last executing test programs:

6m19.52650804s ago: executing program 3 (id=516):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000800000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000140)='contention_end\x00', r0}, 0x10)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="180000005600230d000000000000000007"], 0x18}}, 0x4040000) (fail_nth: 7)

6m19.463651596s ago: executing program 3 (id=517):
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x6, 0x8, 0x3, 0x0, 0xffffffffffffffff, 0x3}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$PNPIPE_ENCAP(r0, 0x113, 0x1, &(0x7f0000000040)=0x3, 0x4)
bpf$BPF_GET_BTF_INFO(0xf, 0x0, 0x0)
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x3, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x6)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_io_uring_setup(0x88f, 0x0, &(0x7f0000000000), 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x2002)
ioctl$EVIOCGRAB(r3, 0x40044590, &(0x7f0000000080)=0x7)
readv(r3, &(0x7f0000000240), 0x0)
write$evdev(r3, &(0x7f0000000040)=[{{}, 0x0, 0x2}], 0x37)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x24c01, 0x0)
lseek(r4, 0x1, 0x1)
writev(r4, &(0x7f00000001c0)=[{&(0x7f0000000180)}, {0x0}, {&(0x7f00000003c0)="543dbf774f46eb7c9d4c45610d4ed164ed0bb635311f952cef66d7a4d254107cdc2fbd669f340837d7efcc70d90b1bf34924", 0x32}, {&(0x7f0000000500)}, {&(0x7f0000000580)="1d3015520d3a8a9ea1e4b23a11685917e8db4d2906d195beb905e03b284ad66c5ac3aaf24b6ec8ed4f1d06bd7976e93de58007302f2220454d3907db6523aed966c87c8777a634ba34ace14a68f80c93365e78ee781581ae892531de7ebefa62253a5c6c487f0b15cdc03024fec659cca89a777bf18e39546f88bd934fcb0b439fab98a93534e4e6d6424b10028850f93fb9460ccb5b54f027212de6aa8fcd1a2f299dcf867f56a9043ba1edff", 0xad}, {&(0x7f0000000640)="03f0809f717fd9013cf853e0794a9f10f0b0368edb0559ab7b99fecee861aa845a162dcbe7ae26e857f543a14cffc373091c24ca9bb7d74e5cfa2820377f7e2fb65545288f05d1ff3270159c4d44defeb9ac6db4bceaf918e01415159b002b5b1ac03bd69d65279e64d0ead2d39e2207d1a86567eab23b7ea6d317a99da1007ed70033ed5cefda50e9a04471ba654374c116aea585f20f1719dcffd169367693fc", 0xa1}, {&(0x7f0000000180)="5e542e6c5be7fe8cc463bc42d67a4884ed9b1f4bed60", 0x16}], 0x7)
mount$9p_virtio(&(0x7f00000002c0), &(0x7f0000000080)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000040), 0x208e24b)

6m18.60551861s ago: executing program 3 (id=524):
r0 = socket$nl_route(0x10, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1/file0\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f00000003c0), 0x0, &(0x7f00000004c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1/file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
umount2(&(0x7f0000000140)='./file0\x00', 0x5)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, 0x0, 0x4f)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r2, 0x3)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r3 = syz_io_uring_setup(0x10d2, &(0x7f0000000340)={0x0, 0x6bf6, 0x100, 0x5, 0x12}, &(0x7f00000000c0)=<r4=>0x0, &(0x7f0000000300)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r4, r5, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x50, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r3, 0x47bc, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
syz_open_dev$sndmidi(&(0x7f0000000100), 0x5, 0xe0000)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000)='devtmpfs\x00', 0x0, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000001100)='./bus\x00', 0x8)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
r6 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r6, &(0x7f0000001fc0)=""/184, 0x20002078)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=@ipv6_newrule={0x24, 0x18, 0x409, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, [@FIB_RULE_POLICY=@FRA_GOTO={0x8, 0x1e, 0x1}]}, 0x24}}, 0x80)

6m17.257673736s ago: executing program 3 (id=529):
r0 = syz_usbip_server_init(0x2)
write$usbip_server(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="38da0ede8bd8317c2c0b9d1d1e11395cdd0c267e446d19567ee1b5cb74267c62aec6481f3a179e7d26294f8e32d9f4bd2d519b6ca4f1cb1f435d4affcb5f20dc343b26be82be8d30e2789d4b103d50e9459f133fc48634ef2c732728138ab48fc40b47bad8cb15834febc2637d822bb0bc1e5d7c5e14f8acd24f9a1bdc4f1a3252ba1340f17b9c9b17923878318086418d4ed8e10646269ef53f393cb6a66dadf6b33ec3e1f9dc8a40a2b34bd72eb669cdabed5ccb57f87aa3f71619be9767bc6daced8a892142b2ee929e13cabb30034388fb1caf05aa775d2c64e86f090b4386ea4fb5e2dfdb236975fc71c1096f7ab6f17dfaf982a150cbba6d69ce1f1956aadaf298afe4e166e2738115b0bcfb52842a5734400e54edba80a565e0d9d4fb544c5f274f77c30ff794180c02fc4206e671bc6706e1fbaab990e15f315bc0c4443f3e59e46a855bf3a9ea678a3b2031a62c896e413fbbc53dbd4ffcd5f3ba0c98e5b0647574230bd2ad44f4065ac9607d40ce4b64de468165afbccdcb0db247324a330543da3aaa4b24f5ea1da77f9ccc5bb86549291cacf09753dea35b15d9f26bcdb6c682c0ba54dba297c90dc302f9a9648ec5470cf62daeeb780a4db0f982c1677565288cdceb27635235b5abeb4ff040f91e92afc85b30afaea67edb8db58ce05a863e97b03c011201b350ea1f8f419ea1c489ef854d39c2bde95dc53c0e8453bde55ccca5290ccb620de3b577125b8c643131ee2f0617acab7d37473df6a1c91c036ba3dbcd29de1a29ee08f715607d6a08a7f652498e21e43d6d6ef6a18de9e84274ab7839a596ea86092f6a1e4d3dbbfb78d840bbf94cc7787ecd590bb50a154673bce8d0dbda6e0d0f4f9718bf63f4d18fcaa2ec8878b91b83bc7827c5600962035c6caab43eeea6bfcbdf98cdb6d8f60efa7d079624c0493e84b4d7f2193a23d75afe258ee3631cf4455b7806ab913cfa71ec2e7c03b5217e9c870e40643d59dbca5ce2ef1269fb35fd6c18e03dc68a5ed55e2c854240a24fe8fea562303175ba2ec65a94a9e02f2dc069dc8e6ee6a0addc8df0753dc8a821fee1d3cd05809aa114302700849aeba0c792e8fce01e15ddd76f9c3f2589f975a02224ffe5158674e4dcc1a52b7767ae3a8ac5f1bd7821ade2000832114d2435328ee264155f4ae4ca60c845ffe3eeace724e71e87e36ae3c47632a60e640a9f60da4510e5ed9fdddfbab33d0efc8374d0528362ea4b249b6176687541ba47e20aa4e378e7b36c949ec13704957ab55e8aa3eae42c67ea5ead15fc8c146f4a6784101ed7269a427c6aee27f2fdaefc696f2be061615b7adf9c97bc748ab956d600de40286a21056005449a72700a10ebdf1ac8dd8cc91c9f5c2f0c9ebcdd77ad7d2fb74be580a1c4082183216f60e821ebb4595dc77a5a91671e5ead724d3c4506b3d4a944346961673168920d07d66b24f78b385ccbc7a79741df13798ee79c9a4a5450724647a1bac29700915b3ea560ef1364f803a7353c3f0d7053d1f6423cf017a64c43b6b95d1f011a33c59e0f54c1d08106dae93a6918998a03e941b3e9f6a83bdc6d3f3788ed83fd091c48bf177235d175171e8e0ce6d260e88c34cbb1c7f34d7fedb7c7772f9f47906aa94fda1f0460e3f05b63e7e85058e9d2e723542c30d3cc6fdb96d6e6bb93779b7979d1a25d5c9222131bbc25e773b9762dc9c27be0eb76a8ce36c76d7296e298c8a66d199da41d3bb0d003f1cc132b8c8ecd6306df29e7efcc780c07e44a8d639d438c16fd6d24dc8f9c420fb7a7e2b89f6cd5c3a77298eb52b4908cad42108e4181a07fb9803b812edb4e96ad6c482e8573f33338ef75b5a691047a31f17d74c4e509b22a9117fca41d00e648d94133ab26a4055144966dbed6fc97d4b75183feb6ab187e858dedf093474e943ee3dbe79cf0288fd501a17cfe6a91191d24ef890846d1f28959f14a16a6252ca9870291e8e23b721be6fb8b026ace8bfdd7503b6f5577b9b1c6a19a9ac88061b195b49fdbdebc841ac02dd426c3b02e503bd77ecf483c4bb8b737529f0d098dc9f7813ad95316b3434a32fff2d56f63f6703deafd1c46ddcb379b432fac30e2b3512a7ad24a5191855889d04f923af5618de0ea18704eea0c91d24d7a8e0993f8b9d7cb2153abee23086658f98a6901b556de220f97b62509cd12caef4c4c0037fb6765415fe0a824a141e2331fe8081e77581a648dbc11c4b9915502c11018edcef4214215c0fe1012b9c0ac3e8308b73a295597dbfd6319bff1ff25f45a4447048ec8056980c2c3b9f64e58c4afe0a146b9470b947b60eba0c84914404aa592ac0c8b23539a2264d0a19205d93d25be05c6a8f2d7f5a06b1f8e30c842783fdfcecd9277606d1d05f57d5af8b9c99b957633c4f49daf3d8bf4aa673e3e5c3a31397c8b68c6f1772725f66edb8d900796e63f41524c89e8285a69c00cd9a8d04b83a4099bc510945db8ef62bb5f4c77731efb7a55f24fb27575b3ecb837e292df3475043f45a022b77b6d682461499c0a9333519cc4b10881461b82151f72dcbb2b83a8e58a78a29cb19c49925cbfe3e3d0c30dd25afd85c5605211e524ebfb34aa05257e6b6ce6f8b386096209a55aa6516b38ae59122d22eca15503bcf52bea70d9962b5b8370fb0411a68fb1a29c55d6450f68842300fd44e7d19cee721c29d0cb2c3a3fcc6bd5a1465a4d8e713b220771f195d57e2c3a6075be92ec211766f2b0ed4cf7293a36d9dd642c5f172f9163cd843e90def2aaf3e511a1464e087e715ecfb41c2c843f2c70a8d2cf587a5f21c385d139b87ad118700d1500ba3a8e997828238ebea4ce24e56c2bdb64a5a79cbe145f127ec15afe53892b3bc1fe0d27bed75811766972a249d9af686632ceb7b3454c7b9059d9eece0d752def13948cce0ca4b377f452b3450e578582694df91581c42b6843da37f4ccf5c33f73340d4a965823ec83dd4e30a2a41f1a4d8914941e96cc567977ca0000976b9d9d147d1c8d8c5a47363689459adf6cbeab82c893e82ee2808d3e0ecf01f2dbb2d997bc3b876f492c47a23e261af185f7909381ea30b9f650902466f6491b5da65e0a1729b30655d38e3ef32122fd16f4d951904748c94a5a42f928d8035987a45e331f2bd3edbf52a1aba1413ed65127f04e38b869642f7c1825087584e81c75ea266bade6d96c5c1d4b73ab75e75225784054426a00192e29c45c55aeaea31a4474752f3674cc3083b6d7584c42f5d6567440ebb274074f015d1c0a87180ca2986c4b421b0b3df3b77ecf5ca99a063485f9d3cd20592e9ca04ebc7352e70055ceecf203b146d4bfc5fcc99ab02b423bb2913087a088a7d561f8913be8da86b2fa81ff19d46337ee0df4e5332562e107a73147ceb9513d62c87c510b5aba51497ad606707873a7841c3eda57615eb2be95a95bca0de16dcff1a7f5500b3fdd802b3b99a7689b26dc4944aa705853c0b84db0764fd70c1983f67adf4824dff341de492b2772a34dba56460bce67b5fb23fa34792f935711bf4fe69373de2c486d50c01a65f2a9309b52b96c62c313595897f2975c42bc5798967ec0313d62086a8c6af0428f6229536502a2c1820ec5d2aba742f96dc753beda769ce8fa9390fd55c8d210a0cfa18c8f2ecec5dd57708601b92fd01454c4b8c5d0eedd71a95441c31f71fbf1ae17d36ac534289e2e4ca6fd6aab0662c3c4951ac34f52c5ebec4048da4f07e0b1ff114804416bea5140b980b13445654ff490c7fbc3f2a95251f49b33ff54736dc932b57cc25f63df3cba9674eb8734a3dbea5f5433a64d259d25f3a3f4f12331cef0ac40d897f42b5a2a0a40d0b83d35f29f541444ab08c4f05ecccacc03dc31544fb97fc07a27919d9ec4a7dc14555523daf864150cc14367d5bbb66f009fdd8459628e0cad646324d901d2ab4b1fe9fac1bfb9afb57e21b9b862af1b4b639790e6d7899fe22f5456e1bc1cb2390bd9bc6b4d8ddba51a09b32406cbd315e72c19f46a7cb8dabe4bba814c8d813c74d04cb9b297a453adf9cc5bac6d6616a981b1e103387b64c4c4cecd811862dcfc0bdd4197c71ae3d74248911b7299e27a2ef4484cf11c9b95bac243b588c6027ce801016f650fc983f6f3d826ccf34f51a243ac0e97576c8db087d7ee6f0120ada1096a8171ef144663350ba788779cce0963a0e728eee3d28f604fb7242a947acb072fe93e7bc1717bde54ac0959a41c7523ff9439476a0de9cb978f1499855519941dcc0a8a1a3579da1874ca185487fdda4018d3bb776a7302fd7e16817de10cac760057de18ed41e44f149b7a14e745c643056a2908083fd90768d8fff3587d1b8660b6d2c4c22295352be74425dc589313b2585c435b162dad587ffa676df8ec69dbfdef970707b90b4167f274e6a46b9e721efa67660751644d44caa9d301194860c46ab9c6cc2e5a37725af13e255e434339899cf29d14f4385d6b07a9cdeccebfe8da172e26b8170c889866d11e7490303d2aec20f37cf592559c08a4155a087cfd74c915e2f24af7606bf2cfc474732fb59a8e4292093275528eda60939f7d64367bb4cfbfd0a82a072b0b467adc4f342aa96612b2355f05e14ebef31005eafa572bf1bc5fde67cb8f680df21f4c4a998e6aedfa7134718d60524df862e839944b79089c0899f5a07308a5aeb0fd59b7d9efd344476cee90e453b849d9e51a574a1631ccf99ea5d134dcdb25adcdd4052131f9555fc05adc07fb997a00328c77c8651d86c2ebe964c77f9944f1514ff7e7ab54fb2be0bbddedb2115de0662b5722d4798920bfb413698f2d4063e7f0d100a7990d1daeea77e9ab65cafb91abd11fdfa3a5a5c11bbf0b735333c2c2574b78c29862e9a705a48dc50d371ed82727d591d7e5ed4f2963f86c468956f75e40f862398de4af7362593c67fdad060c3b499971d08b2324a40f35090854dceb6f81d2106f91028631f00aa8f3487c4bb443f42d5d068b5b2bf9319f6137bd148252c4b9a14336ccd7ccb015aefb89cdbc89a3b1512f7ddbf905fd20565c03cf61832f4c98fd585119cb088370b5dfe698329a614e229b19f8e988702d6cd87a539fb4241b98902eba6bba32f5b9ca99df903b667330783524f55c839754404b5f3340d09188c06a00e64561a6f06852a7d6009896df7af4565801995723236b96812addb86227288d125ce8ab5cea48a7a3c469bba352d9d2bb0e88bd5e0e43042d623ab9d352199aba73e04b202c9d543a0fc99f1cf4e96d9701abb2a3bd4a45223cf8de37519d6e2da13f47a39e5722aab12906bc3fe7e6bc4a7a8d5cf04a46c4e68b0fe5805c821016ded7f5239cd34998013727a80f0eca57dcc768d8ac89de301521dafc1db0c701d6b5bc3f3912f61bd99b938e2e2c43be7fda236fb8835617e6445a61f22e88df5db3f5da6806dd37fe0b69a5825845d64ffd4d0514114199ad138381a1fb46a87c813357d2d27f907183f9005bbd2278ac5141046427497d36d8a7a10595764255e67f8dd596d93cddd82a7d61dd088bf311a34a1f2c96aa44e003ce0bd9aa104b723c3e7bb5acb2f7d65608f95d6aee81957830f069d99d1ac97cfd2fe1ce558988f0eb860c694ae8fda4bcb7e11a54b7d29d6f2485ff8f0bf580d7d2d61fa85f8b18ce146d1a9bc5199eeb6406fe5be2a22e947057c944be46b4a7b6d0912115751e08c26926688c31d0004068f5634aa1994c6e1496e2fbeade2d4d9cd3d78efa9f8f00811ab6150270045f151c0e8a2cad1a80"], 0x3f36)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x400448cb, 0x0)
getsockopt$IP_VS_SO_GET_DESTS(r1, 0x0, 0x484, &(0x7f0000000000)=""/89, &(0x7f0000000080)=0x59)

6m15.872790194s ago: executing program 3 (id=535):
fsopen(&(0x7f0000000000)='minix\x00', 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@deltclass={0x4c, 0x29, 0x300, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0x0, 0x7}, {0x6, 0xa}, {0xfff2, 0x1}}, [@tclass_kind_options=@c_sfb={0x8}, @tclass_kind_options=@c_prio={0x9}, @TCA_RATE={0x6, 0x5, {0x8, 0xf9}}, @tclass_kind_options=@c_cake={0x9}]}, 0x4c}, 0x1, 0x0, 0x0, 0x804}, 0x4004000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
rt_sigsuspend(0x0, 0x0)
syz_open_dev$vcsn(&(0x7f0000000300), 0x2, 0x100)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mkdir(&(0x7f0000000200)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='binder\x00', 0x0, 0x0)
chdir(&(0x7f00000000c0)='./file0\x00')
ioctl$AUTOFS_IOC_PROTOSUBVER(r1, 0x40049366, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x15)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
ioctl$HIDIOCGRAWPHYS(0xffffffffffffffff, 0x80404805, &(0x7f0000000340))
syz_emit_ethernet(0x82, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)

6m14.386711543s ago: executing program 3 (id=540):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCSETS(r0, 0x404c4701, &(0x7f0000000040)={0x1, 0x0, 0x1, 0x0, 0x5, "3e000010000000418e9e126aa25b1b0100"})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x0, 0x8, 0x8001, 0x0, 0x9, 0xe0000000000000, 0xfefffe0000000001, 0xfa11, 0xffffffff}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x35, 0x9, 0x2, 0x180, 0x4, 0x10, 0xf1, 0x50, 0x7fffffffffffe, 0x5, 0x6, 0x9, 0x8000000000000000, 0x60, 0x0, 0xbdb], 0xffff1001, 0x4000})
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(0xffffffffffffffff, 0xc040564a, &(0x7f0000000200)={0x0, 0x0, 0x300f})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)

6m14.379497645s ago: executing program 1 (id=541):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
r2 = socket(0x80000000000000a, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0x3, 0xfa11, 0xffffffff}, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b00000000000000"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x1, 0xf, &(0x7f0000000100)=ANY=[@ANYBLOB="180800c27e614a9957fe0000001a44a9eda7af44d527b5f0cbc52d", @ANYRES32=r2], &(0x7f0000000980)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000680)={r5, 0x6b, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000001200)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x13, 0x8, 0x0, 0x0}}, 0x10)
r6 = openat$dma_heap(0xffffffffffffff9c, 0x0, 0x8c081, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r6, 0xc0184800, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='numa_maps\x00')
mmap(&(0x7f0000200000/0x4000)=nil, 0x4000, 0x4, 0x200000006c832, 0xffffffffffffffff, 0x0)
ioctl$TIOCMSET(0xffffffffffffffff, 0x5418, 0x0)
setsockopt$inet6_group_source_req(r2, 0x29, 0x2b, 0x0, 0x0)
setsockopt$inet6_group_source_req(r2, 0x29, 0x2c, &(0x7f0000000200)={0xffffeffc, {{0xa, 0x0, 0x100000, @mcast1={0xff, 0x7}, 0x5}}, {{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x104)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$devlink(&(0x7f00000016c0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r7, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000001740)={&(0x7f00000009c0)=ANY=[@ANYBLOB="9800050000590a5362c22203cc10e461c03761843ea0a18deedea47301fc83ad35cda2ce91151ede7e8cc57dd5f52e837b53e41841f2b718bf71c30e7c3f874570f475f87e3526a1d300138909aa62890cd74e37e3ce53134f3b8ae740f527f4e7755db9d00a37565752b47b99a9a551794e92dd5a51add14b115a18c0b7d40a6c377229e572", @ANYRES16=r8, @ANYBLOB="b74500000000000400084a0000000f00a8007365636f6e646e616d6500007100a8002ee12b9fa6bd7a58b95cdd46298d5a5d66d85d08cadfac6966b5667bbce05fa1cfcde4b4c64779991ee3737683817ec98d06fcf199c0f6a037b998068a19fdf84c50f5919262baa581e083e1a627c5b6487a6befaa5f353527768b3bc20d293d7962b7224d1f816ba2b64ba4c4000000"], 0x98}, 0x1, 0x0, 0x0, 0x20044041}, 0x4000040)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r9, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="090000000000000026bd7000ffdbdf25050000000800010008000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4048854}, 0x40010)
setsockopt$MRT6_FLUSH(r2, 0x29, 0xd4, &(0x7f0000000000)=0x16, 0x4)
setsockopt$inet6_group_source_req(r2, 0x29, 0x2c, &(0x7f0000000480)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}, 0x1}}, {{0xa, 0xf5, 0x7, @initdev={0xfe, 0x88, '\x00', 0x3, 0x0}, 0xfffffff8}}}, 0x104)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r1, &(0x7f0000000f00)={0x15, 0x110, 0xfa00, {0xffffffffffffffff, 0x0, 0x1c, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @in={0x2, 0x4e22, @broadcast}}}, 0x118)
connect$bt_sco(r0, &(0x7f0000000040)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)

6m13.178303779s ago: executing program 1 (id=544):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r0)
close(0xffffffffffffffff)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc080003400000001408000c4000000e45400000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c00018006000100d103000014000000110001"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSETELEM={0x40, 0xc, 0xa, 0x101, 0x0, 0x1000000, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x14, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "d1ff"}]}]}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x68}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

6m13.176368091s ago: executing program 1 (id=545):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
writev(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000000)='4', 0x1}], 0x1)
bind$bt_hci(r1, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r2=>r0, {0x6}}, './file0\x00'})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_PMK(r2, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000280)={0x94, r3, 0x2, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x6, 0x38}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_PMK={0x14, 0xfe, "d4061df6907cc5a45c2b27ef61a2cea8"}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "9f35282d633cdea1408e2f27d17c2b22"}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "2037ccf0ace35e6c3be9c92a70e2daca"}, @NL80211_ATTR_PMK={0x14, 0xfe, "9aa3e1f29aee84300a22b5786969cbd0"}]}, 0x94}, 0x1, 0x0, 0x0, 0x400c081}, 0x80)
write$binfmt_misc(r1, &(0x7f0000000000), 0xd)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x4c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7, 0x0, 0xfffe}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}, @NFTA_SET_FLAGS={0x8}]}, @NFT_MSG_NEWSETELEM={0x4c, 0xc, 0xa, 0x101, 0x0, 0x0, {0x7, 0x0, 0x200}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x20, 0x3, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_DATA={0x4}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x6}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xe0}}, 0x0)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xf, &(0x7f0000000080)={0x7, 0x8}, &(0x7f00000000c0))
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r6, r5}, 0xc)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140))
r7 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r7, &(0x7f0000000000)={0xa, 0x0, 0xfffffffd, @local, 0x2}, 0x1c)
sendmmsg$inet6(r7, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000400)={'batadv0\x00', <r8=>0x0})
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000440)={0x1b, 0x0, 0x0, 0x401, 0x0, r0, 0x2, '\x00', r8, 0xffffffffffffffff, 0x5, 0x4, 0x1}, 0x50)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r7, 0x4014f50b, &(0x7f0000000180)={0x1, 0x3ff, 0x9})

6m13.164587124s ago: executing program 1 (id=546):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x6, @multicast2, 0x0, 0x0, 'dh\x00', 0x12, 0x4000ffc, 0x54}, 0x2c)
r1 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x8, r4)
ptrace$getregset(0x4205, r4, 0x1, &(0x7f0000000080)={&(0x7f00000000c0)=""/120, 0x78})
ioctl$KVM_X86_SETUP_MCE(r3, 0x4008ae9c, &(0x7f0000000340)={0x2, 0xd, 0x2})
mq_open(&(0x7f0000000080)='eth0\x00#~\x02\x00\x00\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfd\x05\x00\x00\x00\x00\x00\x80\x00\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94uu_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18A\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x05\x00\x00\x000\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xce\x00\x00\x00\xe8\vq+\xbb\xc7\xaf\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r6 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$KEYCTL_MOVE(0x1e, r6, 0xfffffffffffffffe, r6, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x8)
r7 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r7, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket$inet6(0xa, 0x1, 0x8010000000000084)
io_setup(0x1, &(0x7f0000000200))
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x80)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000000c0)='debugfs\x00', 0x1214040, 0x0)
mount$overlay(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000040)={[{@xino_on}, {@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
getdents64(0xffffffffffffffff, &(0x7f0000000400)=""/4096, 0x1000)
mount$overlay(0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f0000000100)='./bus\x00')
r8 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0/file0\x00', 0x8880, 0x85)
getdents64(r8, 0x0, 0x203e17d0)

6m12.101296119s ago: executing program 1 (id=549):
fsopen(&(0x7f0000000000)='minix\x00', 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@deltclass={0x4c, 0x29, 0x300, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0x0, 0x7}, {0x6, 0xa}, {0xfff2, 0x1}}, [@tclass_kind_options=@c_sfb={0x8}, @tclass_kind_options=@c_prio={0x9}, @TCA_RATE={0x6, 0x5, {0x8, 0xf9}}, @tclass_kind_options=@c_cake={0x9}]}, 0x4c}, 0x1, 0x0, 0x0, 0x804}, 0x4004000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
rt_sigsuspend(0x0, 0x0)
syz_open_dev$vcsn(&(0x7f0000000300), 0x2, 0x100)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mkdir(&(0x7f0000000200)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='binder\x00', 0x0, 0x0)
chdir(&(0x7f00000000c0)='./file0\x00')
ioctl$AUTOFS_IOC_PROTOSUBVER(r1, 0x40049366, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x15)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
ioctl$HIDIOCGRAWPHYS(0xffffffffffffffff, 0x80404805, &(0x7f0000000340))
syz_emit_ethernet(0x82, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)

