last executing test programs:

2m24.591795556s ago: executing program 3 (id=897):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x2, 0xa, 0x0, 0x9, 0x7, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in6=@mcast2, @in6=@empty, 0x0, 0x0, 0x90132adf0ecb33e3}]}, 0x38}}, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/custom1\x00', 0x802, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0xef4, &(0x7f0000000300)={0x0, 0x1c2a, 0x10100, 0x0, 0x0, 0x0, r3}, &(0x7f0000000140)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r2, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r4, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r7 = socket$inet_smc(0x2b, 0x1, 0x0)
ppoll(&(0x7f0000000500)=[{r7}], 0x1, 0x0, 0x0, 0x0)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r7, 0x6, 0x21, &(0x7f0000000040)="5766b1b827f600333b09d3748ee7d700", 0x10)
ioprio_get$uid(0x3, 0x0)
ioctl$HCIINQUIRY(r1, 0x400448ca, 0x0)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6)
write$bt_hci(r1, &(0x7f00000001c0)=ANY=[@ANYBLOB="0128200702ffffffffffff1089a2ebc30b2850b4ae8c1ede6c3095c50167de2a395e7a8683366a2f68d49841c935bea4c878dd02aeb34678317dec7adb92a1952646cc639c0fa29be22c164682bed021c5fb4b44ef40c71028e98a585867287bb14d2c98adabceca7fc4aa39b273fb"], 0xb)
r8 = syz_open_dev$vim2m(&(0x7f0000000580), 0x4, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r8, 0xc0145608, &(0x7f00000000c0)={0x2, 0x1, 0x1})
ioctl$vim2m_VIDIOC_STREAMOFF(r8, 0x40045612, &(0x7f0000000100)=0x1)
syz_open_dev$tty1(0xc, 0x4, 0x2)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000200000000"], &(0x7f0000000040)='syzkaller\x00'}, 0x94)
bind$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x10, 0x6, @link_local}, 0x14)

2m24.170105412s ago: executing program 3 (id=898):
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0xffffffff, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x0, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_ife={0x48, 0x3ffa, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0xfffe, 0x0, 0xa40}}}]}, {0x32}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, 0x0, &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
socket$kcm(0x10, 0x2, 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
mlock(&(0x7f000064e000/0x4000)=nil, 0x4000)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f00000001c0)={'fscrypt:', @desc3}, &(0x7f0000000300)={0x0, "10f8b00f37651afa3619457e9e16eb9a2732bd7ca767a320c4c57e2370e6e4ac36d5cd133c26f88778b60974c73dc649dc65676cea8fc6ebfe50a657648e37bd", 0x20}, 0x48, 0xfffffffffffffffa)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r4, &(0x7f0000000280)='asymmetric\x00', &(0x7f0000000380))
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r5, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x7})
ioctl$sock_netdev_private(r5, 0x8949, &(0x7f0000000000))
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000002d00010026bd7000fcdbdf08fffe16ef"], 0x14}}, 0x20000000)

2m16.59016421s ago: executing program 3 (id=902):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x0, @multicast2}, 0x10)
pidfd_getfd(0xffffffffffffffff, r2, 0x0)
setsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@mcast1, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x10000, 0x3, 0x1, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0xfffffffffffffff7}, {0x0, 0x8, 0xfffffffffffffffc, 0x8}, 0x0, 0x0, 0x1, 0x0, 0x1}, {{@in6=@empty, 0x2, 0x6c}, 0xa, @in=@empty, 0x0, 0x5, 0x0, 0xb7}}, 0xe8)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f00000004c0)=[@text64={0x40, 0x0}], 0x1, 0xdf, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
sendmsg$NL80211_CMD_JOIN_OCB(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000440)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="200025bd7000fedbdf256c00000008000300"], 0x24}}, 0x4000000)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x43, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x99fe681834aac99b, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000140)=@x86={0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x3, 0x9, 0x0, 0x0, 0x0, 0xfffffff8, 0x0, 0xff, 0xff})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r6 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r6, 0x8108551b, &(0x7f0000000380)={0x2, 0x1, "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"})
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000"], 0x0}, 0x94)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x2000004)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
unshare(0x6a040000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)

2m16.560629102s ago: executing program 3 (id=909):
openat$vcs(0xffffff9c, &(0x7f0000000000), 0x400, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x18}, 0x94)
timer_create(0x1, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000000))
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000080)={0x1fe, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000003e000100fc0400000424795b8a9ca873807d64f504a76884bd09b5610898c375aa45aa52940d76b9a2ecc15591f6cf324a7caca88b18b48849743940457ee7b1383123a27cb8e6b008dc37c27f2e05a2c1653b7963b4b4d5c4eb2bcf91c40cadf88f15693d409cbd02ef2d92381d5d36da6ce463884b2b0ef831"], 0x14}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000200)={[0xc45, 0x40000000000000d, 0x7ffc, 0x80000001, 0x800000010000, 0x4, 0x4002004c2, 0x0, 0x655, 0x1, 0x3ffffc, 0xfffffffffffffffd, 0x7fffffff, 0x20000000009, 0xffff, 0xfffffffffffffff7], 0x100000})
ioctl$KVM_RUN(r1, 0xae80, 0x0)

2m16.532545785s ago: executing program 3 (id=913):
prctl$PR_SCHED_CORE(0x3e, 0x2, 0x0, 0x1, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000002c0), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syncfs(r2)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r3, 0x0, 0x8008000000010, &(0x7f00000003c0), 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r4, 0x0, 0x8008000000010, 0x0, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sendmsg$key(r5, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
setsockopt$WPAN_SECURITY_LEVEL(r1, 0x0, 0x2, 0x0, 0x0)
r6 = dup3(r4, r3, 0x80000)
syz_open_procfs(0x0, &(0x7f0000000200)='net/ptype\x00')
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x14)
socket$inet6_sctp(0xa, 0x1, 0x84)
r7 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
ioctl$int_in(r7, 0x5421, &(0x7f0000000240)=0x7fffffff)
listen(r7, 0x0)
accept4(r7, 0x0, 0x0, 0x0)
io_setup(0x80000000, &(0x7f0000000000)=<r8=>0x0)
eventfd2(0x0, 0x81801)
io_cancel(r8, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x3, 0xd, 0xffffffffffffffff, &(0x7f00000000c0)="ccd60e3f7d0784d41e3428b82a43ac44ed745978e64378b9732c804b49de66358b62d8b57920e1f052f70423bb655359037c2b50", 0x34, 0xb70, 0x0, 0x0, r6}, &(0x7f00000001c0))
r9 = socket$kcm(0x2, 0x5, 0x0)
sendmsg$inet(r9, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @dev}, 0x10, 0x0}, 0x30004081)
recvmsg$kcm(r9, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x2)

2m15.573903278s ago: executing program 3 (id=917):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000680)={@cgroup=<r1=>0xffffffffffffffff, 0x7, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) (async)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x3, 0x0) (async)
prlimit64(0x0, 0x8, &(0x7f0000000080)={0x1, 0x7}, 0x0) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async, rerun: 64)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x2) (rerun: 64)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000004300)=""/102400, 0xffffffffffffff3a)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x1c, 0x16, &(0x7f0000001600)=ANY=[@ANYRES16=0x0], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xf317}, 0x94)
r4 = syz_usb_connect$hid(0x2, 0x0, 0x0, 0x0)
syz_usb_control_io(r4, 0x0, 0x0) (async)
r5 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x481, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) (async)
sendmsg$WG_CMD_SET_DEVICE(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000500)=ANY=[@ANYRESHEX, @ANYBLOB="1a32387f81f07772f14c0d57ed6b1981a58b6af807a596a7d4ceef6f55928dd6df8cff6cbdd2f5110739593e98ad285f546c73c14a7b67cd2b9e49e78f1670a1eb2bb9a42e8cc3c6ad6fabe4190b43fa", @ANYRES32=r0, @ANYRES32=r3, @ANYBLOB="b7aa453a9c686e6b80ae4eb0d0630e384308df57ab5f6cad3da4876ed2a06babab0a6e8aad8ff15aba75e077522f5f19988e4cbd685db719782a0f207c0bbac07854b31db28efcd738bdd2a41652b585e134956883de6ba09d93df53d7673099c2bd808e7813e24db64c5af5692b0d74f71915ac568c82aed11b11ed39350e97fae557f65522f2ad9fd620abab3d99f4e646d1617f30346462474856a6dafc4f199b8aa6dce0ff2d17f4cd1dc44f917a04743b07fbd0f693fdd5a6585e0e1ae0fae2879031d061e2f46ed12d34c5646e7fdf0340748dd826b01db6405fd2cb8b47a336d733af", @ANYRESDEC=r2, @ANYRES32=r3, @ANYRESDEC=r1], 0x128}, 0x1, 0x0, 0x0, 0x4000800}, 0x0) (async)
r7 = dup(r5)
ioctl$sock_inet_udp_SIOCINQ(r7, 0x541b, 0x0)
ioctl$UI_DEV_CREATE(r7, 0x5501)
openat$pfkey(0xffffffffffffff9c, 0x0, 0x101000, 0x0) (async, rerun: 64)
setsockopt$inet_int(r0, 0x0, 0x5, &(0x7f0000000040)=0x3, 0x4) (async, rerun: 64)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x111bc0, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106) (async, rerun: 64)
unshare(0x6a040000) (async, rerun: 64)
socket$netlink(0x10, 0x3, 0x0) (async)
gettid() (async, rerun: 32)
epoll_create1(0x80000) (async, rerun: 32)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))

2m0.490494145s ago: executing program 32 (id=917):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000680)={@cgroup=<r1=>0xffffffffffffffff, 0x7, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) (async)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x3, 0x0) (async)
prlimit64(0x0, 0x8, &(0x7f0000000080)={0x1, 0x7}, 0x0) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async, rerun: 64)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x2) (rerun: 64)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000004300)=""/102400, 0xffffffffffffff3a)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x1c, 0x16, &(0x7f0000001600)=ANY=[@ANYRES16=0x0], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xf317}, 0x94)
r4 = syz_usb_connect$hid(0x2, 0x0, 0x0, 0x0)
syz_usb_control_io(r4, 0x0, 0x0) (async)
r5 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x481, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) (async)
sendmsg$WG_CMD_SET_DEVICE(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000500)=ANY=[@ANYRESHEX, @ANYBLOB="1a32387f81f07772f14c0d57ed6b1981a58b6af807a596a7d4ceef6f55928dd6df8cff6cbdd2f5110739593e98ad285f546c73c14a7b67cd2b9e49e78f1670a1eb2bb9a42e8cc3c6ad6fabe4190b43fa", @ANYRES32=r0, @ANYRES32=r3, @ANYBLOB="b7aa453a9c686e6b80ae4eb0d0630e384308df57ab5f6cad3da4876ed2a06babab0a6e8aad8ff15aba75e077522f5f19988e4cbd685db719782a0f207c0bbac07854b31db28efcd738bdd2a41652b585e134956883de6ba09d93df53d7673099c2bd808e7813e24db64c5af5692b0d74f71915ac568c82aed11b11ed39350e97fae557f65522f2ad9fd620abab3d99f4e646d1617f30346462474856a6dafc4f199b8aa6dce0ff2d17f4cd1dc44f917a04743b07fbd0f693fdd5a6585e0e1ae0fae2879031d061e2f46ed12d34c5646e7fdf0340748dd826b01db6405fd2cb8b47a336d733af", @ANYRESDEC=r2, @ANYRES32=r3, @ANYRESDEC=r1], 0x128}, 0x1, 0x0, 0x0, 0x4000800}, 0x0) (async)
r7 = dup(r5)
ioctl$sock_inet_udp_SIOCINQ(r7, 0x541b, 0x0)
ioctl$UI_DEV_CREATE(r7, 0x5501)
openat$pfkey(0xffffffffffffff9c, 0x0, 0x101000, 0x0) (async, rerun: 64)
setsockopt$inet_int(r0, 0x0, 0x5, &(0x7f0000000040)=0x3, 0x4) (async, rerun: 64)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x111bc0, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106) (async, rerun: 64)
unshare(0x6a040000) (async, rerun: 64)
socket$netlink(0x10, 0x3, 0x0) (async)
gettid() (async, rerun: 32)
epoll_create1(0x80000) (async, rerun: 32)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))

4.816029458s ago: executing program 0 (id=1570):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x1, 0x9, 0x201, 0x0, 0x0, {0x5, 0x0, 0x7}}, 0x14}, 0x1, 0x0, 0x0, 0x24044000}, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x81)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r2, &(0x7f0000000000), 0x10)
sendmsg$can_bcm(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000005900)={0x7, 0x1, 0x0, {}, {0x0, 0x2710}, {}, 0x2}, 0x34}, 0x300}, 0x20000000)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f00000000c0)={0x0, <r3=>0x0})
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x2, @tid=r3}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r5, &(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, r4, {0x2, 0x0, @loopback}, 0x4}}, 0x2e)
syz_emit_ethernet(0xba, &(0x7f0000000440)={@link_local, @random="ece65fbcee55", @void, {@x25={0x805, {0x1, 0x8, 0x1f, "79a36524847f49fe29e4d7b5803319f5f8d2656c7a4627b4021dd5378c7abb666b61f8069b89477a5fe5636e827cab1daf667b2497dd34d5430fc5a8b09bce5c305859b7c545aff6ca617b2db1b858310ba2b5d6ce6cfcfc932c2bbb178da9733942806d37ccbbdd1330bdf2eae3a3568614c80b43b58b227bac5a6162217fc79602492e76c1b190120c6966e480eecc1d65a26b2c455dd7936e8bb36199eab3100ee648682da9265c"}}}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
getpgrp(0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r7 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000280)={'syzkaller1\x00', @link_local})
write$tun(r6, &(0x7f0000000380)={@void, @void, @x25={0x1, 0x0, 0xfd, "6e6d18b18c20657ccfd40d163b49ed4af0402094cbedb0c0ffc419d23af7901add849beef98748e6b4c6064b112cdbfce29300"/60}}, 0x3f)
sendmsg(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x8800)
rseq(&(0x7f0000000400), 0x20, 0x0, 0x0)
io_setup(0x8, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)

3.865757184s ago: executing program 0 (id=1572):
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x82080, 0x0)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000500)={0x118, 0x2e, 0x1, 0x70bd2d, 0x0, "", [@nested={0x106, 0x0, 0x0, 0x1, [@generic="77273e417b3009a815e9152ce966702165ea3196bcec6ba4b0abf00187", @generic="03b2b242f8c762d187a6852402a2c22160fd08cf61bc87c3158ca503f693d5fda534b375397d94e7a5", @generic="c6f7c5b183f7d0af47c5916b9f7e9017db195533c508ee7ad2c777e1eaf08d4b92281ead73ccbf53c3d41fb4d13dfa94f7c6ff516316f6170e9739a40ec3ac4b628c875b5b611834dad89811b2b747c3d36c2a0a3a30d908bd13fdd53ed8869babfb5cb1d290684d2cec34c5e7d358893ab00aa53800f024a51999d48f1f7c01b9d46406b900a0037a91a2393784ff82194712f19dd145bce5a08a827ecdca9eccc2d28f9f8f3976d16bd15cea091f358d2f63bededc8669c5d3f2df"]}]}, 0x118}], 0x1}, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x1, 0x31, 0xffffffffffffffff, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r4, 0x8933, &(0x7f00000002c0)={'wg2\x00', <r7=>0x0})
sendmsg$WG_CMD_SET_DEVICE(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x8c, r6, 0x0, 0x70bd2a, 0x25dfdbfd, {}, [@WGDEVICE_A_PEERS={0x70, 0x8, 0x0, 0x1, [{0x6c, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @b_g}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e20, 0x1, @mcast1, 0x2}}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "1171ee8da334a5099295af229a5d237a7f4102f01f28b34347d6cbbe135d83ec"}]}]}, @WGDEVICE_A_IFINDEX={0x8, 0x1, r7}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4000}, 0x40)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'bridge0\x00', <r8=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@RTM_NEWMDB={0x38, 0x54, 0x1, 0x0, 0x0, {}, [@MDBA_SET_ENTRY={0x20, 0x1, {r8, 0x0, 0x0, 0x0, {@ip4=@multicast1}}}]}, 0x38}}, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000440)=ANY=[@ANYBLOB="b702000001040000bfa30000000000000703000000feffff7a0af0fff8bffffd79a4f0ff00000000b7060000ffffffff2d640500000000006502040001001f000404000001007d60b7030000000000006a0a00fefdff00008500000026000000b7000000000000009500000000000000c743a0c8e3ebbadc20e5a7efcc9ac1467fb2ea80dbcf8df265e1b40e4c8afd5c0c000000008da68076774bbcdb2c769937000090af27db5b56024db96bcbbbd2cb2000ce03000000000000007e357754508535766c80114604a86fe569b05614eab9297eb290a248a120c9c6e39f403ff065fd3052aae80675eeba68562eaeaea5fecf298ca20f274233106eab63ecf772de7b265040b6c50b7420b48a93fe94c756108afcd0b2eb78040000005f02a5a6474ae549070004000000001294fba0ed5020e6474ac921fee1f6d8ad6a80d0947cd6d4a561ced21a0b4a902be6af7ec2d1ba002e57f301000000000000000000000000100000aaf25343063e6581f9e6de14ad72e5ad84309f47f96a576cd20cef7ed951a73ea73d7c7f14e306f1f1d1377e57bbb19700f0077e9d0000b93eb0f2c6f8141e350dc68147e5958128d22d58625cf9dba211bfff9c3709c9b134625d3d2369f516a49eeeb1a662c8dfb875bdf5c6ba73cccdfacb202994c40d322717faff03323dce8a34ee0ca2cf61efb4b30000642735d6d482ba98d252f36c54333a8b1aa736369392b9067665339820f5f1557b0bf7cc06a5a13c714e0b1a1f000000ff3283076cda3d0b1a2905cfc3d04f1db264b530abcbe44bc405f600807970727fb819afa1907228fa9e83433eedb4ac88d0285594ffb0d14c09d5c77f33702822b02488ea570204c8441ced81cacf945dcb2486d65ceec8bcaffbe800a041a378b40dc9e3600e916ae6307bd8325a442095bc9a8b0c95905979f34adddbb26f0d24425c8ab9d937d84b521914f92eed3d3e9de82942a952e86b567aff5bc2e3c1fcc00f618363df5d0d181ee8f4b8fd356c9eb365adc037e443820c05c5db16ff07a9cf471e2ebf91ab00a05f88c1cd55f8c81f5eb1f8d615ca27efb2193bb61665a1ce37f30c2efc9c3b5a4a5d95479fac471ba60fbd0e50225563cd37343d09da72472efc2b2877fbab12a891513e5f0763ae06c0610a2869747c143d7500760600f3ffb2310e19ac58bf29d7f178d09a9f634a3ae492f54649589e3692768a0f3a08ff275df45508ad85950d8e08465fa1067ea8f383b3e7a7ddf5977d46f4bc38f914b4a496426d8468f9ba618b6b2218b50c8fc9efbce3ba799cf70de7e13be871aa7eb402e2b11f440361e18d4e334bfc6ae54e62e67a03b4c756c544189e4519a029674e2a2bbbc7f6600000000000800000e5e30b70b1eb176d3a62660600000030a0af132e680510811d3ab71af5d98e2d3d928a749e8b9402d14655612bd58fb40b4625cb69bf6cea97b447f2d970d99100000000086000001b881afb2cc500003a73562af4878f75b4f9540057b8a3fff2bc02c5941626d2015f414546e87835ba18e9101734a9e9c6955fc6b9a25fe2a3dd8bab7f21beccba5493a164c663eceed401737c12c65804712236a9a29a43b1e27e9b6816f2328ea8423121f12b7b35aa721fef26934ccafde573bee5c33ef15309f43cbd5d61aa679a9c402d337ebf57a5eacb569401c1df7b9c45b09743c61d1db37f0000000000020000000061d7d6818db785d8ba13dc577fe61a68eb365de5661f43d4c789bb117a3d208ae44a381b718b3157e218959156ff8e92b7e92bc275d2c9114547351a0d0f2a70d13be0194b6cb68b03000000000000004f153bbc7f52861e4e5df0d19e4e40ac44cfda6f87807e5b5ed7072c04da88afd3d4b79f060e004a0e2f00b9e726ac75d2ac0691314c627e9a8a07bdd607919fd48f01ad6d2f7621d9a75b134f1bc25ed7c33d411a5baa4daa3add16afc502b2b7629541d722e91d631e5ffb9d4beb5aa5a2c4e490a5bd5cf4538ba310b8cbc221af38ea842d4cb908bcd574f794459fd54b58c6a791e6df620047bade4ba41ee0141843958479544619f749ff70088b0fd115077f7eff7c5a3315ca604d110df1c54407f191a78d8362e4dc6e1138391c2af2b96779bb76c9f1daea4f085f38810edef6dd047937c231cba791a4e7713c5b3b0a0b6ba37db5016e02d114d714459d065a79609fea4efebad04edac11aac0e53dd094827453144fa419ee81823d00a90a9058ba740d2f41253a8d01a8c1a7265a084e30ad10d412aee8170a7111d62473e7bd8f3d64fb7ebdd32aada331900000000000000000000000084ef49dd02000000bf48ea48e0e1f463d9dcb285038ec38d5f4969ed0e98a71ac7bf8159a234833a5241722b2d24aa2fa4965d4eb7966fb27d118b6ef3308627e67d42f1041d5e92da28e0a7724ce715854775cbe06c5166f1dac0745f1373156a536cb6394c2c4473e2050cacf693fdf8e305080000001a901ecd90a5f53b8327a485557bc2a147b036477915e600000000034258ebbb6099b597d17ee2fc97ca850b8580b1337016a40566814594c13052b9d2b0741326825f19a24460e545c71e1940c998f39ac04a0c29691a7c8f7a78c1a7590a293c561f304533c638ae635f5ce026f7fa034d8cfe0e11831d4829692beab26891ef583cfcb713a4d3a2d8b958c0875d7e4bdcf98802db086ebcbb9d82fa569a18f06facc2ffe1ea9ae4231e1e503faa2de7f898c97788c4b9c61c70ff92abdf7476cc351156d11c0ada7614f315f4c6cca119d16827d4e864f5a7a9b690272a510c451dc07f391309d02e31e53b2bf0b5f86e776b1bcfe6c85ccd7ddf8a9559d596b5603895f265685fdd11263c946f8ef3ccec1b0d45a47a89b8237cbbdab14e4ca6dc76b2c41e071b93a065c0f5aa718e1cfab29beea78a6bd9a3114f0fb92be9a5862627b4bd99db2c08e4636e43f05f33535d5d1f9bb40e1fd8e5125a3d29b31dd94a6744bbc21722222b976089f073a4d3fcafc6d06518cf0c4fc6c3e3da0000000000000000000000007d3b60775243f2143d9f54804b11102cf0e4c641db1ba8bf75e46ab3a8fdece6562e7ebb3e407f3c7504dfa3da3aecbd49af3d1edeea11cc970416fadeedc8423bfdc85041ac4d8243a1130e6f4cb5bbfed9d095e18c98c7d690e4c491a7ddcd5635bc61dbed719ca28e8ca3f1fbbe588913ed057f1d6e34a79f4dc10df54d1993a5bc5f9ef6dbd339ee4b0b5764169f305e284ef82cc23e9366d4bc7eb45c7230b13433e5240657cb8eba33260147be8620b6d98cc48b000000000000000000000000c1ce872b18984f080100000000000000bd3fded92547d41809b398f36749083a147eb09ff1ed601bd36b873d3947fb223da647052528e0466cb917db7800f7c7000b593fca1903991cca1343882e3a1f60044f11c081dae4fc5bcf20efacdd2c577f4bcda2eea6f75a31dc90eebb6135b6fb824052181b0ad8a49ebf03ccf61d7e39bf6b0762d24d19796016301d1415b5110ba9df7f204aedb2a2e4e621c0553d312b309db67192f98ef7800000d629c04e216afc8fc66616bbf304e452373aa927c2ad6f5417f1b9bc322b802c1a1c42112a92a331cdc113b9ace3ff52ede7a853f9a89002ba070bac2f635a03db3375e5564f1a798bf9c0f8c72725d2eca9b0ec7e453d78ea20eca61530fe574299b393ca144adcb06108dfbb934065a87972739150a8752ac111c4d9062ccb95c54034fbdee131d94dfbaab1854d55665746fb7b47d25e54070b0d14c0a29c57bc4930075e1761913b036d43852c6df9f10e15105b2a1866b598a3577943514db0dce953dcec62139ff3f16066efec5d8cbc0600000000007289be5883aab951ea67cf2ff691d05c1ea91dd569ed9897fe8d88a0a6977dc8955be17e8026aff11c61fa5cc76196c1423cd597345253baa1537eb6962a3ce1fe5d5ab46938e8fb23fa7047bc59c4345e912585a8adb5fe2ff51b64a326321b594e3f2d339f4090bdae6b30b62064bacbc155d3c930576f506b093ca7c60957bdfdd6536baaa871cf6a603c736b78761e6463b8ac503e219cc3d98f649602ad24d5667368290ee926fba76ee482a201a03efece3b236f4ee2ffcd5d90d92a2f0c5cea48c87f27c2f1e92988a6508c12f6b7755cc48eb10edafca92cb0260c72295a27a24846d3a2334bd60e94c0fd07e5db0a4964a7fc4e89e11a300510776934e87bb3c21394f46954a012b2a3b0760f5bad1dbd6b466ed7153bd18ee2c0b2353c38df9e0782eb000000000000000000000000001b58cadcc5aaf65e05663985a177aa1d1ea2ad1b8151c7d58f5b92827f550269b3585d98e1394e816a477e52ce2f6de2bd7192f46cf965e774968d151d2bda084b10ec4c8d2c6ab582b1e5e3ed874235ff128c661298ed75879d8a4025ad1c3d9ef6355dc7284c6e648a61da026a777fcc7ae2c60ce64a2f2b0000000000000000000000000000003022110d1230e998429a6fd8f35939a8ae5acc89123839d84b98df6f8ee2ad0b238759bf400ac14c591aefe9660076a494f73b0ea8f3cb4a9c2e4f745a2afb593fabb9481600b2f44e6415153c1f8cf974a226d2700608bb2838ef07d75aed8b082716be3c37f60f48b9995f6325fdaa1c164b1e2bcbde00"/3344], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfe37}, 0x48)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500))
socket$inet6(0xa, 0x80803, 0x87)
syz_emit_ethernet(0x5e, &(0x7f00000004c0)=ANY=[@ANYBLOB="aaaaaaaaaaaabbbbbbbbbbbb86dd603000bb00282b00fe800000000000000000000000000000fe8000000000000000000000000000aa87"], 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r9, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000080)="b907ef23f66a54f05c13e5f0888e", 0x0, 0x0, 0x18000000, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x50)
ioctl$SNDCTL_SYNTH_MEMAVL(r0, 0xc004510e, &(0x7f0000000080)=0xfffff800)

