] FAULT_INJECTION: forcing a failure.
[  480.176063][T14118] name failslab, interval 1, probability 0, space 0, times 0
[  480.180236][T14118] CPU: 2 UID: 0 PID: 14118 Comm: syz.3.1869 Not tainted syzkaller #0 PREEMPT(full) 
[  480.180250][T14118] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  480.180257][T14118] Call Trace:
[  480.180261][T14118]  <TASK>
[  480.180265][T14118]  dump_stack_lvl+0x16c/0x1f0
[  480.180286][T14118]  should_fail_ex+0x512/0x640
[  480.180300][T14118]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  480.180315][T14118]  should_failslab+0xc2/0x120
[  480.180329][T14118]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  480.180341][T14118]  ? __alloc_skb+0x2b2/0x380
[  480.180359][T14118]  __alloc_skb+0x2b2/0x380
[  480.180372][T14118]  ? __pfx___alloc_skb+0x10/0x10
[  480.180384][T14118]  ? genl_rcv_msg+0x490/0x800
[  480.180396][T14118]  ? genl_rcv_msg+0x4bb/0x800
[  480.180409][T14118]  netlink_ack+0x15d/0xb80
[  480.180430][T14118]  netlink_rcv_skb+0x332/0x420
[  480.180443][T14118]  ? __pfx_genl_rcv_msg+0x10/0x10
[  480.180462][T14118]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  480.180483][T14118]  ? netlink_deliver_tap+0x1ae/0xd30
[  480.180496][T14118]  ? is_vmalloc_addr+0x86/0xa0
[  480.180509][T14118]  genl_rcv+0x28/0x40
[  480.180523][T14118]  netlink_unicast+0x5a7/0x870
[  480.180539][T14118]  ? __pfx_netlink_unicast+0x10/0x10
[  480.180552][T14118]  ? __asan_memset+0x23/0x50
[  480.180562][T14118]  ? __build_skb_around+0x278/0x3b0
[  480.180573][T14118]  ? is_vmalloc_addr+0x86/0xa0
[  480.180586][T14118]  netlink_sendmsg+0x8d1/0xdd0
[  480.180602][T14118]  ? __pfx_netlink_sendmsg+0x10/0x10
[  480.180620][T14118]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  480.180634][T14118]  sock_sendmsg+0x3c9/0x470
[  480.180646][T14118]  ? __pfx_sock_sendmsg+0x10/0x10
[  480.180667][T14118]  splice_to_socket+0xaf6/0x1110
[  480.180689][T14118]  ? __pfx_splice_to_socket+0x10/0x10
[  480.180716][T14118]  ? common_file_perm+0x1a9/0x340
[  480.180729][T14118]  ? bpf_lsm_file_permission+0x9/0x10
[  480.180743][T14118]  ? security_file_permission+0x71/0x210
[  480.180762][T14118]  ? __pfx_splice_to_socket+0x10/0x10
[  480.180774][T14118]  do_splice+0x1478/0x1fc0
[  480.180785][T14118]  ? __lock_acquire+0x62e/0x1ce0
[  480.180806][T14118]  ? __pfx_do_splice+0x10/0x10
[  480.180816][T14118]  ? __pfx_pipe_clear_nowait+0x10/0x10
[  480.180827][T14118]  ? find_held_lock+0x2b/0x80
[  480.180838][T14118]  __do_splice+0x32a/0x360
[  480.180850][T14118]  ? __pfx___do_splice+0x10/0x10
[  480.180865][T14118]  __ia32_sys_splice+0x189/0x250
[  480.180880][T14118]  __do_fast_syscall_32+0x7c/0x3a0
[  480.180896][T14118]  do_fast_syscall_32+0x32/0x80
[  480.180913][T14118]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  480.180927][T14118] RIP: 0023:0xf70ae579
[  480.180936][T14118] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  480.180946][T14118] RSP: 002b:00000000f547d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000139
[  480.180956][T14118] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000000000
[  480.180962][T14118] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 000000000004ffe6
[  480.180968][T14118] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  480.180973][T14118] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  480.180979][T14118] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  480.180991][T14118]  </TASK>
[  480.596790][   T40] kauditd_printk_skb: 27 callbacks suppressed
[  480.596966][   T40] audit: type=1326 audit(1756721685.211:1499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14123 comm="syz.2.1873" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  480.641330][   T40] audit: type=1326 audit(1756721685.211:1500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14123 comm="syz.2.1873" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  480.664829][   T40] audit: type=1326 audit(1756721685.211:1501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14123 comm="syz.2.1873" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf707e579 code=0x7ffc0000
[  480.701363][   T40] audit: type=1326 audit(1756721685.221:1502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14123 comm="syz.2.1873" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  480.726932][   T40] audit: type=1326 audit(1756721685.221:1503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14123 comm="syz.2.1873" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  480.750361][   T40] audit: type=1326 audit(1756721685.231:1504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14123 comm="syz.2.1873" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf707e579 code=0x7ffc0000
[  480.771839][   T40] audit: type=1326 audit(1756721685.231:1505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14123 comm="syz.2.1873" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  480.796010][   T40] audit: type=1326 audit(1756721685.231:1506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14123 comm="syz.2.1873" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  480.847089][   T40] audit: type=1326 audit(1756721685.231:1507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14123 comm="syz.2.1873" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf707e579 code=0x7ffc0000
[  480.885592][   T40] audit: type=1326 audit(1756721685.241:1508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14123 comm="syz.2.1873" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  483.362276][T14168] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  483.364448][T14168] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  483.367350][T14168] vhci_hcd vhci_hcd.0: Device attached
[  483.633013][   T59] usb 42-1: SetAddress Request (39) to port 0
[  483.635204][   T59] usb 42-1: new SuperSpeed USB device number 39 using vhci_hcd
[  483.720815][T14176] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1883'.
[  484.768382][T14169] vhci_hcd: connection reset by peer
[  484.782379][   T60] vhci_hcd: stop threads
[  484.783841][   T60] vhci_hcd: release socket
[  484.805004][   T60] vhci_hcd: disconnect device
[  484.898284][T14191] autofs: Unknown parameter '0x0000000000000000'
[  485.007227][T14195] tipc: Enabling of bearer <udp:syz1> rejected, already enabled
[  485.990312][   T40] kauditd_printk_skb: 18 callbacks suppressed
[  485.990325][   T40] audit: type=1326 audit(1756721690.601:1527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14212 comm="syz.0.1895" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  486.000037][   T40] audit: type=1326 audit(1756721690.601:1528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14212 comm="syz.0.1895" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  486.010214][   T40] audit: type=1326 audit(1756721690.601:1529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14212 comm="syz.0.1895" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  486.016958][   T40] audit: type=1326 audit(1756721690.601:1530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14212 comm="syz.0.1895" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  486.032946][   T40] audit: type=1326 audit(1756721690.601:1531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14212 comm="syz.0.1895" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  486.076026][   T40] audit: type=1326 audit(1756721690.601:1532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14212 comm="syz.0.1895" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  486.085714][   T40] audit: type=1326 audit(1756721690.601:1533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14212 comm="syz.0.1895" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  486.094543][   T40] audit: type=1326 audit(1756721690.601:1534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14212 comm="syz.0.1895" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  486.102113][   T40] audit: type=1326 audit(1756721690.601:1535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14212 comm="syz.0.1895" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  486.110905][   T40] audit: type=1326 audit(1756721690.601:1536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14212 comm="syz.0.1895" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  486.113042][T14220] mac80211_hwsim hwsim3 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  487.102681][T14237] autofs: Unknown parameter '0x0000000000000000'
[  487.214247][T14243] tipc: Enabling of bearer <udp:syz1> rejected, already enabled
[  488.703005][   T59] usb 42-1: device descriptor read/8, error -110
[  488.803107][   T67] usb 7-1: new high-speed USB device number 30 using dummy_hcd
[  488.952977][   T67] usb 7-1: Using ep0 maxpacket: 8
[  488.956269][   T67] usb 7-1: config 0 interface 0 has no altsetting 0
[  488.958563][   T67] usb 7-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  488.961573][   T67] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  488.965925][   T67] usb 7-1: config 0 descriptor??
[  489.094030][   T59] usb usb42-port1: attempt power cycle
[  489.213584][T14276] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1909'.
[  489.323909][T14293] netlink: 'syz.3.1914': attribute type 4 has an invalid length.
[  489.406198][T14296] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1914'.
[  489.591906][T14273] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1908'.
[  489.597716][   T67] usbhid 7-1:0.0: can't add hid device: -71
[  489.599985][   T67] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  489.620576][   T67] usb 7-1: USB disconnect, device number 30
[  489.673859][   T59] usb usb42-port1: unable to enumerate USB device
[  489.874963][T14306] autofs: Unknown parameter '0x0000000000000000'
[  489.988469][T14308] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  490.810534][T14323] FAULT_INJECTION: forcing a failure.
