last executing test programs:

7.730038324s ago: executing program 2 (id=2680):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000004000000b703000008000040850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f00000002c0)='sys_enter\x00', r5}, 0x10)
msgctl$MSG_INFO(0x0, 0xc, &(0x7f0000000280)=""/117)
kexec_load(0x10, 0x0, 0x0, 0x2a0000)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="4800000010000507000000000000000016000000", @ANYRES32, @ANYBLOB="0000000200000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x9}, {0xfff1, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x0)
syz_io_uring_setup(0x88f, 0x0, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x104, 0x0, 0x0, 0x4)
socket$nl_route(0x10, 0x3, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=@newtfilter={0x34, 0x2c, 0xd27, 0x70bd21, 0x25dfdbff, {0x0, 0x0, 0x0, r9, {0xc, 0x8}, {}, {0xfff2, 0x2}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x8848}, 0x20004804)

7.21858993s ago: executing program 2 (id=2681):
modify_ldt$write2(0x11, &(0x7f0000000100)={0x1d30, 0x0, 0x2003, 0x1}, 0x10)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x4000, 0xf)
r0 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, 0x0)
r2 = socket$packet(0x11, 0xa, 0x300)
r3 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r3, &(0x7f0000001080)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_int(r3, 0x29, 0x3, &(0x7f0000004240)=0x40000006, 0x4)
recvmmsg(r3, &(0x7f0000000940)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000840)=""/183, 0xb7}, 0x9}], 0x1, 0x2, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r3, 0x29, 0x36, &(0x7f0000000580)=ANY=[], 0x8)
setsockopt$inet6_int(r3, 0x29, 0x4, &(0x7f0000000000)=0x7f, 0x4)
sendto$inet6(r3, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000fbe000)={0x2, &(0x7f0000000100)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x80000006}]}, 0x10)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="20012abd7000fddbdf252c00000008000300", @ANYRES32=0x0, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x8040)
r4 = syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000280)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7", @ANYRESDEC], 0x0)
syz_usb_control_io$cdc_ncm(r4, 0x0, &(0x7f0000000b80)={0x44, &(0x7f0000000900)=ANY=[@ANYBLOB="0015b3"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
readv(r5, &(0x7f0000000480)=[{&(0x7f0000000140)=""/65}, {&(0x7f0000000300)=""/214}, {&(0x7f00000001c0)=""/116}, {&(0x7f0000000400)=""/41}], 0x10000000000000d9)
syz_usb_ep_write(r4, 0x81, 0x8, &(0x7f0000000080)="00012c615bc20000")
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000080)={'syzkaller1\x00', @broadcast})
write$tun(r1, &(0x7f0000002240)=ANY=[@ANYBLOB="080008000400020000001400050045a00fc000680000030690780a010100e00000014e204e28", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="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"], 0xfce)
mknodat(0xffffffffffffff9c, &(0x7f0000000200)='./file1/file4/file5\x00', 0x81c0, 0x0)
r6 = syz_open_dev$vcsa(&(0x7f0000000040), 0x4, 0x40000)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f00000000c0)={0x5, 0x0, 0x3000, 0x1000, &(0x7f0000ffd000/0x1000)=nil})
r7 = openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$apparmor_current(r7, &(0x7f0000000240)=ANY=[@ANYBLOB='changeprofile ://&'], 0x17)
renameat2(0xffffffffffffff9c, 0x0, r6, &(0x7f0000000640)='./file1/file4/file7/file6\x00', 0x2)
ioctl$sock_bt_bnep_BNEPGETCONNLIST(r0, 0x800442d2, &(0x7f0000000040)={0x0, 0x0})
syz_clone(0xa0001000, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0)

6.213260612s ago: executing program 0 (id=2683):
r0 = socket(0x25, 0x5, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0)
openat$audio1(0xffffffffffffff9c, &(0x7f0000000240), 0x88002, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'wlan1\x00', <r1=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000005c0)=@newtaction={0x1fc, 0x30, 0x1, 0x70bd28, 0x0, {}, [{0x1e8, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0xffffffff, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_mirred={0x1a0, 0x5, 0x0, 0x0, {{0xb}, {0xa4, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x50, 0x80000001, 0xffffffffffffffff, 0xf, 0x8000}, 0x4, r1}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x8000, 0x8, 0x7, 0xe2, 0xd}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x5, 0x1, 0x20000000, 0x6, 0x2}, 0x2}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x2, 0x3, 0x3, 0x5, 0x8000003}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x10000, 0x6, 0xffffffffdffffffd, 0x3ad, 0xb}, 0x4}}]}, {0xd4, 0x6, "c00997aa15d3a21ecd2afde148ad8edd6fb46592752645527bc33fb26fbcf5e51770416ca98e0d149cf50b2ea4297b75c71eb47e298557886a067d6cd657defe67478fb952afbfd433aeb926ddbbceafe6b87160cf47121c30cbb96891abb819cfadcefd6200fa263f187b9731e2458c9fe1bbc5f77b88865bd017822734921e842672f953ad4cc1da3bc5067c54f75e0421146dfd324e0be59ff2ee6292eca428e3c7a02fe28a03654ebd9b83c38f64926c9911d29356d31aacd2ed508bc79455fedb2f103c2bada0b5ec7dc9d69b8d"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x2}}}}]}]}, 0x1fc}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), 0xffffffffffffffff)
r5 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
write(r5, &(0x7f0000000000)="14000000140005b7ffccca38b9000000010860eb", 0x14)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000004000000040000000900000000000000", @ANYRES32=0x1, @ANYBLOB="0400"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r6 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r6, 0x0, 0x23, &(0x7f0000000100)={@multicast2, @loopback}, 0xc)
r7 = socket(0x23, 0x5, 0x0)
ioctl$sock_SIOCETHTOOL(r7, 0x89f0, &(0x7f0000000800)={'bridge0\x00', &(0x7f0000000240)=@ethtool_coalesce={0xf, 0x4, 0x101, 0xc3a5, 0x9, 0x1ff, 0x4, 0x2, 0xfffffff6, 0x7fb, 0x1, 0xc99d, 0x2, 0x9, 0x8d, 0x7ff, 0x2, 0xa98, 0x8, 0x6, 0x10000040, 0x3, 0xfd}})
r8 = socket$netlink(0x10, 0x3, 0x0)
writev(r8, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000940)={0x58, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8}]}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

5.595988314s ago: executing program 1 (id=2684):
socket(0x2a, 0x2, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f00000001c0)={0x11, 0x0, <r0=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000700)=@delchain={0x6c, 0x65, 0x10, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r0, {0xe, 0xffe0}, {0x1, 0xe}, {0xfff1, 0xc}}, [@TCA_CHAIN={0x8, 0xb, 0x1}, @filter_kind_options=@f_flow={{0x9}, {0x2c, 0x2, [@TCA_FLOW_MASK={0x8, 0x6, 0x2}, @TCA_FLOW_PERTURB={0x8, 0xc, 0x10000000}, @TCA_FLOW_BASECLASS={0x8, 0x3, {0x5, 0xffff}}, @TCA_FLOW_MASK={0x8, 0x6, 0x1e5a}, @TCA_FLOW_ADDEND={0x8}]}}, @TCA_RATE={0x6, 0x5, {0x8, 0x3}}]}, 0x6c}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4000)
r1 = socket$netlink(0x10, 0x3, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1a, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r2, 0x0, 0x2}, 0x18)
r3 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x800)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
sendmsg$inet_sctp(r3, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f00000000c0)="cf8b5205", 0x4}, {&(0x7f0000000440)="e5", 0x1}], 0x2, 0x0, 0x0, 0x10}, 0x24040010)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', 0xffffffffffffffff, 0x0, 0x3}, 0x18)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6c0000001000010400d201000072f60000020000", @ANYRES32=0x0, @ANYBLOB="0524060000000000300012800b0001006272696467650000200002800c002e00fffff6ffffffffff050007001f"], 0x6c}}, 0x0)
r4 = socket(0x10, 0x3, 0x0)
sendmmsg$alg(r4, &(0x7f0000000140), 0x4924b68, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, 0x0)
sendmsg$NL80211_CMD_NEW_KEY(r5, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000580)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16, @ANYBLOB="010800040000000000000b00000008000300", @ANYRES32, @ANYBLOB="0a000600080211000001000030005080110001004abee33908f8eef16f162471f400000005000200020000000800030005ac0f000500090001"], 0x58}}, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0xc010)
ioctl$int_out(0xffffffffffffffff, 0x5460, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
ioctl$BTRFS_IOC_RM_DEV_V2(0xffffffffffffffff, 0x5000943a, &(0x7f00000002c0)={{r1}, 0x0, 0x4, @inherit={0x48, &(0x7f00000012c0)=ANY=[@ANYBLOB="0000000000000000000000000000000068fdb7b700809dbdc47ad9e9592df4f205000000000000005c6800000000000025000007000000000000000104040000000000"]}, @subvolid=0x8000000000})
socket$igmp(0x2, 0x3, 0x2)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r6 = syz_open_procfs(0x0, &(0x7f0000000000)='net/raw\x00')
preadv(r6, &(0x7f00000026c0)=[{&(0x7f0000000240)=""/4088, 0xff8}], 0x1, 0x15f, 0x0)

5.517658322s ago: executing program 1 (id=2685):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newsa={0xf0, 0x10, 0x200, 0x70bd28, 0x0, {{@in=@initdev={0xac, 0x1e, 0x9, 0x0}, @in=@local, 0x4e23, 0x0, 0x0, 0x2000, 0xa, 0x0, 0x0, 0x2b}, {@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x32}, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', {0x0, 0x0, 0x8, 0x100000001, 0x6}, {0x0, 0x0, 0x2, 0xfffffffffffffffc}, {0xc, 0xfffffffc}, 0x70bd27, 0x1, 0x2, 0x0, 0x2}}, 0xf0}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0xffffff1f, 0x70bd26, 0x80, {0x0, 0x0, 0x0, 0x0, 0x1605, 0x2f90}, [@IFLA_ALT_IFNAME={0x14, 0x35, 'veth0_vlan\x00'}]}, 0x34}}, 0x4000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=@newtaction={0x48, 0x30, 0x53b, 0x0, 0x0, {0x9}, [{0x34, 0x1, [@m_sample={0x30, 0x1, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc}, {0xc, 0x4, {0x3}}}}]}]}, 0x48}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000140)=@RTM_NEWMDB={0x38, 0x54, 0x1, 0x1, 0x0, {}, [@MDBA_SET_ENTRY={0x20, 0x1, {0x0, 0x1, 0x0, 0x3, {@ip4=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x86dd}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
write(0xffffffffffffffff, &(0x7f00000000c0)="842a0a65bd8c2b", 0x7)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003f000b05d25a806c8c6394f90324fc60100002000a000300053582c137153e3704020180fc0b09000c00", 0x33fe0}], 0x1}, 0x0)

5.516517066s ago: executing program 1 (id=2686):
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000440)=@security={'security\x00', 0xe, 0x4, 0x324, 0xffffffff, 0x1c0, 0x1c0, 0x0, 0xffffffff, 0xffffffff, 0x290, 0x290, 0x290, 0xffffffff, 0x4, &(0x7f0000000000), {[{{@uncond, 0x0, 0x90, 0xec, 0x0, {}, [@common=@socket0={{0x20}}]}, @common=@CLUSTERIP={0x5c, 'CLUSTERIP\x00', 0x0, {0x1, @remote, 0xffff, 0x5, [0x10, 0x14, 0xa, 0x2b, 0x29, 0x15, 0x13, 0x23, 0x2e, 0x2a, 0x19, 0x2c, 0x11, 0x3b, 0x18, 0x3f], 0x1, 0xd57, 0x5}}}, {{@ip={@broadcast, @multicast1, 0x0, 0x0, 'team_slave_1\x00', 'ip_vti0\x00', {}, {}, 0x11, 0x1, 0x1d}, 0x0, 0x94, 0xd4, 0x0, {}, [@common=@ttl={{0x24}, {0x1, 0xb2}}]}, @common=@inet=@TCPOPTSTRIP={0x40, 'TCPOPTSTRIP\x00', 0x0, {[0x400, 0x401, 0xfffffffb, 0x5, 0x40, 0x8, 0x1f0f8669, 0x401]}}}, {{@ip={@multicast2, @initdev={0xac, 0x1e, 0x1, 0x0}, 0xff, 0x1fffffffe, 'wg2\x00', 'vlan1\x00', {0xff}, {}, 0xec, 0x3, 0x1}, 0x0, 0x70, 0xd0}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x2, [0x4, 0x7, 0x1, 0x1, 0x5, 0x1], 0x5}, {0x4, [0x0, 0x4, 0xc693bc5fbd94d450, 0x3, 0x6, 0x1], 0x4, 0x2}}}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x380)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0xfbc6, 0x10100, 0x8000003}, &(0x7f0000000080)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = memfd_create(&(0x7f0000000540)='\xfd\x0fm3#/\x00n\xaa\xaa\xe4\x01U\x8b\xc2\f\x03\x19\x9c\x8e\xcb\x90\x00\x00\xaegQ\x0e\x94\\y\x0fU2@\'\x8a\x80\x00$\x12\xfc\xe4.)\x9b\xf2@\xf0\xe0\xdb\x1f\xe6\xb4gc\x13\xda\xf9\xcd7el\xb7\xe6\b\x00\x00\x00\x00\xef\xff\x00vob/~\xc2\x00\b\x00\x00\x00\x00\x00\x00 \xff\xf1\xdem\x9c;%\xb5\"\xe4\xf1x2\x8a\x19p\x04\\\xaa-\x93\xd1\xc4 )\xbfK\xf7E\xf3\x05\xa0\xd0\xe6%\x97\x15\xf0\xab\x86\x90k\x10\xcer\x14\xe0a\xaf\xab\xfe\xd9V\x19\xa5d\x16\x8e]:3\xff\t\xe6\xf7\xb3\xbf\xa3\b[?\xb5\x14t\xd3\x8e\xc0\xe8\xefd\x88\xddz\xa25)\x17\xef\xfb4\xff\xdb\t\x8e\xeb\x1d\\\xf9\x14\xc7\v\xa8\x89\xdb A\xbaBAj\xfe\x18\xc3-+\xd6\xb0K\xee\x1b+\xc7lA\x84\xa6\xfe\x8bU<&\x1a\xe7m\x86\xb7\xa1A\xf9\x02S;C\x99\a.$K\x833\x82\x7f\x1b\'nj\x06\b\xb7\xe8] \x87A[y\xdc\x14\f\xcet\x00\x1f\x0f\xef\xca\xcfz\x7f\an0\xebB\xb8}&\xdd\xc9\xa7\x1dp\t\x9a\xceb \x81\xaaq{H\x88\xdf\xf8\x80\\\x1c8\xfe\xc4\xe3\xb0\x90\xcb\x8b1r\x94\x9f\x00\xce\xc8\xc3\x84\xa0\xc9\b\x00\x81Ks\xba\xbbC6\xd6\x13\xb5\xe086EzD\x18\xd5\x16\x88E\xc6\xf0A9\xf1u\xb3\x85\x02\x12\\Sp\xf4\x9a\xec\xcf\xe8\x96^\xe6\xa8K\x12\b}\xff\xcb{\xc6\xf6\xb4\x8b\xb6\xa8Y\xf2\x91\xeeR\v#\xb5)\xb0\x99\x9b-p\xe3\x15\x04\xb0\xdc\x0fk\x11\xe1\x9a\a\x16\xb7\x9b\x88\xfa\x1e`\x84$\xfc\xd7\xf5^X\xd8[}\x032\xd0\x84\xdby\x94Vp\xa5\xcd(\xab\xb6\x95sR\xab\xfc\x8c\'\x9c\x16Q\xad\xbc\xb04%\xb7\xe5\x14\xb1`\x87#X\\W`;\'_4\xc5\xc9\x921<\xd9\xad\x9f\x12@!\xfaI\x88\xab\xef\x86\xe9\a>\xdd7\xb7\x8e\x8d\xf2:\a\xad\xf5\xfa\x91\xed\xa57\x85\xd1\x9c0-o\xc9\xec_|\x02\xc8Ru\x95\xa8#U\xd6J\x87\xf6X\xb6{\x11$\x00\xc8\x14\xcb\xd1nK\xd8\xb9\x0e\x9bA\xed\xbcs\x1fS\r\x12O\x83\x15\xcb(\xdb\xb1S\x1f%\x04\x9a\xa0l\xa3}\xe7r\x02\x00\x00\x00\x8aeh;F[\xe2\x1c<L\xaa\x87A\xcdN#\xfb\xb0\xf2\x1e\x0e#J\xd0hB<\xc0\x82A0)p\xe7&J\x82\x83\x83\xd14\x01\xcf\x1b\xa9\x1d\x1ef\x0f\x86(1\xd6l\xd2\x8f\xb0\xad\t\x15\xdb|\x87\xf1\xc4\xb8\xb2\x9a\xd2A\x80\xbf\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xd6\x80\x00\x00\x00\x00\x00\x00\x00\x88&}\xd1\x00\x00\x00\xe6\xaf\t\x9f\x96\rN\xc9\x90\xbe\xed\x1ad\x14\xe7\x84\t\'\x8b\x00\xdd\xc9\x0f\x14v\xb6\x04\xf2U\xb4\xf6\xbe\xddT\xcb\x00\x00\x00\x00\x00\x00\xe9\x00\x00\x00\x00\x00\x00o:}\xa7jmH\xedn\x11\xfe\xe2\x0fT\x00\x94\xbc\xc6\x7f\x93eE1xp\xa3\xdc\xd7K9J<\xeb\xd2!\xf4\x19\xbd#\xb8\x83\x858\n\xf8\x12Z\x1a\x12\xfa\xcc\x04\r\xf3\xf4;\v\x15b^\xea\xa2\x04 \xe8\x99\xb3\x97\x9e\r\xb0\x05\xbb(f\xd0\x85\xc5\x15\xae#\x12Q\xacF\xfb\xc8\xbd\xcc#\v\x00\x00\x00\x00\x00\x00\x8f\x9b\x00\x03\xc8}\x11\xbc\x01\x8fi\xf5\x7f\xaf\x11\xfb\x16\x95\xdfc\xc9\x8a/&\x81w\xdf]ao\\\x88\xf7\xce\xbd\xb0\xa6J~\x8d\xf1\xe9\x1c\xcfo\xb3\xdc\x04Y\x8e\r\xf5\xa0\xeft\x06G0\xe3D\xd6\xa3L\xedN\x0e\xdc@7\xd8^\xae\xea\x92\xbe\x9c\xf9~c\xc1|\xca\x8d\x93R\xe5\xceU\xa5\x0f\xbf\xd8l\x96`\x0f\x00e\x8aR{\x17Y\x15m>\xe26 \x19k&.\x7f\x1d~\xdaI\xd4\x99\a+\xdf]\xbc\xa6\xc3\x0f\x99W\x9c-t\v\xc7J\xfd\x91\x853\xd1j;\x19W\x96V\x8az+\xf9\x82#\xfaC\xa3YN:\xe8\xda\xbc\xb2h\x8f\xe0\xc6d\x96\xccy\xb3\xc2\x98\x1c\xca\xde\"\xaeW\x89\x83\xc2sB\xe7\b\x9b9~}\xc2\xb3\x1d\xcc?\xd1\x89\xef\xca\x00\x00\x00\x00\x00\x00\x00\x00\x00J[\xc4\x04\xc1\xa6\x10\xc2\x9d\x11\t|\xc0\t\xd9(\x80\xe6s\xaa\x88\x8a\xd6\xa2\x01\x10W]Z\x8d\xf7\xd1P\xf9d\x01|\xa3\x03hSq\x95\x8f\xe1J\xd3#/fcCz\xff\x80\xe2M\xa3-r\xf6\x1a\xd74\xdc\xe1\xe4\xc3\x9dU t}\x02\x9a{C|S\xf4\x98\x05\xb9\x15}\xfa\"\xdc\xc2r\xf9\a\xadnD\xb6\x06\xd3\'\x10\x9f|\x17\xd6\x89O\f\x98@\x85\xa5m\x9d', 0x4)
unshare(0x28000600)
fcntl$addseals(r5, 0x409, 0xe)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(0xffffffffffffffff, 0x6, 0x21, &(0x7f0000000040)="5766b1b827f600333b09d3748ee7d700", 0x10)
syz_open_dev$media(&(0x7f00000000c0), 0x80000004000003f2, 0x0)
pselect6(0x0, 0x0, 0x0, &(0x7f00000002c0)={0x3ff, 0x6, 0x9, 0x4, 0x2, 0x0, 0x2, 0x7}, 0x0, 0x0)
r6 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000340)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r6, 0x0, &(0x7f00000000c0)=@chain)
keyctl$invalidate(0x15, r6)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {0x230}})
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
syz_usb_connect(0x5, 0x0, 0x0, 0x0)
poll(&(0x7f00000000c0)=[{0xffffffffffffffff, 0x3388}], 0x1, 0x800)
r7 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000200)={{{@in6=@mcast2, @in=@local}}, {{@in=@private}, 0x0, @in6=@empty}}, &(0x7f0000000000)=0xe4)
read$FUSE(r7, &(0x7f00000093c0)={0x2020, 0x0, 0x0, <r8=>0x0, <r9=>0x0}, 0x2020)
syz_fuse_handle_req(r7, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff00", 0x2000, 0x0)
syz_fuse_handle_req(r7, &(0x7f0000006380)="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", 0x2000, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000640)={0x150, 0x0, 0xf, [{{0x5, 0x1, 0x900000000000000, 0x100000001ff, 0x7fffffff, 0x2, {0x6, 0x10, 0x7fff, 0x1, 0xfffffffffffffffe, 0xffffffffffffff82, 0x80, 0xb1, 0x4000402, 0xc000, 0x103, r8, 0x0, 0xc, 0x4a}}, {0x6, 0x10000, 0x8, 0x2, 'rootmode'}}, {{0x7fff, 0x2, 0x37a, 0x40000000000008, 0xffffffff, 0x6, {0x10000000, 0x4, 0x8fb, 0x2000000ec3, 0x3ff, 0xffffffffffff7f6e, 0x7f, 0xfffff5e3, 0x1, 0xc000, 0xffffffff, r8, r9, 0xfffff077, 0x8}}, {0x1, 0x4, 0x8, 0x7fc, 'rootmode'}}]}, 0x0, 0x0, 0x0})

5.281826593s ago: executing program 2 (id=2687):
syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x404000c}, 0x40000)
socket$igmp6(0xa, 0x3, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x100000}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_SIOCINQ(r3, 0x541b, &(0x7f0000000180))
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000300)=ANY=[@ANYBLOB="180000001800ff0f0000000000e0ff00850000086d0000008591d87c278f533c3a3f3c8f1e5ffa4cb6846e"], &(0x7f0000000080)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, 0x2}, 0x94)
r4 = openat$fb0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
lsetxattr$security_ima(&(0x7f0000000480)='./file0\x00', &(0x7f0000000100), &(0x7f0000000380)=@v2={0x3, 0x2, 0xfe, 0xe79f, 0x2, 'JE'}, 0xb, 0x1)
ioctl$FBIOPUT_VSCREENINFO(r4, 0x4601, &(0x7f0000000380)={0x3c0, 0x78, 0x0, 0x0, 0x7, 0x0, 0x1, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x9, 0x1, 0x4, 0x8, 0x3, 0x1ff, 0x3d, 0x5, 0x3, 0x0, 0x202, 0x2, 0xc})
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r6, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r8, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)

5.124639978s ago: executing program 0 (id=2688):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00')
preadv(r0, &(0x7f00000001c0)=[{&(0x7f0000000bc0)=""/84, 0x54}], 0x1, 0x6, 0x0)
pipe2(&(0x7f0000001440)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
fcntl$setpipe(r1, 0x407, 0xff0f0000)
sendmsg$NFNL_MSG_CTHELPER_GET(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="0800000100000000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)
r3 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_int(r3, 0x1, 0xf, &(0x7f0000000180)=0x80000004, 0x4)
bind$inet6(r3, &(0x7f0000000200)={0xa, 0x4e20, 0x4000b, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x12}}, 0x80ad}, 0x1c)
r4 = openat$dlm_monitor(0xffffff9c, &(0x7f0000000240), 0x248000, 0x0)
ioctl$SNDCTL_DSP_RESET(r4, 0x5000, 0x0)
r5 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_int(r5, 0x1, 0xf, &(0x7f00000005c0)=0x80000004, 0x4)
bind$inet6(r5, &(0x7f0000000200)={0xa, 0x4e20, 0x8, @empty, 0x80ad}, 0x1c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r2, 0x0, 0x5}, 0x18)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r6, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r8 = dup3(r7, r6, 0x0)
r9 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x800, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r9, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r9, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r8, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
mmap$fb(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x13, r8, 0xd8000)
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r9, 0xc0306201, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000440)="97713b46fbaa2b1044f2d408ffca802db4d770eb9874f493e0ef367e4bde497c403b450c72ff2417d079bb892435a1e107fa5c0ecd207d9e6f2a209bf148e6bc56955cb53347d1499097488fcad724a1"})
ioctl$BINDER_WRITE_READ(r9, 0xc0306201, &(0x7f00000002c0)={0x44, 0x0, &(0x7f0000000640)=[@reply={0x40406301, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, 0x18, &(0x7f00000006c0)={@fd, @fda={0x66646185, 0x8, 0x2, 0x17}, @ptr={0x70742a85, 0x1, 0x0, 0x0, 0x2, 0x21}}, &(0x7f0000000280)={0x0, 0x18, 0x34}}}], 0x0, 0x0, 0x0})