3.14757276s ago: executing program 0 (id=1575):
r0 = socket(0x10, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x3, 0xe, &(0x7f0000002500)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x244e, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000640)={r1, 0xe0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000200)=[0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f00000000c0)={'ip6tnl0\x00', &(0x7f0000000000)={'syztnl1\x00', 0x0, 0x4, 0x6, 0x4, 0x2, 0x47, @mcast1, @loopback, 0x1, 0x8, 0x3, 0x66}})
getsockopt$inet_tcp_int(r0, 0x6, 0x17, 0xfffffffffffffffe, &(0x7f0000000080))

3.115816111s ago: executing program 0 (id=1578):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
syz_genetlink_get_family_id$ieee802154(&(0x7f00000000c0), r0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x1a, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e76, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0xc}}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x880}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0xe2981)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x1c, &(0x7f00000004c0)=@raw=[@tail_call, @map_idx_val={0x18, 0x1, 0x6, 0x0, 0xc, 0x0, 0x0, 0x0, 0x3}, @initr0={0x18, 0x0, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x4}, @jmp={0x5, 0x1, 0x6, 0x7, 0x7, 0xfffffffffffffff4, 0xfffffffffffffffc}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4}}, @map_idx={0x18, 0x5, 0x5, 0x0, 0xd}, @func={0x85, 0x0, 0x1, 0x0, 0x6}, @cb_func={0x18, 0x0, 0x4, 0x0, 0x4}], &(0x7f0000000300)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r4}, 0x10)
r5 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x481, 0x0)
ioctl$F2FS_IOC_START_ATOMIC_WRITE(r5, 0x8008330e, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x300, &(0x7f0000000040)={&(0x7f0000000d00)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a30000000002c000000030a01080000000000000000010000000900030073797a32000000000900010073797a30000000005c000000060a010400000000000000000100000008000b40000000000900010073797a300000000034000480300001800a0001"], 0xd0}}, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x7, 0x0, &(0x7f0000000340)=0x80)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000080)={<r7=>0xffffffffffffffff})
sendmmsg$sock(r7, &(0x7f00000044c0), 0x4000000000001c0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

2.863263506s ago: executing program 1 (id=1579):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f000094d000/0x3000)=nil, 0x3000, 0x4, 0x8031, 0xffffffffffffffff, 0x0) (async)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) (async)
chroot(&(0x7f0000000040)='./cgroup\x00')

2.73626348s ago: executing program 1 (id=1582):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f00000005c0)={r2, 0x800, {0x2a00, 0x80010000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x20, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd6447a4b4e00d9683dda1af1ea09de2b7fb0a0100000000000000000300", "2809e8dbe108598927875397bab22d0000b420a9c81f40f05f819e01177d3d458dac00000000000000000000003b00000000000000000200", "90be8b1c5512406c7f00", [0x4, 0x40000000000000]}})
ioctl$UFFDIO_WRITEPROTECT(r2, 0xc018aa06, &(0x7f0000000100)={{&(0x7f0000ffd000/0x1000)=nil, 0x1000}, 0x3})
r3 = socket$unix(0x1, 0x1, 0x0)
r4 = landlock_create_ruleset(&(0x7f0000000000)={0xe01, 0x2, 0x1}, 0x18, 0x0)
landlock_restrict_self(r4, 0x0)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000b80)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-serpent-avx2\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, 0x0, 0x0)
r6 = accept4(r5, 0x0, 0x0, 0x800)
sendmmsg$alg(r6, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb0958730", 0x4c}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d", 0x24}], 0x2}], 0x1, 0x40800)
recvmsg(r6, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f00000000c0)=""/81, 0x51}, {&(0x7f0000000200)=""/83, 0x53}], 0x2}, 0x0)
r7 = landlock_create_ruleset(&(0x7f0000000080)={0x2812, 0x1}, 0x18, 0x0)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_DSTOPTS(r8, 0x29, 0x3b, &(0x7f0000001700)=ANY=[@ANYBLOB="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"], 0x1028)
landlock_restrict_self(r7, 0x0)
bind$unix(r3, &(0x7f0000003000)=@file={0x1}, 0x6e)
listen(r3, 0x0)
connect$unix(r0, &(0x7f0000000640)=@file={0x1}, 0x6e)
r9 = syz_open_dev$vbi(&(0x7f0000000040), 0x1, 0x2)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r9, 0xc0845657, &(0x7f00000001c0)={0x0, @bt={0x7ff, 0xffffb17a, 0x1, 0x0, 0x1, 0x0, 0x0, 0x9, 0x9, 0x7f, 0x3, 0x6685, 0xdde0, 0x9, 0x1, 0x5, {0x800, 0xfffffffa}, 0xc, 0x8}})
r10 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r10, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4)
setsockopt$packet_fanout(r10, 0x107, 0x12, &(0x7f00000000c0)={0x2, 0x2}, 0x4)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000300)={'ip6_vti0\x00', <r11=>0x0})
prctl$PR_SCHED_CORE(0x26, 0x1, 0x0, 0x1, 0x0)
sendto$packet(r10, &(0x7f0000000180)="10030600e0ff020004004788aa96a13bb100001100007fca1a00", 0x10608, 0x0, &(0x7f0000000140)={0x11, 0x0, r11}, 0x14)

2.630518872s ago: executing program 1 (id=1583):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x7a, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
socket(0x2, 0x80805, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="6800000000002424000180140001000200000000000c0002800500010000000003000000801400018008000100e000000108000200ac1e00ec5d053a25d7444a010c0002800600010040000000000000000000000000000000000000000000f8ff00000000000000"], 0x68}}, 0x0)
bind$inet6(r5, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r5, 0x84, 0x13, &(0x7f0000000040)=0xa, 0x4)
sendto$inet6(r5, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r7 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r7, 0x6, 0x0, 0x0, 0x0)
r8 = fsmount(r7, 0x1, 0x0)
fchdir(r8)
mknod(&(0x7f0000000080)='./bus\x00', 0x1000, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0xffe4, &(0x7f00000002c0)={&(0x7f0000000340)=@newtaction={0x8c, 0x30, 0xb, 0x0, 0x0, {}, [{0x78, 0x1, [@m_ct={0x74, 0x1, 0x0, 0x0, {{0x7}, {0x4c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18}, @TCA_CT_ACTION={0x6, 0x3, 0x19}, @TCA_CT_NAT_IPV6_MIN={0x14, 0xb, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @TCA_CT_NAT_IPV6_MAX={0x14, 0xc, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x8c}}, 0x0)

2.182998105s ago: executing program 0 (id=1584):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000006ffc)=0x4000000000000200, 0xe50fb6c50bc849c9)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x24}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000850000000f00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
syz_emit_ethernet(0x0, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffff00f687000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x40)
syz_emit_ethernet(0x7a, &(0x7f0000000280)=ANY=[@ANYBLOB="856b934629faaaaaaaaaaaaa86dd60381f3400142f00fc000000000000000000000000000000ff020000000000000000000000000001042081000002892f00000800000086dd88a888be00000000100000000100000000000000080066b922eb0000000020000000020000000000000000180000080065580000"], 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000940)=@newqdisc={0x58, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0xc}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x2c, 0x2, [@TCA_TBF_RATE64={0xc, 0x4, 0x4e1e2563543d84f9}, @TCA_TBF_PBURST={0x8, 0x7, 0x19de}, @TCA_TBF_PBURST={0x8, 0x7, 0x1649}, @TCA_TBF_PRATE64={0xc, 0x5, 0xcb59372f370e8465}]}}]}, 0x58}}, 0x4000080)
bind$packet(r0, &(0x7f0000000040)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @remote}, 0x14)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
lsetxattr$trusted_overlay_origin(&(0x7f0000000180)='./file1\x00', &(0x7f0000000040), &(0x7f0000000100), 0x40, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
sendto$inet6(r0, &(0x7f0000000800)="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", 0xfc13, 0x880, 0x0, 0xfffffffffffffef0)

2.010650082s ago: executing program 0 (id=1586):
getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0)
getrandom(&(0x7f0000000180)=""/111, 0x6f, 0x3)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
write$cgroup_int(r0, &(0x7f0000000540), 0xfffffdd8)
ioctl$DRM_IOCTL_AGP_BIND(r0, 0x40086436, &(0x7f0000000040)={0x0, 0x4})
madvise(&(0x7f0000000000/0x400000)=nil, 0x40001e, 0x15)
getresuid(&(0x7f0000000200), &(0x7f0000000380)=<r1=>0x0, &(0x7f00000003c0))
stat(&(0x7f0000000380)='./file0/../file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, <r2=>0x0, <r3=>0x0})
getgroups(0x1, &(0x7f0000000280)=[<r4=>0x0])
getresgid(&(0x7f00000002c0), &(0x7f0000000300)=<r5=>0x0, &(0x7f0000000340)=<r6=>0x0)
setxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='system.posix_acl_default\x00', &(0x7f00000006c0)=ANY=[@ANYRES8=0x0, @ANYRES32=r2, @ANYRES8=r2, @ANYRESOCT=0x0, @ANYBLOB="08000100", @ANYRESHEX=r5, @ANYBLOB="11e543be767707005ed109b9e055c0f901fe67ffd1faadba1e5a08dc94382a52b79514bff7bea0b16dd4935f03492e2d46ef3b74824656a86f085c6903deaab6f659b3284332c35d8f5d37bbfc7a20de522a501e", @ANYRES32=r4, @ANYRESOCT=r6, @ANYRES64=r4, @ANYBLOB="b7c68a9c750eab4fc5993136ae8c222e112873a2ce65f2d0e461ae82ebc69b7c9ca02fd984e87f844133ab06005e312ca104b00aeaa85d26a5fdb3e3500e58f177e19ad4c00dfcb1ea2ddb4a426d0c7a432e822807dd6f9cfb13039853ad9acd7ddc19e64c42d1219020cb4d3eb2fa325932e3a445bd48f50baa81ba62653480771a31d6a6793a36d4a8400311559d8eac9b91eda1c915", @ANYRESDEC=r3], 0x44, 0x3)
fchown(r0, r1, r3)
r7 = socket$xdp(0x2c, 0x3, 0x0)
r8 = io_uring_setup(0x1694, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1})
io_uring_register$IORING_REGISTER_BUFFERS(r8, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r0, 0xc0505350, &(0x7f0000000100)={{0x2d, 0x8}, {0x1, 0x8}, 0x301a, 0x1})
setsockopt$XDP_UMEM_REG(r7, 0x11b, 0x4, &(0x7f0000000340)={&(0x7f0000000000)=""/59, 0x304000, 0x800, 0x0, 0x3}, 0x20)
r9 = openat$vicodec0(0xffffff9c, &(0x7f0000000440), 0x2, 0x0)
ioctl$VIDIOC_G_EXT_CTRLS(r9, 0xc0185648, 0x0)

1.676403946s ago: executing program 2 (id=1588):
r0 = syz_io_uring_setup(0x1104, &(0x7f0000000300)={0x0, 0x0, 0x80, 0x0, 0x8000021e}, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_emit_ethernet(0xbe, &(0x7f00000000c0)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty=0xb0, @empty}, {0x0, 0x4e22, 0x9c, 0x0, @wg}}}}}, 0x0) (async)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) (async)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) (async)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r4)
sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000300)={0x28, r5, 0x607, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0x5}]}, 0x28}}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000380)=@IORING_OP_WRITEV={0x2, 0x3c, 0x171452cc4b7cea2f, @fd_index=0x7, 0x1, &(0x7f00000015c0)=[{&(0x7f00000000c0)="126c1db87ec08cb91a6a6450930cd90f41fb8f010b659121a2c0517df2f34151b2cc04c3e7fff79ff9d9c3594bc9205bae3ebf43b53e817102db1df016d17688685ac55000aeb4a660e8f7c455eb495835595ffbd02e4eb7312b288d2a93f73b942a99e12850d18960623555020d5870ce00f86b51d57207541ffeacbfc170655581d3d5524f83d127540d89c0c0e984383302c855839d4f22d868d6c3f3d4f6eb50b836cbc4e42cad991d38265b678bcf306aefca0603d2fa86bf95e3477507e5e57cb908b0a56c849960b97620ef92eaa519afb820", 0xd6}, {&(0x7f0000000200)="ae354041d21b7238bb18aba8c96d3bdd7b682fc9fc043849cb3bce4df12009e9de3e298e62a963c3f966d9f7887e8205063c643d4e2569115cacedf1f3c934a3c645c1b1eb59cee6a959f5b8ff92bacd47a951ee07454c24b2d01060e078a8e78e1f3b5adc93273f4f5651ecd286780af88902c4dd013fc9b01014b2a6ea9cc4d5d39142fe3bb20be98845d7d77246ff23ef1a1c0f1412c55cefd8f3581ee1700db7dd648e3ee42b62ddaf5c13ac721eebe6360b1ad8d911cc81b9c58a0c0917c27b372c2fe61826a3a53ad304b2142996cf76271ef6243750179adac52d2d3790cab575ac", 0xe5}, {&(0x7f0000000000)="9283a31a5e89115b5e2347d669de1f3bb2e75560dbc02139af1de089", 0x1c}, {&(0x7f00000003c0)="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", 0x1000}, {&(0x7f00000013c0)="0e342e2dc04ade460fc0dfb238ba036bec5a3cc3620c15b2736abeae74a261beb17b521e03f9388457de704c433ab362754421", 0x33}, {&(0x7f0000001400)="d2fbca6bc0ed0bc8dc617c3993fa4fc90d43a74e4801edceb191d1d028a79909857db0113f68dc2350ee17331ac803ea83c946a9bd3c2a48966dd1c0b69343fea3cd13190ffbae60e7ea6385085745d007f07c9721317242666c3cebf7c3f1d1d365c537d7d0efddb28ab092e4bfafad65c36f392e213c15a8427fe735d5842a80dbe09ba40a943a2a35186e9af09690a6f1773d68a5d5fdc597eacc65aa24bc645a9c5c6cc64c8db92bf359227d208f5ad351065cd412e207d746faf4ae0c516c9ea9013c10f5e5e595bd9e41f777a0", 0xd0}, {&(0x7f0000001500)="3099a1127a8621166d768805f1cc0f4a7cd513962fa05b5d9f1cfd185c7a142afe81817cae44f28a70d1b2de183fc0a4ba02b1331230ba25ee07c19b17ffb6b6735333af2c6bc1246ecc38e3c8714f88e9d1759da47a75d0e13b7274dac49982ea599777f614f5cc460074f57f98383536326d76f46d8e950775134a2d78645b28915594242d7428bb71d70af61815", 0x8f}], 0x7, 0x6, 0x1, {0x3, r3}})
io_uring_enter(r0, 0x47fa, 0x0, 0x0, 0x0, 0x0)

1.575695717s ago: executing program 2 (id=1589):
socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0x7d, &(0x7f0000000140)=""/170, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0x7d, &(0x7f0000000140)=""/170, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x0, &(0x7f0000000100)=0x4) (async)
sched_setscheduler(r0, 0x0, &(0x7f0000000100)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) (async)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x50) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x50)
syz_usb_connect(0x0, 0x3f, &(0x7f0000000080)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x103080, 0x0) (async)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x103080, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(r4, 0x4038ae7a, &(0x7f0000000280)={0x2, 0x40000105, 0x0, 0x0})
socket$inet_tcp(0x2, 0x1, 0x0)
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
shutdown(r5, 0x0)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r5, 0x84, 0x66, &(0x7f0000000040), &(0x7f00000000c0)=0x8)
listen(r5, 0x9) (async)
listen(r5, 0x9)
socket$inet_mptcp(0x2, 0x1, 0x106) (async)
socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, 0x0, &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeea, 0x8031, 0xffffffffffffffff, 0x3e000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380))

1.13358848s ago: executing program 1 (id=1591):
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x0, 0xf0, 0x0, 0x0, 0x0, 0x805, 0x0, 0xd, 0x0, 0x0, 0x0}, 0x4c)
socket$kcm(0x10, 0x4, 0x10) (async)
r0 = socket$kcm(0x10, 0x4, 0x10)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r0, 0x8983, &(0x7f00000001c0))
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000180)="d2902018abbad019d5a49c5d5436140000001700", 0x14}, {&(0x7f0000000300)="e9f506b061a841cfddda4a300d0e443aa13ec77cb75c59745fae5757aafe593c154cd9482377dc4ebe653bb9d832a142f53cd524a09275111872a840005ff76f0c441ca3edd2238d60c4cb0b1d98a85fc87d6f7c5160ee04410d45f1734a9fc55747763fbf94fa51200000000000000000000000000000000000000000891ce1bf62322f42699bcb0aeb4101", 0x8c}, {&(0x7f0000000100)="f3df79f074319dc686110f33b64a8f675c6168b344397d72cd3b595f3fb9cb2e4842064d5f88e91161c511ca7d88c593214458af6e55b3f59bdc7132f8857bebb896b35efd0bf78c1adc5674efb89da91158a206c309d60c394af0556d18bcb865d41ec0", 0x64}, {&(0x7f0000000040)="ee973deb077afc7c4659bff6ea71312d0c28fb1bd3cfd23cb7d1e421646589ff9dde9175d849d964bc0d904407b69f3eb8fe92948c43f69a36457aedf20d7a7a9995010000008b6bb462f5d7d34bdd908b554cf8ba3b761804c1555fadc4c8b54b6b7b2c0a6fd07a8b8618", 0x6b}], 0x4}, 0x4000000)