[  490.810534][T14323] name failslab, interval 1, probability 0, space 0, times 0
[  490.814898][T14323] CPU: 0 UID: 0 PID: 14323 Comm: syz.1.1920 Not tainted syzkaller #0 PREEMPT(full) 
[  490.814913][T14323] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  490.814919][T14323] Call Trace:
[  490.814923][T14323]  <TASK>
[  490.814928][T14323]  dump_stack_lvl+0x16c/0x1f0
[  490.814946][T14323]  should_fail_ex+0x512/0x640
[  490.814961][T14323]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  490.814975][T14323]  should_failslab+0xc2/0x120
[  490.814989][T14323]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  490.815001][T14323]  ? __alloc_skb+0x2b2/0x380
[  490.815018][T14323]  __alloc_skb+0x2b2/0x380
[  490.815031][T14323]  ? __pfx___alloc_skb+0x10/0x10
[  490.815043][T14323]  ? genl_rcv_msg+0x490/0x800
[  490.815052][T14323]  ? genl_rcv_msg+0x4bb/0x800
[  490.815064][T14323]  netlink_ack+0x15d/0xb80
[  490.815082][T14323]  netlink_rcv_skb+0x332/0x420
[  490.815096][T14323]  ? __pfx_genl_rcv_msg+0x10/0x10
[  490.815112][T14323]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  490.815131][T14323]  ? netlink_deliver_tap+0x1ae/0xd30
[  490.815144][T14323]  ? is_vmalloc_addr+0x86/0xa0
[  490.815158][T14323]  genl_rcv+0x28/0x40
[  490.815172][T14323]  netlink_unicast+0x5a7/0x870
[  490.815188][T14323]  ? __pfx_netlink_unicast+0x10/0x10
[  490.815202][T14323]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  490.815219][T14323]  netlink_sendmsg+0x8d1/0xdd0
[  490.815236][T14323]  ? __pfx_netlink_sendmsg+0x10/0x10
[  490.815251][T14323]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  490.815265][T14323]  ____sys_sendmsg+0xa98/0xc70
[  490.815277][T14323]  ? __pfx_____sys_sendmsg+0x10/0x10
[  490.815286][T14323]  ? get_compat_msghdr+0x11a/0x170
[  490.815331][T14323]  ___sys_sendmsg+0x134/0x1d0
[  490.815346][T14323]  ? __pfx____sys_sendmsg+0x10/0x10
[  490.815366][T14323]  ? find_held_lock+0x2b/0x80
[  490.815386][T14323]  __sys_sendmsg+0x16d/0x220
[  490.815399][T14323]  ? __pfx___sys_sendmsg+0x10/0x10
[  490.815419][T14323]  ? rcu_is_watching+0x12/0xc0
[  490.815431][T14323]  __do_fast_syscall_32+0x7c/0x3a0
[  490.815447][T14323]  do_fast_syscall_32+0x32/0x80
[  490.815461][T14323]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  490.815473][T14323] RIP: 0023:0xf7fd2579
[  490.815482][T14323] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  490.815491][T14323] RSP: 002b:00000000f54e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  490.815502][T14323] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000200
[  490.815508][T14323] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  490.815514][T14323] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  490.815519][T14323] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  490.815525][T14323] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  490.815538][T14323]  </TASK>
[  491.192685][T14333] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1923'.
[  491.256937][T14325] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  491.259326][T14325] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  491.262283][T14325] vhci_hcd vhci_hcd.0: Device attached
[  491.268792][T14334] vhci_hcd: connection closed
[  491.268956][   T81] vhci_hcd: stop threads
[  491.272429][   T81] vhci_hcd: release socket
[  491.276405][   T81] vhci_hcd: disconnect device
[  491.381156][T14341] FAULT_INJECTION: forcing a failure.
[  491.381156][T14341] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  491.386330][T14341] CPU: 0 UID: 0 PID: 14341 Comm: syz.0.1926 Not tainted syzkaller #0 PREEMPT(full) 
[  491.386345][T14341] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  491.386352][T14341] Call Trace:
[  491.386356][T14341]  <TASK>
[  491.386360][T14341]  dump_stack_lvl+0x16c/0x1f0
[  491.386378][T14341]  should_fail_ex+0x512/0x640
[  491.386396][T14341]  should_fail_alloc_page+0xe7/0x130
[  491.386411][T14341]  prepare_alloc_pages+0x3c2/0x610
[  491.386426][T14341]  ? __lock_acquire+0x62e/0x1ce0
[  491.386444][T14341]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  491.386460][T14341]  ? __lock_acquire+0x62e/0x1ce0
[  491.386478][T14341]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  491.386490][T14341]  ? __lock_acquire+0x62e/0x1ce0
[  491.386509][T14341]  ? __lock_acquire+0x62e/0x1ce0
[  491.386525][T14341]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  491.386542][T14341]  ? policy_nodemask+0xea/0x4e0
[  491.386559][T14341]  alloc_pages_mpol+0x1fb/0x550
[  491.386573][T14341]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  491.386593][T14341]  alloc_pages_noprof+0x131/0x390
[  491.386607][T14341]  __pmd_alloc+0x3b/0x930
[  491.386626][T14341]  __handle_mm_fault+0xa06/0x2a50
[  491.386638][T14341]  ? mt_find+0x3ef/0xa30
[  491.386653][T14341]  ? __pfx___handle_mm_fault+0x10/0x10
[  491.386665][T14341]  ? __pfx_mt_find+0x10/0x10
[  491.386688][T14341]  ? find_vma+0xbf/0x140
[  491.386704][T14341]  ? __pfx_find_vma+0x10/0x10
[  491.386718][T14341]  handle_mm_fault+0x589/0xd10
[  491.386732][T14341]  ? __bpf_trace_exceptions+0x1/0x40
[  491.386748][T14341]  do_user_addr_fault+0x7a6/0x1370
[  491.386767][T14341]  ? rcu_is_watching+0x12/0xc0
[  491.386780][T14341]  exc_page_fault+0x5c/0xb0
[  491.386793][T14341]  asm_exc_page_fault+0x26/0x30
[  491.386803][T14341] RIP: 0010:_copy_from_user+0x93/0xd0
[  491.386837][T14341] Code: 56 da fc 89 ee 4c 89 ef 48 b8 00 f0 ff ff ff 7f 00 00 48 39 c3 48 0f 47 d8 e8 89 c0 3f fd 0f 01 cb 4c 89 ef 48 89 de 48 89 e9 <f3> a4 0f 1f 00 49 89 cc 48 89 cb 0f 01 ca 31 ff 48 89 ce e8 55 51
[  491.386847][T14341] RSP: 0018:ffffc90002ea7bf8 EFLAGS: 00050246
[  491.386859][T14341] RAX: 0000000000000001 RBX: 0000000080000140 RCX: 0000000000000008
[  491.386865][T14341] RDX: fffff520005d4f8e RSI: 0000000080000140 RDI: ffffc90002ea7c68
[  491.386871][T14341] RBP: 0000000000000008 R08: 0000000000000001 R09: fffff520005d4f8d
[  491.386877][T14341] R10: ffffc90002ea7c6f R11: 0000000000000000 R12: 0000000000000000
[  491.386883][T14341] R13: ffffc90002ea7c68 R14: 0000000000000000 R15: 00000000400448e0
[  491.386899][T14341]  ? _copy_from_user+0x87/0xd0
[  491.386915][T14341]  hci_dev_cmd+0x9b/0x9c0
[  491.386935][T14341]  ? __pfx_hci_dev_cmd+0x10/0x10
[  491.386949][T14341]  ? aa_getprocattr+0xba0/0x1110
[  491.386966][T14341]  ? bpf_lsm_capable+0x9/0x10
[  491.386976][T14341]  ? security_capable+0x7e/0x260
[  491.386988][T14341]  hci_sock_ioctl+0x3fb/0x7d0
[  491.387001][T14341]  ? __pfx_hci_sock_ioctl+0x10/0x10
[  491.387016][T14341]  ? do_vfs_ioctl+0x128/0x14f0
[  491.387040][T14341]  hci_sock_compat_ioctl+0x68/0x80
[  491.387059][T14341]  ? __pfx_hci_sock_compat_ioctl+0x10/0x10
[  491.387078][T14341]  compat_sock_ioctl+0x176/0x730
[  491.387103][T14341]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  491.387120][T14341]  ? hook_file_ioctl_common+0x145/0x410
[  491.387136][T14341]  ? __fget_files+0x20e/0x3c0
[  491.387151][T14341]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  491.387160][T14341]  __ia32_compat_sys_ioctl+0x23f/0x370
[  491.387178][T14341]  __do_fast_syscall_32+0x7c/0x3a0
[  491.387193][T14341]  do_fast_syscall_32+0x32/0x80
[  491.387207][T14341]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  491.387224][T14341] RIP: 0023:0xf7f87579
[  491.387232][T14341] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  491.387242][T14341] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  491.387251][T14341] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000400448e0
[  491.387257][T14341] RDX: 0000000080000140 RSI: 0000000000000000 RDI: 0000000000000000
[  491.387263][T14341] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  491.387269][T14341] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  491.387277][T14341] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  491.387315][T14341]  </TASK>
[  492.100474][T14359] syz_tun: entered promiscuous mode
[  492.104171][T14359] batadv_slave_0: entered promiscuous mode
[  492.736561][T14377] netlink: set zone limit has 8 unknown bytes
[  492.765375][T14378] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[  494.115972][T14408] nfs: Unknown parameter '	"'
[  494.148910][T14427] netlink: 'syz.2.1939': attribute type 2 has an invalid length.