5.056969588s ago: executing program 0 (id=2689):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000d5e9bd40eb030200c0ba050000010902115c01000000000904000001b504b100090581"], 0x0)
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r1, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r2, 0x8, 0x0, 0x1003, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, 0x32)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$L2TP_CMD_SESSION_GET(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000000c0)={0x30, r4, 0x801, 0x70bd2b, 0x0, {0x7}, [@L2TP_ATTR_IFNAME={0x14}, @L2TP_ATTR_LNS_MODE={0x5, 0x14, 0x2}]}, 0x30}}, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001240), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_GET_REG(r6, &(0x7f0000001500)={0x0, 0x0, &(0x7f00000014c0)={&(0x7f0000001440)={0x1c, r5, 0x1, 0x70bd25, 0x25dfdbfc, {}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x13}]}, 0x1c}, 0x1, 0x0, 0x0, 0xd8}, 0x8000)
r7 = getpid()
r8 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r8, &(0x7f0000000400)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e)
ioctl$PPPIOCGCHAN(r8, 0x80047437, &(0x7f0000001f00))
sendmmsg(r8, &(0x7f0000001840)=[{{&(0x7f0000001980)=@pppol2tpv3={0x18, 0x1, {0x0, r8, {0x2, 0x4e20, @empty}, 0x2, 0x2}}, 0x80, &(0x7f0000001640)=[{&(0x7f0000000280)="e3ca7233e27a2fbd29a7d8ea287c001457a120269c", 0x15}, {&(0x7f0000000480)='j', 0x1}, {&(0x7f00000004c0)="7ede13fd510478d796e445daf28b55e949db468e3b5296f1effe7e77f7d06f64c73667639b", 0x25}, {&(0x7f0000000500)}, {0x0}, {&(0x7f0000001880)}], 0x6}}], 0x1, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x8, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x4e22, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x4}}}}}}, 0x0)
sched_setaffinity(r7, 0x8, &(0x7f0000000240)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x3ff, r7, 0x2, &(0x7f0000000140))
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x8000)
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000040)={'tunl0\x00'})
r10 = syz_open_dev$evdev(&(0x7f0000000000), 0x4, 0x0)
ioctl$EVIOCGKEYCODE_V2(r10, 0x80284504, &(0x7f0000000040)=""/165)
r11 = openat$drirender128(0xffffff9c, &(0x7f0000000180), 0x2000, 0x0)
ioctl$DRM_IOCTL_DROP_MASTER(r11, 0x641f)

4.912265474s ago: executing program 3 (id=2690):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000180)=ANY=[@ANYBLOB="bd76131dfee7256c5d6c000000f5c2a2bcfaf84fa004c92a72586e3e487514866cc6e9618665052b260a3c675ea1715417e9b06793bc74f33dd84e49", @ANYRES16=r1, @ANYBLOB="010d0000000000000000030000005800018044000400200001000a00000000009004ff01000000000000000000000000000100000000200002000a00000000000000fe8000000000000000000000000000bb000000000d0001007564703a73797a3100000000"], 0x6c}, 0x1, 0x0, 0x0, 0x851}, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/locks\x00', 0x0, 0x0)
flock(r2, 0x6)
syz_emit_ethernet(0xbe, &(0x7f0000000400)={@link_local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x2000, 0x0, 0x0, 0x73, 0x0, @private=0x300, @multicast1}, {0x0, 0x0, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "5e488fc2e843528a2227d5b63f49640149bac1bb8ff78c61398f8834b9fe03d6", "f180b53bf4a7321bef592a8e0bc8d08565034f527f013bd32e5b85ee78705da83f7f9aff7df3465458d4811d0221b04a", "1464972e75b492cdd4f906888b17e48c414877f6e19ce2e9e759223a", {"344684f5901fbe698f63d9529c87f2f7", "36684ad886ce87cf3ac5d516c0666aaa"}}}}}}}, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x2e, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000090f00080000000000000000850000000e000000850000007d00000095"], &(0x7f0000000200)='GPL\x00', 0x20000, 0x0, 0x0, 0x0, 0x50, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000280)='block_bio_remap\x00', r3, 0x0, 0x4}, 0x18)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, 0x0, 0x4020000)
socket$packet(0x11, 0x2, 0x300)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000180), 0xffffffffffffffff)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
r5 = bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, 0x0)
socketpair(0x1, 0x3, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b06, &(0x7f0000000240)={'wlan1\x00', @multicast})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0xc64c5587ef9dbf54, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x4)
openat$tun(0xffffffffffffff9c, 0x0, 0x40241, 0x0)
r6 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r7 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
bind$x25(r7, &(0x7f0000000200), 0x12)
bind$x25(r6, &(0x7f0000000080), 0x12)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
read$FUSE(r5, &(0x7f00000004c0)={0x2020}, 0x2020)

4.878791881s ago: executing program 3 (id=2691):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2e, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
pipe2$watch_queue(&(0x7f0000001180)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80)
r2 = add_key(&(0x7f0000000000)='id_resolver\x00', &(0x7f0000000100)={'syz', 0x3}, &(0x7f0000000080)="f8", 0x1, 0xfffffffffffffffe)
pipe2$watch_queue(&(0x7f0000000380)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r2, r3, 0x0)
keyctl$KEYCTL_WATCH_KEY(0x20, r2, r1, 0xffffffffffffffff)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
socket(0xa, 0x3, 0x3a)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = syz_open_dev$usbfs(&(0x7f0000000080), 0xf, 0x8041)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r6, 0x8108551b, &(0x7f00000001c0)={0x0, 0x2, "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"})
ioctl$USBDEVFS_ALLOC_STREAMS(r6, 0x8008551c, &(0x7f0000000000)={0x184a, 0xa, [{0x1, 0x1}, {0x2}, {0xa}, {0x5, 0x1}, {0x4}, {0x6, 0x1}, {0x6, 0x1}, {0xb}, {0x3, 0x1}, {0xe}]})
r7 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000200)={0xfffffffc, 0x0, 0x6, 0x0, 0xff, "db8f2d2b3b7596160c6981acf8805944823a7f"})
getsockopt$inet_pktinfo(r7, 0x0, 0x8, 0x0, 0x0)
memfd_secret(0x0)
ppoll(0x0, 0x0, &(0x7f0000000280)={0x77359400}, 0x0, 0x0)
unshare(0x40020000)
socket$packet(0x11, 0x3, 0x300)

4.067506591s ago: executing program 2 (id=2692):
socket$igmp6(0xa, 0x3, 0x2) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$inet_icmp(0x2, 0x2, 0x1) (async)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000140)={0x0, 0x10, &(0x7f0000000100)=[@in={0x2, 0x4e20, @private=0xa010100}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r2=>0x0]}, &(0x7f0000000080)=0x8)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={r2, 0x0, 0x0}, 0x0) (async)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) (async)
setsockopt(r1, 0x84, 0x81, &(0x7f0000000000)="f89fcfb587a4792b", 0x8) (async)
sendto$inet(r0, &(0x7f0000000080)="2a3e09f29bd6fa0e", 0x8, 0x44008018, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x1}}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) (async)
prlimit64(0x0, 0xe, 0x0, 0x0) (async)
r3 = syz_clone(0x1200000, 0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(r3, 0x2, 0x0) (async)
r4 = getpid() (async)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x20, 0x20, 0x5, [@func_proto={0x0, 0x1, 0x0, 0xd, 0x0, [{0x3, 0xfffffffe}]}, @ptr]}, {0x0, [0x0, 0x0, 0x2e]}}, 0x0, 0x3d}, 0x28) (async)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) (async)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0) (async)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2) (async)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1, 0xc}, &(0x7f0000001fee)='R\x10suse\x00\x00\x00\x00\x00\x00\x00dn\x00\x00\x00', 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
r7 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_CQ_GET(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x20, 0x1418, 0x1, 0x0, 0x25dfdbfc, "", [@RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}]}, 0x20}, 0x1, 0x0, 0x0, 0x4008885}, 0x0) (async)
ioctl$SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, &(0x7f0000000000)=0x40000001)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x50) (async)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000380)={0x1b, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1, '\x00', 0x0, 0x0, 0x0, 0x0, 0x80000001}, 0x50)

3.913001107s ago: executing program 3 (id=2693):
socket(0x2a, 0x2, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f00000001c0)={0x11, 0x0, <r0=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000700)=@delchain={0x6c, 0x65, 0x10, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r0, {0xe, 0xffe0}, {0x1, 0xe}, {0xfff1, 0xc}}, [@TCA_CHAIN={0x8, 0xb, 0x1}, @filter_kind_options=@f_flow={{0x9}, {0x2c, 0x2, [@TCA_FLOW_MASK={0x8, 0x6, 0x2}, @TCA_FLOW_PERTURB={0x8, 0xc, 0x10000000}, @TCA_FLOW_BASECLASS={0x8, 0x3, {0x5, 0xffff}}, @TCA_FLOW_MASK={0x8, 0x6, 0x1e5a}, @TCA_FLOW_ADDEND={0x8}]}}, @TCA_RATE={0x6, 0x5, {0x8, 0x3}}]}, 0x6c}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4000)
r1 = socket$netlink(0x10, 0x3, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1a, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r2, 0x0, 0x2}, 0x18)
r3 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x800)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
sendmsg$inet_sctp(r3, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f00000000c0)="cf8b5205", 0x4}, {&(0x7f0000000440)="e5", 0x1}], 0x2, 0x0, 0x0, 0x10}, 0x24040010)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', 0xffffffffffffffff, 0x0, 0x3}, 0x18)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6c0000001000010400d201000072f60000020000", @ANYRES32=0x0, @ANYBLOB="0524060000000000300012800b0001006272696467650000200002800c002e00fffff6ffffffffff050007001f"], 0x6c}}, 0x0)
r4 = socket(0x10, 0x3, 0x0)
sendmmsg$alg(r4, &(0x7f0000000140), 0x4924b68, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, 0x0)
sendmsg$NL80211_CMD_NEW_KEY(r5, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000580)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16, @ANYBLOB="010800040000000000000b00000008000300", @ANYRES32, @ANYBLOB="0a000600080211000001000030005080110001004abee33908f8eef16f162471f400000005000200020000000800030005ac0f000500090001"], 0x58}}, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0xc010)
ioctl$int_out(0xffffffffffffffff, 0x5460, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
ioctl$BTRFS_IOC_RM_DEV_V2(0xffffffffffffffff, 0x5000943a, &(0x7f00000002c0)={{r1}, 0x0, 0x4, @inherit={0x48, &(0x7f00000012c0)=ANY=[@ANYBLOB="0000000000000000000000000000000068fdb7b700809dbdc47ad9e9592df4f205000000000000005c6800000000000025000007000000000000000104040000000000"]}, @subvolid=0x8000000000})
socket$igmp(0x2, 0x3, 0x2)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r6 = syz_open_procfs(0x0, &(0x7f0000000000)='net/raw\x00')
preadv(r6, &(0x7f00000026c0)=[{&(0x7f0000000240)=""/4088, 0xff8}], 0x1, 0x15f, 0x0)

3.848397867s ago: executing program 2 (id=2694):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f00000000c0)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000040)={@host})
r1 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r1, 0xc0045005, &(0x7f0000000100)=0x1)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000003c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x28, &(0x7f00000002c0)=0x2)
r3 = syz_open_dev$evdev(&(0x7f0000000080), 0x1, 0x0)
syz_usb_disconnect(r3)
syz_usb_connect$cdc_ecm(0x5, 0x56, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000020000102505a1a4400000000101090244000101000000090400001202"], 0x0)
ioctl$EVIOCRMFF(r3, 0x4004550f, 0x0)
openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, &(0x7f0000000000)={{0x84, @rand_addr=0x64010100, 0x4e20, 0x3, 'lc\x00', 0x8, 0x323b, 0x55}, {@remote, 0x4e23, 0x2000, 0x0, 0x12d5c, 0x12d5c}}, 0x44)
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='syscall\x00')
lseek(r6, 0x10001, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)

3.838198466s ago: executing program 3 (id=2695):
socket(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
timerfd_create(0x4, 0x80800)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_io_uring_setup(0x19ff, 0x0, &(0x7f0000000240), &(0x7f0000000100))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x3, {}, [{0x90, 0x1, [@m_ct={0x44, 0x6, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000a00)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0a000000010000003f0000004000000042000000", @ANYRES32, @ANYBLOB='\x00'/15, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000000000000000000000000000000000007f721185d1bd3a0ddc9b4f4fb93aedd0a03ab11a8cb57ca3b63a1566d7b8c329386274571eb19ffef06b6d1fff919327c75193a37bfd8eccb5961ba7d48b24796f3025fac2b1f91877"], 0x50)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000280)={&(0x7f0000000a40)={0x670, 0x27, 0x4, 0x70bd2a, 0x25dfdbff, {0x1d}, [@nested={0x341, 0x4a, 0x0, 0x1, [@generic="4ddf552efbb54fca622df6c14c412a983103e5eaac0215d0a4b63fc5a7a00ba024a49199ddef9de26d11c39f48a736420af38facfdfb44b5d90959f7e1a25a87a9065f101d58654134ca3405711d22ab822c697945b13b9b099fa355a350c83141f549e5bffb2ef33f0c1a7915d3f048cad20406c050db01ee53e4fc67520d09f269beaa8f64293a3585e52230f0cd0daea61a747a0c45f4738bc4cf740262c65b358fed5cc89bdce26eb0484d9a5ac6961c2b1627f22cc55b793a73bc6dbcc3e7e83937a1ef9cebf7a58596bfd2dd828f2802e9e8c54fb04fc66ee2cd8897a10bca04e77b19b6933be92e0cc2386429dbd72b557891f49e5381c3ab", @nested={0x4, 0xc8}, @generic="d1aa591f410fa65f7ff42520afe29637f8e1d0d73ea6d54bd51d460e3798f16b36ebc817865f40ab4eb3b80748d0d736a70db3ca2f848fb616b625ff5825493477bc5bbd811b963cd714dc5a79c3a069908379b8225edff5a5dd03bb11", @generic="e4619a7175280a5f28faf5efebb4a9a5476e029d7a709e86f33050bedb1ab5d005ce2b4cec0672fa9c43a333c9984079cbb400546a0f0d7acdac644af0d0f27018995293bde8419dd6d81225b91226e2a42bf6d017cdd8b03b41a36bd21c6b6b3faf9e838de2f2c3eb6e0aa0b8649a01f63d0f1c64d6b9ac0c251ee33cea4b2683705aadfb716ae6646671c41214cc506bb2dce5cb764b9227611bb9f2c30ca9a3a9025391a1b2709104c476b7480468f760e9b84a9c908dc7605feaf48fcbfad46c6c765eea819afb149ba9ecca8eb777c735e0ef814b9c5e7e8e506e511870bf57c7541d5f5d93ecf4203cfaf6eea944bfca5a217e687591", @nested={0x4, 0x90}, @nested={0x4, 0x89}, @typed={0xc, 0x80, 0x0, 0x0, @u64=0x1}, @generic="bc7a9215a02e4b0290f3be29fcb0cea774af795aad60fc990acc0aaed1251e77169139e347f215868cd991136d3da25bee2a37e6bb970d53ad5132fc1e40c9c06097abb54101f447d40bbf503c17f09196d45b8296fd6fc9f29a20e6186effea718460c681a02a28315ed7ea53e45c0fc2cda07552c23a60eef63b01b4007740920c67be3e880ee6b71e85e41666700f54889aa9c9a6b312a240aaee8d20bb96cc2bb890b048253aa4de9168b639f40d00f64b9ee290b460800577e683896e45195c22c7b4f71f440da599346a116a44e55e16"]}, @nested={0x5e, 0x41, 0x0, 0x1, [@nested={0x4, 0x19}, @nested={0x4, 0x93}, @generic="63a9c920b56404c9c71cb0e72e627391483b9f86714cc46a7a85ba32ea3eb0878d3608d9bf39735d8e2789487d570c3717e70204e00886bef3aedeb2cb664d5232dcab83c2fd5298a1ffbbbb395f", @nested={0x4, 0x47}]}, @generic="84914f7838ddaf93850f85cb6201c363356677e65ab10fa7a3c82cd0702ac26955e491ab8483e36deae251b6484337bea20cf656f01af749a084d4a44b203d5629a8f956a448caa21a4f3f3a4f8b1ba588f9e252027b9bcb8b8c2c79c46d5ae1b010e5591f1af1f93771ced5c4218f70cd468bf6608669789a7d60f5092944dfdcb052b4428c9dc8b21de507d3af5fe26c030e3ae7c8a1edd3e64e40bf68fce85cc818153e140ac13851", @generic="7f59aa8f77b4f1fc2b0a51036d02bcce0d3d4a3078a77ceb1fff2163d1d4141938fa05e4efa131ce99ff40511dd4acb5e4ade0428f6f8946601095cb289eb9cdbaa7c04578dcc5f789aa56f12f3511739a4d732c8a275d9a0b05233350b3cd8a4f55fc94f616b03fb97ed9bcb76e5cb5b5e62073f734185cad744a0792bf67d1252a39a9e7f1f869c20bf154a101d79b5fa9a7cdf7959000b9c1ab5c42c47e92d840f8edf5d4b2e75591efdcbf2ed1a206c410b389ef2ef1e40c50", @nested={0x41, 0x125, 0x0, 0x1, [@generic="d312103e441668092e32fab5b3a5a22a346ea448d5d12049a8085149a48d3b1efa", @typed={0x14, 0xb7, 0x0, 0x0, @ipv6=@mcast1}, @nested={0x4, 0x147}, @nested={0x4, 0x6}]}, @generic="1b7e8022946a0a643075ef94d7f5c1459c5e8208902f069235ae7e4d5e3f2acaacf7640643595e317be669d49f621da1506ef0a8f90aa8", @generic="f6cf945e3d11dd28d3e2f51b4c6ec2f341b729e0d5c2d5e332f51713def9de1a8606669fc1cb31d03c22718ddb7f87f59608c14434d1b9936ba2fe8ad7849419c1291f4dd4874e6a9656261dabfd5644bc286aea6b04932d9178e208eb99a39d09aa174c1d447b27528b33e241eba24983d3b01c43e121a5328d77d23dd81d5ed752ab21fd113c635473b4b8f2e38adca5d5be729e91e338e9039d78460a2995db8578702dd7db176d2137584d5a865ba1336b7cac3f57dc842d90f2a535821afbfa9abede", @typed={0x8, 0x104, 0x0, 0x0, @uid}, @typed={0x8, 0x53, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x8}}]}, 0x670}, 0x1, 0x0, 0x0, 0x4000000}, 0x24008800)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000001a40), 0x1003, r3}, 0x38)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x9, 0x4, 0x7ff, 0x2, 0x1000, 0x1, 0x0, '\x00', 0x0, r4, 0x10000002, 0x1001}, 0x50)
r5 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r5, 0x7a7, &(0x7f0000000040)=0x90000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r5, 0x7a0, &(0x7f0000000240)={@hyper})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r5, 0x7a8, &(0x7f0000000080)={{@hyper, 0x2}, @any, 0x0, 0x0, 0x2, 0x6, 0x5, 0x10001, 0x8})
ioctl$IOCTL_VMCI_QUEUEPAIR_SETPF(r5, 0x7a9, &(0x7f00000003c0)={{@my=0x1}, 0xfff, 0xffffffffffffffff, 0x0, 0x0, 0x80000, 0x2, 0x1000000000ff6, 0x58df})
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0)

2.881229181s ago: executing program 3 (id=2696):
socket$kcm(0xa, 0x1, 0x106)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000980)={0x802}, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001400)=ANY=[@ANYBLOB="1c000000520001002abd70000000000002000000080001"], 0x1c}}, 0x0)
syz_io_uring_setup(0x3b, 0x0, 0x0, &(0x7f0000000100))
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0, r1}, 0x18)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x3, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x8805}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r2 = getpid()
sched_setaffinity(r2, 0x8, &(0x7f00000002c0)=0x3ff)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x802, 0x0)
ioctl$UI_DEV_SETUP(r5, 0x405c5503, &(0x7f0000000280)={{0x5}, 'syz1\x00', 0x10})
ioctl$UI_DEV_CREATE(r5, 0x5501)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_DELETE(r6, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="8c0000000202010100000000000000000000000608000830b552c65c40000000020c0800000000000000000000540001800c00028003400001000006000340000200002c00018014000300fc02000000000000000000000000000014000400ff020000000000000000000000000001060003400004000008000b007369700006000700"/140], 0x8c}, 0x1, 0x0, 0x0, 0x4c894}, 0x4000)
ioctl$UI_DEV_DESTROY(r5, 0x5502)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETOBJ_RESET(r7, &(0x7f00000004c0)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000780)={0xb0, 0x15, 0xa, 0x101, 0x0, 0x0, {0x0, 0x0, 0x6}, [@NFTA_OBJ_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_OBJ_USERDATA={0x52, 0x8, "54e1a1f8988cdbc1b58376671b0d4b9883ea75a3bdfa85b6a1d5b9a080e72a1bd2e4efa548e3f046254d865c903cd45bd5e84a5eb0a8b5f9dcd1dcd21e3f3d366a6d1c17a6340b6349cf49b6ade1"}, @NFTA_OBJ_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x3}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x8}, @NFTA_OBJ_TYPE={0x6, 0x3, 0x1, 0x0, 0x1}, @NFTA_OBJ_USERDATA={0x0, 0x8, "f8bdcd878a71b8d79d76a8ad930ec938383d1a32134d836f37535dcfdbecbd023fbabfc2fa57604fed86812f2c26c5e3d6799ca1aa6417e8fdca39515052c76f7d4162ee72f36f89512cdf918692276b24503ee7b90f1a0603c930871f0757de5b14c36365457e104370"}]}, 0xb0}, 0x1, 0x0, 0x0, 0x15}, 0xc010)
r8 = open(&(0x7f00009e1000)='./file0\x00', 0x48062, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000500), r8)
link(&(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='./file1\x00')

2.021712586s ago: executing program 0 (id=2697):
r0 = socket(0x25, 0x5, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0)
openat$audio1(0xffffffffffffff9c, &(0x7f0000000240), 0x88002, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'wlan1\x00', <r1=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000005c0)=@newtaction={0x1fc, 0x30, 0x1, 0x70bd28, 0x0, {}, [{0x1e8, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0xffffffff, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_mirred={0x1a0, 0x5, 0x0, 0x0, {{0xb}, {0xa4, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x50, 0x80000001, 0xffffffffffffffff, 0xf, 0x8000}, 0x4, r1}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x8000, 0x8, 0x7, 0xe2, 0xd}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x5, 0x1, 0x20000000, 0x6, 0x2}, 0x2}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x2, 0x3, 0x3, 0x5, 0x8000003}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x10000, 0x6, 0xffffffffdffffffd, 0x3ad, 0xb}, 0x4}}]}, {0xd4, 0x6, "c00997aa15d3a21ecd2afde148ad8edd6fb46592752645527bc33fb26fbcf5e51770416ca98e0d149cf50b2ea4297b75c71eb47e298557886a067d6cd657defe67478fb952afbfd433aeb926ddbbceafe6b87160cf47121c30cbb96891abb819cfadcefd6200fa263f187b9731e2458c9fe1bbc5f77b88865bd017822734921e842672f953ad4cc1da3bc5067c54f75e0421146dfd324e0be59ff2ee6292eca428e3c7a02fe28a03654ebd9b83c38f64926c9911d29356d31aacd2ed508bc79455fedb2f103c2bada0b5ec7dc9d69b8d"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x2}}}}]}]}, 0x1fc}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), 0xffffffffffffffff)
r5 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
write(r5, &(0x7f0000000000)="14000000140005b7ffccca38b9000000010860eb", 0x14)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000004000000040000000900000000000000", @ANYRES32=0x1, @ANYBLOB="0400"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r6 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r6, 0x0, 0x23, &(0x7f0000000100)={@multicast2, @loopback}, 0xc)
r7 = socket(0x23, 0x5, 0x0)
ioctl$sock_SIOCETHTOOL(r7, 0x89f0, &(0x7f0000000800)={'bridge0\x00', &(0x7f0000000240)=@ethtool_coalesce={0xf, 0x4, 0x101, 0xc3a5, 0x9, 0x1ff, 0x4, 0x2, 0xfffffff6, 0x7fb, 0x1, 0xc99d, 0x2, 0x9, 0x8d, 0x7ff, 0x2, 0xa98, 0x8, 0x6, 0x10000040, 0x3, 0xfd}})
r8 = socket$netlink(0x10, 0x3, 0x0)
writev(r8, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000940)={0x58, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8}]}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