1.075990537s ago: executing program 2 (id=1593):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
r1 = getpgid(0x0)
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r2, &(0x7f0000000040), 0x10)
sendmsg$can_bcm(r2, &(0x7f0000000180)={&(0x7f00000000c0), 0x7, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="0500000081040000fdffffff17e946e5fd8ab760f4a16d6645d01b2e29db210bb9fb124db96ac13e54aca1cb919a114a8bf091713ea8f6cc2d5c5c51fa443f0e39847080e7b01d8d7130568f692cffcf5146f45e5560eac3", @ANYRES32=0x0, @ANYRES32=0xea60, @ANYRES32=0x0, @ANYRES32=0x2710, @ANYBLOB="030000c00100000002000040000100005f1075394a529216"], 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x40000c4)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
socket$packet(0x11, 0x2, 0x300)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$SNDCTL_DSP_SETFMT(0xffffffffffffffff, 0xc0045005, &(0x7f0000000040)=0x4)
r5 = socket(0x1e, 0x4, 0x0)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r6, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x4, 0x1}, 0xe)
listen(r6, 0x90004)
accept4(r6, 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000140)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
setsockopt$packet_tx_ring(r5, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7fffffff, 0x400, 0x1, 0xb, 0x1, 0x6, 0x7ff}, 0x1c)
recvmmsg$unix(r5, &(0x7f0000003100)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000480)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
sendmmsg(r5, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
sendmsg$NL80211_CMD_NEW_STATION(r0, 0x0, 0x4814)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r7=>0xffffffffffffffff})
connect$unix(r7, 0x0, 0x0)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x1c5ed000)

1.0756499s ago: executing program 1 (id=1594):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000020001801000020646c2100000000002020007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000280)={0xa, 0x4e22, 0x9, @loopback, 0x6}, 0x1c) (async)
setsockopt$sock_int(r2, 0x1, 0x2a, &(0x7f0000000000)=0x43, 0x4)
connect$inet6(r2, &(0x7f0000000140)={0xa, 0x4e22, 0x23, @loopback, 0x23}, 0x1c) (async)
sendmmsg$inet6(r2, &(0x7f00000008c0)=[{{0x0, 0x0, &(0x7f0000003640)=[{&(0x7f0000002440)="4137a2", 0x3}], 0x1}}], 0x1, 0x4000001)
r3 = dup(r2)
read$FUSE(r3, &(0x7f00000075c0)={0x2020}, 0x2020) (async, rerun: 64)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x18, 0x11, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000fbffffff00000000e669000018110000", @ANYRES32=r0, @ANYBLOB="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"], &(0x7f00000004c0)='syzkaller\x00', 0x22f, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x4, 0x5}, 0x8, 0x10, &(0x7f00000005c0)={0x4, 0x10, 0xa, 0xdf}, 0x10, 0x0, 0x0, 0x4, &(0x7f0000000600)=[r0, r0, r3], &(0x7f0000000640)=[{0x4, 0x4, 0x6}, {0x2, 0x2, 0x2, 0xa}, {0x0, 0x3, 0x6, 0xb}, {0x1, 0x4, 0xc, 0x6}], 0x10, 0x8}, 0x94) (rerun: 64)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x4, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r4}, 0x10)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r5}, 0x10)
mount$bind(0x0, 0x0, 0x0, 0x0, 0x0)
r6 = signalfd4(0xffffffffffffffff, &(0x7f0000000080)={[0x20000000]}, 0x8, 0x0)
r7 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r6, &(0x7f00000000c0))
prlimit64(0x0, 0xb, &(0x7f0000000000), 0x0) (async)
r8 = gettid()
rt_sigqueueinfo(r8, 0x21, &(0x7f0000000040)) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async, rerun: 32)
creat(&(0x7f00000000c0)='./file0\x00', 0x43) (async, rerun: 32)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r9, &(0x7f0000000100)={0xa, 0x4e22, 0x5ccc6e75, @rand_addr, 0x3}, 0x1c) (async)
listen(r9, 0x3) (async, rerun: 32)
mount$9p_tcp(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', &(0x7f00000002c0), 0x58081, &(0x7f0000000180)=ANY=[@ANYRESHEX=r4]) (async, rerun: 32)
close_range(r9, r9, 0x0)

1.073998016s ago: executing program 4 (id=1595):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000240)={'wlan1\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TDLS_MGMT(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000500)={0x1c, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}}, 0x1c}}, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r4}, 0x18)
r5 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r5, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)
r6 = epoll_create1(0x80000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmmsg$unix(r7, &(0x7f00000bd000), 0x318, 0x0)
r8 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r8, 0x1, r7, &(0x7f0000000040)={0xa0000004})
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r7, &(0x7f0000000100)={0x20000014})
epoll_ctl$EPOLL_CTL_ADD(r8, 0x1, r6, &(0x7f0000000140)={0xa0000001})
epoll_wait(r8, &(0x7f0000000280)=[{}], 0x1, 0x4000005)
close_range(r3, 0xffffffffffffffff, 0x0)

999.97896ms ago: executing program 1 (id=1596):
syz_emit_ethernet(0x2a, &(0x7f0000000040)=ANY=[@ANYBLOB="0180c2000000a541ae4646320800451c001c0000000000029078ac1e0001ac1414aa12009078e000000179b477bedd1dfdf106a5955841ee"], 0x0)
r0 = syz_io_uring_setup(0x39, &(0x7f0000000580)={0x0, 0xe7b7, 0x13500, 0x3}, &(0x7f0000000240), &(0x7f0000001880))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = signalfd(r0, &(0x7f0000000080)={[0x8, 0x7]}, 0x8)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000340)={'dvmrp1\x00', 0x7101})
ioctl$TUNSETOFFLOAD(r2, 0x400454c9, 0xba98575a95aeb70d)
ioctl$TUNSETVNETLE(r2, 0x400454cc, 0x0)
write$tun(r1, &(0x7f0000000180)={@void, @val={0x3, 0x0, 0x200, 0x8, 0x6ee8, 0x6}, @mpls={[{0x5}, {0xfbf}, {0x3}, {0x5, 0x0, 0x1}, {0xb00a}, {0xc99}, {0x8}], @ipv4=@icmp={{0x7, 0x4, 0x3, 0x0, 0x24, 0x66, 0x0, 0x1, 0x1, 0x0, @multicast1, @broadcast, {[@lsrr={0x83, 0x7, 0x6, [@broadcast]}]}}, @address_request={0x11, 0x0, 0x0, 0x10001}}}}, 0x4a)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x841, 0x0)
fsopen(&(0x7f0000000000)='befs\x00', 0x1)
close_range(r3, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r0, 0x21, &(0x7f0000000440), 0x1)
r4 = syz_usb_connect(0x5, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="120100000cb768405e0483020b990102030109021b000100000000090400000101292000090509"], 0x0)
syz_usb_control_io$hid(r4, 0x0, 0x0)
syz_open_dev$audion(&(0x7f00000011c0), 0x3, 0x8c4201)

830.454233ms ago: executing program 4 (id=1597):
r0 = openat(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', 0x42580, 0x166)
close(r0)
execveat(r0, &(0x7f0000000080)='./file1\x00', 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r1, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000480)={0x1, 0x0, 0x0, &(0x7f0000001740)=""/97, 0x0})
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040))
bpf$MAP_CREATE(0x0, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r2, 0x40182103, &(0x7f0000000080)={0x0, 0x3, r2})
r3 = eventfd2(0x1, 0x1)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
arch_prctl$ARCH_SHSTK_ENABLE(0x5001, 0x2)
ioctl$VHOST_SET_VRING_ERR(r1, 0x4008af22, &(0x7f00000001c0)={0x0, r3})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000003700)={0x0, 0x0, 0x0, &(0x7f00000004c0)=""/152, 0x0, 0x100000})
r4 = syz_usb_connect(0x0, 0x2d, &(0x7f00000012c0)=ANY=[], 0x0)
syz_usb_control_io(r4, 0x0, 0x0)
r5 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
read$char_usb(0xffffffffffffffff, &(0x7f0000000340)=""/63, 0x3f)
writev(r5, &(0x7f0000000480)=[{&(0x7f00000003c0)='1', 0x1}], 0x1)
syz_usb_ep_write$ath9k_ep1(r4, 0x82, 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_DEL_PMKSA(r6, &(0x7f0000001e40)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r7, @ANYRES16=r8, @ANYRES32=r8, @ANYBLOB="0a0034000202020202020000"], 0x28}, 0x1, 0x0, 0x0, 0xc090}, 0x800)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000000)={0x0, r3})
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f00000000c0)=0x1)

477.619166ms ago: executing program 4 (id=1598):
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f0000002840)='./file0\x00', &(0x7f0000002880), 0x700, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn'])
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xa8480, 0xa0)
socket(0x15, 0x3, 0x8000)
ioctl$KVM_GET_MSR_FEATURE_INDEX_LIST(r1, 0xc004ae0a, &(0x7f0000000000)={0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
getpid()
statx(r1, &(0x7f0000000900)='./file0\x00', 0x4000, 0x200, 0x0)

276.219933ms ago: executing program 4 (id=1599):
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
ioctl$KVM_SET_MSRS(r0, 0x4008ae89, &(0x7f0000000140)=ANY=[@ANYBLOB="0800000000000000a701000000000000ffffffff000000008b0b0000000000000d00000000000000044d564b000000000600000000000000db0b000000000000030000000000000088040000000000000800000000000000390200000000000000000000000000000000000000000000030000000000000010060000000000000000010000000000"])
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x150)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f0000000100)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@index_off}, {@nfs_export_on}]})

273.898363ms ago: executing program 4 (id=1600):
syz_open_procfs$namespace(0x0, &(0x7f0000000100)='ns/uts\x00')
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x3}, {0x0, [0x0]}}, 0x0, 0x1b}, 0x28)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_ro(r0, &(0x7f0000000140)='memory.stat\x00', 0x275a, 0x0)
read$FUSE(r1, &(0x7f0000000440)={0x2020}, 0x2020)
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21}, &(0x7f0000bbdffc)=<r2=>0x0)
r3 = socket$inet6(0xa, 0x3, 0x6)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000080)={{{@in6=@private0, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x4, 0x0, 0x400000000}, {}, 0x0, 0x0, 0x1}, {{@in=@broadcast, 0x0, 0x3c}, 0x0, @in6=@ipv4={'\x00', '\xff\xff', @private}, 0x0, 0x5, 0x1, 0x0, 0x2000000}}, 0xe4)
timer_settime(r2, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x77359400}}, 0x0)
creat(&(0x7f0000000480)='./file0\x00', 0xc)
syz_clone3(0x0, 0x0)
r4 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x60})
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
open$dir(0x0, 0x101000, 0x94)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r5, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4)
sendto$inet(r5, &(0x7f00000004c0)="3ce2de4d8d957a8de4e490b6cd03b988d4edef164bd3377aa381b5f50b7ca414516489f78cd7208982e9bde22b2b7c1c7606d565477f3db9d2b077283644c0f27ab52a863a42863e06944e40a0b3c5d21c8cbe102e7f726263f28aef1bc12a069063d4c30e8f329fdb36859be727fbef4314161e5fb5f01ae00a2634d5cdecca2089c62e32f4c919886b2b88d237e287318739bec0364caf15889f38a312ef6621c0f21709a4bf2b16274cf933f6ad8fcc9c2024bc1b4713f650e860f93ae93b2361956b3e80c38c5fd29b5c1b5d7ce67edc856a8dc0ba54ce", 0xd9, 0x805, 0x0, 0x0)
recvmmsg(r5, &(0x7f00000031c0)=[{{0x0, 0x0, &(0x7f0000000a40)=[{&(0x7f00000008c0)=""/135, 0x87}], 0x1}}, {{0x0, 0x0, 0x0}, 0x2}], 0x2, 0x22, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x1ff, 0x7, 0x5000, 0x1000, &(0x7f000060e000/0x1000)=nil})
r6 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r6, 0xc02064b2, &(0x7f0000000040)={0x5, 0x6574, 0x2})
mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r6, 0x100000)
openat$vicodec1(0xffffffffffffff9c, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)

142.541892ms ago: executing program 4 (id=1601):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$FIDEDUPERANGE(r0, 0xc0189436, &(0x7f0000000100)={0x1, 0x100000001, 0x3, 0x0, 0x0, [{{r0}, 0x3}, {{r0}, 0x7fffffffffffffff}, {{r0}, 0x9}]})
prctl$PR_MCE_KILL(0x4e, 0x1, 0x4000)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
r3 = socket$alg(0x26, 0x5, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000200)={'geneve1\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000010c0)=ANY=[@ANYBLOB="3401000010000100"/20, @ANYRES32=r5, @ANYBLOB="000000000000000014011a80400002803c00018008002100000000000800180000000000080003000000000008000900"], 0x134}}, 0x0)
bind$alg(r3, &(0x7f00000004c0)={0x26, 'hash\x00', 0x0, 0x0, 'sha224\x00'}, 0x58)
r6 = accept4(r3, 0x0, 0x0, 0x800)
sendto$inet(r6, &(0x7f0000000000)='\x00', 0x1, 0x24008800, 0x0, 0x0)
sendmsg$NL80211_CMD_GET_MPP(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000001000)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="050300000000000000006b00000008000300", @ANYRES32=r2], 0x28}, 0x1, 0x0, 0x0, 0x48041}, 0x4010)

92.09002ms ago: executing program 2 (id=1602):
syz_emit_ethernet(0x4e, &(0x7f0000000500)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @local, @val={@void}, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0xffffffffffffff2d, 0x2f, 0x0, @empty, @loopback, {[], {{0x0, 0x8906, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x8}}}}}}}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0xe68, 0x30, 0x871a15abc695fa3d, 0x0, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)

69.097136ms ago: executing program 2 (id=1603):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r0, &(0x7f0000000600)={0x2, 0x4e23, 0x0, @dev}, 0x1c)
r1 = syz_open_dev$swradio(&(0x7f00000001c0), 0x0, 0x2)
ioctl$VIDIOC_ENUM_FMT(r1, 0xc0585611, &(0x7f00000000c0)={0x0, 0xb, 0x0, "3e58f67896b2f2098200902177392faff604cb7ef87e7610bc39ef64257f5d33"})
r2 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r2, &(0x7f0000000280)=[{&(0x7f0000000080)="580000001400add4050000000000000002117fffffff81004e230e227f000001925aa80020007b00090080007f000001e809000000ffff0100f5c71002000000ffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1)

0s ago: executing program 2 (id=1604):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/meminfo\x00', 0x0, 0x0)
ioctl$SIOCAX25CTLCON(r0, 0x89e8, &(0x7f0000000240)={@null, @default, @null, 0x2, 0x9, 0x6, [@bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]})
read$FUSE(r0, &(0x7f00000005c0)={0x2020}, 0x2020)
getpeername(r0, &(0x7f00000003c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @initdev}}}, &(0x7f00000002c0)=0x80)
getsockopt$inet6_mreq(r0, 0x29, 0x14, &(0x7f0000000000)={@rand_addr, <r1=>0x0}, &(0x7f0000000040)=0x14)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x6, 0x5, &(0x7f0000001b40)=ANY=[@ANYRES16=r1], &(0x7f0000000140)='GPL\x00', 0xffffffff, 0x43, 0x0, 0x0, 0x0, '\x00', r1, @fallback, r0}, 0x94)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f0000000180)={'pcl818\x00', [0x3, 0x80, 0x856, 0x1, 0x4, 0x6, 0x400, 0x3, 0x5, 0x3ff, 0x7f, 0x6, 0x9, 0x80, 0x0, 0x3, 0x60000, 0x75, 0x9, 0x5, 0x1, 0x80000000, 0x2, 0x0, 0x0, 0x2, 0x10000, 0xfffffffb, 0x6, 0x4, 0xeb87, 0x5]})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r2, 0x18000000000002a0, 0x10, 0x0, &(0x7f0000000300)="76389e147583ddd0569ba56a5cfd5588", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

kernel console output (not intermixed with test programs):