[  494.294762][T14434] IPv6: NLM_F_CREATE should be specified when creating new route
[  494.370334][T14431] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  494.372408][T14431] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  494.375061][T14431] vhci_hcd vhci_hcd.0: Device attached
[  494.380737][T14437] vhci_hcd: connection closed
[  494.383814][ T1139] vhci_hcd: stop threads
[  494.387235][ T1139] vhci_hcd: release socket
[  494.388908][ T1139] vhci_hcd: disconnect device
[  494.636380][   T40] kauditd_printk_skb: 6 callbacks suppressed
[  494.636392][   T40] audit: type=1326 audit(1756721699.251:1543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14435 comm="syz.0.1942" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  494.650987][   T40] audit: type=1326 audit(1756721699.251:1544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14435 comm="syz.0.1942" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  494.979549][T14444] Mount JFS Failure: -22
[  494.981450][T14444] jfs_mount failed w/return code = -22
[  495.465575][T14448] netlink: zone id is out of range
[  495.467500][T14448] netlink: zone id is out of range
[  495.470014][T14448] netlink: zone id is out of range
[  495.471718][T14448] netlink: zone id is out of range
[  495.473586][T14448] netlink: zone id is out of range
[  495.475439][T14448] netlink: zone id is out of range
[  495.477035][T14448] netlink: zone id is out of range
[  495.478644][T14448] netlink: zone id is out of range
[  495.480267][T14448] netlink: zone id is out of range
[  495.562026][T14452] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[  497.003736][T14507] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  497.005830][T14507] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  497.008472][T14507] vhci_hcd vhci_hcd.0: Device attached
[  497.014700][T14515] vhci_hcd: connection closed
[  497.014981][ T1139] vhci_hcd: stop threads
[  497.018874][ T1139] vhci_hcd: release socket
[  497.020921][ T1139] vhci_hcd: disconnect device
[  497.829538][T14531] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1957'.
[  498.468614][T14541] lo speed is unknown, defaulting to 1000
[  498.470914][T14541] lo speed is unknown, defaulting to 1000
[  498.481728][T14541] lo speed is unknown, defaulting to 1000
[  498.497557][T14541] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  498.517304][T14541] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  498.616764][T14541] lo speed is unknown, defaulting to 1000
[  498.668477][T14541] lo speed is unknown, defaulting to 1000
[  498.680320][T14541] lo speed is unknown, defaulting to 1000
[  498.777111][T14541] lo speed is unknown, defaulting to 1000
[  498.779672][T14541] lo speed is unknown, defaulting to 1000
[  499.710302][T14552] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  499.712394][T14552] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  499.715897][T14552] vhci_hcd vhci_hcd.0: Device attached
[  499.721446][T14556] vhci_hcd: connection closed
[  499.721877][ T1139] vhci_hcd: stop threads
[  499.725587][ T1139] vhci_hcd: release socket
[  499.726987][ T1139] vhci_hcd: disconnect device
[  499.753849][T14554] syz.2.1964 (14554) used greatest stack depth: 19736 bytes left
[  500.067609][T14574] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1970'.
[  500.139160][T14575] jfs: Unknown parameter 'discar/'
[  500.938731][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  502.644573][T14591] netlink: 'syz.2.1974': attribute type 4 has an invalid length.
[  502.722345][T14592] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1974'.
[  503.926976][T14616] can: request_module (can-proto-3) failed.
[  504.020524][T14618] lo speed is unknown, defaulting to 1000
[  504.107807][T14618] nfs: Unknown parameter '	"'
[  505.479371][T14632] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  505.481803][T14632] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  505.484487][T14632] vhci_hcd vhci_hcd.0: Device attached
[  505.497370][T14636] vhci_hcd: connection closed
[  505.508055][   T81] vhci_hcd: stop threads
[  505.512531][   T81] vhci_hcd: release socket
[  505.515807][   T81] vhci_hcd: disconnect device
[  505.555475][T14633] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  505.557897][T14633] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  505.560952][T14633] vhci_hcd vhci_hcd.0: Device attached
[  505.567454][T14639] vhci_hcd: connection closed
[  505.567701][   T81] vhci_hcd: stop threads
[  505.571196][   T81] vhci_hcd: release socket
[  505.573021][   T81] vhci_hcd: disconnect device
[  507.023193][T14655] jfs: Unknown parameter 'discar/'
[  507.267342][T14659] netlink: 'syz.2.1994': attribute type 4 has an invalid length.
[  507.349577][T14660] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1994'.
[  507.774475][T14664] netlink: 'syz.1.1995': attribute type 4 has an invalid length.
[  507.882099][T14667] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1995'.
[  508.389305][   T59] usb 7-1: new high-speed USB device number 31 using dummy_hcd
[  508.562999][   T59] usb 7-1: Using ep0 maxpacket: 16
[  508.586717][   T59] usb 7-1: config 0 has an invalid interface number: 132 but max is 0
[  508.589769][   T59] usb 7-1: config 0 has no interface number 0
[  508.601492][   T59] usb 7-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25
[  508.613780][   T59] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  508.616849][   T59] usb 7-1: Product: syz
[  508.618482][   T59] usb 7-1: Manufacturer: syz
[  508.620248][   T59] usb 7-1: SerialNumber: syz
[  508.623535][   T59] usb 7-1: config 0 descriptor??
[  508.634667][   T59] hub 7-1:0.132: bad descriptor, ignoring hub
[  508.636984][   T59] hub 7-1:0.132: probe with driver hub failed with error -5
[  508.644832][   T59] input: bcm5974 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.132/input/input65
[  509.376747][T14692] netlink: 'syz.1.2002': attribute type 4 has an invalid length.
[  509.627358][T14695] FAULT_INJECTION: forcing a failure.
[  509.627358][T14695] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  509.631401][T14695] CPU: 0 UID: 0 PID: 14695 Comm: syz.0.2003 Not tainted syzkaller #0 PREEMPT(full) 
[  509.631417][T14695] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  509.631424][T14695] Call Trace:
[  509.631428][T14695]  <TASK>
[  509.631432][T14695]  dump_stack_lvl+0x16c/0x1f0
[  509.631450][T14695]  should_fail_ex+0x512/0x640
[  509.631467][T14695]  _copy_from_user+0x2e/0xd0
[  509.631484][T14695]  get_compat_msghdr+0xa7/0x170
[  509.631498][T14695]  ? __pfx_get_compat_msghdr+0x10/0x10
[  509.631516][T14695]  ___sys_sendmsg+0x1ae/0x1d0
[  509.631531][T14695]  ? __pfx____sys_sendmsg+0x10/0x10
[  509.631551][T14695]  ? find_held_lock+0x2b/0x80
[  509.631570][T14695]  __sys_sendmsg+0x16d/0x220
[  509.631584][T14695]  ? __pfx___sys_sendmsg+0x10/0x10
[  509.631607][T14695]  ? rcu_is_watching+0x12/0xc0
[  509.631620][T14695]  __do_fast_syscall_32+0x7c/0x3a0
[  509.631635][T14695]  do_fast_syscall_32+0x32/0x80
[  509.631649][T14695]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  509.631663][T14695] RIP: 0023:0xf7f87579
[  509.631670][T14695] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  509.631680][T14695] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  509.631690][T14695] RAX: ffffffffffffffda RBX: 0000000000000016 RCX: 0000000080000540
[  509.631697][T14695] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  509.631703][T14695] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  509.631721][T14695] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  509.631727][T14695] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  509.631740][T14695]  </TASK>
[  509.652996][T14696] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2002'.
[  509.653865][   T59] raw-gadget.0 gadget.2: failed to queue suspend event
[  510.150502][T14704] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2004'.
[  510.178042][T14704] 8021q: adding VLAN 0 to HW filter on device bond0
[  510.182158][T14704] 8021q: adding VLAN 0 to HW filter on device team0
[  510.192285][T14704] net_ratelimit: 23 callbacks suppressed
[  510.192291][T14704] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  510.755658][T14724] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2010'.
[  510.789148][T14726] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2011'.
[  511.404076][T14682] raw-gadget.0 gadget.2: failed to queue disconnect event
[  511.513402][T12236] usb 7-1: USB disconnect, device number 31
[  511.613861][T14739] lo speed is unknown, defaulting to 1000
[  511.697301][T14744] nfs: Unknown parameter '	"'
[  511.922153][T14747] FAULT_INJECTION: forcing a failure.