1.899855547s ago: executing program 3 (id=2698):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000d5e9bd40eb030200c0ba050000010902115c01000000000904000001b504b100090581"], 0x0)
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r1, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r2, 0x8, 0x0, 0x1003, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, 0x32)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$L2TP_CMD_SESSION_GET(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000000c0)={0x30, r4, 0x801, 0x70bd2b, 0x0, {0x7}, [@L2TP_ATTR_IFNAME={0x14}, @L2TP_ATTR_LNS_MODE={0x5, 0x14, 0x2}]}, 0x30}}, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001240), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_GET_REG(r6, &(0x7f0000001500)={0x0, 0x0, &(0x7f00000014c0)={&(0x7f0000001440)={0x1c, r5, 0x1, 0x70bd25, 0x25dfdbfc, {}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x13}]}, 0x1c}, 0x1, 0x0, 0x0, 0xd8}, 0x8000)
r7 = getpid()
r8 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r8, &(0x7f0000000400)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e)
ioctl$PPPIOCGCHAN(r8, 0x80047437, &(0x7f0000001f00))
sendmmsg(r8, &(0x7f0000001840)=[{{&(0x7f0000001980)=@pppol2tpv3={0x18, 0x1, {0x0, r8, {0x2, 0x4e20, @empty}, 0x2, 0x2}}, 0x80, &(0x7f0000001640)=[{&(0x7f0000000280)="e3ca7233e27a2fbd29a7d8ea287c001457a120269c", 0x15}, {&(0x7f0000000480)='j', 0x1}, {&(0x7f00000004c0)="7ede13fd510478d796e445daf28b55e949db468e3b5296f1effe7e77f7d06f64c73667639b", 0x25}, {&(0x7f0000000500)}, {0x0}, {&(0x7f0000001880)}], 0x6}}], 0x1, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x8, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x4e22, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x4}}}}}}, 0x0)
sched_setaffinity(r7, 0x8, &(0x7f0000000240)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x3ff, r7, 0x2, &(0x7f0000000140))
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x8000)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newqdisc={0x30, 0x24, 0x4ee4e6a52ff56541, 0x0, 0xfffffffe, {0x0, 0x0, 0x0, 0x0, {0x0, 0xb}, {0xffff, 0xffff}, {0x0, 0x10}}, [@qdisc_kind_options=@q_red={{0x8}, {0x4}}]}, 0x30}}, 0x4000010)
r10 = syz_open_dev$evdev(&(0x7f0000000000), 0x4, 0x0)
ioctl$EVIOCGKEYCODE_V2(r10, 0x80284504, &(0x7f0000000040)=""/165)
r11 = openat$drirender128(0xffffff9c, &(0x7f0000000180), 0x2000, 0x0)
ioctl$DRM_IOCTL_DROP_MASTER(r11, 0x641f)

1.814347451s ago: executing program 1 (id=2699):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = syz_usb_connect(0x0, 0x2d, &(0x7f00000012c0)=ANY=[@ANYBLOB="120100001ddf8208c007121522300000000109021b0001000000010904000001faf40d000905820349"], 0x0)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r3 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x2002)
ioctl$EVIOCGRAB(r3, 0x40044590, &(0x7f0000000080)=0xfffffffb)
write$evdev(r3, &(0x7f0000000040)=[{{}, 0x0, 0x2}], 0x37)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x4)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
sendmsg$NFT_BATCH(r4, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c000000060a010400000000000000000a0000010900010073797a31000000000900020073797a3200000000200004801c0001800b0001006f626a72656600000c000200000003407dfb4727140000001100010000000000000000000100000a"], 0x74}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000840)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000004300), 0x1, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_GET_MSRS_cpu(r8, 0xc008ae88, &(0x7f00000001c0)={0x1, 0x0, [{0x26f, 0x0, 0x10000}]})
ioctl$TCSETSW(r2, 0x5403, &(0x7f0000000100)={0x401, 0x7ffdffa2, 0xc, 0x81, 0x10, "0ff884b5d0449ec8f2d8175b5505ddf5201923"})
ioctl$TCXONC(r2, 0x540a, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000040)=0x8)
sendfile(r5, r5, &(0x7f00000001c0)=0xfffffffc, 0x8)
syz_usb_control_io(r1, 0x0, 0x0)
r9 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r9, 0xc0189371, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r10=>r0}, './file0\x00'})
ioctl$TIOCSWINSZ(r10, 0x5414, &(0x7f00000000c0)={0x200, 0x5, 0x5, 0x4})
read$char_usb(r9, &(0x7f0000000040)=""/74, 0x4a)
fsmount(r10, 0x0, 0x6)
syz_usb_ep_write$ath9k_ep1(r1, 0x82, 0x0, 0x0)

1.040134266s ago: executing program 0 (id=2700):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x3, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x4040001)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5)
ioctl$SG_IO(r0, 0x2285, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000840), 0x2, 0x0)
ioctl$UI_DEV_SETUP(r4, 0x405c5503, &(0x7f0000000280)={{0x5}, 'syz1\x00', 0x10})
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00f7ffffff1e00ff130012800b00010062617461647600000400028008000a00", @ANYRES32], 0x3c}}, 0x0)
ioctl$UI_DEV_CREATE(r4, 0x5501)
ioctl$UI_DEV_DESTROY(r4, 0x5502)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a580000afe48000060a09040000000000000000020000002c000480280001800a00010072616e676500004000000000040003800900010073797a30000000000900020073797a32000000001400000011000100000000fcff0000000000000a00"/131], 0x80}}, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x6, 0xf, &(0x7f0000000500)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7020000030000008500000086000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r8, 0x0, 0x10, 0x38, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000440)={&(0x7f0000000640)="008ba4026138c95a77702660e19b133bfedf8a271b4ad23f2eb8947da7ee3404ea6ade7b0f1b3f46fa52a8f3472b5796b7f7905b9138aec4bd45b74f59804a11a53c3cab209986c2a7d6656827383da29c2dd36b89e35cb527068e0e5955fd6ce4fc6a3100bb3e069cc786edc9ee9defaecac60d683fbd0266487c201b41dd71598d474cd2603d4c8902c2e3da0d16864520815ef855f5e199c154ac130a84fc9f31ce794e632cb7cb735c656e53c56369b8080b8624e72120a67262b2028d33cfbcc26ba8fd7884bf849bfb7fbc202e8a1172743eb7ea299099ea769cecd5c65f850c727c3f10f4", &(0x7f00000004c0)=""/72, &(0x7f0000000740)="effc933fe97c092030ca0851ca0cc117e36a7e03595e3af0c20ebb7e88059987afe046f064cfa53bb46c81b7863201e3f94db67db895893f0f", &(0x7f00000007c0)="df74c55f844757ee72779411b6043dd1c270b9048ad1f690a1dd3174496dc63d4f16ba8ef113afbf4139d33458e94867b75fd01544123aeb56aa0f50817c7bb7eef34c440e32c12df88697d1ffa6fe1a918b750f3768ac90aaa83e573281748a56722a4805f9", 0x1, 0xffffffffffffffff, 0x4}, 0x38)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)

539.632697ms ago: executing program 2 (id=2701):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0xfff0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x4031, 0xffffffffffffffff, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r3, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000000)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x1, 0x8, 0x0, 0xe}, 0x0)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000100), 0x1c3902, 0x0)
sendfile(r4, r5, 0x0, 0x201f00)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x64, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x38, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @immediate={{0xe}, @val={0x20, 0x2, 0x0, 0x1, [@NFTA_IMMEDIATE_DREG={0x8}, @NFTA_IMMEDIATE_DATA={0x14, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x10, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}]}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x8c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[], 0x54}}, 0x0)
r6 = socket(0x10, 0x3, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r8)
getsockname$packet(r8, &(0x7f0000000680)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r9, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=@newqdisc={0x2c, 0x24, 0x5820a61ca228651, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=@newtfilter={0x60, 0x28, 0x575ac7824d421509, 0x70bd2d, 0x4, {0x0, 0x0, 0x0, r9, {0x10}, {0x1}, {0x3, 0x3d}}, [@filter_kind_options=@f_bpf={{0x8}, {0x34, 0x2, [@TCA_BPF_ACT={0x30, 0x1, [@m_nat={0x2c, 0xe, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x2}}}}]}]}}]}, 0x60}}, 0x40)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
prctl$PR_MCE_KILL(0x4e, 0x1, 0x4000)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000100)=0x1, 0x4)
connect$inet(r0, &(0x7f00000006c0)={0x2, 0x0, @dev}, 0x10)

85.379669ms ago: executing program 0 (id=2702):
r0 = socket$inet_sctp(0x2, 0x400000000001, 0x84)
sendto$inet(r0, &(0x7f0000000800)='u', 0x1, 0x801, &(0x7f0000000040)={0x2, 0x4e23, @private=0xa010100}, 0x10)
recvmmsg(r0, &(0x7f0000005700)=[{{0x0, 0x0, 0x0}, 0x2}], 0x1, 0x20, 0x0)
listen(r0, 0xda8c)
accept4(r0, 0x0, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0xc0c4}, 0x10)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @inner={{0xa}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_INNER_FLAGS={0x8, 0x3, 0x1, 0x0, 0xa}, @NFTA_INNER_NUM={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x7c}}, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000000)=ANY=[@ANYBLOB="64398716d2bef1d5ae46467543463721e63888553208004524001c0000000000029078ac1eb327ac1414"], 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000600)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000425bd7000fbdbdf256700000008000300", @ANYRES32=r2], 0x28}, 0x1, 0x0, 0x0, 0x40}, 0x80d0)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a300000000008000540000000212c1400001e0a05010000000000000000070000000900020073797a31000000000900010073797a300000000000140380300000802c000180250001"], 0x14b0}, 0x1, 0x0, 0x0, 0x4008091}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2f00000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000000000008500000006000000850000000700000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r3}, 0x10)
r4 = syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x2002)
ioctl$EVIOCGRAB(r4, 0x40044590, &(0x7f0000000140)=0x5)
readv(r4, &(0x7f00000000c0)=[{&(0x7f0000001000)=""/4096, 0x1000}], 0x1)
write$evdev(r4, &(0x7f0000000040)=[{{}, 0x0, 0x2}], 0x37)
capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x81, 0xfffffffb})
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000000140)='dctcp-reno\x00', 0xff2b)
r6 = syz_usb_connect(0x5, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="120100000cb768405e0483020b990102030109021b000100000000090400000101292000090509"], 0x0)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r7, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_settings={0x8, 0x4, @te1=0x0}})
ioctl$sock_netdev_private(r7, 0x8947, &(0x7f0000000000))
syz_usb_control_io$hid(r6, 0x0, 0x0)
syz_open_dev$audion(&(0x7f00000011c0), 0x3, 0x8c4201)

64.260993ms ago: executing program 1 (id=2703):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1, 0x100007, 0x4, 0x25, 0x1, 0xffffffffffffffff, 0x400000}, 0x50)
r1 = socket$isdn(0x22, 0x3, 0x22)
r2 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0xc22c2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0])
mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040))
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r3, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x1018, 0xffffffffffffffff, {0x29}}, './file0\x00'})
sendmsg$sock(r1, &(0x7f0000001300)={&(0x7f00000000c0)=@pppol2tp={0x18, 0x1, {0x0, r2, {0x2, 0x712a, @remote}, 0x3, 0x3, 0x1}}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000200)="cfb1acdfc2ca1be1634ca5ab7c12ab646bc398a012026b27fe1bab40adfb79a5b9759189f441e1753d48d223d16f2c233226588e1929043025bea07418540db231960c56f5e0193719e0f4058442012e5f04f004f0d5fb8b221c12ca98278e6cf6ea6fd5aa412cbab715672efe72bb5fe890c4ed27a77c2db2871a8ab2b3d146059d33947f0e4cf62458bee5dc029c5821b27ceec5891f88753494767b08be63ed75358f27b8cf8466dcbaf89c13cd7758cbdb52ffeb53d8abf396e85fcd6cc50b", 0xc1}, {&(0x7f0000000300)="76e44b78ffce435b516929740b6d47210e7efff86a578ce8086d4e78bbf3d6bf09295e1ebba109278c0759d8b85c7f333a18bb36cd7fb3c00fb49182bbe779e46a4a53a7d69554f0682c789c59f9c56a0659889e56be31d7b149f2d827960330593c9bcae4d6ffa6d21526ca7509bb1b825f588e0b26df1f474cd450fba847317ae82814379b91e1a6e37ed06b5ba0d959f822e2000c1332827736a641cb6c29af6e7e11c6599f539c13e628d8e04854771dd418cd4fef3e8f60ab9e0573e646509c5a73be153745a36091535356186707e8d81289d2ede76ee4a0da7b5609e9367a68ffe6c626e459eaea482555441a65bdcf80e3c0d7b04c2654f210a8292dd7ef2e1880600305f70733d51b9a979682e813b4b0a35bfa0444d8625679711c07d177d48c0e72ff2a262cf627f36eeeb1ad059db26a552107db5ebcb979704154a3a7658e7ba56401d877d3ebaa3d5a0e4ad66dabb551199dba7402d2c13694cac1614787f295a19a6991faca8a42c57024cc337791cefe4c71810f602d3f0a61f9fc98d94ce7cc33842d6b76274df66260f3fddaa6cb1ee2c8a54e81183b63a475da852fa6b88f452ddba16ada6b7e2c1b957d2c72994d4e16b89f9d69693c9659931261a073c1adbc83ddc45e02006f54cc7f325f8a4f9ab012c3ea5fac0e472120f2f27ed8712a6f1200de6c5bfabe32058a1cf890be0be856e132952bef5c917887954beed52207853d82d59650d5531ce1a09bebb5b9c94d39724e2e16a5cede370c6e8938fca09cf915d36737a62659ec082184ee08e989196b5d8296a781326b796c62f134d552b78794cb702ca87c5258256405316d9d83d5d2beb43e5ac3d63cee10a283c72f80701ae24412cabacb9f14db9e0ee9e24ceea0494befce4387d481b95b05a649396bdf6179221c2fca178d0cf681c506e952ef0cb841b507c9932e97344b5b65fe48478241bc2c143043607d69d9370603386e0ac4bbc7e67a542b196b6375e12da95985ec9ceee79e3840bfba0e810c7f860b8f7ce89868041bc341303319807e1e8b390607690420ff05b05be9601654cb4b960b683d43cce3bc4b2dd1f2102ec17be9a30d30aa45d684897e35cea58bb1691ce6ed2fc7dbf6d7e08e164a1ca18f8bb536ff7ee1680af956f81c9c7b18501ebc9eb10f263fb32f06ddd9f331af6fb077e7537701162c511dae1889c76260b0c1a25f5ac0fdb35b2b5c0c6543b91e6c68409d520e747997e914e65b2a86f9e237ea158a9e47d9121405c43bdf09405d8ffbf9f56cf5f129a3c136646203b3dc20b51dc982bd46bcf10ecff998f293904a1a031822b37fe44835eebf5d37bf7edc4d031d749b23d90118d36a32d08e7a337ae987fa5d0b232a65dce485415be863e7e59986c1eb1f0df33e3bed83a6d402f2dcdb9543abe6e224f8d868029659eede7ce1ef33c6b795f588c502812e37cac227fdbb6f3e7d0a9a448a91ae982bb880fca0430be64946373ab9ac6ae9b3698c3bbaaff93b80277b3f280d06013c9afd571f71d3e6e26b81672f9d5a84ac197bd1b799433843ee11c62fd464459ba0d379cbfe96611a2640b69dc64a38f60197f67c3c60989e11e4255a9eb6074c830e0f7c8a1be303d0e5b583553f596119dd106f77a7695d011cee4e554b67c3f3377c2b61e662541bd796881be9977f4c4d5e991cdbe2abc1237c6c7d6ec451448975c7ee5ea28f87cbfd1e3fcd51a2c3ee17bde914b0fe771001b5b72071d8c623492d0fcedfc47e2f0c261ef121bc62850414649d4ff8168fb845244073b28d44a7e4a52871431b2d7f5dd7b04a199aaa0b9012339444216e2c8ec83aef38fc85890d77109b57e86d1025b83a071e17546ee43f7c4ca50454b947383276792f5124a3becabd7db15b94c0a72b923a43a2675c3f70d9973d55e17e8368a51ab881b914837dff8471bf03d65e95df2f3ead042411d41beb985c0f5c2877b354ddefc6be573238792d272f42fb2e42bd83828df0e4941539fbed82309ba65e1500cbec37af2ad76f3bda0f20fec4fbdeaa47ae7e418d37800333605deb7b9a5921aba81e96d0370d07ce88bf269bda2d92e1dc843b68f68ba46d2727a439b0888dd979b605c327c4043c4be1bff77d00d3bf18b52301f88286b4936e29d1cd42727f4e86d2aa5a4006e5895137b7d0bdcd905cca97240cb9780aeddd95972e26669dc8802c350c965cf4d95e5f56b423b3e50d836b8333c5bdc551966714236a05fdedf4a52b9c5a98438fa6cbdf06786b0c2db9e66ab19fa1a933fcc33d858018bf83568f06286f8cc61ae4ffb2a06fdcdf7f7484c1fb091fb54a9585f7c097af3a4e4730f71e6123d316bbc6112a1de018a976b893b360f46d503c49fd6bddbadba1fec4cb7780bb631c1f8a20527791d182867ae86ec581010ae38443609bb12412ac14a3a75ec1b9d126a823729cf01827e47f2f6e48f22c2927762de85d3ca15d669f1e6bc7715af17c66fd9bc9669e48f05d6e2028e1f28aa02c26bb713750eb799c8555135a1c3daf57c150198fd0196b61b5551c63825206bffc09154742574b2839b4938575282daae73af2157d5bb294dc3484a65eaa907fd02e7b46fc121c524a48b2f5c9ec708788d185f009115192f423b2ea5188b4e63e9193bc12f0d2e258adcccd21070bad0e571f2b244f9689234b49ddb955e21eeeeb9cf566edf6851f19e4762fdb02d08d16d8eb1d1e8ec37d9d22b6dc1b4fed3c8a5a6e04bc6740751064bb892df768db37ae7f2137e16f9e62b5d59de1a088303b0af94ae60504796cdf8585d8697963729e49b5492481308f3fbbd015f99e5c774f8bb7d67f17b8a89c70216e2555b9eb6bdfc99242fbb55867b4f38b8d22c4139b9453d5f81a35de5c03f1128965270465b8e6ce2c06d4065847ba7a292af21b72c538efb03b98c35cebec4278a19a299bf723c793b31fc55801ac9ccc675a70c7cb8e346075bba138c0f23f6988fdd1023a5fb2351e4acdce668937164254ca43053f90e4fcec352a9873a2c06cb7fb5e2419dc87f6ee1226d6bbfe9da2db34bdbdf4a47bcc96baa83eb718b539d3129e8102e95879b8e5d7a9c8c54217f3f71cd5d912c4b95fd836664582e62ef3b5f6669bbea3d2f115b20def86f135ed5b506d0378c6e8970eee7cf081e153289f18ea78bf6ac7ff838b95cf1a5d613afb21d998fd791c9f92b213d18bdc0bc9795868342d8f13ca189d09c15eb722c096a64681c8560d733513cad11315ad753ba46c16da4fe088fa5f5d0dd597ccc5c3b68acb92e3d0ae32c71118e1224c9d8e0b8aed1d6fdfaae1b5891413b9a68af7653c558966b11fe636b3f32803ca0224d665147e92cf96e4832b4b936b90436f095326d94ebb735e27eaa4388fd8926d5a141eaaf299520999adeb7a62bc75cc42a17c6405c1aa82979bfee8a984dcce4a3b18a63858001a6007e8479885684e599a941f3ca3c16adaa096384dcbe879e826e72ba4b9dd12c287eefa6924bf877208576ea0fc7fbee3d315fa33ff8d0d8774bc9902ea34e0eba8d1d3a0cf3ec5947ed76f4489e0e3fabb70d2eaea7712e73ff826c0f7b9c2488e2e2178189623e85c259c6e04232ed32637b9c792596f15c77d6337f56f280bb0ab729c45e98034ee531cdec94d687fe435764efa3e640d6cd3ef13135feeee982712807fc4ed1ac3616c3427874652d7f739697292f5d72fce97851c0a869a2a3e804bc7dd9db92a3a0c99c7adf2e7743ed4f99394a927ef2152e023c2cba6e264cd6381f305339203cee58a5caff485ef641cfce510c365680f18248603844338cb4f04f5a499d970791cf4fa39db534651d095576b89b84cca3d877190d164d8ad7aa1952b7e27b6cb2791ee08aa362aae66201f1eab8be5de648f0ea5949ed1b29d0f344aca7b19386598a4dc1ea3c0860d73e2dd46976830e9fd6fb78dc281b3e9dee294e7c051bddf1fcfef288e11144f6cce8c8a831ac96e5f1ad53cc2ad28efb5eeaadc1940444bce035ea4fc328cc5c5e5016aadadbde3dd4dd9fd4fff93d888f5603da5694d0bb2a51101c023031e49f81c554ff0f080fe3f24501335af5b2908383c58f725a5f8521d506b3e532ec103820acf048aed22c10c4ff449d5a1be564b34f38205228e568addbec4871a0010ff9020af72ad8f6c12380898a90ba6f44b4d18efcfc1370abcb6776c3b965228cb09ad570248b2d97d6527e6b2e2140461beaf929b86b1e5987a769d68850d0fef3f9cd1a864799a88b596b18c6adbed62c027f0eaa00f12a54193877a377add7e86e322529066b305e307ea580c75c23b77dbb6a4d4aa684a5823fbce7ed157cabacfebf576bd32927716887a380ff34095e1f2bac5ee1efda951bde0277cc2751f99b3422f7fafef0676cfd25c048a7980421cf247c4c147956e21ea7e4f9add9f36cb2944c575eea030e19c1cb46ce0797beb5ff5a42c134b88ccfc42b5991e00babb2f1b14215ecefcddda99174137705dece2543a8a41f1856b97d0df2363b708e29518827d442205d14406dfed2ac2f18de39a35d6bee93041011b9d9ccb7b1cb074eccbbea5e7f5f8b80374efe1f644baf1c9f5a4c0f1a4fcdf4576bd2c50e00272be487c8c7bde4300e979134282436bb733c1288f0ea5facd8850ecb1c82937090f261396e97a5fd77e2c1e7657f65c3e478aa08e592a59bbee64e14cf3c4a6f42c453a3aae30d1757014fdd6f1709a138765c5ddc8a1c5ee9b582d9fcc7ac05749d393b29c7a045af05cc78df138d118dad45bce92c7fddc463ee1d111e87205efb67c4e0a16220ac861e4829df0f3ab4914b59d7cb1443008eb41f66494445abe0f7a69d5f8b0bcb13060753740fe07fd1f73c65a0088a3a07f19ace51e1acfc0a2138890f0184420c64061082055ee48be947f044509ef8dfefc4379b3e20de2da5a27d11fe09d2b23d6d8247242556d3ee90e112549267906f6fab1facfa7138b02f3b53a7a9d9e9cc2f21fd2e5250114d35a4a3f665e01fa78a36231b619479fd36197a74e06747c9c39cab8f9f8401ae3ca0e55b5f529a7f82824aff9a5f0200806b640dc3bcff2c59ffc85602da511ddb5b04b99568380043d73c319ff8c22ed7a73792d30ca88bbeec6bc6560665b78d54624f53cd4cdda4d71138b627f8eda3fd57d1f0a52087a58adc88d46b05800d47205e5a1dc202b9e5289e669687ca62cb4052b7d3ffc2bd6d8564e0948dd0d23bb93d9d83874a67f0eea832e86ad0e793c29d3e5a72af999ee0111629382e9a8f6b2da9794baa3df97d44a9ab4bdac34afe5e226a4fadf75bf6512d7b10feda6af9e1c2252c542d692e0a25d6a8f9cb70bef00e23ebb3e67579ddd24e29dccf37921d24a7dc2ff79fa0268fea77e59f55f1c846c3def243a95f015504f1d5dbd91d9a969a3104817567a2de5c3ffbfcabf070db9691989ee6cdfa0c29b94e1f9aab21f21b28d1f1680fef81e76229e5894f44c83cf96c28680de7a4cc0b5b1fb206e47b681b7398317fec5748779f2614fa6fb7469f2443244cd51d2ed201c33692e380d6e33546e1d53bcb98beb92ae05437b56b5d9f61d0eec9c6ecf2d596ecd79f4c7d56d9cf75198ad98dddc8faa9ec0edc934ff0297b8e0035e02e27ba1403a05192489fc0a82610601180fd0f3bf19bda2f8783d41d08b7f94ae695a29e5f316eb11e5f1430904bfd1e72b78c39f605bce52b23a7a1791e7a07cdd55f6b89492a06257672385726d9dc6f6255ce39165f211bd23089a50f1", 0x1000}], 0x2, &(0x7f0000000140)=[@timestamping={{0x10, 0x1, 0x25, 0x3}}, @timestamping={{0x10, 0x1, 0x25, 0x2fda}}, @timestamping={{0x10, 0x1, 0x25, 0x10001}}, @mark={{0x10, 0x1, 0x24, 0x6}}], 0x40}, 0x80)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x1b, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x2, r0}, 0x38)