ytes
[  154.657857][    C0] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  154.659910][    C0] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  154.664522][ T8754] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  154.671532][    T9] usb 6-1: USB disconnect, device number 16
[  155.063692][ T8764] vivid-007: =================  START STATUS  =================
[  155.066198][ T8764] vivid-007: Enable Output Cropping: true
[  155.068114][ T8764] vivid-007: Enable Output Composing: true
[  155.069955][ T8764] vivid-007: Enable Output Scaler: true
[  155.071752][ T8764] vivid-007: Tx RGB Quantization Range: Automatic
[  155.073945][ T8764] vivid-007: Transmit Mode: HDMI
[  155.076004][ T8764] vivid-007: Hotplug Present: 0x00000000
[  155.078165][ T8764] vivid-007: RxSense Present: 0x00000000
[  155.080257][ T8764] vivid-007: EDID Present: 0x00000000
[  155.082316][ T8764] vivid-007: ==================  END STATUS  ==================
[  155.661338][ T8772] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  158.644232][ T8796] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  159.090503][ T8808] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  159.538139][ T8824] vivid-007: =================  START STATUS  =================
[  159.540511][ T8824] vivid-007: Enable Output Cropping: true
[  159.542274][ T8824] vivid-007: Enable Output Composing: true
[  159.544087][ T8824] vivid-007: Enable Output Scaler: true
[  159.545917][ T8824] vivid-007: Tx RGB Quantization Range: Automatic
[  159.547971][ T8824] vivid-007: Transmit Mode: HDMI
[  159.549484][ T8824] vivid-007: Hotplug Present: 0x00000000
[  159.551205][ T8824] vivid-007: RxSense Present: 0x00000000
[  159.552920][ T8824] vivid-007: EDID Present: 0x00000000
[  159.554636][ T8824] vivid-007: ==================  END STATUS  ==================
[  160.295504][ T8833] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  160.297641][ T8833] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  160.300663][ T8833] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  161.097187][ T8854] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  161.602050][ T8865] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  162.254526][ T5992] Bluetooth: hci1: command 0x0c1a tx timeout
[  162.344558][ T5992] Bluetooth: hci3: command 0x0405 tx timeout
[  162.347810][ T5992] Bluetooth: hci2: command 0x0c1a tx timeout
[  162.622194][ T8877] vivid-007: =================  START STATUS  =================
[  162.624832][ T8877] vivid-007: Enable Output Cropping: true
[  162.626616][ T8877] vivid-007: Enable Output Composing: true
[  162.629031][ T8877] vivid-007: Enable Output Scaler: true
[  162.631027][ T8877] vivid-007: Tx RGB Quantization Range: Automatic
[  162.633373][ T8877] vivid-007: Transmit Mode: HDMI
[  162.635095][ T8877] vivid-007: Hotplug Present: 0x00000000
[  162.637242][ T8877] vivid-007: RxSense Present: 0x00000000
[  162.638966][ T8877] vivid-007: EDID Present: 0x00000000
[  162.640596][ T8877] vivid-007: ==================  END STATUS  ==================
[  162.928523][ T8889] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  165.923228][ T8928] sp0: Synchronizing with TNC
[  167.658456][ T8951] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  169.580455][ T8995] sp0: Synchronizing with TNC
[  171.203923][ T9022] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  171.811700][ T9036] trusted_key: encrypted_key: keylen parameter is missing
[  172.284278][ T9052] delete_channel: no stack
[  172.351598][ T9047] Process accounting resumed
[  172.525267][ T9040] IPVS: Scheduler module ip_vs_sip not found
[  173.320470][ T9085] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  174.260588][ T9138] futex_wake_op: syz.0.691 tries to shift op by -1; fix this program
[  174.457708][ T9138] 9pnet: Unknown protocol version 9p2000.u]��Yπ��6�~�
[  174.508501][ T9145] bridge2: entered promiscuous mode
[  174.510807][ T9145] bridge2: entered allmulticast mode
[  175.329441][ T9168] overlayfs: overlapping lowerdir path
[  175.345325][ T9166] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  175.388593][ T9170] overlayfs: missing 'lowerdir'
[  176.282747][ T9188] syzkaller1: entered promiscuous mode
[  176.284799][ T9188] syzkaller1: entered allmulticast mode
[  176.289601][ T9188] trusted_key: syz.0.702 sent an empty control message without MSG_MORE.
[  176.566839][ T5992] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  176.631111][ T9203] netlink: 4 bytes leftover after parsing attributes in process `syz.0.707'.
[  176.633957][ T9203] Unsupported xt match
[  176.633963][ T9203] unable to load match
[  176.877643][ T9211] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  177.238018][   T40] audit: type=1326 audit(1756795165.581:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9225 comm="syz.2.712" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  177.245673][   T40] audit: type=1326 audit(1756795165.591:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9225 comm="syz.2.712" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  177.252860][   T40] audit: type=1326 audit(1756795165.591:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9225 comm="syz.2.712" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf707e579 code=0x7ffc0000
[  177.260668][   T40] audit: type=1326 audit(1756795165.591:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9225 comm="syz.2.712" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  177.267718][   T40] audit: type=1326 audit(1756795165.591:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9225 comm="syz.2.712" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  177.275268][   T40] audit: type=1326 audit(1756795165.601:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9225 comm="syz.2.712" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf707e579 code=0x7ffc0000
[  177.285786][   T40] audit: type=1326 audit(1756795165.601:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9225 comm="syz.2.712" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  177.293560][   T40] audit: type=1326 audit(1756795165.601:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9225 comm="syz.2.712" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf707e579 code=0x7ffc0000
[  177.296229][ T9224] /dev/sr0: Can't open blockdev
[  177.306657][   T40] audit: type=1326 audit(1756795165.601:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9225 comm="syz.2.712" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  177.318502][   T40] audit: type=1326 audit(1756795165.611:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9225 comm="syz.2.712" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  177.544503][ T6085] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  177.704682][ T6085] usb 6-1: Using ep0 maxpacket: 8
[  177.708848][ T6085] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  177.712058][ T6085] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  177.715232][ T6085] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 800
[  177.718549][ T6085] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  177.722481][ T6085] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  177.725535][ T6085] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  177.938595][ T6085] usb 6-1: usb_control_msg returned -32
[  177.944260][ T6085] usbtmc 6-1:16.0: can't read capabilities
[  178.035311][ T1344] usb 6-1: USB disconnect, device number 17
[  178.574528][ T5987] Bluetooth: hci2: command 0x0c1a tx timeout
[  178.975438][ T9256] input: syz1 as /devices/virtual/input/input12
[  179.374535][ T5992] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  179.374637][ T5987] Bluetooth: hci4: command 0x1003 tx timeout
[  179.636342][ T9278] fuse: blksize only supported for fuseblk
[  179.638975][ T9276] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  179.640573][ T9279] fuse: blksize only supported for fuseblk
[  179.794212][ T9286] tmpfs: Unknown parameter 'grpq\��S��B~�I����'
[  180.126120][ T9293] autofs: Unknown parameter '0x0000000000000000'
[  180.842523][ T9318] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  180.851030][ T9327] IPVS: set_ctl: invalid protocol: 12 255.255.255.255:20003
[  180.853877][ T9328] IPVS: set_ctl: invalid protocol: 12 255.255.255.255:20003
[  181.143548][ T9358] overlayfs: missing 'lowerdir'
[  181.369006][ T9366] netlink: 80 bytes leftover after parsing attributes in process `syz.0.745'.
[  181.506261][ T9376] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.747' sets config #3
[  181.515134][ T9373] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  182.370226][ T9422] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  183.154838][ T1344] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  183.823703][ T9449] comedi comedi2: comedi_parport: I/O port conflict (0x800cf7,3)
[  184.427455][ T9466] netlink: 'syz.2.767': attribute type 10 has an invalid length.
[  184.432861][ T9466] dummy0: left allmulticast mode
[  184.436668][ T9466] dummy0: left promiscuous mode
[  184.438365][ T9466] bridge0: port 3(dummy0) entered disabled state
[  184.446658][ T9466] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  184.669571][ T9472] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  184.944837][ T9486] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  184.947161][ T9486] UDF-fs: Scanning with blocksize 2048 failed
[  184.949668][ T9486] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  184.951946][ T9486] UDF-fs: Scanning with blocksize 4096 failed
[  185.330052][ T9486] syz.1.766 (9486) used greatest stack depth: 19560 bytes left
[  185.646935][ T9524] tmpfs: Bad value for 'mpol'
[  185.707039][ T9528] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  186.766279][ T9568] netlink: 'syz.1.788': attribute type 1 has an invalid length.
[  186.791961][ T9568] 8021q: adding VLAN 0 to HW filter on device bond3
[  187.149114][ T9572] netlink: 8 bytes leftover after parsing attributes in process `syz.3.791'.
[  187.156565][ T9572] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  187.404021][ T9576] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  187.777029][ T9600] block nbd1: Attempted send on invalid socket
[  187.779540][ T9600] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  187.977866][ T9615] comedi comedi0: Minor 7 could not be opened
[  188.105821][ T9627] random: crng reseeded on system resumption
[  188.395208][ T5992] Bluetooth: hci2: SCO packet for unknown connection handle 200
[  188.463732][ T9630] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  188.688082][ T9654] netlink: 244 bytes leftover after parsing attributes in process `syz.0.811'.
[  188.691964][ T9654] netlink: 244 bytes leftover after parsing attributes in process `syz.0.811'.
[  188.971424][ T9675] bridge1: entered promiscuous mode
[  189.068741][ T9677] netlink: 16 bytes leftover after parsing attributes in process `syz.1.815'.
[  189.484209][ T9697] netlink: 20 bytes leftover after parsing attributes in process `syz.2.821'.
[  190.121400][ T9710] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  190.173811][ T9716] binder: 9715:9716 ioctl c018620c 80000380 returned -22
[  190.242463][ T9722] netlink: 8 bytes leftover after parsing attributes in process `syz.0.829'.
[  191.000840][ T9755] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  192.512716][ T9787] hugetlbfs: syz.3.844 (9787): Using mlock ulimits for SHM_HUGETLB is obsolete
[  192.631557][ T9797] raw_sendmsg: syz.0.847 forgot to set AF_INET. Fix it!
[  192.642957][ T9797] netlink: 8 bytes leftover after parsing attributes in process `syz.0.847'.
[  192.652119][ T9797] vlan2: entered allmulticast mode
[  192.654030][ T9797] vlan1: entered allmulticast mode
[  192.656644][ T9797] veth0_vlan: entered allmulticast mode
[  192.749102][ T9801] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  192.760235][ T9805] ieee802154 phy0 wpan0: encryption failed: -22
[  193.607531][ T9835] netlink: 256 bytes leftover after parsing attributes in process `syz.1.853'.
[  193.610870][ T9835] unsupported nlmsg_type 40
[  193.679408][ T9812] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  193.778884][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  193.801377][ T9842] loop6: detected capacity change from 0 to 63
[  193.813021][ T9842] Buffer I/O error on dev loop6, logical block 0, lost async page write
[  193.819197][ T9842] Buffer I/O error on dev loop6, logical block 1, lost async page write
[  193.822089][ T9842] Buffer I/O error on dev loop6, logical block 2, lost async page write
[  193.826836][ T9842] Buffer I/O error on dev loop6, logical block 3, lost async page write
[  193.829238][ T9842] Buffer I/O error on dev loop6, logical block 4, lost async page write
[  193.831567][ T9842] Buffer I/O error on dev loop6, logical block 5, lost async page write
[  193.833901][ T9842] Buffer I/O error on dev loop6, logical block 6, lost async page write
[  194.082651][ T9855] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  194.268076][ T9866] KVM: debugfs: duplicate directory 9866-8
[  194.771986][ T9881] Illegal XDP return value 4294967294 on prog  (id 142) dev N/A, expect packet loss!
[  195.019847][ T9888] vivid-007: =================  START STATUS  =================
[  195.023028][ T9888] vivid-007: Enable Output Cropping: true
[  195.026658][ T9888] vivid-007: Enable Output Composing: true
[  195.029129][ T9888] vivid-007: Enable Output Scaler: true
[  195.031541][ T9888] vivid-007: Tx RGB Quantization Range: Automatic
[  195.033562][ T9888] vivid-007: Transmit Mode: HDMI
[  195.035210][ T9888] vivid-007: Hotplug Present: 0x00000000
[  195.037034][ T9888] vivid-007: RxSense Present: 0x00000000
[  195.038834][ T9888] vivid-007: EDID Present: 0x00000000
[  195.040593][ T9888] vivid-007: ==================  END STATUS  ==================
[  195.649693][ T9894] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  195.847392][ T9899] kvm: user requested TSC rate below hardware speed
[  195.851145][ T9899] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=198462431 (396924862 ns) > initial count (148514 ns). Using initial count to start timer.
[  195.944150][ T9906] capability: warning: `syz.2.872' uses 32-bit capabilities (legacy support in use)
[  196.066408][ T9912] netlink: 'syz.2.875': attribute type 21 has an invalid length.
[  196.069518][ T9912] netlink: 152 bytes leftover after parsing attributes in process `syz.2.875'.
[  196.401191][ T9919] mac80211_hwsim hwsim9 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  197.222348][ T9936] vivid-007: =================  START STATUS  =================
[  197.224953][ T9936] vivid-007: Enable Output Cropping: true
[  197.226828][ T9936] vivid-007: Enable Output Composing: true
[  197.228749][ T9936] vivid-007: Enable Output Scaler: true
[  197.230577][ T9936] vivid-007: Tx RGB Quantization Range: Automatic
[  197.232608][ T9936] vivid-007: Transmit Mode: HDMI
[  197.234328][ T9936] vivid-007: Hotplug Present: 0x00000000
[  197.237577][ T9936] vivid-007: RxSense Present: 0x00000000
[  197.239473][ T9936] vivid-007: EDID Present: 0x00000000
[  197.241226][ T9936] vivid-007: ==================  END STATUS  ==================
[  197.990548][ T9942] 9pnet_fd: Insufficient options for proto=fd
[  198.144465][ T9948] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  198.146538][ T9948] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  198.149008][ T9948] vhci_hcd vhci_hcd.0: Device attached
[  198.413087][ T9949] vhci_hcd: connection closed
[  198.413324][   T12] vhci_hcd: stop threads
[  198.416340][   T12] vhci_hcd: release socket
[  198.417747][   T12] vhci_hcd: disconnect device
[  198.420639][ T9954] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  199.002315][ T9982] netlink: 72 bytes leftover after parsing attributes in process `syz.1.889'.
[  199.595984][ T9998] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  201.356944][T10008] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  201.625674][T10021] KVM: debugfs: duplicate directory 10021-8
[  201.965815][   T53] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  201.983672][T10031] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  202.806078][ T5992] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  204.814511][ T5992] Bluetooth: hci1: command 0x0c1a tx timeout
[  209.274832][T10103] vivid-007: =================  START STATUS  =================
[  209.278657][T10103] vivid-007: Enable Output Cropping: true
[  209.281878][T10103] vivid-007: Enable Output Composing: true
[  209.283826][T10103] vivid-007: Enable Output Scaler: true
[  209.285833][T10103] vivid-007: Tx RGB Quantization Range: Automatic
[  209.287889][T10103] vivid-007: Transmit Mode: HDMI
[  209.290388][T10103] vivid-007: Hotplug Present: 0x00000000
[  209.292483][T10103] vivid-007: RxSense Present: 0x00000000
[  209.294331][T10103] vivid-007: EDID Present: 0x00000000
[  209.296237][T10103] vivid-007: ==================  END STATUS  ==================
[  210.147790][T10114] netlink: 4 bytes leftover after parsing attributes in process `syz.0.916'.
[  210.152061][T10114] netlink: 12 bytes leftover after parsing attributes in process `syz.0.916'.
[  210.414837][ T1344] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  210.797972][T10132] netlink: 8 bytes leftover after parsing attributes in process `syz.1.920'.
[  210.800900][T10132] netlink: 24 bytes leftover after parsing attributes in process `syz.1.920'.
[  210.858090][T10133] netlink: 16 bytes leftover after parsing attributes in process `syz.1.920'.
[  211.484751][T10156] vivid-007: =================  START STATUS  =================
[  211.487833][T10156] vivid-007: Enable Output Cropping: true
[  211.490228][T10156] vivid-007: Enable Output Composing: true
[  211.492891][T10156] vivid-007: Enable Output Scaler: true
[  211.495455][T10156] vivid-007: Tx RGB Quantization Range: Automatic
[  211.498387][T10156] vivid-007: Transmit Mode: HDMI
[  211.500694][T10156] vivid-007: Hotplug Present: 0x00000000
[  211.503313][T10156] vivid-007: RxSense Present: 0x00000000
[  211.505976][T10156] vivid-007: EDID Present: 0x00000000
[  211.508412][T10156] vivid-007: ==================  END STATUS  ==================
[  212.837227][T10178] usb 2-1: USB disconnect, device number 3
[  213.224143][T10181] hub 2-0:1.0: USB hub found
[  213.226858][T10181] hub 2-0:1.0: 6 ports detected
[  213.454554][ T3245] usb 2-1: new high-speed USB device number 4 using ehci-pci
[  213.649681][ T3245] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[  213.652449][ T3245] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[  213.657064][ T3245] usb 2-1: Product: QEMU USB Tablet
[  213.658825][ T3245] usb 2-1: Manufacturer: QEMU
[  213.660463][ T3245] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[  213.692006][ T3245] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0006/input/input13
[  213.777748][ T3245] hid-generic 0003:0627:0001.0006: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[  213.790171][T10194] netlink: 8 bytes leftover after parsing attributes in process `syz.0.935'.
[  214.405931][T10216] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  215.991707][T10237] ubi31: attaching mtd0
[  215.995619][T10237] ubi31: scanning is finished
[  215.997354][T10237] ubi31: empty MTD device detected
[  216.052856][T10237] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[  216.055225][T10237] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  216.057750][T10237] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[  216.059948][T10237] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[  216.062214][T10237] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  216.064334][T10237] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[  216.066994][T10237] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 2592523343
[  216.070110][T10237] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  216.073845][T10241] ubi31: background thread "ubi_bgt31d" started, PID 10241
[  216.152776][T10231] uprobe: syz.0.944:10231 failed to unregister, leaking uprobe
[  216.353026][T10252] netlink: 4 bytes leftover after parsing attributes in process `syz.0.948'.
[  216.356778][T10252] netlink: 4 bytes leftover after parsing attributes in process `syz.0.948'.
[  216.438769][T10256] tipc: Cannot configure node identity twice
[  216.642388][ T1148] Bluetooth: hci4: Frame reassembly failed (-84)
[  216.705147][T10270] UHID_CREATE from different security context by process 891 (syz.1.954), this is not allowed.
[  216.706898][   T61] hid_parser_main: 19 callbacks suppressed
[  216.706909][   T61] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  216.712487][   T61] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  216.714927][   T61] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  216.717171][   T61] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  216.719372][   T61] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  216.721581][   T61] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  216.724479][   T61] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  216.726719][   T61] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  216.728901][   T61] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  216.731125][   T61] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  216.739683][   T61] hid-generic 0000:0000:0000.0007: hidraw1: <UNKNOWN> HID v0.03 Device [syz1] on syz1
[  218.302185][T10293] netlink: 28 bytes leftover after parsing attributes in process `syz.2.959'.
[  218.366887][T10295] random: crng reseeded on system resumption
[  218.536424][T10293] netlink: 28 bytes leftover after parsing attributes in process `syz.2.959'.
[  218.654539][ T5987] Bluetooth: hci4: command 0x1003 tx timeout
[  218.657373][ T5992] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  218.804273][T10301] netlink: 16 bytes leftover after parsing attributes in process `syz.0.960'.
[  218.858384][T10293] netlink: 28 bytes leftover after parsing attributes in process `syz.2.959'.
[  220.804137][T10324] overlayfs: missing 'lowerdir'
[  221.221519][T10329] netlink: 4 bytes leftover after parsing attributes in process `syz.1.965'.
[  221.807556][T10336] netlink: 20 bytes leftover after parsing attributes in process `syz.0.967'.
[  221.810276][T10336] netlink: 'syz.0.967': attribute type 1 has an invalid length.
[  221.836467][T10336] 8021q: adding VLAN 0 to HW filter on device bond2
[  221.880732][T10342] binder_alloc: 10341: binder_alloc_buf size 1024 failed, no address space
[  221.885727][T10342] binder_alloc: allocated: 12288 (num: 2 largest: 12280), free: 0 (num: 0 largest: 0)
[  221.969695][T10344] vivid-007: =================  START STATUS  =================
[  221.972272][T10344] vivid-007: Enable Output Cropping: true
[  221.974345][T10344] vivid-007: Enable Output Composing: true
[  221.976721][T10344] vivid-007: Enable Output Scaler: true
[  221.978650][T10344] vivid-007: Tx RGB Quantization Range: Automatic
[  221.980798][T10344] vivid-007: Transmit Mode: HDMI
[  221.982436][T10344] vivid-007: Hotplug Present: 0x00000000
[  221.984939][T10344] vivid-007: RxSense Present: 0x00000000
[  221.987485][T10344] vivid-007: EDID Present: 0x00000000
[  221.989408][T10344] vivid-007: ==================  END STATUS  ==================
[  222.749111][T10358] netlink: 372 bytes leftover after parsing attributes in process `syz.2.973'.
[  222.753476][ T6018] hid-generic 0005:0007:0007.0008: reserved main item tag 0xd
[  222.755946][ T6018] hid-generic 0005:0007:0007.0008: unexpected long global item
[  222.758511][ T6018] hid-generic 0005:0007:0007.0008: probe with driver hid-generic failed with error -22
[  223.625845][T10374] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10)
[  223.627894][T10374] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  223.630265][T10374] vhci_hcd vhci_hcd.0: Device attached
[  223.824469][ T6018] vhci_hcd: vhci_device speed not set
[  223.896353][ T6018] usb 37-1: new low-speed USB device number 3 using vhci_hcd
[  224.454499][T10376] vhci_hcd: connection reset by peer
[  224.496762][ T1148] vhci_hcd: stop threads
[  224.498127][ T1148] vhci_hcd: release socket
[  224.499566][ T1148] vhci_hcd: disconnect device
[  224.974458][T10386] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  224.976694][T10386] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  224.991539][T10386] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  225.001772][T10386] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  225.009248][T10386] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  225.038008][T10400] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(10)
[  225.040143][T10400] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  225.043879][T10400] vhci_hcd vhci_hcd.0: Device attached
[  225.243963][ T1344] vhci_hcd: vhci_device speed not set
[  225.304612][ T1344] usb 41-1: new full-speed USB device number 4 using vhci_hcd
[  225.600078][ T5987] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  225.604114][ T5987] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  225.608177][ T5987] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  225.612576][ T5987] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  225.617872][ T5987] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  225.884044][T10402] vhci_hcd: connection reset by peer
[  225.911671][ T6195] vhci_hcd: stop threads
[  225.913377][ T6195] vhci_hcd: release socket
[  225.916329][ T6195] vhci_hcd: disconnect device
[  226.066986][T10415] chnl_net:caif_netlink_parms(): no params data found
[  226.264515][ T5992] Bluetooth: hci1: command 0x0c1a tx timeout
[  226.309698][T10415] bridge0: port 1(bridge_slave_0) entered blocking state
[  226.317170][T10415] bridge0: port 1(bridge_slave_0) entered disabled state
[  226.322282][T10415] bridge_slave_0: entered allmulticast mode
[  226.334197][T10415] bridge_slave_0: entered promiscuous mode
[  226.353356][T10415] bridge0: port 2(bridge_slave_1) entered blocking state
[  226.361580][T10415] bridge0: port 2(bridge_slave_1) entered disabled state
[  226.366482][T10415] bridge_slave_1: entered allmulticast mode
[  226.371318][T10415] bridge_slave_1: entered promiscuous mode
[  226.581104][T10415] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  226.607491][T10415] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  226.745517][T10415] team0: Port device team_slave_0 added
[  226.751740][T10415] team0: Port device team_slave_1 added
[  226.859793][T10415] batman_adv: batadv0: Adding interface: batadv_slave_0
[  226.862349][T10415] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  226.874027][T10415] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  226.889538][T10415] batman_adv: batadv0: Adding interface: batadv_slave_1
[  226.895513][T10415] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  226.906958][T10415] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  227.055407][ T5992] Bluetooth: hci3: command 0x0405 tx timeout
[  227.055876][ T5987] Bluetooth: hci2: command 0x0c1a tx timeout
[  227.106722][T10415] hsr_slave_0: entered promiscuous mode
[  227.109155][T10415] hsr_slave_1: entered promiscuous mode
[  227.111599][T10415] debugfs: 'hsr0' already exists in 'hsr'
[  227.114051][T10415] Cannot create hsr debugfs directory
[  227.228404][T10450] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(10)
[  227.230445][T10450] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  227.244565][T10450] vhci_hcd vhci_hcd.0: Device attached
[  227.281234][T10415] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  227.289629][T10415] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  227.294872][T10415] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  227.299762][T10415] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  227.397521][T10415] 8021q: adding VLAN 0 to HW filter on device bond0
[  227.429083][T10415] 8021q: adding VLAN 0 to HW filter on device team0
[  227.439280][  T760] bridge0: port 1(bridge_slave_0) entered blocking state
[  227.442073][  T760] bridge0: port 1(bridge_slave_0) entered forwarding state
[  227.459326][  T760] bridge0: port 2(bridge_slave_1) entered blocking state
[  227.461609][  T760] bridge0: port 2(bridge_slave_1) entered forwarding state
[  227.601429][T10415] 8021q: adding VLAN 0 to HW filter on device batadv0
[  227.604795][T10473] binder: 10472:10473 ioctl c0306201 800002c0 returned -14
[  227.694651][ T5987] Bluetooth: hci4: command tx timeout
[  228.023573][T10452] vhci_hcd: connection closed
[  228.025339][ T6195] vhci_hcd: stop threads
[  228.028347][ T6195] vhci_hcd: release socket
[  228.029787][ T6195] vhci_hcd: disconnect device
[  228.335191][ T5987] Bluetooth: hci1: command 0x0c1a tx timeout
[  228.903868][T10415] veth0_vlan: entered promiscuous mode
[  229.044460][ T6018] vhci_hcd: vhci_device speed not set
[  229.106720][T10415] veth1_vlan: entered promiscuous mode
[  229.134838][ T5987] Bluetooth: hci2: command 0x0c1a tx timeout
[  229.436843][T10415] veth0_macvtap: entered promiscuous mode
[  229.508733][T10415] veth1_macvtap: entered promiscuous mode
[  229.559072][T10496] zonefs (nullb0) ERROR: Not a zoned block device
[  229.647408][T10415] batman_adv: batadv0: Interface activated: batadv_slave_0
[  229.657380][T10415] batman_adv: batadv0: Interface activated: batadv_slave_1
[  229.663596][ T6185] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  229.674538][ T6185] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  229.677453][ T6185] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  229.688214][ T6185] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  229.774506][ T5987] Bluetooth: hci4: command tx timeout
[  229.836849][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  229.839964][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  229.911176][T10504] fuse: Unknown parameter 'user_id0000000000000000000000000000000000000000'
[  230.029940][T10497] e1000e 0000:00:02.0 eth1: NIC Link is Down
[  230.054263][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  230.064036][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  230.181930][T10512] netlink: 372 bytes leftover after parsing attributes in process `syz.4.983'.
[  230.190302][ T6018] hid-generic 0005:0007:0007.0009: reserved main item tag 0xd
[  230.192716][ T6018] hid-generic 0005:0007:0007.0009: unexpected long global item