6m10.955976468s ago: executing program 1 (id=552):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$kcm(0x29, 0x7, 0x0)
r0 = syz_open_dev$sndctrl(&(0x7f0000002b80), 0x1, 0x8000)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc2c45513, &(0x7f0000002e00)={{0x8, 0x7, 0x3, 0x2, 'syz0\x00', 0x7b}, 0x0, [0x8, 0x200000a, 0x1000, 0x0, 0xb3d, 0x7fffffff, 0x6, 0x5, 0xbc0, 0x7, 0x15b, 0x7, 0x5944, 0x5, 0x7, 0x8004a7, 0x9, 0x5, 0xb, 0x3, 0x2c, 0x400, 0x2000040, 0x10000000, 0x7, 0x0, 0x6, 0x800, 0x3, 0x3, 0x4, 0x6, 0x6, 0xfff, 0x3ff, 0x1, 0x5, 0x3, 0x5, 0x6, 0x3, 0x7fff, 0xffff8006, 0xe, 0xe, 0x0, 0x2, 0x5, 0xe, 0x4, 0x9, 0x80000001, 0x400, 0x1ff, 0x9, 0xfffff647, 0x408, 0x4, 0x1, 0xc, 0x8, 0x9, 0x6, 0x8, 0x98, 0xbe, 0x1, 0xa, 0x7, 0x80000000, 0x81, 0x10001, 0x2, 0x80000001, 0x69e, 0xb, 0x7000000, 0x0, 0x8, 0x9, 0x7, 0x9, 0x1, 0x3, 0xfffffffd, 0xffff, 0x6, 0x8, 0x7ff, 0x4, 0xef, 0xff, 0x4, 0x3, 0xf86, 0x58a0, 0x1, 0x19, 0x895, 0x6, 0x9, 0x89, 0xfffffffe, 0xa1a9, 0xe0ae, 0x9, 0x7, 0x12, 0x3, 0x3, 0xfffffffa, 0x3, 0x2, 0x1, 0xc3c, 0x1, 0xe, 0x5, 0x8, 0x2, 0xf2, 0x4, 0x1ff, 0x7, 0x2, 0x7, 0x6, 0xff]})
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @raw_data="dea233684c996156af0d4bd8e3300217e750b8c97b7123d48003e7e1d3be5f710c41a1db6719881876e9bcc6e2f73c67cc6b675eb43188b5b7f9f898868de9a9c5d536d418ba283121a73a5aba55a87d2a2525295f4492bbde02ad8bc8e88779f2de06f38e99172df4d45b6f13c813dee4230c204a93172922b778fef7a1f89ce876bb89d44cd705bbb28db4869dfac20d928950507acd92c02d17f51b0a627539f6e0a0bdb92004bc6252cd35e8cd100962db9a83ad63a4e7e1ca17c1b6aac63fefa9bebe429d00"})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f000000eb80)=@newtfilter={0x3e3c, 0x2c, 0xd27, 0x70bd24, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x4, 0xa}, {}, {0xfff2, 0x2}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x3dfc, 0x2, [@TCA_CGROUP_ACT={0x3ce8, 0x1, [@m_simple={0x78, 0x4, 0x0, 0x0, {{0xb}, {0x3c, 0x2, 0x0, 0x1, [@TCA_DEF_PARMS={0x18, 0x2, {0x8, 0x0, 0x10000000, 0x4, 0x3}}, @TCA_DEF_DATA={0x5, 0x3, '\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0xffff, 0x100, 0x4, 0x80000000, 0xfffffffd}}]}, {0x12, 0x6, "014ae66f637d408ac3041c784f23"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x3}}}}, @m_connmark={0x17c, 0x18, 0x0, 0x0, {{0xd}, {0xac, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x10001, 0x9d, 0x5, 0x80000001, 0x3}, 0x2}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x8, 0x0, 0x2, 0x1, 0x100}, 0x4}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x8, 0x80000001, 0x5, 0x80, 0x58}, 0xffff}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x6, 0x2, 0x5, 0xfffffffc, 0xee11de54}, 0x7ff}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x8, 0x10000, 0x10000000, 0x1, 0xd1}, 0x3}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x2, 0x1000, 0x10000000, 0x3b141123, 0x7}, 0x7}}]}, {0xa4, 0x6, "ffb9888f2cf5b30ac60c325cda22f767e69585f5fa5b4f19526f8c2e9d4da57327447a2fe9f2f1b8048131670cbc34fb95b90185048c5a2f5da04893f4f0fcd16a12ccf956fe1150be1f56a267908a2f910c55c83ef3a18c06a6cc46bd0faa33996b64c7d56c9ebc90ffa1d419cadaea0db5a8c7572b3277f82a7bc01b9f016e7422160cb3b49a3355dc3a767d34b1f222b4219fc89f79c193b4482cf516fb48"}, {0xc, 0x7, {0x1}}, {0xc}}}, @m_pedit={0x1f50, 0x12, 0x0, 0x0, {{0xa}, {0x1e98, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe68, 0x2, {{{0x9, 0x9f, 0x20000004, 0x3}, 0x6, 0x0, [{0xcd6e, 0x7, 0x8, 0xac5d, 0x8, 0xfff}, {0xad, 0x7, 0x9, 0x3, 0x3, 0x3}, {0x3ff, 0x9, 0xb, 0x2, 0x1, 0xb7}]}, [{0xff, 0x2, 0x8, 0x6, 0xfffffffe, 0xd530}, {0x7, 0x9, 0x8, 0x10001, 0xc, 0x8}, {0x3ec5, 0xc, 0x4, 0xe, 0x4e, 0x8}, {0x0, 0x4, 0x9, 0xea6f, 0x5, 0x7}, {0xffffffff, 0xfffffff7, 0x100, 0x2, 0x4000000, 0x56}, {0x3ff, 0x13df, 0xff, 0x9, 0x4, 0x36863a03}, {0xffffffff, 0x7f, 0x0, 0xff, 0x200, 0x4}, {0xb7d, 0x0, 0xfffff012, 0x6, 0x7, 0x10}, {0x1c0, 0x8, 0x4, 0x9, 0x3fe00000, 0x7f}, {0x3, 0x5f, 0x7f, 0x613, 0x7, 0x4a5f9ce5}, {0x6, 0x2, 0x7ff, 0x2, 0x0, 0x803}, {0xa, 0x2d, 0xe, 0x9, 0x9, 0x8}, {0x4, 0x0, 0x5, 0xd527, 0x4, 0x4}, {0x8, 0x9, 0x6, 0x3, 0x0, 0xffff222c}, {0x7, 0x7, 0x800, 0x8, 0xebc}, {0x2, 0xc81, 0xb4, 0x8, 0x7db0, 0x1000}, {0x2, 0x4, 0x0, 0x1288, 0x3, 0x22c}, {0x2, 0x5, 0x7, 0x8000, 0x4, 0x8}, {0x84, 0x7, 0x6, 0x4, 0x8, 0x1}, {0xd, 0x401, 0x6, 0x5, 0x3ff, 0x10}, {0x1ff, 0x8, 0x0, 0x8, 0x2, 0xff8}, {0x6ec5, 0xb, 0x9, 0x9b47, 0x2, 0x1}, {0xffffff68, 0x7a, 0xc, 0x2, 0x3, 0x3}, {0x1, 0xfffffffe, 0x959, 0x2, 0x623, 0xd}, {0xf, 0x74, 0x7, 0xd9, 0x4, 0x8}, {0xfc, 0x0, 0x1, 0x7, 0xbe7e, 0x6}, {0x3ff, 0x9, 0xf, 0x9b69, 0x1, 0x4}, {0x8, 0x6, 0x5, 0x1, 0x864, 0x1}, {0x0, 0x230, 0x7, 0x6, 0x29d86b03, 0x7}, {0x1, 0x5670, 0x7, 0x9, 0x8, 0xfffffff9}, {0x4, 0x9, 0x7, 0xfffffffb, 0xfffffff1, 0x2}, {0xc, 0x7, 0x3, 0x5, 0x3ff, 0xf}, {0x0, 0x5, 0x5, 0x1, 0xd2a, 0x2}, {0x41f36375, 0x4, 0x1, 0x401, 0x2, 0xfffffffd}, {0xe8be, 0xfff, 0x6, 0x7f, 0x1, 0x5}, {0x46e2, 0x6cf6, 0x9, 0xa8e5, 0xfffffffc, 0x8}, {0x2, 0x3, 0x7b3, 0x580, 0xfffff323, 0x627}, {0xf, 0x5, 0xfffff000, 0x101, 0x6}, {0x7, 0x7, 0x1ff, 0x81, 0x2, 0x5}, {0x80, 0x9, 0x16, 0x80000000, 0x10000, 0xfc000000}, {0x8, 0xfff, 0x4, 0x4, 0x5, 0x7871}, {0x6, 0x4, 0xfffffffd, 0x81, 0x80}, {0x10000, 0x5, 0xffffffff, 0x10001, 0xbd, 0x28c}, {0x9, 0x1, 0xe, 0x6f0, 0x7, 0x6}, {0x101, 0x4d9, 0x80, 0x6, 0x2, 0x80}, {0x2, 0xe, 0x7, 0x3, 0x2, 0x28}, {0x100, 0xba, 0x7, 0x7f, 0x9, 0x4}, {0x4, 0x80, 0x16c374f3, 0x200, 0x6c4, 0xf28}, {0xf4a7, 0x5, 0x9, 0x2, 0x7, 0x1}, {0x1, 0x1ff, 0x1, 0x6, 0x200, 0x6}, {0x0, 0x3, 0x7, 0x8001, 0x7fff, 0x4}, {0x1, 0x7fffffff, 0x4, 0x0, 0x8, 0x9}, {0x0, 0x3, 0xd338, 0x2, 0x9ea, 0x2c}, {0x3aea, 0x9, 0x5, 0x8, 0x14, 0xd}, {0xfffffff1, 0xff, 0x9, 0x2, 0x9, 0x7}, {0x6, 0x0, 0x5247, 0x1ff, 0x10, 0x6}, {0xfffffffe, 0x2, 0x7, 0xfffffff8, 0x2, 0xffff}, {0x5ce965af, 0x2, 0x8, 0x2, 0x7ff, 0x3}, {0x9, 0x9, 0x1, 0x100, 0x3, 0x2}, {0x58, 0x400, 0x7, 0x4, 0xc7, 0x1}, {0x4, 0xfffffffd, 0x6, 0x0, 0x3, 0x7}, {0x10000, 0x5, 0x7, 0x5, 0x58, 0x800}, {0x2, 0xe4, 0x1, 0x4, 0x10000, 0x100}, {0xffffffff, 0x88, 0x4, 0x3, 0x1, 0x4}, {0x55a8dd4, 0x5, 0xe0bd, 0x1, 0x9}, {0x9, 0x0, 0x4, 0x9, 0xf97, 0x5}, {0x0, 0x5, 0x6, 0x0, 0x6, 0xb}, {0x400, 0xc7, 0x4, 0x4, 0xc63c, 0x2}, {0x0, 0x4, 0x3, 0x1, 0x739, 0x2}, {0xbd47, 0x3, 0x100, 0x5, 0x8, 0x10000}, {0x2, 0x1d, 0x9, 0x7f, 0xa}, {0x0, 0x10, 0x5, 0xf, 0x1, 0x5}, {0x25a6, 0x80000000, 0x1, 0x7, 0x3, 0x7}, {0x1, 0x101, 0x6, 0x80, 0x10000000}, {0x7, 0x5ea, 0xe72, 0x1, 0x1, 0xef4}, {0xfffffeff, 0x7, 0x7, 0x9, 0x8000, 0x6}, {0x0, 0x9, 0xc966, 0x9, 0xd, 0x8}, {0x0, 0x6f04944e, 0x6, 0xfffffffa, 0x8}, {0x7fffffff, 0x8, 0x1ff, 0xc, 0xfffffffe, 0x1}, {0x1, 0x5, 0xf, 0x8, 0x2, 0x1}, {0x6, 0x7, 0x10000, 0x10000, 0x6, 0x5}, {0x3ff, 0xffffffff, 0x5, 0x7, 0xfe}, {0x40, 0x6, 0x6, 0xfe, 0x7, 0x8}, {0xa, 0x4, 0x2000000, 0x1, 0xffe00000, 0x9}, {0x10000, 0x3, 0x4, 0x2, 0x8000, 0x1}, {0x8, 0x7, 0x8, 0x2, 0x81, 0x101}, {0x9, 0x3, 0x9, 0x0, 0x800, 0x30f1}, {0x7, 0x2, 0x2, 0x0, 0x101, 0x5}, {0x1, 0xb, 0xf, 0xfffffffa, 0x5, 0x8001}, {0x6, 0xfffffffd, 0x7ff, 0x4, 0x2, 0x8}, {0xfffffeff, 0x4, 0x6, 0x8, 0x7f, 0x10001}, {0xffffffff, 0xffff, 0xfffffffd, 0x2, 0x4, 0x9}, {0xd, 0x5, 0x3, 0x2, 0x101, 0x4}, {0x0, 0x5, 0x1, 0x3, 0x3, 0x1}, {0x8, 0x81, 0x10001, 0x10001, 0x99ef, 0x10001}, {0x3, 0x6, 0x4, 0x101, 0x1, 0x2}, {0x9, 0x1, 0x4, 0x4, 0x2, 0x7fffffff}, {0x0, 0xfff, 0x7, 0xaed, 0x15, 0x9}, {0x80000001, 0x563, 0x1, 0x3, 0x80000000, 0xfffffff1}, {0x2, 0x10001, 0xff, 0xb5b, 0x7, 0x40}, {0x5e, 0x6, 0xe, 0xf75, 0x81, 0xd68}, {0x8, 0x5, 0x1b158, 0x8577, 0x821f, 0x401}, {0xb7c, 0x9e, 0xffffffff, 0x3, 0x3, 0x7fff}, {0x1, 0x2, 0x3, 0x7, 0x1000, 0xe}, {0x401, 0x8, 0x7, 0x2, 0xd9, 0x1}, {0x0, 0x0, 0x9, 0x9, 0x10, 0x6}, {0x4, 0x0, 0x1, 0x607, 0x4, 0xfffffe01}, {0x80000000, 0xd0e, 0x2, 0xff, 0xc}, {0x5, 0x4, 0x0, 0x4, 0x8, 0x80000000}, {0x3, 0x27, 0x52, 0x7, 0x7, 0x7}, {0xfffffffe, 0xfb, 0x5, 0x80, 0x4, 0x2}, {0x7, 0xe4b, 0x7, 0x5, 0x3, 0x5c}, {0x10000, 0x3, 0xadc, 0x6, 0x7, 0x800}, {0xc0, 0x8, 0x1, 0x8, 0x3, 0xfffffffe}, {0xfffffffa, 0x5, 0x5, 0x5, 0x0, 0x81}, {0xc, 0x4, 0x9, 0xf, 0xfffffffd, 0x1f7492d9}, {0x6, 0x37, 0x8, 0x4, 0x2, 0x8}, {0x1, 0x0, 0x1, 0xf149, 0x90e, 0x7fff}, {0x8, 0x5be, 0x2, 0x4e, 0x0, 0x7}, {0x400, 0xce8a, 0x2, 0xb, 0x50e5, 0x7}, {0x9, 0x6, 0x0, 0x9, 0x5, 0x4}, {0x0, 0xa, 0x900, 0x6, 0x4b9d, 0x7}, {0x2, 0xfffffffa, 0x5248, 0x8, 0xffff, 0x39b9}, {0x4, 0x8000, 0x81, 0x7, 0x8, 0xfffffffa}, {0x9, 0x4, 0x7fffffff, 0x0, 0x8, 0x80000000}, {0x3, 0x1ff, 0x1, 0x4, 0x10, 0x7}, {0x85, 0x6, 0x5, 0x4, 0x8, 0x1fffe00}, {0x1, 0x7, 0x6, 0x1, 0x5, 0x1ff}], [{0xd7d84b8bcf5ccd7a}, {}, {0x4}, {0x2, 0x1}, {0x3}, {0x1}, {0x5, 0x1}, {0x2, 0x1}, {0x2}, {0x0, 0x1}, {0x1}, {}, {0x5, 0x1}, {0x3}, {0x5, 0x1}, {0x2, 0x1}, {0x3}, {0x1}, {0x3, 0x1}, {0x3}, {0x5}, {}, {0x6, 0x1}, {0x5}, {0x5}, {0x0, 0x1}, {}, {0x5}, {0x2}, {0x0, 0x1}, {0x4, 0x1}, {0x0, 0x1}, {0x5, 0x1}, {0x2}, {0x0, 0x1}, {0x4, 0x1}, {0x3}, {0x4}, {0x5, 0x1}, {0x3}, {0x1}, {0x4}, {0x3, 0x1}, {0x2}, {0x1, 0x1}, {0x4, 0x1}, {0x3}, {0x4, 0x1}, {0x5}, {0x3}, {0x4, 0x1}, {0x0, 0x1}, {}, {0x3}, {}, {0x3, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x2, 0x1}, {0x4}, {0x3, 0x1}, {0x5, 0x1}, {0x1, 0x1}, {0x5, 0x1}, {0x2, 0x1}, {0x5}, {0x1}, {0x3}, {}, {0x4, 0x1}, {0x3, 0x1}, {}, {0x3}, {}, {0x3, 0x1}, {}, {0x0, 0x1}, {0x4, 0x1}, {0xe2b577a592eacaaf}, {0x0, 0x1}, {0x0, 0x1}, {0x1}, {}, {0x5}, {}, {0x3}, {0x1, 0x1}, {0x2, 0x1}, {0x1}, {0x2}, {0x7, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x4}, {0x3, 0x1}, {0x1}, {0x5, 0x1}, {0x1, 0x1}, {0x5}, {0x0, 0x1}, {0x3, 0x1}, {0x5}, {0x6}, {}, {0x0, 0x1}, {0x5}, {0x2, 0x1}, {0x3, 0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x5, 0x1}, {0x2}, {0x5}, {0x1, 0x1}, {0x0, 0x1}, {0x3}, {0x0, 0x1}, {}, {0x1}, {0x5}, {0x1}, {0x1, 0x1}, {0x4, 0x1}, {0x3, 0x1}, {0x4}, {0x4, 0x1}, {0x5, 0x1}, {0x5, 0x1}], 0x1}}, @TCA_PEDIT_PARMS_EX={0xe38, 0x4, {{{0xe94, 0x2, 0x7, 0xb, 0x10000}, 0x9, 0x5, [{0xfff, 0x81, 0x6, 0x6, 0x9, 0x4}]}, [{0xffffffff, 0x9978, 0x37, 0xfffffff0, 0x80000000, 0x8000}, {0x2, 0x6, 0x5, 0x4, 0x3, 0x9}, {0x9, 0xf, 0x0, 0xffffffc0, 0xe53, 0x4b6}, {0x3, 0xf, 0x80000001, 0x80, 0x7, 0x2}, {0x8, 0x4, 0xffffffc0, 0x4, 0x0, 0x40010000}, {0xfffffff7, 0x0, 0x9, 0xff, 0xc, 0x80000000}, {0x0, 0x1, 0x4, 0xffffffff, 0x36, 0x1}, {0x3, 0x80000001, 0x1, 0xed6, 0x8000, 0x6}, {0xfffffffe, 0x3, 0x77, 0x0, 0x4, 0x7ff}, {0xfffff6cb, 0x8, 0x0, 0xffffff90, 0x1, 0xd04}, {0xf, 0xffff, 0x3, 0x6, 0xffffffff, 0x35}, {0x5, 0x10001, 0x9, 0x6, 0x6}, {0x3, 0x3, 0x3, 0xfdbc, 0x5, 0x8}, {0x3, 0xff, 0x8, 0xfffffff8, 0x3, 0xfffffffe}, {0x4, 0x1, 0x6, 0x0, 0x7}, {0x6, 0x1f83, 0xff, 0x7, 0x1}, {0x5, 0x89, 0x7, 0x101, 0x4, 0x1}, {0x100, 0x7f, 0x6, 0x3, 0xfffffff7, 0x9}, {0x0, 0xffffffff, 0x1000, 0xa7e, 0x3, 0x7}, {0x401, 0x9, 0xfff, 0xfffffffd, 0x2, 0x9211}, {0x1, 0x5, 0x2, 0x10001, 0x101, 0x1ff}, {0x3, 0x2ab, 0xffffffff, 0xd, 0x9, 0x4}, {0x6, 0x4, 0x5, 0xd75, 0xffffffff, 0x10000}, {0x9, 0x2, 0x36, 0x4, 0x7, 0x6}, {0x8, 0x5, 0x3, 0x4, 0x10000, 0x6}, {0x8, 0xbf1, 0x9, 0x3, 0x3, 0x9}, {0x9, 0x100, 0x6, 0x5, 0x40}, {0x21d, 0xffffffff, 0x4, 0x80000001, 0x6, 0x2}, {0x6, 0x4, 0xfffffff9, 0x8, 0x2, 0x7ff}, {0x5, 0x6, 0x5, 0x1, 0x1, 0x2}, {0x8, 0x81, 0xffffffff, 0x81, 0x4, 0xa2}, {0x6, 0x401, 0x6e, 0x10, 0x6, 0x7}, {0x4, 0x7, 0x0, 0x9, 0x2, 0x3}, {0xfffffffd, 0xcb, 0x0, 0x0, 0x9, 0x1}, {0x3, 0x4, 0x6, 0x7, 0x1000, 0x10}, {0xc06, 0x2, 0xffffff6c, 0x1, 0x7ff, 0x8}, {0xfffeffff, 0xb6, 0x6, 0x1, 0x2f, 0x6}, {0xfff, 0x6, 0x101, 0x1, 0x81, 0x80}, {0x80, 0x304, 0x0, 0x62, 0x1, 0xe1}, {0x0, 0x4f, 0x14fc, 0x8, 0x2, 0xffffbcef}, {0x9, 0x7, 0x7, 0x10000, 0x10000, 0x1}, {0x86a, 0x1, 0x0, 0x3, 0x567, 0x6}, {0x8, 0x4, 0x8, 0x1, 0xf}, {0x7, 0x7, 0x3, 0x9, 0x4, 0x2}, {0x3, 0x4, 0x9, 0x10, 0xc, 0x400}, {0x7, 0x5b, 0x0, 0x8000, 0x7fffffff, 0x6}, {0x2, 0x7fffffff, 0x800, 0x6, 0x6, 0xd}, {0x1ff, 0xa7, 0x8, 0x7, 0x5, 0x3ff}, {0x699, 0x5, 0x3, 0x5, 0x2, 0x7}, {0x0, 0x7f, 0x6, 0x8d, 0x3, 0x1}, {0x2, 0x1, 0x5, 0x7f, 0xe, 0xfffffff1}, {0x8, 0x4, 0x0, 0xe, 0x4, 0x4}, {0x1, 0x800, 0x9, 0x7f, 0x5, 0x10001}, {0x3475, 0x5, 0x800, 0x0, 0x6, 0x9}, {0x800, 0x80000000, 0x5, 0x4, 0x4, 0x3ff}, {0x3, 0x9, 0x8, 0x14d, 0xfffffff8, 0x3b000000}, {0x5, 0x9, 0x7, 0x7fffffff, 0xfffffffc, 0x9}, {0x5, 0x0, 0x8, 0x40, 0x17, 0x68f}, {0xf387, 0xb, 0x0, 0xc, 0x800, 0x2}, {0xb6, 0x4, 0x1, 0x1d9639ac, 0x10, 0x4}, {0x6f9, 0x7e3, 0x9, 0x2, 0x2, 0x1}, {0x2, 0x4e, 0xf70, 0xe, 0x9, 0x3}, {0x4, 0x5, 0xffff, 0x0, 0x596e, 0x3ff}, {0x200, 0x8000, 0xd, 0x7, 0x3, 0x14e}, {0x9, 0x5, 0x0, 0x9, 0x4}, {0x66ac, 0x6, 0x5, 0x3, 0x9, 0xb}, {0x8000000, 0x9, 0x3, 0x5b7, 0x646, 0xffffffff}, {0x6dbf, 0x7fffffff, 0x2000002, 0x1, 0x8}, {0x81, 0x5, 0xe, 0x6, 0x800, 0x8d8}, {0x1, 0x7, 0x3, 0x7, 0x97, 0xfff}, {0x6, 0x4244, 0x5, 0x5, 0x4, 0x8}, {0x4, 0x2, 0xfffffc00, 0x3483, 0x80, 0x2}, {0x6, 0x1, 0x1, 0x7, 0x8001, 0xc437}, {0x15, 0x2, 0x4ee, 0x6, 0x1ff, 0x2}, {0xfffffff7, 0x9, 0x0, 0x8, 0x4, 0xb9f}, {0x58, 0x9, 0xab10, 0xffffffff, 0x5, 0x3}, {0xffffeedb, 0x6, 0x2, 0x6, 0x9, 0x3}, {0x4, 0x0, 0x65, 0x5, 0x76d, 0xffff}, {0x9, 0x2, 0x9, 0x1, 0x3, 0x7}, {0x2, 0x7, 0x5, 0x8000, 0x9, 0x200}, {0x0, 0x1000, 0x80, 0x64, 0x80000001, 0x80000000}, {0x7, 0x0, 0x5, 0x1, 0x1, 0x4}, {0x4995, 0xfffffff3, 0x0, 0x9, 0x0, 0x9}, {0x7, 0x2, 0x7fffffff, 0xb2, 0xb, 0x5}, {0x8, 0x9, 0x1000, 0x6, 0x8, 0x9}, {0xa1, 0xd16, 0x7159, 0x0, 0x4, 0x8}, {0xfffeffff, 0x2, 0xdffc, 0x10, 0x5, 0x9}, {0xffffffff, 0x9, 0x8, 0x9, 0x1, 0x800}, {0x5, 0x1b34, 0x1, 0xb041, 0x5, 0x8}, {0x8001, 0x9, 0xd, 0x6, 0xfffffffe, 0x800}, {0x7fffffff, 0xfff, 0x7, 0xd, 0x5}, {0xa, 0x6, 0xf1a, 0x1ff, 0x9, 0x9}, {0x1, 0x9, 0xffffffff, 0xaf67, 0x4, 0xffff}, {0x1, 0x4, 0x0, 0x1, 0x9, 0x9}, {0x2, 0x1ea, 0x8, 0x1, 0x4, 0xffffffff}, {0x9, 0x2, 0x101, 0x3ff, 0x10000}, {0x6, 0x79d, 0xfffffffd, 0x0, 0x9, 0x10}, {0x59, 0x100, 0x9, 0x40, 0x6, 0xfffffff7}, {0x1, 0x3ff, 0x1000, 0x10000, 0x6, 0x2}, {0x2, 0x1, 0xfffffff6, 0x7, 0x4, 0xe28}, {0x28, 0x800, 0xfffffff9, 0x7, 0x6, 0x3}, {0xf, 0x7, 0x5, 0x8, 0x81, 0x441}, {0x4, 0x1, 0x6, 0x150, 0x0, 0x6}, {0x2, 0x7, 0x1, 0x1, 0x9, 0x10}, {0x0, 0x8, 0x8000, 0x20004, 0xfffffffa}, {0x3, 0x3e, 0xb, 0x5, 0x65, 0x9}, {0x9, 0x3, 0x800, 0x8, 0x200, 0x7}, {0x1, 0x10000, 0x5, 0xcd, 0x9d, 0x6}, {0x1, 0x101, 0x0, 0x8, 0x68, 0x6}, {0x80, 0x9, 0xe9, 0x20a9a468, 0x80, 0x6}, {0x248c, 0xb4, 0x7fff, 0x4, 0xffff, 0xe4}, {0x6, 0x292, 0x7, 0x3ff, 0x6446}, {0x6, 0x7, 0x7, 0x400, 0xba3, 0x2}, {0x4, 0x5e, 0xcfc, 0x5, 0x7, 0x800}, {0x8, 0x9, 0x2, 0x3, 0x9}, {0xa, 0x400, 0xe, 0x8, 0x6}, {0x3, 0x8, 0xfffffff8, 0x56f, 0x0, 0xff}, {0x0, 0x9, 0x2, 0x55, 0x25bc0, 0x2}, {0x1, 0x2f, 0x3, 0x4bf6, 0x0, 0xc5c}, {0x2, 0x5, 0xaf77, 0x0, 0x0, 0x3}, {0x8000, 0x4, 0x10001, 0x7, 0x10001, 0xb23}, {0x800, 0x7, 0x40000000, 0x6, 0x855, 0x6}, {0x6, 0x1000, 0x200, 0x9cb, 0x6, 0x8}, {0x7, 0x2, 0x9, 0x2, 0x800, 0x6}, {0x4, 0x10, 0x6, 0x9, 0x3, 0x9}, {0x8000, 0x7, 0x9, 0xc, 0x1, 0x9}, {0x7, 0x9, 0xca8, 0x0, 0xfffffff2, 0x4}, {0xc00, 0x4, 0x40, 0x2, 0x8001, 0x3}], [{0x4}, {0x3}, {0x1}, {0x1, 0x1}, {0x1}, {0x1, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {}, {0x5, 0x1}, {0x1}, {0x0, 0x1}, {0x5, 0x1}, {0x4}, {}, {0x1, 0x1}, {0x2, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {}, {0x3, 0x1}, {0x2}, {0x0, 0x1}, {0x3}, {0x2}, {0x1, 0x1}, {0x3, 0x50d3fb5c44704705}, {}, {0x5, 0x1}, {0x5, 0x1}, {0x2}, {0x2}, {}, {0x3}, {0x5}, {0x4}, {0x5, 0x1}, {0x1, 0x1}, {0x1}, {0x3}, {0x3}, {0x1, 0x1}, {0x5, 0x1}, {0x1}, {0x2}, {0x1}, {0x3, 0x1}, {0x4}, {0x0, 0x1}, {0x1, 0x1}, {0x2, 0x1}, {0x5}, {0x3, 0x1}, {0x2}, {0xba1c3d736ca20e20}, {0x2}, {0x3}, {0x0, 0x1}, {0x0, 0x1}, {0x2, 0x1}, {0x2}, {0x2, 0x1}, {0x5, 0x1}, {0x0, 0x1}, {0x3, 0x1}, {0x5}, {0x0, 0x1}, {0x5}, {0x2, 0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x2}, {0x3, 0x1}, {0x3}, {}, {}, {}, {0x2, 0x1}, {}, {0x1, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x5}, {0x1}, {0x2}, {0x0, 0x1}, {0x2, 0x1}, {0x2}, {0x3}, {0x5}, {0x3, 0x1}, {0x5, 0x1}, {0x2}, {0x5, 0x1}, {}, {0x1, 0x1}, {0x0, 0x1}, {0x3}, {0x5, 0x1}, {0x5, 0x1}, {0x4}, {0x1, 0x1}, {}, {0x3, 0x1}, {0x1}, {0x2, 0x1}, {0x5, 0x1}, {}, {0x1}, {0x4, 0x1}, {0x5, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x2}, {0x1}, {0x2}, {0x2}, {0x0, 0x1}, {0x5, 0x1}, {0x2}, {0x5, 0x1}, {0x2}, {0x2}, {0x3, 0x1}, {0x2, 0x1}, {0x3}, {0x3, 0x1}], 0x1}}, @TCA_PEDIT_KEYS_EX={0xb8, 0x5, 0x0, 0x1, [{0x24, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}]}, {0x54, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}]}, {0x1c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}]}, {0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}]}, {0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}]}]}, @TCA_PEDIT_KEYS_EX={0xe4, 0x5, 0x0, 0x1, [{0x3c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}]}, {0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}]}, {0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}]}, {0x24, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}, @TCA_PEDIT_KEY_EX_CMD={0x6}]}, {0x44, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x6}]}, {0x1c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}]}]}, @TCA_PEDIT_KEYS_EX={0x58, 0x5, 0x0, 0x1, [{0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}]}, {0x2c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}]}, {0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}]}]}]}, {0x90, 0x6, "411710cea6016de52a5eebdd7c2b86dc550425d17c2699573d4d4f24a1434d3064b7d097dae7e75c10e000a1f04d2cdcbad2a2e65b44c3665e079cf4b79ebd52ae1b90b2f16b076fd0cb6d138b579ee1a3a000b1aa030533b0da5add5a096224bb9b30591100535f40d44528582fee0d77558cfdc9212657416ef8e50cde07fb2a35be02705d5f15532f7a7f"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_ct={0xdc, 0xa, 0x0, 0x0, {{0x7}, {0x4}, {0xb4, 0x6, "a641cafcff171d8e10d82d792767733d0daa51f9e7ee2c9c1af40b602c608e9fea9cc42b969a65f6c7d54a3419d549a97882d8781e1469aa4ac81c8a568c95e2f9a974936ce348ba3d0a63a20b63851c1442c05064fbd4a97cbdf9b013cc0bbe92917c580d05c210a55f4182a504148af28f862b2cdbb2d6fc618b4584050136e6e516f41ad0a04886a9651d01ca352834c0d0a076d41b2aa3e467f02cd71f5b3d29d4b75cca2e256f56e3b4fb973188"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2}}}}, @m_skbmod={0xcc, 0x6, 0x0, 0x0, {{0xb}, {0x8c, 0x2, 0x0, 0x1, [@TCA_SKBMOD_ETYPE={0x6, 0x5, 0x4}, @TCA_SKBMOD_DMAC={0xa, 0x3, @multicast}, @TCA_SKBMOD_DMAC={0xa, 0x3, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0x380}, @TCA_SKBMOD_SMAC={0xa, 0x4, @broadcast}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0xf74b}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0x7, 0x3, 0x8, 0x5, 0x2}, 0x7}}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0x40, 0xfffff9dd, 0x5, 0x5, 0xffff}, 0xf}}, @TCA_SKBMOD_DMAC={0xa, 0x3, @broadcast}]}, {0x15, 0x6, "8716c08d8c9fb180b2351d7d6ef88393e2"}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}, @m_police={0x19f8, 0x3, 0x0, 0x0, {{0xb}, {0x9cc, 0x2, 0x0, 0x1, [[@TCA_POLICE_AVRATE={0x8, 0x4, 0x4}], [@TCA_POLICE_TBF={0x3c, 0x1, {0x100, 0x7, 0xdd, 0x3, 0x4, {0x80, 0x0, 0x630, 0x1, 0x9, 0x7}, {0x3, 0x1, 0x2, 0x240, 0x6}, 0x6, 0x81, 0x9}}], [], [@TCA_POLICE_RATE64={0xc, 0x8, 0xffff}, @TCA_POLICE_RATE={0x404, 0x2, [0x1, 0x7, 0x2, 0x201, 0xcf, 0x1, 0xc, 0x2, 0x2, 0x7, 0x8ac9, 0x8, 0x0, 0x3, 0x8, 0x5, 0x71bf, 0x8, 0x5, 0xc, 0x2, 0x80000001, 0x2, 0x4, 0x521d, 0x8, 0x2, 0x10001, 0x10, 0x4, 0x3, 0x1e00, 0x8, 0x2, 0x9, 0x7, 0x2, 0x8000000, 0x9, 0x4, 0x2, 0x1, 0x3, 0x0, 0x6, 0xe, 0x9f, 0x10001, 0x3, 0xc77e, 0x10000, 0x7, 0x9, 0xfff, 0x4, 0x0, 0x81, 0x9, 0x5, 0x8, 0x1000, 0x4, 0x2, 0x8000, 0x3ff, 0x48, 0x1, 0x9, 0x2, 0x6, 0x68c, 0x0, 0x4, 0x400000, 0x4, 0x7, 0x2, 0x3, 0x1000, 0xfffffff9, 0xfffffffe, 0x5, 0x7ff, 0x6c1, 0x5, 0x10, 0x58de, 0x5, 0x543, 0x101, 0x6, 0x7, 0x2, 0x7, 0x6, 0x6, 0x1, 0x1, 0x9, 0xc4, 0xdbc, 0x4, 0x7, 0x80, 0x9, 0x9, 0x5, 0x7, 0xfffffff8, 0x2, 0x24d, 0xffffffff, 0x4, 0x4, 0x6, 0x14d, 0x8, 0x8, 0x4, 0x2, 0x5, 0x9b, 0x8aa, 0x7fffffff, 0x4, 0x5c31, 0x5, 0x0, 0xfff, 0x4, 0x6c70, 0x1, 0x0, 0xff, 0x7, 0x7fffffff, 0x5, 0x0, 0x0, 0xb60, 0x3, 0x790, 0x8e84, 0x2, 0x7, 0x80, 0x1, 0x5, 0x81, 0x0, 0x7f, 0x8, 0x3, 0x800, 0xc, 0x5, 0xfff, 0xffffff1c, 0x3, 0x6, 0x7, 0x5, 0xc9d, 0xf100, 0x9, 0x2, 0xa, 0x8, 0x2, 0x80000001, 0x5, 0x9, 0x4, 0x3, 0x5, 0x2, 0x4, 0x5, 0x1, 0x5, 0x1000, 0x5, 0x7, 0x7, 0x3, 0x1, 0x6, 0x0, 0x10, 0x6, 0x9, 0x8f, 0x0, 0x8, 0x58f, 0x7ff, 0x600000, 0x7, 0x0, 0x639, 0x1, 0x3, 0x2, 0x2, 0xff, 0x4, 0x1, 0x1, 0xd4d5, 0x6, 0x8a4, 0xe6, 0x106, 0x6, 0x8, 0x2, 0x7, 0x80e0, 0x8, 0xffffffff, 0xb, 0x5, 0x0, 0x9, 0x9, 0x1, 0xf, 0x3, 0xffff8001, 0x0, 0x81b8, 0x8, 0x455, 0x3, 0x2, 0x3a6, 0x4, 0x8001, 0x2, 0xb80, 0x0, 0x5, 0x3, 0x1, 0x5, 0x6, 0x4, 0x800, 0x80000001, 0x2, 0x4, 0x1e5, 0x2, 0x69, 0x4, 0x7f]}, @TCA_POLICE_RESULT={0x8, 0x5, 0x4}], [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x50000}, @TCA_POLICE_TBF={0x3c, 0x1, {0x9, 0x10000000, 0x3, 0x3, 0xc, {0x6, 0x0, 0x3, 0xa9, 0xa4, 0x401}, {0x2, 0x2, 0x5, 0x80, 0x3, 0x5}, 0x7, 0x9e08, 0x6}}], [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x9, 0xfff, 0x1, 0xb, 0xd35, 0x6, 0x58, 0x9, 0x1, 0x6, 0x2d, 0xc, 0x6, 0xa6, 0x6, 0x8, 0x1, 0x7, 0x9, 0x4, 0x0, 0xbb0d, 0x25ee, 0x9, 0xa123, 0x6, 0x8, 0x80000001, 0x478d, 0xa0000000, 0x3, 0x4, 0x28219621, 0x3, 0x3ff, 0xffff2079, 0x33, 0x8, 0x4ed, 0x4, 0x9, 0x1, 0x2, 0x7, 0x9, 0x541, 0xffffffff, 0x80000001, 0xd6e4, 0x8, 0x4, 0x9, 0x2, 0x4, 0xa793, 0x4, 0x2, 0x5, 0xc77, 0x80000000, 0x2, 0x8, 0x0, 0x4, 0x8001, 0x8, 0x1, 0x1000, 0x8, 0x2, 0x5, 0xed1, 0x7, 0x3, 0x80, 0x7, 0x8, 0x400, 0x1, 0x1ff, 0xfff, 0x5, 0x8, 0x91, 0x4, 0x9, 0x2, 0xd3b, 0x5, 0xc1e0, 0x3, 0x4, 0x4, 0x2, 0x101, 0xffff8001, 0x3690, 0xffffffff, 0xffffffff, 0x0, 0x1, 0x3, 0x3, 0x7f, 0x3, 0x80000001, 0x400, 0xffff08eb, 0x4, 0x8, 0x4, 0x0, 0x1000, 0x6c82, 0xfffffff8, 0x8, 0x4, 0x4000000, 0x4, 0x8, 0x5bee, 0x4c, 0x9229, 0x2174, 0x8, 0x7f9, 0x6098, 0x2, 0x4, 0x1, 0x1, 0x723, 0x7, 0x0, 0x2, 0x4, 0x8, 0x6, 0xfffffff8, 0x6, 0xa, 0x8, 0x3, 0x10003ff, 0x0, 0x6, 0x4, 0x61, 0x6037, 0x1, 0x0, 0x5, 0xa117, 0x848, 0xff, 0xffffff54, 0x1, 0x7, 0x2194, 0x5, 0x7ff, 0x7, 0x200, 0x100, 0x3, 0x7, 0xd, 0x76acfb45, 0x0, 0x6, 0x3cd, 0xb, 0xe, 0xffffffff, 0x3f, 0x7, 0xff, 0x6, 0x5, 0x7, 0x7, 0x16, 0x0, 0x200, 0x3, 0x1, 0x9, 0x8, 0x83, 0x80, 0x5, 0x0, 0x61, 0x8, 0xbed0, 0x7, 0x8000, 0x8, 0x29, 0xe4, 0x2f2, 0x94, 0x3, 0x7, 0x80000000, 0x90, 0xf38a, 0x6, 0x312e, 0x80000000, 0x8, 0x1, 0x4f, 0xc0, 0x2, 0x9, 0x800, 0x9, 0xffff, 0x5, 0x7, 0x4, 0x401, 0x8, 0x2, 0xc, 0xffffffff, 0xfffffff8, 0x8, 0x2, 0x9, 0x0, 0x8, 0x3, 0xb, 0x5, 0x4, 0x2, 0x8, 0x4, 0xd, 0xfffffff4, 0x6, 0x7, 0x2, 0x7, 0x9, 0x9, 0xd, 0x1, 0x0, 0x4, 0xb5, 0x1ec, 0xfffffff9, 0x7]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x1, 0x1, 0x2, 0x80000001, 0x4cc, {0x2, 0x1, 0x3, 0x53, 0x5, 0xb}, {0x8, 0x1, 0x0, 0x3ff, 0x5}, 0x7, 0x8, 0x6}}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x8}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x10001}, @TCA_POLICE_TBF={0x3c, 0x1, {0x993, 0x5, 0x7920, 0x2, 0x3, {0x5, 0x3, 0x401, 0xfff4, 0x8, 0xa}, {0xf8, 0x0, 0x1, 0x4, 0x8, 0x7}, 0x0, 0x3, 0xd62e}}, @TCA_POLICE_RESULT={0x8, 0x5, 0x8b74}, @TCA_POLICE_TBF={0x3c, 0x1, {0x9, 0x1, 0x2, 0xcb, 0xffff, {0x2, 0x2, 0x6, 0x0, 0xb89b, 0x1000}, {0x5, 0x2, 0xfc00, 0xd1b8, 0x101, 0x10001}, 0x7, 0xfc, 0x3d}}], [@TCA_POLICE_AVRATE={0x8, 0x4, 0x3}, @TCA_POLICE_RESULT={0x8, 0x5, 0x4c1}], [@TCA_POLICE_TBF={0x3c, 0x1, {0x7, 0x3, 0x0, 0x5, 0x5, {0x7, 0x0, 0x2d, 0x10, 0x101, 0x4}, {0x4, 0x1, 0x7, 0x10, 0x1, 0x1337}, 0x5, 0x5, 0xfff}}, @TCA_POLICE_RESULT={0x8, 0x5, 0x19c4e714}]]}, {0x1004, 0x6, "b0505779e5cced7a6100763872905f3d00618525130b05125068b5c99ff731b4a05a174c31232949ed9373527ad5ebce299635b3b6a9a26efe6e02501cbfc7ffc351c4551ebee1be3a1e62857213c7dc5ed61aac605f9bae7d640e791e25000c992f4e852b62fa8ec692848c7aa7e853e48db20e83a06b0372c57db9c35b3217545ae3b6fa9dc9bf3825a46e6d2aa8e146fc2463df0edd0afc383ce7e11eb8dc78569e61e9d4f0e233073a7654cd52c638084f2d73df948fde684d04df561a4892b2a8d624bdd3194fda7c1c9db42e63b6355cddb3e78a83dc31f67e4812c10859bf25e5364be8bf09d60a7d19adafd1f74490fd16b133c8a8d203b56f2fe21a763f9ef1021f3b7ce80f3ca8e2552fa8d502004d4e3fc6111ff0521a35a9c5c54aa4671de5cfb1d12396ee4e22e5e032b4b382c24f14e2b4dcdca7c1b4efc7e587eab8ceb3235501bb5b7174f8f64f794802692ab80cc465204d4ee5d609733364ac969f745dabcc9440a5c5c3396ecaf5499a6e675637f70ec76d039f5cd4269750a0114f5685a527c11c10f1e06868ebbad9eee2875bb90d7dd87fe940b18d107b5428a2ad1ccfdd510c0925e4ceb084d13aa9589c81cb0d5107a5ed071ab294a424e69efc3132b3105825411b837ea7852f1fbabcf2af53d3d76230203a39db2f759c1a7c1a89d17b6c63bfa79e5523d6e38ebac0aca44982d7884ca6f7cefa423abec998b71dde17430cae69bd984eea505c93d708a0b27b09711519557229a228d08a56b5700b3b2db2d326db1542ad65788d35a0f74ce2cb94b5f63cd6737c24579da171e2826555f90d43c36e7f2ee868a6c7c3f4cb57b5784d766600c99f7b4ff6a58626659785c07535467495e9d1a9aa796ffc344a0944bdf4ed0e250c96cc9290a0258b8219e7d88b2bfebccd0356baf1c483132a1138d0b9df2bbab010f8adc44696d770034b93b11d10632b28b5883d5c9933ebcb2a2e25f068dfd256660b532b485e92de824dd55aff3f47b3a8870affa3f830ca1c817332d7d88b3b29bc837b2ad4f742448dd9018136ff9354abf88716c20e634e82778417abc237cd62aba3e0ac83f92b569f6c2fd64a70ae9d5e2796852c1c2363c8b2504bf6c0751966f1577b2e97a626437c0ca88680dbb814da92a201b976c4952f35d467939cc476f5aacd565fe44164c8331b03793a08d16a1ab5851ac428f05e39ad1d1feb88e243ab04080098ce7d1e3c02c9edc98fbcb6a616b8b1ba693bfb9118fc07b7795c4b939223992c299d26a1c2a7cfe5e175457d023243ced6a070b2e9759bb6790ff27fdf849f0a2e2032282d23dac805712966e32555da5406e481bcfaca9c12340af1d9d9b18e649cf0e6b27a41bebd434b3a0fcb957ddf21fcf14fe05803fe0caf27651441bbfde9dc1e92b2791eb1173d89a8ac772c843e6612fd8a283602c7c86468ce178932512808e8e56b9069e476b132b329e632715101d4fb300eaacf90dba7de515d3ee64659d57a157b310c15442b5291c8c6617d583c1d229b58d29eac0e0f65791d63ea520bb8f64e5c711a3f2da5dfac8b3933c37555c143d2c0ee4931f892c82ee689ac24fd7ab2c29082f6260d7915b224f048df2b9a7720452dc2e1446a85e044503d3f7e7595ed1a5498755eb84f2266749a1ee6fe6d875358c7e2572b51129a0ef0e0d1de427e3d04bed794fded809520fcc8a972d06d8c988ffd69e6cb109b7b7a6b8ea4751682313f3ce31e6e8351ab15f24846d44e5d69d6bc29b26d080a20b9be533713f5c290c252774d1174dc1596cea2aa27e2f7ae14f9acf70adda14fca3e2540b1735f61fb5033f846af23b907db3e4b77e4952dd543103677bc8c70914988a3b719aa72890c72fbd3d171be1fe410a4d2fead36ea3c6e961ea2c8e2b358d072cd93e0e960ba715de8f0a17a9514428559f90051c7c226d0364cf7690a0de5045fa1fa5774754e1cf591e036d4a2e4729419b4e8fd24beb4a0592e3199ce5f07538cfbd7d0c49aba2f1a0f7925a5d21a390ce2c422efd442fab4ea9a8f9e9821073ef26d0d4dfc1c544270d3bb0e00bc6624c1e909c6d82dcc6a9fd123c6b573018d2432af47ae234f060b2d947673451dd26215c362d50f480caaf36dbcc22e274994db6c0800f7890e79bd092e5a09b123e7427047f1827b31a70442baa86aaf990c5d923a4f864c11c2230bc409c252e57e503ad501c25ce39f096b811dfc08bb2fcf3da0d98e1599b97ec072a18ba1c4c9d1d89d4e2df8bdad9050d15e2e56ea3c36df96b39a1b5c09dbe03e800674955b44522ed2fb903a19aa627a80d3ef3d70b1837aec0d02a79df93d053df4ae2e32d6ff53c7ac5adcd73a0b4fb85fa4a02ff91350b6877a01d7866db7f0fb60262aa7e5df2a13d792046285dd9c2076ab2621f1c7cf81cd33e7ad0fe560dbf4c82d3b9f05e0c54a3acb1cf8b988b37ff6a7b7101640eedff05be7b04f612c9447bae713f3b234049456496c12eb08323726fa8a211a2431ae81451254bb2fb67aa25cbdc334510a231c6a9eda0c9c87ee27a61a0545df031052a4cdec2d79d83b319b5bfb201a96e88c3c8e9a697fd9d516bd8c1ef37046ae8eb4fcb4c8f14b6624058b665346971fb9723c13a9b48063558c244fea60a2d4d2445ef27c85114d9850308c8ebd77bcacd419067e327ad3f65794862719aab4f32085a1c6f7b7846b45f493b164ca8f182f42c6a8f50e58a1bbe2714e9b7dcc9af61f1cf48a5e51d7193581e6d42a42e38adf3e29be8e40108a62573d1204790c9977c863f51a77fceee4189705cdc59cf2baf5e9bf7cee20a1b1ed21d5562b71a0bfdc2c1ccd34dfa5dccecae0480e21f4b51056b5b88f1e8aabadaee14e140e7cef3f2d251515fc49e95f6414d81c4810e3aa75c36da8e8afa9bae089937af7d8789e9773c149d7306df2321149a2e2756a82602f06fd6ee0e30a1e7021a21521b301df87513bebda20622d3b7df0a2fc71bee2ef3be042910e8c5edd5511ddc2a1971d5ad768a6c5d315d166914ad915fe075d2c1e1dab2a8b8012dbce3adfb79923c8d117f824312d964984fc49be5fa2a39dcfb3e654a8e6cd22c6fd830dd8a1e4524abad72a7958319f47582b5deac77d4b4a749b88b6b0e81b0131341dc3c85f449d54ea8563b93452ce4d1d236f14f79b53338a288068d12599ad6bbfdaf7f8ea98eeaec41ff578997cb22d657cef783cd0bcfc2df2f5925645e21f958faba60bb7dbe336046ad5c18674527693598b60a4d03c36ee10b8e03248c0ca58f643856a8c9ae387b48a802bc45f97ef910151176a6801e747aee11102a58a93c4ccaff476c0e481d4963e230478eb82349e0a12be783675fc3b865fe9fe35b5502ded996add3cff5443dd6801717b7b9dad33a549ff0fc0ca19f4d577e3eea6012b80366750b80625ac9ba9c35b766e5102a2a2a62eb6b14f20068f338afebb146a94e936d7ecdf0f3a14b9e6b6f549ec4a99d3ae0f634ec94391421c2a70bbdd43035c980decb9423fa593bedd0837c94691be714b4119e9e14dfc82413ea910daef52d79ed01c141a35f028c59a02a0a0eef8f08f6aa791431417494c248499e4029b2293166274db678088c6a974ced4659af8ec6d985ba7e8c6ff81ebed5bbd817a1bcd2a1b06a8beadf8e4b2844edf030258ac3c9574d65fd65635ff57ccbe1e1e4b490ddeb6128e291f249940a41b816783944b8f2f82778c3712f4dac261c41f28bbc11fd561505f7b320f195fc6f15b41528ce6ba34cc71e3f849f4193521f4ee21307cb2fd2b3e7759595829615a8733d6309c10441cbc4bd97c29703189f3de9209d6137d5c847fd6867079f75ad0c97868fb6c6d1869cac37997e109a5713b54d537649baa238cf63f6ec33a6f227943377739551b74cd9d94a15a9218a9b7967c6eaf32664a4641a0e04caeaaa2392b47b6ea36e03273369e3be6f2eba9cf1b09c3d9308b6c42a636ec02e42f7736aa4ac74a90dd98b4a58971d31272b9847d4f27cdae7536e323f000e5f610b405434e92ec2c416b18b8bea97d3877f2b11dcc310d0e531104bcb2efcf098fdb1b783c02710d577148b4b444e7b0d25d4aba99b565f009ecdeada54e662205955b5fa9d1d8b593981f458a055ce5307df525d941703a6090d17ae8dbf56b4c8b5df009782a940e2de302ed1d24d856d147175705324e672034365cb1c87a44486c140805129adc4682b58bd79e6790c5ad0578bd3e4ad619db453f164514aeee704b14a050597021077a9c419a4470d77232495d23d4fedecf440ce6a4fc35bfd86e48cc8fb6c199d545fcb54ae197e07a250b56f1feefc7e969808a8680c599b8326ad2066a72a796b26213300640c78422648d07f0249b75bddd53b865d1e404c69638081babf87721cc01dad549e853d55f63ac221c6a31b3ba5f4a6c3168811bc45d7522259c5e28414bd4d2a4b16e32dab0ded88ddf37f22882194c4acb49b852f45d4eb7086dca9b010be79d2163857aaf7996638c7cd1cad8e560e7892a31ba4e18d011b6c6d0d1b499138a97d56acebf8ab9bd2e527d429138a640d96593a78787aada9f3328111e128c9a6c032d33dd6662f9577891ceea9e8fc2d1173aec33f20bbbb911243a584b66099d10a1c8c79d7b98e87b60d3c6a2f5cba3ada3ce5aa1409149b84b6d7c182ef01351e1455c49eb3a416f5bb675aca4b16159e32177c40968ba8b620061942cf101ed8e69ce6eb08dfe9dd521254e9f28b90bbb9a9de32264f1390a5e38e6d10f897a8135466b6f65f239170218af857783149b8c4a998d5490a1cfefa152351501848bdf9e8d008e68439515442f0349db5cb9f92541bb714285c164fc958c06cf4899e020a3d2849a2c5dca81f81c9ca264b11867dcbb027c453b7a48115d5299a6f662c85c6be2157378c0a1bd28eea50f116d40cde12b06e306c229410b038b94fe490d789196b94cd97678411822f6ccadff0c93fafa189d02972bcfcf0db7f6f17c5c6d529c8d34fa002fc498f1678d1919f35baca97cea687df79ef9c613bb05a801a80961c58014fc36f65d765d2759e657f62531bdf6fb3354dd3c695f67d2a15fc19b224300ca784676431b614d022fba28ded294793a16bc6abe779bec5519be72e101333645f103351b90e7f7c34dc5fd2c083a3735cc4cfa4766f2a920f17d4889553dfa215a762118cece34ee5ee50800a7241aa5a9454a6fcbcdfec04701166556e6ff62151c6266700a96dfd2e93b4ecafbbcf85fa5564205ef77c415c589f8263330ff9bc5b442c6d4b46b54d8ea8108403eb4c3947362da5dd8eac24b195ac062f80c88db768cd64d43e6f3a65c2f990384e8da825fde3a857c465d79a2f78777e967da7d8cb75937e9b140942d7f09625d05ae99434e2fc7d25cd9a3ad18dbfbf92dfab69eded32ca7638c30ab83a894ee92330fc291ca7a8b5b364db9f07da94ec5e5d2e39f0e819a5305946b7d5434673a23c4ac80e02b0315c9cc35c0c64df44c00b9b23662253fbaafbafe042bb97fa3c10a31262fe1c83c1f97b1386e7896eeab79f0aba9bfd6ca98b686b044e19ffb82efa21219bc5c9ebdcc9696ff45fa3ccbf7e57229d689995e2a237a578ff15e9afbee71f0eb8ccb263d58a1400313be110f2acec51a8a040eaf53de89c8031fa1edfac9434a5f9309e2d878e94cd553f8f397bc3e3617d11003068a9d46235c091e687c5b1fe624069778e1cac6614f69d29ffc819e3794ae3935a573ccb264afebda"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x4}}}}]}, @TCA_CGROUP_EMATCHES={0x110, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0xa0, 0x2, 0x0, 0x1, [@TCF_EM_CONTAINER={0x68, 0x2, 0x0, 0x0, {{0xab, 0x0, 0x7ff}, "13d1e3f24898dd6789c2577492ea08568af582f086fedb1bf55d9ef74814e7e36419c5d839d79bb8208aa4f10cbcf0de1c25aa48fcb03ddc8b737bbcd587a281530acde47a5cd571eb1ada4774c2a9fd932111208709b781f0762e"}}, @TCF_EM_CMP={0x18, 0x2, 0x0, 0x0, {{0x7, 0x1, 0xff5d}, {0x7, 0x3, 0x97, 0x1, 0xc, 0x1, 0x2}}}, @TCF_EM_U32={0x1c, 0x1, 0x0, 0x0, {{0xfff, 0x3, 0x9}, {0x4, 0x0, 0x200, 0x3}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x40}}, @TCA_EMATCH_TREE_LIST={0x64, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0x40, 0x7, 0x3}, {{0x2, 0x1}, {0x4, 0x0, 0x1, 0x1}}}}, @TCF_EM_CMP={0x18, 0x3, 0x0, 0x0, {{0x5, 0x1, 0x9}, {0xa, 0x7, 0x6, 0x5, 0x4}}}, @TCF_EM_CMP={0x18, 0x1, 0x0, 0x0, {{0xc, 0x1, 0xc}, {0x1, 0x5, 0x7fff, 0x2, 0x7, 0x2, 0x8fd83fbe6cf808f3}}}, @TCF_EM_U32={0x1c, 0x3, 0x0, 0x0, {{0x6, 0x3, 0xadb}, {0x2, 0x4cfcd7e1, 0xd, 0xf}}}]}]}]}}, @TCA_CHAIN={0x8, 0xb, 0x8}, @TCA_RATE={0x6, 0x5, {0x72}}]}, 0x3e3c}, 0x1, 0x0, 0x0, 0x8848}, 0x80)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x402)
ioctl$KVM_GET_DEVICE_ATTR_vm(r3, 0x4018aee2, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x1}})
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$dir(0xffffffffffffff9c, &(0x7f0000001a00)='./file1\x00', 0x141040, 0x42)
mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000004a00)='./file1\x00', &(0x7f0000000040)='udf\x00', 0x100080f, 0x0)
gettid()
bind$llc(0xffffffffffffffff, &(0x7f0000000280)={0x1a, 0x20, 0x7, 0x9, 0x8, 0x4, @link_local}, 0x10)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x200003f, 0x4c831, 0xffffffffffffffff, 0x1cbf8000)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000100)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_ctr_aes256\x00'}, 0x58)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200), 0x41, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