0s ago: executing program 1 (id=2704):
socket(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
timerfd_create(0x4, 0x80800)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_io_uring_setup(0x19ff, 0x0, &(0x7f0000000240), &(0x7f0000000100))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x3, {}, [{0x90, 0x1, [@m_ct={0x44, 0x6, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000a00)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0a000000010000003f0000004000000042000000", @ANYRES32, @ANYBLOB='\x00'/15, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000000000000000000000000000000000007f721185d1bd3a0ddc9b4f4fb93aedd0a03ab11a8cb57ca3b63a1566d7b8c329386274571eb19ffef06b6d1fff919327c75193a37bfd8eccb5961ba7d48b24796f3025fac2b1f91877"], 0x50)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000280)={&(0x7f0000000a40)={0x670, 0x27, 0x4, 0x70bd2a, 0x25dfdbff, {0x1d}, [@nested={0x341, 0x4a, 0x0, 0x1, [@generic="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", @nested={0x4, 0xc8}, @generic="d1aa591f410fa65f7ff42520afe29637f8e1d0d73ea6d54bd51d460e3798f16b36ebc817865f40ab4eb3b80748d0d736a70db3ca2f848fb616b625ff5825493477bc5bbd811b963cd714dc5a79c3a069908379b8225edff5a5dd03bb11", @generic="e4619a7175280a5f28faf5efebb4a9a5476e029d7a709e86f33050bedb1ab5d005ce2b4cec0672fa9c43a333c9984079cbb400546a0f0d7acdac644af0d0f27018995293bde8419dd6d81225b91226e2a42bf6d017cdd8b03b41a36bd21c6b6b3faf9e838de2f2c3eb6e0aa0b8649a01f63d0f1c64d6b9ac0c251ee33cea4b2683705aadfb716ae6646671c41214cc506bb2dce5cb764b9227611bb9f2c30ca9a3a9025391a1b2709104c476b7480468f760e9b84a9c908dc7605feaf48fcbfad46c6c765eea819afb149ba9ecca8eb777c735e0ef814b9c5e7e8e506e511870bf57c7541d5f5d93ecf4203cfaf6eea944bfca5a217e687591", @nested={0x4, 0x90}, @nested={0x4, 0x89}, @typed={0xc, 0x80, 0x0, 0x0, @u64=0x1}, @generic="bc7a9215a02e4b0290f3be29fcb0cea774af795aad60fc990acc0aaed1251e77169139e347f215868cd991136d3da25bee2a37e6bb970d53ad5132fc1e40c9c06097abb54101f447d40bbf503c17f09196d45b8296fd6fc9f29a20e6186effea718460c681a02a28315ed7ea53e45c0fc2cda07552c23a60eef63b01b4007740920c67be3e880ee6b71e85e41666700f54889aa9c9a6b312a240aaee8d20bb96cc2bb890b048253aa4de9168b639f40d00f64b9ee290b460800577e683896e45195c22c7b4f71f440da599346a116a44e55e16"]}, @nested={0x5e, 0x41, 0x0, 0x1, [@nested={0x4, 0x19}, @nested={0x4, 0x93}, @generic="63a9c920b56404c9c71cb0e72e627391483b9f86714cc46a7a85ba32ea3eb0878d3608d9bf39735d8e2789487d570c3717e70204e00886bef3aedeb2cb664d5232dcab83c2fd5298a1ffbbbb395f", @nested={0x4, 0x47}]}, @generic="84914f7838ddaf93850f85cb6201c363356677e65ab10fa7a3c82cd0702ac26955e491ab8483e36deae251b6484337bea20cf656f01af749a084d4a44b203d5629a8f956a448caa21a4f3f3a4f8b1ba588f9e252027b9bcb8b8c2c79c46d5ae1b010e5591f1af1f93771ced5c4218f70cd468bf6608669789a7d60f5092944dfdcb052b4428c9dc8b21de507d3af5fe26c030e3ae7c8a1edd3e64e40bf68fce85cc818153e140ac13851", @generic="7f59aa8f77b4f1fc2b0a51036d02bcce0d3d4a3078a77ceb1fff2163d1d4141938fa05e4efa131ce99ff40511dd4acb5e4ade0428f6f8946601095cb289eb9cdbaa7c04578dcc5f789aa56f12f3511739a4d732c8a275d9a0b05233350b3cd8a4f55fc94f616b03fb97ed9bcb76e5cb5b5e62073f734185cad744a0792bf67d1252a39a9e7f1f869c20bf154a101d79b5fa9a7cdf7959000b9c1ab5c42c47e92d840f8edf5d4b2e75591efdcbf2ed1a206c410b389ef2ef1e40c50", @nested={0x41, 0x125, 0x0, 0x1, [@generic="d312103e441668092e32fab5b3a5a22a346ea448d5d12049a8085149a48d3b1efa", @typed={0x14, 0xb7, 0x0, 0x0, @ipv6=@mcast1}, @nested={0x4, 0x147}, @nested={0x4, 0x6}]}, @generic="1b7e8022946a0a643075ef94d7f5c1459c5e8208902f069235ae7e4d5e3f2acaacf7640643595e317be669d49f621da1506ef0a8f90aa8", @generic="f6cf945e3d11dd28d3e2f51b4c6ec2f341b729e0d5c2d5e332f51713def9de1a8606669fc1cb31d03c22718ddb7f87f59608c14434d1b9936ba2fe8ad7849419c1291f4dd4874e6a9656261dabfd5644bc286aea6b04932d9178e208eb99a39d09aa174c1d447b27528b33e241eba24983d3b01c43e121a5328d77d23dd81d5ed752ab21fd113c635473b4b8f2e38adca5d5be729e91e338e9039d78460a2995db8578702dd7db176d2137584d5a865ba1336b7cac3f57dc842d90f2a535821afbfa9abede", @typed={0x8, 0x104, 0x0, 0x0, @uid}, @typed={0x8, 0x53, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x8}}]}, 0x670}, 0x1, 0x0, 0x0, 0x4000000}, 0x24008800)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000001a40), 0x1003, r3}, 0x38)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x9, 0x4, 0x7ff, 0x2, 0x1000, 0x1, 0x0, '\x00', 0x0, r4, 0x10000002, 0x1001}, 0x50)
r5 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r5, 0x7a7, &(0x7f0000000040)=0x90000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r5, 0x7a0, &(0x7f0000000240)={@hyper})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r5, 0x7a8, &(0x7f0000000080)={{@hyper, 0x2}, @any, 0x0, 0x0, 0x2, 0x6, 0x5, 0x10001, 0x8})
ioctl$IOCTL_VMCI_QUEUEPAIR_SETPF(r5, 0x7a9, &(0x7f00000003c0)={{@my=0x1}, 0xfff, 0xffffffffffffffff, 0x0, 0x0, 0x80000, 0x2, 0x1000000000ff6, 0x58df})
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0)

kernel console output (not intermixed with test programs):