[  511.922153][T14747] name failslab, interval 1, probability 0, space 0, times 0
[  511.955991][T14747] CPU: 2 UID: 0 PID: 14747 Comm: syz.0.2015 Not tainted syzkaller #0 PREEMPT(full) 
[  511.956021][T14747] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  511.956027][T14747] Call Trace:
[  511.956032][T14747]  <TASK>
[  511.956036][T14747]  dump_stack_lvl+0x16c/0x1f0
[  511.956055][T14747]  should_fail_ex+0x512/0x640
[  511.956070][T14747]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  511.956085][T14747]  should_failslab+0xc2/0x120
[  511.956099][T14747]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  511.956112][T14747]  ? __alloc_skb+0x2b2/0x380
[  511.956129][T14747]  __alloc_skb+0x2b2/0x380
[  511.956142][T14747]  ? __pfx___alloc_skb+0x10/0x10
[  511.956154][T14747]  ? __pfx___mutex_trylock_common+0x10/0x10
[  511.956170][T14747]  ? __pfx___might_resched+0x10/0x10
[  511.956185][T14747]  netlink_dump+0x19b/0xd30
[  511.956202][T14747]  ? __pfx_netlink_dump+0x10/0x10
[  511.956226][T14747]  __netlink_dump_start+0x6d6/0x990
[  511.956242][T14747]  ? __pfx_rtnl_net_dumpid+0x10/0x10
[  511.956258][T14747]  rtnetlink_rcv_msg+0xb3e/0xe90
[  511.956273][T14747]  ? __pfx_rtnl_net_dumpid+0x10/0x10
[  511.956290][T14747]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  511.956304][T14747]  ? __lock_acquire+0xb97/0x1ce0
[  511.956318][T14747]  ? __pfx_rtnl_net_dumpid+0x10/0x10
[  511.956340][T14747]  netlink_rcv_skb+0x158/0x420
[  511.956355][T14747]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  511.956371][T14747]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  511.956385][T14747]  ? rcu_is_watching+0x12/0xc0
[  511.956406][T14747]  netlink_unicast+0x5a7/0x870
[  511.956423][T14747]  ? __pfx_netlink_unicast+0x10/0x10
[  511.956438][T14747]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  511.956457][T14747]  netlink_sendmsg+0x8d1/0xdd0
[  511.956475][T14747]  ? __pfx_netlink_sendmsg+0x10/0x10
[  511.956495][T14747]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  511.956514][T14747]  ____sys_sendmsg+0xa98/0xc70
[  511.956529][T14747]  ? __pfx_____sys_sendmsg+0x10/0x10
[  511.956539][T14747]  ? get_compat_msghdr+0x11a/0x170
[  511.956576][T14747]  ___sys_sendmsg+0x134/0x1d0
[  511.956592][T14747]  ? __pfx____sys_sendmsg+0x10/0x10
[  511.956613][T14747]  ? find_held_lock+0x2b/0x80
[  511.956634][T14747]  __sys_sendmsg+0x16d/0x220
[  511.956648][T14747]  ? __pfx___sys_sendmsg+0x10/0x10
[  511.956669][T14747]  ? rcu_is_watching+0x12/0xc0
[  511.956682][T14747]  __do_fast_syscall_32+0x7c/0x3a0
[  511.956698][T14747]  do_fast_syscall_32+0x32/0x80
[  511.956716][T14747]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  511.956730][T14747] RIP: 0023:0xf7f87579
[  511.956740][T14747] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  511.956751][T14747] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  511.956762][T14747] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[  511.956769][T14747] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  511.956775][T14747] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  511.956781][T14747] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  511.956787][T14747] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  511.956801][T14747]  </TASK>
[  512.425683][T14755] mac80211_hwsim hwsim3 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  512.757079][T14761] lo speed is unknown, defaulting to 1000
[  513.155220][T14772] lo speed is unknown, defaulting to 1000
[  513.229747][T14772] nfs: Unknown parameter '	"'
[  513.307052][T14782] FAULT_INJECTION: forcing a failure.
[  513.307052][T14782] name failslab, interval 1, probability 0, space 0, times 0
[  513.311282][T14782] CPU: 3 UID: 0 PID: 14782 Comm: syz.0.2024 Not tainted syzkaller #0 PREEMPT(full) 
[  513.311297][T14782] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  513.311303][T14782] Call Trace:
[  513.311307][T14782]  <TASK>
[  513.311312][T14782]  dump_stack_lvl+0x16c/0x1f0
[  513.311329][T14782]  should_fail_ex+0x512/0x640
[  513.311345][T14782]  ? __kmalloc_cache_node_noprof+0x5a/0x420
[  513.311359][T14782]  should_failslab+0xc2/0x120
[  513.311373][T14782]  __kmalloc_cache_node_noprof+0x6d/0x420
[  513.311385][T14782]  ? __get_vm_area_node+0x101/0x330
[  513.311402][T14782]  __get_vm_area_node+0x101/0x330
[  513.311417][T14782]  ? __lock_acquire+0x62e/0x1ce0
[  513.311433][T14782]  __vmalloc_node_range_noprof+0x271/0x14b0
[  513.311443][T14782]  ? create_io_thread+0xbe/0x100
[  513.311456][T14782]  ? local_lock_release+0x99/0x140
[  513.311473][T14782]  ? create_io_thread+0xbe/0x100
[  513.311486][T14782]  ? rcu_read_unlock+0x17/0x60
[  513.311501][T14782]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  513.311510][T14782]  ? __memcg_slab_post_alloc_hook+0x4a0/0x960
[  513.311528][T14782]  ? create_io_thread+0xbe/0x100
[  513.311544][T14782]  __vmalloc_node_noprof+0xad/0xf0
[  513.311554][T14782]  ? create_io_thread+0xbe/0x100
[  513.311568][T14782]  copy_process+0x2c70/0x7690
[  513.311580][T14782]  ? stack_depot_save_flags+0x29/0x9c0
[  513.311600][T14782]  ? __pfx_copy_process+0x10/0x10
[  513.311612][T14782]  ? __do_fast_syscall_32+0x7c/0x3a0
[  513.311626][T14782]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  513.311645][T14782]  ? __pfx_io_wq_worker+0x10/0x10
[  513.311657][T14782]  create_io_thread+0xbe/0x100
[  513.311670][T14782]  ? __pfx_create_io_thread+0x10/0x10
[  513.311687][T14782]  ? __pfx_io_wq_worker+0x10/0x10
[  513.311698][T14782]  ? lockdep_init_map_type+0x5c/0x280
[  513.311712][T14782]  ? lockdep_init_map_type+0x5c/0x280
[  513.311726][T14782]  ? __init_swait_queue_head+0xca/0x150
[  513.311742][T14782]  ? create_io_worker+0x1f/0x5b0
[  513.311752][T14782]  create_io_worker+0x1d0/0x5b0
[  513.311764][T14782]  io_wq_enqueue+0x4cc/0x980
[  513.311776][T14782]  ? __pfx_io_wq_enqueue+0x10/0x10
[  513.311787][T14782]  ? __pfx_io_wq_work_match_item+0x10/0x10
[  513.311797][T14782]  ? io_prep_async_work+0x654/0x770
[  513.311817][T14782]  io_queue_iowq+0x246/0x530
[  513.311829][T14782]  io_queue_async+0x221/0x330
[  513.311841][T14782]  io_submit_sqes+0x1746/0x25c0
[  513.311860][T14782]  __do_sys_io_uring_enter+0xd6a/0x1630
[  513.311876][T14782]  ? __fget_files+0x20e/0x3c0
[  513.311887][T14782]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  513.311901][T14782]  ? fput+0x9b/0xd0
[  513.311915][T14782]  ? ksys_write+0x1ac/0x250
[  513.311927][T14782]  ? __pfx_ksys_write+0x10/0x10
[  513.311939][T14782]  ? rcu_is_watching+0x12/0xc0
[  513.311952][T14782]  __do_fast_syscall_32+0x7c/0x3a0
[  513.311967][T14782]  do_fast_syscall_32+0x32/0x80
[  513.311981][T14782]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  513.311993][T14782] RIP: 0023:0xf7f87579
[  513.312001][T14782] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  513.312011][T14782] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa
[  513.312022][T14782] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000000047ba
[  513.312028][T14782] RDX: 0000000000003e80 RSI: 0000000000000000 RDI: 0000000000000000
[  513.312034][T14782] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  513.312039][T14782] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  513.312045][T14782] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  513.312058][T14782]  </TASK>
[  513.312210][T14782] syz.0.2024: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  513.434374][T14782] CPU: 3 UID: 0 PID: 14782 Comm: syz.0.2024 Not tainted syzkaller #0 PREEMPT(full) 
[  513.434389][T14782] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  513.434395][T14782] Call Trace:
[  513.434399][T14782]  <TASK>
[  513.434404][T14782]  dump_stack_lvl+0x16c/0x1f0
[  513.434422][T14782]  warn_alloc+0x248/0x3a0
[  513.434436][T14782]  ? __pfx_warn_alloc+0x10/0x10
[  513.434448][T14782]  ? rcu_is_watching+0x12/0xc0
[  513.434459][T14782]  ? trace_kmalloc+0x2b/0xd0
[  513.434472][T14782]  ? __kmalloc_cache_node_noprof+0x272/0x420
[  513.434486][T14782]  ? __kasan_kmalloc+0x8a/0xb0
[  513.434498][T14782]  ? __get_vm_area_node+0x208/0x330
[  513.434516][T14782]  __vmalloc_node_range_noprof+0xb2d/0x14b0
[  513.434526][T14782]  ? local_lock_release+0x99/0x140
[  513.434547][T14782]  ? create_io_thread+0xbe/0x100
[  513.434561][T14782]  ? rcu_read_unlock+0x17/0x60