5m59.361216179s ago: executing program 32 (id=540):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCSETS(r0, 0x404c4701, &(0x7f0000000040)={0x1, 0x0, 0x1, 0x0, 0x5, "3e000010000000418e9e126aa25b1b0100"})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x0, 0x8, 0x8001, 0x0, 0x9, 0xe0000000000000, 0xfefffe0000000001, 0xfa11, 0xffffffff}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x35, 0x9, 0x2, 0x180, 0x4, 0x10, 0xf1, 0x50, 0x7fffffffffffe, 0x5, 0x6, 0x9, 0x8000000000000000, 0x60, 0x0, 0xbdb], 0xffff1001, 0x4000})
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(0xffffffffffffffff, 0xc040564a, &(0x7f0000000200)={0x0, 0x0, 0x300f})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)

5m55.330454414s ago: executing program 33 (id=552):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$kcm(0x29, 0x7, 0x0)
r0 = syz_open_dev$sndctrl(&(0x7f0000002b80), 0x1, 0x8000)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc2c45513, &(0x7f0000002e00)={{0x8, 0x7, 0x3, 0x2, 'syz0\x00', 0x7b}, 0x0, [0x8, 0x200000a, 0x1000, 0x0, 0xb3d, 0x7fffffff, 0x6, 0x5, 0xbc0, 0x7, 0x15b, 0x7, 0x5944, 0x5, 0x7, 0x8004a7, 0x9, 0x5, 0xb, 0x3, 0x2c, 0x400, 0x2000040, 0x10000000, 0x7, 0x0, 0x6, 0x800, 0x3, 0x3, 0x4, 0x6, 0x6, 0xfff, 0x3ff, 0x1, 0x5, 0x3, 0x5, 0x6, 0x3, 0x7fff, 0xffff8006, 0xe, 0xe, 0x0, 0x2, 0x5, 0xe, 0x4, 0x9, 0x80000001, 0x400, 0x1ff, 0x9, 0xfffff647, 0x408, 0x4, 0x1, 0xc, 0x8, 0x9, 0x6, 0x8, 0x98, 0xbe, 0x1, 0xa, 0x7, 0x80000000, 0x81, 0x10001, 0x2, 0x80000001, 0x69e, 0xb, 0x7000000, 0x0, 0x8, 0x9, 0x7, 0x9, 0x1, 0x3, 0xfffffffd, 0xffff, 0x6, 0x8, 0x7ff, 0x4, 0xef, 0xff, 0x4, 0x3, 0xf86, 0x58a0, 0x1, 0x19, 0x895, 0x6, 0x9, 0x89, 0xfffffffe, 0xa1a9, 0xe0ae, 0x9, 0x7, 0x12, 0x3, 0x3, 0xfffffffa, 0x3, 0x2, 0x1, 0xc3c, 0x1, 0xe, 0x5, 0x8, 0x2, 0xf2, 0x4, 0x1ff, 0x7, 0x2, 0x7, 0x6, 0xff]})
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @raw_data="dea233684c996156af0d4bd8e3300217e750b8c97b7123d48003e7e1d3be5f710c41a1db6719881876e9bcc6e2f73c67cc6b675eb43188b5b7f9f898868de9a9c5d536d418ba283121a73a5aba55a87d2a2525295f4492bbde02ad8bc8e88779f2de06f38e99172df4d45b6f13c813dee4230c204a93172922b778fef7a1f89ce876bb89d44cd705bbb28db4869dfac20d928950507acd92c02d17f51b0a627539f6e0a0bdb92004bc6252cd35e8cd100962db9a83ad63a4e7e1ca17c1b6aac63fefa9bebe429d00"})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f000000eb80)=@newtfilter={0x3e3c, 0x2c, 0xd27, 0x70bd24, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x4, 0xa}, {}, {0xfff2, 0x2}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x3dfc, 0x2, [@TCA_CGROUP_ACT={0x3ce8, 0x1, [@m_simple={0x78, 0x4, 0x0, 0x0, {{0xb}, {0x3c, 0x2, 0x0, 0x1, [@TCA_DEF_PARMS={0x18, 0x2, {0x8, 0x0, 0x10000000, 0x4, 0x3}}, @TCA_DEF_DATA={0x5, 0x3, '\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0xffff, 0x100, 0x4, 0x80000000, 0xfffffffd}}]}, {0x12, 0x6, "014ae66f637d408ac3041c784f23"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x3}}}}, @m_connmark={0x17c, 0x18, 0x0, 0x0, {{0xd}, {0xac, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x10001, 0x9d, 0x5, 0x80000001, 0x3}, 0x2}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x8, 0x0, 0x2, 0x1, 0x100}, 0x4}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x8, 0x80000001, 0x5, 0x80, 0x58}, 0xffff}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x6, 0x2, 0x5, 0xfffffffc, 0xee11de54}, 0x7ff}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x8, 0x10000, 0x10000000, 0x1, 0xd1}, 0x3}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x2, 0x1000, 0x10000000, 0x3b141123, 0x7}, 0x7}}]}, {0xa4, 0x6, "ffb9888f2cf5b30ac60c325cda22f767e69585f5fa5b4f19526f8c2e9d4da57327447a2fe9f2f1b8048131670cbc34fb95b90185048c5a2f5da04893f4f0fcd16a12ccf956fe1150be1f56a267908a2f910c55c83ef3a18c06a6cc46bd0faa33996b64c7d56c9ebc90ffa1d419cadaea0db5a8c7572b3277f82a7bc01b9f016e7422160cb3b49a3355dc3a767d34b1f222b4219fc89f79c193b4482cf516fb48"}, {0xc, 0x7, {0x1}}, {0xc}}}, @m_pedit={0x1f50, 0x12, 0x0, 0x0, {{0xa}, {0x1e98, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe68, 0x2, {{{0x9, 0x9f, 0x20000004, 0x3}, 0x6, 0x0, [{0xcd6e, 0x7, 0x8, 0xac5d, 0x8, 0xfff}, {0xad, 0x7, 0x9, 0x3, 0x3, 0x3}, {0x3ff, 0x9, 0xb, 0x2, 0x1, 0xb7}]}, [{0xff, 0x2, 0x8, 0x6, 0xfffffffe, 0xd530}, {0x7, 0x9, 0x8, 0x10001, 0xc, 0x8}, {0x3ec5, 0xc, 0x4, 0xe, 0x4e, 0x8}, {0x0, 0x4, 0x9, 0xea6f, 0x5, 0x7}, {0xffffffff, 0xfffffff7, 0x100, 0x2, 0x4000000, 0x56}, {0x3ff, 0x13df, 0xff, 0x9, 0x4, 0x36863a03}, {0xffffffff, 0x7f, 0x0, 0xff, 0x200, 0x4}, {0xb7d, 0x0, 0xfffff012, 0x6, 0x7, 0x10}, {0x1c0, 0x8, 0x4, 0x9, 0x3fe00000, 0x7f}, {0x3, 0x5f, 0x7f, 0x613, 0x7, 0x4a5f9ce5}, {0x6, 0x2, 0x7ff, 0x2, 0x0, 0x803}, {0xa, 0x2d, 0xe, 0x9, 0x9, 0x8}, {0x4, 0x0, 0x5, 0xd527, 0x4, 0x4}, {0x8, 0x9, 0x6, 0x3, 0x0, 0xffff222c}, {0x7, 0x7, 0x800, 0x8, 0xebc}, {0x2, 0xc81, 0xb4, 0x8, 0x7db0, 0x1000}, {0x2, 0x4, 0x0, 0x1288, 0x3, 0x22c}, {0x2, 0x5, 0x7, 0x8000, 0x4, 0x8}, {0x84, 0x7, 0x6, 0x4, 0x8, 0x1}, {0xd, 0x401, 0x6, 0x5, 0x3ff, 0x10}, {0x1ff, 0x8, 0x0, 0x8, 0x2, 0xff8}, {0x6ec5, 0xb, 0x9, 0x9b47, 0x2, 0x1}, {0xffffff68, 0x7a, 0xc, 0x2, 0x3, 0x3}, {0x1, 0xfffffffe, 0x959, 0x2, 0x623, 0xd}, {0xf, 0x74, 0x7, 0xd9, 0x4, 0x8}, {0xfc, 0x0, 0x1, 0x7, 0xbe7e, 0x6}, {0x3ff, 0x9, 0xf, 0x9b69, 0x1, 0x4}, {0x8, 0x6, 0x5, 0x1, 0x864, 0x1}, {0x0, 0x230, 0x7, 0x6, 0x29d86b03, 0x7}, {0x1, 0x5670, 0x7, 0x9, 0x8, 0xfffffff9}, {0x4, 0x9, 0x7, 0xfffffffb, 0xfffffff1, 0x2}, {0xc, 0x7, 0x3, 0x5, 0x3ff, 0xf}, {0x0, 0x5, 0x5, 0x1, 0xd2a, 0x2}, {0x41f36375, 0x4, 0x1, 0x401, 0x2, 0xfffffffd}, {0xe8be, 0xfff, 0x6, 0x7f, 0x1, 0x5}, {0x46e2, 0x6cf6, 0x9, 0xa8e5, 0xfffffffc, 0x8}, {0x2, 0x3, 0x7b3, 0x580, 0xfffff323, 0x627}, {0xf, 0x5, 0xfffff000, 0x101, 0x6}, {0x7, 0x7, 0x1ff, 0x81, 0x2, 0x5}, {0x80, 0x9, 0x16, 0x80000000, 0x10000, 0xfc000000}, {0x8, 0xfff, 0x4, 0x4, 0x5, 0x7871}, {0x6, 0x4, 0xfffffffd, 0x81, 0x80}, {0x10000, 0x5, 0xffffffff, 0x10001, 0xbd, 0x28c}, {0x9, 0x1, 0xe, 0x6f0, 0x7, 0x6}, {0x101, 0x4d9, 0x80, 0x6, 0x2, 0x80}, {0x2, 0xe, 0x7, 0x3, 0x2, 0x28}, {0x100, 0xba, 0x7, 0x7f, 0x9, 0x4}, {0x4, 0x80, 0x16c374f3, 0x200, 0x6c4, 0xf28}, {0xf4a7, 0x5, 0x9, 0x2, 0x7, 0x1}, {0x1, 0x1ff, 0x1, 0x6, 0x200, 0x6}, {0x0, 0x3, 0x7, 0x8001, 0x7fff, 0x4}, {0x1, 0x7fffffff, 0x4, 0x0, 0x8, 0x9}, {0x0, 0x3, 0xd338, 0x2, 0x9ea, 0x2c}, {0x3aea, 0x9, 0x5, 0x8, 0x14, 0xd}, {0xfffffff1, 0xff, 0x9, 0x2, 0x9, 0x7}, {0x6, 0x0, 0x5247, 0x1ff, 0x10, 0x6}, {0xfffffffe, 0x2, 0x7, 0xfffffff8, 0x2, 0xffff}, {0x5ce965af, 0x2, 0x8, 0x2, 0x7ff, 0x3}, {0x9, 0x9, 0x1, 0x100, 0x3, 0x2}, {0x58, 0x400, 0x7, 0x4, 0xc7, 0x1}, {0x4, 0xfffffffd, 0x6, 0x0, 0x3, 0x7}, {0x10000, 0x5, 0x7, 0x5, 0x58, 0x800}, {0x2, 0xe4, 0x1, 0x4, 0x10000, 0x100}, {0xffffffff, 0x88, 0x4, 0x3, 0x1, 0x4}, {0x55a8dd4, 0x5, 0xe0bd, 0x1, 0x9}, {0x9, 0x0, 0x4, 0x9, 0xf97, 0x5}, {0x0, 0x5, 0x6, 0x0, 0x6, 0xb}, {0x400, 0xc7, 0x4, 0x4, 0xc63c, 0x2}, {0x0, 0x4, 0x3, 0x1, 0x739, 0x2}, {0xbd47, 0x3, 0x100, 0x5, 0x8, 0x10000}, {0x2, 0x1d, 0x9, 0x7f, 0xa}, {0x0, 0x10, 0x5, 0xf, 0x1, 0x5}, {0x25a6, 0x80000000, 0x1, 0x7, 0x3, 0x7}, {0x1, 0x101, 0x6, 0x80, 0x10000000}, {0x7, 0x5ea, 0xe72, 0x1, 0x1, 0xef4}, {0xfffffeff, 0x7, 0x7, 0x9, 0x8000, 0x6}, {0x0, 0x9, 0xc966, 0x9, 0xd, 0x8}, {0x0, 0x6f04944e, 0x6, 0xfffffffa, 0x8}, {0x7fffffff, 0x8, 0x1ff, 0xc, 0xfffffffe, 0x1}, {0x1, 0x5, 0xf, 0x8, 0x2, 0x1}, {0x6, 0x7, 0x10000, 0x10000, 0x6, 0x5}, {0x3ff, 0xffffffff, 0x5, 0x7, 0xfe}, {0x40, 0x6, 0x6, 0xfe, 0x7, 0x8}, {0xa, 0x4, 0x2000000, 0x1, 0xffe00000, 0x9}, {0x10000, 0x3, 0x4, 0x2, 0x8000, 0x1}, {0x8, 0x7, 0x8, 0x2, 0x81, 0x101}, {0x9, 0x3, 0x9, 0x0, 0x800, 0x30f1}, {0x7, 0x2, 0x2, 0x0, 0x101, 0x5}, {0x1, 0xb, 0xf, 0xfffffffa, 0x5, 0x8001}, {0x6, 0xfffffffd, 0x7ff, 0x4, 0x2, 0x8}, {0xfffffeff, 0x4, 0x6, 0x8, 0x7f, 0x10001}, {0xffffffff, 0xffff, 0xfffffffd, 0x2, 0x4, 0x9}, {0xd, 0x5, 0x3, 0x2, 0x101, 0x4}, {0x0, 0x5, 0x1, 0x3, 0x3, 0x1}, {0x8, 0x81, 0x10001, 0x10001, 0x99ef, 0x10001}, {0x3, 0x6, 0x4, 0x101, 0x1, 0x2}, {0x9, 0x1, 0x4, 0x4, 0x2, 0x7fffffff}, {0x0, 0xfff, 0x7, 0xaed, 0x15, 0x9}, {0x80000001, 0x563, 0x1, 0x3, 0x80000000, 0xfffffff1}, {0x2, 0x10001, 0xff, 0xb5b, 0x7, 0x40}, {0x5e, 0x6, 0xe, 0xf75, 0x81, 0xd68}, {0x8, 0x5, 0x1b158, 0x8577, 0x821f, 0x401}, {0xb7c, 0x9e, 0xffffffff, 0x3, 0x3, 0x7fff}, {0x1, 0x2, 0x3, 0x7, 0x1000, 0xe}, {0x401, 0x8, 0x7, 0x2, 0xd9, 0x1}, {0x0, 0x0, 0x9, 0x9, 0x10, 0x6}, {0x4, 0x0, 0x1, 0x607, 0x4, 0xfffffe01}, {0x80000000, 0xd0e, 0x2, 0xff, 0xc}, {0x5, 0x4, 0x0, 0x4, 0x8, 0x80000000}, {0x3, 0x27, 0x52, 0x7, 0x7, 0x7}, {0xfffffffe, 0xfb, 0x5, 0x80, 0x4, 0x2}, {0x7, 0xe4b, 0x7, 0x5, 0x3, 0x5c}, {0x10000, 0x3, 0xadc, 0x6, 0x7, 0x800}, {0xc0, 0x8, 0x1, 0x8, 0x3, 0xfffffffe}, {0xfffffffa, 0x5, 0x5, 0x5, 0x0, 0x81}, {0xc, 0x4, 0x9, 0xf, 0xfffffffd, 0x1f7492d9}, {0x6, 0x37, 0x8, 0x4, 0x2, 0x8}, {0x1, 0x0, 0x1, 0xf149, 0x90e, 0x7fff}, {0x8, 0x5be, 0x2, 0x4e, 0x0, 0x7}, {0x400, 0xce8a, 0x2, 0xb, 0x50e5, 0x7}, {0x9, 0x6, 0x0, 0x9, 0x5, 0x4}, {0x0, 0xa, 0x900, 0x6, 0x4b9d, 0x7}, {0x2, 0xfffffffa, 0x5248, 0x8, 0xffff, 0x39b9}, {0x4, 0x8000, 0x81, 0x7, 0x8, 0xfffffffa}, {0x9, 0x4, 0x7fffffff, 0x0, 0x8, 0x80000000}, {0x3, 0x1ff, 0x1, 0x4, 0x10, 0x7}, {0x85, 0x6, 0x5, 0x4, 0x8, 0x1fffe00}, {0x1, 0x7, 0x6, 0x1, 0x5, 0x1ff}], [{0xd7d84b8bcf5ccd7a}, {}, {0x4}, {0x2, 0x1}, {0x3}, {0x1}, {0x5, 0x1}, {0x2, 0x1}, {0x2}, {0x0, 0x1}, {0x1}, {}, {0x5, 0x1}, {0x3}, {0x5, 0x1}, {0x2, 0x1}, {0x3}, {0x1}, {0x3, 0x1}, {0x3}, {0x5}, {}, {0x6, 0x1}, {0x5}, {0x5}, {0x0, 0x1}, {}, {0x5}, {0x2}, {0x0, 0x1}, {0x4, 0x1}, {0x0, 0x1}, {0x5, 0x1}, {0x2}, {0x0, 0x1}, {0x4, 0x1}, {0x3}, {0x4}, {0x5, 0x1}, {0x3}, {0x1}, {0x4}, {0x3, 0x1}, {0x2}, {0x1, 0x1}, {0x4, 0x1}, {0x3}, {0x4, 0x1}, {0x5}, {0x3}, {0x4, 0x1}, {0x0, 0x1}, {}, {0x3}, {}, {0x3, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x2, 0x1}, {0x4}, {0x3, 0x1}, {0x5, 0x1}, {0x1, 0x1}, {0x5, 0x1}, {0x2, 0x1}, {0x5}, {0x1}, {0x3}, {}, {0x4, 0x1}, {0x3, 0x1}, {}, {0x3}, {}, {0x3, 0x1}, {}, {0x0, 0x1}, {0x4, 0x1}, {0xe2b577a592eacaaf}, {0x0, 0x1}, {0x0, 0x1}, {0x1}, {}, {0x5}, {}, {0x3}, {0x1, 0x1}, {0x2, 0x1}, {0x1}, {0x2}, {0x7, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x4}, {0x3, 0x1}, {0x1}, {0x5, 0x1}, {0x1, 0x1}, {0x5}, {0x0, 0x1}, {0x3, 0x1}, {0x5}, {0x6}, {}, {0x0, 0x1}, {0x5}, {0x2, 0x1}, {0x3, 0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x5, 0x1}, {0x2}, {0x5}, {0x1, 0x1}, {0x0, 0x1}, {0x3}, {0x0, 0x1}, {}, {0x1}, {0x5}, {0x1}, {0x1, 0x1}, {0x4, 0x1}, {0x3, 0x1}, {0x4}, {0x4, 0x1}, {0x5, 0x1}, {0x5, 0x1}], 0x1}}, @TCA_PEDIT_PARMS_EX={0xe38, 0x4, {{{0xe94, 0x2, 0x7, 0xb, 0x10000}, 0x9, 0x5, [{0xfff, 0x81, 0x6, 0x6, 0x9, 0x4}]}, [{0xffffffff, 0x9978, 0x37, 0xfffffff0, 0x80000000, 0x8000}, {0x2, 0x6, 0x5, 0x4, 0x3, 0x9}, {0x9, 0xf, 0x0, 0xffffffc0, 0xe53, 0x4b6}, {0x3, 0xf, 0x80000001, 0x80, 0x7, 0x2}, {0x8, 0x4, 0xffffffc0, 0x4, 0x0, 0x40010000}, {0xfffffff7, 0x0, 0x9, 0xff, 0xc, 0x80000000}, {0x0, 0x1, 0x4, 0xffffffff, 0x36, 0x1}, {0x3, 0x80000001, 0x1, 0xed6, 0x8000, 0x6}, {0xfffffffe, 0x3, 0x77, 0x0, 0x4, 0x7ff}, {0xfffff6cb, 0x8, 0x0, 0xffffff90, 0x1, 0xd04}, {0xf, 0xffff, 0x3, 0x6, 0xffffffff, 0x35}, {0x5, 0x10001, 0x9, 0x6, 0x6}, {0x3, 0x3, 0x3, 0xfdbc, 0x5, 0x8}, {0x3, 0xff, 0x8, 0xfffffff8, 0x3, 0xfffffffe}, {0x4, 0x1, 0x6, 0x0, 0x7}, {0x6, 0x1f83, 0xff, 0x7, 0x1}, {0x5, 0x89, 0x7, 0x101, 0x4, 0x1}, {0x100, 0x7f, 0x6, 0x3, 0xfffffff7, 0x9}, {0x0, 0xffffffff, 0x1000, 0xa7e, 0x3, 0x7}, {0x401, 0x9, 0xfff, 0xfffffffd, 0x2, 0x9211}, {0x1, 0x5, 0x2, 0x10001, 0x101, 0x1ff}, {0x3, 0x2ab, 0xffffffff, 0xd, 0x9, 0x4}, {0x6, 0x4, 0x5, 0xd75, 0xffffffff, 0x10000}, {0x9, 0x2, 0x36, 0x4, 0x7, 0x6}, {0x8, 0x5, 0x3, 0x4, 0x10000, 0x6}, {0x8, 0xbf1, 0x9, 0x3, 0x3, 0x9}, {0x9, 0x100, 0x6, 0x5, 0x40}, {0x21d, 0xffffffff, 0x4, 0x80000001, 0x6, 0x2}, {0x6, 0x4, 0xfffffff9, 0x8, 0x2, 0x7ff}, {0x5, 0x6, 0x5, 0x1, 0x1, 0x2}, {0x8, 0x81, 0xffffffff, 0x81, 0x4, 0xa2}, {0x6, 0x401, 0x6e, 0x10, 0x6, 0x7}, {0x4, 0x7, 0x0, 0x9, 0x2, 0x3}, {0xfffffffd, 0xcb, 0x0, 0x0, 0x9, 0x1}, {0x3, 0x4, 0x6, 0x7, 0x1000, 0x10}, {0xc06, 0x2, 0xffffff6c, 0x1, 0x7ff, 0x8}, {0xfffeffff, 0xb6, 0x6, 0x1, 0x2f, 0x6}, {0xfff, 0x6, 0x101, 0x1, 0x81, 0x80}, {0x80, 0x304, 0x0, 0x62, 0x1, 0xe1}, {0x0, 0x4f, 0x14fc, 0x8, 0x2, 0xffffbcef}, {0x9, 0x7, 0x7, 0x10000, 0x10000, 0x1}, {0x86a, 0x1, 0x0, 0x3, 0x567, 0x6}, {0x8, 0x4, 0x8, 0x1, 0xf}, {0x7, 0x7, 0x3, 0x9, 0x4, 0x2}, {0x3, 0x4, 0x9, 0x10, 0xc, 0x400}, {0x7, 0x5b, 0x0, 0x8000, 0x7fffffff, 0x6}, {0x2, 0x7fffffff, 0x800, 0x6, 0x6, 0xd}, {0x1ff, 0xa7, 0x8, 0x7, 0x5, 0x3ff}, {0x699, 0x5, 0x3, 0x5, 0x2, 0x7}, {0x0, 0x7f, 0x6, 0x8d, 0x3, 0x1}, {0x2, 0x1, 0x5, 0x7f, 0xe, 0xfffffff1}, {0x8, 0x4, 0x0, 0xe, 0x4, 0x4}, {0x1, 0x800, 0x9, 0x7f, 0x5, 0x10001}, {0x3475, 0x5, 0x800, 0x0, 0x6, 0x9}, {0x800, 0x80000000, 0x5, 0x4, 0x4, 0x3ff}, {0x3, 0x9, 0x8, 0x14d, 0xfffffff8, 0x3b000000}, {0x5, 0x9, 0x7, 0x7fffffff, 0xfffffffc, 0x9}, {0x5, 0x0, 0x8, 0x40, 0x17, 0x68f}, {0xf387, 0xb, 0x0, 0xc, 0x800, 0x2}, {0xb6, 0x4, 0x1, 0x1d9639ac, 0x10, 0x4}, {0x6f9, 0x7e3, 0x9, 0x2, 0x2, 0x1}, {0x2, 0x4e, 0xf70, 0xe, 0x9, 0x3}, {0x4, 0x5, 0xffff, 0x0, 0x596e, 0x3ff}, {0x200, 0x8000, 0xd, 0x7, 0x3, 0x14e}, {0x9, 0x5, 0x0, 0x9, 0x4}, {0x66ac, 0x6, 0x5, 0x3, 0x9, 0xb}, {0x8000000, 0x9, 0x3, 0x5b7, 0x646, 0xffffffff}, {0x6dbf, 0x7fffffff, 0x2000002, 0x1, 0x8}, {0x81, 0x5, 0xe, 0x6, 0x800, 0x8d8}, {0x1, 0x7, 0x3, 0x7, 0x97, 0xfff}, {0x6, 0x4244, 0x5, 0x5, 0x4, 0x8}, {0x4, 0x2, 0xfffffc00, 0x3483, 0x80, 0x2}, {0x6, 0x1, 0x1, 0x7, 0x8001, 0xc437}, {0x15, 0x2, 0x4ee, 0x6, 0x1ff, 0x2}, {0xfffffff7, 0x9, 0x0, 0x8, 0x4, 0xb9f}, {0x58, 0x9, 0xab10, 0xffffffff, 0x5, 0x3}, {0xffffeedb, 0x6, 0x2, 0x6, 0x9, 0x3}, {0x4, 0x0, 0x65, 0x5, 0x76d, 0xffff}, {0x9, 0x2, 0x9, 0x1, 0x3, 0x7}, {0x2, 0x7, 0x5, 0x8000, 0x9, 0x200}, {0x0, 0x1000, 0x80, 0x64, 0x80000001, 0x80000000}, {0x7, 0x0, 0x5, 0x1, 0x1, 0x4}, {0x4995, 0xfffffff3, 0x0, 0x9, 0x0, 0x9}, {0x7, 0x2, 0x7fffffff, 0xb2, 0xb, 0x5}, {0x8, 0x9, 0x1000, 0x6, 0x8, 0x9}, {0xa1, 0xd16, 0x7159, 0x0, 0x4, 0x8}, {0xfffeffff, 0x2, 0xdffc, 0x10, 0x5, 0x9}, {0xffffffff, 0x9, 0x8, 0x9, 0x1, 0x800}, {0x5, 0x1b34, 0x1, 0xb041, 0x5, 0x8}, {0x8001, 0x9, 0xd, 0x6, 0xfffffffe, 0x800}, {0x7fffffff, 0xfff, 0x7, 0xd, 0x5}, {0xa, 0x6, 0xf1a, 0x1ff, 0x9, 0x9}, {0x1, 0x9, 0xffffffff, 0xaf67, 0x4, 0xffff}, {0x1, 0x4, 0x0, 0x1, 0x9, 0x9}, {0x2, 0x1ea, 0x8, 0x1, 0x4, 0xffffffff}, {0x9, 0x2, 0x101, 0x3ff, 0x10000}, {0x6, 0x79d, 0xfffffffd, 0x0, 0x9, 0x10}, {0x59, 0x100, 0x9, 0x40, 0x6, 0xfffffff7}, {0x1, 0x3ff, 0x1000, 0x10000, 0x6, 0x2}, {0x2, 0x1, 0xfffffff6, 0x7, 0x4, 0xe28}, {0x28, 0x800, 0xfffffff9, 0x7, 0x6, 0x3}, {0xf, 0x7, 0x5, 0x8, 0x81, 0x441}, {0x4, 0x1, 0x6, 0x150, 0x0, 0x6}, {0x2, 0x7, 0x1, 0x1, 0x9, 0x10}, {0x0, 0x8, 0x8000, 0x20004, 0xfffffffa}, {0x3, 0x3e, 0xb, 0x5, 0x65, 0x9}, {0x9, 0x3, 0x800, 0x8, 0x200, 0x7}, {0x1, 0x10000, 0x5, 0xcd, 0x9d, 0x6}, {0x1, 0x101, 0x0, 0x8, 0x68, 0x6}, {0x80, 0x9, 0xe9, 0x20a9a468, 0x80, 0x6}, {0x248c, 0xb4, 0x7fff, 0x4, 0xffff, 0xe4}, {0x6, 0x292, 0x7, 0x3ff, 0x6446}, {0x6, 0x7, 0x7, 0x400, 0xba3, 0x2}, {0x4, 0x5e, 0xcfc, 0x5, 0x7, 0x800}, {0x8, 0x9, 0x2, 0x3, 0x9}, {0xa, 0x400, 0xe, 0x8, 0x6}, {0x3, 0x8, 0xfffffff8, 0x56f, 0x0, 0xff}, {0x0, 0x9, 0x2, 0x55, 0x25bc0, 0x2}, {0x1, 0x2f, 0x3, 0x4bf6, 0x0, 0xc5c}, {0x2, 0x5, 0xaf77, 0x0, 0x0, 0x3}, {0x8000, 0x4, 0x10001, 0x7, 0x10001, 0xb23}, {0x800, 0x7, 0x40000000, 0x6, 0x855, 0x6}, {0x6, 0x1000, 0x200, 0x9cb, 0x6, 0x8}, {0x7, 0x2, 0x9, 0x2, 0x800, 0x6}, {0x4, 0x10, 0x6, 0x9, 0x3, 0x9}, {0x8000, 0x7, 0x9, 0xc, 0x1, 0x9}, {0x7, 0x9, 0xca8, 0x0, 0xfffffff2, 0x4}, {0xc00, 0x4, 0x40, 0x2, 0x8001, 0x3}], [{0x4}, {0x3}, {0x1}, {0x1, 0x1}, {0x1}, {0x1, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {}, {0x5, 0x1}, {0x1}, {0x0, 0x1}, {0x5, 0x1}, {0x4}, {}, {0x1, 0x1}, {0x2, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {}, {0x3, 0x1}, {0x2}, {0x0, 0x1}, {0x3}, {0x2}, {0x1, 0x1}, {0x3, 0x50d3fb5c44704705}, {}, {0x5, 0x1}, {0x5, 0x1}, {0x2}, {0x2}, {}, {0x3}, {0x5}, {0x4}, {0x5, 0x1}, {0x1, 0x1}, {0x1}, {0x3}, {0x3}, {0x1, 0x1}, {0x5, 0x1}, {0x1}, {0x2}, {0x1}, {0x3, 0x1}, {0x4}, {0x0, 0x1}, {0x1, 0x1}, {0x2, 0x1}, {0x5}, {0x3, 0x1}, {0x2}, {0xba1c3d736ca20e20}, {0x2}, {0x3}, {0x0, 0x1}, {0x0, 0x1}, {0x2, 0x1}, {0x2}, {0x2, 0x1}, {0x5, 0x1}, {0x0, 0x1}, {0x3, 0x1}, {0x5}, {0x0, 0x1}, {0x5}, {0x2, 0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x2}, {0x3, 0x1}, {0x3}, {}, {}, {}, {0x2, 0x1}, {}, {0x1, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x5}, {0x1}, {0x2}, {0x0, 0x1}, {0x2, 0x1}, {0x2}, {0x3}, {0x5}, {0x3, 0x1}, {0x5, 0x1}, {0x2}, {0x5, 0x1}, {}, {0x1, 0x1}, {0x0, 0x1}, {0x3}, {0x5, 0x1}, {0x5, 0x1}, {0x4}, {0x1, 0x1}, {}, {0x3, 0x1}, {0x1}, {0x2, 0x1}, {0x5, 0x1}, {}, {0x1}, {0x4, 0x1}, {0x5, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x2}, {0x1}, {0x2}, {0x2}, {0x0, 0x1}, {0x5, 0x1}, {0x2}, {0x5, 0x1}, {0x2}, {0x2}, {0x3, 0x1}, {0x2, 0x1}, {0x3}, {0x3, 0x1}], 0x1}}, @TCA_PEDIT_KEYS_EX={0xb8, 0x5, 0x0, 0x1, [{0x24, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}]}, {0x54, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}]}, {0x1c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}]}, {0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}]}, {0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}]}]}, @TCA_PEDIT_KEYS_EX={0xe4, 0x5, 0x0, 0x1, [{0x3c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}]}, {0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}]}, {0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}]}, {0x24, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}, @TCA_PEDIT_KEY_EX_CMD={0x6}]}, {0x44, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x6}]}, {0x1c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}]}]}, @TCA_PEDIT_KEYS_EX={0x58, 0x5, 0x0, 0x1, [{0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}]}, {0x2c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}]}, {0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}]}]}]}, {0x90, 0x6, "411710cea6016de52a5eebdd7c2b86dc550425d17c2699573d4d4f24a1434d3064b7d097dae7e75c10e000a1f04d2cdcbad2a2e65b44c3665e079cf4b79ebd52ae1b90b2f16b076fd0cb6d138b579ee1a3a000b1aa030533b0da5add5a096224bb9b30591100535f40d44528582fee0d77558cfdc9212657416ef8e50cde07fb2a35be02705d5f15532f7a7f"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_ct={0xdc, 0xa, 0x0, 0x0, {{0x7}, {0x4}, {0xb4, 0x6, "a641cafcff171d8e10d82d792767733d0daa51f9e7ee2c9c1af40b602c608e9fea9cc42b969a65f6c7d54a3419d549a97882d8781e1469aa4ac81c8a568c95e2f9a974936ce348ba3d0a63a20b63851c1442c05064fbd4a97cbdf9b013cc0bbe92917c580d05c210a55f4182a504148af28f862b2cdbb2d6fc618b4584050136e6e516f41ad0a04886a9651d01ca352834c0d0a076d41b2aa3e467f02cd71f5b3d29d4b75cca2e256f56e3b4fb973188"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2}}}}, @m_skbmod={0xcc, 0x6, 0x0, 0x0, {{0xb}, {0x8c, 0x2, 0x0, 0x1, [@TCA_SKBMOD_ETYPE={0x6, 0x5, 0x4}, @TCA_SKBMOD_DMAC={0xa, 0x3, @multicast}, @TCA_SKBMOD_DMAC={0xa, 0x3, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0x380}, @TCA_SKBMOD_SMAC={0xa, 0x4, @broadcast}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0xf74b}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0x7, 0x3, 0x8, 0x5, 0x2}, 0x7}}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0x40, 0xfffff9dd, 0x5, 0x5, 0xffff}, 0xf}}, @TCA_SKBMOD_DMAC={0xa, 0x3, @broadcast}]}, {0x15, 0x6, "8716c08d8c9fb180b2351d7d6ef88393e2"}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}, @m_police={0x19f8, 0x3, 0x0, 0x0, {{0xb}, {0x9cc, 0x2, 0x0, 0x1, [[@TCA_POLICE_AVRATE={0x8, 0x4, 0x4}], [@TCA_POLICE_TBF={0x3c, 0x1, {0x100, 0x7, 0xdd, 0x3, 0x4, {0x80, 0x0, 0x630, 0x1, 0x9, 0x7}, {0x3, 0x1, 0x2, 0x240, 0x6}, 0x6, 0x81, 0x9}}], [], [@TCA_POLICE_RATE64={0xc, 0x8, 0xffff}, @TCA_POLICE_RATE={0x404, 0x2, [0x1, 0x7, 0x2, 0x201, 0xcf, 0x1, 0xc, 0x2, 0x2, 0x7, 0x8ac9, 0x8, 0x0, 0x3, 0x8, 0x5, 0x71bf, 0x8, 0x5, 0xc, 0x2, 0x80000001, 0x2, 0x4, 0x521d, 0x8, 0x2, 0x10001, 0x10, 0x4, 0x3, 0x1e00, 0x8, 0x2, 0x9, 0x7, 0x2, 0x8000000, 0x9, 0x4, 0x2, 0x1, 0x3, 0x0, 0x6, 0xe, 0x9f, 0x10001, 0x3, 0xc77e, 0x10000, 0x7, 0x9, 0xfff, 0x4, 0x0, 0x81, 0x9, 0x5, 0x8, 0x1000, 0x4, 0x2, 0x8000, 0x3ff, 0x48, 0x1, 0x9, 0x2, 0x6, 0x68c, 0x0, 0x4, 0x400000, 0x4, 0x7, 0x2, 0x3, 0x1000, 0xfffffff9, 0xfffffffe, 0x5, 0x7ff, 0x6c1, 0x5, 0x10, 0x58de, 0x5, 0x543, 0x101, 0x6, 0x7, 0x2, 0x7, 0x6, 0x6, 0x1, 0x1, 0x9, 0xc4, 0xdbc, 0x4, 0x7, 0x80, 0x9, 0x9, 0x5, 0x7, 0xfffffff8, 0x2, 0x24d, 0xffffffff, 0x4, 0x4, 0x6, 0x14d, 0x8, 0x8, 0x4, 0x2, 0x5, 0x9b, 0x8aa, 0x7fffffff, 0x4, 0x5c31, 0x5, 0x0, 0xfff, 0x4, 0x6c70, 0x1, 0x0, 0xff, 0x7, 0x7fffffff, 0x5, 0x0, 0x0, 0xb60, 0x3, 0x790, 0x8e84, 0x2, 0x7, 0x80, 0x1, 0x5, 0x81, 0x0, 0x7f, 0x8, 0x3, 0x800, 0xc, 0x5, 0xfff, 0xffffff1c, 0x3, 0x6, 0x7, 0x5, 0xc9d, 0xf100, 0x9, 0x2, 0xa, 0x8, 0x2, 0x80000001, 0x5, 0x9, 0x4, 0x3, 0x5, 0x2, 0x4, 0x5, 0x1, 0x5, 0x1000, 0x5, 0x7, 0x7, 0x3, 0x1, 0x6, 0x0, 0x10, 0x6, 0x9, 0x8f, 0x0, 0x8, 0x58f, 0x7ff, 0x600000, 0x7, 0x0, 0x639, 0x1, 0x3, 0x2, 0x2, 0xff, 0x4, 0x1, 0x1, 0xd4d5, 0x6, 0x8a4, 0xe6, 0x106, 0x6, 0x8, 0x2, 0x7, 0x80e0, 0x8, 0xffffffff, 0xb, 0x5, 0x0, 0x9, 0x9, 0x1, 0xf, 0x3, 0xffff8001, 0x0, 0x81b8, 0x8, 0x455, 0x3, 0x2, 0x3a6, 0x4, 0x8001, 0x2, 0xb80, 0x0, 0x5, 0x3, 0x1, 0x5, 0x6, 0x4, 0x800, 0x80000001, 0x2, 0x4, 0x1e5, 0x2, 0x69, 0x4, 0x7f]}, @TCA_POLICE_RESULT={0x8, 0x5, 0x4}], [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x50000}, @TCA_POLICE_TBF={0x3c, 0x1, {0x9, 0x10000000, 0x3, 0x3, 0xc, {0x6, 0x0, 0x3, 0xa9, 0xa4, 0x401}, {0x2, 0x2, 0x5, 0x80, 0x3, 0x5}, 0x7, 0x9e08, 0x6}}], [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x9, 0xfff, 0x1, 0xb, 0xd35, 0x6, 0x58, 0x9, 0x1, 0x6, 0x2d, 0xc, 0x6, 0xa6, 0x6, 0x8, 0x1, 0x7, 0x9, 0x4, 0x0, 0xbb0d, 0x25ee, 0x9, 0xa123, 0x6, 0x8, 0x80000001, 0x478d, 0xa0000000, 0x3, 0x4, 0x28219621, 0x3, 0x3ff, 0xffff2079, 0x33, 0x8, 0x4ed, 0x4, 0x9, 0x1, 0x2, 0x7, 0x9, 0x541, 0xffffffff, 0x80000001, 0xd6e4, 0x8, 0x4, 0x9, 0x2, 0x4, 0xa793, 0x4, 0x2, 0x5, 0xc77, 0x80000000, 0x2, 0x8, 0x0, 0x4, 0x8001, 0x8, 0x1, 0x1000, 0x8, 0x2, 0x5, 0xed1, 0x7, 0x3, 0x80, 0x7, 0x8, 0x400, 0x1, 0x1ff, 0xfff, 0x5, 0x8, 0x91, 0x4, 0x9, 0x2, 0xd3b, 0x5, 0xc1e0, 0x3, 0x4, 0x4, 0x2, 0x101, 0xffff8001, 0x3690, 0xffffffff, 0xffffffff, 0x0, 0x1, 0x3, 0x3, 0x7f, 0x3, 0x80000001, 0x400, 0xffff08eb, 0x4, 0x8, 0x4, 0x0, 0x1000, 0x6c82, 0xfffffff8, 0x8, 0x4, 0x4000000, 0x4, 0x8, 0x5bee, 0x4c, 0x9229, 0x2174, 0x8, 0x7f9, 0x6098, 0x2, 0x4, 0x1, 0x1, 0x723, 0x7, 0x0, 0x2, 0x4, 0x8, 0x6, 0xfffffff8, 0x6, 0xa, 0x8, 0x3, 0x10003ff, 0x0, 0x6, 0x4, 0x61, 0x6037, 0x1, 0x0, 0x5, 0xa117, 0x848, 0xff, 0xffffff54, 0x1, 0x7, 0x2194, 0x5, 0x7ff, 0x7, 0x200, 0x100, 0x3, 0x7, 0xd, 0x76acfb45, 0x0, 0x6, 0x3cd, 0xb, 0xe, 0xffffffff, 0x3f, 0x7, 0xff, 0x6, 0x5, 0x7, 0x7, 0x16, 0x0, 0x200, 0x3, 0x1, 0x9, 0x8, 0x83, 0x80, 0x5, 0x0, 0x61, 0x8, 0xbed0, 0x7, 0x8000, 0x8, 0x29, 0xe4, 0x2f2, 0x94, 0x3, 0x7, 0x80000000, 0x90, 0xf38a, 0x6, 0x312e, 0x80000000, 0x8, 0x1, 0x4f, 0xc0, 0x2, 0x9, 0x800, 0x9, 0xffff, 0x5, 0x7, 0x4, 0x401, 0x8, 0x2, 0xc, 0xffffffff, 0xfffffff8, 0x8, 0x2, 0x9, 0x0, 0x8, 0x3, 0xb, 0x5, 0x4, 0x2, 0x8, 0x4, 0xd, 0xfffffff4, 0x6, 0x7, 0x2, 0x7, 0x9, 0x9, 0xd, 0x1, 0x0, 0x4, 0xb5, 0x1ec, 0xfffffff9, 0x7]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x1, 0x1, 0x2, 0x80000001, 0x4cc, {0x2, 0x1, 0x3, 0x53, 0x5, 0xb}, {0x8, 0x1, 0x0, 0x3ff, 0x5}, 0x7, 0x8, 0x6}}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x8}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x10001}, @TCA_POLICE_TBF={0x3c, 0x1, {0x993, 0x5, 0x7920, 0x2, 0x3, {0x5, 0x3, 0x401, 0xfff4, 0x8, 0xa}, {0xf8, 0x0, 0x1, 0x4, 0x8, 0x7}, 0x0, 0x3, 0xd62e}}, @TCA_POLICE_RESULT={0x8, 0x5, 0x8b74}, @TCA_POLICE_TBF={0x3c, 0x1, {0x9, 0x1, 0x2, 0xcb, 0xffff, {0x2, 0x2, 0x6, 0x0, 0xb89b, 0x1000}, {0x5, 0x2, 0xfc00, 0xd1b8, 0x101, 0x10001}, 0x7, 0xfc, 0x3d}}], [@TCA_POLICE_AVRATE={0x8, 0x4, 0x3}, @TCA_POLICE_RESULT={0x8, 0x5, 0x4c1}], [@TCA_POLICE_TBF={0x3c, 0x1, {0x7, 0x3, 0x0, 0x5, 0x5, {0x7, 0x0, 0x2d, 0x10, 0x101, 0x4}, {0x4, 0x1, 0x7, 0x10, 0x1, 0x1337}, 0x5, 0x5, 0xfff}}, @TCA_POLICE_RESULT={0x8, 0x5, 0x19c4e714}]]}, {0x1004, 0x6, "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"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x4}}}}]}, @TCA_CGROUP_EMATCHES={0x110, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0xa0, 0x2, 0x0, 0x1, [@TCF_EM_CONTAINER={0x68, 0x2, 0x0, 0x0, {{0xab, 0x0, 0x7ff}, "13d1e3f24898dd6789c2577492ea08568af582f086fedb1bf55d9ef74814e7e36419c5d839d79bb8208aa4f10cbcf0de1c25aa48fcb03ddc8b737bbcd587a281530acde47a5cd571eb1ada4774c2a9fd932111208709b781f0762e"}}, @TCF_EM_CMP={0x18, 0x2, 0x0, 0x0, {{0x7, 0x1, 0xff5d}, {0x7, 0x3, 0x97, 0x1, 0xc, 0x1, 0x2}}}, @TCF_EM_U32={0x1c, 0x1, 0x0, 0x0, {{0xfff, 0x3, 0x9}, {0x4, 0x0, 0x200, 0x3}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x40}}, @TCA_EMATCH_TREE_LIST={0x64, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0x40, 0x7, 0x3}, {{0x2, 0x1}, {0x4, 0x0, 0x1, 0x1}}}}, @TCF_EM_CMP={0x18, 0x3, 0x0, 0x0, {{0x5, 0x1, 0x9}, {0xa, 0x7, 0x6, 0x5, 0x4}}}, @TCF_EM_CMP={0x18, 0x1, 0x0, 0x0, {{0xc, 0x1, 0xc}, {0x1, 0x5, 0x7fff, 0x2, 0x7, 0x2, 0x8fd83fbe6cf808f3}}}, @TCF_EM_U32={0x1c, 0x3, 0x0, 0x0, {{0x6, 0x3, 0xadb}, {0x2, 0x4cfcd7e1, 0xd, 0xf}}}]}]}]}}, @TCA_CHAIN={0x8, 0xb, 0x8}, @TCA_RATE={0x6, 0x5, {0x72}}]}, 0x3e3c}, 0x1, 0x0, 0x0, 0x8848}, 0x80)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x402)
ioctl$KVM_GET_DEVICE_ATTR_vm(r3, 0x4018aee2, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x1}})
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$dir(0xffffffffffffff9c, &(0x7f0000001a00)='./file1\x00', 0x141040, 0x42)
mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000004a00)='./file1\x00', &(0x7f0000000040)='udf\x00', 0x100080f, 0x0)
gettid()
bind$llc(0xffffffffffffffff, &(0x7f0000000280)={0x1a, 0x20, 0x7, 0x9, 0x8, 0x4, @link_local}, 0x10)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x200003f, 0x4c831, 0xffffffffffffffff, 0x1cbf8000)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000100)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_ctr_aes256\x00'}, 0x58)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200), 0x41, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