[  230.217643][ T6018] hid-generic 0005:0007:0007.0009: probe with driver hid-generic failed with error -22
[  230.353649][T10519] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(10)
[  230.356005][T10519] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  230.371824][T10519] vhci_hcd vhci_hcd.0: Device attached
[  230.424587][ T1344] vhci_hcd: vhci_device speed not set
[  230.440218][   T40] kauditd_printk_skb: 27 callbacks suppressed
[  230.440233][   T40] audit: type=1326 audit(1756795475.780:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10526 comm="syz.4.1006" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  230.554461][ T6064] vhci_hcd: vhci_device speed not set
[  230.613023][T10525] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  230.624816][ T6064] usb 39-1: new full-speed USB device number 2 using vhci_hcd
[  230.684720][   T40] audit: type=1326 audit(1756795475.780:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10526 comm="syz.4.1006" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  230.693798][   T40] audit: type=1326 audit(1756795475.780:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10526 comm="syz.4.1006" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf702e579 code=0x7ffc0000
[  230.710761][   T40] audit: type=1326 audit(1756795475.790:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10526 comm="syz.4.1006" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  230.807731][   T40] audit: type=1326 audit(1756795475.790:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10526 comm="syz.4.1006" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  230.844601][   T40] audit: type=1326 audit(1756795475.800:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10526 comm="syz.4.1006" exe="/syz-executor" sig=0 arch=40000003 syscall=337 compat=1 ip=0xf702e579 code=0x7ffc0000
[  230.892399][   T40] audit: type=1326 audit(1756795475.800:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10526 comm="syz.4.1006" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  230.948972][   T40] audit: type=1326 audit(1756795475.800:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10526 comm="syz.4.1006" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  230.970945][   T40] audit: type=1326 audit(1756795475.800:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10526 comm="syz.4.1006" exe="/syz-executor" sig=0 arch=40000003 syscall=366 compat=1 ip=0xf702e579 code=0x7ffc0000
[  230.990250][   T40] audit: type=1326 audit(1756795475.800:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10526 comm="syz.4.1006" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  231.226439][T10522] vhci_hcd: connection closed
[  231.234663][  T760] vhci_hcd: stop threads
[  231.242072][  T760] vhci_hcd: release socket
[  231.247548][  T760] vhci_hcd: disconnect device
[  231.372870][ T6064] usb 39-1: enqueue for inactive port 0
[  231.444542][ T6064] vhci_hcd: vhci_device speed not set
[  231.489337][T10537] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  231.512139][T10537] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  231.515496][T10537] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  231.523181][T10537] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  231.539359][T10537] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  231.583992][T10537] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  231.900491][T10574] vivid-007: =================  START STATUS  =================
[  231.902941][T10574] vivid-007: Enable Output Cropping: true
[  231.905647][T10574] vivid-007: Enable Output Composing: true
[  231.907862][T10574] vivid-007: Enable Output Scaler: true
[  231.909634][T10574] vivid-007: Tx RGB Quantization Range: Automatic
[  231.911669][T10574] vivid-007: Transmit Mode: HDMI
[  231.913391][T10574] vivid-007: Hotplug Present: 0x00000000
[  231.915366][T10574] vivid-007: RxSense Present: 0x00000000
[  231.917326][T10574] vivid-007: EDID Present: 0x00000000
[  231.919120][T10574] vivid-007: ==================  END STATUS  ==================
[  231.923605][T10572] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[  231.925717][T10572] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  231.928378][T10572] vhci_hcd vhci_hcd.0: Device attached
[  232.168340][    T9] vhci_hcd: vhci_device speed not set
[  232.361907][    T9] usb 45-1: new full-speed USB device number 2 using vhci_hcd
[  232.594482][T10575] vhci_hcd: connection reset by peer
[  232.597680][  T760] vhci_hcd: stop threads
[  232.599197][  T760] vhci_hcd: release socket
[  232.600770][  T760] vhci_hcd: disconnect device
[  232.894955][ T5987] Bluetooth: hci1: command 0x0c1a tx timeout
[  233.534678][ T5987] Bluetooth: hci4: command 0x0419 tx timeout
[  233.536991][ T5987] Bluetooth: hci3: command 0x0405 tx timeout
[  233.539105][ T5987] Bluetooth: hci2: command 0x0c1a tx timeout
[  233.626505][T10587] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(10)
[  233.628617][T10587] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  233.648816][T10587] vhci_hcd vhci_hcd.0: Device attached
[  233.824500][ T6064] vhci_hcd: vhci_device speed not set
[  233.889270][ T6064] usb 39-1: new full-speed USB device number 3 using vhci_hcd
[  234.428983][T10589] vhci_hcd: connection reset by peer
[  234.431262][   T59] vhci_hcd: stop threads
[  234.432648][   T59] vhci_hcd: release socket
[  234.434067][   T59] vhci_hcd: disconnect device
[  235.484619][   T40] kauditd_printk_skb: 32 callbacks suppressed
[  235.484634][   T40] audit: type=1804 audit(1756795480.820:276): pid=10623 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1022" name="/newroot/252/file0" dev="tmpfs" ino=1351 res=1 errno=0
[  235.484983][T10622] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  235.496479][   T40] audit: type=1326 audit(1756795480.840:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10621 comm="syz.1.1022" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x0
[  235.624479][ T5992] Bluetooth: hci4: command 0x0419 tx timeout
[  237.446926][T10653] veth1_to_bond: entered allmulticast mode
[  237.454536][    T9] vhci_hcd: vhci_device speed not set
[  237.694454][ T5992] Bluetooth: hci4: command 0x0419 tx timeout
[  238.964985][ T6064] vhci_hcd: vhci_device speed not set
[  239.503270][   T40] audit: type=1804 audit(1756795484.840:278): pid=10668 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1033" name="/newroot/8/file0" dev="tmpfs" ino=59 res=1 errno=0
[  239.514525][   T40] audit: type=1326 audit(1756795484.850:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10667 comm="syz.4.1033" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x0
[  239.563177][T10658] 9pnet_fd: Insufficient options for proto=fd
[  239.774546][ T5992] Bluetooth: hci4: command 0x0419 tx timeout
[  239.782717][T10658] could not allocate digest TFM handle sha256-arm64-neon
[  240.582267][T10684] ptm ptm0: ldisc open failed (-12), clearing slot 0
[  240.807975][T10708] : entered promiscuous mode
[  241.784790][T10731] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1045'.
[  241.858888][T10733] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  242.131497][T10740] 9pnet_fd: Insufficient options for proto=fd
[  242.322434][T10750] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[  242.459436][T10758] afs: Unknown parameter 'd'
[  242.463457][T10758] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1054'.
[  242.570973][T10766] netlink: 'syz.0.1055': attribute type 2 has an invalid length.
[  242.584103][T10766] netlink: 'syz.0.1055': attribute type 5 has an invalid length.
[  242.818218][T10781] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  243.562445][T10804] netlink: 'syz.4.1066': attribute type 1 has an invalid length.
[  243.573939][T10804] vlan2: entered promiscuous mode
[  243.577423][T10804] macsec0: entered promiscuous mode
[  243.580752][T10804] vlan2: entered allmulticast mode
[  243.582684][T10804] macsec0: entered allmulticast mode
[  243.584634][   T53] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  243.585153][T10804] veth1_macvtap: entered allmulticast mode
[  243.595522][T10804] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  243.734583][   T53] usb 6-1: Using ep0 maxpacket: 32
[  244.173036][   T73] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  244.176494][   T73] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  244.246889][T10816] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(10)
[  244.249030][T10816] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  244.252515][T10816] vhci_hcd vhci_hcd.0: Device attached
[  244.434587][ T6136] vhci_hcd: vhci_device speed not set
[  244.507561][ T6136] usb 41-1: new full-speed USB device number 5 using vhci_hcd
[  245.098215][T10818] vhci_hcd: connection reset by peer
[  245.102157][  T760] vhci_hcd: stop threads
[  245.103603][  T760] vhci_hcd: release socket
[  245.105119][  T760] vhci_hcd: disconnect device
[  245.427076][T10826] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  246.247575][   T53] usb 6-1: unable to get BOS descriptor or descriptor too short
[  246.267325][   T53] usb 6-1: unable to read config index 0 descriptor/start: -71
[  246.273200][   T53] usb 6-1: can't read configurations, error -71
[  246.522005][   T40] audit: type=1326 audit(1756795491.860:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10848 comm="syz.1.1078" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x0
[  247.377665][T10877] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  247.674659][T10881] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(11)
[  247.677003][T10881] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  247.680260][T10881] vhci_hcd vhci_hcd.0: Device attached
[  247.694559][   T61] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  247.879465][T10882] vhci_hcd: connection closed
[  247.881212][   T59] vhci_hcd: stop threads
[  247.884562][   T59] vhci_hcd: release socket
[  247.887433][   T59] vhci_hcd: disconnect device
[  247.934470][   T53] usb 37-1: new high-speed USB device number 4 using vhci_hcd
[  247.936911][   T53] usb 37-1: enqueue for inactive port 0
[  248.004471][   T61] usb 6-1: device descriptor read/64, error -71
[  248.006089][   T53] vhci_hcd: vhci_device speed not set
[  248.254658][   T61] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[  248.384458][   T61] usb 6-1: device descriptor read/64, error -71
[  248.505003][   T61] usb usb6-port1: attempt power cycle
[  248.736442][T10905] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1092'.
[  248.844469][   T61] usb 6-1: new high-speed USB device number 22 using dummy_hcd
[  248.864906][   T61] usb 6-1: device descriptor read/8, error -71
[  249.114439][   T61] usb 6-1: new high-speed USB device number 23 using dummy_hcd
[  249.154894][   T61] usb 6-1: device descriptor read/8, error -71
[  249.268847][   T61] usb usb6-port1: unable to enumerate USB device
[  249.285127][T10918] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  249.640391][ T6136] vhci_hcd: vhci_device speed not set
[  249.787466][T10925] gtp0: entered promiscuous mode
[  250.067459][T10933] cgroup: noprefix used incorrectly
[  250.641045][T10946] netlink: 92 bytes leftover after parsing attributes in process `syz.1.1103'.
[  251.233547][T10961] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  252.732591][T10972] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1108'.
[  252.815336][T10979] syzkaller0: entered promiscuous mode
[  252.817921][T10979] syzkaller0: entered allmulticast mode
[  253.290969][ T6064] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  253.457880][ T6064] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  253.464918][ T6064] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  253.476438][ T6064] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  253.484669][ T6064] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  253.494905][ T6064] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  253.501416][ T6064] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  253.505378][ T6064] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  253.511840][ T6064] usb 7-1: Product: syz
[  253.514128][ T6064] usb 7-1: Manufacturer: syz
[  253.532469][ T6064] cdc_wdm 7-1:1.0: skipping garbage
[  253.561304][ T6064] cdc_wdm 7-1:1.0: skipping garbage
[  253.591059][ T6064] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  253.592925][ T6064] cdc_wdm 7-1:1.0: Unknown control protocol
[  253.737474][T10989] cdc_wdm 7-1:1.0: Error submitting int urb - -90
[  253.743360][ T6064] usb 7-1: USB disconnect, device number 13
[  254.125633][T11005] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1119'.
[  254.631465][T11034] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(10)
[  254.633695][T11034] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  254.636552][T11034] vhci_hcd vhci_hcd.0: Device attached
[  254.824509][ T6064] vhci_hcd: vhci_device speed not set
[  254.884474][ T6064] usb 39-1: new full-speed USB device number 4 using vhci_hcd
[  255.226793][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  255.391424][T11036] vhci_hcd: connection reset by peer
[  255.395049][   T12] vhci_hcd: stop threads
[  255.396426][   T12] vhci_hcd: release socket
[  255.397801][   T12] vhci_hcd: disconnect device
[  256.383937][T11063] netlink: 'syz.4.1132': attribute type 10 has an invalid length.
[  256.394339][T11063] 8021q: adding VLAN 0 to HW filter on device bond0
[  256.397512][T11063] team0: Port device bond0 added
[  256.402641][T11063] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1132'.
[  257.516457][T11087] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1138'.
[  257.715928][T11090] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1139'.
[  258.004721][   T40] audit: type=1326 audit(1756795503.330:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11094 comm="syz.1.1141" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  258.011438][   T40] audit: type=1326 audit(1756795503.330:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11094 comm="syz.1.1141" exe="/syz-executor" sig=0 arch=40000003 syscall=26 compat=1 ip=0xf706e579 code=0x7ffc0000
[  258.038758][   T40] audit: type=1326 audit(1756795503.330:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11094 comm="syz.1.1141" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  258.067813][   T40] audit: type=1326 audit(1756795503.330:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11094 comm="syz.1.1141" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  258.120860][   T40] audit: type=1326 audit(1756795503.330:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11094 comm="syz.1.1141" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf706e579 code=0x7ffc0000
[  258.156805][   T40] audit: type=1326 audit(1756795503.330:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11094 comm="syz.1.1141" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  258.168903][   T40] audit: type=1326 audit(1756795503.330:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11094 comm="syz.1.1141" exe="/syz-executor" sig=0 arch=40000003 syscall=220 compat=1 ip=0xf706e579 code=0x7ffc0000
[  258.194630][   T40] audit: type=1326 audit(1756795503.330:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11094 comm="syz.1.1141" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  258.205471][   T40] audit: type=1326 audit(1756795503.330:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11094 comm="syz.1.1141" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf706e579 code=0x7ffc0000
[  258.228660][   T40] audit: type=1326 audit(1756795503.330:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11094 comm="syz.1.1141" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  258.336284][   T73] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  258.338942][   T73] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  258.364804][   T53] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  258.534447][ T6136] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  258.684530][ T6136] usb 5-1: Using ep0 maxpacket: 32
[  258.687377][ T6136] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 97, changing to 10
[  258.690828][ T6136] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24929, setting to 1024
[  258.697049][ T6136] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  258.711320][ T6136] usb 5-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22
[  258.714187][ T6136] usb 5-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131
[  258.720853][ T6136] usb 5-1: Product: syz
[  258.722285][ T6136] usb 5-1: Manufacturer: syz
[  258.724103][ T6136] usb 5-1: SerialNumber: syz
[  258.737217][ T6136] input: appletouch as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:1.0/input/input16
[  258.914648][ T1344] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  259.029459][T11126] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  259.040145][ T1344] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  259.253094][   T34] usb 5-1: USB disconnect, device number 4
[  259.267481][   T34] appletouch 5-1:1.0: input: appletouch disconnected
[  260.014459][ T6064] vhci_hcd: vhci_device speed not set
[  260.194873][T11147] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1154'.
[  260.202284][T11147] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1154'.
[  260.264625][ T5987] Bluetooth: hci5: command 0x1003 tx timeout
[  260.266968][ T5992] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  261.501536][T11165] netlink: 'syz.1.1159': attribute type 12 has an invalid length.
[  261.966242][T11177] input: syz1 as /devices/virtual/input/input17
[  262.254672][    C2] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  263.066563][T11197] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  263.556479][T11209] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  263.560327][T11209] block device autoloading is deprecated and will be removed.
[  263.560449][T11208] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  263.566879][T11208] block device autoloading is deprecated and will be removed.
[  264.370876][T11217] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1173'.
[  264.526410][   T53] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[  264.544581][ T6136] usb 7-1: new full-speed USB device number 14 using dummy_hcd
[  264.694438][   T53] usb 6-1: Using ep0 maxpacket: 32
[  264.695684][ T6136] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  264.697362][   T53] usb 6-1: config index 0 descriptor too short (expected 156, got 27)
[  264.699944][ T6136] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  264.702488][   T53] usb 6-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  264.708268][ T6136] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  264.714184][ T6136] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[  264.719542][   T53] usb 6-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  264.719716][ T6136] usb 7-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  264.726313][ T6136] usb 7-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  264.728779][ T6136] usb 7-1: Manufacturer: syz
[  264.737357][   T53] usb 6-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  264.743363][   T53] usb 6-1: config 0 interface 0 has no altsetting 0
[  264.743587][ T6136] usb 7-1: config 0 descriptor??
[  264.749668][   T53] usb 6-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  264.753483][   T53] usb 6-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  264.763629][   T53] usb 6-1: Product: syz
[  264.765579][   T53] usb 6-1: Manufacturer: syz
[  264.773799][   T53] usb 6-1: SerialNumber: syz
[  264.782685][   T53] usb 6-1: config 0 descriptor??
[  264.798626][   T53] ldusb 6-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  264.805406][   T53] ldusb 6-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  264.929068][T11225] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1174'.
[  264.937492][   T73] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  264.940140][   T73] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  264.964663][   T53] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  265.005562][ T6136] rc_core: IR keymap rc-hauppauge not found
[  265.014437][ T6136] Registered IR keymap rc-empty
[  265.017183][ T6136] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  265.034724][ T6136] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  265.072726][ T6136] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0
[  265.090574][ T6136] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0/input18
[  265.106859][ T6136] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  265.139833][ T6136] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  265.168367][ T6136] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  265.174216][T11245] tmpfs: Bad value for 'mpol'
[  265.195490][ T6136] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  265.214626][ T6136] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  265.234553][ T6136] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  265.254797][ T6136] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  265.294533][ T6136] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  265.314566][ T6136] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  265.334816][ T6136] mceusb 7-1:0.0: Error: mce write submit urb error = -90
[  265.355875][ T6136] mceusb 7-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  265.359309][ T6136] mceusb 7-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  265.451807][   T40] kauditd_printk_skb: 23 callbacks suppressed
[  265.451817][   T40] audit: type=1800 audit(1756795510.790:314): pid=11253 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1179" name="bus" dev="overlay" ino=1845 res=0 errno=0
[  265.501194][   T29] usb 7-1: USB disconnect, device number 14
[  265.852764][T11261] 9pnet_virtio: no channels available for device syz
[  266.014722][ T6064] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  266.021109][ T6064] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  266.155298][T11265] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1182'.
[  268.734536][    C2] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  268.825141][T11310] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2541091674 (162629867136 ns) > initial count (104792502336 ns). Using initial count to start timer.
[  268.850372][T11310] veth0_vlan: entered allmulticast mode
[  268.855689][T11310] veth0_vlan: left promiscuous mode
[  268.858815][T11310] veth0_vlan: entered promiscuous mode
[  269.675736][   T40] audit: type=1326 audit(1756795515.020:315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11328 comm="syz.4.1198" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  269.685749][T11327] hpfs: hpfs_map_sector(): read error
[  269.693139][   T40] audit: type=1326 audit(1756795515.020:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11328 comm="syz.4.1198" exe="/syz-executor" sig=0 arch=40000003 syscall=131 compat=1 ip=0xf702e579 code=0x7ffc0000
[  269.701099][   T40] audit: type=1326 audit(1756795515.020:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11328 comm="syz.4.1198" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  269.709192][   T40] audit: type=1326 audit(1756795515.020:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11328 comm="syz.4.1198" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  269.720568][   T40] audit: type=1326 audit(1756795515.020:319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11328 comm="syz.4.1198" exe="/syz-executor" sig=0 arch=40000003 syscall=345 compat=1 ip=0xf702e579 code=0x7ffc0000
[  270.017860][T11214] ldusb 6-1:0.0: Couldn't submit HID_REQ_SET_REPORT -110
[  270.052728][ T6064] usb 6-1: USB disconnect, device number 24
[  270.075394][ T6064] ldusb 6-1:0.0: LD USB Device #0 now disconnected
[  270.584493][    C2] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  272.048736][T11393] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10)
[  272.051135][T11393] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  272.064971][T11393] vhci_hcd vhci_hcd.0: Device attached
[  272.235195][ T3245] vhci_hcd: vhci_device speed not set
[  272.304446][ T3245] usb 37-1: new full-speed USB device number 5 using vhci_hcd
[  272.839614][T11395] vhci_hcd: connection reset by peer
[  272.841795][   T59] vhci_hcd: stop threads
[  272.843328][   T59] vhci_hcd: release socket
[  272.846156][   T59] vhci_hcd: disconnect device
[  273.966947][T11434] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1224'.
[  275.034949][T11469] FAULT_INJECTION: forcing a failure.
[  275.034949][T11469] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  275.062058][T11469] CPU: 1 UID: 0 PID: 11469 Comm: syz.1.1231 Not tainted syzkaller #0 PREEMPT(full) 
[  275.062078][T11469] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  275.062085][T11469] Call Trace:
[  275.062089][T11469]  <TASK>
[  275.062093][T11469]  dump_stack_lvl+0x16c/0x1f0
[  275.062127][T11469]  should_fail_ex+0x512/0x640
[  275.062148][T11469]  _copy_from_iter+0x29f/0x1720
[  275.062167][T11469]  ? __pfx__copy_from_iter+0x10/0x10
[  275.062184][T11469]  ? rcu_is_watching+0x12/0xc0
[  275.062195][T11469]  ? trace_kmalloc+0x2b/0xd0
[  275.062209][T11469]  ? __kmalloc_noprof+0x242/0x510
[  275.062224][T11469]  kernfs_fop_write_iter+0x19a/0x510
[  275.062237][T11469]  vfs_write+0x7d0/0x11d0
[  275.062249][T11469]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  275.062261][T11469]  ? __pfx_vfs_write+0x10/0x10
[  275.062271][T11469]  ? find_held_lock+0x2b/0x80
[  275.062291][T11469]  ksys_write+0x12a/0x250
[  275.062302][T11469]  ? __pfx_ksys_write+0x10/0x10
[  275.062315][T11469]  ? rcu_is_watching+0x12/0xc0
[  275.062328][T11469]  __do_fast_syscall_32+0x7c/0x3a0
[  275.062344][T11469]  do_fast_syscall_32+0x32/0x80
[  275.062358][T11469]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  275.062371][T11469] RIP: 0023:0xf706e579
[  275.062379][T11469] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  275.062389][T11469] RSP: 002b:00000000f541c55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  275.062399][T11469] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00000000800005c0
[  275.062405][T11469] RDX: 0000000000000012 RSI: 0000000000000000 RDI: 0000000000000000
[  275.062412][T11469] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  275.062417][T11469] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  275.062423][T11469] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  275.062436][T11469]  </TASK>
[  275.126031][    C1] vkms_vblank_simulate: vblank timer overrun
[  275.147400][T11460] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(10)
[  275.149502][T11460] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  275.152082][T11460] vhci_hcd vhci_hcd.0: Device attached
[  275.334663][   T34] vhci_hcd: vhci_device speed not set
[  275.394537][   T34] usb 41-1: new full-speed USB device number 6 using vhci_hcd
[  275.527559][T11468] vhci_hcd: connection reset by peer
[  275.532342][   T59] vhci_hcd: stop threads
[  275.534860][   T59] vhci_hcd: release socket
[  275.537588][   T59] vhci_hcd: disconnect device
[  275.595378][T11474] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 1340
[  276.334563][    C2] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  276.495521][T11488] tipc: Started in network mode
[  276.497543][T11488] tipc: Node identity , cluster identity 4711
[  276.499679][T11488] tipc: Failed to obtain node identity
[  276.501412][T11488] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  276.509145][T11489] tipc: Started in network mode
[  276.510757][T11489] tipc: Node identity , cluster identity 4711
[  276.512708][T11489] tipc: Failed to obtain node identity
[  276.515257][T11489] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  276.520479][T11489] syzkaller0: entered promiscuous mode
[  276.525955][T11489] syzkaller0: entered allmulticast mode
[  276.544153][   T40] audit: type=1326 audit(1756795521.880:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11487 comm="syz.1.1235" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  276.552178][   T40] audit: type=1326 audit(1756795521.880:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11487 comm="syz.1.1235" exe="/syz-executor" sig=0 arch=40000003 syscall=136 compat=1 ip=0xf706e579 code=0x7ffc0000
[  276.559063][   T40] audit: type=1326 audit(1756795521.880:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11487 comm="syz.1.1235" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  276.577288][   T40] audit: type=1326 audit(1756795521.880:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11487 comm="syz.1.1235" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf706e579 code=0x7ffc0000
[  276.598698][   T40] audit: type=1326 audit(1756795521.880:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11487 comm="syz.1.1235" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  276.624495][   T40] audit: type=1326 audit(1756795521.880:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11487 comm="syz.1.1235" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  276.646266][T11494] input: syz1 as /devices/virtual/input/input19
[  276.730389][T11498] FAULT_INJECTION: forcing a failure.
[  276.730389][T11498] name failslab, interval 1, probability 0, space 0, times 0
[  276.734298][T11498] CPU: 1 UID: 0 PID: 11498 Comm: syz.4.1238 Not tainted syzkaller #0 PREEMPT(full) 
[  276.734315][T11498] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  276.734321][T11498] Call Trace:
[  276.734325][T11498]  <TASK>
[  276.734329][T11498]  dump_stack_lvl+0x16c/0x1f0
[  276.734346][T11498]  should_fail_ex+0x512/0x640
[  276.734374][T11498]  ? fs_reclaim_acquire+0xae/0x150
[  276.734391][T11498]  ? tomoyo_encode2+0x100/0x3e0
[  276.734404][T11498]  should_failslab+0xc2/0x120
[  276.734418][T11498]  __kmalloc_noprof+0xd2/0x510
[  276.734433][T11498]  tomoyo_encode2+0x100/0x3e0
[  276.734449][T11498]  tomoyo_encode+0x29/0x50
[  276.734462][T11498]  tomoyo_realpath_from_path+0x18f/0x6e0
[  276.734478][T11498]  ? tomoyo_profile+0x47/0x60
[  276.734489][T11498]  tomoyo_path_number_perm+0x245/0x580
[  276.734500][T11498]  ? tomoyo_path_number_perm+0x237/0x580