[  513.434576][T14782]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  513.434586][T14782]  ? __memcg_slab_post_alloc_hook+0x4a0/0x960
[  513.434604][T14782]  ? create_io_thread+0xbe/0x100
[  513.434617][T14782]  __vmalloc_node_noprof+0xad/0xf0
[  513.434626][T14782]  ? create_io_thread+0xbe/0x100
[  513.434641][T14782]  copy_process+0x2c70/0x7690
[  513.434653][T14782]  ? stack_depot_save_flags+0x29/0x9c0
[  513.434674][T14782]  ? __pfx_copy_process+0x10/0x10
[  513.434686][T14782]  ? __do_fast_syscall_32+0x7c/0x3a0
[  513.434699][T14782]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  513.434718][T14782]  ? __pfx_io_wq_worker+0x10/0x10
[  513.434730][T14782]  create_io_thread+0xbe/0x100
[  513.434742][T14782]  ? __pfx_create_io_thread+0x10/0x10
[  513.434759][T14782]  ? __pfx_io_wq_worker+0x10/0x10
[  513.434771][T14782]  ? lockdep_init_map_type+0x5c/0x280
[  513.434786][T14782]  ? lockdep_init_map_type+0x5c/0x280
[  513.434801][T14782]  ? __init_swait_queue_head+0xca/0x150
[  513.434817][T14782]  ? create_io_worker+0x1f/0x5b0
[  513.434827][T14782]  create_io_worker+0x1d0/0x5b0
[  513.434839][T14782]  io_wq_enqueue+0x4cc/0x980
[  513.434851][T14782]  ? __pfx_io_wq_enqueue+0x10/0x10
[  513.434861][T14782]  ? __pfx_io_wq_work_match_item+0x10/0x10
[  513.434871][T14782]  ? io_prep_async_work+0x654/0x770
[  513.434891][T14782]  io_queue_iowq+0x246/0x530
[  513.434903][T14782]  io_queue_async+0x221/0x330
[  513.434914][T14782]  io_submit_sqes+0x1746/0x25c0
[  513.434934][T14782]  __do_sys_io_uring_enter+0xd6a/0x1630
[  513.434949][T14782]  ? __fget_files+0x20e/0x3c0
[  513.434960][T14782]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  513.434975][T14782]  ? fput+0x9b/0xd0
[  513.434989][T14782]  ? ksys_write+0x1ac/0x250
[  513.435000][T14782]  ? __pfx_ksys_write+0x10/0x10
[  513.435013][T14782]  ? rcu_is_watching+0x12/0xc0
[  513.435025][T14782]  __do_fast_syscall_32+0x7c/0x3a0
[  513.435040][T14782]  do_fast_syscall_32+0x32/0x80
[  513.435054][T14782]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  513.435069][T14782] RIP: 0023:0xf7f87579
[  513.435081][T14782] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  513.435113][T14782] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa
[  513.435123][T14782] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000000047ba
[  513.435130][T14782] RDX: 0000000000003e80 RSI: 0000000000000000 RDI: 0000000000000000
[  513.435136][T14782] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  513.435141][T14782] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  513.435147][T14782] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  513.435160][T14782]  </TASK>
[  513.435164][T14782] Mem-Info:
[  513.547290][T14782] active_anon:20494 inactive_anon:4789 isolated_anon:0
[  513.547290][T14782]  active_file:15512 inactive_file:8400 isolated_file:0
[  513.547290][T14782]  unevictable:1768 dirty:735 writeback:0
[  513.547290][T14782]  slab_reclaimable:10244 slab_unreclaimable:62326
[  513.547290][T14782]  mapped:42175 shmem:20378 pagetables:1362
[  513.547290][T14782]  sec_pagetables:315 bounce:0
[  513.547290][T14782]  kernel_misc_reclaimable:0
[  513.547290][T14782]  free:27144 free_pcp:20904 free_cma:0
[  513.561268][T14782] Node 0 active_anon:2720kB inactive_anon:0kB active_file:820kB inactive_file:14932kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:8396kB dirty:32kB writeback:0kB shmem:4232kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:7728kB pagetables:1040kB sec_pagetables:1120kB all_unreclaimable? yes Balloon:0kB
[  513.572766][T14782] Node 1 active_anon:79256kB inactive_anon:19156kB active_file:61228kB inactive_file:18668kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:160304kB dirty:2908kB writeback:0kB shmem:77280kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:5316kB pagetables:4308kB sec_pagetables:140kB all_unreclaimable? no Balloon:0kB
[  513.582811][T14782] Node 0 DMA free:2436kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:512kB local_pcp:0kB free_cma:0kB
[  513.591941][T14782] lowmem_reserve[]: 0 288 288 288 288
[  513.593763][T14782] Node 0 DMA32 free:25708kB boost:16384kB min:29604kB low:32908kB high:36212kB reserved_highatomic:4096KB free_highatomic:872KB active_anon:2720kB inactive_anon:0kB active_file:820kB inactive_file:14928kB unevictable:3536kB writepending:32kB present:1032196kB managed:295132kB mlocked:0kB bounce:0kB free_pcp:13928kB local_pcp:3184kB free_cma:0kB
[  513.603777][T14782] lowmem_reserve[]: 0 0 0 0 0
[  513.605342][T14782] Node 1 DMA32 free:80304kB boost:0kB min:47140kB low:58924kB high:70708kB reserved_highatomic:6144KB free_highatomic:2548KB active_anon:80856kB inactive_anon:19156kB active_file:61228kB inactive_file:18668kB unevictable:3536kB writepending:2908kB present:1048432kB managed:948220kB mlocked:0kB bounce:0kB free_pcp:67820kB local_pcp:23320kB free_cma:0kB
[  513.615650][T14782] lowmem_reserve[]: 0 0 0 0 0
[  513.617210][T14782] Node 0 DMA: 37*4kB (UM) 12*8kB (UM) 3*16kB (U) 5*32kB (U) 3*64kB (UM) 0*128kB 1*256kB (M) 1*512kB (M) 1*1024kB (M) 0*2048kB 0*4096kB = 2436kB
[  513.621862][T14782] Node 0 DMA32: 813*4kB (UMEH) 171*8kB (UMEH) 76*16kB (UMEH) 315*32kB (UMEH) 93*64kB (UMH) 14*128kB (UM) 0*256kB 4*512kB (M) 0*1024kB 0*2048kB 0*4096kB = 25708kB
[  513.626964][T14782] Node 1 DMA32: 71*4kB (UMEH) 40*8kB (EH) 18*16kB (EH) 50*32kB (UMEH) 213*64kB (UEH) 90*128kB (UMEH) 33*256kB (UEH) 16*512kB (UME) 3*1024kB (UM) 14*2048kB (UM) 1*4096kB (M) = 80124kB
[  513.632605][T14782] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  513.635687][T14782] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  513.638581][T14782] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  513.641519][T14782] Node 1 hugepages_total=6 hugepages_free=0 hugepages_surp=4 hugepages_size=2048kB
[  513.644529][T14782] 45261 total pagecache pages
[  513.646019][T14782] 0 pages in swap cache
[  513.647347][T14782] Free swap  = 124988kB
[  513.648658][T14782] Total swap = 124996kB
[  513.649965][T14782] 524155 pages RAM
[  513.651153][T14782] 0 pages HighMem/MovableOnly
[  513.652660][T14782] 209477 pages reserved
[  513.654078][T14782] 0 pages cma reserved
[  513.870722][T14795] mac80211_hwsim hwsim8 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  514.849898][T14807] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  514.852107][T14807] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  514.855261][T14807] vhci_hcd vhci_hcd.0: Device attached
[  514.920961][T14813] netlink: 'syz.1.2032': attribute type 4 has an invalid length.
[  514.965321][T14808] vhci_hcd: connection closed
[  514.966552][   T13] vhci_hcd: stop threads
[  514.969438][   T13] vhci_hcd: release socket
[  514.970877][   T13] vhci_hcd: disconnect device
[  514.985174][T14815] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2032'.
[  515.716604][T14819] lo speed is unknown, defaulting to 1000
[  516.757392][T14838] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2038'.
[  516.870862][T14838] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2038'.
[  517.113553][T14838] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2038'.
[  517.997669][T14866] 9pnet_virtio: no channels available for device syz
[  519.000011][T14869] lo speed is unknown, defaulting to 1000
[  519.192435][T14872] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2048'.
[  519.500452][T14884] fuse: Unknown parameter 'gr'
[  520.664779][T14906] tmpfs: Unknown parameter 'usrquotauencer'
[  520.686984][T14899] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  520.689063][T14899] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  520.691973][T14899] vhci_hcd vhci_hcd.0: Device attached
[  520.901335][T14907] vhci_hcd: connection closed
[  520.913190][ T1139] vhci_hcd: stop threads
[  520.925222][ T1139] vhci_hcd: release socket
[  520.935843][ T1139] vhci_hcd: disconnect device
[  521.208630][T14918] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2060'.
[  521.376921][T14921] netlink: 'syz.2.2061': attribute type 4 has an invalid length.
[  521.524219][T14923] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2061'.
[  521.765910][T14928] mac80211_hwsim hwsim9 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  521.996516][T14931] mac80211_hwsim hwsim8 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  522.195561][T14937] FAULT_INJECTION: forcing a failure.