5.851359893s ago: executing program 4 (id=2701):
r0 = openat$mice(0xffffffffffffff9c, &(0x7f0000000140), 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r1 = openat$nullb(0xffffff9c, &(0x7f0000000340), 0x40c00, 0x0)
ioctl$IOC_PR_REGISTER(r1, 0x401870c8, &(0x7f00000004c0)={0x3})
sendmsg$NL80211_CMD_SET_PMK(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000cc0)=ANY=[@ANYBLOB="030000004bc6ea5ffde2db6a07ac6d830bcb82a4965045c12c9b4b9762434b3f6ea1dc6ac1a4f8b9a423c330d5a9a8e00df81b43e485090bb951ae6eab6466c5a5f818580fcbe4404b23ed24eedb693244bbeceab35edd9b1a0a3fb659be2c5bf997430b85c505a6ef6e35d383c5aabf4cd040fd0e375a3ed053c0acb9b0d8c6b65ca18dbf525eac0b0ff3afba81fcfe257daeb69e57f0ef077e996a2e44cc74", @ANYRES16=0x0, @ANYBLOB="200029bd7000ffdbdf257b0000000c00990000000000230000000a000600ffffffffffff0000140002011f9358a5532e79baf90be5a8b40215d6"], 0x40}, 0x1, 0x0, 0x0, 0x24040040}, 0x40)
mkdir(&(0x7f0000000200)='./file0\x00', 0x80)
mount$fuse(0x0, 0x0, 0x0, 0x200440, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0, @ANYRES32=r1, @ANYRESOCT=r0, @ANYRES16=r0, @ANYRES32])
mount(0x0, &(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r2 = add_key$user(&(0x7f0000000500), &(0x7f0000000540)={'syz', 0x1}, &(0x7f0000000580)="8b94bf15fcf97aa0de6d2988dfb9d193ee43174816cb09f8435b9bbace692a05f2290f78751c3cf745a22dc2803c062e02f4f10998d7237b42d1", 0x3a, 0xffffffffffffffff)
r3 = add_key$user(&(0x7f00000005c0), &(0x7f0000000600)={'syz', 0x2}, &(0x7f0000000640)="009e40de5f2b756d901d1ef34494fa656b9d3669bf36f03347f523494a76537a6fc0ef0eccbca8cb242370aa1d0f17aeb94a3b265a89d5e67d6a932352ef36c940b54604660680cf8c397b800b908269d96954f738f23a8a68554554f9a0287fde4269c3ab00d72e09fdbddc3a61bafdf6cf3a40210ba525d0d2", 0x7a, 0xfffffffffffffffe)
r4 = add_key$user(&(0x7f00000006c0), &(0x7f0000000700)={'syz', 0x3}, &(0x7f0000000740)="8adf18712ed3a6e35140f26878eff97cb2fa2339f87a92ccb16ef1c7ab453f4be61524d77abd6db922744d053e98a1e28a5ce511757bb37f373e18252539933041d36fc0501a1f2feb5715861d36d1631014b1c1c6e3ce33630aad527713a1af0ab1a863c3e94c0e5d135d8a07e07ea0252c3f50d980ec7731e7a83cfa52ed320879f90ba8f742cda60462270d00dda77b59fc530d885958001ffed8ca5b5c15484b7c9843929d28b6e73b07cbeb6f7dc64a677be78c32b53e3b9c590bfa3164c884c799ece3a13ac62257de582a8970cbfbdafbb5fa8017e778d1bfc863df4e6b6cebcb8763baa1e136445025bcd40c60842575", 0xf4, 0x0)
keyctl$dh_compute(0x17, &(0x7f0000000840)={r2, r3, r4}, &(0x7f0000000880)=""/170, 0xaa, &(0x7f0000000a00)={&(0x7f0000000940)={'sha512_mb\x00'}, &(0x7f0000000980)="b1f59a0df0c624318b04632d51a792aa2e45bc7c14ee9aa9b385f941ae658a0ae4a302ff274e8799d9bd84cad998f13a439e9274c95362d67762dbdf72c12d4467634f150d2433ced38c236a70d8054245e2601b080b2e4c0ff1e6fb3cae90199823ff1b09e9195809592d202ea3e48ea3128274f45c26ad2798d9a42aa0db", 0x7f})
r5 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='binder\x00', 0x0, 0x0)
chdir(&(0x7f00000000c0)='./file0\x00')
ioctl$AUTOFS_IOC_PROTOSUBVER(r5, 0x40049366, 0x0)
r6 = syz_open_dev$vim2m(0x0, 0x0, 0x2)
ioctl$vim2m_VIDIOC_EXPBUF(r6, 0xc0405610, &(0x7f0000000100)={0x2, 0x6, 0x1, 0x880})
r7 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
write$uinput_user_dev(r7, &(0x7f0000000840)={'syz1\x00', {0x3bb, 0x10, 0x5, 0x5}, 0xe, [0xf, 0x0, 0x6, 0x0, 0x4, 0x7, 0x3, 0x10001, 0x7, 0xcf, 0x14, 0x8d, 0x2, 0x9, 0xff, 0x7f, 0x9, 0x0, 0x9, 0x2, 0x4, 0x7, 0xfffffffe, 0x3, 0x497d, 0x3, 0xe5be, 0xd, 0x200, 0xffffffff, 0x1, 0xab, 0xe9, 0x7ff, 0x0, 0x21f3, 0xfffffffd, 0xf688, 0x8, 0x1, 0xff, 0x8, 0x430, 0x7, 0x5ced2a4a, 0x4, 0x3, 0x9, 0x101, 0x1, 0x2, 0x4, 0xcfc7, 0x6, 0x6, 0x80000000, 0x4, 0x401, 0x2, 0x9, 0x4, 0x800, 0x6, 0x8], [0x3, 0x2, 0xffffffff, 0x3f7a, 0x0, 0x1, 0x2, 0x5738, 0xb, 0xffd, 0xc, 0x3, 0x26, 0x9, 0xe, 0x8, 0x9, 0x2, 0x6, 0x818, 0x3, 0x4, 0x7fffffff, 0x2, 0xffffff00, 0x0, 0x7, 0x1, 0x7, 0x0, 0x10, 0x6, 0xfffffff7, 0x4, 0x40000004, 0xfffffff1, 0x6, 0x1000, 0x80000001, 0x2, 0x16, 0x1220, 0x1, 0x8, 0x5, 0x759b, 0x80, 0x7, 0x7, 0x5, 0xfff, 0xa1de, 0x7, 0x0, 0x7, 0x1, 0x4, 0xff, 0x6, 0x3, 0xe74, 0x5, 0x7579, 0x2], [0x0, 0x2, 0x8, 0x8, 0x1, 0x1, 0x7f, 0x0, 0x5, 0x4, 0x5, 0x5, 0x6, 0x0, 0xff, 0x5, 0x2, 0x8000, 0x1, 0x6, 0x4, 0x6, 0x4, 0x8, 0x1000, 0x100, 0x8001, 0x8, 0xfffff646, 0xd5c3, 0x9, 0x9, 0x80000000, 0x9, 0xd, 0xffffff96, 0xa1, 0x7, 0x7, 0xa, 0x9, 0x0, 0xfffffffa, 0x6, 0xf3, 0xff, 0x6, 0x16d, 0x3, 0x7, 0xa0aa, 0xffff71a5, 0x9, 0x5207, 0x7ff, 0xf7ff, 0xf9e, 0xb, 0x4, 0x1, 0x20007, 0xc, 0x80000001, 0x4], [0x9, 0x10001, 0x7f, 0x0, 0x6, 0x8, 0xf, 0x1000, 0x8, 0x5d0, 0x3, 0x6, 0x1, 0xa89, 0x0, 0x0, 0x9, 0xdce, 0x7ffffffe, 0x9, 0x8, 0x1, 0x536, 0x9, 0x0, 0x9, 0xfffffffe, 0x9, 0xea59, 0x101, 0x100005, 0x7, 0x0, 0x4, 0xa, 0xfa7, 0xd6, 0x2, 0x7, 0xffff, 0x8, 0x8000, 0xffff, 0x0, 0x2080, 0xffdff330, 0x8, 0x8, 0x754d, 0x4, 0x3, 0x2, 0x400, 0x3, 0x3, 0x3ff, 0xff, 0xfffffff9, 0x1, 0x0, 0x60000000, 0xfffffff8, 0x6, 0x80000]}, 0x45c)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @vbi={0x6, 0x2, 0xc7a, 0x38414762, [0x3, 0x7], [0x2, 0x2], 0x13a}})
sched_setscheduler(0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000100)=0x40000002)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)

5.513434687s ago: executing program 4 (id=2706):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x1, 0x4, &(0x7f0000006680))
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)={0x58, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8}]}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}, @IPSET_ATTR_REVISION={0x5}]}, 0x58}}, 0x0)
chroot(&(0x7f0000000000)='./file0\x00')
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="04221f02"], 0x22)
poll(&(0x7f00000000c0)=[{0xffffffffffffffff, 0x480}], 0x1, 0xf0)
r1 = open(&(0x7f0000000280)='.\x00', 0x80, 0x122)
fcntl$notify(r1, 0x402, 0x8000003d)
fcntl$setown(r1, 0x8, 0xffffffffffffffff)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) (fail_nth: 12)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e21, 0x679, @empty, 0x3}, 0x1c)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
syz_open_dev$sg(&(0x7f0000000040), 0xa, 0x80002)

5.007430615s ago: executing program 2 (id=2708):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x2, 0x3, 0xb}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000f4751f2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000380)={r1}, 0xc)

4.919449957s ago: executing program 4 (id=2709):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000073"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x1c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xb709}, 0x94)
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000180)=r1, 0x4)
r2 = socket$kcm(0xa, 0x1, 0x0)
sendmsg$kcm(r2, &(0x7f00000000c0)={&(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x3, @remote, 0x5, 0x3}, 0x80, 0x0}, 0x2600c055)

4.683699862s ago: executing program 4 (id=2710):
socket(0x2, 0x2, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x10)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000002140)={0x2020, 0x0, <r1=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000004180)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x5, 0x2, 0xfffffffffffffffe, 0x3ff, 0x0, 0x0, {0x40, 0x3, 0x6, 0xc8, 0x1000, 0xfffffffffffffffc, 0x0, 0x0, 0x120, 0x2000, 0x0, 0x0, 0x0, 0x4000fbbb, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r1, {0x7, 0x29, 0x2, 0x14c0348, 0x40, 0x1, 0xfffffff1, 0x0, 0x0, 0x0, 0x80, 0x7fffffff}}, 0x50)
openat(0xffffffffffffff9c, &(0x7f00000013c0)='./file0/file0\x00', 0x42, 0x0)
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000340)={0x0, 0x7b3c, 0x10100}, &(0x7f00000002c0)=<r3=>0x0, &(0x7f0000000000)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r2, 0x2def, 0x0, 0x0, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
r5 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x749})
ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000325000/0x2000)=nil, 0x2000}, 0x2})
ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f0000000200)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
r6 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(r6, 0x5412, &(0x7f00000000c0)=0x13)
write(r6, &(0x7f0000000000)='1', 0x1)
ioctl$TCSETA(r6, 0x5406, &(0x7f0000000340)={0xc2, 0x100, 0x2, 0x4, 0xfe, "5f730000a9003f00"})

4.677204489s ago: executing program 2 (id=2711):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
syz_emit_ethernet(0x7c, &(0x7f0000000080)={@broadcast, @multicast, @void, {@ipv6={0x86dd, @gre_packet={0x7, 0x6, "1000", 0x46, 0x2f, 0xe78c6d029ffc7582, @local, @mcast2, {[], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6558, 0x0, 0x3, [0x1ff]}, {0x0, 0x0, 0x1, 0x1}, {0x0, 0x0, 0x1, 0x1}, {0x6488, 0x88be, 0x4, {{0x5, 0x1, 0x3, 0x3, 0x1, 0x0, 0x0, 0x35}, 0x1, {0x4c289}}}, {0x8, 0x22eb, 0x1, {{0xe, 0x2, 0x0, 0x1, 0x0, 0x3, 0x1, 0x4}, 0x2, {0x200004, 0x2, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x1}}}, {0x8, 0x6558, 0x4}}}}}}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000003, 0x38011, r1, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a7c000000060a0b0400000000000000000200000050000480280001800a00010071756f74610000001800028008000240000000000c000140000000000000086724000180090001006d6574610000000014000280080002400000001a08000140000000060900010073797a30000000000900020073797a32"], 0xa4}, 0x1, 0x0, 0x0, 0x4000880}, 0x0)
r2 = openat2$dir(0xffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)={0xa02}, 0x18)
r3 = open_tree(r2, &(0x7f00000000c0)='./file0\x00', 0x1)
ioctl$VIDIOC_S_HW_FREQ_SEEK(r3, 0x40305652, &(0x7f0000000100)={0x479, 0x2, 0x2, 0x4, 0x5, 0x8852, 0x7})

4.47902122s ago: executing program 5 (id=2713):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='GPL\x00', 0x0, 0x0, 0x0, 0x41000}, 0x94)
socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=@newnexthop={0x30, 0x68, 0x1, 0x2, 0x7ffffffc, {}, [@NHA_GROUP={0x14, 0x2, [{0x1, 0x5}, {0x2, 0xfe}]}, @NHA_FDB={0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x24008000}, 0x4000)
io_uring_setup(0x734a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0xfff7fffc})
mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0x2}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000300)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r5, &(0x7f0000000180)={0x1a, 0x0, 0xf9, 0x8, 0xff, 0x0, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3e}}, 0x10)
sendmmsg(r5, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
ioprio_get$pid(0x3, r2)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn'])
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='contention_end\x00', r0}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
syz_emit_vhci(&(0x7f00000001c0)=@HCI_EVENT_PKT={0x4, @inquiry_info_with_rssi_and_pscan_mode={{0x22, 0x10}, {0x1, [{@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x7, 0x3, 0x5, "42cc3e", 0x1, 0x40}]}}}, 0x13)

2.609731409s ago: executing program 4 (id=2714):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000001400), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x3, 0x0, 0x111}}, 0x20)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=@newtaction={0x18, 0x30, 0x400, 0x70bd2d, 0x25dfdbfe, {}, [{0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x22008000}, 0x4008000)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, &(0x7f0000000100)={0x3, 0x40, 0xfa00, {{0xa, 0xfffc, 0x2, @loopback, 0xa09c}, {0xa, 0x2, 0xfffffffe, @dev={0xfe, 0x80, '\x00', 0x39}}, 0xffffffffffffffff, 0x40099d}}, 0x48)
memfd_create(&(0x7f0000000300)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
munmap(&(0x7f0000001000/0x4000)=nil, 0x4000)
ioctl$KVM_GET_MSRS_sys(r4, 0xc008ae88, &(0x7f0000000240)={0x10000000000000e0, 0x0, [{0x22c, 0x0, 0x8001}, {0xaa8, 0x0, 0x5}, {0x8e2, 0x0, 0x1200}, {0x97c, 0x0, 0x3}]})
r5 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x22, 0x8306c1)
writev(r5, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
r6 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
r7 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r7}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
listen(r6, 0x3)
r8 = accept4(r6, 0x0, 0x0, 0x0)
writev(r2, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='net/nf_conntrack_expect\x00')
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r9=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r8, &(0x7f0000004340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)={0x24, r1, 0x331, 0x2000, 0x40080000, {0x8}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r9}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x400c01c}, 0x0)
openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)

2.609414282s ago: executing program 2 (id=2715):
socket(0x2a, 0x803, 0x9) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000780)=@newtaction={0xa8, 0x30, 0x100, 0x0, 0x0, {}, [{0x94, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_simple={0x4c, 0x1e, 0x0, 0x0, {{0xb}, {0x1c, 0x2, 0x0, 0x1, [@TCA_DEF_PARMS={0x18, 0x2, {0x80000001, 0x334f, 0x20000000, 0x1, 0x6}}]}, {0x6, 0x6, "5ea9"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x2}}}}]}]}, 0xa8}, 0x1, 0x0, 0x0, 0x40804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
r0 = getpid() (async)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) (async)
ioctl$sock_TIOCOUTQ(r2, 0x5411, &(0x7f0000000280)) (async)
socketpair$unix(0x1, 0x6, 0x0, &(0x7f0000000200))
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) (async)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), 0xffffffffffffffff) (async)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x101002, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000340)=0xff) (async)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000000100)={@multicast2, @loopback}, 0xc) (async)
r4 = io_uring_setup(0x16c8, &(0x7f0000000080)={0x0, 0xd621, 0x1001, 0x0, 0x307})
io_uring_register$IORING_REGISTER_FILES_UPDATE(r4, 0x24, &(0x7f0000001280)={0x1, 0x0, 0x0}, 0x0) (async)
r5 = socket$netlink(0x10, 0x3, 0x0) (async)
ioctl$SNDCTL_DSP_CHANNELS(0xffffffffffffffff, 0xc0045006, 0x0)
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/kexec_loaded', 0x0, 0x0)
pread64(r6, &(0x7f0000000100)=""/76, 0x4c, 0x0)
r7 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000600)=ANY=[@ANYBLOB="9feb0100000000000000007f0c0000000c00000004000000000001000000000d0000000000005f00cb2e2720b316943d7d31e948108523c3b6d49ced9f89b51225a7a3d161279906b6bd33c3d369d6fb07081c6421c370bd1d63e94ec639b376ce79fd8df82a8fbda78e2b0b77adcfec478db219ae209a0ae35227cf4956900992cb2e608fbd9bf00edda859418cf2f1dcb9d42d4be0a598cf2099abd5e34f27631d9872cd586954bb6122a7053dbceb8b0295c4a89a0f1afdd9be4edae7bf0097a548"], 0x0, 0x28}, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x11, 0xd, &(0x7f0000000480)=ANY=[@ANYBLOB="b7080000000000007b8af8ff00000080b7080000faffffff7b8af0ff00000000bfa100000000000007010000f8ffffffbfa4000000000000070400000c000000b80200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000a5000000"], &(0x7f0000000000)='syzkaller\x00', 0x4000, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, r7, 0x8, &(0x7f0000000080)={0x0, 0x1}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200000}, 0x94) (async)
writev(r5, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1) (async)
writev(r5, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40) (async)
setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x24, 0x0, 0x0)

2.293806545s ago: executing program 0 (id=2716):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x54, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180200009b1aecb60000000000000000850000007500000095"], 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d00)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af0ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)

2.180200345s ago: executing program 2 (id=2717):
r0 = socket(0x15, 0x5, 0x0)
getsockopt(r0, 0x200000000114, 0x2717, 0x0, &(0x7f0000000040))
r1 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r1, &(0x7f0000000080), 0x10)
ioctl$sock_inet6_tcp_SIOCINQ(r1, 0x541b, 0x0)
unshare(0x26020480)
write$apparmor_exec(0xffffffffffffffff, &(0x7f0000000a40)=ANY=[@ANYBLOB='stack :'], 0xe4)
dup(0xffffffffffffffff)
ioctl$EVIOCSFF(0xffffffffffffffff, 0x402c4580, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
r2 = open(0x0, 0x101040, 0x0)
fcntl$setlease(r2, 0x400, 0x1)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x6)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r4 = syz_io_uring_setup(0x88f, &(0x7f0000000440)={0x0, 0x304e, 0x0, 0x2, 0x28d}, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
timer_delete(0x0)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x40, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x8001}})
io_uring_enter(r4, 0x2b93, 0xf9d0, 0x22, 0x0, 0x0)

2.029864936s ago: executing program 0 (id=2718):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000073"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x1c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xb709}, 0x94)
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000180)=r1, 0x4)
r2 = socket$kcm(0xa, 0x1, 0x0)
sendmsg$kcm(r2, &(0x7f00000000c0)={&(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x3, @remote, 0x5, 0x3}, 0x80, 0x0}, 0x2600c055)

1.948144864s ago: executing program 0 (id=2719):
r0 = socket$kcm(0x2, 0x200000000000001, 0x106)
shutdown(r0, 0x1)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000500)={<r1=>0xffffffffffffffff})
syz_emit_ethernet(0x10b, &(0x7f0000000540)={@broadcast, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0xfd, 0x0, 0x0, 0x0, 0x67, 0x0, @rand_addr, @loopback}, @parameter_prob={0xc, 0x0, 0x0, 0x4, 0x7, 0x0, {0x37, 0x4, 0x3, 0x3b, 0x9, 0x64, 0xe99c, 0xfc, 0x73, 0x0, @local, @loopback, {[@cipso={0x86, 0x66, 0x2, [{0x2, 0x10, "a08258b75a0cc46ff007103b75c5"}, {0x6, 0x11, "7be284b71ee20d98047878d112b6da"}, {0x2, 0x8, "01d2359c2903"}, {0x1, 0xd, "6e31f62b37724ada5fb1fc"}, {0x7, 0x9, "fe3c4d88e915cb"}, {0x6, 0x11, "a15985bbd12cf3649e468823e6b7a6"}, {0x5, 0x10, "dc70b509e85ee545b189b9a882a5"}]}, @cipso={0x86, 0x4c, 0x3, [{0x2, 0xd, "2fb2e54b84d37e273dbc50"}, {0x0, 0xd, "a6b28bf0cb9cb989b16ef0"}, {0x2, 0x4, "72b4"}, {0x3, 0xc, "d6524592489c1328fb4c"}, {0x2, 0xd, "3c72c90abf8c938a168b8d"}, {0x0, 0xd, "ea2ee73b9c8fa57cd1795d"}, {0x6, 0x2}]}, @lsrr={0x83, 0x13, 0x36, [@empty, @loopback, @private=0xa010100, @rand_addr=0x64010102]}]}}, "90c2e4d1d2"}}}}}, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
mmap(&(0x7f00003f7000/0x2000)=nil, 0x2000, 0x800001, 0x4000010, r1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x6)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000140)={'wg1\x00', &(0x7f00000000c0)=@ethtool_link_settings={0x4c, 0xd, 0x62, 0x7, 0x8, 0xe, 0xe3, 0x9, 0xa, 0x0, [0x4e, 0x9, 0xd2, 0x7, 0x401, 0x4, 0x9, 0xfffffffb], [0x7f]}})
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
r4 = add_key(0x0, &(0x7f0000000280)={'syz', 0x1}, &(0x7f00000002c0)="1d", 0x1, 0xfffffffffffffffe)
keyctl$read(0xb, r4, &(0x7f0000001300)=""/4096, 0xffffffffffffffd2)
r5 = dup(r2)
r6 = openat$ocfs2_control(0xffffff9c, &(0x7f0000000180), 0x40, 0x0)
ioctl$EXT4_IOC_GETFSUUID(r6, 0x8008662c, &(0x7f0000000240))
ioctl$TIOCL_SETSEL(r5, 0x541c, &(0x7f0000001900)={0x2, {0x2, 0x107, 0x100, 0x100, 0x1, 0x4000}})
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x4001, @loopback}, 0x10, 0x0, 0x0, 0x0, 0x0, 0xa7}, 0x30004084)
r7 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f00000003c0)=0x14)
ioctl$TIOCVHANGUP(r7, 0x5437, 0x2)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)

1.75094265s ago: executing program 4 (id=2720):
madvise(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x13)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000180)={0x7a2a, 0x9, 0x5a}, 0x8)
fanotify_init(0x10, 0x1)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
pipe(&(0x7f00000000c0)={<r3=>0xffffffffffffffff})
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
dup(r3)
sendmsg(r2, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
syz_usb_connect(0x0, 0x5f, 0x0, 0x0)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='stat\x00')
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
write$6lowpan_control(0xffffffffffffffff, &(0x7f0000000180)='connect aa:aa:aa:aa:aa:11 0', 0x1b)
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000180)='./control\x00', 0xa4000960)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$PIO_UNISCRNMAP(r5, 0x4b46, &(0x7f00000000c0))
ioctl$CDROM_NEXT_WRITABLE(r4, 0x5394, &(0x7f0000000000))
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="500000000206050000000000040000000000000005020073797a31470000000c00078008001240000000000c000302686173683a697000050005000a00000005000f000100"/80], 0x50}, 0x1, 0x0, 0x0, 0x4004000}, 0x40080)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_FLUSH(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x1c, 0x4, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000680), 0x40000, 0x19)

1.749535932s ago: executing program 5 (id=2728):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x1, 0x4, &(0x7f0000006680))
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)={0x58, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8}]}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}, @IPSET_ATTR_REVISION={0x5}]}, 0x58}}, 0x0)
chroot(&(0x7f0000000000)='./file0\x00')
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="04221f02"], 0x22)
poll(&(0x7f00000000c0)=[{0xffffffffffffffff, 0x480}], 0x1, 0xf0)
r1 = open(&(0x7f0000000280)='.\x00', 0x80, 0x122)
fcntl$notify(r1, 0x402, 0x8000003d)
fcntl$setown(r1, 0x8, 0xffffffffffffffff)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0xffa1)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e21, 0x679, @empty, 0x3}, 0x1c)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
syz_open_dev$sg(&(0x7f0000000040), 0xa, 0x80002)

1.654616943s ago: executing program 2 (id=2721):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg(r0, &(0x7f0000002f80)=[{{&(0x7f00000005c0)=@phonet={0x23, 0x3, 0x5}, 0x80, 0x0}}], 0x1, 0x4)

989.988662ms ago: executing program 0 (id=2722):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mount(&(0x7f00000006c0)=@sr0, 0x0, 0x0, 0x204001, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x35, 0x741, 0x2, 0x180, 0x4, 0x10, 0xf1, 0x50, 0x7fffffffffffe, 0x5, 0x6, 0x9, 0x8000000000000000, 0xf4a, 0x0, 0xbdb], 0xffff1001})
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(0xffffffffffffffff, 0xc040564a, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

989.7047ms ago: executing program 2 (id=2723):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000440)={0x58, 0x2, 0x6, 0x201, 0x0, 0x0, {0x6, 0x0, 0x2}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x100000}]}, @IPSET_ATTR_TYPENAME={0x14, 0x3, 'hash:ip,port,ip\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x58}}, 0x8000)

744.266117ms ago: executing program 0 (id=2724):
r0 = socket(0x840000000002, 0x3, 0xff)
sendmmsg$inet(r0, &(0x7f0000002000)=[{{&(0x7f00000001c0)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000080)=[{&(0x7f00000017c0)="a90500000b017464000100000000000700e5c06417e436a10699050000003102ab85df5a", 0x24}], 0x1}}, {{&(0x7f0000001840)={0x2, 0x4e24, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@ip_retopts={{0x18, 0x0, 0x7, {[@cipso={0x86, 0x8, 0x1, [{0x6, 0x2}]}]}}}], 0x18}}], 0x2, 0x40000)

658.456355ms ago: executing program 0 (id=2725):
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000d1d7a440041601801f44010203010902120001000000000904"], 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r1}, 0x18)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @raw_data="dea233684c996156af0d4bd8e3300217e750b8c97b7123d48003e7e1d3be5f710c41a1db6719881876e9bcc6e2f73c67cc6b675eb43188b5b7f9f898868de9a9c5d536d418ba283121a73a5aba55a87d2a2525295f4492bbde02ad8bc8e88779f2de06f38e99172df4d45b6f13c813dee4230c204a93172922b778fef7a1f89ce876bb89d44cd705bbb28db4869dfac20d928950507acd92c02d17f51b0a627539f6e0a0bdb92004bc6252cd35e8cd100962db9a83ad63a4e7e1ca17c1b6aac63fefa9bebe429d00"})
openat$rdma_cm(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x1)
mount$9p_virtio(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000000000000f9ff0000000000000000001000"/31], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3, 0x0, 0x7}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYRESHEX], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
r4 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="38000000031401002cbd7000fcdbdf250900020073797a32000000000800410073697700140033006c6f"], 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x810)
syz_open_dev$sndctrl(&(0x7f0000000080), 0x3, 0x82040)
r5 = socket$netlink(0x10, 0x3, 0x8000000004)
r6 = accept4$nfc_llcp(0xffffffffffffffff, 0x0, &(0x7f00000000c0), 0x0)
recvmmsg(r6, &(0x7f0000006b00)=[{{&(0x7f0000000140)=@sco={0x1f, @fixed}, 0x80, &(0x7f0000000540)=[{&(0x7f0000000340)=""/179, 0xb3}, {&(0x7f0000000400)=""/69, 0x45}, {&(0x7f0000000480)=""/121, 0x79}, {&(0x7f00000001c0)=""/48, 0x30}, {&(0x7f0000000500)=""/46, 0x2e}], 0x5, &(0x7f0000000640)=""/4096, 0x1000}, 0x6}, {{0x0, 0x0, &(0x7f0000001880)=[{&(0x7f0000001640)=""/187, 0xbb}, {&(0x7f0000001a40)=""/4096, 0x1000}, {&(0x7f0000000580)=""/63, 0x3f}, {&(0x7f0000001700)=""/25, 0x19}, {&(0x7f0000001740)=""/173, 0xad}, {&(0x7f0000001800)=""/104, 0x68}], 0x6, &(0x7f0000002a40)=""/4096, 0x1000}, 0x4}, {{&(0x7f00000018c0)=@l2tp6={0xa, 0x0, 0x0, @private0}, 0x80, &(0x7f0000001940)=[{&(0x7f0000003a40)=""/204, 0xcc}, {&(0x7f0000003b40)=""/234, 0xea}], 0x2, &(0x7f0000003c40)=""/135, 0x87}, 0x7}, {{0x0, 0x0, &(0x7f0000004280), 0x0, &(0x7f0000004a40)=""/4096, 0x1000}}, {{&(0x7f0000004300)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x80, &(0x7f0000004600)=[{&(0x7f0000004380)=""/12, 0xc}, {&(0x7f00000043c0)=""/15, 0xf}, {&(0x7f0000004400)=""/185, 0xb9}, {&(0x7f00000044c0)=""/166, 0xa6}, {&(0x7f0000004580)=""/97, 0x61}], 0x5}, 0xc1ca}, {{&(0x7f0000004640)=@nfc_llcp, 0x80, &(0x7f0000004880)=[{&(0x7f0000003d00)=""/134, 0x86}, {&(0x7f0000004740)=""/230, 0xe6}, {&(0x7f0000004840)=""/22, 0x16}], 0x3, &(0x7f00000048c0)=""/121, 0x79}, 0x4}, {{&(0x7f0000004940)=@nfc_llcp, 0x80, &(0x7f00000049c0)=[{&(0x7f0000005a40)=""/4096, 0x1000}, {&(0x7f0000006a40)=""/156, 0x9c}], 0x2}, 0x7fff}], 0x7, 0xc2, &(0x7f0000006c00)={0x0, 0x989680})
ioctl$SIOCSIFHWADDR(r5, 0x8b06, &(0x7f0000001980)={'wlan1\x00', @multicast})
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="020300090c00000000000000000000000300060000000e00020000007f000001000000000000000002000100000000000300020200000000030005000000000002000000e000000100000000000000000200130003000000d0e1da18ff3400"], 0x60}}, 0x0)