[  276.734514][T11498]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  276.734540][T11498]  ? find_held_lock+0x2b/0x80
[  276.734551][T11498]  ? hook_file_ioctl_common+0x145/0x410
[  276.734567][T11498]  ? __fget_files+0x20e/0x3c0
[  276.734581][T11498]  security_file_ioctl_compat+0x9b/0x240
[  276.734596][T11498]  __ia32_compat_sys_ioctl+0xc3/0x370
[  276.734614][T11498]  __do_fast_syscall_32+0x7c/0x3a0
[  276.734629][T11498]  do_fast_syscall_32+0x32/0x80
[  276.734643][T11498]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  276.734657][T11498] RIP: 0023:0xf702e579
[  276.734682][T11498] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  276.734693][T11498] RSP: 002b:00000000f541e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  276.734703][T11498] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000000ae80
[  276.734710][T11498] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  276.734715][T11498] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  276.734721][T11498] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  276.734727][T11498] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  276.734740][T11498]  </TASK>
[  276.800932][    C1] vkms_vblank_simulate: vblank timer overrun
[  276.810592][T11498] ERROR: Out of memory at tomoyo_realpath_from_path.
[  276.928621][T11506] FAULT_INJECTION: forcing a failure.
[  276.928621][T11506] name failslab, interval 1, probability 0, space 0, times 0
[  276.932758][T11506] CPU: 1 UID: 0 PID: 11506 Comm: syz.0.1240 Not tainted syzkaller #0 PREEMPT(full) 
[  276.932774][T11506] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  276.932780][T11506] Call Trace:
[  276.932784][T11506]  <TASK>
[  276.932789][T11506]  dump_stack_lvl+0x16c/0x1f0
[  276.932807][T11506]  should_fail_ex+0x512/0x640
[  276.932822][T11506]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  276.932837][T11506]  should_failslab+0xc2/0x120
[  276.932851][T11506]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  276.932863][T11506]  ? alloc_inode+0xc3/0x240
[  276.932881][T11506]  alloc_inode+0xc3/0x240
[  276.932895][T11506]  iget_locked+0x2e4/0x830
[  276.932911][T11506]  ? __pfx_iget_locked+0x10/0x10
[  276.932925][T11506]  ? __lock_acquire+0xb97/0x1ce0
[  276.932942][T11506]  ? find_held_lock+0x2b/0x80
[  276.932955][T11506]  kernfs_get_inode+0x48/0x460
[  276.932968][T11506]  cgroup_may_write+0x89/0x120
[  276.932983][T11506]  cgroup_attach_permissions+0x1b8/0x790
[  276.933003][T11506]  __cgroup_procs_write+0x2de/0x660
[  276.933020][T11506]  ? __pfx___cgroup_procs_write+0x10/0x10
[  276.933040][T11506]  cgroup_procs_write+0x26/0x60
[  276.933059][T11506]  cgroup_file_write+0x1ef/0x790
[  276.933070][T11506]  ? __pfx_cgroup_procs_write+0x10/0x10
[  276.933085][T11506]  ? __pfx_cgroup_file_write+0x10/0x10
[  276.933100][T11506]  kernfs_fop_write_iter+0x354/0x510
[  276.933110][T11506]  ? __pfx_cgroup_file_write+0x10/0x10
[  276.933122][T11506]  vfs_write+0x7d0/0x11d0
[  276.933135][T11506]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  276.933147][T11506]  ? __pfx_vfs_write+0x10/0x10
[  276.933157][T11506]  ? find_held_lock+0x2b/0x80
[  276.933176][T11506]  ksys_write+0x12a/0x250
[  276.933188][T11506]  ? __pfx_ksys_write+0x10/0x10
[  276.933201][T11506]  ? rcu_is_watching+0x12/0xc0
[  276.933214][T11506]  __do_fast_syscall_32+0x7c/0x3a0
[  276.933230][T11506]  do_fast_syscall_32+0x32/0x80
[  276.933244][T11506]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  276.933257][T11506] RIP: 0023:0xf70de579
[  276.933266][T11506] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  276.933276][T11506] RSP: 002b:00000000f54ad55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  276.933286][T11506] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00000000800005c0
[  276.933292][T11506] RDX: 0000000000000012 RSI: 0000000000000000 RDI: 0000000000000000
[  276.933298][T11506] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  276.933304][T11506] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  276.933309][T11506] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  276.933323][T11506]  </TASK>
[  277.017745][    C1] vkms_vblank_simulate: vblank timer overrun
[  277.123367][T11513] 9pnet_fd: Insufficient options for proto=fd
[  277.224190][   T40] audit: type=1326 audit(1756795522.560:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11516 comm="syz.4.1244" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  277.240664][   T40] audit: type=1326 audit(1756795522.560:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11516 comm="syz.4.1244" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  277.254429][   T40] audit: type=1326 audit(1756795522.560:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11516 comm="syz.4.1244" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf702e579 code=0x7ffc0000
[  277.260997][   T40] audit: type=1326 audit(1756795522.560:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11516 comm="syz.4.1244" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  277.308347][T11518] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(10)
[  277.310450][T11518] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  277.316302][T11518] vhci_hcd vhci_hcd.0: Device attached
[  277.374609][ T5992] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  277.491110][ T3245] vhci_hcd: vhci_device speed not set
[  277.524873][   T61] vhci_hcd: vhci_device speed not set
[  277.584467][   T61] usb 39-1: new full-speed USB device number 5 using vhci_hcd
[  278.015678][T11530] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1245'.
[  278.054054][T11530] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  278.096446][T11521] vhci_hcd: connection reset by peer
[  278.102667][   T73] vhci_hcd: stop threads
[  278.104063][   T73] vhci_hcd: release socket
[  278.105666][   T73] vhci_hcd: disconnect device
[  278.480601][T11535] netlink: 'syz.0.1248': attribute type 178 has an invalid length.
[  278.496059][T11537] FAULT_INJECTION: forcing a failure.
[  278.496059][T11537] name failslab, interval 1, probability 0, space 0, times 0
[  278.500107][T11537] CPU: 2 UID: 0 PID: 11537 Comm: syz.4.1249 Not tainted syzkaller #0 PREEMPT(full) 
[  278.500122][T11537] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  278.500129][T11537] Call Trace:
[  278.500133][T11537]  <TASK>
[  278.500137][T11537]  dump_stack_lvl+0x16c/0x1f0
[  278.500155][T11537]  should_fail_ex+0x512/0x640
[  278.500169][T11537]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  278.500182][T11537]  should_failslab+0xc2/0x120
[  278.500195][T11537]  __kmalloc_cache_noprof+0x6a/0x3e0
[  278.500206][T11537]  ? vhost_task_create+0xe5/0x2e0
[  278.500221][T11537]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  278.500236][T11537]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  278.500253][T11537]  vhost_task_create+0xe5/0x2e0
[  278.500267][T11537]  ? __pfx_vhost_task_create+0x10/0x10
[  278.500286][T11537]  ? __pfx_vhost_task_fn+0x10/0x10
[  278.500306][T11537]  kvm_mmu_post_init_vm+0x1b7/0x380
[  278.500319][T11537]  kvm_arch_vcpu_ioctl_run+0x66/0x1980
[  278.500334][T11537]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[  278.500350][T11537]  kvm_vcpu_ioctl+0x5eb/0x1690
[  278.500365][T11537]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  278.500378][T11537]  ? tomoyo_path_number_perm+0x18d/0x580
[  278.500392][T11537]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  278.500410][T11537]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  278.500426][T11537]  ? do_vfs_ioctl+0x128/0x14f0
[  278.500442][T11537]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  278.500464][T11537]  kvm_vcpu_compat_ioctl+0x20f/0x3d0
[  278.500477][T11537]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  278.500491][T11537]  ? __fget_files+0x20e/0x3c0
[  278.500504][T11537]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  278.500518][T11537]  __ia32_compat_sys_ioctl+0x23f/0x370
[  278.500536][T11537]  __do_fast_syscall_32+0x7c/0x3a0
[  278.500551][T11537]  do_fast_syscall_32+0x32/0x80
[  278.500565][T11537]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  278.500578][T11537] RIP: 0023:0xf702e579
[  278.500587][T11537] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  278.500597][T11537] RSP: 002b:00000000f541e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  278.500608][T11537] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000000ae80
[  278.500614][T11537] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  278.500620][T11537] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  278.500625][T11537] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  278.500632][T11537] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  278.500645][T11537]  </TASK>
[  278.623321][T11539] tmpfs: Unknown parameter 'u'
[  278.723991][T11539] ubi: mtd0 is already attached to ubi31
[  278.951918][T11550] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1253'.
[  279.039814][T11556] FAULT_INJECTION: forcing a failure.
[  279.039814][T11556] name failslab, interval 1, probability 0, space 0, times 0
[  279.044114][T11556] CPU: 3 UID: 0 PID: 11556 Comm: syz.2.1254 Not tainted syzkaller #0 PREEMPT(full) 
[  279.044144][T11556] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  279.044151][T11556] Call Trace:
[  279.044155][T11556]  <TASK>
[  279.044160][T11556]  dump_stack_lvl+0x16c/0x1f0
[  279.044178][T11556]  should_fail_ex+0x512/0x640
[  279.044193][T11556]  ? fs_reclaim_acquire+0xae/0x150
[  279.044210][T11556]  should_failslab+0xc2/0x120
[  279.044224][T11556]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  279.044237][T11556]  ? security_inode_alloc+0x3b/0x2b0
[  279.044252][T11556]  security_inode_alloc+0x3b/0x2b0
[  279.044265][T11556]  inode_init_always_gfp+0xce4/0x1030
[  279.044292][T11556]  alloc_inode+0x86/0x240
[  279.044312][T11556]  iget_locked+0x2e4/0x830
[  279.044335][T11556]  ? __pfx_iget_locked+0x10/0x10
[  279.044368][T11556]  ? __lock_acquire+0xb97/0x1ce0
[  279.044386][T11556]  ? find_held_lock+0x2b/0x80
[  279.044399][T11556]  kernfs_get_inode+0x48/0x460
[  279.044413][T11556]  cgroup_may_write+0x89/0x120
[  279.044427][T11556]  cgroup_attach_permissions+0x1b8/0x790
[  279.044447][T11556]  __cgroup_procs_write+0x2de/0x660
[  279.044464][T11556]  ? __pfx___cgroup_procs_write+0x10/0x10
[  279.044484][T11556]  cgroup_procs_write+0x26/0x60
[  279.044499][T11556]  cgroup_file_write+0x1ef/0x790
[  279.044510][T11556]  ? __pfx_cgroup_procs_write+0x10/0x10
[  279.044525][T11556]  ? __pfx_cgroup_file_write+0x10/0x10
[  279.044540][T11556]  kernfs_fop_write_iter+0x354/0x510
[  279.044550][T11556]  ? __pfx_cgroup_file_write+0x10/0x10
[  279.044562][T11556]  vfs_write+0x7d0/0x11d0
[  279.044575][T11556]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  279.044587][T11556]  ? __pfx_vfs_write+0x10/0x10
[  279.044597][T11556]  ? find_held_lock+0x2b/0x80
[  279.044617][T11556]  ksys_write+0x12a/0x250
[  279.044628][T11556]  ? __pfx_ksys_write+0x10/0x10
[  279.044641][T11556]  ? rcu_is_watching+0x12/0xc0
[  279.044654][T11556]  __do_fast_syscall_32+0x7c/0x3a0
[  279.044670][T11556]  do_fast_syscall_32+0x32/0x80
[  279.044684][T11556]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  279.044697][T11556] RIP: 0023:0xf707e579
[  279.044706][T11556] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  279.044716][T11556] RSP: 002b:00000000f544d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  279.044726][T11556] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00000000800005c0
[  279.044733][T11556] RDX: 0000000000000012 RSI: 0000000000000000 RDI: 0000000000000000
[  279.044739][T11556] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  279.044744][T11556] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  279.044750][T11556] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  279.044763][T11556]  </TASK>
[  279.814996][T11579] FAULT_INJECTION: forcing a failure.
[  279.814996][T11579] name failslab, interval 1, probability 0, space 0, times 0
[  279.823292][T11579] CPU: 0 UID: 0 PID: 11579 Comm: syz.2.1260 Not tainted syzkaller #0 PREEMPT(full) 
[  279.823308][T11579] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  279.823338][T11579] Call Trace:
[  279.823343][T11579]  <TASK>
[  279.823348][T11579]  dump_stack_lvl+0x16c/0x1f0
[  279.823367][T11579]  should_fail_ex+0x512/0x640
[  279.823381][T11579]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  279.823396][T11579]  should_failslab+0xc2/0x120
[  279.823414][T11579]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  279.823429][T11579]  ? copy_process+0x4b6/0x7690
[  279.823445][T11579]  copy_process+0x4b6/0x7690
[  279.823466][T11579]  ? __pfx_copy_process+0x10/0x10
[  279.823484][T11579]  ? lockdep_init_map_type+0x5c/0x280
[  279.823502][T11579]  ? lockdep_init_map_type+0x5c/0x280
[  279.823518][T11579]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  279.823533][T11579]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  279.823549][T11579]  vhost_task_create+0x1d2/0x2e0
[  279.823564][T11579]  ? __pfx_vhost_task_create+0x10/0x10
[  279.823582][T11579]  ? __pfx_vhost_task_fn+0x10/0x10
[  279.823603][T11579]  kvm_mmu_post_init_vm+0x1b7/0x380
[  279.823616][T11579]  kvm_arch_vcpu_ioctl_run+0x66/0x1980
[  279.823630][T11579]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[  279.823646][T11579]  kvm_vcpu_ioctl+0x5eb/0x1690
[  279.823661][T11579]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  279.823674][T11579]  ? tomoyo_path_number_perm+0x18d/0x580
[  279.823688][T11579]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  279.823706][T11579]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  279.823725][T11579]  ? do_vfs_ioctl+0x128/0x14f0
[  279.823741][T11579]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  279.823762][T11579]  kvm_vcpu_compat_ioctl+0x20f/0x3d0
[  279.823776][T11579]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  279.823790][T11579]  ? __fget_files+0x20e/0x3c0
[  279.823804][T11579]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  279.823817][T11579]  __ia32_compat_sys_ioctl+0x23f/0x370
[  279.823835][T11579]  __do_fast_syscall_32+0x7c/0x3a0
[  279.823851][T11579]  do_fast_syscall_32+0x32/0x80
[  279.823864][T11579]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  279.823878][T11579] RIP: 0023:0xf707e579
[  279.823887][T11579] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  279.823897][T11579] RSP: 002b:00000000f546e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  279.823907][T11579] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000000ae80
[  279.823913][T11579] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  279.823919][T11579] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  279.823925][T11579] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  279.823930][T11579] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  279.823944][T11579]  </TASK>
[  280.484597][   T34] vhci_hcd: vhci_device speed not set
[  281.605966][T11635] FAULT_INJECTION: forcing a failure.
[  281.605966][T11635] name failslab, interval 1, probability 0, space 0, times 0
[  281.636816][T11635] CPU: 0 UID: 0 PID: 11635 Comm: syz.2.1271 Not tainted syzkaller #0 PREEMPT(full) 
[  281.636845][T11635] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  281.636851][T11635] Call Trace:
[  281.636856][T11635]  <TASK>
[  281.636860][T11635]  dump_stack_lvl+0x16c/0x1f0
[  281.636879][T11635]  should_fail_ex+0x512/0x640
[  281.636893][T11635]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  281.636908][T11635]  should_failslab+0xc2/0x120
[  281.636922][T11635]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  281.636935][T11635]  ? alloc_inode+0xc3/0x240
[  281.636952][T11635]  alloc_inode+0xc3/0x240
[  281.636966][T11635]  iget_locked+0x2e4/0x830
[  281.636982][T11635]  ? __pfx_iget_locked+0x10/0x10
[  281.636996][T11635]  ? __lock_acquire+0xb97/0x1ce0
[  281.637013][T11635]  ? find_held_lock+0x2b/0x80
[  281.637030][T11635]  kernfs_get_inode+0x48/0x460
[  281.637043][T11635]  cgroup_may_write+0x89/0x120
[  281.637058][T11635]  cgroup_attach_permissions+0x1b8/0x790
[  281.637078][T11635]  __cgroup_procs_write+0x2de/0x660
[  281.637095][T11635]  ? __pfx___cgroup_procs_write+0x10/0x10
[  281.637115][T11635]  cgroup_procs_write+0x26/0x60
[  281.637129][T11635]  cgroup_file_write+0x1ef/0x790
[  281.637140][T11635]  ? __pfx_cgroup_procs_write+0x10/0x10
[  281.637155][T11635]  ? __pfx_cgroup_file_write+0x10/0x10
[  281.637171][T11635]  kernfs_fop_write_iter+0x354/0x510
[  281.637181][T11635]  ? __pfx_cgroup_file_write+0x10/0x10
[  281.637194][T11635]  vfs_write+0x7d0/0x11d0
[  281.637206][T11635]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  281.637218][T11635]  ? __pfx_vfs_write+0x10/0x10
[  281.637228][T11635]  ? find_held_lock+0x2b/0x80
[  281.637247][T11635]  ksys_write+0x12a/0x250
[  281.637259][T11635]  ? __pfx_ksys_write+0x10/0x10
[  281.637272][T11635]  ? rcu_is_watching+0x12/0xc0
[  281.637285][T11635]  __do_fast_syscall_32+0x7c/0x3a0
[  281.637301][T11635]  do_fast_syscall_32+0x32/0x80
[  281.637315][T11635]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  281.637328][T11635] RIP: 0023:0xf707e579
[  281.637337][T11635] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  281.637347][T11635] RSP: 002b:00000000f544d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  281.637358][T11635] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00000000800005c0
[  281.637364][T11635] RDX: 0000000000000012 RSI: 0000000000000000 RDI: 0000000000000000
[  281.637370][T11635] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  281.637376][T11635] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  281.637381][T11635] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  281.637394][T11635]  </TASK>
[  282.601486][T11667] ISOFS: Unable to identify CD-ROM format.
[  282.726135][ T6064] kernel write not supported for file /uinput (pid: 6064 comm: kworker/2:5)
[  282.727592][T11673] syzkaller1: entered promiscuous mode
[  282.730713][T11673] syzkaller1: entered allmulticast mode
[  282.734032][T11673] PF_CAN: dropped non conform CAN XL skbuff: dev type 65534, len 6
[  282.744812][   T61] vhci_hcd: vhci_device speed not set
[  282.805524][T11677] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1283'.
[  282.808640][T11677] netlink: 'syz.1.1283': attribute type 7 has an invalid length.
[  282.811510][T11677] netlink: 'syz.1.1283': attribute type 8 has an invalid length.
[  282.814252][T11677] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1283'.
[  282.922728][T11682] netlink: 129704 bytes leftover after parsing attributes in process `syz.1.1283'.
[  283.157775][T11688] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(9)
[  283.160468][T11688] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  283.172345][T11688] vhci_hcd vhci_hcd.0: Device attached
[  283.344593][   T34] vhci_hcd: vhci_device speed not set
[  283.405797][   T34] usb 41-1: new full-speed USB device number 7 using vhci_hcd
[  283.838173][T11699] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  283.863721][T11690] vhci_hcd: connection reset by peer
[  283.868162][   T73] vhci_hcd: stop threads
[  283.870662][   T73] vhci_hcd: release socket
[  283.872554][   T73] vhci_hcd: disconnect device
[  283.873903][T11697] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  283.888141][T11699] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  283.897783][T11695] kAFS: unable to lookup cell '/,'
[  283.925876][T11697] kvm: pic: non byte read
[  283.934049][T11697] kvm: pic: level sensitive irq not supported
[  283.937988][T11697] kvm: pic: non byte read
[  283.966832][T11704] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  283.969419][T11704] syzkaller0: entered promiscuous mode
[  283.971135][T11704] syzkaller0: entered allmulticast mode
[  284.019405][T11704] tipc: Resetting bearer <eth:syzkaller0>
[  284.023314][T11703] tipc: Resetting bearer <eth:syzkaller0>
[  284.037334][T11703] tipc: Disabling bearer <eth:syzkaller0>
[  284.247789][ T5992] Bluetooth: hci4: unexpected event for opcode 0x1405
[  284.332504][T11724] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1293'.
[  284.335985][T11724] openvswitch: netlink: Unknown nsh attribute 0
[  284.338247][T11724] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  284.721913][T11738] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1296'.
[  284.730316][T11740] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1297'.
[  285.209805][T11756] binder: 11755:11756 unknown command 0
[  285.211827][T11756] binder: 11755:11756 ioctl c0306201 80000080 returned -22
[  285.435620][T11772] FAULT_INJECTION: forcing a failure.
[  285.435620][T11772] name failslab, interval 1, probability 0, space 0, times 0
[  285.440163][T11772] CPU: 0 UID: 0 PID: 11772 Comm: syz.1.1302 Not tainted syzkaller #0 PREEMPT(full) 
[  285.440178][T11772] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  285.440185][T11772] Call Trace:
[  285.440189][T11772]  <TASK>
[  285.440193][T11772]  dump_stack_lvl+0x16c/0x1f0
[  285.440211][T11772]  should_fail_ex+0x512/0x640
[  285.440253][T11772]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  285.440266][T11772]  should_failslab+0xc2/0x120
[  285.440280][T11772]  __kmalloc_cache_noprof+0x6a/0x3e0
[  285.440291][T11772]  ? allocate_cgrp_cset_links+0xca/0x230
[  285.440309][T11772]  allocate_cgrp_cset_links+0xca/0x230
[  285.440328][T11772]  find_css_set+0x785/0x1c70
[  285.440345][T11772]  ? __pfx_find_css_set+0x10/0x10
[  285.440368][T11772]  cgroup_migrate_prepare_dst+0x10b/0x7f0
[  285.440385][T11772]  cgroup_attach_task+0x48e/0x910
[  285.440401][T11772]  ? __pfx_cgroup_attach_task+0x10/0x10
[  285.440420][T11772]  ? cgroup_attach_permissions+0x2a1/0x790
[  285.440440][T11772]  ? __cgroup_procs_write+0x3c7/0x660
[  285.440453][T11772]  __cgroup_procs_write+0x3c7/0x660
[  285.440470][T11772]  ? __pfx___cgroup_procs_write+0x10/0x10
[  285.440490][T11772]  cgroup_procs_write+0x26/0x60
[  285.440505][T11772]  cgroup_file_write+0x1ef/0x790
[  285.440515][T11772]  ? __pfx_cgroup_procs_write+0x10/0x10
[  285.440530][T11772]  ? __pfx_cgroup_file_write+0x10/0x10
[  285.440546][T11772]  kernfs_fop_write_iter+0x354/0x510
[  285.440556][T11772]  ? __pfx_cgroup_file_write+0x10/0x10
[  285.440569][T11772]  vfs_write+0x7d0/0x11d0
[  285.440581][T11772]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  285.440593][T11772]  ? __pfx_vfs_write+0x10/0x10
[  285.440603][T11772]  ? find_held_lock+0x2b/0x80
[  285.440624][T11772]  ksys_write+0x12a/0x250
[  285.440635][T11772]  ? __pfx_ksys_write+0x10/0x10
[  285.440648][T11772]  ? rcu_is_watching+0x12/0xc0
[  285.440661][T11772]  __do_fast_syscall_32+0x7c/0x3a0
[  285.440678][T11772]  do_fast_syscall_32+0x32/0x80
[  285.440691][T11772]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  285.440706][T11772] RIP: 0023:0xf706e579
[  285.440714][T11772] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  285.440724][T11772] RSP: 002b:00000000f543d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  285.440734][T11772] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00000000800005c0
[  285.440740][T11772] RDX: 0000000000000012 RSI: 0000000000000000 RDI: 0000000000000000
[  285.440746][T11772] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  285.440752][T11772] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  285.440757][T11772] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  285.440771][T11772]  </TASK>
[  285.542364][T11774] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[  285.544478][T11774] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  285.547924][T11774] vhci_hcd vhci_hcd.0: Device attached
[  285.804552][ T6018] vhci_hcd: vhci_device speed not set
[  285.825062][   T40] kauditd_printk_skb: 25 callbacks suppressed
[  285.825073][   T40] audit: type=1804 audit(1756795531.130:355): pid=11792 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.1307" name="/newroot/310/bus/bus" dev="overlay" ino=1653 res=1 errno=0
[  285.833271][   T40] audit: type=1804 audit(1756795531.150:356): pid=11792 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1307" name="/newroot/310/bus/bus" dev="overlay" ino=1653 res=1 errno=0
[  285.946429][ T6018] usb 45-1: new full-speed USB device number 3 using vhci_hcd
[  286.294763][T11776] vhci_hcd: connection reset by peer
[  286.299929][ T1225] vhci_hcd: stop threads
[  286.303176][ T1225] vhci_hcd: release socket
[  286.309176][ T1225] vhci_hcd: disconnect device
[  286.948563][T11809] loop4: detected capacity change from 0 to 524255232
[  287.204929][T11812] loop4: detected capacity change from 524255232 to 524287956
[  287.290190][T11815] FAULT_INJECTION: forcing a failure.
[  287.290190][T11815] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  287.296121][T11815] CPU: 3 UID: 0 PID: 11815 Comm: syz.4.1313 Not tainted syzkaller #0 PREEMPT(full) 
[  287.296143][T11815] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  287.296153][T11815] Call Trace:
[  287.296158][T11815]  <TASK>
[  287.296164][T11815]  dump_stack_lvl+0x16c/0x1f0
[  287.296190][T11815]  should_fail_ex+0x512/0x640
[  287.296216][T11815]  _copy_to_user+0x32/0xd0
[  287.296234][T11815]  simple_read_from_buffer+0xcb/0x170
[  287.296253][T11815]  proc_fail_nth_read+0x197/0x240
[  287.296273][T11815]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  287.296293][T11815]  ? rw_verify_area+0xcf/0x6c0
[  287.296309][T11815]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  287.296328][T11815]  vfs_read+0x1e4/0xcf0
[  287.296353][T11815]  ? __pfx_vfs_read+0x10/0x10
[  287.296369][T11815]  ? find_held_lock+0x2b/0x80
[  287.296393][T11815]  ? __fget_files+0x20e/0x3c0
[  287.296420][T11815]  ksys_read+0x12a/0x250
[  287.296439][T11815]  ? __pfx_ksys_read+0x10/0x10
[  287.296460][T11815]  ? rcu_is_watching+0x12/0xc0
[  287.296481][T11815]  __do_fast_syscall_32+0x7c/0x3a0
[  287.296506][T11815]  do_fast_syscall_32+0x32/0x80
[  287.296529][T11815]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  287.296550][T11815] RIP: 0023:0xf702e579
[  287.296563][T11815] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  287.296578][T11815] RSP: 002b:00000000f53fd590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  287.296593][T11815] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000f53fd620
[  287.296604][T11815] RDX: 000000000000000f RSI: 00000000f73a4ff4 RDI: 0000000000000000
[  287.296614][T11815] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  287.296623][T11815] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  287.296632][T11815] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  287.296654][T11815]  </TASK>
[  287.804203][T11831] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1318'.
[  287.854544][    C2] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  287.933540][T11842] policy can only be matched on NF_INET_PRE_ROUTING
[  287.933557][T11842] unable to load match
[  288.038329][T11850] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(10)
[  288.040561][T11850] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  288.047922][T11850] vhci_hcd vhci_hcd.0: Device attached
[  288.224850][    T9] vhci_hcd: vhci_device speed not set
[  288.284455][    T9] usb 39-1: new full-speed USB device number 6 using vhci_hcd
[  288.495623][   T34] vhci_hcd: vhci_device speed not set
[  288.819472][T11853] vhci_hcd: connection reset by peer
[  288.822393][ T1225] vhci_hcd: stop threads
[  288.823823][ T1225] vhci_hcd: release socket
[  288.825729][ T1225] vhci_hcd: disconnect device
[  288.968948][T11861] netlink: 'syz.2.1324': attribute type 178 has an invalid length.
[  289.007491][T11863] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1326'.
[  289.012252][T11863] netlink: 'syz.0.1326': attribute type 7 has an invalid length.
[  289.016644][T11863] netlink: 'syz.0.1326': attribute type 8 has an invalid length.
[  289.019353][T11863] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1326'.
[  289.133564][T11863] netlink: 129704 bytes leftover after parsing attributes in process `syz.0.1326'.
[  290.134608][T11891] nvme_fabrics: missing parameter 'transport=%s'
[  290.136813][T11891] nvme_fabrics: missing parameter 'nqn=%s'
[  290.414590][    C2] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  290.824284][T11908] netlink: 'syz.1.1335': attribute type 2 has an invalid length.
[  291.044628][ T6018] vhci_hcd: vhci_device speed not set
[  291.510586][T11922] hpfs: hpfs_map_sector(): read error
[  293.422369][T11954] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  293.424805][T11954] UDF-fs: Scanning with blocksize 2048 failed
[  293.428415][T11954] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  293.430773][T11954] UDF-fs: Scanning with blocksize 4096 failed
[  293.706031][    T9] vhci_hcd: vhci_device speed not set
[  294.422691][   T40] audit: type=1326 audit(1756795539.760:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11964 comm="syz.0.1350" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  294.441352][   T40] audit: type=1326 audit(1756795539.760:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11964 comm="syz.0.1350" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  294.455969][   T40] audit: type=1326 audit(1756795539.760:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11964 comm="syz.0.1350" exe="/syz-executor" sig=0 arch=40000003 syscall=26 compat=1 ip=0xf70de579 code=0x7ffc0000
[  294.476756][   T40] audit: type=1326 audit(1756795539.760:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11964 comm="syz.0.1350" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  294.483626][   T40] audit: type=1326 audit(1756795539.760:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11964 comm="syz.0.1350" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  294.501732][   T40] audit: type=1326 audit(1756795539.760:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11964 comm="syz.0.1350" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70de579 code=0x7ffc0000
[  294.514578][   T40] audit: type=1326 audit(1756795539.760:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11964 comm="syz.0.1350" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  294.523803][   T40] audit: type=1326 audit(1756795539.760:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11964 comm="syz.0.1350" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  294.534439][   T40] audit: type=1326 audit(1756795539.760:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11964 comm="syz.0.1350" exe="/syz-executor" sig=0 arch=40000003 syscall=220 compat=1 ip=0xf70de579 code=0x7ffc0000