[  522.195561][T14937] name failslab, interval 1, probability 0, space 0, times 0
[  522.199673][T14937] CPU: 1 UID: 0 PID: 14937 Comm: syz.2.2066 Not tainted syzkaller #0 PREEMPT(full) 
[  522.199688][T14937] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  522.199694][T14937] Call Trace:
[  522.199699][T14937]  <TASK>
[  522.199704][T14937]  dump_stack_lvl+0x16c/0x1f0
[  522.199721][T14937]  should_fail_ex+0x512/0x640
[  522.199738][T14937]  ? __kmalloc_noprof+0xbf/0x510
[  522.199752][T14937]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  522.199769][T14937]  should_failslab+0xc2/0x120
[  522.199783][T14937]  __kmalloc_noprof+0xd2/0x510
[  522.199795][T14937]  ? __pfx___might_resched+0x10/0x10
[  522.199809][T14937]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  522.199827][T14937]  ? __mutex_lock+0x1c5/0x1060
[  522.199849][T14937]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  522.199878][T14937]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  522.199910][T14937]  ? bpf_lsm_capable+0x9/0x10
[  522.199927][T14937]  ? security_capable+0x7e/0x260
[  522.199943][T14937]  ? ns_capable+0xd7/0x110
[  522.199956][T14937]  genl_rcv_msg+0x55c/0x800
[  522.199967][T14937]  ? __pfx_genl_rcv_msg+0x10/0x10
[  522.199983][T14937]  ? __pfx_mptcp_pm_nl_del_addr_doit+0x10/0x10
[  522.200002][T14937]  netlink_rcv_skb+0x158/0x420
[  522.200016][T14937]  ? __pfx_genl_rcv_msg+0x10/0x10
[  522.200032][T14937]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  522.200052][T14937]  ? netlink_deliver_tap+0x1ae/0xd30
[  522.200068][T14937]  genl_rcv+0x28/0x40
[  522.200083][T14937]  netlink_unicast+0x5a7/0x870
[  522.200099][T14937]  ? __pfx_netlink_unicast+0x10/0x10
[  522.200113][T14937]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  522.200132][T14937]  netlink_sendmsg+0x8d1/0xdd0
[  522.200148][T14937]  ? __pfx_netlink_sendmsg+0x10/0x10
[  522.200164][T14937]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  522.200178][T14937]  ____sys_sendmsg+0xa98/0xc70
[  522.200191][T14937]  ? __pfx_____sys_sendmsg+0x10/0x10
[  522.200200][T14937]  ? get_compat_msghdr+0x11a/0x170
[  522.200220][T14937]  ___sys_sendmsg+0x134/0x1d0
[  522.200234][T14937]  ? __pfx____sys_sendmsg+0x10/0x10
[  522.200255][T14937]  ? find_held_lock+0x2b/0x80
[  522.200274][T14937]  __sys_sendmsg+0x16d/0x220
[  522.200288][T14937]  ? __pfx___sys_sendmsg+0x10/0x10
[  522.200317][T14937]  ? rcu_is_watching+0x12/0xc0
[  522.200339][T14937]  __do_fast_syscall_32+0x7c/0x3a0
[  522.200364][T14937]  do_fast_syscall_32+0x32/0x80
[  522.200388][T14937]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  522.200403][T14937] RIP: 0023:0xf707e579
[  522.200412][T14937] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  522.200423][T14937] RSP: 002b:00000000f546e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  522.200434][T14937] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000480
[  522.200441][T14937] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  522.200447][T14937] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  522.200453][T14937] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  522.200459][T14937] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  522.200472][T14937]  </TASK>
[  522.317334][T14941] netlink: 'syz.0.2067': attribute type 4 has an invalid length.
[  522.576667][T14947] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2069'.
[  522.639240][T14949] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2067'.
[  523.706864][T14969] FAULT_INJECTION: forcing a failure.
[  523.706864][T14969] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  523.712299][T14969] CPU: 0 UID: 0 PID: 14969 Comm: syz.2.2076 Not tainted syzkaller #0 PREEMPT(full) 
[  523.712322][T14969] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  523.712333][T14969] Call Trace:
[  523.712339][T14969]  <TASK>
[  523.712347][T14969]  dump_stack_lvl+0x16c/0x1f0
[  523.712376][T14969]  should_fail_ex+0x512/0x640
[  523.712404][T14969]  _copy_to_user+0x32/0xd0
[  523.712423][T14969]  bpf_prog_get_info_by_fd+0x17fc/0x2dd0
[  523.712451][T14969]  ? find_held_lock+0x2b/0x80
[  523.712477][T14969]  ? __pfx_bpf_prog_get_info_by_fd+0x10/0x10
[  523.712500][T14969]  ? __lock_acquire+0x62e/0x1ce0
[  523.712543][T14969]  ? __fget_files+0x20e/0x3c0
[  523.712571][T14969]  bpf_obj_get_info_by_fd+0x558/0xd30
[  523.712596][T14969]  ? __pfx_bpf_obj_get_info_by_fd+0x10/0x10
[  523.712626][T14969]  ? find_held_lock+0x2b/0x80
[  523.712641][T14969]  ? __might_fault+0xe3/0x190
[  523.712660][T14969]  ? __might_fault+0xe3/0x190
[  523.712677][T14969]  ? __might_fault+0x13b/0x190
[  523.712704][T14969]  __sys_bpf+0x4b52/0x4de0
[  523.712736][T14969]  ? __pfx___sys_bpf+0x10/0x10
[  523.712761][T14969]  ? ksys_write+0x190/0x250
[  523.712787][T14969]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  523.712823][T14969]  ? fput+0x9b/0xd0
[  523.712862][T14969]  ? ksys_write+0x1ac/0x250
[  523.712881][T14969]  ? __pfx_ksys_write+0x10/0x10
[  523.712904][T14969]  __ia32_sys_bpf+0x76/0xe0
[  523.712929][T14969]  __do_fast_syscall_32+0x7c/0x3a0
[  523.712949][T14969]  do_fast_syscall_32+0x32/0x80
[  523.712963][T14969]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  523.712977][T14969] RIP: 0023:0xf707e579
[  523.712985][T14969] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  523.712995][T14969] RSP: 002b:00000000f546e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  523.713006][T14969] RAX: ffffffffffffffda RBX: 000000000000000f RCX: 00000000800001c0
[  523.713013][T14969] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000
[  523.713019][T14969] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  523.713025][T14969] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  523.713034][T14969] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  523.713047][T14969]  </TASK>
[  523.805955][    C0] vkms_vblank_simulate: vblank timer overrun
[  524.133702][T14976] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2079'.
[  524.298280][T14983] mac80211_hwsim hwsim5 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  525.233229][T14994] can: request_module (can-proto-0) failed.
[  525.412355][T14996] lo speed is unknown, defaulting to 1000
[  525.748585][T15005] netlink: 'syz.3.2086': attribute type 1 has an invalid length.
[  525.751211][T15005] netlink: 'syz.3.2086': attribute type 1 has an invalid length.
[  525.756936][T15005] netlink: 'syz.3.2086': attribute type 1 has an invalid length.
[  526.309905][T14996] nfs: Unknown parameter '	"'
[  528.070143][T15024] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  528.072220][T15024] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  528.075643][T15024] vhci_hcd vhci_hcd.0: Device attached
[  528.683126][T10770] usb 38-1: SetAddress Request (66) to port 0
[  529.398855][T10770] usb 38-1: new SuperSpeed USB device number 66 using vhci_hcd
[  529.469683][T15025] vhci_hcd: connection reset by peer
[  529.474188][  T103] vhci_hcd: stop threads
[  529.476062][  T103] vhci_hcd: release socket
[  529.478114][  T103] vhci_hcd: disconnect device
[  529.734068][T12236] usb 7-1: new high-speed USB device number 32 using dummy_hcd
[  530.112922][T12236] usb 7-1: Using ep0 maxpacket: 16
[  530.117377][T12236] usb 7-1: config 0 has an invalid interface number: 132 but max is 0
[  530.121322][T12236] usb 7-1: config 0 has no interface number 0
[  530.125334][T12236] usb 7-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25
[  530.129753][T12236] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  530.134139][T12236] usb 7-1: Product: syz
[  530.136392][T12236] usb 7-1: Manufacturer: syz
[  530.138666][T12236] usb 7-1: SerialNumber: syz
[  530.145581][T12236] usb 7-1: config 0 descriptor??
[  530.150306][T12236] hub 7-1:0.132: bad descriptor, ignoring hub
[  530.152281][T12236] hub 7-1:0.132: probe with driver hub failed with error -5
[  530.160131][T12236] input: bcm5974 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.132/input/input66
[  530.569139][T15079] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2107'.
[  530.572080][T15079] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2107'.
[  531.600491][T15093] lo speed is unknown, defaulting to 1000
[  531.679624][T15093] nfs: Unknown parameter '	"'
[  531.795587][T15100] Device name not specified.
[  531.795587][T15100] 
[  531.861971][T15098] lo speed is unknown, defaulting to 1000
[  531.994951][T15098] nfs: Unknown parameter '	"'
[  532.028781][T15114] lo speed is unknown, defaulting to 1000
[  532.319297][T15124] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2116'.
[  532.863077][   T10] usb 7-1: USB disconnect, device number 32
[  533.057614][T15132] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2120'.
[  534.808594][T10770] usb 38-1: device descriptor read/8, error -110
[  534.932769][T15168] netlink: 'syz.0.2133': attribute type 4 has an invalid length.
[  534.945648][T15168] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2133'.
[  535.002787][T15171] openvswitch: netlink: Unexpected mask (mask=40040, allowed=10048)
[  535.136674][T15175] netlink: 'syz.1.2134': attribute type 4 has an invalid length.
[  535.148534][T15175] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2134'.