538.448685ms ago: executing program 5 (id=2726):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x2, 0x3, 0xb}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000f4751f2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000380)={r1}, 0xc)

420.34716ms ago: executing program 5 (id=2727):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000000)=ANY=[@ANYBLOB="1806000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7070000000400000020"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000100081044e81f782db44b904021d080c43000000e8fe55a1190015000600142603600e1209001b0000000401a80016000a0004", 0x37}], 0x1}, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[], 0xfe33)

419.693119ms ago: executing program 5 (id=2729):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000004000000ff0f000005"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000580)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b7030000000000fd850000007300000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000680)='sys_exit\x00', r1}, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000e80)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010800040000000000000b01000008000300", @ANYRES32=r4, @ANYBLOB="28005080140001004abee33957edf8aaae14574df48e000005000200070000000800030004ac0f"], 0x44}}, 0x0)
setresgid(0x0, 0x0, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f00000013c0)={0x2, 0x0, 0x0, 0x1000, &(0x7f00003a4000/0x1000)=nil})
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
r8 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r9 = syz_pidfd_open(r8, 0x0)
r10 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r10, 0x1, r9, &(0x7f0000000040)={0xa000202b})
epoll_pwait(r10, &(0x7f00000000c0)=[{}], 0x1, 0xd92d, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r7, 0x4138ae84, &(0x7f0000000100)={{0x0, 0xdddd1000, 0x10, 0x0, 0x8, 0x2, 0x0, 0x2, 0x0, 0x8, 0x9, 0x10}, {0xffff1000, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x4}, {0x2000, 0x10000, 0x0, 0x0, 0x7, 0x7, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfc}, {0x3000, 0xd000, 0xe, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x4}, {0xeeee0000, 0x3000, 0x9, 0x0, 0xff, 0x4, 0x0, 0xe, 0x0, 0x3c}, {0x0, 0x58000, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x10, 0x80}, {0xdddd1000, 0x0, 0xa, 0x6, 0x0, 0x0, 0x2}, {0x8080000, 0x3000, 0x4, 0x0, 0x0, 0x1, 0x10, 0xa, 0x26}, {0x80ac000}, {0xdddd1000}, 0xddf8ffdb, 0x0, 0x0, 0xf0, 0x8, 0xdd00, 0x0, [0xe, 0x0, 0x1]})
r11 = dup(r0)
sendmsg$nl_netfilter(r11, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000080)={&(0x7f0000000300)={0x110, 0x5, 0x7, 0x101, 0x70bd2c, 0x25dfdbfd, {0x0, 0x0, 0x6}, [@generic="0cb0723dfef47583a7b0316c9eb71b45b8d11dfb700c8e5b6cf1e9e1b7d22fe952f552d50a4daf6cf7b3e139a01273f47818079f17731ede61eee8b0f0e860bf97509f68817a125cf161416eae61188be0c192682df2bbea16372457c731bd4e06392c4ca50abd69b97715a70cf12c9c2da0317ef6b245c11762c18fb5bedc140aac79b5993abc92ce67d0a74133f6ef6d3930c9f02303f7f21c7f6bd066768ad465e7071f7ca37b634ac13ed34eedfe45127a3df86913c32f8e20aeb90099818cb72a0dde46da954de08449ac258dd97d7e7d3b01d62fd594338b18bcad3bbcf3b4ff696fe57830fa2afc171da7b76ff6ebc0", @typed={0x8, 0x7, 0x0, 0x0, @ipv4=@empty}]}, 0x110}, 0x1, 0x0, 0x0, 0x4000000}, 0x11)
r12 = syz_open_dev$usbmon(&(0x7f0000001b80), 0x4, 0x400)
poll(&(0x7f00000002c0)=[{r12, 0x10}], 0x1, 0x4)
ioctl$KVM_TRANSLATE(r7, 0xc018ae85, &(0x7f00000000c0))

0s ago: executing program 5 (id=2730):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$kcm(0x10, 0x2, 0x0)
memfd_create(&(0x7f0000000300)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r3 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r2, &(0x7f0000000280)={@val={0x6f01, 0x800}, @val={0x1, 0x0, 0x27, 0x0, 0x27}, @mpls={[], @ipv4=@tcp={{0x5, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x84, 0x0, @empty=0x3fffffff, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x5, 0xa, 0x0, 0x580, 0x0, 0x28, {[@timestamp={0x5, 0xa, 0xfffe, 0x700}, @generic={0x0, 0x8, "d58838000391"}]}}}}}}, 0x4a)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58)
r5 = accept4(r4, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000200)="ad56b6cc0400aeb995298992ea5400c2", 0x10)
recvmmsg$unix(r5, &(0x7f00000053c0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0xa32, 0x60, 0x0) (fail_nth: 15)
sendmsg(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@can_newroute={0x34, 0x18, 0x276d793c29a3c3b7, 0x70bd31, 0x25dfdbff, {}, [@CGW_CS_XOR={0x8, 0x5, {0xfc, 0x2, 0x6, 0xf6}}, @CGW_MOD_XOR={0x15, 0x3, {{{0x4, 0x1, 0x1, 0x1}, 0x8, 0x2, 0x0, 0x0, "7d38f30c3016981a"}, 0x6}}]}, 0x34}}, 0x0)

kernel console output (not intermixed with test programs):