[  294.541188][   T40] audit: type=1326 audit(1756795539.760:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11964 comm="syz.0.1350" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  295.562861][T12000] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  295.566034][T12000] block device autoloading is deprecated and will be removed.
[  295.600241][T11999] md: md2 stopped.
[  296.030381][T12011] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  297.969763][T12060] rdma_rxe: rxe_newlink: failed to add syz_tun
[  297.992421][T12058] wireguard0: entered promiscuous mode
[  297.995175][T12058] wireguard0: entered allmulticast mode
[  298.534907][T12060] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1370'.
[  298.699201][T12073] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(10)
[  298.701302][T12073] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  298.704686][T12073] vhci_hcd vhci_hcd.0: Device attached
[  298.792769][T12079] ������: renamed from lo (while UP)
[  298.924817][T12088] veth1_to_bond: entered allmulticast mode
[  299.160889][   T34] vhci_hcd: vhci_device speed not set
[  299.774503][   T34] usb 39-1: new full-speed USB device number 7 using vhci_hcd
[  299.794578][T12075] vhci_hcd: connection closed
[  299.818555][  T465] vhci_hcd: stop threads
[  299.822127][  T465] vhci_hcd: release socket
[  299.823930][  T465] vhci_hcd: disconnect device
[  300.408413][T12150] netlink: 'syz.0.1386': attribute type 1 has an invalid length.
[  300.425565][T12150] 8021q: adding VLAN 0 to HW filter on device bond3
[  300.440979][T12150] bond3: (slave geneve2): making interface the new active one
[  300.444674][T12150] bond3: (slave geneve2): Enslaving as an active interface with an up link
[  300.673183][T12178] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1393'.
[  300.744494][T12183] netlink: 1364 bytes leftover after parsing attributes in process `syz.0.1391'.
[  300.747403][T12183] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  300.748537][T12178] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1393'.
[  300.754056][T12183] netlink: 'syz.0.1391': attribute type 29 has an invalid length.
[  300.756647][T12183] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1391'.
[  301.544609][T12223] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1404'.
[  301.669005][T12240] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(10)
[  301.671080][T12240] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  301.673648][T12240] vhci_hcd vhci_hcd.0: Device attached
[  302.524623][T12242] vhci_hcd: connection reset by peer
[  302.527483][ T1225] vhci_hcd: stop threads
[  302.528855][ T1225] vhci_hcd: release socket
[  302.530307][ T1225] vhci_hcd: disconnect device
[  302.701810][T12258] io-wq is not configured for unbound workers
[  303.117141][T12272] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1418'.
[  303.682996][T12287] rdma_rxe: rxe_newlink: failed to add syz_tun
[  304.029148][T12301] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10)
[  304.031226][T12301] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  304.036860][T12301] vhci_hcd vhci_hcd.0: Device attached
[  304.162385][T12287] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1421'.
[  304.234619][   T53] vhci_hcd: vhci_device speed not set
[  304.304468][   T53] usb 37-1: new full-speed USB device number 6 using vhci_hcd
[  304.597287][T12316] Failed to get privilege flags for destination (handle=0x2:0x0)
[  304.649718][T12306] vhci_hcd: connection reset by peer
[  304.651770][ T6195] vhci_hcd: stop threads
[  304.653003][ T6195] vhci_hcd: release socket
[  304.663802][ T6195] vhci_hcd: disconnect device
[  304.757792][T12333] blktrace: Concurrent blktraces are not allowed on sg0
[  304.856680][T12337] netlink: 'syz.2.1434': attribute type 10 has an invalid length.
[  304.904583][   T34] vhci_hcd: vhci_device speed not set
[  305.191327][T12350] autofs: Unknown parameter 'Z�qD���C�7D��&C$��뙾�4�_�4DY!�I�u���&�}Ƌ�m{DL�"fa&�]���J��A'
[  305.480013][T12359] vivid-007: =================  START STATUS  =================
[  305.483222][T12359] vivid-007: Enable Output Cropping: true
[  305.485338][T12359] vivid-007: Enable Output Composing: true
[  305.487314][T12359] vivid-007: Enable Output Scaler: true
[  305.489168][T12359] vivid-007: Tx RGB Quantization Range: Automatic
[  305.491411][T12359] vivid-007: Transmit Mode: HDMI
[  305.493048][T12359] vivid-007: Hotplug Present: 0x00000000
[  305.495572][T12359] vivid-007: RxSense Present: 0x00000000
[  305.498092][T12359] vivid-007: EDID Present: 0x00000000
[  305.500162][T12359] vivid-007: ==================  END STATUS  ==================
[  306.673921][T12385] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1446'.
[  306.677776][T12385] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1446'.
[  306.680904][T12385] netlink: 'syz.4.1446': attribute type 13 has an invalid length.
[  306.683430][T12385] netlink: 'syz.4.1446': attribute type 11 has an invalid length.
[  306.755737][   T40] kauditd_printk_skb: 30 callbacks suppressed
[  306.755747][   T40] audit: type=1326 audit(1756795552.100:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12390 comm="syz.0.1449" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  306.776485][   T40] audit: type=1326 audit(1756795552.100:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12390 comm="syz.0.1449" exe="/syz-executor" sig=0 arch=40000003 syscall=393 compat=1 ip=0xf70de579 code=0x7ffc0000
[  306.783019][   T40] audit: type=1326 audit(1756795552.100:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12390 comm="syz.0.1449" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  306.789788][   T40] audit: type=1326 audit(1756795552.100:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12390 comm="syz.0.1449" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  306.801061][   T40] audit: type=1326 audit(1756795552.100:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12390 comm="syz.0.1449" exe="/syz-executor" sig=0 arch=40000003 syscall=5 compat=1 ip=0xf70de579 code=0x7ffc0000
[  306.815740][   T40] audit: type=1326 audit(1756795552.100:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12390 comm="syz.0.1449" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  306.822516][   T40] audit: type=1326 audit(1756795552.100:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12390 comm="syz.0.1449" exe="/syz-executor" sig=0 arch=40000003 syscall=360 compat=1 ip=0xf70de579 code=0x7ffc0000
[  306.836521][   T40] audit: type=1326 audit(1756795552.100:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12390 comm="syz.0.1449" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  306.842877][   T40] audit: type=1326 audit(1756795552.100:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12390 comm="syz.0.1449" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  306.864870][   T40] audit: type=1326 audit(1756795552.100:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12390 comm="syz.0.1449" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf70de579 code=0x7ffc0000
[  306.883020][T12393] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[  306.885137][T12393] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  306.887772][T12393] vhci_hcd vhci_hcd.0: Device attached
[  307.068712][ T3245] vhci_hcd: vhci_device speed not set
[  307.134547][ T3245] usb 45-1: new full-speed USB device number 4 using vhci_hcd
[  307.539468][T12413] vivid-007: =================  START STATUS  =================
[  307.542040][T12413] vivid-007: Enable Output Cropping: true
[  307.543945][T12413] vivid-007: Enable Output Composing: true
[  307.546323][T12413] vivid-007: Enable Output Scaler: true
[  307.548302][T12413] vivid-007: Tx RGB Quantization Range: Automatic
[  307.550652][T12413] vivid-007: Transmit Mode: HDMI
[  307.552423][T12413] vivid-007: Hotplug Present: 0x00000000
[  307.554322][T12413] vivid-007: RxSense Present: 0x00000000
[  307.556840][T12413] vivid-007: EDID Present: 0x00000000
[  307.559641][T12413] vivid-007: ==================  END STATUS  ==================
[  307.594540][T12395] vhci_hcd: connection reset by peer
[  307.618165][ T1148] vhci_hcd: stop threads
[  307.619630][ T1148] vhci_hcd: release socket
[  307.627316][ T1148] vhci_hcd: disconnect device
[  309.684448][   T53] vhci_hcd: vhci_device speed not set
[  310.075811][T12461] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1465'.
[  310.784142][T12471] overlayfs: failed to resolve './bus': -2
[  311.308383][T12478] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10)
[  311.310535][T12478] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  311.313511][T12478] vhci_hcd vhci_hcd.0: Device attached
[  311.524636][ T6045] vhci_hcd: vhci_device speed not set
[  311.584953][ T6045] usb 37-1: new full-speed USB device number 7 using vhci_hcd
[  312.032635][T12480] vhci_hcd: connection reset by peer
[  312.036233][ T6195] vhci_hcd: stop threads
[  312.037801][ T6195] vhci_hcd: release socket
[  312.039653][ T6195] vhci_hcd: disconnect device
[  312.244542][ T3245] vhci_hcd: vhci_device speed not set
[  312.642456][T12508] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  312.656383][T12508] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  312.933167][T12515] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(10)
[  312.935938][T12515] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  312.939201][T12515] vhci_hcd vhci_hcd.0: Device attached
[  313.124602][ T6136] vhci_hcd: vhci_device speed not set
[  313.184500][ T6136] usb 39-1: new full-speed USB device number 8 using vhci_hcd
[  313.232343][T12520] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1478'.
[  313.609598][T12533] netlink: 'syz.0.1483': attribute type 4 has an invalid length.
[  313.708611][T12517] vhci_hcd: connection reset by peer
[  313.723157][ T6195] vhci_hcd: stop threads
[  313.727589][ T6195] vhci_hcd: release socket
[  313.729105][ T6195] vhci_hcd: disconnect device
[  313.861749][T12539] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[  313.863780][T12539] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  313.867569][T12539] vhci_hcd vhci_hcd.0: Device attached
[  314.054496][   T34] vhci_hcd: vhci_device speed not set
[  314.091468][T12536] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1484'.
[  314.102981][T12536] wireguard0: entered promiscuous mode
[  314.104770][T12536] wireguard0: entered allmulticast mode
[  314.114467][   T34] usb 45-1: new full-speed USB device number 5 using vhci_hcd
[  314.761369][T12541] vhci_hcd: connection reset by peer
[  314.763940][ T6195] vhci_hcd: stop threads
[  314.766024][ T6195] vhci_hcd: release socket
[  314.770481][ T6195] vhci_hcd: disconnect device
[  315.009290][T12561] vivid-007: =================  START STATUS  =================
[  315.012173][T12561] vivid-007: Enable Output Cropping: true
[  315.013897][T12561] vivid-007: Enable Output Composing: true
[  315.015998][T12561] vivid-007: Enable Output Scaler: true
[  315.017866][T12561] vivid-007: Tx RGB Quantization Range: Automatic
[  315.019905][T12561] vivid-007: Transmit Mode: HDMI
[  315.021504][T12561] vivid-007: Hotplug Present: 0x00000000
[  315.023384][T12561] vivid-007: RxSense Present: 0x00000000
[  315.025303][T12561] vivid-007: EDID Present: 0x00000000
[  315.026971][T12561] vivid-007: ==================  END STATUS  ==================
[  315.896226][T12575] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10)
[  315.898242][T12575] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  315.900723][T12575] vhci_hcd vhci_hcd.0: Device attached
[  315.901520][T12577] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1490'.
[  316.019593][T12581] vivid-007: =================  START STATUS  =================
[  316.022067][T12581] vivid-007: Enable Output Cropping: true
[  316.023951][T12581] vivid-007: Enable Output Composing: true
[  316.026060][T12581] vivid-007: Enable Output Scaler: true
[  316.027796][T12581] vivid-007: Tx RGB Quantization Range: Automatic
[  316.029914][T12581] vivid-007: Transmit Mode: HDMI
[  316.031519][T12581] vivid-007: Hotplug Present: 0x00000000
[  316.033315][T12581] vivid-007: RxSense Present: 0x00000000
[  316.035313][T12581] vivid-007: EDID Present: 0x00000000
[  316.036996][T12581] vivid-007: ==================  END STATUS  ==================
[  316.658341][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  316.816342][T12578] vhci_hcd: connection reset by peer
[  316.818851][   T73] vhci_hcd: stop threads
[  316.820284][   T73] vhci_hcd: release socket
[  316.823751][   T73] vhci_hcd: disconnect device
[  316.885046][ T6045] vhci_hcd: vhci_device speed not set
[  317.991927][T12607] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10)
[  317.994045][T12607] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  318.002158][T12607] vhci_hcd vhci_hcd.0: Device attached
[  318.324520][ T6136] vhci_hcd: vhci_device speed not set
[  318.743729][T12609] vhci_hcd: connection closed
[  318.744304][  T465] vhci_hcd: stop threads
[  318.747324][  T465] vhci_hcd: release socket
[  318.753702][  T465] vhci_hcd: disconnect device
[  319.205497][   T34] vhci_hcd: vhci_device speed not set
[  319.479500][T12618] fuse: Unknown parameter '0x0000000000000003'
[  319.854478][    C2] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  320.568100][T12621] vivid-007: =================  START STATUS  =================
[  320.570513][T12621] vivid-007: Enable Output Cropping: true
[  320.572252][T12621] vivid-007: Enable Output Composing: true
[  320.574070][T12621] vivid-007: Enable Output Scaler: true
[  320.575981][T12621] vivid-007: Tx RGB Quantization Range: Automatic
[  320.578488][T12621] vivid-007: Transmit Mode: HDMI
[  320.580068][T12621] vivid-007: Hotplug Present: 0x00000000
[  320.581829][T12621] vivid-007: RxSense Present: 0x00000000
[  320.583600][T12621] vivid-007: EDID Present: 0x00000000
[  320.587102][T12621] vivid-007: ==================  END STATUS  ==================
[  320.787912][T12643] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[  320.790046][T12643] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  320.797129][T12643] vhci_hcd vhci_hcd.0: Device attached
[  321.054534][   T34] vhci_hcd: vhci_device speed not set
[  321.114439][   T34] usb 45-1: new full-speed USB device number 6 using vhci_hcd
[  321.144483][    C2] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  321.341975][T12657] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10)
[  321.344072][T12657] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  321.346638][T12657] vhci_hcd vhci_hcd.0: Device attached
[  321.403710][T12661] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(10)
[  321.406517][T12661] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  321.413256][T12661] vhci_hcd vhci_hcd.0: Device attached
[  321.554555][   T60] vhci_hcd: vhci_device speed not set
[  321.594501][   T61] vhci_hcd: vhci_device speed not set
[  321.654711][   T61] usb 39-1: new full-speed USB device number 9 using vhci_hcd
[  321.704465][   T60] usb 37-1: new full-speed USB device number 8 using vhci_hcd
[  322.162141][T12663] vhci_hcd: connection reset by peer
[  322.178108][T12647] vhci_hcd: connection reset by peer
[  322.239828][ T1148] vhci_hcd: stop threads
[  322.241226][ T1148] vhci_hcd: release socket
[  322.242744][ T1148] vhci_hcd: disconnect device
[  322.244351][ T1148] vhci_hcd: stop threads
[  322.245780][ T1148] vhci_hcd: release socket
[  322.247233][ T1148] vhci_hcd: disconnect device
[  322.419780][T12659] vhci_hcd: connection reset by peer
[  322.423891][  T760] vhci_hcd: stop threads
[  322.427238][  T760] vhci_hcd: release socket
[  322.429424][  T760] vhci_hcd: disconnect device
[  322.971906][T12682] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1517'.
[  323.152240][T12688] fuse: Unknown parameter '0x0000000000000003'
[  323.407165][T12691] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[  323.409955][T12691] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  323.412973][T12691] vhci_hcd vhci_hcd.0: Device attached
[  323.555649][T12696] netlink: 'syz.0.1520': attribute type 13 has an invalid length.
[  323.558110][T12696] netlink: 'syz.0.1520': attribute type 17 has an invalid length.
[  324.192306][T12696] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  324.369457][T12711] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1521'.
[  324.384646][T12693] vhci_hcd: connection closed
[  324.385783][ T6195] vhci_hcd: stop threads
[  324.394561][ T6195] vhci_hcd: release socket
[  324.396697][ T6195] vhci_hcd: disconnect device
[  324.660601][T12724] vivid-007: =================  START STATUS  =================
[  324.663116][T12724] vivid-007: Enable Output Cropping: true
[  324.665343][T12724] vivid-007: Enable Output Composing: true
[  324.667306][T12724] vivid-007: Enable Output Scaler: true
[  324.669213][T12724] vivid-007: Tx RGB Quantization Range: Automatic
[  324.671290][T12724] vivid-007: Transmit Mode: HDMI
[  324.672864][T12724] vivid-007: Hotplug Present: 0x00000000
[  324.674780][T12724] vivid-007: RxSense Present: 0x00000000
[  324.677179][T12724] vivid-007: EDID Present: 0x00000000
[  324.679394][T12724] vivid-007: ==================  END STATUS  ==================
[  325.835157][ T6064] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  326.178269][T12765] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[  326.197106][T12765] overlayfs: missing 'lowerdir'
[  326.244513][   T34] vhci_hcd: vhci_device speed not set
[  326.355307][T12758] fuse: Unknown parameter '0x0000000000000003'
[  326.359751][T12775] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(9)
[  326.362311][T12775] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  326.367586][T12775] vhci_hcd vhci_hcd.0: Device attached
[  326.734509][   T34] vhci_hcd: vhci_device speed not set
[  326.804537][   T34] usb 45-1: device descriptor read/64, error -110
[  326.804692][   T60] vhci_hcd: vhci_device speed not set
[  326.807409][   T61] vhci_hcd: vhci_device speed not set
[  326.985405][   T34] vhci_hcd: vhci_device speed not set
[  327.044509][   T34] usb 45-1: new full-speed USB device number 7 using vhci_hcd
[  327.092323][T12778] vhci_hcd: connection reset by peer
[  327.096362][ T1225] vhci_hcd: stop threads
[  327.098386][ T1225] vhci_hcd: release socket
[  327.100385][ T1225] vhci_hcd: disconnect device
[  332.177029][   T34] vhci_hcd: vhci_device speed not set
[  336.270861][T12809] overlay: ./file0 is not a directory
[  336.287179][T12810] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(9)
[  336.289618][T12810] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  336.295625][T12810] vhci_hcd vhci_hcd.0: Device attached
[  336.298673][T12803] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1541'.
[  336.303189][T12803] bridge_slave_1: left allmulticast mode
[  336.307343][T12803] bridge_slave_1: left promiscuous mode
[  336.322924][T12803] bridge0: port 2(bridge_slave_1) entered disabled state
[  336.395823][T12803] bridge_slave_0: left allmulticast mode
[  336.397948][T12803] bridge_slave_0: left promiscuous mode
[  336.402646][T12803] bridge0: port 1(bridge_slave_0) entered disabled state
[  336.494643][   T34] vhci_hcd: vhci_device speed not set
[  336.589173][   T34] usb 39-1: new full-speed USB device number 10 using vhci_hcd
[  336.694465][T12825] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1546'.
[  336.927230][T12812] vhci_hcd: connection reset by peer
[  336.929271][   T73] vhci_hcd: stop threads
[  336.930658][   T73] vhci_hcd: release socket
[  336.932104][   T73] vhci_hcd: disconnect device
[  337.143977][T12837] input: syz1 as /devices/virtual/input/input20
[  337.415081][   T60] libceph: connect (1)[c::]:6789 error -22
[  337.416999][   T60] libceph: mon0 (1)[c::]:6789 connect error
[  337.462331][T12841] ceph: No mds server is up or the cluster is laggy
[  337.505346][T12847] netlink: 'syz.2.1550': attribute type 1 has an invalid length.
[  337.988528][T12859] overlay: ./file0 is not a directory
[  338.980316][T12867] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1555'.
[  338.984632][T12867] xfrm0: entered promiscuous mode
[  338.986371][T12867] xfrm0: entered allmulticast mode
[  339.231601][T12879] ata1.00: invalid command format 189
[  339.298461][ T1148] wlan0: Trigger new scan to find an IBSS to join
[  339.451382][T12877] 9pnet_fd: Insufficient options for proto=fd
[  339.492993][T12878] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(9)
[  339.495708][T12878] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  339.501746][T12878] vhci_hcd vhci_hcd.0: Device attached
[  339.694475][  T840] vhci_hcd: vhci_device speed not set
[  339.736742][T12889] vivid-007: =================  START STATUS  =================
[  339.739191][T12889] vivid-007: Enable Output Cropping: true
[  339.740987][T12889] vivid-007: Enable Output Composing: true
[  339.742908][T12889] vivid-007: Enable Output Scaler: true
[  339.744815][T12889] vivid-007: Tx RGB Quantization Range: Automatic
[  339.746863][T12889] vivid-007: Transmit Mode: HDMI
[  339.748460][T12889] vivid-007: Hotplug Present: 0x00000000
[  339.750272][T12889] vivid-007: RxSense Present: 0x00000000
[  339.752250][T12889] vivid-007: EDID Present: 0x00000000
[  339.753978][T12889] vivid-007: ==================  END STATUS  ==================
[  339.884439][  T840] usb 45-1: new full-speed USB device number 8 using vhci_hcd
[  339.950679][T12883] vhci_hcd: connection reset by peer
[  339.952579][   T12] vhci_hcd: stop threads
[  339.954427][   T12] vhci_hcd: release socket
[  339.968006][   T12] vhci_hcd: disconnect device
[  340.794937][T12915] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1568'.
[  341.255796][   T40] kauditd_printk_skb: 31 callbacks suppressed
[  341.255806][   T40] audit: type=1326 audit(1756795587.601:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12919 comm="syz.0.1570" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  341.273879][   T40] audit: type=1326 audit(1756795587.611:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12919 comm="syz.0.1570" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70de598 code=0x7ffc0000
[  341.280687][   T40] audit: type=1326 audit(1756795587.611:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12919 comm="syz.0.1570" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70de598 code=0x7ffc0000
[  341.287439][   T40] audit: type=1326 audit(1756795587.611:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12919 comm="syz.0.1570" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70de598 code=0x7ffc0000
[  341.294086][   T40] audit: type=1326 audit(1756795587.611:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12919 comm="syz.0.1570" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70de598 code=0x7ffc0000
[  341.300892][   T40] audit: type=1326 audit(1756795587.611:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12919 comm="syz.0.1570" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70de598 code=0x7ffc0000
[  341.307467][   T40] audit: type=1326 audit(1756795587.611:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12919 comm="syz.0.1570" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  341.314138][   T40] audit: type=1326 audit(1756795587.611:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12919 comm="syz.0.1570" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70de598 code=0x7ffc0000
[  341.320973][   T40] audit: type=1326 audit(1756795587.611:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12919 comm="syz.0.1570" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  341.327789][   T40] audit: type=1326 audit(1756795587.611:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12919 comm="syz.0.1570" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  341.648180][T12930] fuse: Unknown parameter 'fd5G��U��}ǃ�O���
X0x0000000000000005'
[  341.764474][   T34] vhci_hcd: vhci_device speed not set
[  341.854790][T12933] netlink: 260 bytes leftover after parsing attributes in process `syz.0.1572'.
[  341.975529][T12941] vivid-007: =================  START STATUS  =================
[  341.978007][T12941] vivid-007: Enable Output Cropping: true
[  341.979815][T12941] vivid-007: Enable Output Composing: true
[  341.981783][T12941] vivid-007: Enable Output Scaler: true
[  341.983583][T12941] vivid-007: Tx RGB Quantization Range: Automatic
[  341.985875][T12941] vivid-007: Transmit Mode: HDMI
[  341.987465][T12941] vivid-007: Hotplug Present: 0x00000000
[  341.989270][T12941] vivid-007: RxSense Present: 0x00000000
[  341.991143][T12941] vivid-007: EDID Present: 0x00000000
[  341.992713][T12941] vivid-007: ==================  END STATUS  ==================
[  342.806364][T12961] random: crng reseeded on system resumption
[  342.830923][T12961] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1578'.
[  342.833836][T12961] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1578'.
[  343.087780][T12961] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1578'.
[  343.090806][T12961] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1578'.
[  343.236441][T12961] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1578'.
[  343.239571][T12961] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1578'.
[  343.615687][T12979] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1584'.
[  343.665890][T12979] overlayfs: invalid origin (00000079004c00900600000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000)
[  344.334762][  T465] wlan0: Trigger new scan to find an IBSS to join
[  344.646542][T13013] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1595'.
[  344.739531][T13019] dvmrp1: tun_chr_ioctl cmd 1074025676
[  344.741378][T13019] dvmrp1: owner set to 0
[  345.014651][   T34] usb 6-1: new high-speed USB device number 25 using dummy_hcd
[  345.054538][  T840] vhci_hcd: vhci_device speed not set
[  345.144426][   T34] usb 6-1: device descriptor read/64, error -71
[  345.214761][    T9] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  345.247206][ T1225] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  345.394559][   T34] usb 6-1: new high-speed USB device number 26 using dummy_hcd
[  345.416092][T13029] overlayfs: conflicting options: nfs_export=on,index=off
[  345.524523][   T34] usb 6-1: device descriptor read/64, error -71
[  345.634985][   T34] usb usb6-port1: attempt power cycle
[  345.641971][T13037] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1601'.
[  345.712628][T13019] BUG: sleeping function called from invalid context at mm/vmalloc.c:3409
[  345.716167][T13019] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 13019, name: syz.1.1596
[  345.721772][T13019] preempt_count: 1, expected: 0
[  345.723301][T13019] RCU nest depth: 0, expected: 0
[  345.725361][T13019] no locks held by syz.1.1596/13019.
[  345.727034][T13019] Preemption disabled at:
[  345.727040][T13019] [<ffffffff8b91ff20>] schedule+0xe0/0x3a0
[  345.730269][T13019] CPU: 3 UID: 0 PID: 13019 Comm: syz.1.1596 Not tainted syzkaller #0 PREEMPT(full) 
[  345.730283][T13019] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  345.730290][T13019] Call Trace:
[  345.730295][T13019]  <TASK>
[  345.730300][T13019]  dump_stack_lvl+0x16c/0x1f0
[  345.730317][T13019]  __might_resched+0x3c0/0x5e0
[  345.730329][T13019]  ? __pfx___might_resched+0x10/0x10
[  345.730339][T13019]  ? pcpu_block_update+0x562/0x660
[  345.730357][T13019]  ? find_held_lock+0x2b/0x80
[  345.730369][T13019]  vfree+0x75/0xb50
[  345.730385][T13019]  ? rcu_is_watching+0x12/0xc0
[  345.730396][T13019]  ? kfree+0x24f/0x4d0
[  345.730407][T13019]  ? free_percpu+0x6db/0x13c0
[  345.730420][T13019]  futex_hash_free+0x98/0xc0
[  345.730432][T13019]  __mmdrop+0x33f/0x580
[  345.730443][T13019]  ? rcu_is_watching+0x12/0xc0
[  345.730454][T13019]  finish_task_switch.isra.0+0x7a4/0xc10
[  345.730464][T13019]  ? __switch_to+0x7a5/0x11a0
[  345.730478][T13019]  __schedule+0x1198/0x5de0
[  345.730493][T13019]  ? __lock_acquire+0x62e/0x1ce0
[  345.730510][T13019]  ? __pfx___schedule+0x10/0x10
[  345.730525][T13019]  ? find_held_lock+0x2b/0x80
[  345.730534][T13019]  ? schedule+0x2d7/0x3a0
[  345.730547][T13019]  schedule+0xe7/0x3a0
[  345.730559][T13019]  schedule_timeout+0x257/0x290
[  345.730577][T13019]  ? __pfx_schedule_timeout+0x10/0x10
[  345.730588][T13019]  ? tomoyo_path_number_perm+0x295/0x580
[  345.730606][T13019]  ? rcu_is_watching+0x12/0xc0
[  345.730622][T13019]  ? _raw_spin_unlock_irq+0x23/0x50
[  345.730641][T13019]  ___down_common+0x2d8/0x460
[  345.730674][T13019]  ? __pfx____down_common+0x10/0x10
[  345.730697][T13019]  ? do_raw_spin_lock+0x12c/0x2b0
[  345.730732][T13019]  __down_interruptible+0x21/0x40
[  345.730757][T13019]  down_interruptible+0x7f/0xa0
[  345.730784][T13019]  raw_ioctl+0x1287/0x2c30
[  345.730813][T13019]  ? __pfx_raw_ioctl+0x10/0x10
[  345.730840][T13019]  ? __pfx_raw_ioctl+0x10/0x10
[  345.730864][T13019]  __ia32_compat_sys_ioctl+0x23f/0x370
[  345.730895][T13019]  __do_fast_syscall_32+0x7c/0x3a0
[  345.730921][T13019]  do_fast_syscall_32+0x32/0x80
[  345.730944][T13019]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  345.730963][T13019] RIP: 0023:0xf706e579
[  345.730972][T13019] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  345.730982][T13019] RSP: 002b:00000000f545c484 EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  345.730992][T13019] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080085502
[  345.730999][T13019] RDX: 00000000f545d510 RSI: 00000000f73e4ff4 RDI: 00000000f545c520
[  345.731005][T13019] RBP: 00000000f73e4ff4 R08: 0000000000000000 R09: 0000000000000000
[  345.731011][T13019] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  345.731016][T13019] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  345.731028][T13019]  </TASK>
[  346.105067][   T34] usb 6-1: new high-speed USB device number 27 using dummy_hcd
[  346.127374][   T34] usb 6-1: device descriptor read/8, error -71
[  346.365235][   T34] usb 6-1: new high-speed USB device number 28 using dummy_hcd
[  346.384932][   T34] usb 6-1: device descriptor read/8, error -71
[  346.494790][   T34] usb usb6-port1: unable to enumerate USB device