[  535.193850][T10770] usb usb38-port1: attempt power cycle
[  535.765127][T10770] usb usb38-port1: unable to enumerate USB device
[  535.875757][T15184] mac80211_hwsim hwsim3 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  538.145694][T15227] netlink: 'syz.0.2147': attribute type 4 has an invalid length.
[  538.159143][T15227] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2147'.
[  538.533450][T15236] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  538.536033][T15236] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  538.539335][T15236] vhci_hcd vhci_hcd.0: Device attached
[  538.803005][ T5985] usb 42-1: SetAddress Request (43) to port 0
[  538.805618][ T5985] usb 42-1: new SuperSpeed USB device number 43 using vhci_hcd
[  539.343952][T15237] vhci_hcd: connection reset by peer
[  539.345757][   T46] vhci_hcd: stop threads
[  539.347281][   T46] vhci_hcd: release socket
[  539.348741][   T46] vhci_hcd: disconnect device
[  541.099147][T15257] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  541.101053][T15257] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  541.104323][T15257] vhci_hcd vhci_hcd.0: Device attached
[  541.238851][T15262] mac80211_hwsim hwsim3 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  541.382942][T10770] usb 40-1: SetAddress Request (42) to port 0
[  541.385239][T10770] usb 40-1: new SuperSpeed USB device number 42 using vhci_hcd
[  541.586289][T15259] vhci_hcd: connection reset by peer
[  541.588256][   T12] vhci_hcd: stop threads
[  541.589625][   T12] vhci_hcd: release socket
[  541.591169][   T12] vhci_hcd: disconnect device
[  542.078350][T15286] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  542.080966][T15286] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  542.085521][T15286] vhci_hcd vhci_hcd.0: Device attached
[  542.993675][T15287] vhci_hcd: connection closed
[  542.995040][ T1139] vhci_hcd: stop threads
[  542.998931][ T1139] vhci_hcd: release socket
[  543.000915][ T1139] vhci_hcd: disconnect device
[  543.861703][   T40] audit: type=1326 audit(1756721748.471:1545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15314 comm="syz.2.2164" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  543.874358][   T40] audit: type=1326 audit(1756721748.471:1546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15314 comm="syz.2.2164" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  543.881003][   T40] audit: type=1326 audit(1756721748.471:1547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15314 comm="syz.2.2164" exe="/syz-executor" sig=0 arch=40000003 syscall=41 compat=1 ip=0xf707e579 code=0x7ffc0000
[  543.887981][   T40] audit: type=1326 audit(1756721748.481:1548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15314 comm="syz.2.2164" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  543.895169][ T5985] usb 42-1: device descriptor read/8, error -110
[  543.898562][   T40] audit: type=1326 audit(1756721748.481:1549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15314 comm="syz.2.2164" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  543.905454][   T40] audit: type=1326 audit(1756721748.481:1550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15314 comm="syz.2.2164" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf707e579 code=0x7ffc0000
[  544.069843][T15319] lo speed is unknown, defaulting to 1000
[  544.283442][ T5985] usb usb42-port1: attempt power cycle
[  544.302024][   T40] audit: type=1326 audit(1756721748.911:1551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15314 comm="syz.2.2164" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  544.308855][   T40] audit: type=1326 audit(1756721748.911:1552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15314 comm="syz.2.2164" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  544.361868][   T40] audit: type=1326 audit(1756721748.971:1553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15314 comm="syz.2.2164" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf707e579 code=0x7ffc0000
[  544.368892][   T40] audit: type=1326 audit(1756721748.971:1554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15314 comm="syz.2.2164" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  544.873667][ T5985] usb usb42-port1: unable to enumerate USB device
[  544.914664][T15328] can: request_module (can-proto-0) failed.
[  546.452935][T10770] usb 40-1: device descriptor read/8, error -110
[  546.875956][T10770] usb usb40-port1: attempt power cycle
[  547.041688][T15365] lo speed is unknown, defaulting to 1000
[  547.280484][T15378] tipc: Enabling of bearer <udp:syz1> rejected, already enabled
[  547.453424][T10770] usb usb40-port1: unable to enumerate USB device
[  548.599242][T15399] mac80211_hwsim hwsim9 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  549.561052][   T40] kauditd_printk_skb: 7 callbacks suppressed
[  549.561064][   T40] audit: type=1326 audit(1756721754.171:1562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15425 comm="syz.0.2185" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x0
[  549.672934][T15431] lo speed is unknown, defaulting to 1000
[  549.710741][T15431] nfs: Unknown parameter '	"'
[  550.124722][T15462] can: request_module (can-proto-0) failed.
[  550.239897][T15469] autofs: Unknown parameter 'fd0x0000000000000000'
[  550.352139][T15472] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  550.389488][T15475] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2189'.
[  552.348983][T15513] tipc: Enabling of bearer <udp:syz1> rejected, already enabled
[  553.297502][T15523] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2200'.
[  553.317489][T15522] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  553.320210][T15522] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  553.323620][T15522] vhci_hcd vhci_hcd.0: Device attached
[  553.613044][ T5985] usb 42-1: SetAddress Request (47) to port 0
[  553.615331][ T5985] usb 42-1: new SuperSpeed USB device number 47 using vhci_hcd
[  553.941667][T15524] vhci_hcd: connection reset by peer
[  553.947410][  T103] vhci_hcd: stop threads
[  553.949358][  T103] vhci_hcd: release socket
[  553.951283][  T103] vhci_hcd: disconnect device
[  554.579285][   T40] audit: type=1326 audit(1756721759.191:1563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15547 comm="syz.3.2209" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x0
[  556.483734][T15561] lo speed is unknown, defaulting to 1000
[  556.524388][T15564] nfs: Unknown parameter '	"'
[  556.600356][T15574] netlink: ct family unspecified
[  556.601989][T15574] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  556.734652][T15572] infiniband syz1: set active
[  556.738616][T15572] infiniband syz1: added syz_tun
[  556.870329][T15572] RDS/IB: syz1: added
[  556.872752][T15572] smc: adding ib device syz1 with port count 1
[  556.876803][T15572] smc:    ib device syz1 port 1 has pnetid 
[  557.102785][T15590] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  557.105021][T15590] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  557.136306][T15590] vhci_hcd vhci_hcd.0: Device attached
[  557.462992][T10770] usb 40-1: SetAddress Request (46) to port 0
[  557.465589][T10770] usb 40-1: new SuperSpeed USB device number 46 using vhci_hcd
[  557.747601][T15591] vhci_hcd: connection reset by peer
[  557.750293][  T103] vhci_hcd: stop threads
[  557.751912][  T103] vhci_hcd: release socket
[  557.753821][  T103] vhci_hcd: disconnect device
[  558.025972][T15605] mac80211_hwsim hwsim8 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  558.218229][   T40] audit: type=1326 audit(1756721762.831:1564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15612 comm="syz.0.2225" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  558.238454][   T40] audit: type=1326 audit(1756721762.841:1565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15612 comm="syz.0.2225" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  558.249663][   T40] audit: type=1326 audit(1756721762.841:1566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15612 comm="syz.0.2225" exe="/syz-executor" sig=0 arch=40000003 syscall=45 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  558.258985][   T40] audit: type=1326 audit(1756721762.841:1567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15612 comm="syz.0.2225" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  558.266910][   T40] audit: type=1326 audit(1756721762.841:1568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15612 comm="syz.0.2225" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  558.275055][   T40] audit: type=1326 audit(1756721762.841:1569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15612 comm="syz.0.2225" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  558.282016][   T40] audit: type=1326 audit(1756721762.841:1570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15612 comm="syz.0.2225" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  558.293506][   T40] audit: type=1326 audit(1756721762.861:1571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15612 comm="syz.0.2225" exe="/syz-executor" sig=0 arch=40000003 syscall=366 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  558.312496][   T40] audit: type=1326 audit(1756721762.861:1572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15612 comm="syz.0.2225" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000
[  558.699914][ T5985] usb 42-1: device descriptor read/8, error -110
[  558.807484][T15627] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2227'.
[  558.836844][T15627] sctp: [Deprecated]: syz.1.2227 (pid 15627) Use of struct sctp_assoc_value in delayed_ack socket option.