  475.789705][T13572]  ? __fget_files+0x20e/0x3c0
[  475.789725][T13572]  ksys_read+0x12a/0x250
[  475.789740][T13572]  ? __pfx_ksys_read+0x10/0x10
[  475.789756][T13572]  ? fput+0x70/0xf0
[  475.789768][T13572]  __do_fast_syscall_32+0xe8/0x680
[  475.789787][T13572]  do_fast_syscall_32+0x32/0x80
[  475.789804][T13572]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  475.789818][T13572] RIP: 0023:0xf707d579
[  475.789828][T13572] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  475.789839][T13572] RSP: 002b:00000000f546d590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  475.789850][T13572] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f546d620
[  475.789857][T13572] RDX: 000000000000000f RSI: 00000000f7416ff4 RDI: 0000000000000000
[  475.789863][T13572] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  475.789869][T13572] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  475.789876][T13572] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  475.789890][T13572]  </TASK>
[  475.890986][T13576] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  475.893191][T13576] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  475.897004][T13576] vhci_hcd vhci_hcd.0: Device attached
[  475.908855][T13580] bridge_slave_0: left allmulticast mode
[  475.910712][T13580] bridge_slave_0: left promiscuous mode
[  475.913087][T13580] bridge0: port 1(bridge_slave_0) entered disabled state
[  475.973023][T13580] bridge_slave_1: left allmulticast mode
[  475.975462][T13580] bridge_slave_1: left promiscuous mode
[  475.977991][T13580] bridge0: port 2(bridge_slave_1) entered disabled state
[  476.016631][T13580] bond0: (slave bond_slave_0): Releasing backup interface
[  476.030700][T13580] bond0: (slave bond_slave_1): Releasing backup interface
[  476.051916][T13580] team0: Port device team_slave_0 removed
[  476.057374][T13580] team0: Port device team_slave_1 removed
[  476.060703][T13580] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  476.068729][ T7572] lo speed is unknown, defaulting to 1000
[  476.093894][T13578] vhci_hcd: connection closed
[  476.094074][   T46] vhci_hcd vhci_hcd.4: stop threads
[  476.097273][   T46] vhci_hcd vhci_hcd.4: release socket
[  476.101942][   T46] vhci_hcd vhci_hcd.4: disconnect device
[  476.188660][ T6002] usb usb38-port1: unable to enumerate USB device
[  477.560791][ T6020] usb 48-1: device descriptor read/8, error -110
[  477.592169][   T40] audit: type=1800 audit(1765909619.367:1491): pid=13592 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2088" name="cpuset.memory_pressure_enabled" dev="9p" ino=72876359 res=0 errno=0
[  477.796121][T13619] isofs_fill_super: bread failed, dev=sr0, iso_blknum=32, block=32
[  477.812738][T13621] comedi comedi3: comedi_test: 10 microvolt, 2046 microsecond waveform attached
[  477.946239][T13634] binder: 13633:13634 ioctl c0189378 80000100 returned -22
[  477.982358][ T6020] usb usb48-port1: attempt power cycle
[  478.015828][T13640] befs: (nullb0): No write support. Marking filesystem read-only
[  478.020400][T13640] befs: (nullb0): invalid magic header
[  478.277998][   T10] usb 10-1: new full-speed USB device number 16 using dummy_hcd
[  478.444307][   T10] usb 10-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  478.448856][   T10] usb 10-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  478.461187][   T10] usb 10-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  478.469614][   T10] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  478.611981][ T6020] usb usb48-port1: unable to enumerate USB device
[  478.680297][   T10] usb 10-1: usb_control_msg returned -32
[  478.684891][   T10] usbtmc 10-1:16.0: can't read capabilities
[  481.039378][T13697] isofs_fill_super: bread failed, dev=sr0, iso_blknum=32, block=32
[  481.273829][   T10] usb 10-1: USB disconnect, device number 16
[  481.650815][T13704] FAULT_INJECTION: forcing a failure.
[  481.650815][T13704] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  481.655214][T13704] CPU: 3 UID: 0 PID: 13704 Comm: syz.4.2123 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  481.655233][T13704] Tainted: [L]=SOFTLOCKUP
[  481.655238][T13704] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  481.655245][T13704] Call Trace:
[  481.655250][T13704]  <TASK>
[  481.655255][T13704]  dump_stack_lvl+0x16c/0x1f0
[  481.655275][T13704]  should_fail_ex+0x512/0x640
[  481.655303][T13704]  _copy_to_user+0x32/0xd0
[  481.655317][T13704]  simple_read_from_buffer+0xcb/0x170
[  481.655334][T13704]  proc_fail_nth_read+0x197/0x240
[  481.655353][T13704]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  481.655372][T13704]  ? rw_verify_area+0xcf/0x6c0
[  481.655387][T13704]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  481.655404][T13704]  vfs_read+0x1e4/0xcf0
[  481.655421][T13704]  ? __pfx___mutex_lock+0x10/0x10
[  481.655439][T13704]  ? __pfx_vfs_read+0x10/0x10
[  481.655453][T13704]  ? find_held_lock+0x2b/0x80
[  481.655471][T13704]  ? __fget_files+0x20e/0x3c0
[  481.655491][T13704]  ksys_read+0x12a/0x250
[  481.655506][T13704]  ? __pfx_ksys_read+0x10/0x10
[  481.655525][T13704]  __do_fast_syscall_32+0xe8/0x680
[  481.655544][T13704]  do_fast_syscall_32+0x32/0x80
[  481.655561][T13704]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  481.655576][T13704] RIP: 0023:0xf7f91579
[  481.655585][T13704] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  481.655596][T13704] RSP: 002b:00000000f5486590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  481.655607][T13704] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5486620
[  481.655614][T13704] RDX: 000000000000000f RSI: 00000000f7426ff4 RDI: 0000000000000000
[  481.655620][T13704] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  481.655626][T13704] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  481.655633][T13704] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  481.655647][T13704]  </TASK>
[  483.459512][T13734] isofs_fill_super: bread failed, dev=sr0, iso_blknum=32, block=32
[  483.716637][T13753] comedi comedi3: 8255: I/O port conflict (0x404f26,4)
[  483.905839][ T5946] Bluetooth: hci1: unexpected event for opcode 0x0809
[  484.017999][T13762] sctp: [Deprecated]: syz.2.2141 (pid 13762) Use of struct sctp_assoc_value in delayed_ack socket option.
[  484.017999][T13762] Use struct sctp_sack_info instead
[  484.121357][T13757] infiniband syz1: set active
[  484.123133][T13757] infiniband syz1: added syz_tun
[  484.161825][T13757] RDS/IB: syz1: added
[  484.163065][   T40] audit: type=1326 audit(1765909625.937:1492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13766 comm="syz.2.2142" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70bd579 code=0x0
[  484.164063][T13757] smc: adding ib device syz1 with port count 1
[  484.221589][T13757] smc:    ib device syz1 port 1 has no pnetid
[  484.446280][T13773] usb usb8: usbfs: process 13773 (syz.4.2144) did not claim interface 0 before use
[  484.692252][T13784] FAULT_INJECTION: forcing a failure.
[  484.692252][T13784] name failslab, interval 1, probability 0, space 0, times 0
[  484.697377][T13784] CPU: 3 UID: 0 PID: 13784 Comm: syz.4.2146 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  484.697395][T13784] Tainted: [L]=SOFTLOCKUP
[  484.697399][T13784] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  484.697406][T13784] Call Trace:
[  484.697411][T13784]  <TASK>
[  484.697416][T13784]  dump_stack_lvl+0x16c/0x1f0
[  484.697436][T13784]  should_fail_ex+0x512/0x640
[  484.697449][T13784]  ? kmem_cache_alloc_lru_noprof+0x66/0x770
[  484.697465][T13784]  should_failslab+0xc2/0x120
[  484.697494][T13784]  kmem_cache_alloc_lru_noprof+0x87/0x770
[  484.697510][T13784]  ? __d_alloc+0x35/0xa80
[  484.697530][T13784]  ? __d_alloc+0x35/0xa80
[  484.697546][T13784]  ? trace_kmem_cache_alloc+0x28/0xb0
[  484.697562][T13784]  __d_alloc+0x35/0xa80
[  484.697578][T13784]  ? __pfx_map_id_range_down+0x10/0x10
[  484.697596][T13784]  d_alloc_pseudo+0x1c/0xc0
[  484.697609][T13784]  alloc_file_pseudo+0xcf/0x230
[  484.697622][T13784]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  484.697638][T13784]  sock_alloc_file+0x50/0x210
[  484.697654][T13784]  do_accept+0x240/0x530
[  484.697666][T13784]  ? do_raw_spin_lock+0x12c/0x2b0
[  484.697680][T13784]  ? __pfx_do_accept+0x10/0x10
[  484.697711][T13784]  __sys_accept4_file+0xcd/0x210
[  484.697723][T13784]  ? __pfx___sys_accept4_file+0x10/0x10
[  484.697738][T13784]  __ia32_sys_accept4+0xd5/0x150
[  484.697751][T13784]  __do_fast_syscall_32+0xe8/0x680
[  484.697770][T13784]  do_fast_syscall_32+0x32/0x80
[  484.697788][T13784]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  484.697802][T13784] RIP: 0023:0xf7f91579
[  484.697812][T13784] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  484.697823][T13784] RSP: 002b:00000000f546555c EFLAGS: 00000296 ORIG_RAX: 000000000000016c
[  484.697834][T13784] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000099999999
[  484.697841][T13784] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  484.697872][T13784] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  484.697881][T13784] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  484.697887][T13784] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  484.697902][T13784]  </TASK>
[  486.033332][T13806] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  486.309463][   T40] audit: type=1326 audit(1765909628.077:1493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13821 comm="syz.5.2157" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf707d579 code=0x0
[  487.051612][   T40] audit: type=1326 audit(1765909628.647:1494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13833 comm="syz.2.2161" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd579 code=0x7ffc0000
[  487.069996][   T40] audit: type=1326 audit(1765909628.647:1495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13833 comm="syz.2.2161" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd579 code=0x7ffc0000
[  487.083284][   T40] audit: type=1326 audit(1765909628.647:1496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13833 comm="syz.2.2161" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf70bd579 code=0x7ffc0000
[  487.100790][   T40] audit: type=1326 audit(1765909628.647:1497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13833 comm="syz.2.2161" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd579 code=0x7ffc0000
[  487.223095][   T40] audit: type=1326 audit(1765909628.647:1498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13833 comm="syz.2.2161" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd579 code=0x7ffc0000
[  488.032137][T13866] binder: 13864:13866 ioctl 0 80000040 returned -22
[  488.150015][T13875] netlink: 6068 bytes leftover after parsing attributes in process `syz.0.2175'.
[  488.247338][T13875] netlink: 80 bytes leftover after parsing attributes in process `syz.0.2175'.
[  489.072998][T13908] FAULT_INJECTION: forcing a failure.
[  489.072998][T13908] name failslab, interval 1, probability 0, space 0, times 0
[  489.077190][T13908] CPU: 0 UID: 0 PID: 13908 Comm: syz.4.2184 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  489.077231][T13908] Tainted: [L]=SOFTLOCKUP
[  489.077238][T13908] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  489.077249][T13908] Call Trace:
[  489.077258][T13908]  <TASK>
[  489.077267][T13908]  dump_stack_lvl+0x16c/0x1f0
[  489.077296][T13908]  should_fail_ex+0x512/0x640
[  489.077315][T13908]  ? fs_reclaim_acquire+0xae/0x150
[  489.077343][T13908]  should_failslab+0xc2/0x120
[  489.077371][T13908]  __kmalloc_noprof+0xeb/0x910
[  489.077391][T13908]  ? tomoyo_encode2+0x100/0x3e0
[  489.077420][T13908]  ? tomoyo_encode2+0x100/0x3e0
[  489.077442][T13908]  tomoyo_encode2+0x100/0x3e0
[  489.077468][T13908]  tomoyo_encode+0x29/0x50
[  489.077491][T13908]  tomoyo_mount_acl+0x144/0x850
[  489.077514][T13908]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  489.077546][T13908]  ? kernel_text_address+0x8d/0x100
[  489.077568][T13908]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  489.077590][T13908]  ? arch_stack_walk+0xa6/0x100
[  489.077639][T13908]  ? tomoyo_domain+0xba/0x150
[  489.077679][T13908]  ? tomoyo_profile+0x47/0x60
[  489.077709][T13908]  tomoyo_mount_permission+0x16d/0x420
[  489.077730][T13908]  ? tomoyo_mount_permission+0x14f/0x420
[  489.077755][T13908]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  489.077793][T13908]  security_sb_mount+0x9b/0x260
[  489.077834][T13908]  path_mount+0x158/0x23a0
[  489.077858][T13908]  ? rcu_is_watching+0x12/0xc0
[  489.077887][T13908]  ? __pfx_path_mount+0x10/0x10
[  489.077906][T13908]  ? kmem_cache_free+0x2d8/0x770
[  489.077928][T13908]  ? putname+0xf5/0x1a0
[  489.077949][T13908]  ? putname+0xf5/0x1a0
[  489.077969][T13908]  ? __ia32_sys_mount+0x291/0x310
[  489.077985][T13908]  __ia32_sys_mount+0x291/0x310
[  489.078004][T13908]  ? __pfx___ia32_sys_mount+0x10/0x10
[  489.078023][T13908]  ? do_user_addr_fault+0x843/0x1370
[  489.078050][T13908]  __do_fast_syscall_32+0xe8/0x680
[  489.078082][T13908]  do_fast_syscall_32+0x32/0x80
[  489.078107][T13908]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  489.078128][T13908] RIP: 0023:0xf7f91579
[  489.078143][T13908] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  489.078161][T13908] RSP: 002b:00000000f546555c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  489.078178][T13908] RAX: ffffffffffffffda RBX: 0000000080000180 RCX: 00000000800000c0
[  489.078190][T13908] RDX: 00000000800001c0 RSI: 000000000200c40c RDI: 0000000080000c80
[  489.078202][T13908] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  489.078211][T13908] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  489.078221][T13908] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  489.078242][T13908]  </TASK>
[  490.173989][T13913] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  490.176621][T13913] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  490.190367][T13913] vhci_hcd vhci_hcd.0: Device attached
[  490.199487][   T40] audit: type=1326 audit(1765909631.967:1499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13920 comm="syz.2.2188" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70bd579 code=0x0
[  490.292435][T13925] netlink: 'syz.4.2189': attribute type 21 has an invalid length.
[  490.295751][T13925] netlink: 'syz.4.2189': attribute type 1 has an invalid length.
[  490.298959][T13925] netlink: 144 bytes leftover after parsing attributes in process `syz.4.2189'.
[  490.321163][T13916] vhci_hcd: connection closed
[  490.322762][ T7099] vhci_hcd vhci_hcd.0: stop threads
[  490.332253][ T7099] vhci_hcd vhci_hcd.0: release socket
[  490.334067][ T7099] vhci_hcd vhci_hcd.0: disconnect device
[  490.922362][   T40] audit: type=1326 audit(1765909632.687:1500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13909 comm="syz.0.2185" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7fc00000
[  491.170954][T13941] FAULT_INJECTION: forcing a failure.
[  491.170954][T13941] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  491.177350][T13941] CPU: 2 UID: 0 PID: 13941 Comm: syz.4.2194 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  491.177379][T13941] Tainted: [L]=SOFTLOCKUP
[  491.177386][T13941] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  491.177398][T13941] Call Trace:
[  491.177405][T13941]  <TASK>
[  491.177413][T13941]  dump_stack_lvl+0x16c/0x1f0
[  491.177444][T13941]  should_fail_ex+0x512/0x640
[  491.177470][T13941]  _copy_to_user+0x32/0xd0
[  491.177492][T13941]  simple_read_from_buffer+0xcb/0x170
[  491.177519][T13941]  proc_fail_nth_read+0x197/0x240
[  491.177550][T13941]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  491.177581][T13941]  ? rw_verify_area+0xcf/0x6c0
[  491.177604][T13941]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  491.177642][T13941]  vfs_read+0x1e4/0xcf0
[  491.177668][T13941]  ? __pfx___mutex_lock+0x10/0x10
[  491.177697][T13941]  ? __pfx_vfs_read+0x10/0x10
[  491.177719][T13941]  ? find_held_lock+0x2b/0x80
[  491.177749][T13941]  ? __fget_files+0x20e/0x3c0
[  491.177781][T13941]  ksys_read+0x12a/0x250
[  491.177830][T13941]  ? __pfx_ksys_read+0x10/0x10
[  491.177856][T13941]  ? do_user_addr_fault+0x843/0x1370
[  491.177883][T13941]  __do_fast_syscall_32+0xe8/0x680
[  491.177913][T13941]  do_fast_syscall_32+0x32/0x80
[  491.177941][T13941]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  491.177964][T13941] RIP: 0023:0xf7f91579
[  491.177979][T13941] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  491.177997][T13941] RSP: 002b:00000000f5465590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  491.178022][T13941] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f5465620
[  491.178035][T13941] RDX: 000000000000000f RSI: 00000000f7426ff4 RDI: 0000000000000000
[  491.178046][T13941] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  491.178058][T13941] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  491.178069][T13941] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  491.178096][T13941]  </TASK>
[  491.288924][T13943] binder: BINDER_SET_CONTEXT_MGR already set
[  491.292095][T13943] binder: 13942:13943 ioctl 4018620d 800002c0 returned -16
[  491.385189][ T5946] Bluetooth: hci4: ACL packet for unknown connection handle 200
[  491.652478][   T40] audit: type=1326 audit(1765909633.427:1501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13974 comm="syz.4.2203" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f91579 code=0x0
[  493.114219][T13998] isofs_fill_super: bread failed, dev=sr0, iso_blknum=32, block=32
[  493.221167][   T40] audit: type=1326 audit(1765909634.987:1502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13984 comm="syz.0.2206" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70dd598 code=0x7ffc0000
[  493.248359][   T40] audit: type=1326 audit(1765909635.007:1503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13984 comm="syz.0.2206" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70dd598 code=0x7ffc0000
[  493.261378][   T40] audit: type=1326 audit(1765909635.007:1504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13984 comm="syz.0.2206" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70dd598 code=0x7ffc0000
[  493.268199][   T40] audit: type=1326 audit(1765909635.007:1505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13984 comm="syz.0.2206" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70dd598 code=0x7ffc0000
[  493.275086][   T40] audit: type=1326 audit(1765909635.007:1506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13984 comm="syz.0.2206" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70dd598 code=0x7ffc0000
[  493.283368][   T40] audit: type=1326 audit(1765909635.007:1507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13984 comm="syz.0.2206" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70dd598 code=0x7ffc0000
[  493.290298][   T40] audit: type=1326 audit(1765909635.007:1508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13984 comm="syz.0.2206" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70dd598 code=0x7ffc0000
[  494.190559][T14023] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2215'.
[  494.811395][  T827] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  494.971602][  T827] usb 5-1: Using ep0 maxpacket: 16
[  494.978934][  T827] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  495.002083][  T827] usb 5-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  495.005941][  T827] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  495.011563][  T827] usb 5-1: Product: syz
[  495.014947][  T827] usb 5-1: Manufacturer: syz
[  495.018922][  T827] usb 5-1: SerialNumber: syz
[  495.023356][  T827] usb 5-1: config 0 descriptor??
[  495.029807][  T827] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  495.035182][  T827] em28xx 5-1:0.0: DVB interface 0 found: bulk
[  495.320146][   T40] kauditd_printk_skb: 229 callbacks suppressed
[  495.320164][   T40] audit: type=1326 audit(1765909637.087:1738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14031 comm="syz.5.2221" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000
[  495.352913][T14041] FAULT_INJECTION: forcing a failure.
[  495.352913][T14041] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  495.359012][   T40] audit: type=1326 audit(1765909637.087:1739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14031 comm="syz.5.2221" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000
[  495.359013][T14041] CPU: 0 UID: 0 PID: 14041 Comm: syz.2.2223 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  495.359043][T14041] Tainted: [L]=SOFTLOCKUP
[  495.359050][T14041] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  495.359062][T14041] Call Trace:
[  495.359070][T14041]  <TASK>
[  495.359078][T14041]  dump_stack_lvl+0x16c/0x1f0
[  495.359111][T14041]  should_fail_ex+0x512/0x640
[  495.359151][T14041]  _copy_from_iter+0x2a4/0x16c0
[  495.359176][T14041]  ? __alloc_skb+0x220/0x410
[  495.359195][T14041]  ? __alloc_skb+0x35d/0x410
[  495.359215][T14041]  ? __pfx__copy_from_iter+0x10/0x10
[  495.359235][T14041]  ? netlink_autobind.isra.0+0x158/0x370
[  495.359272][T14041]  netlink_sendmsg+0x820/0xdd0
[  495.359304][T14041]  ? __pfx_netlink_sendmsg+0x10/0x10
[  495.359334][T14041]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  495.359369][T14041]  sock_write_iter+0x566/0x610
[  495.359398][T14041]  ? __pfx_sock_write_iter+0x10/0x10
[  495.359436][T14041]  ? __lock_acquire+0x436/0x2890
[  495.359459][T14041]  do_iter_readv_writev+0x662/0x9e0
[  495.359486][T14041]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  495.359510][T14041]  ? common_file_perm+0x1b1/0x500
[  495.359532][T14041]  ? bpf_lsm_file_permission+0x9/0x10
[  495.359555][T14041]  ? security_file_permission+0x71/0x210
[  495.359580][T14041]  ? rw_verify_area+0xcf/0x6c0
[  495.359604][T14041]  vfs_writev+0x35f/0xde0
[  495.359635][T14041]  ? __pfx_vfs_writev+0x10/0x10
[  495.359660][T14041]  ? find_held_lock+0x2b/0x80
[  495.359698][T14041]  ? __fget_files+0x20e/0x3c0
[  495.359723][T14041]  ? __fget_files+0x110/0x3c0
[  495.359755][T14041]  ? do_writev+0x28c/0x340
[  495.359783][T14041]  do_writev+0x28c/0x340
[  495.359808][T14041]  ? __pfx_do_writev+0x10/0x10
[  495.359832][T14041]  ? do_user_addr_fault+0x843/0x1370
[  495.359861][T14041]  __do_fast_syscall_32+0xe8/0x680
[  495.359892][T14041]  do_fast_syscall_32+0x32/0x80
[  495.359921][T14041]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  495.359946][T14041] RIP: 0023:0xf70bd579
[  495.359962][T14041] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  495.359980][T14041] RSP: 002b:00000000f54ad55c EFLAGS: 00000296 ORIG_RAX: 0000000000000092
[  495.359999][T14041] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[  495.360010][T14041] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  495.360020][T14041] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  495.360030][T14041] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  495.360041][T14041] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  495.360067][T14041]  </TASK>
[  495.712037][  T827] em28xx 5-1:0.0: chip ID is em2874
[  495.801331][   T40] audit: type=1326 audit(1765909637.087:1740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14031 comm="syz.5.2221" exe="/syz-executor" sig=0 arch=40000003 syscall=437 compat=1 ip=0xf707d579 code=0x7ffc0000
[  495.808662][   T40] audit: type=1326 audit(1765909637.097:1741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14031 comm="syz.5.2221" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000
[  495.815878][   T40] audit: type=1326 audit(1765909637.097:1742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14031 comm="syz.5.2221" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000
[  495.823203][   T40] audit: type=1326 audit(1765909637.097:1743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14031 comm="syz.5.2221" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf707d579 code=0x7ffc0000
[  495.830443][   T40] audit: type=1326 audit(1765909637.097:1744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14031 comm="syz.5.2221" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000
[  495.837684][   T40] audit: type=1326 audit(1765909637.097:1745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14031 comm="syz.5.2221" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf707d579 code=0x7ffc0000
[  495.844789][   T40] audit: type=1326 audit(1765909637.097:1746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14031 comm="syz.5.2221" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000
[  495.852395][   T40] audit: type=1326 audit(1765909637.097:1747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14031 comm="syz.5.2221" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf707d579 code=0x7ffc0000
[  496.327948][  T827] em28xx 5-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  496.330834][  T827] em28xx 5-1:0.0: board has no eeprom
[  496.591364][  T827] em28xx 5-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  496.594874][  T827] em28xx 5-1:0.0: dvb set to bulk mode.
[  496.597954][ T6483] em28xx 5-1:0.0: Binding DVB extension
[  496.674092][T14058] hub 8-0:1.0: USB hub found
[  496.676678][T14058] hub 8-0:1.0: 1 port detected
[  496.739625][  T827] usb 5-1: USB disconnect, device number 13
[  496.750978][  T827] em28xx 5-1:0.0: Disconnecting em28xx
[  496.844787][ T6483] em28xx 5-1:0.0: Registering input extension
[  496.891437][ T6483] rc_core: IR keymap rc-pinnacle-pctv-hd not found
[  496.893964][ T6483] Registered IR keymap rc-empty
[  496.904937][ T6483] rc rc0: PCTV tripleStick (292e) as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0
[  496.912535][ T6483] input: PCTV tripleStick (292e) as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input30
[  496.922867][ T6483] em28xx 5-1:0.0: Input extension successfully initialized
[  496.926346][  T827] em28xx 5-1:0.0: Closing input extension
[  496.946760][  T827] em28xx 5-1:0.0: Freeing device
[  497.054580][T14063] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  497.358155][T11618] Bluetooth: hci2: Frame reassembly failed (-84)
[  497.362703][T11618] Bluetooth: hci2: Frame reassembly failed (-84)
[  497.755001][T14079] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2233'.
[  497.757848][T14079] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2233'.
[  497.782554][T14079] qnx6: unable to read the first superblock
[  497.784593][T14079] qnx6: unable to read the first superblock
[  497.786532][T14079] qnx6: unable to read the first superblock
[  497.974258][ T6021] kernel write not supported for file /audio (pid: 6021 comm: kworker/1:4)
[  498.374659][T14093] netlink: 'syz.0.2238': attribute type 4 has an invalid length.
[  498.377218][T14093] netlink: 17 bytes leftover after parsing attributes in process `syz.0.2238'.
[  499.361353][ T5936] Bluetooth: hci2: command 0x1003 tx timeout
[  499.361536][ T5946] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  499.768881][T14114] overlay: ./file0 is not a directory
[  499.859576][T14115] hub 8-0:1.0: USB hub found
[  499.862087][T14115] hub 8-0:1.0: 1 port detected
[  501.547049][T14131] FAULT_INJECTION: forcing a failure.
[  501.547049][T14131] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  501.556201][T14131] CPU: 1 UID: 0 PID: 14131 Comm: syz.2.2250 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  501.556232][T14131] Tainted: [L]=SOFTLOCKUP
[  501.556239][T14131] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  501.556249][T14131] Call Trace:
[  501.556256][T14131]  <TASK>
[  501.556263][T14131]  dump_stack_lvl+0x16c/0x1f0
[  501.556292][T14131]  should_fail_ex+0x512/0x640
[  501.556315][T14131]  _copy_to_user+0x32/0xd0
[  501.556336][T14131]  put_compat_cmd+0x374/0x480
[  501.556359][T14131]  ? __pfx_put_compat_cmd+0x10/0x10
[  501.556392][T14131]  comedi_compat_ioctl+0xba5/0xda0
[  501.556409][T14131]  ? __pfx_comedi_compat_ioctl+0x10/0x10
[  501.556427][T14131]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  501.556453][T14131]  ? do_vfs_ioctl+0x128/0x14f0
[  501.556484][T14131]  ? find_held_lock+0x2b/0x80
[  501.556505][T14131]  ? hook_file_ioctl_common+0x144/0x410
[  501.556532][T14131]  ? __fget_files+0x20e/0x3c0
[  501.556553][T14131]  ? fput+0x20/0xf0
[  501.556573][T14131]  ? __pfx_comedi_compat_ioctl+0x10/0x10
[  501.556589][T14131]  __ia32_compat_sys_ioctl+0x242/0x370
[  501.556613][T14131]  __do_fast_syscall_32+0xe8/0x680
[  501.556641][T14131]  do_fast_syscall_32+0x32/0x80
[  501.556666][T14131]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  501.556687][T14131] RIP: 0023:0xf70bd579
[  501.556701][T14131] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  501.556717][T14131] RSP: 002b:00000000f54ad55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  501.556734][T14131] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080406409
[  501.556746][T14131] RDX: 0000000080000c00 RSI: 0000000000000000 RDI: 0000000000000000
[  501.556755][T14131] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  501.556765][T14131] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  501.556776][T14131] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  501.556798][T14131]  </TASK>
[  501.922659][T14137] 9pnet_virtio: no channels available for device syz
[  502.991725][T14143] isofs_fill_super: bread failed, dev=sr0, iso_blknum=32, block=32
[  503.094793][T14144] input: syz0 as /devices/virtual/input/input31
[  503.130048][T14148] mac80211_hwsim hwsim8 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  503.210181][T14156] FAULT_INJECTION: forcing a failure.
[  503.210181][T14156] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  503.215802][T14156] CPU: 0 UID: 0 PID: 14156 Comm: syz.2.2258 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  503.215832][T14156] Tainted: [L]=SOFTLOCKUP
[  503.215838][T14156] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  503.215849][T14156] Call Trace:
[  503.215854][T14156]  <TASK>
[  503.215859][T14156]  dump_stack_lvl+0x16c/0x1f0
[  503.215880][T14156]  should_fail_ex+0x512/0x640
[  503.215895][T14156]  _copy_from_user+0x2e/0xd0
[  503.215908][T14156]  copy_from_buffer+0x7f/0xc0
[  503.215926][T14156]  copy_uabi_to_xstate+0x26d/0x670
[  503.215955][T14156]  ? __pfx_copy_uabi_to_xstate+0x10/0x10
[  503.216004][T14156]  ? __fpu_restore_sig+0xa8a/0x1370
[  503.216040][T14156]  ? rcu_is_watching+0x12/0xc0