nlocked_ioctl+0x9d5/0x2040
[  548.211976][T14203]  ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10
[  548.211994][T14203]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  548.212012][T14203]  ? do_vfs_ioctl+0x128/0x14f0
[  548.212031][T14203]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  548.212057][T14203]  ? find_held_lock+0x2b/0x80
[  548.212068][T14203]  ? hook_file_ioctl_common+0x145/0x410
[  548.212086][T14203]  ? __fget_files+0x20e/0x3c0
[  548.212100][T14203]  ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10
[  548.212115][T14203]  compat_ptr_ioctl+0x6b/0xa0
[  548.212131][T14203]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[  548.212148][T14203]  __ia32_compat_sys_ioctl+0x23f/0x370
[  548.212168][T14203]  __do_fast_syscall_32+0x7c/0x3a0
[  548.212185][T14203]  do_fast_syscall_32+0x32/0x80
[  548.212200][T14203]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  548.212215][T14203] RIP: 0023:0xf7f13579
[  548.212224][T14203] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  548.212235][T14203] RSP: 002b:00000000f542655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  548.212246][T14203] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000000007ab
[  548.212253][T14203] RDX: 0000000080000180 RSI: 0000000000000000 RDI: 0000000000000000
[  548.212259][T14203] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  548.212265][T14203] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  548.212272][T14203] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  548.212285][T14203]  </TASK>
[  548.508878][  T842] IPVS: starting estimator thread 0...
[  548.595570][T14215] IPVS: using max 43 ests per chain, 103200 per kthread
[  550.081401][T14214] tipc: Started in network mode
[  550.083039][T14214] tipc: Node identity ac1414aa, cluster identity 4711
[  550.086332][T14214] tipc: Enabled bearer <udp:s>, priority 10
[  550.090150][T14217] workqueue: Failed to create a rescuer kthread for wq "bond2": -EINTR
[  550.123060][   T10] adutux 5-1:168.0: interrupt endpoints not found
[  550.127795][T14221] netlink: 76 bytes leftover after parsing attributes in process `syz.0.2348'.
[  550.133784][   T10] usb 5-1: USB disconnect, device number 103
[  550.175262][T14223] openvswitch: netlink: Unexpected mask (mask=1040, allowed=10048)
[  550.507251][T14245] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2355'.
[  550.510021][T14245] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2355'.
[  550.512810][T14245] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2355'.
[  550.518673][T14245] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2355'.
[  550.522174][T14245] netlink: 5 bytes leftover after parsing attributes in process `syz.3.2355'.
[  550.669579][ T1146] Bluetooth: hci2: Frame reassembly failed (-84)
[  550.924957][  T842] usb 8-1: new high-speed USB device number 65 using dummy_hcd
[  551.072160][T14253] netlink: 76 bytes leftover after parsing attributes in process `syz.0.2358'.
[  551.077278][  T842] usb 8-1: config index 0 descriptor too short (expected 23569, got 27)
[  551.080250][  T842] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  551.084424][  T842] usb 8-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  551.087488][  T842] usb 8-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  551.089936][  T842] usb 8-1: Manufacturer: syz
[  551.092567][  T842] usb 8-1: config 0 descriptor??
[  551.155912][  T842] rc_core: IR keymap rc-hauppauge not found
[  551.158461][  T842] Registered IR keymap rc-empty
[  551.161443][  T842] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0
[  551.168785][  T842] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0/input76
[  551.217318][  T842] tipc: Node number set to 2886997162
[  551.297283][  T842] usb 8-1: USB disconnect, device number 65
[  551.822745][T14264] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2360'.
[  551.915556][   T40] kauditd_printk_skb: 3626 callbacks suppressed
[  551.915566][   T40] audit: type=1326 audit(1756901551.974:6733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14270 comm="syz.3.2361" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf705e579 code=0x0
[  552.636250][T14284] FAULT_INJECTION: forcing a failure.
[  552.636250][T14284] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  552.641855][T14284] CPU: 0 UID: 0 PID: 14284 Comm: syz.3.2362 Not tainted syzkaller #0 PREEMPT(full) 
[  552.641877][T14284] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  552.641888][T14284] Call Trace:
[  552.641895][T14284]  <TASK>
[  552.641901][T14284]  dump_stack_lvl+0x16c/0x1f0
[  552.641945][T14284]  should_fail_ex+0x512/0x640
[  552.641978][T14284]  _copy_from_user+0x2e/0xd0
[  552.642012][T14284]  csum_and_copy_from_iter_full+0x21a/0x1f90
[  552.642040][T14284]  ? __pfx_csum_and_copy_from_iter_full+0x10/0x10
[  552.642059][T14284]  ? rcu_is_watching+0x12/0xc0
[  552.642075][T14284]  ? trace_kmalloc+0x2b/0xd0
[  552.642096][T14284]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  552.642118][T14284]  ? __alloc_skb+0x166/0x380
[  552.642137][T14284]  ? trace_kmem_cache_alloc+0x28/0xc0
[  552.642164][T14284]  ip_generic_getfrag+0x170/0x270
[  552.642187][T14284]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  552.642208][T14284]  ? do_csum+0x26f/0x2d0
[  552.642229][T14284]  raw6_getfrag+0x22d/0x2a0
[  552.642253][T14284]  __ip6_append_data+0x3e1b/0x4750
[  552.642283][T14284]  ? __pfx_raw6_getfrag+0x10/0x10
[  552.642309][T14284]  ? __pfx___ip6_append_data+0x10/0x10
[  552.642330][T14284]  ? __pfx_ip6_mtu+0x10/0x10
[  552.642346][T14284]  ? ip6_setup_cork+0xc51/0x1530
[  552.642392][T14284]  ip6_append_data+0x1bd/0x4c0
[  552.642411][T14284]  ? __pfx_raw6_getfrag+0x10/0x10
[  552.642432][T14284]  rawv6_sendmsg+0x163d/0x4820
[  552.642450][T14284]  ? aa_label_sk_perm+0x195/0x600
[  552.642482][T14284]  ? __pfx_rawv6_sendmsg+0x10/0x10
[  552.642524][T14284]  ? aa_sk_perm+0x2f4/0xb10
[  552.642552][T14284]  ? __pfx_rawv6_sendmsg+0x10/0x10
[  552.642572][T14284]  ? inet_sendmsg+0x11c/0x140
[  552.642587][T14284]  inet_sendmsg+0x11c/0x140
[  552.642608][T14284]  sock_write_iter+0x4aa/0x5b0
[  552.642626][T14284]  ? __pfx_sock_write_iter+0x10/0x10
[  552.642654][T14284]  ? bpf_lsm_file_permission+0x9/0x10
[  552.642679][T14284]  ? security_file_permission+0x71/0x210
[  552.642705][T14284]  ? rw_verify_area+0xcf/0x6c0
[  552.642725][T14284]  vfs_write+0x7d3/0x11d0
[  552.642745][T14284]  ? __pfx_sock_write_iter+0x10/0x10
[  552.642766][T14284]  ? __pfx_vfs_write+0x10/0x10
[  552.642784][T14284]  ? find_held_lock+0x2b/0x80
[  552.642818][T14284]  ksys_write+0x1f8/0x250
[  552.642838][T14284]  ? __pfx_ksys_write+0x10/0x10
[  552.642861][T14284]  ? rcu_is_watching+0x12/0xc0
[  552.642883][T14284]  __do_fast_syscall_32+0x7c/0x3a0
[  552.642909][T14284]  do_fast_syscall_32+0x32/0x80
[  552.642934][T14284]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  552.642957][T14284] RIP: 0023:0xf705e579
[  552.642971][T14284] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  552.642987][T14284] RSP: 002b:00000000f544e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  552.643012][T14284] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[  552.643023][T14284] RDX: 00000000000005ac RSI: 0000000000000000 RDI: 0000000000000000
[  552.643034][T14284] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  552.643044][T14284] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  552.643054][T14284] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  552.643080][T14284]  </TASK>
[  552.734919][ T5977] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  552.735047][ T5985] Bluetooth: hci2: command 0x1003 tx timeout
[  553.061017][T14295] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2365'.
[  553.703344][T14300] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2367'.
[  553.978785][T14306] syzkaller0: entered promiscuous mode
[  553.980508][T14306] syzkaller0: entered allmulticast mode
[  554.273864][T14315] input: syz1 as /devices/virtual/input/input78
[  554.725682][   T40] audit: type=1326 audit(1756901554.784:6734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14307 comm="syz.0.2370" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  554.732351][   T40] audit: type=1326 audit(1756901554.784:6735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14307 comm="syz.0.2370" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  555.038950][   T40] audit: type=1326 audit(1756901554.914:6736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14307 comm="syz.0.2370" exe="/syz-executor" sig=0 arch=40000003 syscall=366 compat=1 ip=0xf704e579 code=0x7ffc0000
[  556.020046][T14313] batadv1: entered allmulticast mode
[  556.429290][T14329] __nla_validate_parse: 3 callbacks suppressed
[  556.429332][T14329] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2373'.
[  556.742492][T14334] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2375'.
[  557.314458][T14344] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2377'.
[  557.330919][T14344] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2377'.
[  558.082613][T14351] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2378'.
[  558.085787][T14351] netlink: 7983 bytes leftover after parsing attributes in process `syz.1.2378'.
[  558.088970][T14351] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2378'.
[  558.853074][T14372] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  558.861545][T14372] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  558.911211][T14372] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type
[  558.915825][T14372] overlayfs: failed to look up (tracing) for ino (-66)
[  558.920724][T14372] fuseblk: Unknown parameter 'group_`-²00000000000000000000'
[  559.515808][T14382] input: syz0 as /devices/virtual/input/input79
[  559.520682][T14382] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2386'.
[  559.974590][T14400] FAULT_INJECTION: forcing a failure.
[  559.974590][T14400] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  559.985202][   T40] audit: type=1326 audit(1756901560.034:6737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14395 comm="syz.0.2389" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  559.985370][T14400] CPU: 0 UID: 0 PID: 14400 Comm: syz.2.2388 Not tainted syzkaller #0 PREEMPT(full) 
[  559.985394][T14400] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  559.985404][T14400] Call Trace:
[  559.985409][T14400]  <TASK>
[  559.985414][T14400]  dump_stack_lvl+0x16c/0x1f0
[  559.985505][T14400]  should_fail_ex+0x512/0x640
[  559.985543][T14400]  _copy_from_user+0x2e/0xd0
[  559.985562][T14400]  csum_and_copy_from_iter_full+0x21a/0x1f90
[  559.985581][T14400]  ? __pfx_csum_and_copy_from_iter_full+0x10/0x10
[  559.985594][T14400]  ? rcu_is_watching+0x12/0xc0
[  559.985606][T14400]  ? trace_kmem_cache_alloc+0x28/0xc0
[  559.985623][T14400]  ? kmem_cache_alloc_node_noprof+0x225/0x3b0
[  559.985637][T14400]  ? kmalloc_reserve+0x18b/0x2c0
[  559.985654][T14400]  ? trace_kmem_cache_alloc+0x28/0xc0
[  559.985673][T14400]  ip_generic_getfrag+0x170/0x270
[  559.985690][T14400]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  559.985706][T14400]  ? __alloc_skb+0x200/0x380
[  559.985720][T14400]  ? __pfx___alloc_skb+0x10/0x10
[  559.985735][T14400]  raw6_getfrag+0x22d/0x2a0
[  559.985749][T14400]  __ip6_append_data+0x3e1b/0x4750
[  559.985767][T14400]  ? __pfx_raw6_getfrag+0x10/0x10
[  559.985784][T14400]  ? __pfx___ip6_append_data+0x10/0x10
[  559.985798][T14400]  ? __pfx_ip6_mtu+0x10/0x10
[  559.985808][T14400]  ? ip6_setup_cork+0xc51/0x1530
[  559.985822][T14400]  ip6_append_data+0x1bd/0x4c0
[  559.985836][T14400]  ? __pfx_raw6_getfrag+0x10/0x10
[  559.985849][T14400]  rawv6_sendmsg+0x163d/0x4820
[  559.985861][T14400]  ? aa_label_sk_perm+0x195/0x600
[  559.985881][T14400]  ? __pfx_rawv6_sendmsg+0x10/0x10
[  559.985906][T14400]  ? aa_sk_perm+0x2f4/0xb10
[  559.985926][T14400]  ? __pfx_rawv6_sendmsg+0x10/0x10
[  559.985939][T14400]  ? inet_sendmsg+0x11c/0x140
[  559.985955][T14400]  inet_sendmsg+0x11c/0x140
[  559.985967][T14400]  sock_write_iter+0x4aa/0x5b0
[  559.985979][T14400]  ? __pfx_sock_write_iter+0x10/0x10
[  559.985995][T14400]  ? bpf_lsm_file_permission+0x9/0x10
[  559.986012][T14400]  ? security_file_permission+0x71/0x210
[  559.986028][T14400]  ? rw_verify_area+0xcf/0x6c0
[  559.986042][T14400]  vfs_write+0x7d3/0x11d0
[  559.986055][T14400]  ? __pfx_sock_write_iter+0x10/0x10
[  559.986067][T14400]  ? __pfx_vfs_write+0x10/0x10
[  559.986079][T14400]  ? find_held_lock+0x2b/0x80
[  559.986099][T14400]  ksys_write+0x1f8/0x250
[  559.986112][T14400]  ? __pfx_ksys_write+0x10/0x10
[  559.986126][T14400]  ? rcu_is_watching+0x12/0xc0
[  559.986139][T14400]  __do_fast_syscall_32+0x7c/0x3a0
[  559.986157][T14400]  do_fast_syscall_32+0x32/0x80
[  559.986173][T14400]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  559.986187][T14400] RIP: 0023:0xf7f13579
[  559.986197][T14400] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  559.986208][T14400] RSP: 002b:00000000f542655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  559.986219][T14400] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[  559.986226][T14400] RDX: 00000000000005ac RSI: 0000000000000000 RDI: 0000000000000000
[  559.986233][T14400] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  559.986239][T14400] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  559.986246][T14400] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  559.986260][T14400]  </TASK>
[  560.105572][   T40] audit: type=1326 audit(1756901560.034:6738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14395 comm="syz.0.2389" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf704e579 code=0x7ffc0000
[  560.113963][   T40] audit: type=1326 audit(1756901560.034:6739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14395 comm="syz.0.2389" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  560.124695][   T40] audit: type=1326 audit(1756901560.034:6740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14395 comm="syz.0.2389" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  560.141694][   T40] audit: type=1326 audit(1756901560.034:6741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14395 comm="syz.0.2389" exe="/syz-executor" sig=0 arch=40000003 syscall=331 compat=1 ip=0xf704e579 code=0x7ffc0000
[  560.148654][   T40] audit: type=1326 audit(1756901560.034:6742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14395 comm="syz.0.2389" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  560.157258][   T40] audit: type=1326 audit(1756901560.034:6743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14395 comm="syz.0.2389" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  560.164389][   T40] audit: type=1326 audit(1756901560.034:6744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14395 comm="syz.0.2389" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf704e579 code=0x7ffc0000
[  560.171816][   T40] audit: type=1326 audit(1756901560.034:6745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14395 comm="syz.0.2389" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  560.182549][   T40] audit: type=1326 audit(1756901560.034:6746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14395 comm="syz.0.2389" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  560.193310][T14404] netlink: 3 bytes leftover after parsing attributes in process `syz.3.2387'.
[  560.210119][T14404] batadv1: entered allmulticast mode
[  560.278609][T14410] input: syz1 as /devices/virtual/input/input80
[  560.454936][   T10] usb 5-1: new high-speed USB device number 104 using dummy_hcd
[  560.474967][  T842] usb 7-1: new high-speed USB device number 28 using dummy_hcd
[  560.604888][   T10] usb 5-1: Using ep0 maxpacket: 16
[  560.611304][   T10] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  560.619033][   T10] usb 5-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  560.622330][   T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  560.625300][   T10] usb 5-1: Product: syz
[  560.626795][   T10] usb 5-1: Manufacturer: syz
[  560.628428][   T10] usb 5-1: SerialNumber: syz
[  560.637931][  T842] usb 7-1: config index 0 descriptor too short (expected 23569, got 27)
[  560.640541][  T842] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  560.641283][   T10] usb 5-1: config 0 descriptor??
[  560.645116][  T842] usb 7-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  560.647692][   T10] hub 5-1:0.0: bad descriptor, ignoring hub
[  560.648837][  T842] usb 7-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  560.651022][   T10] hub 5-1:0.0: probe with driver hub failed with error -5
[  560.655210][   T10] input: syz syz as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input81
[  560.660297][  T842] usb 7-1: Manufacturer: syz
[  560.665714][  T842] usb 7-1: config 0 descriptor??
[  560.735073][  T842] rc_core: IR keymap rc-hauppauge not found
[  560.737616][  T842] Registered IR keymap rc-empty
[  560.743307][  T842] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0
[  560.750333][  T842] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0/input82
[  560.871946][  T842] usb 7-1: USB disconnect, device number 28
[  561.933712][T14407] lo speed is unknown, defaulting to 1000
[  562.427274][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  562.429226][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[  563.490081][T14435] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  563.630476][T14438] FAULT_INJECTION: forcing a failure.
[  563.630476][T14438] name failslab, interval 1, probability 0, space 0, times 0
[  563.639417][T14438] CPU: 1 UID: 0 PID: 14438 Comm: syz.1.2400 Not tainted syzkaller #0 PREEMPT(full) 
[  563.639442][T14438] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  563.639453][T14438] Call Trace:
[  563.639460][T14438]  <TASK>
[  563.639467][T14438]  dump_stack_lvl+0x16c/0x1f0
[  563.639496][T14438]  should_fail_ex+0x512/0x640
[  563.639521][T14438]  ? mark_held_locks+0x49/0x80
[  563.639546][T14438]  ? ___neigh_create+0x14e6/0x28c0
[  563.639564][T14438]  should_failslab+0xc2/0x120
[  563.639588][T14438]  __kmalloc_noprof+0xd2/0x510
[  563.639609][T14438]  ? enqueue_to_backlog+0x493/0xe90
[  563.639643][T14438]  ___neigh_create+0x14e6/0x28c0
[  563.639662][T14438]  ? __pfx_netif_rx_internal+0x10/0x10
[  563.639707][T14438]  ? __pfx____neigh_create+0x10/0x10
[  563.639732][T14438]  ip6_finish_output2+0x1299/0x2020
[  563.639756][T14438]  ? ip6_mtu+0x1a3/0x4a0
[  563.639781][T14438]  __ip6_finish_output+0x3cd/0x1010
[  563.639807][T14438]  ip6_output+0x1ca/0x3e0
[  563.639831][T14438]  ip6_mr_output+0x233/0x11b0
[  563.639856][T14438]  ? ip6_cork_release+0xe4/0x1c0
[  563.639882][T14438]  ? __pfx_ip6_mr_output+0x10/0x10
[  563.639911][T14438]  ? __lock_acquire+0x62e/0x1ce0
[  563.639934][T14438]  ? __ip6_local_out+0x2f1/0xa80
[  563.639975][T14438]  ? ip6_local_out+0x2a9/0x4d0
[  563.639997][T14438]  ip6_local_out+0x2a9/0x4d0
[  563.640023][T14438]  ip6_send_skb+0x112/0x460
[  563.640048][T14438]  ip6_push_pending_frames+0xe0/0x110
[  563.640072][T14438]  rawv6_sendmsg+0x3028/0x4820
[  563.640091][T14438]  ? aa_label_sk_perm+0x195/0x600
[  563.640125][T14438]  ? __pfx_rawv6_sendmsg+0x10/0x10
[  563.640172][T14438]  ? aa_sk_perm+0x2f4/0xb10
[  563.640206][T14438]  ? __pfx_rawv6_sendmsg+0x10/0x10
[  563.640228][T14438]  ? inet_sendmsg+0x11c/0x140
[  563.640247][T14438]  inet_sendmsg+0x11c/0x140
[  563.640268][T14438]  sock_write_iter+0x4aa/0x5b0
[  563.640307][T14438]  ? __pfx_sock_write_iter+0x10/0x10
[  563.640337][T14438]  ? bpf_lsm_file_permission+0x9/0x10
[  563.640362][T14438]  ? security_file_permission+0x71/0x210
[  563.640388][T14438]  ? rw_verify_area+0xcf/0x6c0
[  563.640411][T14438]  vfs_write+0x7d3/0x11d0
[  563.640433][T14438]  ? __pfx_sock_write_iter+0x10/0x10
[  563.640455][T14438]  ? __pfx_vfs_write+0x10/0x10
[  563.640473][T14438]  ? find_held_lock+0x2b/0x80
[  563.640506][T14438]  ksys_write+0x1f8/0x250
[  563.640526][T14438]  ? __pfx_ksys_write+0x10/0x10
[  563.640548][T14438]  ? rcu_is_watching+0x12/0xc0
[  563.640571][T14438]  __do_fast_syscall_32+0x7c/0x3a0
[  563.640598][T14438]  do_fast_syscall_32+0x32/0x80
[  563.640621][T14438]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  563.640643][T14438] RIP: 0023:0xf710e579
[  563.640657][T14438] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  563.640673][T14438] RSP: 002b:00000000f54fe55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  563.640697][T14438] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[  563.640708][T14438] RDX: 00000000000005ac RSI: 0000000000000000 RDI: 0000000000000000
[  563.640719][T14438] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  563.640730][T14438] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  563.640740][T14438] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  563.640765][T14438]  </TASK>
[  563.852766][T14443] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2401'.
[  563.874930][   T10] usb 8-1: new low-speed USB device number 66 using dummy_hcd
[  564.032344][   T10] usb 8-1: config 1 interface 0 altsetting 9 endpoint 0x81 has invalid maxpacket 16, setting to 8
[  564.036808][   T10] usb 8-1: config 1 interface 0 altsetting 9 endpoint 0x2 has invalid maxpacket 512, setting to 8
[  564.041055][   T10] usb 8-1: config 1 interface 0 has no altsetting 0
[  565.161565][T14458] block device autoloading is deprecated and will be removed.
[  565.203684][T14462] netlink: 3 bytes leftover after parsing attributes in process `syz.1.2403'.
[  565.225137][ T6029] usb 5-1: USB disconnect, device number 104
[  565.275429][T14464] input: syz1 as /devices/virtual/input/input83
[  565.286881][T14462] batadv1: entered allmulticast mode
[  566.659671][   T10] usb 8-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.40
[  566.662513][   T10] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  566.681154][   T10] usb 8-1: can't set config #1, error -71
[  566.687481][   T10] usb 8-1: USB disconnect, device number 66
[  566.725741][T11527] usb 5-1: new high-speed USB device number 105 using dummy_hcd
[  566.905026][T11527] usb 5-1: Using ep0 maxpacket: 8
[  566.911205][T11527] usb 5-1: too many configurations: 227, using maximum allowed: 8
[  566.915692][T11527] usb 5-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 16
[  566.918848][T11527] usb 5-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 64
[  566.921979][T11527] usb 5-1: config 1 interface 0 has no altsetting 0
[  566.929571][T11527] usb 5-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 16
[  566.932922][T11527] usb 5-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 64
[  566.936695][T11527] usb 5-1: config 1 interface 0 has no altsetting 0
[  566.940369][T11527] usb 5-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 16
[  566.943678][T11527] usb 5-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 64
[  566.948108][T11527] usb 5-1: config 1 interface 0 has no altsetting 0
[  566.951136][T11527] usb 5-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 16
[  566.954415][T11527] usb 5-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 64
[  566.957697][T11527] usb 5-1: config 1 interface 0 has no altsetting 0
[  566.960662][T11527] usb 5-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 16
[  566.963915][T11527] usb 5-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 64
[  566.968419][T11527] usb 5-1: config 1 interface 0 has no altsetting 0
[  566.971483][T11527] usb 5-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 16
[  566.974873][T11527] usb 5-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 64
[  566.978307][T11527] usb 5-1: config 1 interface 0 has no altsetting 0
[  566.981447][T11527] usb 5-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 16
[  566.985269][T11527] usb 5-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 64
[  566.988888][T11527] usb 5-1: config 1 interface 0 has no altsetting 0
[  566.992450][T11527] usb 5-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 16
[  566.996127][T11527] usb 5-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 64
[  566.999357][T11527] usb 5-1: config 1 interface 0 has no altsetting 0
[  567.003913][T11527] usb 5-1: New USB device found, idVendor=03f0, idProduct=23bb, bcdDevice=a4.e3
[  567.008132][T11527] usb 5-1: New USB device strings: Mfr=247, Product=28, SerialNumber=93
[  567.011668][T11527] usb 5-1: Product: syz
[  567.013606][T11527] usb 5-1: Manufacturer: syz
[  567.015751][T11527] usb 5-1: SerialNumber: syz
[  567.030306][T14483] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  567.033643][T14483] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  567.059320][T14479] Set syz1 is full, maxelem 65536 reached
[  567.175592][   T10] usb 8-1: new high-speed USB device number 67 using dummy_hcd
[  567.250602][T14479] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  567.253363][T14479] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  567.324965][   T10] usb 8-1: Using ep0 maxpacket: 8
[  567.330993][   T10] usb 8-1: too many configurations: 227, using maximum allowed: 8
[  567.335904][   T10] usb 8-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 16
[  567.339046][   T10] usb 8-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 64
[  567.342092][   T10] usb 8-1: config 1 interface 0 has no altsetting 0
[  567.347008][   T10] usb 8-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 16
[  567.350328][   T10] usb 8-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 64
[  567.353433][   T10] usb 8-1: config 1 interface 0 has no altsetting 0
[  567.357147][   T10] usb 8-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 16
[  567.360210][   T10] usb 8-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 64
[  567.363442][   T10] usb 8-1: config 1 interface 0 has no altsetting 0
[  567.367099][   T10] usb 8-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 16
[  567.370185][   T10] usb 8-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 64
[  567.373265][   T10] usb 8-1: config 1 interface 0 has no altsetting 0
[  567.376713][   T10] usb 8-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 16
[  567.379874][   T10] usb 8-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 64
[  567.382976][   T10] usb 8-1: config 1 interface 0 has no altsetting 0
[  567.388170][   T10] usb 8-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 16
[  567.391337][   T10] usb 8-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 64
[  567.394457][   T10] usb 8-1: config 1 interface 0 has no altsetting 0
[  567.398715][   T10] usb 8-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 16
[  567.401939][   T10] usb 8-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 64
[  567.405202][   T10] usb 8-1: config 1 interface 0 has no altsetting 0
[  567.408352][   T10] usb 8-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 16
[  567.411399][   T10] usb 8-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 64
[  567.414482][   T10] usb 8-1: config 1 interface 0 has no altsetting 0
[  567.418099][   T10] usb 8-1: New USB device found, idVendor=03f0, idProduct=23bb, bcdDevice=a4.e3
[  567.420906][   T10] usb 8-1: New USB device strings: Mfr=247, Product=28, SerialNumber=93
[  567.423507][   T10] usb 8-1: Product: syz
[  567.424966][   T10] usb 8-1: Manufacturer: syz
[  567.426443][   T10] usb 8-1: SerialNumber: syz
[  567.431478][T14488] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[  567.435575][T14488] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[  567.714249][T14486] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  567.718869][T14486] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  567.960744][   T10] usblp 8-1:1.0: usblp0: USB Bidirectional printer dev 67 if 0 alt 8 proto 3 vid 0x03F0 pid 0x23BB
[  567.981582][   T10] usb 8-1: USB disconnect, device number 67
[  568.007832][   T10] usblp0: removed
[  568.124791][T11527] usblp 5-1:1.0: usblp0: USB Bidirectional printer dev 105 if 0 alt 8 proto 3 vid 0x03F0 pid 0x23BB
[  568.143339][T11527] usb 5-1: USB disconnect, device number 105
[  568.157943][T11527] usblp0: removed
[  568.238815][T14494] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2411'.
[  568.350291][T14498] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2412'.
[  568.353192][T14498] netlink: 7983 bytes leftover after parsing attributes in process `syz.2.2412'.
[  568.360921][T14498] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2412'.
[  568.580245][T14505] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2413'.
[  569.993787][T14513] input: syz0 as /devices/virtual/input/input84
[  570.318130][T14523] input: syz1 as /devices/virtual/input/input85
[  570.345343][T14523] netlink: 'syz.0.2419': attribute type 1 has an invalid length.
[  570.735445][T14524] netlink: 'syz.1.2416': attribute type 4 has an invalid length.
[  570.751376][T14527] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2420'.
[  570.754338][T14527] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2420'.
[  570.921519][T14533] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2422'.
[  571.188633][T14537] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2424'.
[  572.426856][T14551] ceph: No mds server is up or the cluster is laggy
[  572.430060][T11527] libceph: connect (1)[c::]:6789 error -101
[  572.432608][T11527] libceph: mon0 (1)[c::]:6789 connect error
[  572.663266][T14563] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2426'.
[  573.507410][T14580] FAULT_INJECTION: forcing a failure.
[  573.507410][T14580] name failslab, interval 1, probability 0, space 0, times 0
[  573.513187][T14580] CPU: 3 UID: 0 PID: 14580 Comm: syz.0.2433 Not tainted syzkaller #0 PREEMPT(full) 
[  573.513209][T14580] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  573.513221][T14580] Call Trace:
[  573.513227][T14580]  <TASK>
[  573.513234][T14580]  dump_stack_lvl+0x16c/0x1f0
[  573.513262][T14580]  should_fail_ex+0x512/0x640
[  573.513285][T14580]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  573.513309][T14580]  should_failslab+0xc2/0x120
[  573.513331][T14580]  __kmalloc_cache_noprof+0x6a/0x3e0
[  573.513348][T14580]  ? binder_get_thread+0x1eb/0x8c0
[  573.513372][T14580]  ? binder_get_thread+0x225/0x8c0
[  573.513398][T14580]  ? __pfx_binder_poll+0x10/0x10
[  573.513423][T14580]  binder_get_thread+0x225/0x8c0
[  573.513451][T14580]  ? __pfx_binder_poll+0x10/0x10
[  573.513474][T14580]  binder_poll+0x3f/0x400
[  573.513499][T14580]  ? __pfx_binder_poll+0x10/0x10
[  573.513522][T14580]  do_select+0xd3a/0x17e0
[  573.513566][T14580]  ? __pfx_do_select+0x10/0x10
[  573.513586][T14580]  ? __pfx___pollwait+0x10/0x10
[  573.513609][T14580]  ? __pfx_pollwake+0x10/0x10
[  573.513628][T14580]  ? __pfx_pollwake+0x10/0x10
[  573.513647][T14580]  ? __pfx_pollwake+0x10/0x10
[  573.513666][T14580]  ? __pfx_pollwake+0x10/0x10
[  573.513685][T14580]  ? __pfx_pollwake+0x10/0x10
[  573.513708][T14580]  ? __pfx_pollwake+0x10/0x10
[  573.513751][T14580]  ? find_held_lock+0x2b/0x80
[  573.513769][T14580]  ? compat_core_sys_select+0x1dd/0x880
[  573.513790][T14580]  ? compat_core_sys_select+0x685/0x880
[  573.513806][T14580]  compat_core_sys_select+0x685/0x880
[  573.513830][T14580]  ? __pfx_compat_core_sys_select+0x10/0x10
[  573.513854][T14580]  ? proc_fail_nth_write+0x9f/0x220
[  573.513891][T14580]  ? set_compat_user_sigmask+0x213/0x2a0
[  573.513910][T14580]  ? __pfx_set_compat_user_sigmask+0x10/0x10
[  573.513934][T14580]  __ia32_compat_sys_pselect6_time32+0x2d1/0x390
[  573.513958][T14580]  ? __pfx___ia32_compat_sys_pselect6_time32+0x10/0x10
[  573.513980][T14580]  ? ksys_write+0x1ac/0x250
[  573.514000][T14580]  ? __pfx_ksys_write+0x10/0x10
[  573.514022][T14580]  ? rcu_is_watching+0x12/0xc0
[  573.514043][T14580]  __do_fast_syscall_32+0x7c/0x3a0
[  573.514068][T14580]  do_fast_syscall_32+0x32/0x80
[  573.514091][T14580]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  573.514112][T14580] RIP: 0023:0xf704e579
[  573.514126][T14580] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  573.514142][T14580] RSP: 002b:00000000f53fc55c EFLAGS: 00000296 ORIG_RAX: 0000000000000134
[  573.514187][T14580] RAX: ffffffffffffffda RBX: 0000000000000040 RCX: 00000000800001c0
[  573.514198][T14580] RDX: 0000000000000000 RSI: 00000000800002c0 RDI: 0000000000000000
[  573.514209][T14580] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  573.514219][T14580] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  573.514229][T14580] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  573.514254][T14580]  </TASK>
[  573.703603][T14582] netlink: 'syz.2.2432': attribute type 4 has an invalid length.
[  574.097585][T14587] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2434'.
[  576.369803][T14614] netlink: 3 bytes leftover after parsing attributes in process `syz.1.2438'.
[  576.390214][T14614] batadv1: entered allmulticast mode
[  576.439550][T14617] input: syz1 as /devices/virtual/input/input86
[  577.163445][T14622] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2440'.
[  577.175020][T14622] netlink: 7983 bytes leftover after parsing attributes in process `syz.3.2440'.
[  577.178057][T14622] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2440'.
[  578.617688][T14636] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2444'.
[  578.620922][T14636] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2444'.
[  578.642554][   T40] kauditd_printk_skb: 13 callbacks suppressed
[  578.642567][   T40] audit: type=1326 audit(1756901578.694:6760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14637 comm="syz.3.2445" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[  578.656277][   T40] audit: type=1326 audit(1756901578.694:6761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14637 comm="syz.3.2445" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[  578.665063][   T40] audit: type=1326 audit(1756901578.694:6762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14637 comm="syz.3.2445" exe="/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf705e579 code=0x7ffc0000
[  578.672965][   T40] audit: type=1326 audit(1756901578.694:6763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14637 comm="syz.3.2445" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[  578.684537][   T40] audit: type=1326 audit(1756901578.694:6764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14637 comm="syz.3.2445" exe="/syz-executor" sig=0 arch=40000003 syscall=425 compat=1 ip=0xf705e579 code=0x7ffc0000
[  578.697554][   T40] audit: type=1326 audit(1756901578.704:6765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14637 comm="syz.3.2445" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf705e579 code=0x7ffc0000
[  578.707645][   T40] audit: type=1326 audit(1756901578.704:6766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14637 comm="syz.3.2445" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf705e579 code=0x7ffc0000
[  578.718582][   T40] audit: type=1326 audit(1756901578.714:6767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14637 comm="syz.3.2445" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[  578.719710][T14641] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2443'.
[  578.726022][   T40] audit: type=1326 audit(1756901578.714:6768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14637 comm="syz.3.2445" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf705e579 code=0x7ffc0000
[  578.729014][T14641] netlink: 7983 bytes leftover after parsing attributes in process `syz.1.2443'.
[  578.736266][   T40] audit: type=1326 audit(1756901578.714:6769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14637 comm="syz.3.2445" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[  578.738385][T14641] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2443'.
[  578.883220][T14660] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  578.887948][T14660] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  578.897255][   T10] libceph: connect (1)[c::]:6789 error -101
[  578.899283][   T10] libceph: mon0 (1)[c::]:6789 connect error
[  578.937758][   T10] kernel read not supported for file /vbi8 (pid: 10 comm: kworker/0:1)
[  579.104901][T11527] usb 8-1: new high-speed USB device number 68 using dummy_hcd
[  579.156024][   T10] libceph: connect (1)[c::]:6789 error -101
[  579.158890][   T10] libceph: mon0 (1)[c::]:6789 connect error
[  579.276891][T11527] usb 8-1: config index 0 descriptor too short (expected 23569, got 27)
[  579.280392][T11527] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  579.284771][T11527] usb 8-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  579.288620][T11527] usb 8-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  579.291523][T11527] usb 8-1: Manufacturer: syz
[  579.294890][T11527] usb 8-1: config 0 descriptor??
[  579.331348][T14683] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2454'.
[  579.364984][T11527] rc_core: IR keymap rc-hauppauge not found
[  579.367056][T11527] Registered IR keymap rc-empty
[  579.369396][T11527] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0
[  579.373432][T11527] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0/input87
[  579.505118][   T10] libceph: connect (1)[c::]:6789 error -101
[  579.509045][   T10] libceph: mon0 (1)[c::]:6789 connect error
[  579.666396][   T10] libceph: connect (1)[c::]:6789 error -101
[  579.668840][   T10] libceph: mon0 (1)[c::]:6789 connect error
[  579.679175][T14690] bridge0: entered promiscuous mode
[  579.765408][   T10] libceph: connect (1)[c::]:6789 error -101
[  579.767878][   T10] libceph: mon0 (1)[c::]:6789 connect error
[  580.275958][   T10] libceph: connect (1)[c::]:6789 error -101
[  580.277911][   T10] libceph: mon0 (1)[c::]:6789 connect error
[  581.376753][ T6062] libceph: connect (1)[c::]:6789 error -101
[  581.378829][ T6062] libceph: mon0 (1)[c::]:6789 connect error
[  581.381020][ T6062] libceph: connect (1)[c::]:6789 error -101
[  581.382995][ T6062] libceph: mon0 (1)[c::]:6789 connect error
[  581.858767][T14656] ceph: No mds server is up or the cluster is laggy
[  581.881757][T14660] ceph: No mds server is up or the cluster is laggy
[  581.899234][  T842] usb 8-1: USB disconnect, device number 68
[  581.973352][T14701] __nla_validate_parse: 2 callbacks suppressed
[  581.973367][T14701] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2458'.
[  582.080799][T14709] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  582.089034][T14706] capability: warning: `syz.0.2459' uses deprecated v2 capabilities in a way that may be insecure
[  582.197729][T14709] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  582.244917][  T842] usb 8-1: new full-speed USB device number 69 using dummy_hcd
[  582.261618][T14718] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2463'.
[  582.264603][T14718] netlink: 7983 bytes leftover after parsing attributes in process `syz.2.2463'.
[  582.274954][T14718] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2463'.
[  582.358311][T14709] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  582.397345][  T842] usb 8-1: not running at top speed; connect to a high speed hub
[  582.400760][  T842] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  582.404023][  T842] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 2
[  582.407494][  T842] usb 8-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  582.414357][  T842] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  582.417952][  T842] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  582.420457][  T842] usb 8-1: Product: syz
[  582.421795][  T842] usb 8-1: Manufacturer: syz
[  582.423286][  T842] usb 8-1: SerialNumber: syz
[  582.502445][T14709] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  582.633810][  T842] cdc_ncm 8-1:1.0: skipping garbage
[  582.642668][  T842] cdc_ncm 8-1:1.0: skipping garbage
[  582.648385][  T842] cdc_ncm 8-1:1.0: skipping garbage
[  582.653983][  T842] cdc_ncm 8-1:1.0: skipping garbage
[  582.657151][  T842] cdc_ncm 8-1:1.0: invalid descriptor buffer length
[  582.659307][  T842] cdc_ncm 8-1:1.0: CDC Union missing and no IAD found
[  582.661484][  T842] cdc_ncm 8-1:1.0: bind() failure
[  582.677048][  T842] usb 8-1: USB disconnect, device number 69
[  582.701922][   T46] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  582.711126][T11369] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  582.718786][T11369] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  582.728925][T11369] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  583.604966][  T842] usb 8-1: new high-speed USB device number 70 using dummy_hcd
[  583.776872][  T842] usb 8-1: config index 0 descriptor too short (expected 23569, got 27)
[  583.779535][  T842] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  583.783432][  T842] usb 8-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  583.786529][  T842] usb 8-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  583.788982][  T842] usb 8-1: Manufacturer: syz
[  583.792538][  T842] usb 8-1: config 0 descriptor??
[  583.834957][  T842] rc_core: IR keymap rc-hauppauge not found
[  583.836974][  T842] Registered IR keymap rc-empty
[  583.839346][  T842] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0
[  583.843428][  T842] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0/input88
[  584.004477][ T6062] libceph: connect (1)[c::]:6789 error -101
[  584.006878][ T6062] libceph: mon0 (1)[c::]:6789 connect error
[  584.266274][ T6062] libceph: connect (1)[c::]:6789 error -101
[  584.268393][ T6062] libceph: mon0 (1)[c::]:6789 connect error
[  584.775409][ T6062] libceph: connect (1)[c::]:6789 error -101
[  584.777638][ T6062] libceph: mon0 (1)[c::]:6789 connect error
[  584.838670][ T5385] Dev loop7: unable to read RDB block 3
[  584.840752][ T5385]  loop7: unable to read partition table
[  584.844443][ T5385] loop7: partition table beyond EOD, truncated