[  558.836844][T15627] Use struct sctp_sack_info instead
[  559.083656][ T5985] usb usb42-port1: attempt power cycle
[  559.283028][ T5385] BUG: sleeping function called from invalid context at mm/vmalloc.c:3409
[  559.286602][ T5385] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 5385, name: udevd
[  559.292517][ T5385] preempt_count: 1, expected: 0
[  559.294826][ T5385] RCU nest depth: 1, expected: 0
[  559.297085][ T5385] 1 lock held by udevd/5385:
[  559.299428][ T5385]  #0: ffffffff8e5c10e0 (rcu_read_lock){....}-{1:3}, at: sock_def_readable+0x97/0x600
[  559.303691][ T5385] Preemption disabled at:
[  559.303700][ T5385] [<ffffffff812c5d36>] preempt_schedule_thunk+0x16/0x30
[  559.308418][ T5385] CPU: 0 UID: 0 PID: 5385 Comm: udevd Not tainted syzkaller #0 PREEMPT(full) 
[  559.308439][ T5385] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  559.308450][ T5385] Call Trace:
[  559.308457][ T5385]  <TASK>
[  559.308464][ T5385]  dump_stack_lvl+0x16c/0x1f0
[  559.308488][ T5385]  __might_resched+0x3c0/0x5e0
[  559.308506][ T5385]  ? __pfx___might_resched+0x10/0x10
[  559.308522][ T5385]  ? pcpu_block_update+0x562/0x660
[  559.308547][ T5385]  ? find_held_lock+0x2b/0x80
[  559.308567][ T5385]  vfree+0x75/0xb50
[  559.308594][ T5385]  ? rcu_is_watching+0x12/0xc0
[  559.308612][ T5385]  ? kfree+0x24f/0x4d0
[  559.308627][ T5385]  ? free_percpu+0x6db/0x13c0
[  559.308651][ T5385]  futex_hash_free+0x98/0xc0
[  559.308673][ T5385]  __mmdrop+0x33f/0x580
[  559.308693][ T5385]  finish_task_switch.isra.0+0x7a4/0xc10
[  559.308710][ T5385]  ? __switch_to+0x7a5/0x11a0
[  559.308734][ T5385]  __schedule+0x1198/0x5de0
[  559.308764][ T5385]  ? ep_autoremove_wake_function+0xe4/0x180
[  559.308783][ T5385]  ? find_held_lock+0x2b/0x80
[  559.308804][ T5385]  ? __pfx___schedule+0x10/0x10
[  559.308837][ T5385]  ? do_raw_read_unlock+0x44/0xe0
[  559.308874][ T5385]  ? __pfx_ep_poll_callback+0x10/0x10
[  559.308895][ T5385]  ? preempt_schedule_thunk+0x16/0x30
[  559.308920][ T5385]  preempt_schedule_common+0x44/0xc0
[  559.308943][ T5385]  preempt_schedule_thunk+0x16/0x30
[  559.308973][ T5385]  _raw_spin_unlock_irqrestore+0x61/0x80
[  559.308996][ T5385]  sock_def_readable+0x15b/0x600
[  559.309021][ T5385]  netlink_unicast+0x75c/0x870
[  559.309050][ T5385]  ? __pfx_netlink_unicast+0x10/0x10
[  559.309074][ T5385]  ? apparmor_capable+0x114/0x1d0
[  559.309102][ T5385]  netlink_sendmsg+0x8d1/0xdd0
[  559.309132][ T5385]  ? __pfx_netlink_sendmsg+0x10/0x10
[  559.309160][ T5385]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  559.309183][ T5385]  ____sys_sendmsg+0xa98/0xc70
[  559.309202][ T5385]  ? copy_msghdr_from_user+0x10a/0x160
[  559.309225][ T5385]  ? __pfx_____sys_sendmsg+0x10/0x10
[  559.309247][ T5385]  ? __pfx_____sys_recvmsg+0x10/0x10
[  559.309271][ T5385]  ___sys_sendmsg+0x134/0x1d0
[  559.309298][ T5385]  ? rcu_is_watching+0x12/0xc0
[  559.309318][ T5385]  ? __pfx____sys_sendmsg+0x10/0x10
[  559.309364][ T5385]  ? find_held_lock+0x2b/0x80
[  559.309381][ T5385]  ? timespec64_add_safe+0x18c/0x210
[  559.309413][ T5385]  __sys_sendmsg+0x16d/0x220
[  559.309437][ T5385]  ? __pfx___sys_sendmsg+0x10/0x10
[  559.309471][ T5385]  ? getname_flags.part.0+0x1c5/0x550
[  559.309504][ T5385]  do_syscall_64+0xcd/0x490
[  559.309530][ T5385]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  559.309549][ T5385] RIP: 0033:0x7ff20c6a7407
[  559.309564][ T5385] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff
[  559.309581][ T5385] RSP: 002b:00007ffceb6e6da0 EFLAGS: 00000202 ORIG_RAX: 000000000000002e
[  559.309598][ T5385] RAX: ffffffffffffffda RBX: 00007ff20cea7880 RCX: 00007ff20c6a7407
[  559.309610][ T5385] RDX: 0000000000000000 RSI: 00007ffceb6e6e00 RDI: 0000000000000004
[  559.309620][ T5385] RBP: 000055f5c1f58b30 R08: 0000000000000000 R09: 0000000000000000
[  559.309631][ T5385] R10: 0000000000000000 R11: 0000000000000202 R12: 00000000000000b3
[  559.309642][ T5385] R13: 000055f5c1f469e0 R14: 0000000000000000 R15: 0000000000000000
[  559.309666][ T5385]  </TASK>
[  559.713487][ T5985] usb usb42-port1: unable to enumerate USB device
[  562.376342][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  562.533098][T10770] usb 40-1: device descriptor read/8, error -110
[  562.923724][T10770] usb usb40-port1: attempt power cycle
[  563.483523][T10770] usb usb40-port1: unable to enumerate USB device

VM DIAGNOSIS:
10:16:04  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000072 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff856170b5 RDI=ffffffff9b0fc700 RBP=ffffffff9b0fc6c0 RSP=ffffc90003ed7018
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000072 R14=ffffffff9b0fc6c0 R15=ffffffff85617050
RIP=ffffffff856170df RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007ff20cea7880 ffffffff 00c00000
GS =0000 ffff8880974c0000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080202000 CR3=0000000049896000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 15a3518d6130454c cd0631e870ff3153
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0ad4e0162487dd4d 5f6044f45cdca623
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 93417e7b56705713 73ed9df7bb7df6d4
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 563aaa3c46835d1a a1401cbf9a4d7c73
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000005e80
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0005fd7253b4fc93 1500000180000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 53b4e3a50004a9c0 53c6a36b00051f38
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0002a9e4fc000000 c5000001f4000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2b000001cc000000 53c68299a2000001
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 06e54891e31341eb dc9621a8918dc88c
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5e3634875849026b 95bf0031ca6b24ca
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000080000001 RBX=ffffea0001c15380 RCX=ffffffff81f11118 RDX=ffff888077ad8000
RSI=ffffffff81f11126 RDI=0000000000000001 RBP=ffffc900031b7b38 RSP=ffffc900031b79f8
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=0000000000000001 R13=000000000000036f R14=dffffc0000000000 R15=1ffff92000636f6a
RIP=ffffffff81bb0b0b RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880975c0000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c59e23a CR3=0000000058239000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=ffffc900035a77a8 RCX=ffffffff8a02925b RDX=ffff888023f4a440
RSI=ffffffff8a02926a RDI=0000000000000003 RBP=ffff88806d3a8140 RSP=ffffc900035a7640
R8 =0000000000000003 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=ffff88806d3a812c
RIP=ffffffff81bb0ae0 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f5ed293e300 ffffffff 00c00000
GS =0000 ffff8880976c0000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f542cda4 CR3=0000000050d30000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 cb4bffffffff8183 d638ffffffff8183 c009ffffffff8183 c48effffffff8183
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 d4d6ffffffff8183 dfdfffffffff8183 c910ffffffff8183 d999ffffffff8183
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5453ffffffff8183 cc47ffffffff8183 dc56ffffffff8183 ce35ffffffff8183
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 a5bbffffffff8492 2caaffffffff8492 2eb8ffffffff8492 2c74ffffffff8492
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2d23ffffffff8492 2dffffffffff8492 2498ffffffff8492 2373ffffffff8492
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2775ffffffff8492 2a9fffffffff89ab b365ffffffff89ab b534ffffffff89ab
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ba8cffffffff89ab b7daffffffff89ab bc3effffffff89ab bce2ffffffff89ab
ZMM24=2315ff9e2315ff9e 2315ff9e2315ff9e 2315ff9e2315ff9e 2315ff9e2315ff9e 2315ff9e2315ff9e 2315ff9e2315ff9e 2315ff9e2315ff9e 2315ff9e2315ff9e
ZMM25=17cf479a17cf479a 17cf479a17cf479a 17cf479a17cf479a 17cf479a17cf479a 17cf479a17cf479a 17cf479a17cf479a 17cf479a17cf479a 17cf479a17cf479a
ZMM26=47d7661e47d7661e 47d7661e47d7661e 47d7661e47d7661e 47d7661e47d7661e 47d7661e47d7661e 47d7661e47d7661e 47d7661e47d7661e 47d7661e47d7661e
ZMM27=9178710d9178710d 9178710d9178710d 9178710d9178710d 9178710d9178710d 9178710d9178710d 9178710d9178710d 9178710d9178710d 9178710d9178710d
ZMM28=00000200000001ff 000001fe000001fd 000001fc000001fb 000001fa000001f9 000001f8000001f7 000001f6000001f5 000001f4000001f3 000001f2000001f1
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=1d3300001d330000 1d3300001d330000 1d3300001d330000 1d3300001d330000 1d3300001d330000 1d3300001d330000 1d3300001d330000 1d3300001d330000
info registers vcpu 3

CPU#3
RAX=1ffff1100d6f22bd RBX=ffffffff8f181da0 RCX=ffffffff84e8d2a3 RDX=ffff888042ea8000
RSI=ffffffff84e8ddf6 RDI=ffff88806b7915e8 RBP=0000000000000000 RSP=ffffc900010ced90
R8 =0000000000000005 R9 =00000000fffffffe R10=00000000fffffffe R11=ffff88806b790030
R12=ffff88806b798e48 R13=dffffc0000000000 R14=63746976655f6361 R15=ffff88806b790000
RIP=ffffffff81bb0ad0 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880977c0000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000000e380000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000