VM DIAGNOSIS:
06:38:25  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000002 RBX=ffff88804c4e0000 RCX=ffffffff84e8ac95 RDX=ffff888023fd8000
RSI=ffffffff84e8ae22 RDI=0000000000000005 RBP=0000000000000040 RSP=ffffc90003b06900
R8 =0000000000000005 R9 =0000000000000018 R10=0000000000000040 R11=ffff88804c4e0030
R12=0000000000000040 R13=ffff888023aa0f50 R14=0000000000000000 R15=45ca6f1d90efa1ff
RIP=ffffffff81bb0ad8 RFL=00000216 [----AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880974c0000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f1e739f4 CR3=000000006dd90000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000a60ce07b 00000000cec3662e
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2c04baa3cb7b3955
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 333bebdfd0a6a21d
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffffffff816ab56d RBX=0000000000000001 RCX=0000000000000002 RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff8e5c10e0 RBP=ffffc9000dcef200 RSP=ffffc9000dcef120
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000003 R11=0000000000005e92
R12=ffffffff81a676b0 R13=ffffc9000dcef1b8 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff819762b0 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880975c0000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7f055c0 CR3=00000000570c6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000003 RBX=ffffc900005388c8 RCX=ffffc900005384bc RDX=0000000000000000
RSI=ffffffff8de27e4d RDI=ffff888023988444 RBP=0000000000000001 RSP=ffffc900005384f8
R8 =ffffffff914f4f28 R9 =0000000000000000 R10=0000000000000004 R11=0000000000012037
R12=ffffc900005385b8 R13=ffffc90000538568 R14=ffffc900005388c8 R15=ffffc9000053859c
RIP=ffffffff816ab8ae RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f14b2b60300 ffffffff 00c00000
GS =0000 ffff8880976c0000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f0e4fd10 CR3=000000004ff25000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7d48ffffffff84b5 7cecffffffff84b5 796fffffffff84b5 72feffffffff84b5
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7010ffffffff84b5 7971ffffffff84b5 714cffffffff84b5 7c48ffffffff84b5
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7617ffffffff84b5 7783ffffffff84b5 7382ffffffff84b5 774fffffffff84b5
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 241affffffff849f 28b7ffffffff849f 25c9ffffffff849f 24c0ffffffff849c
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2cf9ffffffff8493 b3d2ffffffff8493 bcb2ffffffff81e6 a501ffffffff8493
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ba05ffffffff8493 b670ffffffff8493 bbbcffffffff8493 b6cfffffffff8493
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 be91ffffffff8493 b22bffffffff8493 b563ffffffff8960 88ffffffffff84b5
ZMM24=83d1d91883d1d918 83d1d91883d1d918 83d1d91883d1d918 83d1d91883d1d918 83d1d91883d1d918 83d1d91883d1d918 83d1d91883d1d918 83d1d91883d1d918
ZMM25=136bffe1136bffe1 136bffe1136bffe1 136bffe1136bffe1 136bffe1136bffe1 136bffe1136bffe1 136bffe1136bffe1 136bffe1136bffe1 136bffe1136bffe1
ZMM26=2b63bfec2b63bfec 2b63bfec2b63bfec 2b63bfec2b63bfec 2b63bfec2b63bfec 2b63bfec2b63bfec 2b63bfec2b63bfec 2b63bfec2b63bfec 2b63bfec2b63bfec
ZMM27=04a8221a04a8221a 04a8221a04a8221a 04a8221a04a8221a 04a8221a04a8221a 04a8221a04a8221a 04a8221a04a8221a 04a8221a04a8221a 04a8221a04a8221a
ZMM28=00000200000001ff 000001fe000001fd 000001fc000001fb 000001fa000001f9 000001f8000001f7 000001f6000001f5 000001f4000001f3 000001f2000001f1
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=6a1500006a150000 6a1500006a150000 6a1500006a150000 6a1500006a150000 6a1500006a150000 6a1500006a150000 6a1500006a150000 6a1500006a150000
info registers vcpu 3

CPU#3
RAX=0000000000000064 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff856170b5 RDI=ffffffff9b0fc700 RBP=ffffffff9b0fc6c0 RSP=ffffc90003af7358
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000064 R14=ffffffff9b0fc6c0 R15=ffffffff85617050
RIP=ffffffff856170df RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880977c0000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000572f94c0 CR3=00000000654ec000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 bcf3c528dda0f23b ac84c5d4ad51d51d
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 aec02c323f159fc2 70b11b879fa602b4
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 8cf014c35c2a876a 299c5774aaff7980
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2cb96d30a9011bc5 f7f27136e38676fb
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000dc0
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000d2000000d2 00800100000000d2
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7076444670870c08 70961b02000000d2
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 008001007077494e 000000d200800100
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 70880f3600800100 0080010070686568
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4607c31bffd2286b 74b310dc44fb14a0
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e89180ebb10e3bd f12c5627b33222dd
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000