[  584.884627][T14761] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  584.887726][T14761] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  584.898817][T14761] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  584.903389][T14761] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  586.161003][T14771] netlink: 3 bytes leftover after parsing attributes in process `syz.2.2475'.
[  586.167772][T14771] batadv1: entered allmulticast mode
[  586.241656][T14773] input: syz1 as /devices/virtual/input/input89
[  586.335293][ T6062] libceph: connect (1)[c::]:6789 error -101
[  586.337476][ T6062] libceph: mon0 (1)[c::]:6789 connect error
[  586.367214][T14732] ceph: No mds server is up or the cluster is laggy
[  586.403126][  T842] usb 8-1: USB disconnect, device number 70
[  586.431835][T14775] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2476'.
[  586.435169][T14775] netlink: 6 bytes leftover after parsing attributes in process `syz.3.2476'.
[  586.447244][T14775] overlayfs: failed to resolve './bus': -2
[  586.814913][  T842] usb 8-1: new high-speed USB device number 71 using dummy_hcd
[  586.889422][T14786] vivid-000: disconnect
[  586.976266][  T842] usb 8-1: config index 0 descriptor too short (expected 23569, got 27)
[  586.979077][  T842] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  586.989952][  T842] usb 8-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  586.998466][  T842] usb 8-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  587.002055][  T842] usb 8-1: Manufacturer: syz
[  587.022405][  T842] usb 8-1: config 0 descriptor??
[  587.114904][  T842] rc_core: IR keymap rc-hauppauge not found
[  587.117315][  T842] Registered IR keymap rc-empty
[  587.120244][  T842] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0
[  587.125835][  T842] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0/input90
[  587.276354][  T842] libceph: connect (1)[c::]:6789 error -101
[  587.278413][  T842] libceph: mon0 (1)[c::]:6789 connect error
[  587.422710][T14803] netlink: 3 bytes leftover after parsing attributes in process `syz.1.2484'.
[  587.448668][T14803] batadv1: entered allmulticast mode
[  587.494783][T14804] input: syz1 as /devices/virtual/input/input91
[  587.547587][  T842] libceph: connect (1)[c::]:6789 error -101
[  587.549593][  T842] libceph: mon0 (1)[c::]:6789 connect error
[  587.651162][T14779] vivid-000: reconnect
[  588.055252][  T842] libceph: connect (1)[c::]:6789 error -101
[  588.057426][  T842] libceph: mon0 (1)[c::]:6789 connect error
[  588.361545][T14811] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2486'.
[  589.064381][T14821] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2488'.
[  589.072503][T14821] netlink: 7983 bytes leftover after parsing attributes in process `syz.0.2488'.
[  589.076071][T14821] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2488'.
[  589.295464][  T842] libceph: connect (1)[c::]:6789 error -101
[  589.304263][  T842] libceph: mon0 (1)[c::]:6789 connect error
[  589.342544][T14826] fuse: Bad value for 'group_id'
[  589.350643][T14826] fuse: Bad value for 'group_id'
[  589.495662][T14777] ceph: No mds server is up or the cluster is laggy
[  589.552538][   T10] usb 8-1: USB disconnect, device number 71
[  589.572207][T14830] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2492'.
[  589.867576][T14842] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2496'.
[  589.895658][T14842] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2496'.
[  590.849007][T14851] netlink: 3 bytes leftover after parsing attributes in process `syz.0.2498'.
[  590.947671][T14853] input: syz1 as /devices/virtual/input/input92
[  591.635041][T14857] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2499'.
[  592.153485][ T5385] Dev loop7: unable to read RDB block 3
[  592.155404][ T5385]  loop7: unable to read partition table
[  592.157249][ T5385] loop7: partition table beyond EOD, truncated
[  592.442394][T14851] batadv1: entered allmulticast mode
[  592.447513][T14854] workqueue: Failed to create a rescuer kthread for wq "wg-crypt-wireguard%d": -EINTR
[  592.724924][  T842] usb 7-1: new high-speed USB device number 29 using dummy_hcd
[  592.885590][  T842] usb 7-1: Using ep0 maxpacket: 32
[  592.898069][  T842] usb 7-1: config index 0 descriptor too short (expected 29220, got 36)
[  592.901133][  T842] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  592.903988][  T842] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81
[  592.907525][  T842] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  592.910750][  T842] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  592.913717][  T842] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  592.918045][  T842] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  592.920866][  T842] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  592.925607][  T842] usb 7-1: config 0 descriptor??
[  593.070897][T14875] mkiss: ax0: crc mode is auto.
[  593.131604][  T842] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 29 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  593.141028][  T842] usb 7-1: USB disconnect, device number 29
[  593.147794][  T842] usblp0: removed
[  593.194325][T14878] Context (ID=0x10) not attached to queue pair (handle=0x4d3:0x0)
[  594.162266][T14884] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2508'.
[  594.629130][T14888] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2509'.
[  594.886739][T14896] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2511'.
[  594.893703][T14896] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2511'.
[  594.956493][T14899] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  594.962603][T14899] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  594.968769][T14899] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  594.973193][T14899] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  596.094896][T11527] usb 7-1: new high-speed USB device number 30 using dummy_hcd
[  596.254872][T11527] usb 7-1: Using ep0 maxpacket: 16
[  596.258224][T11527] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  596.262383][T11527] usb 7-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18
[  596.287260][T11527] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  596.290278][T11527] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  596.292768][T11527] usb 7-1: SerialNumber: syz
[  597.571709][T14915] sit0: entered promiscuous mode
[  597.580348][T14915] netlink: 'syz.1.2516': attribute type 1 has an invalid length.
[  597.582812][T14915] netlink: 1 bytes leftover after parsing attributes in process `syz.1.2516'.
[  597.775056][T14926] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2519'.
[  597.830254][T14930] netlink: 92 bytes leftover after parsing attributes in process `syz.1.2517'.
[  597.833337][T14930] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2517'.
[  597.910878][T14935] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2520'.
[  597.913753][T14935] netlink: 7983 bytes leftover after parsing attributes in process `syz.3.2520'.
[  598.630147][T11527] usb 7-1: USB disconnect, device number 30
[  598.984873][  T842] usb 5-1: new high-speed USB device number 106 using dummy_hcd
[  599.044943][T11527] usb 7-1: new high-speed USB device number 31 using dummy_hcd
[  599.135781][  T842] usb 5-1: too many configurations: 9, using maximum allowed: 8
[  599.139653][  T842] usb 5-1: config 64 has 1 interface, different from the descriptor's value: 9
[  599.142569][  T842] usb 5-1: config 64 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  599.155029][  T842] usb 5-1: config 64 interface 0 has no altsetting 0
[  599.159216][  T842] usb 5-1: config 64 has 1 interface, different from the descriptor's value: 9
[  599.162982][  T842] usb 5-1: config 64 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  599.168869][  T842] usb 5-1: config 64 interface 0 has no altsetting 0
[  599.172974][  T842] usb 5-1: config 64 has 1 interface, different from the descriptor's value: 9
[  599.177205][  T842] usb 5-1: config 64 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  599.182118][  T842] usb 5-1: config 64 interface 0 has no altsetting 0
[  599.185604][  T842] usb 5-1: config 64 has 1 interface, different from the descriptor's value: 9
[  599.194999][  T842] usb 5-1: config 64 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  599.198694][  T842] usb 5-1: config 64 interface 0 has no altsetting 0
[  599.202560][  T842] usb 5-1: config 64 has 1 interface, different from the descriptor's value: 9
[  599.204961][T11527] usb 7-1: device descriptor read/64, error -71
[  599.205910][  T842] usb 5-1: config 64 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  599.211600][  T842] usb 5-1: config 64 interface 0 has no altsetting 0
[  599.214716][  T842] usb 5-1: config 64 has 1 interface, different from the descriptor's value: 9
[  599.217700][  T842] usb 5-1: config 64 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  599.221184][  T842] usb 5-1: config 64 interface 0 has no altsetting 0
[  599.224172][  T842] usb 5-1: config 64 has 1 interface, different from the descriptor's value: 9
[  599.227334][  T842] usb 5-1: config 64 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  599.230809][  T842] usb 5-1: config 64 interface 0 has no altsetting 0
[  599.233828][  T842] usb 5-1: config 64 has 1 interface, different from the descriptor's value: 9
[  599.237336][  T842] usb 5-1: config 64 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  599.240802][  T842] usb 5-1: config 64 interface 0 has no altsetting 0
[  599.244562][  T842] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  599.247999][  T842] usb 5-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  599.250644][  T842] usb 5-1: Product: syz
[  599.252017][  T842] usb 5-1: Manufacturer: syz
[  599.253899][  T842] usb 5-1: SerialNumber: syz
[  599.259509][  T842] yurex 5-1:64.0: USB YUREX device now attached to Yurex #0
[  599.454952][T11527] usb 7-1: new high-speed USB device number 32 using dummy_hcd
[  599.604894][T11527] usb 7-1: device descriptor read/64, error -71
[  599.716109][T11527] usb usb7-port1: attempt power cycle
[  600.064894][T11527] usb 7-1: new high-speed USB device number 33 using dummy_hcd
[  600.085378][T11527] usb 7-1: device descriptor read/8, error -71
[  600.294982][ T6061] usb 8-1: new high-speed USB device number 72 using dummy_hcd
[  600.324918][T11527] usb 7-1: new high-speed USB device number 34 using dummy_hcd
[  600.345557][T11527] usb 7-1: device descriptor read/8, error -71
[  600.444925][ T6061] usb 8-1: Using ep0 maxpacket: 8
[  600.448735][ T6061] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  600.452120][ T6061] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  600.455473][T11527] usb usb7-port1: unable to enumerate USB device
[  600.457620][ T6061] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  600.461485][ T6061] usb 8-1: config 0 descriptor??
[  600.671108][T14955] __nla_validate_parse: 1 callbacks suppressed
[  600.671124][T14955] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2526'.
[  600.706464][ T6061] iowarrior 8-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior1
[  601.535227][    C3] usb 5-1: yurex_control_callback - control failed: -2
[  601.542812][ T6029] usb 5-1: USB disconnect, device number 106
[  601.555250][ T6029] yurex 5-1:64.0: USB YUREX #0 now disconnected
[  601.639250][  T842] usb 8-1: USB disconnect, device number 72
[  601.762039][T14963] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2529'.
[  601.813408][T14965] FAULT_INJECTION: forcing a failure.
[  601.813408][T14965] name failslab, interval 1, probability 0, space 0, times 0
[  601.818525][T14965] CPU: 0 UID: 0 PID: 14965 Comm: syz.2.2530 Not tainted syzkaller #0 PREEMPT(full) 
[  601.818542][T14965] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  601.818548][T14965] Call Trace:
[  601.818552][T14965]  <TASK>
[  601.818557][T14965]  dump_stack_lvl+0x16c/0x1f0
[  601.818577][T14965]  should_fail_ex+0x512/0x640
[  601.818593][T14965]  ? fs_reclaim_acquire+0xae/0x150
[  601.818611][T14965]  ? p9pdu_readf+0x116c/0x1e10
[  601.818621][T14965]  should_failslab+0xc2/0x120
[  601.818637][T14965]  __kmalloc_noprof+0xd2/0x510
[  601.818650][T14965]  ? __asan_memcpy+0x3c/0x60
[  601.818664][T14965]  p9pdu_readf+0x116c/0x1e10
[  601.818677][T14965]  ? __pfx_p9pdu_readf+0x10/0x10
[  601.818694][T14965]  ? __pfx_autoremove_wake_function+0x10/0x10
[  601.818718][T14965]  p9_client_create+0xcaa/0x11c0
[  601.818738][T14965]  ? __pfx_p9_client_create+0x10/0x10
[  601.818757][T14965]  ? rcu_is_watching+0x12/0xc0
[  601.818771][T14965]  ? lockdep_init_map_type+0x5c/0x280
[  601.818787][T14965]  ? __raw_spin_lock_init+0x3a/0x110
[  601.818807][T14965]  v9fs_session_init+0x1f7/0x1a80
[  601.818830][T14965]  ? __pfx_v9fs_session_init+0x10/0x10
[  601.818855][T14965]  v9fs_mount+0xc5/0xa90
[  601.818864][T14965]  ? rcu_is_watching+0x12/0xc0
[  601.818875][T14965]  ? __pfx_v9fs_mount+0x10/0x10
[  601.818885][T14965]  ? aa_get_newest_label+0xd2/0x250
[  601.818898][T14965]  ? apparmor_capable+0x114/0x1d0
[  601.818911][T14965]  ? __pfx_v9fs_mount+0x10/0x10
[  601.818921][T14965]  legacy_get_tree+0x10c/0x220
[  601.818936][T14965]  vfs_get_tree+0x8e/0x340
[  601.818947][T14965]  path_mount+0x1513/0x2000
[  601.818964][T14965]  ? __pfx_path_mount+0x10/0x10
[  601.818979][T14965]  ? kmem_cache_free+0x2d1/0x4d0
[  601.818992][T14965]  ? putname+0x154/0x1a0
[  601.819007][T14965]  ? getname_flags.part.0+0x1c5/0x550
[  601.819028][T14965]  ? __ia32_sys_mount+0x28b/0x310
[  601.819042][T14965]  __ia32_sys_mount+0x28b/0x310
[  601.819057][T14965]  ? __pfx___ia32_sys_mount+0x10/0x10
[  601.819073][T14965]  ? rcu_is_watching+0x12/0xc0
[  601.819086][T14965]  __do_fast_syscall_32+0x7c/0x3a0
[  601.819104][T14965]  do_fast_syscall_32+0x32/0x80
[  601.819120][T14965]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  601.819135][T14965] RIP: 0023:0xf7f13579
[  601.819143][T14965] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  601.819154][T14965] RSP: 002b:00000000f542655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  601.819166][T14965] RAX: ffffffffffffffda RBX: 0000000080000040 RCX: 0000000080000100
[  601.819173][T14965] RDX: 0000000080000140 RSI: 0000000000000002 RDI: 0000000080000300
[  601.819180][T14965] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  601.819187][T14965] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  601.819193][T14965] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  601.819207][T14965]  </TASK>
[  603.194934][ T6061] usb 7-1: new high-speed USB device number 35 using dummy_hcd
[  603.364952][ T6061] usb 7-1: Using ep0 maxpacket: 16
[  603.370124][ T6061] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  603.374497][ T6061] usb 7-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18
[  603.384708][ T6061] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  603.389160][ T6061] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  603.393121][ T6061] usb 7-1: SerialNumber: syz
[  603.500673][T14992] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  603.503972][T14992] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  603.627377][T14990] Set syz1 is full, maxelem 65536 reached
[  603.806326][ T6062] usb 5-1: new high-speed USB device number 107 using dummy_hcd
[  603.935117][ T6062] usb 5-1: device descriptor read/64, error -71
[  604.024978][ T6061] usb 8-1: new high-speed USB device number 73 using dummy_hcd
[  604.174873][ T6061] usb 8-1: Using ep0 maxpacket: 16
[  604.175140][ T6062] usb 5-1: new high-speed USB device number 108 using dummy_hcd
[  604.177979][ T6061] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  604.182064][ T6061] usb 8-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18
[  604.187943][ T6061] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  604.190830][ T6061] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  604.193376][ T6061] usb 8-1: SerialNumber: syz
[  604.304923][ T6062] usb 5-1: device descriptor read/64, error -71
[  604.415173][ T6062] usb usb5-port1: attempt power cycle
[  604.633064][ T6061] IPVS: starting estimator thread 0...
[  604.734998][T15002] IPVS: using max 43 ests per chain, 103200 per kthread
[  604.765005][ T6062] usb 5-1: new high-speed USB device number 109 using dummy_hcd
[  604.785521][ T6062] usb 5-1: device descriptor read/8, error -71
[  605.034909][ T6062] usb 5-1: new high-speed USB device number 110 using dummy_hcd
[  605.066857][ T6062] usb 5-1: device descriptor read/8, error -71
[  605.175193][ T6062] usb usb5-port1: unable to enumerate USB device
[  605.180673][  T842] usb 7-1: USB disconnect, device number 35
[  605.302951][T15007] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2540'.
[  605.661212][T15012] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2542'.
[  606.533324][T15021] FAULT_INJECTION: forcing a failure.
[  606.533324][T15021] name failslab, interval 1, probability 0, space 0, times 0
[  606.537425][T15021] CPU: 0 UID: 0 PID: 15021 Comm: syz.0.2544 Not tainted syzkaller #0 PREEMPT(full) 
[  606.537441][T15021] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  606.537448][T15021] Call Trace:
[  606.537453][T15021]  <TASK>
[  606.537458][T15021]  dump_stack_lvl+0x16c/0x1f0
[  606.537477][T15021]  should_fail_ex+0x512/0x640
[  606.537493][T15021]  ? fs_reclaim_acquire+0xae/0x150
[  606.537512][T15021]  ? p9pdu_readf+0x116c/0x1e10
[  606.537522][T15021]  should_failslab+0xc2/0x120
[  606.537550][T15021]  __kmalloc_noprof+0xd2/0x510
[  606.537564][T15021]  ? __asan_memcpy+0x3c/0x60
[  606.537578][T15021]  p9pdu_readf+0x116c/0x1e10
[  606.537591][T15021]  ? __pfx_p9pdu_readf+0x10/0x10
[  606.537609][T15021]  ? __pfx_autoremove_wake_function+0x10/0x10
[  606.537634][T15021]  p9_client_create+0xcaa/0x11c0
[  606.537653][T15021]  ? __pfx_p9_client_create+0x10/0x10
[  606.537672][T15021]  ? rcu_is_watching+0x12/0xc0
[  606.537686][T15021]  ? lockdep_init_map_type+0x5c/0x280
[  606.537702][T15021]  ? __raw_spin_lock_init+0x3a/0x110
[  606.537721][T15021]  v9fs_session_init+0x1f7/0x1a80
[  606.537744][T15021]  ? __pfx_v9fs_session_init+0x10/0x10
[  606.537770][T15021]  v9fs_mount+0xc5/0xa90
[  606.537779][T15021]  ? rcu_is_watching+0x12/0xc0
[  606.537790][T15021]  ? __pfx_v9fs_mount+0x10/0x10
[  606.537800][T15021]  ? aa_get_newest_label+0xd2/0x250
[  606.537813][T15021]  ? apparmor_capable+0x114/0x1d0
[  606.537826][T15021]  ? __pfx_v9fs_mount+0x10/0x10
[  606.537836][T15021]  legacy_get_tree+0x10c/0x220
[  606.537867][T15021]  vfs_get_tree+0x8e/0x340
[  606.537879][T15021]  path_mount+0x1513/0x2000
[  606.537896][T15021]  ? __pfx_path_mount+0x10/0x10
[  606.537911][T15021]  ? kmem_cache_free+0x2d1/0x4d0
[  606.537924][T15021]  ? putname+0x154/0x1a0
[  606.537938][T15021]  ? getname_flags.part.0+0x1c5/0x550
[  606.537960][T15021]  ? __ia32_sys_mount+0x28b/0x310
[  606.537973][T15021]  __ia32_sys_mount+0x28b/0x310
[  606.537988][T15021]  ? __pfx___ia32_sys_mount+0x10/0x10
[  606.538005][T15021]  ? rcu_is_watching+0x12/0xc0
[  606.538018][T15021]  __do_fast_syscall_32+0x7c/0x3a0
[  606.538035][T15021]  do_fast_syscall_32+0x32/0x80
[  606.538050][T15021]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  606.538064][T15021] RIP: 0023:0xf704e579
[  606.538073][T15021] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  606.538084][T15021] RSP: 002b:00000000f543e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  606.538095][T15021] RAX: ffffffffffffffda RBX: 0000000080000040 RCX: 0000000080000100
[  606.538103][T15021] RDX: 0000000080000140 RSI: 0000000000000002 RDI: 0000000080000300
[  606.538109][T15021] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  606.538116][T15021] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  606.538122][T15021] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  606.538136][T15021]  </TASK>
[  606.682426][ T6062] usb 8-1: USB disconnect, device number 73
[  606.768007][T15026] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  606.774577][T15026] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  607.014861][ T6029] usb 5-1: new high-speed USB device number 111 using dummy_hcd
[  607.074873][  T842] usb 7-1: new high-speed USB device number 36 using dummy_hcd
[  607.164873][ T6029] usb 5-1: Using ep0 maxpacket: 32
[  607.168313][ T6029] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11
[  607.171697][ T6029] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  607.176017][ T6029] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xB7, changing to 0x87
[  607.180432][ T6029] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  607.186478][ T6029] usb 5-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68
[  607.190017][ T6029] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  607.193141][ T6029] usb 5-1: Product: syz
[  607.194920][ T6029] usb 5-1: Manufacturer: syz
[  607.196725][ T6029] usb 5-1: SerialNumber: syz
[  607.199831][ T6029] usb 5-1: config 0 descriptor??
[  607.204638][ T6029] input: Generic X-Box pad as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input93
[  607.212701][ T5370] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  607.217649][ T5370] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  607.223652][ T5370] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  607.228169][ T5370] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  607.236204][  T842] usb 7-1: config index 0 descriptor too short (expected 23569, got 27)
[  607.239349][  T842] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  607.243602][T14651] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  607.248247][ T5370] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  607.252503][  T842] usb 7-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  607.252641][ T5370] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  607.260071][  T842] usb 7-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  607.262736][  T842] usb 7-1: Manufacturer: syz
[  607.264609][ T5370] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  607.270168][  T842] usb 7-1: config 0 descriptor??
[  607.315071][  T842] rc_core: IR keymap rc-hauppauge not found
[  607.317147][  T842] Registered IR keymap rc-empty
[  607.319243][  T842] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0
[  607.323524][  T842] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0/input94
[  607.404696][T15026] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  607.407676][T15026] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  607.410371][T15026] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  607.421668][T15027] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  607.423926][T15026] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  607.489609][  T842] libceph: connect (1)[c::]:6789 error -101
[  607.492480][  T842] libceph: mon0 (1)[c::]:6789 connect error
[  607.582338][ T6061] usb 5-1: USB disconnect, device number 111
[  607.755224][  T842] libceph: connect (1)[c::]:6789 error -101
[  607.757325][  T842] libceph: mon0 (1)[c::]:6789 connect error
[  608.278098][  T842] libceph: connect (1)[c::]:6789 error -101
[  608.280352][  T842] libceph: mon0 (1)[c::]:6789 connect error
[  608.665869][T15059] Set syz1 is full, maxelem 65536 reached
[  608.874979][ T6029] usb 5-1: new high-speed USB device number 112 using dummy_hcd
[  609.004954][ T6029] usb 5-1: device descriptor read/64, error -71
[  609.090532][T15063] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2554'.
[  609.093409][T15063] netlink: 7983 bytes leftover after parsing attributes in process `syz.1.2554'.
[  609.096470][T15063] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2554'.
[  609.244981][ T6029] usb 5-1: new high-speed USB device number 113 using dummy_hcd
[  609.297553][  T842] libceph: connect (1)[c::]:6789 error -101
[  609.300094][  T842] libceph: mon0 (1)[c::]:6789 connect error
[  609.375215][ T6029] usb 5-1: device descriptor read/64, error -71
[  609.485008][ T6029] usb usb5-port1: attempt power cycle
[  609.826006][ T6029] usb 5-1: new high-speed USB device number 114 using dummy_hcd
[  609.830818][T15031] ceph: No mds server is up or the cluster is laggy
[  609.845726][ T6029] usb 5-1: device descriptor read/8, error -71
[  609.863412][ T6061] usb 7-1: USB disconnect, device number 36
[  610.085024][ T6029] usb 5-1: new high-speed USB device number 115 using dummy_hcd
[  610.105891][ T6029] usb 5-1: device descriptor read/8, error -71
[  610.135206][T15077] netlink: 'syz.2.2557': attribute type 4 has an invalid length.
[  610.215153][ T6029] usb usb5-port1: unable to enumerate USB device
[  611.614069][T15100] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2564'.
[  611.617409][T15100] netlink: 7983 bytes leftover after parsing attributes in process `syz.1.2564'.
[  611.620346][T15100] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2564'.
[  611.643427][T15101] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2565'.
[  611.646678][T15101] netlink: 7983 bytes leftover after parsing attributes in process `syz.0.2565'.
[  611.650032][T15101] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2565'.
[  612.270618][T15106] netlink: 'syz.2.2566': attribute type 13 has an invalid length.
[  613.085121][ T6029] usb 5-1: new high-speed USB device number 116 using dummy_hcd
[  613.257755][T15106] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  613.299445][T15103] lo speed is unknown, defaulting to 1000
[  613.364673][T15124] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  613.368879][T15124] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  613.407942][ T6029] usb 5-1: too many configurations: 9, using maximum allowed: 8
[  613.449293][ T6029] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  613.452158][ T6029] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  613.455992][ T6029] usb 5-1: config 0 interface 0 has no altsetting 0
[  613.475551][ T6029] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  613.478339][ T6029] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  613.481657][ T6029] usb 5-1: config 0 interface 0 has no altsetting 0
[  613.484638][ T6029] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  613.487786][ T6029] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  613.491105][ T6029] usb 5-1: config 0 interface 0 has no altsetting 0
[  613.493868][ T6029] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  613.496969][ T6029] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  613.500340][ T6029] usb 5-1: config 0 interface 0 has no altsetting 0
[  613.506337][ T6029] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  613.509068][ T6029] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  613.512363][ T6029] usb 5-1: config 0 interface 0 has no altsetting 0
[  613.523067][ T6029] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  613.527504][ T6029] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  613.531129][ T6029] usb 5-1: config 0 interface 0 has no altsetting 0
[  613.543633][ T6029] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  613.548861][ T6029] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  613.554882][ T6029] usb 5-1: config 0 interface 0 has no altsetting 0
[  613.570630][ T6029] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  613.573445][ T6029] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  613.576949][ T6029] usb 5-1: config 0 interface 0 has no altsetting 0
[  613.581064][ T6029] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  613.583897][ T6029] usb 5-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  613.587161][ T6029] usb 5-1: Product: syz
[  613.588501][ T6029] usb 5-1: Manufacturer: syz
[  613.589960][ T6029] usb 5-1: SerialNumber: syz
[  613.593686][ T6029] usb 5-1: config 0 descriptor??
[  613.616407][ T6029] yurex 5-1:0.0: USB YUREX device now attached to Yurex #0
[  613.674952][  T842] usb 8-1: new high-speed USB device number 74 using dummy_hcd
[  613.809174][ T6061] usb 5-1: USB disconnect, device number 116
[  613.813354][ T6061] yurex 5-1:0.0: USB YUREX #0 now disconnected
[  613.824868][  T842] usb 8-1: Using ep0 maxpacket: 32
[  613.827696][  T842] usb 8-1: config index 0 descriptor too short (expected 29220, got 36)
[  613.830282][  T842] usb 8-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  613.832933][  T842] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 81
[  613.835792][  T842] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  613.839458][  T842] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  613.842769][  T842] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  613.848501][  T842] usb 8-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  613.852606][  T842] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  613.857256][  T842] usb 8-1: config 0 descriptor??
[  614.066242][  T842] usblp 8-1:0.0: usblp0: USB Bidirectional printer dev 74 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  614.071677][  T842] usb 8-1: USB disconnect, device number 74
[  614.076055][  T842] usblp0: removed
[  614.094921][T11527] usb 7-1: new high-speed USB device number 37 using dummy_hcd
[  614.225406][T11527] usb 7-1: device descriptor read/64, error -71
[  614.464904][T11527] usb 7-1: new high-speed USB device number 38 using dummy_hcd
[  614.594891][T11527] usb 7-1: device descriptor read/64, error -71
[  614.705087][T11527] usb usb7-port1: attempt power cycle
[  615.044952][T11527] usb 7-1: new high-speed USB device number 39 using dummy_hcd
[  615.065316][T11527] usb 7-1: device descriptor read/8, error -71
[  615.314949][T11527] usb 7-1: new high-speed USB device number 40 using dummy_hcd
[  615.400792][T11527] usb 7-1: device descriptor read/8, error -71
[  615.506060][T11527] usb usb7-port1: unable to enumerate USB device
[  616.760205][   T40] kauditd_printk_skb: 6 callbacks suppressed
[  616.760217][   T40] audit: type=1804 audit(1756901616.804:6776): pid=15161 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.2580" name="/newroot/599/bus/bus" dev="overlay" ino=3188 res=1 errno=0
[  616.802373][   T40] audit: type=1804 audit(1756901616.854:6777): pid=15161 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.2580" name="/newroot/599/bus/bus" dev="overlay" ino=3188 res=1 errno=0
[  617.308733][T15167] netlink: 'syz.2.2581': attribute type 4 has an invalid length.
[  617.588883][ T5985] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  617.598170][ T5985] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  617.602902][ T5985] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  617.611467][ T5985] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  617.615217][ T5985] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  617.624581][ T5977] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  617.630378][ T5977] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  617.638082][ T5977] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  617.654785][ T5977] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  617.662562][ T5977] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  618.120253][   T13] smc: removing ib device syz1
[  618.135957][   T61] syz1: Port: 1 Link DOWN
[  618.161094][T15170] lo speed is unknown, defaulting to 1000
[  618.669555][T15170] chnl_net:caif_netlink_parms(): no params data found
[  618.976795][T15193] netlink: 3 bytes leftover after parsing attributes in process `syz.2.2585'.
[  619.039645][T15195] input: syz1 as /devices/virtual/input/input95
[  619.775096][ T5977] Bluetooth: hci2: command tx timeout
[  620.370765][T15193] batadv1: entered allmulticast mode
[  620.406972][T15170] bridge0: port 1(bridge_slave_0) entered blocking state
[  620.409402][T15170] bridge0: port 1(bridge_slave_0) entered disabled state
[  620.411830][T15170] bridge_slave_0: entered allmulticast mode
[  620.414983][T15170] bridge_slave_0: entered promiscuous mode
[  620.482772][   T12] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  620.486312][   T12] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  620.502492][T15170] bridge0: port 2(bridge_slave_1) entered blocking state
[  620.504766][T15170] bridge0: port 2(bridge_slave_1) entered disabled state
[  620.509135][T15170] bridge_slave_1: entered allmulticast mode
[  620.512846][T15170] bridge_slave_1: entered promiscuous mode
[  620.549275][T15170] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  620.553746][T15170] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  620.584623][   T12] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  620.588164][   T12] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  620.610034][T15170] team0: Port device team_slave_0 added
[  620.613674][T15170] team0: Port device team_slave_1 added
[  620.658535][   T12] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  620.662464][   T12] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  620.671438][T15170] batman_adv: batadv0: Adding interface: batadv_slave_0
[  620.674090][T15170] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  620.684048][T15170] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  620.689543][T15170] batman_adv: batadv0: Adding interface: batadv_slave_1
[  620.692581][T15170] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  620.703222][  T842] usb 5-1: new high-speed USB device number 117 using dummy_hcd
[  620.704855][T15170] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  620.750129][T15170] hsr_slave_0: entered promiscuous mode
[  620.752332][T15170] hsr_slave_1: entered promiscuous mode
[  620.754424][T15170] debugfs: 'hsr0' already exists in 'hsr'
[  620.756464][T15170] Cannot create hsr debugfs directory
[  620.783265][   T12] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  620.787132][   T12] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  620.968387][   T12] bridge_slave_1: left allmulticast mode
[  620.970239][   T12] bridge_slave_1: left promiscuous mode
[  620.972519][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  620.981394][   T12] bridge_slave_0: left allmulticast mode
[  620.983224][   T12] bridge_slave_0: left promiscuous mode
[  620.985192][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  621.074882][  T842] usb 5-1: Using ep0 maxpacket: 32
[  621.424591][  T842] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[  621.810500][  T842] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  621.813271][  T842] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81
[  621.816103][  T842] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  621.819075][  T842] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  621.822052][  T842] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  621.826113][  T842] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  621.828915][  T842] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  621.832616][  T842] usb 5-1: config 0 descriptor??
[  621.865031][ T5977] Bluetooth: hci2: command tx timeout
[  622.042863][  T842] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 117 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  622.047758][  T842] usb 5-1: USB disconnect, device number 117
[  622.053730][  T842] usblp0: removed
[  622.621534][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  622.627255][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  622.631025][   T12] bond0 (unregistering): Released all slaves
[  623.507825][T15230] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  623.856629][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  623.858735][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[  623.858979][T15236] netlink: 3 bytes leftover after parsing attributes in process `syz.0.2593'.
[  623.906984][   T12] tipc: Left network mode
[  623.923789][   T12] IPVS: stopping master sync thread 9825 ...
[  623.935371][ T5977] Bluetooth: hci2: command tx timeout
[  623.946593][T15236] batadv1: entered allmulticast mode
[  623.967377][T15237] input: syz1 as /devices/virtual/input/input96
[  624.482089][T15253] netlink: 3 bytes leftover after parsing attributes in process `syz.1.2594'.
[  624.609934][T15254] input: syz1 as /devices/virtual/input/input97
[  624.695756][T15253] batadv1: entered allmulticast mode
[  625.059138][T15170] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  625.231018][T15170] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  625.373447][T15265] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2597'.
[  625.757439][T15275] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2598'.
[  626.016773][ T5977] Bluetooth: hci2: command tx timeout
[  626.644779][T15170] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  626.683542][T15170] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  626.774116][T15293] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2599'.
[  626.777118][T15293] netlink: 7983 bytes leftover after parsing attributes in process `syz.0.2599'.
[  626.780763][T15293] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2599'.
[  626.834682][   T12] hsr_slave_0: left promiscuous mode
[  626.836996][   T12] hsr_slave_1: left promiscuous mode
[  626.839025][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  626.841787][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  626.844899][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  626.847758][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  626.874486][   T12] veth0_macvtap: left promiscuous mode
[  626.877783][   T12] veth1_vlan: left allmulticast mode
[  626.879751][   T12] veth1_vlan: left promiscuous mode
[  626.881462][   T12] veth0_vlan: left promiscuous mode
[  626.991246][   T12] pim6reg (unregistering): left allmulticast mode
[  627.024944][T11527] usb 7-1: new high-speed USB device number 41 using dummy_hcd
[  627.194901][T11527] usb 7-1: Using ep0 maxpacket: 32
[  627.200055][T11527] usb 7-1: config index 0 descriptor too short (expected 29220, got 36)
[  627.203591][T11527] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  627.207565][T11527] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81
[  627.211327][T11527] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  627.215869][T11527] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  627.219347][T11527] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  627.223429][T11527] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  627.226284][T11527] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  627.229981][T11527] usb 7-1: config 0 descriptor??
[  627.438467][T11527] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 41 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  627.455179][T11527] usb 7-1: USB disconnect, device number 41
[  627.473233][T15308] netlink: 'syz.0.2602': attribute type 4 has an invalid length.
[  627.521581][T11527] usblp0: removed
[  627.798359][   T12] team0 (unregistering): Port device team_slave_1 removed
[  627.871069][   T12] team0 (unregistering): Port device team_slave_0 removed
[  628.425567][T15170] 8021q: adding VLAN 0 to HW filter on device bond0
[  628.436244][T15170] 8021q: adding VLAN 0 to HW filter on device team0
[  628.441702][ T1146] bridge0: port 1(bridge_slave_0) entered blocking state
[  628.444028][ T1146] bridge0: port 1(bridge_slave_0) entered forwarding state
[  628.451137][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  628.453546][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  628.642058][T15170] 8021q: adding VLAN 0 to HW filter on device batadv0
[  628.679200][T15170] veth0_vlan: entered promiscuous mode
[  628.684281][T15170] veth1_vlan: entered promiscuous mode
[  628.703340][T15170] veth0_macvtap: entered promiscuous mode
[  628.709281][T15170] veth1_macvtap: entered promiscuous mode
[  628.733509][T15170] batman_adv: batadv0: Interface activated: batadv_slave_0
[  628.741099][T15170] batman_adv: batadv0: Interface activated: batadv_slave_1
[  628.749550][ T1146] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  628.752635][ T1146] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  628.761674][ T1146] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  628.761765][ T1146] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  628.816087][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  628.821985][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  628.841462][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  628.843054][   T12] IPVS: stop unused estimator thread 0...
[  628.844119][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  628.894910][T15320] FAULT_INJECTION: forcing a failure.
[  628.894910][T15320] name failslab, interval 1, probability 0, space 0, times 0
[  628.899297][T15320] CPU: 0 UID: 0 PID: 15320 Comm: syz.3.2582 Not tainted syzkaller #0 PREEMPT(full) 
[  628.899316][T15320] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  628.899322][T15320] Call Trace:
[  628.899327][T15320]  <TASK>
[  628.899332][T15320]  dump_stack_lvl+0x16c/0x1f0
[  628.899351][T15320]  should_fail_ex+0x512/0x640
[  628.899367][T15320]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  628.899384][T15320]  should_failslab+0xc2/0x120
[  628.899400][T15320]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  628.899415][T15320]  ? kasprintf+0xc7/0x100
[  628.899428][T15320]  kvasprintf+0xbc/0x160
[  628.899438][T15320]  ? __pfx_kvasprintf+0x10/0x10
[  628.899451][T15320]  ? rcu_is_watching+0x12/0xc0
[  628.899463][T15320]  ? __call_rcu_common.constprop.0+0x3f0/0xa10
[  628.899483][T15320]  kasprintf+0xc7/0x100
[  628.899493][T15320]  ? __pfx_kasprintf+0x10/0x10
[  628.899505][T15320]  ? p9_req_put+0x1c6/0x250
[  628.899522][T15320]  ? p9_client_create+0xe16/0x11c0
[  628.899539][T15320]  p9_client_create+0xe37/0x11c0
[  628.899558][T15320]  ? __pfx_p9_client_create+0x10/0x10
[  628.899577][T15320]  ? rcu_is_watching+0x12/0xc0
[  628.899590][T15320]  ? lockdep_init_map_type+0x5c/0x280
[  628.899607][T15320]  ? __raw_spin_lock_init+0x3a/0x110
[  628.899627][T15320]  v9fs_session_init+0x1f7/0x1a80
[  628.899649][T15320]  ? __pfx_v9fs_session_init+0x10/0x10
[  628.899674][T15320]  v9fs_mount+0xc5/0xa90