[  503.216064][T14156]  ? x86_task_fpu+0x5f/0x90
[  503.216089][T14156]  __fpu_restore_sig+0x10a6/0x1370
[  503.216121][T14156]  ? __pfx___fpu_restore_sig+0x10/0x10
[  503.216161][T14156]  ? __might_fault+0xe3/0x190
[  503.216182][T14156]  ? __might_fault+0x13b/0x190
[  503.216207][T14156]  fpu__restore_sig+0x151/0x190
[  503.216237][T14156]  ia32_restore_sigcontext+0x44a/0x630
[  503.216257][T14156]  ? __pfx_ia32_restore_sigcontext+0x10/0x10
[  503.216283][T14156]  ? rcu_is_watching+0x12/0xc0
[  503.216307][T14156]  ? _raw_spin_unlock_irq+0x23/0x50
[  503.216332][T14156]  ? lockdep_hardirqs_on+0x7c/0x110
[  503.216363][T14156]  __do_compat_sys_rt_sigreturn+0x18c/0x270
[  503.216383][T14156]  ? __pfx___do_compat_sys_rt_sigreturn+0x10/0x10
[  503.216406][T14156]  ? rcu_is_watching+0x12/0xc0
[  503.216433][T14156]  do_int80_emulation+0x104/0x480
[  503.216463][T14156]  asm_int80_emulation+0x1a/0x20
[  503.216481][T14156] RIP: 0023:0xf70bd579
[  503.216495][T14156] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  503.216511][T14156] RSP: 002b:00000000f54ad55c EFLAGS: 00000296
[  503.216527][T14156] RAX: 00000000fffffff2 RBX: 00000000ffffff9c RCX: 0000000000000000
[  503.216539][T14156] RDX: 0000000000089901 RSI: 0000000000000000 RDI: 0000000000000000
[  503.216550][T14156] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  503.216561][T14156] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  503.216572][T14156] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  503.216597][T14156]  </TASK>
[  503.351601][T14157] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2256'.
[  504.038229][ T5936] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  504.042816][ T5936] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  504.046225][ T5936] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  504.048970][ T5936] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  504.051544][ T5936] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  504.170144][T14182] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2272'.
[  504.417398][T14176] chnl_net:caif_netlink_parms(): no params data found
[  504.475703][T14176] bridge0: port 1(bridge_slave_0) entered blocking state
[  504.478449][T14176] bridge0: port 1(bridge_slave_0) entered disabled state
[  504.480820][T14176] bridge_slave_0: entered allmulticast mode
[  504.483741][T14176] bridge_slave_0: entered promiscuous mode
[  504.487787][T14176] bridge0: port 2(bridge_slave_1) entered blocking state
[  504.490186][T14176] bridge0: port 2(bridge_slave_1) entered disabled state
[  504.492736][T14176] bridge_slave_1: entered allmulticast mode
[  504.495556][T14176] bridge_slave_1: entered promiscuous mode
[  504.512262][T14176] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  504.517607][T14176] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  504.534544][T14176] team0: Port device team_slave_0 added
[  504.538332][T14176] team0: Port device team_slave_1 added
[  504.552875][T14176] batman_adv: batadv0: Adding interface: batadv_slave_0
[  504.555240][T14176] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  504.564256][T14176] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  504.569060][T14176] batman_adv: batadv0: Adding interface: batadv_slave_1
[  504.572048][T14176] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  504.582551][T14176] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  504.621501][T14176] hsr_slave_0: entered promiscuous mode
[  504.624667][T14176] hsr_slave_1: entered promiscuous mode
[  505.037773][T14189] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2264'.
[  505.040860][T14189] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2264'.
[  505.067211][T14184] usb usb5: usbfs: process 14184 (syz.5.2264) did not claim interface 0 before use
[  505.083364][T14176] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  505.219499][T14176] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  506.013414][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  506.015733][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  506.083340][ T5936] Bluetooth: hci2: command tx timeout
[  506.247346][T14176] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  506.982577][T14176] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  507.582227][T14176] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  507.597714][T14176] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  507.603830][T14176] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  507.608873][T14176] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  507.652731][T14176] 8021q: adding VLAN 0 to HW filter on device bond0
[  507.661384][T14176] 8021q: adding VLAN 0 to HW filter on device team0
[  507.666595][T11604] bridge0: port 1(bridge_slave_0) entered blocking state
[  507.669167][T11604] bridge0: port 1(bridge_slave_0) entered forwarding state
[  507.672354][ T6020] usb 5-1: new low-speed USB device number 14 using dummy_hcd
[  507.684401][T11604] bridge0: port 2(bridge_slave_1) entered blocking state
[  507.686767][T11604] bridge0: port 2(bridge_slave_1) entered forwarding state
[  507.800002][T14176] 8021q: adding VLAN 0 to HW filter on device batadv0
[  507.824440][T14176] veth0_vlan: entered promiscuous mode
[  507.829203][T14176] veth1_vlan: entered promiscuous mode
[  507.832773][ T6020] usb 5-1: config index 0 descriptor too short (expected 1307, got 27)
[  507.835865][ T6020] usb 5-1: config 0 has an invalid interface number: 0 but max is -1
[  507.838381][ T6020] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 0
[  507.841158][ T6020] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  507.845354][ T6020] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  507.848458][ T6020] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  507.851508][ T6020] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  507.858990][ T6020] usb 5-1: string descriptor 0 read error: -22
[  507.861031][ T6020] usb 5-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  507.866211][ T6020] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  507.867426][T14176] veth0_macvtap: entered promiscuous mode
[  507.869996][ T6020] usb 5-1: config 0 descriptor??
[  507.874036][ T6020] hub 5-1:0.0: bad descriptor, ignoring hub
[  507.875925][ T6020] hub 5-1:0.0: probe with driver hub failed with error -5
[  507.879555][ T6020] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input32
[  507.881999][T14176] veth1_macvtap: entered promiscuous mode
[  507.893274][T14176] batman_adv: batadv0: Interface activated: batadv_slave_0
[  507.900339][T14176] batman_adv: batadv0: Interface activated: batadv_slave_1
[  507.907059][T11604] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  507.909951][T11604] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  507.913672][T11604] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  507.916423][T11604] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  507.953943][T11612] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  507.956656][T11612] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  507.972326][T11618] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  507.975736][T11618] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  508.148145][ T6020] usb 5-1: USB disconnect, device number 14
[  508.161451][ T5936] Bluetooth: hci2: command tx timeout
[  508.810894][T14266] netlink: 'syz.0.2285': attribute type 9 has an invalid length.
[  508.814254][T14266] netlink: 'syz.0.2285': attribute type 11 has an invalid length.
[  508.817454][T14266] netlink: 'syz.0.2285': attribute type 12 has an invalid length.
[  508.819138][T14268] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2286'.
[  508.820903][T14266] netlink: 210020 bytes leftover after parsing attributes in process `syz.0.2285'.
[  508.825382][T14268] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2286'.
[  508.828145][T14266] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2285'.
[  508.974308][T14286] sch_tbf: peakrate 7 is lower than or equals to rate 9 !
[  509.228479][T14320] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2311'.
[  509.237585][T14320] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2311'.
[  509.325217][T14330] netlink: 'syz.5.2316': attribute type 1 has an invalid length.
[  509.328673][T14330] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  509.343275][   T40] kauditd_printk_skb: 41 callbacks suppressed
[  509.343287][   T40] audit: type=1326 audit(1765909651.117:1789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14331 comm="syz.0.2317" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70dd579 code=0x0
[  510.229635][T14352] isofs_fill_super: bread failed, dev=sr0, iso_blknum=32, block=32
[  510.251381][ T5936] Bluetooth: hci2: command tx timeout
[  510.424634][T14360] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2327'.
[  510.443591][T14360] (syz.5.2327,14360,2):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  510.446403][T14360] (syz.5.2327,14360,2):ocfs2_fill_super:1177 ERROR: status = -22
[  510.734565][T14366] wireguard0: entered promiscuous mode
[  510.736412][T14366] wireguard0: entered allmulticast mode
[  510.974285][   T40] audit: type=1326 audit(1765909652.747:1790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14377 comm="syz.4.2333" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f91579 code=0x0
[  511.122110][   T59] kworker/2:1 (59) used greatest stack depth: 17032 bytes left
[  511.773091][T14393] isofs_fill_super: bread failed, dev=sr0, iso_blknum=32, block=32
[  511.801340][ T6021] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  511.951499][ T6021] usb 7-1: Using ep0 maxpacket: 32
[  512.010593][T14403] Device name cannot be null; rc = [-22]
[  512.262910][ T6021] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 36
[  512.321346][ T5936] Bluetooth: hci2: command tx timeout
[  512.564837][ T6021] usb 7-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[  512.567718][ T6021] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  512.570170][ T6021] usb 7-1: Product: syz
[  512.581378][ T6021] usb 7-1: Manufacturer: syz
[  512.583415][ T6021] usb 7-1: SerialNumber: syz
[  512.592879][ T6021] usb 7-1: config 0 descriptor??
[  512.602050][T14391] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  512.604992][ T6021] hub 7-1:0.0: bad descriptor, ignoring hub
[  512.606954][ T6021] hub 7-1:0.0: probe with driver hub failed with error -5
[  512.610608][ T6021] input: syz syz as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input33
[  512.674263][T14414] netlink: 'syz.0.2344': attribute type 27 has an invalid length.
[  512.677609][T14414] netlink: 'syz.0.2344': attribute type 4 has an invalid length.
[  512.680844][T14414] netlink: 144 bytes leftover after parsing attributes in process `syz.0.2344'.
[  512.682648][T14416] FAULT_INJECTION: forcing a failure.
[  512.682648][T14416] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  512.689129][T14416] CPU: 1 UID: 0 PID: 14416 Comm: syz.5.2345 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  512.689148][T14416] Tainted: [L]=SOFTLOCKUP
[  512.689152][T14416] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  512.689170][T14416] Call Trace:
[  512.689175][T14416]  <TASK>
[  512.689179][T14416]  dump_stack_lvl+0x16c/0x1f0
[  512.689200][T14416]  should_fail_ex+0x512/0x640
[  512.689215][T14416]  strncpy_from_user+0x3b/0x2e0
[  512.689228][T14416]  getname_flags.part.0+0x8f/0x550
[  512.689243][T14416]  getname_flags+0x93/0xf0
[  512.689258][T14416]  do_readlinkat+0xb4/0x3a0
[  512.689269][T14416]  ? __pfx_do_readlinkat+0x10/0x10
[  512.689280][T14416]  ? __pfx_ksys_write+0x10/0x10
[  512.689299][T14416]  ? fput+0x70/0xf0
[  512.689311][T14416]  __ia32_sys_readlinkat+0x94/0x100
[  512.689326][T14416]  ? lockdep_hardirqs_on+0x7c/0x110
[  512.689343][T14416]  __do_fast_syscall_32+0xe8/0x680
[  512.689362][T14416]  do_fast_syscall_32+0x32/0x80
[  512.689379][T14416]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  512.689394][T14416] RIP: 0023:0xf707d579
[  512.689403][T14416] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  512.689413][T14416] RSP: 002b:00000000f546d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000131
[  512.689424][T14416] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000040
[  512.689431][T14416] RDX: 0000000080032240 RSI: 0000000000019000 RDI: 0000000000000000
[  512.689437][T14416] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  512.689443][T14416] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  512.689450][T14416] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  512.689463][T14416]  </TASK>
[  512.918238][T14435] isofs_fill_super: bread failed, dev=sr0, iso_blknum=32, block=32
[  512.951094][T14437] netlink: 'syz.4.2355': attribute type 27 has an invalid length.
[  512.955031][T14437] netlink: 'syz.4.2355': attribute type 4 has an invalid length.
[  512.957689][T14437] netlink: 144 bytes leftover after parsing attributes in process `syz.4.2355'.
[  513.541517][ T7572] usb 9-1: new full-speed USB device number 11 using dummy_hcd
[  513.712584][ T7572] usb 9-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config
[  513.717417][ T7572] usb 9-1: New USB device found, idVendor=0fd9, idProduct=002c, bcdDevice= 6.6b
[  513.720280][ T7572] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  513.722958][ T7572] usb 9-1: Product: syz
[  513.724311][ T7572] usb 9-1: Manufacturer: syz
[  513.726070][ T7572] usb 9-1: SerialNumber: syz
[  513.873529][   T40] audit: type=1326 audit(1765909655.647:1791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14466 comm="syz.5.2366" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf707d579 code=0x0
[  513.913863][T14468] FAULT_INJECTION: forcing a failure.
[  513.913863][T14468] name failslab, interval 1, probability 0, space 0, times 0
[  513.918174][T14468] CPU: 2 UID: 0 PID: 14468 Comm: syz.0.2365 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  513.918193][T14468] Tainted: [L]=SOFTLOCKUP
[  513.918197][T14468] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  513.918204][T14468] Call Trace:
[  513.918209][T14468]  <TASK>
[  513.918215][T14468]  dump_stack_lvl+0x16c/0x1f0
[  513.918236][T14468]  should_fail_ex+0x512/0x640
[  513.918249][T14468]  ? __kmalloc_cache_node_noprof+0x62/0x830
[  513.918266][T14468]  should_failslab+0xc2/0x120
[  513.918296][T14468]  __kmalloc_cache_node_noprof+0x83/0x830
[  513.918313][T14468]  ? __get_vm_area_node+0x101/0x330
[  513.918333][T14468]  ? __get_vm_area_node+0x101/0x330
[  513.918349][T14468]  ? mod_memcg_lruvec_state+0x381/0x5f0
[  513.918363][T14468]  __get_vm_area_node+0x101/0x330
[  513.918382][T14468]  __vmalloc_node_range_noprof+0x247/0x16b0
[  513.918394][T14468]  ? create_io_thread+0xbe/0x100
[  513.918419][T14468]  ? local_lock_release+0x99/0x130
[  513.918441][T14468]  ? create_io_thread+0xbe/0x100
[  513.918472][T14468]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  513.918491][T14468]  ? __memcg_slab_post_alloc_hook+0x472/0x880
[  513.918524][T14468]  ? rcu_is_watching+0x12/0xc0
[  513.918541][T14468]  ? create_io_thread+0xbe/0x100
[  513.918557][T14468]  __vmalloc_node_noprof+0xad/0xf0
[  513.918567][T14468]  ? create_io_thread+0xbe/0x100
[  513.918585][T14468]  copy_process+0x619/0x7430
[  513.918601][T14468]  ? stack_depot_save_flags+0x29/0x9b0
[  513.918613][T14468]  ? __pfx_stack_trace_save+0x10/0x10
[  513.918645][T14468]  ? __pfx_copy_process+0x10/0x10
[  513.918661][T14468]  ? __do_fast_syscall_32+0xe8/0x680
[  513.918678][T14468]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  513.918698][T14468]  ? __pfx_io_wq_worker+0x10/0x10
[  513.918712][T14468]  create_io_thread+0xbe/0x100
[  513.918728][T14468]  ? __pfx_create_io_thread+0x10/0x10
[  513.918749][T14468]  ? __pfx_io_wq_worker+0x10/0x10
[  513.918763][T14468]  ? lockdep_init_map_type+0x5c/0x270
[  513.918775][T14468]  ? lockdep_init_map_type+0x5c/0x270
[  513.918787][T14468]  ? __init_swait_queue_head+0xca/0x150
[  513.918801][T14468]  ? create_io_worker+0x1f/0x5b0
[  513.918813][T14468]  create_io_worker+0x1d0/0x5b0
[  513.918827][T14468]  io_wq_enqueue+0x4cc/0x980
[  513.918840][T14468]  ? __pfx_io_wq_enqueue+0x10/0x10
[  513.918853][T14468]  ? __pfx_io_wq_work_match_item+0x10/0x10
[  513.918865][T14468]  ? io_prep_async_work+0x654/0x770
[  513.918879][T14468]  io_queue_iowq+0x246/0x500
[  513.918893][T14468]  io_queue_sqe_fallback+0x170/0x6e0
[  513.918907][T14468]  io_submit_sqes+0x14d8/0x28e0
[  513.918929][T14468]  __do_sys_io_uring_enter+0xd6b/0x1630
[  513.918945][T14468]  ? __fget_files+0x20e/0x3c0
[  513.918961][T14468]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  513.918977][T14468]  ? fput+0x70/0xf0
[  513.918988][T14468]  ? ksys_write+0x1ac/0x250
[  513.919003][T14468]  ? __pfx_ksys_write+0x10/0x10
[  513.919023][T14468]  __do_fast_syscall_32+0xe8/0x680
[  513.919041][T14468]  do_fast_syscall_32+0x32/0x80
[  513.919058][T14468]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  513.919071][T14468] RIP: 0023:0xf70dd579
[  513.919081][T14468] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  513.919092][T14468] RSP: 002b:00000000f54ac55c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa
[  513.919103][T14468] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000003516
[  513.919110][T14468] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  513.919116][T14468] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  513.919122][T14468] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  513.919129][T14468] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  513.919143][T14468]  </TASK>
[  513.919189][T14468] syz.0.2365: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  514.014401][T14461] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2364'.
[  514.014742][T14468] ,cpuset=/,mems_allowed=0-1
[  514.054006][T14468] CPU: 2 UID: 0 PID: 14468 Comm: syz.0.2365 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  514.054033][T14468] Tainted: [L]=SOFTLOCKUP
[  514.054040][T14468] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  514.054049][T14468] Call Trace:
[  514.054053][T14468]  <TASK>
[  514.054058][T14468]  dump_stack_lvl+0x16c/0x1f0
[  514.054079][T14468]  warn_alloc+0x248/0x3a0
[  514.054094][T14468]  ? __pfx_warn_alloc+0x10/0x10
[  514.054106][T14468]  ? trace_kmalloc+0x2b/0xb0
[  514.054134][T14468]  ? __kmalloc_cache_node_noprof+0x2ed/0x830
[  514.054154][T14468]  ? __kasan_kmalloc+0x8a/0xb0
[  514.054181][T14468]  ? __get_vm_area_node+0x208/0x330
[  514.054214][T14468]  __vmalloc_node_range_noprof+0xbe0/0x16b0
[  514.054232][T14468]  ? local_lock_release+0x99/0x130
[  514.054247][T14468]  ? create_io_thread+0xbe/0x100
[  514.054271][T14468]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  514.054289][T14468]  ? __memcg_slab_post_alloc_hook+0x472/0x880
[  514.054321][T14468]  ? rcu_is_watching+0x12/0xc0
[  514.054348][T14468]  ? create_io_thread+0xbe/0x100
[  514.054372][T14468]  __vmalloc_node_noprof+0xad/0xf0
[  514.054388][T14468]  ? create_io_thread+0xbe/0x100
[  514.054415][T14468]  copy_process+0x619/0x7430
[  514.054438][T14468]  ? stack_depot_save_flags+0x29/0x9b0
[  514.054451][T14468]  ? __pfx_stack_trace_save+0x10/0x10
[  514.054473][T14468]  ? __pfx_copy_process+0x10/0x10
[  514.054488][T14468]  ? __do_fast_syscall_32+0xe8/0x680
[  514.054505][T14468]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  514.054525][T14468]  ? __pfx_io_wq_worker+0x10/0x10
[  514.054538][T14468]  create_io_thread+0xbe/0x100
[  514.054555][T14468]  ? __pfx_create_io_thread+0x10/0x10
[  514.054575][T14468]  ? __pfx_io_wq_worker+0x10/0x10
[  514.054589][T14468]  ? lockdep_init_map_type+0x5c/0x270
[  514.054601][T14468]  ? lockdep_init_map_type+0x5c/0x270
[  514.054612][T14468]  ? __init_swait_queue_head+0xca/0x150
[  514.054631][T14468]  ? create_io_worker+0x1f/0x5b0
[  514.054643][T14468]  create_io_worker+0x1d0/0x5b0
[  514.054657][T14468]  io_wq_enqueue+0x4cc/0x980
[  514.054671][T14468]  ? __pfx_io_wq_enqueue+0x10/0x10
[  514.054684][T14468]  ? __pfx_io_wq_work_match_item+0x10/0x10
[  514.054696][T14468]  ? io_prep_async_work+0x654/0x770
[  514.054710][T14468]  io_queue_iowq+0x246/0x500
[  514.054724][T14468]  io_queue_sqe_fallback+0x170/0x6e0
[  514.054739][T14468]  io_submit_sqes+0x14d8/0x28e0
[  514.054761][T14468]  __do_sys_io_uring_enter+0xd6b/0x1630
[  514.054777][T14468]  ? __fget_files+0x20e/0x3c0
[  514.054794][T14468]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  514.054810][T14468]  ? fput+0x70/0xf0
[  514.054821][T14468]  ? ksys_write+0x1ac/0x250
[  514.054836][T14468]  ? __pfx_ksys_write+0x10/0x10
[  514.054856][T14468]  __do_fast_syscall_32+0xe8/0x680
[  514.054875][T14468]  do_fast_syscall_32+0x32/0x80
[  514.054893][T14468]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  514.054906][T14468] RIP: 0023:0xf70dd579
[  514.054916][T14468] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  514.054926][T14468] RSP: 002b:00000000f54ac55c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa
[  514.054937][T14468] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000003516
[  514.054944][T14468] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  514.054950][T14468] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  514.054956][T14468] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  514.054962][T14468] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  514.054976][T14468]  </TASK>
[  514.055023][T14468] Mem-Info:
[  514.184199][T14468] active_anon:9813 inactive_anon:21 isolated_anon:0
[  514.184199][T14468]  active_file:11047 inactive_file:19584 isolated_file:0
[  514.184199][T14468]  unevictable:1768 dirty:136 writeback:0
[  514.184199][T14468]  slab_reclaimable:8078 slab_unreclaimable:61759
[  514.184199][T14468]  mapped:25317 shmem:5098 pagetables:1450
[  514.184199][T14468]  sec_pagetables:321 bounce:0
[  514.184199][T14468]  kernel_misc_reclaimable:0
[  514.184199][T14468]  free:40689 free_pcp:18724 free_cma:0
[  514.202568][T14468] Node 0 active_anon:72kB inactive_anon:28kB active_file:140kB inactive_file:4kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:20kB dirty:4kB writeback:0kB shmem:3968kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:9952kB pagetables:1864kB sec_pagetables:1168kB all_unreclaimable? yes Balloon:0kB
[  514.203285][ T5936] Bluetooth: hci4: Unknown advertising packet type: 0x1e
[  514.214932][T14468] Node 1 active_anon:39180kB inactive_anon:56kB active_file:44048kB inactive_file:78332kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:101348kB dirty:540kB writeback:0kB shmem:16424kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:5344kB pagetables:3936kB sec_pagetables:116kB all_unreclaimable? no Balloon:0kB
[  514.215386][ T5936] Bluetooth: hci4: Unknown advertising packet type: 0x7c
[  514.221087][ T7572] as10x_usb: device has been detected
[  514.228440][ T5936] Bluetooth: hci4: Malformed LE Event: 0x0d
[  514.231372][ T7572] dvbdev: DVB: registering new adapter (Elgato EyeTV DTT Deluxe)
[  514.236949][T14468] Node 0 DMA free:2084kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:684kB local_pcp:220kB free_cma:0kB
[  514.243655][ T7572] usb 9-1: DVB: registering adapter 1 frontend 0 (Elgato EyeTV DTT Deluxe)...
[  514.251534][T14468] lowmem_reserve[]: 0 289 289 289 289
[  514.257665][T14468] Node 0 DMA32 free:18872kB boost:2048kB min:15380kB low:18712kB high:22044kB reserved_highatomic:2048KB free_highatomic:268KB active_anon:72kB inactive_anon:28kB active_file:140kB inactive_file:4kB unevictable:3536kB writepending:4kB zspages:0kB present:1032196kB managed:296820kB mlocked:0kB bounce:0kB free_pcp:13116kB local_pcp:4084kB free_cma:0kB
[  514.261294][ T7572] as10x_usb: error during firmware upload part1
[  514.270835][T14468] lowmem_reserve[]: 0 0 0 0 0
[  514.274227][ T7572] Registered device Elgato EyeTV DTT Deluxe
[  514.275696][T14468] Node 1 
[  514.276660][ T7572] usb 9-1: USB disconnect, device number 11
[  514.278157][T14468] DMA32 free:140392kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:39200kB inactive_anon:56kB active_file:44048kB inactive_file:78332kB unevictable:3536kB writepending:540kB zspages:1632kB present:1048432kB managed:948212kB mlocked:0kB bounce:0kB free_pcp:61024kB local_pcp:25400kB free_cma:0kB
[  514.287725][ T7572] Unregistered device Elgato EyeTV DTT Deluxe
[  514.292494][T14468] lowmem_reserve[]:
[  514.293026][ T7572] as10x_usb: device has been disconnected
[  514.295065][T14468]  0 0 0 0 0
[  514.299809][T14468] Node 0 DMA: 5*4kB (U) 20*8kB (UM) 9*16kB (UM) 9*32kB (UM) 5*64kB (UM) 1*128kB (M) 0*256kB 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2084kB
[  514.306212][T14468] Node 0 DMA32: 1104*4kB (UMEH) 393*8kB (UMEH) 127*16kB (UMEH) 70*32kB (UMEH) 50*64kB (UME) 18*128kB (UM) 4*256kB (M) 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 18872kB
[  514.313135][T14468] Node 1 DMA32: 872*4kB (UME) 1408*8kB (UME) 1312*16kB (UME) 40*32kB (UME) 55*64kB (UME) 17*128kB (UE) 25*256kB (UM) 42*512kB (UM) 30*1024kB (UM) 8*2048kB (UM) 6*4096kB (U) = 142304kB
[  514.319593][T14468] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  514.326068][T14468] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  514.329148][T14468] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  514.332245][T14468] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  514.335450][T14468] 36188 total pagecache pages
[  514.337089][T14468] 463 pages in swap cache
[  514.338633][T14468] Free swap  = 120820kB
[  514.340077][T14468] Total swap = 124996kB
[  514.341538][T14468] 524155 pages RAM
[  514.342831][T14468] 0 pages HighMem/MovableOnly
[  514.344436][T14468] 209057 pages reserved
[  514.345852][T14468] 0 pages cma reserved
[  514.375455][    C1] usbtouchscreen 7-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19
[  514.378430][ T6021] usb 7-1: USB disconnect, device number 13
[  514.720366][T14485] netlink: 'syz.0.2372': attribute type 4 has an invalid length.
[  514.723453][T14485] netlink: 17 bytes leftover after parsing attributes in process `syz.0.2372'.
[  515.094142][T14509] Device name cannot be null; rc = [-22]
[  515.125567][T14508] netlink: 'syz.4.2374': attribute type 4 has an invalid length.
[  515.171020][T14508] netlink: 'syz.4.2374': attribute type 4 has an invalid length.
[  515.828741][T14516] netlink: 'syz.5.2383': attribute type 4 has an invalid length.
[  515.831347][T14516] netlink: 17 bytes leftover after parsing attributes in process `syz.5.2383'.
[  516.216392][T14534] FAULT_INJECTION: forcing a failure.
[  516.216392][T14534] name failslab, interval 1, probability 0, space 0, times 0
[  516.220530][T14534] CPU: 1 UID: 0 PID: 14534 Comm: syz.5.2391 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  516.220549][T14534] Tainted: [L]=SOFTLOCKUP
[  516.220553][T14534] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  516.220560][T14534] Call Trace:
[  516.220565][T14534]  <TASK>
[  516.220570][T14534]  dump_stack_lvl+0x16c/0x1f0
[  516.220591][T14534]  should_fail_ex+0x512/0x640
[  516.220604][T14534]  ? __kmalloc_noprof+0xca/0x910
[  516.220617][T14534]  should_failslab+0xc2/0x120
[  516.220634][T14534]  __kmalloc_noprof+0xeb/0x910
[  516.220646][T14534]  ? __list_lru_init+0xe8/0x4c0
[  516.220661][T14534]  ? __list_lru_init+0xe8/0x4c0
[  516.220672][T14534]  __list_lru_init+0xe8/0x4c0
[  516.220685][T14534]  alloc_super+0x917/0xd00
[  516.220703][T14534]  sget_fc+0x116/0xc20
[  516.220718][T14534]  ? __pfx_set_anon_super_fc+0x10/0x10
[  516.220732][T14534]  ? __pfx_shmem_fill_super+0x10/0x10
[  516.220749][T14534]  get_tree_nodev+0x28/0x190
[  516.220765][T14534]  vfs_get_tree+0x8e/0x330
[  516.220777][T14534]  path_mount+0x7bf/0x23a0
[  516.220796][T14534]  ? rcu_is_watching+0x12/0xc0
[  516.220814][T14534]  ? __pfx_path_mount+0x10/0x10
[  516.220825][T14534]  ? kmem_cache_free+0x2d8/0x770
[  516.220838][T14534]  ? putname+0xf5/0x1a0
[  516.220850][T14534]  ? putname+0xf5/0x1a0
[  516.220862][T14534]  ? __ia32_sys_mount+0x291/0x310
[  516.220872][T14534]  __ia32_sys_mount+0x291/0x310
[  516.220883][T14534]  ? __pfx___ia32_sys_mount+0x10/0x10
[  516.220894][T14534]  ? do_user_addr_fault+0x843/0x1370
[  516.220924][T14534]  __do_fast_syscall_32+0xe8/0x680
[  516.220944][T14534]  do_fast_syscall_32+0x32/0x80
[  516.220961][T14534]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  516.220975][T14534] RIP: 0023:0xf707d579
[  516.220985][T14534] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  516.220996][T14534] RSP: 002b:00000000f546d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  516.221006][T14534] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000080000380
[  516.221013][T14534] RDX: 0000000080000340 RSI: 0000000000000000 RDI: 00000000800004c0
[  516.221020][T14534] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  516.221026][T14534] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  516.221033][T14534] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  516.221047][T14534]  </TASK>
[  516.502272][ T5946] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  516.506803][ T5946] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  516.510261][ T5946] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  516.516505][ T5946] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  516.521090][ T5946] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  516.669775][T14560] FAULT_INJECTION: forcing a failure.
[  516.669775][T14560] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  516.675870][T14560] CPU: 0 UID: 0 PID: 14560 Comm: syz.4.2401 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  516.675911][T14560] Tainted: [L]=SOFTLOCKUP
[  516.675917][T14560] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  516.675928][T14560] Call Trace:
[  516.675933][T14560]  <TASK>
[  516.675940][T14560]  dump_stack_lvl+0x16c/0x1f0
[  516.675969][T14560]  should_fail_ex+0x512/0x640
[  516.675991][T14560]  _copy_to_user+0x32/0xd0
[  516.676011][T14560]  hci_get_conn_list+0x420/0x670
[  516.676039][T14560]  ? __pfx_hci_get_conn_list+0x10/0x10
[  516.676063][T14560]  ? hci_sock_ioctl+0x1cf/0x7f0
[  516.676084][T14560]  ? rcu_is_watching+0x12/0xc0
[  516.676108][T14560]  ? __local_bh_enable_ip+0xa4/0x120
[  516.676134][T14560]  hci_sock_ioctl+0x63a/0x7f0
[  516.676156][T14560]  ? __pfx_hci_sock_ioctl+0x10/0x10
[  516.676179][T14560]  ? do_vfs_ioctl+0x128/0x14f0