[  628.899683][T15320]  ? rcu_is_watching+0x12/0xc0
[  628.899694][T15320]  ? __pfx_v9fs_mount+0x10/0x10
[  628.899704][T15320]  ? aa_get_newest_label+0xd2/0x250
[  628.899717][T15320]  ? apparmor_capable+0x114/0x1d0
[  628.899730][T15320]  ? __pfx_v9fs_mount+0x10/0x10
[  628.899740][T15320]  legacy_get_tree+0x10c/0x220
[  628.899755][T15320]  vfs_get_tree+0x8e/0x340
[  628.899766][T15320]  path_mount+0x1513/0x2000
[  628.899784][T15320]  ? __pfx_path_mount+0x10/0x10
[  628.899799][T15320]  ? kmem_cache_free+0x2d1/0x4d0
[  628.899811][T15320]  ? putname+0x154/0x1a0
[  628.899826][T15320]  ? getname_flags.part.0+0x1c5/0x550
[  628.899847][T15320]  ? __ia32_sys_mount+0x28b/0x310
[  628.899861][T15320]  __ia32_sys_mount+0x28b/0x310
[  628.899877][T15320]  ? __pfx___ia32_sys_mount+0x10/0x10
[  628.899893][T15320]  ? rcu_is_watching+0x12/0xc0
[  628.899906][T15320]  __do_fast_syscall_32+0x7c/0x3a0
[  628.899923][T15320]  do_fast_syscall_32+0x32/0x80
[  628.899939][T15320]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  628.899953][T15320] RIP: 0023:0xf702e579
[  628.899962][T15320] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  628.899973][T15320] RSP: 002b:00000000f541e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  628.899984][T15320] RAX: ffffffffffffffda RBX: 0000000080000040 RCX: 0000000080000100
[  628.899991][T15320] RDX: 0000000080000140 RSI: 0000000000000002 RDI: 0000000080000300
[  628.899998][T15320] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  628.900004][T15320] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  628.900011][T15320] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  628.900024][T15320]  </TASK>
[  630.079381][T15335] Context (ID=0x10) not attached to queue pair (handle=0x4d7:0x0)
[  631.070677][T15348] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2610'.
[  631.073939][T15348] netlink: 7983 bytes leftover after parsing attributes in process `syz.2.2610'.
[  631.077246][T15348] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2610'.
[  631.752854][T15350] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  631.761814][T15350] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  631.769010][T15350] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  631.772380][T15350] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  632.136698][   T34] usb 7-1: new high-speed USB device number 42 using dummy_hcd
[  632.154893][  T842] usb 8-1: new high-speed USB device number 75 using dummy_hcd
[  632.284936][   T34] usb 7-1: Using ep0 maxpacket: 32
[  632.288300][   T34] usb 7-1: config index 0 descriptor too short (expected 29220, got 36)
[  632.291019][   T34] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  632.293777][   T34] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81
[  632.297114][   T34] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  632.300127][   T34] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  632.303083][   T34] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  632.308416][   T34] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  632.311221][   T34] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  632.314903][  T842] usb 8-1: Using ep0 maxpacket: 8
[  632.319119][   T34] usb 7-1: config 0 descriptor??
[  632.323653][  T842] usb 8-1: too many configurations: 227, using maximum allowed: 8
[  632.347807][  T842] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  632.351279][  T842] usb 8-1: config 1 has 0 interfaces, different from the descriptor's value: 1
[  632.355079][  T842] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  632.359024][  T842] usb 8-1: config 1 has 0 interfaces, different from the descriptor's value: 1
[  632.362738][  T842] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  632.366250][  T842] usb 8-1: config 1 has 0 interfaces, different from the descriptor's value: 1
[  632.428221][  T842] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  632.431519][  T842] usb 8-1: config 1 has 0 interfaces, different from the descriptor's value: 1
[  632.436301][  T842] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  632.439630][  T842] usb 8-1: config 1 has 0 interfaces, different from the descriptor's value: 1
[  632.479682][  T842] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  632.482995][  T842] usb 8-1: config 1 has 0 interfaces, different from the descriptor's value: 1
[  632.500646][  T842] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  632.505078][  T842] usb 8-1: config 1 has 0 interfaces, different from the descriptor's value: 1
[  632.510354][  T842] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  632.514714][  T842] usb 8-1: config 1 has 0 interfaces, different from the descriptor's value: 1
[  632.530978][  T842] usb 8-1: New USB device found, idVendor=03f0, idProduct=23bb, bcdDevice=a4.e3
[  632.535181][  T842] usb 8-1: New USB device strings: Mfr=247, Product=28, SerialNumber=93
[  632.547022][   T34] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 42 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  632.554677][  T842] usb 8-1: Product: syz
[  632.556337][  T842] usb 8-1: Manufacturer: syz
[  632.557956][  T842] usb 8-1: SerialNumber: syz
[  632.564391][   T34] usb 7-1: USB disconnect, device number 42
[  632.575954][   T34] usblp0: removed
[  632.790767][T15360] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  632.799934][T15360] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  632.871637][T15368] input: syz1 as /devices/virtual/input/input98
[  633.689129][ T5985] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  633.698706][ T5985] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  633.701642][ T5985] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  633.704641][ T5985] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  633.707317][ T5985] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  633.740540][T15356] Set syz1 is full, maxelem 65536 reached
[  633.760048][  T842] usb 8-1: USB disconnect, device number 75
[  634.496612][   T73] usb 6-1: USB disconnect, device number 67
[  634.520661][   T13] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  634.537573][T15370] lo speed is unknown, defaulting to 1000
[  634.609151][   T13] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  634.653327][T15370] chnl_net:caif_netlink_parms(): no params data found
[  634.692265][   T13] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  634.735683][T15370] bridge0: port 1(bridge_slave_0) entered blocking state
[  634.738206][T15370] bridge0: port 1(bridge_slave_0) entered disabled state
[  634.740353][T15370] bridge_slave_0: entered allmulticast mode
[  634.742943][T15370] bridge_slave_0: entered promiscuous mode
[  634.746235][T15370] bridge0: port 2(bridge_slave_1) entered blocking state
[  634.748493][T15370] bridge0: port 2(bridge_slave_1) entered disabled state
[  634.750725][T15370] bridge_slave_1: entered allmulticast mode
[  634.753305][T15370] bridge_slave_1: entered promiscuous mode
[  634.784857][T15370] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  634.789408][T15370] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  634.829077][   T13] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  634.846810][T15370] team0: Port device team_slave_0 added
[  634.852408][T15370] team0: Port device team_slave_1 added
[  634.883811][T15370] batman_adv: batadv0: Adding interface: batadv_slave_0
[  634.886694][T15370] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  634.896840][T15370] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  634.903099][T15370] batman_adv: batadv0: Adding interface: batadv_slave_1
[  634.906741][T15370] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  634.916484][T15385] netlink: 3 bytes leftover after parsing attributes in process `syz.0.2619'.
[  634.918232][T15370] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  634.944751][T15385] batadv1: entered allmulticast mode
[  635.001105][T15390] input: syz1 as /devices/virtual/input/input99
[  635.060818][T15370] hsr_slave_0: entered promiscuous mode
[  635.087019][T15370] hsr_slave_1: entered promiscuous mode
[  635.103344][T15370] debugfs: 'hsr0' already exists in 'hsr'
[  635.110251][T15370] Cannot create hsr debugfs directory
[  635.750668][T15402] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2623'.
[  635.754462][T15402] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2623'.
[  635.785062][ T5985] Bluetooth: hci1: command tx timeout
[  635.799109][   T40] audit: type=1326 audit(1756901635.854:6778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15401 comm="syz.3.2623" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x0
[  636.048439][T15409] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2624'.
[  636.845010][   T10] usb 8-1: new high-speed USB device number 76 using dummy_hcd
[  637.025936][   T10] usb 8-1: Using ep0 maxpacket: 8
[  637.032149][   T10] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  637.035751][   T10] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  637.038537][   T10] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  637.046268][   T10] usb 8-1: config 0 descriptor??
[  637.159093][   T13] ip6gretap0 (unregistering): left promiscuous mode
[  637.257442][T15411] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2625'.
[  637.279428][   T10] iowarrior 8-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  637.538301][T11527] usb 8-1: USB disconnect, device number 76
[  637.854966][ T5985] Bluetooth: hci1: command tx timeout
[  638.091987][T15413] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2626'.
[  638.145523][T15415] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2626'.
[  638.556754][   T13] bond0 (unregistering): left promiscuous mode
[  638.558783][   T13] bond_slave_0: left promiscuous mode
[  638.560610][   T13] bond_slave_1: left promiscuous mode
[  638.574170][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  638.580068][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  638.583924][   T13] bond0 (unregistering): Released all slaves
[  638.629717][T15418] netlink: 76 bytes leftover after parsing attributes in process `syz.0.2627'.
[  638.679169][   T13] tipc: Left network mode
[  638.915065][  T842] usb 7-1: new high-speed USB device number 43 using dummy_hcd
[  639.185602][  T842] usb 7-1: Using ep0 maxpacket: 32
[  639.192494][  T842] usb 7-1: config index 0 descriptor too short (expected 29220, got 36)
[  639.195493][  T842] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  639.198459][  T842] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81
[  639.202599][  T842] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  639.206370][  T842] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  639.210301][  T842] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  639.215696][  T842] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  639.219257][  T842] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  639.238779][  T842] usb 7-1: config 0 descriptor??
[  639.324048][   T13] hsr_slave_0: left promiscuous mode
[  639.327200][   T13] hsr_slave_1: left promiscuous mode
[  639.329598][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  639.332005][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  639.336723][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  639.339028][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  639.370018][   T13] veth1_macvtap: left promiscuous mode
[  639.371899][   T13] veth0_macvtap: left promiscuous mode
[  639.373823][   T13] veth1_vlan: left promiscuous mode
[  639.450636][  T842] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 43 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  639.461202][  T842] usb 7-1: USB disconnect, device number 43
[  639.500341][  T842] usblp0: removed
[  639.913414][T15462] usb usb8: usbfs: interface 0 claimed by hub while 'syz.0.2634' resets device
[  639.935041][ T5985] Bluetooth: hci1: command tx timeout
[  640.003625][T15464] netlink: 3 bytes leftover after parsing attributes in process `syz.3.2633'.
[  640.151168][T15468] input: syz1 as /devices/virtual/input/input100
[  640.581596][   T13] team0 (unregistering): Port device team_slave_1 removed
[  640.669762][   T13] team0 (unregistering): Port device team_slave_0 removed
[  641.218945][T15472] overlayfs: failed to resolve 'xino=off': -2
[  641.226792][T15472] overlayfs: missing 'lowerdir'
[  641.309771][T15464] batadv1: entered allmulticast mode
[  641.350641][T15473] bridge0: port 2(bridge_slave_1) entered disabled state
[  641.353117][T15473] bridge0: port 1(bridge_slave_0) entered disabled state
[  641.367672][T15473] team_slave_0: left promiscuous mode
[  641.370306][T15473] team_slave_1: left promiscuous mode
[  641.423388][T15473] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  641.438792][T15473] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  641.600138][T15475] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2637'.
[  641.604357][   T46] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  641.609570][   T46] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  641.615673][   T46] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  641.621545][   T46] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  641.691664][T15370] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  641.705690][T15370] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  641.736999][T15370] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  641.772230][T15370] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  641.953682][   T13] IPVS: stop unused estimator thread 0...
[  642.015133][ T5985] Bluetooth: hci1: command tx timeout
[  642.060654][T15370] 8021q: adding VLAN 0 to HW filter on device bond0
[  642.088866][T15370] 8021q: adding VLAN 0 to HW filter on device team0
[  642.113549][T15487] overlayfs: missing 'lowerdir'
[  642.124882][ T1151] bridge0: port 1(bridge_slave_0) entered blocking state
[  642.127207][ T1151] bridge0: port 1(bridge_slave_0) entered forwarding state
[  642.153359][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  642.155668][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  642.445388][T15495] netlink: 'syz.0.2640': attribute type 4 has an invalid length.
[  642.644930][   T53] usb 7-1: new high-speed USB device number 44 using dummy_hcd
[  642.798422][   T53] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  642.801292][   T53] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  642.803879][   T53] usb 7-1: Product: syz
[  642.808655][   T53] usb 7-1: Manufacturer: syz
[  642.810817][   T53] usb 7-1: SerialNumber: syz
[  642.817578][   T53] usb 7-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  642.867811][   T53] usb 7-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  643.632395][T15506] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  643.645039][T15506] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  643.939464][T15370] 8021q: adding VLAN 0 to HW filter on device batadv0
[  643.945982][   T53] ath9k_htc 7-1:1.0: ath9k_htc: Target is unresponsive
[  643.948244][   T53] ath9k_htc: Failed to initialize the device
[  643.971526][   T53] usb 7-1: ath9k_htc: USB layer deinitialized
[  643.973945][T15370] veth0_vlan: entered promiscuous mode
[  643.987555][T15370] veth1_vlan: entered promiscuous mode
[  643.991623][T11527] usb 7-1: USB disconnect, device number 44
[  644.011017][T15370] veth0_macvtap: entered promiscuous mode
[  644.016612][T15370] veth1_macvtap: entered promiscuous mode
[  644.060922][T15370] batman_adv: batadv0: Interface activated: batadv_slave_0
[  644.071850][T15370] batman_adv: batadv0: Interface activated: batadv_slave_1
[  644.080140][   T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  644.089026][   T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  644.092063][   T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  644.116858][   T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  644.162681][ T1146] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  644.165727][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  644.165981][ T1146] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  644.169039][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  644.311604][T15516] netlink: 'syz.1.2617': attribute type 6 has an invalid length.
[  644.315145][T15516] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.2617'.
[  644.355063][ T6062] usb 5-1: new high-speed USB device number 118 using dummy_hcd
[  644.511211][ T6062] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
[  644.514209][ T6062] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  644.523577][ T6062] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  644.528424][ T6062] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  644.532987][ T6062] usb 5-1: Manufacturer: syz
[  644.534746][T15518] netlink: 'syz.2.2646': attribute type 21 has an invalid length.
[  644.536842][ T6062] usb 5-1: config 0 descriptor??
[  644.541987][T15518] netlink: 'syz.2.2646': attribute type 1 has an invalid length.
[  644.546425][T15518] netlink: 144 bytes leftover after parsing attributes in process `syz.2.2646'.
[  644.594882][ T6062] rc_core: IR keymap rc-hauppauge not found
[  644.596733][ T6062] Registered IR keymap rc-empty
[  644.599009][ T6062] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0
[  644.603369][ T6062] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input101
[  644.821843][T15515] libceph: connect (1)[c::]:6789 error -101
[  644.823906][T15515] libceph: mon0 (1)[c::]:6789 connect error
[  644.904957][T15526] netlink: 3 bytes leftover after parsing attributes in process `syz.3.2644'.
[  644.931154][T15528] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2647'.
[  644.931521][T15526] batadv1: entered allmulticast mode
[  645.085068][T15515] libceph: connect (1)[c::]:6789 error -101
[  645.087156][T15515] libceph: mon0 (1)[c::]:6789 connect error
[  645.172394][T15529] input: syz1 as /devices/virtual/input/input102
[  645.596298][T15515] libceph: connect (1)[c::]:6789 error -101
[  645.600191][T15515] libceph: mon0 (1)[c::]:6789 connect error
[  645.719711][T15534] infiniband syz1: set active
[  645.721330][T15534] infiniband syz1: added syz_tun
[  645.733405][T15537] netlink: 'syz.1.2648': attribute type 4 has an invalid length.
[  645.745721][T15534] RDS/IB: syz1: added
[  645.747069][T15534] smc: adding ib device syz1 with port count 1
[  645.749047][T15534] smc:    ib device syz1 port 1 has pnetid 
[  646.563918][T15552] netlink: 3 bytes leftover after parsing attributes in process `syz.1.2651'.
[  646.615759][T15552] batadv1: entered allmulticast mode
[  646.686932][T11527] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  646.694991][T11527] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  646.844900][T11527] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  646.847467][T11527] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  646.849979][T11527] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  646.854892][T11527] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  646.864895][T11527] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  646.867412][T11527] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  646.869926][T11527] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  646.874598][T11527] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  646.889402][T11527] hid-generic 0000:007F:FFFFFFFE.0007: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  647.113253][T15511] ceph: No mds server is up or the cluster is laggy
[  647.264988][T11527] usb 5-1: USB disconnect, device number 118
[  648.044943][T11527] usb 5-1: new high-speed USB device number 119 using dummy_hcd
[  648.047396][ T6061] usb 6-1: new high-speed USB device number 68 using dummy_hcd
[  648.214880][T11527] usb 5-1: Using ep0 maxpacket: 16
[  648.217235][ T6061] usb 6-1: Using ep0 maxpacket: 16
[  648.220800][T11527] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  648.223640][T11527] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18
[  648.227987][ T6061] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  648.232208][ T6061] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18
[  648.240747][T11527] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  648.243618][T11527] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  648.248720][ T6061] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  648.251624][ T6061] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  648.254175][ T6061] usb 6-1: SerialNumber: syz
[  648.255698][T11527] usb 5-1: SerialNumber: syz
[  648.750835][T11527] IPVS: starting estimator thread 0...
[  648.854966][T15581] IPVS: using max 42 ests per chain, 100800 per kthread
[  648.940061][T15515] IPVS: starting estimator thread 0...
[  649.034888][T15585] IPVS: using max 43 ests per chain, 103200 per kthread
[  649.886296][T15596] netlink: 'syz.3.2662': attribute type 4 has an invalid length.
[  650.562992][T11527] usb 5-1: USB disconnect, device number 119
[  650.581196][T15515] usb 6-1: USB disconnect, device number 68
[  650.677964][ T5985] Bluetooth: hci1: unexpected event 0x03 length: 1 < 11
[  650.682956][T15610] netlink: 'syz.1.2666': attribute type 1 has an invalid length.
[  650.818290][T15608] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  650.821048][T15608] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  650.824461][T15608] vhci_hcd vhci_hcd.0: Device attached
[  650.898863][T15613] vhci_hcd: connection closed
[  650.900470][   T12] vhci_hcd: stop threads
[  650.903370][   T12] vhci_hcd: release socket
[  650.904909][   T12] vhci_hcd: disconnect device
[  651.254889][ T6061] usb 8-1: new high-speed USB device number 77 using dummy_hcd
[  651.414859][ T6061] usb 8-1: Using ep0 maxpacket: 16
[  651.418646][ T6061] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  651.423817][ T6061] usb 8-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  651.426699][ T6061] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  651.429161][ T6061] usb 8-1: Product: syz
[  651.430463][ T6061] usb 8-1: Manufacturer: syz
[  651.431905][ T6061] usb 8-1: SerialNumber: syz
[  651.434486][ T6061] usb 8-1: config 0 descriptor??
[  651.438776][ T6061] hub 8-1:0.0: bad descriptor, ignoring hub
[  651.440542][ T6061] hub 8-1:0.0: probe with driver hub failed with error -5
[  651.444117][ T6061] input: syz syz as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input103
[  651.532444][T15639] netlink: 'syz.1.2672': attribute type 4 has an invalid length.
[  651.841289][T15623] lo speed is unknown, defaulting to 1000
[  652.335066][  T842] usb 8-1: USB disconnect, device number 77
[  652.845656][ T6061] usb 6-1: new high-speed USB device number 69 using dummy_hcd
[  653.004905][ T6061] usb 6-1: Using ep0 maxpacket: 16
[  653.007989][ T6061] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  653.011210][ T6061] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18
[  653.016913][ T6061] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  653.019864][ T6061] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  653.022479][ T6061] usb 6-1: SerialNumber: syz
[  653.064999][T15515] usb 8-1: new high-speed USB device number 78 using dummy_hcd
[  653.215136][T15515] usb 8-1: Using ep0 maxpacket: 8
[  653.218646][T15515] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  653.222867][T15515] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  653.226585][T15515] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  653.230681][T15515] usb 8-1: config 0 descriptor??
[  653.435496][T15660] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2680'.
[  653.463897][T15515] iowarrior 8-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  653.963373][T15362] usb 8-1: USB disconnect, device number 78
[  654.175391][  T842] usb 7-1: new high-speed USB device number 45 using dummy_hcd
[  654.326655][  T842] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  654.329833][  T842] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  654.334006][  T842] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  654.337728][  T842] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  654.341268][  T842] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  654.346300][  T842] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  654.349129][  T842] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  654.352305][  T842] usb 7-1: Product: syz
[  654.354131][  T842] usb 7-1: Manufacturer: syz
[  654.361721][  T842] cdc_wdm 7-1:1.0: skipping garbage
[  654.363933][  T842] cdc_wdm 7-1:1.0: skipping garbage
[  654.368210][  T842] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  654.370772][  T842] cdc_wdm 7-1:1.0: Unknown control protocol
[  654.744901][  T842] usb 8-1: new high-speed USB device number 79 using dummy_hcd
[  654.916208][  T842] usb 8-1: Using ep0 maxpacket: 8
[  654.922160][  T842] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  654.926851][  T842] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  654.930631][  T842] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  654.935138][  T842] usb 8-1: config 0 descriptor??
[  655.106576][T15673] netlink: 'syz.0.2683': attribute type 4 has an invalid length.
[  655.144059][T15668] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2682'.
[  655.165162][  T842] iowarrior 8-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior1
[  655.235652][  T842] usb 7-1: USB disconnect, device number 45
[  655.294539][ T6061] usb 6-1: USB disconnect, device number 69
[  655.487338][T15676] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2684'.
[  655.489998][T15676] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2684'.
[  655.524036][T15678] netlink: 212376 bytes leftover after parsing attributes in process `syz.1.2685'.
[  655.628864][ T6061] usb 8-1: USB disconnect, device number 79
[  656.245090][T15515] usb 5-1: new high-speed USB device number 120 using dummy_hcd
[  656.408022][T15515] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
[  656.411599][T15515] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  656.416640][T15515] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  656.419553][T15515] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  656.422070][T15515] usb 5-1: Manufacturer: syz
[  656.424701][T15515] usb 5-1: config 0 descriptor??
[  656.484911][T15515] rc_core: IR keymap rc-hauppauge not found
[  656.487486][T15515] Registered IR keymap rc-empty
[  656.491071][T15515] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0
[  656.498398][T15515] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input104
[  656.582991][T15699] lo speed is unknown, defaulting to 1000
[  656.660235][T15515] libceph: connect (1)[c::]:6789 error -101
[  656.662998][T15515] libceph: mon0 (1)[c::]:6789 connect error
[  656.925209][T15515] libceph: connect (1)[c::]:6789 error -101
[  656.928529][T15515] libceph: mon0 (1)[c::]:6789 connect error
[  657.184843][T15715] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2693'.
[  657.188670][T15715] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2693'.
[  657.445447][T15515] libceph: connect (1)[c::]:6789 error -101
[  657.447417][T15515] libceph: mon0 (1)[c::]:6789 connect error
[  657.549492][T15721] Context (ID=0x0) not attached to queue pair (handle=0x4d9:0x0)
[  657.685018][T11527] usb 7-1: new high-speed USB device number 46 using dummy_hcd
[  657.834915][T11527] usb 7-1: Using ep0 maxpacket: 16
[  657.838489][T11527] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  657.841686][T11527] usb 7-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18
[  657.847233][T11527] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  657.851181][T11527] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  657.854268][T11527] usb 7-1: SerialNumber: syz
[  658.425256][T15515] libceph: connect (1)[c::]:6789 error -101
[  658.427196][T15515] libceph: mon0 (1)[c::]:6789 connect error
[  658.528813][T15727] input: syz1 as /devices/virtual/input/input105
[  658.538638][T15727] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2696'.
[  658.551967][T15727] netlink: 'syz.3.2696': attribute type 3 has an invalid length.
[  659.009848][T15692] ceph: No mds server is up or the cluster is laggy
[  659.051209][T15362] usb 5-1: USB disconnect, device number 120
[  659.363130][T15735] netlink: 'syz.0.2697': attribute type 4 has an invalid length.
[  659.414896][  T842] usb 8-1: new high-speed USB device number 80 using dummy_hcd
[  659.524943][T15515] usb 6-1: new high-speed USB device number 70 using dummy_hcd
[  659.566268][  T842] usb 8-1: config index 0 descriptor too short (expected 23569, got 27)
[  659.569524][  T842] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  659.574237][  T842] usb 8-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  659.577148][  T842] usb 8-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  659.579746][  T842] usb 8-1: Manufacturer: syz
[  659.582485][  T842] usb 8-1: config 0 descriptor??
[  659.634881][  T842] rc_core: IR keymap rc-hauppauge not found
[  659.636735][  T842] Registered IR keymap rc-empty
[  659.638988][  T842] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0
[  659.643042][  T842] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0/input106
[  659.684910][T15515] usb 6-1: Using ep0 maxpacket: 8
[  659.687891][T15515] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  659.691322][T15515] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  659.694133][T15515] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  659.698360][T15515] usb 6-1: config 0 descriptor??
[  659.791868][  T842] libceph: connect (1)[c::]:6789 error -101
[  659.793889][  T842] libceph: mon0 (1)[c::]:6789 connect error
[  659.905618][T15734] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2699'.
[  659.922029][T15515] iowarrior 6-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  660.055149][  T842] libceph: connect (1)[c::]:6789 error -101
[  660.057218][  T842] libceph: mon0 (1)[c::]:6789 connect error
[  660.234937][T15745] netlink: 3 bytes leftover after parsing attributes in process `syz.0.2700'.
[  660.251756][T15745] batadv1: entered allmulticast mode
[  660.281654][T11527] usb 7-1: USB disconnect, device number 46
[  660.378291][T15746] input: syz1 as /devices/virtual/input/input107
[  660.486425][T15515] usb 6-1: USB disconnect, device number 70
[  660.575135][  T842] libceph: connect (1)[c::]:6789 error -101
[  660.577160][  T842] libceph: mon0 (1)[c::]:6789 connect error
[  660.788121][T15752] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2701'.
[  660.818759][T15752] netlink: 'syz.2.2701': attribute type 1 has an invalid length.
[  661.077826][T15761] netlink: 91 bytes leftover after parsing attributes in process `syz.0.2702'.
[  661.080736][T15761] netlink: 91 bytes leftover after parsing attributes in process `syz.0.2702'.
[  661.271577][T15764] Context (ID=0x0) not attached to queue pair (handle=0x4d5:0x0)
[  661.394958][ T6061] usb 5-1: new high-speed USB device number 121 using dummy_hcd
[  661.448081][ T5887] BUG: sleeping function called from invalid context at mm/vmalloc.c:3409
[  661.451144][ T5887] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 5887, name: syz-executor
[  661.455798][ T5887] preempt_count: 1, expected: 0
[  661.457996][ T5887] RCU nest depth: 0, expected: 0
[  661.460718][ T5887] no locks held by syz-executor/5887.
[  661.462417][ T5887] Preemption disabled at:
[  661.462424][ T5887] [<ffffffff8b921f70>] schedule+0xe0/0x3a0
[  661.465888][ T5887] CPU: 2 UID: 0 PID: 5887 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  661.465902][ T5887] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  661.465909][ T5887] Call Trace:
[  661.465913][ T5887]  <TASK>
[  661.465917][ T5887]  dump_stack_lvl+0x16c/0x1f0
[  661.465934][ T5887]  __might_resched+0x3c0/0x5e0
[  661.465947][ T5887]  ? __pfx___might_resched+0x10/0x10
[  661.465957][ T5887]  ? pcpu_block_update+0x562/0x660
[  661.465975][ T5887]  ? find_held_lock+0x2b/0x80
[  661.465988][ T5887]  vfree+0x75/0xb50
[  661.466006][ T5887]  ? rcu_is_watching+0x12/0xc0
[  661.466018][ T5887]  ? kfree+0x24f/0x4d0
[  661.466028][ T5887]  ? free_percpu+0x6db/0x13c0
[  661.466042][ T5887]  futex_hash_free+0x98/0xc0
[  661.466057][ T5887]  __mmdrop+0x33f/0x580
[  661.466069][ T5887]  ? rcu_is_watching+0x12/0xc0
[  661.466082][ T5887]  finish_task_switch.isra.0+0x7a4/0xc10
[  661.466093][ T5887]  ? __switch_to+0x7a5/0x11a0
[  661.466109][ T5887]  __schedule+0x1198/0x5de0
[  661.466121][ T5887]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  661.466175][ T5887]  ? debug_object_activate+0x2ec/0x4c0
[  661.466191][ T5887]  ? __lock_acquire+0x62e/0x1ce0
[  661.466208][ T5887]  ? __pfx___schedule+0x10/0x10
[  661.466224][ T5887]  ? find_held_lock+0x2b/0x80
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  661.466235][ T5887]  ? schedule+0x2d7/0x3a0
[  661.466250][ T5887]  schedule+0xe7/0x3a0
[  661.466263][ T5887]  schedule_hrtimeout_range_clock+0x217/0x320
[  661.466276][ T5887]  ? __pfx_schedule_hrtimeout_range_clock+0x10/0x10
[  661.466291][ T5887]  ? __pfx_hrtimer_wakeup+0x10/0x10
[  661.466313][ T5887]  poll_schedule_timeout.constprop.0+0xc4/0x1c0
[  661.466327][ T5887]  do_select+0x1339/0x17e0
[  661.466348][ T5887]  ? __pfx_do_select+0x10/0x10
[  661.466358][ T5887]  ? __lock_acquire+0xb97/0x1ce0
[  661.466376][ T5887]  ? __pfx_pollwake+0x10/0x10
[  661.466388][ T5887]  ? __pfx_pollwake+0x10/0x10
[  661.466400][ T5887]  ? __pfx_pollwake+0x10/0x10
[  661.466412][ T5887]  ? __pfx_pollwake+0x10/0x10
[  661.466424][ T5887]  ? __pfx_pollwake+0x10/0x10
[  661.466436][ T5887]  ? __pfx_pollwake+0x10/0x10
[  661.466447][ T5887]  ? __pfx_pollwake+0x10/0x10
[  661.466459][ T5887]  ? __pfx_pollwake+0x10/0x10
[  661.466471][ T5887]  ? __pfx_pollwake+0x10/0x10
[  661.466485][ T5887]  ? find_held_lock+0x2b/0x80
[  661.466497][ T5887]  ? compat_core_sys_select+0x1dd/0x880
[  661.466510][ T5887]  ? compat_core_sys_select+0x685/0x880
[  661.466521][ T5887]  compat_core_sys_select+0x685/0x880
[  661.466536][ T5887]  ? __pfx_compat_core_sys_select+0x10/0x10
[  661.466560][ T5887]  ? set_compat_user_sigmask+0x213/0x2a0
[  661.466573][ T5887]  ? __pfx_set_compat_user_sigmask+0x10/0x10
[  661.466588][ T5887]  __ia32_compat_sys_pselect6_time32+0x2d1/0x390
[  661.466604][ T5887]  ? __pfx___ia32_compat_sys_pselect6_time32+0x10/0x10
[  661.466621][ T5887]  ? rcu_is_watching+0x12/0xc0
[  661.466634][ T5887]  __do_fast_syscall_32+0x7c/0x3a0
[  661.466652][ T5887]  do_fast_syscall_32+0x32/0x80
[  661.466667][ T5887]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  661.466682][ T5887] RIP: 0023:0xf704e579
[  661.466691][ T5887] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  661.466703][ T5887] RSP: 002b:00000000ff89d4c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000134
[  661.466720][ T5887] RAX: ffffffffffffffda RBX: 0000000000000021 RCX: 00000000ff89d6d4
[  661.466727][ T5887] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000ff89d4f0
[  661.466733][ T5887] RBP: 00000000ff89d504 R08: 0000000000000000 R09: 0000000000000000
[  661.466739][ T5887] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  661.466746][ T5887] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  661.466759][ T5887]  </TASK>
[  661.556695][ T6061] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid maxpacket 5140, setting to 64
[  661.613144][T15731] ceph: No mds server is up or the cluster is laggy
[  661.621478][ T6061] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  661.624437][ T6061] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  661.627936][ T6061] usb 5-1: Product: syz
[  661.629267][ T6061] usb 5-1: Manufacturer: syz
[  661.630634][ T6061] usb 5-1: SerialNumber: syz
[  661.650553][ T6061] usb 5-1: config 0 descriptor??
[  661.683737][ T6061] usb 5-1: can't set config #0, error -71
[  661.695159][ T6061] usb 5-1: USB disconnect, device number 121
[  661.770477][   T12] smc: removing ib device syz1
[  661.807349][T15175] syz1: Port: 1 Link DOWN
[  662.160218][T15362] usb 8-1: USB disconnect, device number 80
[  662.557680][   T46] bridge_slave_1: left allmulticast mode
[  662.559493][   T46] bridge_slave_1: left promiscuous mode
[  662.561854][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[  662.565245][   T46] bridge_slave_0: left allmulticast mode
[  662.567151][   T46] bridge_slave_0: left promiscuous mode
[  662.569429][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[  663.833116][   T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  663.836746][   T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  663.840655][   T46] bond0 (unregistering): (slave batadv0): Releasing backup interface
[  663.843612][   T46] bond0 (unregistering): Released all slaves
[  663.849695][   T46] bond1 (unregistering): Released all slaves
[  663.953541][   T46] : left promiscuous mode
[  664.207360][   T46] hsr_slave_0: left promiscuous mode
[  664.210018][   T46] hsr_slave_1: left promiscuous mode
[  664.212406][   T46] batman_adv: batadv0: Removing interface: batadv_slave_0
[  664.215831][   T46] batman_adv: batadv0: Removing interface: batadv_slave_1
[  664.842138][   T46] team0 (unregistering): Port device team_slave_1 removed
[  664.922779][   T46] team0 (unregistering): Port device team_slave_0 removed
[  665.787716][   T46] IPVS: stop unused estimator thread 0...
[  666.070945][   T46] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  666.170732][   T46] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  666.267643][   T46] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  666.316798][   T46] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  666.450075][   T46] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  666.529605][   T46] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  666.608377][   T46] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  666.678528][   T46] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  666.812379][   T46] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  666.980627][   T46] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  667.082484][   T46] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  667.178407][   T46] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  667.286758][   T46] bridge_slave_1: left allmulticast mode
[  667.288385][   T46] bridge_slave_1: left promiscuous mode
[  667.290064][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[  667.295164][   T46] bridge_slave_0: left allmulticast mode
[  667.297046][   T46] bridge_slave_0: left promiscuous mode
[  667.298722][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[  667.304296][   T46] bridge_slave_1: left allmulticast mode
[  667.306429][   T46] bridge_slave_1: left promiscuous mode
[  667.308099][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[  667.317758][   T46] bridge_slave_0: left allmulticast mode
[  667.319369][   T46] bridge_slave_0: left promiscuous mode
[  667.321005][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[  668.147470][   T46] bond1 (unregistering): Released all slaves
[  668.224362][   T46] bond2 (unregistering): Released all slaves
[  668.555976][   T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  668.559499][   T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  668.563144][   T46] bond0 (unregistering): Released all slaves
[  668.860064][   T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  668.864250][   T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  668.868019][   T46] bond0 (unregistering): Released all slaves
[  668.965459][   T46] tipc: Disabling bearer <udp:s>
[  668.967383][   T46] tipc: Left network mode
[  669.579504][   T46] hsr_slave_0: left promiscuous mode
[  669.581700][   T46] hsr_slave_1: left promiscuous mode
[  669.583699][   T46] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  669.586255][   T46] batman_adv: batadv0: Removing interface: batadv_slave_0
[  669.588939][   T46] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  669.591314][   T46] batman_adv: batadv0: Removing interface: batadv_slave_1
[  669.596544][   T46] hsr_slave_0: left promiscuous mode
[  669.598685][   T46] hsr_slave_1: left promiscuous mode
[  669.600705][   T46] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  669.603070][   T46] batman_adv: batadv0: Removing interface: batadv_slave_0
[  669.606257][   T46] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  669.608560][   T46] batman_adv: batadv0: Removing interface: batadv_slave_1
[  669.613352][   T46] hsr_slave_0: left promiscuous mode
[  669.616708][   T46] hsr_slave_1: left promiscuous mode
[  669.618851][   T46] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  669.621718][   T46] batman_adv: batadv0: Removing interface: batadv_slave_0
[  669.624580][   T46] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  669.627199][   T46] batman_adv: batadv0: Removing interface: batadv_slave_1
[  669.691441][   T46] batadv_slave_1: left promiscuous mode
[  669.693447][   T46] veth1_macvtap: left promiscuous mode
[  669.695637][   T46] veth0_macvtap: left promiscuous mode
[  669.697935][   T46] veth1_vlan: left promiscuous mode
[  669.699641][   T46] veth0_vlan: left promiscuous mode
[  669.702147][   T46] veth1_macvtap: left promiscuous mode
[  669.703882][   T46] veth0_macvtap: left promiscuous mode
[  669.706079][   T46] veth1_vlan: left promiscuous mode
[  669.707767][   T46] veth0_vlan: left promiscuous mode
[  669.710214][   T46] veth1_macvtap: left promiscuous mode
[  669.711945][   T46] veth0_macvtap: left promiscuous mode
[  669.713735][   T46] veth1_vlan: left promiscuous mode
[  669.715780][   T46] veth0_vlan: left promiscuous mode
[  669.911131][   T46] pim6reg (unregistering): left allmulticast mode
[  670.498405][   T46] team0 (unregistering): Port device team_slave_1 removed
[  670.571328][   T46] team0 (unregistering): Port device team_slave_0 removed

VM DIAGNOSIS:
12:14:21  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000002 RBX=0000000080000002 RCX=ffffffff89602760 RDX=ffff888066732440
RSI=0000000000000000 RDI=0000000000000005 RBP=ffffc90006727d58 RSP=ffffc900067279b8
R8 =0000000000000005 R9 =0000000000000000 R10=0000000080000002 R11=0000000000000000
R12=ffff88802678c200 R13=00000000801882a0 R14=ffffc90006727d58 R15=0000000080000002
RIP=ffffffff81bb0b00 RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880974c0000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080183000 CR3=0000000025d23000 CR4=00352ef0
DR0=0000000000000006 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=000000000534c002 Opmask01=0000000000000000 Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005635f5572c50 00005635f5572c50
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff43cdcc20 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6c737973007325 2e73250064252e73 2500656c6f736e6f 632f7665642f000a
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a49565c56005600 0b56000041000b56 000040494a564b4a 460a5340410a000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2064656863617474 6120746f6e202930 78303d4449282074 7865746e6f43205d
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 37206f7420676e69 676e616863202c30 206c61767265746e 49622064696c6176
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e69206e61207361 6820323878302074 6e696f70646e6520 3020676e69747465
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 73746c6120302065 6361667265746e69 2030206769666e6f 63203a312d362062
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7375205d35313535 31545b5d31393837 38362e3935362020 5b203a6c656e7265
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=ffff88801dedaf30 RCX=0000000000000001 RDX=0000000000000000
RSI=ffffffff8e5c1020 RDI=ffffffff8de287d5 RBP=ffffffff8e5c1020 RSP=ffffc9000046fac8
R8 =0000000000000000 R9 =fffffbfff2157252 R10=ffffffff90ab9297 R11=0000000000000001
R12=ffff88801deda440 R13=0000000000000000 R14=00000000ffffffff R15=0000000000000001
RIP=ffffffff8b9104a0 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880975c0000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002d90aff8 CR3=0000000025d23000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000010102 RBX=ffffc90000538e78 RCX=1ffff11005684808 RDX=ffff888025012440
RSI=ffffffff815dbdb6 RDI=ffffffff8ba61200 RBP=0000000000000024 RSP=ffffc90000538e20
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000024 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff815dbdbd RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880976c0000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002eadeff8 CR3=000000005166e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 26939eac9fa96993 47b49204049008cb
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4eb4033a0c87f62d ec43eb23d7778f25
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7f472e964ffa40a1 9f6e0550d38b5a0b
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4488f8d2f2ff015a 559c078a023b61ef
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000002e40
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000001900019191 0639700045531e00
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0001919100000000 0001919400000002
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000745264c00 9b77d40042a12400
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 679e6d00e5acb000 000191917a063600
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7bbc1bfd9fea36aa 2601f1932e80b19a
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 9b0fe4cce956fd7a bbafbbdbacbd0db9
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=0000000000000001 RCX=ffffffff914f62ce RDX=0000000000000000
RSI=1ffffffff229ec5a RDI=ffffffff90c64a7c RBP=ffffc90006ed7730 RSP=ffffc90006ed7678
R8 =ffffffff914f62d2 R9 =0000000000000000 R10=0000000000000004 R11=000000000001206f
R12=ffffc90006ed7738 R13=ffffc90006ed76e8 R14=ffffc90006ed771d R15=ffffffff914f62d3
RIP=ffffffff816aba07 RFL=00000a06 [-O---P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880977c0000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000057f3399c CR3=0000000065432000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000