[  516.676203][T14560]  hci_sock_compat_ioctl+0x68/0x80
[  516.676224][T14560]  ? __pfx_hci_sock_compat_ioctl+0x10/0x10
[  516.676247][T14560]  compat_sock_ioctl+0x176/0x730
[  516.676266][T14560]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  516.676281][T14560]  ? hook_file_ioctl_common+0x144/0x410
[  516.676305][T14560]  ? __fget_files+0x20e/0x3c0
[  516.676327][T14560]  ? fput+0x20/0xf0
[  516.676348][T14560]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  516.676363][T14560]  __ia32_compat_sys_ioctl+0x242/0x370
[  516.676387][T14560]  __do_fast_syscall_32+0xe8/0x680
[  516.676420][T14560]  do_fast_syscall_32+0x32/0x80
[  516.676450][T14560]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  516.676469][T14560] RIP: 0023:0xf7f91579
[  516.676483][T14560] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  516.676499][T14560] RSP: 002b:00000000f548655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  516.676516][T14560] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800448d4
[  516.676527][T14560] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[  516.676537][T14560] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  516.676547][T14560] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  516.676557][T14560] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  516.676579][T14560]  </TASK>
[  516.701826][ T6483] usb 10-1: new full-speed USB device number 17 using dummy_hcd
[  516.923007][ T6483] usb 10-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config
[  516.929299][ T6483] usb 10-1: New USB device found, idVendor=0fd9, idProduct=002c, bcdDevice= 6.6b
[  516.933191][ T6483] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  516.936449][ T6483] usb 10-1: Product: syz
[  516.938416][ T6483] usb 10-1: Manufacturer: syz
[  516.940347][ T6483] usb 10-1: SerialNumber: syz
[  517.063269][T14568] Can't find a SQUASHFS superblock on nullb0
[  517.086071][T11617] netdevsim netdevsim0 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  517.088892][T11617] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  517.158256][T14551] chnl_net:caif_netlink_parms(): no params data found
[  517.179175][T11617] netdevsim netdevsim0 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  517.182827][T11617] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  517.219636][ T5946] Bluetooth: hci3: adv larger than maximum supported
[  517.219725][ T5946] Bluetooth: hci3: Malformed LE Event: 0x0d
[  517.229541][ T6483] as10x_usb: device has been detected
[  517.231753][ T6483] dvbdev: DVB: registering new adapter (Elgato EyeTV DTT Deluxe)
[  517.241124][ T6483] usb 10-1: DVB: registering adapter 1 frontend 0 (Elgato EyeTV DTT Deluxe)...
[  517.246620][T11617] netdevsim netdevsim0 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  517.251160][ T6483] as10x_usb: error during firmware upload part1
[  517.253161][T11617] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  517.258976][ T6483] Registered device Elgato EyeTV DTT Deluxe
[  517.259623][ T6483] usb 10-1: USB disconnect, device number 17
[  517.265922][T14551] bridge0: port 1(bridge_slave_0) entered blocking state
[  517.268687][T14551] bridge0: port 1(bridge_slave_0) entered disabled state
[  517.269153][ T6483] Unregistered device Elgato EyeTV DTT Deluxe
[  517.272017][ T6483] as10x_usb: device has been disconnected
[  517.272959][T14551] bridge_slave_0: entered allmulticast mode
[  517.280391][T14551] bridge_slave_0: entered promiscuous mode
[  517.283623][T14551] bridge0: port 2(bridge_slave_1) entered blocking state
[  517.285821][T14551] bridge0: port 2(bridge_slave_1) entered disabled state
[  517.288059][T14551] bridge_slave_1: entered allmulticast mode
[  517.290624][T14551] bridge_slave_1: entered promiscuous mode
[  517.306599][T14551] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  517.310976][T14551] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  517.325926][T14551] team0: Port device team_slave_0 added
[  517.328983][T14551] team0: Port device team_slave_1 added
[  517.362243][T11617] netdevsim netdevsim0 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  517.365656][T11617] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  517.383940][T14551] batman_adv: batadv0: Adding interface: batadv_slave_0
[  517.386148][T14551] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  517.394313][T14584] Device name cannot be null; rc = [-22]
[  517.397030][T14583] netlink: 9 bytes leftover after parsing attributes in process `syz.4.2408'.
[  517.400072][T14551] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  517.404517][T14583] gretap0: entered promiscuous mode
[  517.412456][T14551] batman_adv: batadv0: Adding interface: batadv_slave_1
[  517.414632][T14551] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  517.423100][T14551] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  517.450116][T14551] hsr_slave_0: entered promiscuous mode
[  517.453898][T14551] hsr_slave_1: entered promiscuous mode
[  517.462101][T14551] debugfs: 'hsr0' already exists in 'hsr'
[  517.464603][T14551] Cannot create hsr debugfs directory
[  517.564826][T11617] bridge_slave_1: left allmulticast mode
[  517.566604][T11617] bridge_slave_1: left promiscuous mode
[  517.568647][T11617] bridge0: port 2(bridge_slave_1) entered disabled state
[  517.584337][T11617] bridge_slave_0: left allmulticast mode
[  517.586173][T11617] bridge_slave_0: left promiscuous mode
[  517.588217][T11617] bridge0: port 1(bridge_slave_0) entered disabled state
[  518.314828][T11617] bond1 (unregistering): (slave bridge1): Releasing backup interface
[  518.486472][T11617] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  518.572841][ T5946] Bluetooth: hci1: command tx timeout
[  518.676390][T11617] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  518.819581][T11617] bond0 (unregistering): (slave batadv0): Releasing backup interface
[  518.829131][T11617] bond0 (unregistering): Released all slaves
[  519.112817][T11617] bond1 (unregistering): Released all slaves
[  519.119256][T11617] bond2 (unregistering): Released all slaves
[  519.230709][T11617] tipc: Disabling bearer <eth:vlan1>
[  519.241105][T11617] tipc: Left network mode
[  519.503748][T11617] dummy0: left promiscuous mode
[  519.506861][T11617] team0: left promiscuous mode
[  519.509657][T11617] team_slave_0: left promiscuous mode
[  519.521830][T11617] team_slave_1: left promiscuous mode
[  519.528326][T11617] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  519.530744][T11617] batman_adv: batadv0: Removing interface: batadv_slave_0
[  519.537325][T11617] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  519.539798][T11617] batman_adv: batadv0: Removing interface: batadv_slave_1
[  519.556857][T11617] hsr0: left allmulticast mode
[  519.558761][T11617] veth1_macvtap: left promiscuous mode
[  519.560633][T11617] veth0_macvtap: left promiscuous mode
[  519.562688][T11617] veth1_vlan: left promiscuous mode
[  519.565941][T11617] veth0_vlan: left promiscuous mode
[  519.600560][T14632] FAULT_INJECTION: forcing a failure.
[  519.600560][T14632] name failslab, interval 1, probability 0, space 0, times 0
[  519.611602][T14632] CPU: 0 UID: 0 PID: 14632 Comm: syz.2.2423 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  519.611623][T14632] Tainted: [L]=SOFTLOCKUP
[  519.611627][T14632] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  519.611634][T14632] Call Trace:
[  519.611638][T14632]  <TASK>
[  519.611643][T14632]  dump_stack_lvl+0x16c/0x1f0
[  519.611664][T14632]  should_fail_ex+0x512/0x640
[  519.611676][T14632]  ? kmem_cache_alloc_noprof+0x62/0x770
[  519.611691][T14632]  should_failslab+0xc2/0x120
[  519.611709][T14632]  kmem_cache_alloc_noprof+0x83/0x770
[  519.611722][T14632]  ? vm_area_dup+0x27/0x8d0
[  519.611739][T14632]  ? vm_area_dup+0x27/0x8d0
[  519.611749][T14632]  vm_area_dup+0x27/0x8d0
[  519.611763][T14632]  dup_mmap+0x6a4/0x20e0
[  519.611786][T14632]  ? __pfx_dup_mmap+0x10/0x10
[  519.611809][T14632]  ? __percpu_down_read+0x55/0x150
[  519.611824][T14632]  copy_process+0x3b9f/0x7430
[  519.611847][T14632]  ? __pfx_copy_process+0x10/0x10
[  519.611867][T14632]  ? _copy_from_user+0x59/0xd0
[  519.611881][T14632]  kernel_clone+0xfc/0x910
[  519.611897][T14632]  ? get_pid_task+0xfc/0x250
[  519.611908][T14632]  ? __pfx_kernel_clone+0x10/0x10
[  519.611932][T14632]  __do_sys_clone3+0x212/0x290
[  519.611951][T14632]  ? __pfx___do_sys_clone3+0x10/0x10
[  519.611977][T14632]  ? __fget_files+0x20e/0x3c0
[  519.612000][T14632]  ? do_user_addr_fault+0x843/0x1370
[  519.612017][T14632]  __do_fast_syscall_32+0xe8/0x680
[  519.612036][T14632]  do_fast_syscall_32+0x32/0x80
[  519.612053][T14632]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  519.612068][T14632] RIP: 0023:0xf705d579
[  519.612077][T14632] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  519.612088][T14632] RSP: 002b:00000000f544d42c EFLAGS: 00000286 ORIG_RAX: 00000000000001b3
[  519.612099][T14632] RAX: ffffffffffffffda RBX: 00000000f544d460 RCX: 0000000000000058
[  519.612106][T14632] RDX: 0000000000000000 RSI: 0000000000a00400 RDI: 0000000000000000
[  519.612113][T14632] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  519.612119][T14632] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  519.612126][T14632] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  519.612140][T14632]  </TASK>
[  520.159214][T11617] team0 (unregistering): Port device team_slave_1 removed
[  520.189819][T11617] team0 (unregistering): Port device team_slave_0 removed
[  520.473252][T14667] random: crng reseeded on system resumption
[  520.641321][ T5946] Bluetooth: hci1: command tx timeout
[  521.798699][T14551] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  521.805084][T14551] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  521.820627][T14551] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  521.836041][T14551] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  521.924880][T14551] 8021q: adding VLAN 0 to HW filter on device bond0
[  521.934899][T14551] 8021q: adding VLAN 0 to HW filter on device team0
[  521.953279][T11596] bridge0: port 1(bridge_slave_0) entered blocking state
[  521.955541][T11596] bridge0: port 1(bridge_slave_0) entered forwarding state
[  521.991069][T11596] bridge0: port 2(bridge_slave_1) entered blocking state
[  521.993268][T11596] bridge0: port 2(bridge_slave_1) entered forwarding state
[  522.024923][T14708] netlink: 'syz.4.2440': attribute type 4 has an invalid length.
[  522.116476][T11617] IPVS: stop unused estimator thread 0...
[  522.334347][T14714] 9pnet_virtio: no channels available for device syz
[  522.712060][   T40] audit: type=1800 audit(1765909664.487:1792): pid=14707 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2445" name="cpuset.memory_pressure_enabled" dev="9p" ino=72876359 res=0 errno=0
[  522.732244][ T5946] Bluetooth: hci1: command tx timeout
[  522.914441][T14551] 8021q: adding VLAN 0 to HW filter on device batadv0
[  523.000347][T14551] veth0_vlan: entered promiscuous mode
[  523.005321][T14551] veth1_vlan: entered promiscuous mode
[  523.031472][T14551] veth0_macvtap: entered promiscuous mode
[  523.036407][T14551] veth1_macvtap: entered promiscuous mode
[  523.053887][T14551] batman_adv: batadv0: Interface activated: batadv_slave_0
[  523.076286][T14551] batman_adv: batadv0: Interface activated: batadv_slave_1
[  523.085191][T11612] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  523.087963][T11612] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  523.091031][T11612] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  523.097473][T11612] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  523.156677][T11604] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  523.159412][T11604] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  523.174091][ T7099] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  523.177279][ T7099] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  523.418173][T14740] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  523.459066][T14752] netlink: 'syz.0.2397': attribute type 4 has an invalid length.
[  523.463717][T14752] netlink: 17 bytes leftover after parsing attributes in process `syz.0.2397'.
[  523.873032][T14762] random: crng reseeded on system resumption
[  524.437323][T14780] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  524.440754][T14780] overlayfs: missing 'lowerdir'
[  524.799453][T14785] netlink: 'syz.4.2470': attribute type 4 has an invalid length.
[  524.802946][T14785] netlink: 17 bytes leftover after parsing attributes in process `syz.4.2470'.
[  524.811342][ T5946] Bluetooth: hci1: command tx timeout
[  526.264226][T14814] netlink: 'syz.5.2480': attribute type 4 has an invalid length.
[  526.266810][T14814] netlink: 17 bytes leftover after parsing attributes in process `syz.5.2480'.
[  527.034896][T14824] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2483'.
[  527.834641][T14832] vivid-001: disconnect
[  528.118289][T14818] vivid-001: reconnect
[  529.399649][T14862] netlink: 'syz.5.2492': attribute type 4 has an invalid length.
[  529.403022][T14862] netlink: 17 bytes leftover after parsing attributes in process `syz.5.2492'.
[  530.564758][T14878] FAULT_INJECTION: forcing a failure.
[  530.564758][T14878] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  530.571086][T14878] CPU: 0 UID: 0 PID: 14878 Comm: syz.0.2498 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  530.571117][T14878] Tainted: [L]=SOFTLOCKUP
[  530.571123][T14878] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  530.571134][T14878] Call Trace:
[  530.571141][T14878]  <TASK>
[  530.571148][T14878]  dump_stack_lvl+0x16c/0x1f0
[  530.571178][T14878]  should_fail_ex+0x512/0x640
[  530.571200][T14878]  _copy_to_user+0x32/0xd0
[  530.571220][T14878]  simple_read_from_buffer+0xcb/0x170
[  530.571260][T14878]  proc_fail_nth_read+0x197/0x240
[  530.571288][T14878]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  530.571316][T14878]  ? rw_verify_area+0xcf/0x6c0
[  530.571336][T14878]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  530.571362][T14878]  vfs_read+0x1e4/0xcf0
[  530.571386][T14878]  ? __pfx___mutex_lock+0x10/0x10
[  530.571414][T14878]  ? __pfx_vfs_read+0x10/0x10
[  530.571434][T14878]  ? find_held_lock+0x2b/0x80
[  530.571462][T14878]  ? __fget_files+0x20e/0x3c0
[  530.571491][T14878]  ksys_read+0x12a/0x250
[  530.571513][T14878]  ? __pfx_ksys_read+0x10/0x10
[  530.571536][T14878]  ? do_user_addr_fault+0x843/0x1370
[  530.571561][T14878]  __do_fast_syscall_32+0xe8/0x680
[  530.571589][T14878]  do_fast_syscall_32+0x32/0x80
[  530.571614][T14878]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  530.571634][T14878] RIP: 0023:0xf7f34579
[  530.571648][T14878] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  530.571664][T14878] RSP: 002b:00000000f5426590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  530.571686][T14878] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f5426620
[  530.571697][T14878] RDX: 000000000000000f RSI: 00000000f73c6ff4 RDI: 0000000000000000
[  530.571708][T14878] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  530.571718][T14878] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  530.571728][T14878] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  530.571751][T14878]  </TASK>
[  530.672654][T14880] 9pnet_virtio: no channels available for device syz
[  530.960366][T14895] netlink: 'syz.4.2501': attribute type 4 has an invalid length.
[  530.963916][T14895] netlink: 17 bytes leftover after parsing attributes in process `syz.4.2501'.
[  532.106705][T14926] netlink: 'syz.4.2518': attribute type 4 has an invalid length.
[  532.110081][T14926] netlink: 17 bytes leftover after parsing attributes in process `syz.4.2518'.
[  533.291717][T14945] FAULT_INJECTION: forcing a failure.
[  533.291717][T14945] name failslab, interval 1, probability 0, space 0, times 0
[  533.295754][T14945] CPU: 3 UID: 0 PID: 14945 Comm: syz.0.2525 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  533.295774][T14945] Tainted: [L]=SOFTLOCKUP
[  533.295778][T14945] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  533.295786][T14945] Call Trace:
[  533.295790][T14945]  <TASK>
[  533.295796][T14945]  dump_stack_lvl+0x16c/0x1f0
[  533.295816][T14945]  should_fail_ex+0x512/0x640
[  533.295829][T14945]  ? kmem_cache_alloc_noprof+0x62/0x770
[  533.295845][T14945]  should_failslab+0xc2/0x120
[  533.295862][T14945]  kmem_cache_alloc_noprof+0x83/0x770
[  533.295875][T14945]  ? getname_flags.part.0+0x4c/0x550
[  533.295890][T14945]  ? getname_flags.part.0+0x4c/0x550
[  533.295902][T14945]  getname_flags.part.0+0x4c/0x550
[  533.295915][T14945]  getname_flags+0x93/0xf0
[  533.295930][T14945]  do_sys_openat2+0xb9/0x290
[  533.295943][T14945]  ? __pfx_do_sys_openat2+0x10/0x10
[  533.295956][T14945]  ? __fget_files+0x20e/0x3c0
[  533.295974][T14945]  __ia32_compat_sys_openat+0x16d/0x210
[  533.295988][T14945]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  533.296001][T14945]  ? ksys_write+0x1ac/0x250
[  533.296021][T14945]  __do_fast_syscall_32+0xe8/0x680
[  533.296040][T14945]  do_fast_syscall_32+0x32/0x80
[  533.296057][T14945]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  533.296072][T14945] RIP: 0023:0xf7f34579
[  533.296082][T14945] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  533.296094][T14945] RSP: 002b:00000000f540555c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[  533.296105][T14945] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000180
[  533.296112][T14945] RDX: 0000000000082401 RSI: 0000000000000000 RDI: 0000000000000000
[  533.296118][T14945] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  533.296125][T14945] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  533.296131][T14945] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  533.296144][T14945]  </TASK>
[  533.496028][T14963] netlink: 'syz.5.2532': attribute type 4 has an invalid length.
[  533.498495][T14963] netlink: 17 bytes leftover after parsing attributes in process `syz.5.2532'.
[  534.895636][T14988] netlink: 'syz.2.2542': attribute type 4 has an invalid length.
[  534.898421][T14988] netlink: 17 bytes leftover after parsing attributes in process `syz.2.2542'.
[  535.215663][T15001] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2541'.
[  535.587621][T15000] Process accounting resumed
[  535.735412][T15012] 9p: Bad value for 'wfdno'
[  535.779695][T15013] netlink: 'syz.2.2545': attribute type 4 has an invalid length.
./file0/file0./file0./file0fuse[  536.581980][T15031] netlink: 'syz.2.2554': attribute type 27 has an invalid length.
[  536.592439][T15031] netlink: 'syz.2.2554': attribute type 4 has an invalid length.
[  536.601335][T15031] netlink: 144 bytes leftover after parsing attributes in process `syz.2.2554'.
[  536.777854][T15043] netlink: 'syz.4.2558': attribute type 4 has an invalid length.
[  536.780468][T15043] netlink: 17 bytes leftover after parsing attributes in process `syz.4.2558'.
[  538.064486][T15071] netlink: 'syz.5.2567': attribute type 27 has an invalid length.
[  538.064507][T15071] netlink: 'syz.5.2567': attribute type 4 has an invalid length.
[  538.064583][T15071] netlink: 144 bytes leftover after parsing attributes in process `syz.5.2567'.
[  538.597091][T15077] loop5: detected capacity change from 0 to 7
[  538.597568][T15077] Dev loop5: unable to read RDB block 7
[  538.597584][T15077]  loop5: AHDI p1 p2
[  538.597597][T15077] loop5: partition table partially beyond EOD, truncated
[  538.597640][T15077] loop5: p1 start 1702000233 is beyond EOD, truncated
[  538.704408][   T40] audit: type=1326 audit(1765909680.477:1793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15092 comm="syz.2.2575" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf705d579 code=0x0
[  539.771399][ T6002] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  539.882162][   T40] audit: type=1800 audit(1765909681.657:1794): pid=15104 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2579" name="cpuset.memory_pressure_enabled" dev="9p" ino=72876359 res=0 errno=0
[  539.931612][ T6002] usb 5-1: device descriptor read/64, error -71
[  540.076762][T15139] 8021q: adding VLAN 0 to HW filter on device batadv1
[  540.086360][T15139] team0: Port device batadv1 added
[  540.171372][ T6002] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  540.303669][ T6002] usb 5-1: device descriptor read/64, error -71
[  540.385879][T15121] Process accounting resumed
[  540.417431][ T6002] usb usb5-port1: attempt power cycle
[  540.754797][ T6002] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  540.772126][ T6002] usb 5-1: device descriptor read/8, error -71
[  540.969922][T15165] netlink: 'syz.5.2598': attribute type 4 has an invalid length.
[  540.973772][T15165] netlink: 17 bytes leftover after parsing attributes in process `syz.5.2598'.
[  541.011354][ T6002] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  541.011837][T15167] netlink: 'syz.5.2599': attribute type 3 has an invalid length.
[  541.018572][T15167] binder: 15166:15167 ioctl 4018620d 0 returned -22
[  541.032689][ T6002] usb 5-1: device descriptor read/8, error -71
[  541.151535][ T6002] usb usb5-port1: unable to enumerate USB device
[  542.144172][T15179] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  542.146795][T15179] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  542.201430][T15179] vhci_hcd vhci_hcd.0: Device attached
[  542.272155][T15185] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2605'.
[  542.478172][T15194] netlink: 'syz.5.2607': attribute type 4 has an invalid length.
[  542.483266][T15194] netlink: 17 bytes leftover after parsing attributes in process `syz.5.2607'.
[  542.500327][ T6021] usb 42-1: SetAddress Request (22) to port 0
[  542.504191][ T6021] usb 42-1: new SuperSpeed USB device number 22 using vhci_hcd
[  542.530380][T15198] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2604'.
[  543.119310][T15180] vhci_hcd: connection reset by peer
[  543.121186][T11599] vhci_hcd vhci_hcd.2: stop threads
[  543.123347][T11599] vhci_hcd vhci_hcd.2: release socket
[  543.125011][T11599] vhci_hcd vhci_hcd.2: disconnect device
[  543.232873][T15216] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(5)
[  543.235226][T15216] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  543.238351][T15216] vhci_hcd vhci_hcd.0: Device attached
[  543.325818][T15219] fuse: Bad value for 'fd'
[  543.511429][T14396] usb 48-1: SetAddress Request (22) to port 0
[  543.513817][T14396] usb 48-1: new SuperSpeed USB device number 22 using vhci_hcd
[  543.739812][T15217] vhci_hcd: connection reset by peer
[  543.743067][ T6905] vhci_hcd vhci_hcd.5: stop threads
[  543.745033][ T6905] vhci_hcd vhci_hcd.5: release socket
[  543.747213][ T6905] vhci_hcd vhci_hcd.5: disconnect device
./file0/file0./file0./file0fuse[  544.762505][T15246] netlink: 'syz.2.2617': attribute type 27 has an invalid length.
[  544.765785][T15246] netlink: 'syz.2.2617': attribute type 4 has an invalid length.
[  544.768759][T15246] netlink: 152 bytes leftover after parsing attributes in process `syz.2.2617'.
[  545.138977][T15247] netlink: 60 bytes leftover after parsing attributes in process `syz.5.2616'.
[  545.610498][T15248] 9pnet_virtio: no channels available for device syz
[  545.691327][T15247] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  545.693279][T15247] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  545.695175][T15247] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  545.697057][T15247] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  545.749317][T15247] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  545.763163][T15247] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  545.765027][T15247] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  545.802647][T15247] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  546.025647][T15274] overlayfs: overlapping lowerdir path
[  546.463032][T15283] netlink: 'syz.4.2630': attribute type 27 has an invalid length.
[  546.466514][T15283] netlink: 'syz.4.2630': attribute type 4 has an invalid length.
[  546.470274][T15283] netlink: 152 bytes leftover after parsing attributes in process `syz.4.2630'.
[  546.495720][T15282] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  546.498468][T15282] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  546.501673][T15282] vhci_hcd vhci_hcd.0: Device attached
[  546.771419][ T6002] usb 38-1: SetAddress Request (20) to port 0
[  546.776255][ T6002] usb 38-1: new SuperSpeed USB device number 20 using vhci_hcd
[  546.875522][T15285] vhci_hcd: connection reset by peer
[  546.880495][  T103] vhci_hcd vhci_hcd.0: stop threads
[  546.883051][  T103] vhci_hcd vhci_hcd.0: release socket
[  546.885336][  T103] vhci_hcd vhci_hcd.0: disconnect device
[  547.377434][T15298] netlink: 'syz.2.2635': attribute type 4 has an invalid length.
[  547.380143][T15298] netlink: 17 bytes leftover after parsing attributes in process `syz.2.2635'.
[  547.487004][T15309] netlink: 'syz.2.2640': attribute type 27 has an invalid length.
[  547.489647][T15309] netlink: 'syz.2.2640': attribute type 4 has an invalid length.
[  547.492923][T15309] netlink: 152 bytes leftover after parsing attributes in process `syz.2.2640'.
[  547.601411][ T5936] Bluetooth: hci4: command 0x0c1a tx timeout
[  547.634029][ T6021] usb 42-1: device descriptor read/8, error -110
[  547.773958][ T5936] Bluetooth: hci2: command 0x0c1a tx timeout
[  547.773982][ T5946] Bluetooth: hci3: command 0x0405 tx timeout
[  547.841507][ T5946] Bluetooth: hci1: command 0x0c1a tx timeout
[  548.011035][T15330] netlink: 'syz.5.2648': attribute type 4 has an invalid length.
[  548.013652][T15330] netlink: 17 bytes leftover after parsing attributes in process `syz.5.2648'.
[  548.111926][T15332] netlink: 'syz.5.2649': attribute type 27 has an invalid length.
[  548.114409][T15332] netlink: 'syz.5.2649': attribute type 4 has an invalid length.
[  548.116822][T15332] netlink: 140 bytes leftover after parsing attributes in process `syz.5.2649'.
[  548.561538][T14396] usb 48-1: device descriptor read/8, error -110
[  548.819366][ T6021] usb usb42-port1: attempt power cycle
[  548.952390][T14396] usb usb48-port1: attempt power cycle
[  549.381809][ T6021] usb usb42-port1: unable to enumerate USB device
[  549.512179][T14396] usb usb48-port1: unable to enumerate USB device
[  549.639254][T15345] netlink: 'syz.0.2654': attribute type 1 has an invalid length.
[  549.661823][T15345] 8021q: adding VLAN 0 to HW filter on device bond1
[  549.735211][T15345] 8021q: adding VLAN 0 to HW filter on device bond1
[  549.737482][T15345] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address
[  549.740993][T15345] bond1: (slave vxcan3): Error -95 calling set_mac_address
[  549.773147][T15353] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2655'.
[  549.789023][T15352] loop6: detected capacity change from 0 to 524287999
[  549.841447][ T5946] Bluetooth: hci2: command 0x0c1a tx timeout
[  549.921377][ T5946] Bluetooth: hci1: command 0x0c1a tx timeout
[  549.927897][T15345] gretap1: entered promiscuous mode
[  549.931216][T15345] bond1: (slave gretap1): making interface the new active one
[  549.933875][T15345] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  549.963831][T15357] netlink: 'syz.2.2657': attribute type 4 has an invalid length.
[  549.966999][T15357] netlink: 17 bytes leftover after parsing attributes in process `syz.2.2657'.
[  550.004866][T15359] netlink: 140 bytes leftover after parsing attributes in process `syz.0.2658'.
[  551.128495][T15379] 9pnet_virtio: no channels available for device syz
[  551.841988][ T6002] usb 38-1: device descriptor read/8, error -110
[  551.921458][ T5946] Bluetooth: hci2: command 0x0c1a tx timeout
[  552.011443][ T5946] Bluetooth: hci1: command 0x0c1a tx timeout
[  552.242052][ T6002] usb usb38-port1: attempt power cycle
[  552.399054][T15396] nbd: must specify an index to disconnect
[  552.873731][ T6002] usb usb38-port1: unable to enumerate USB device
[  554.152510][T15431] usb usb8: usbfs: process 15431 (syz.2.2681) did not claim interface 0 before use
[  554.916507][T15439] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(5)
[  554.918657][T15439] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  554.931438][T15439] vhci_hcd vhci_hcd.0: Device attached
[  555.223580][ T7572] usb 48-1: SetAddress Request (26) to port 0
[  555.225689][ T7572] usb 48-1: new SuperSpeed USB device number 26 using vhci_hcd
[  555.231178][T15440] vhci_hcd: connection closed
[  555.232378][   T46] vhci_hcd vhci_hcd.5: stop threads
[  555.236387][   T46] vhci_hcd vhci_hcd.5: release socket
[  555.246863][   T46] vhci_hcd vhci_hcd.5: disconnect device
[  556.263434][T15485] netlink: 296 bytes leftover after parsing attributes in process `syz.2.2698'.
[  556.267066][T15485] FAULT_INJECTION: forcing a failure.
[  556.267066][T15485] name failslab, interval 1, probability 0, space 0, times 0
[  556.273569][T15485] CPU: 3 UID: 0 PID: 15485 Comm: syz.2.2698 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  556.273596][T15485] Tainted: [L]=SOFTLOCKUP
[  556.273602][T15485] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  556.273612][T15485] Call Trace:
[  556.273617][T15485]  <TASK>
[  556.273623][T15485]  dump_stack_lvl+0x16c/0x1f0
[  556.273651][T15485]  should_fail_ex+0x512/0x640
[  556.273667][T15485]  ? __kmalloc_cache_noprof+0x5f/0x800
[  556.273687][T15485]  should_failslab+0xc2/0x120
[  556.273709][T15485]  __kmalloc_cache_noprof+0x80/0x800
[  556.273726][T15485]  ? netlbl_cipsov4_add+0x3f9/0x24c0
[  556.273753][T15485]  ? netlbl_cipsov4_add+0x3f9/0x24c0
[  556.273774][T15485]  netlbl_cipsov4_add+0x3f9/0x24c0
[  556.273795][T15485]  ? rcu_is_watching+0x12/0xc0
[  556.273819][T15485]  ? __pfx_netlbl_cipsov4_add+0x10/0x10
[  556.273844][T15485]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  556.273870][T15485]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  556.273898][T15485]  genl_family_rcv_msg_doit+0x209/0x2f0
[  556.273923][T15485]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  556.273947][T15485]  ? genl_get_cmd+0x194/0x580
[  556.273973][T15485]  ? bpf_lsm_capable+0x9/0x10
[  556.273992][T15485]  ? security_capable+0x7e/0x260
[  556.274020][T15485]  genl_rcv_msg+0x55c/0x800
[  556.274036][T15485]  ? __pfx_genl_rcv_msg+0x10/0x10
[  556.274050][T15485]  ? __pfx_netlbl_cipsov4_add+0x10/0x10
[  556.274074][T15485]  ? __lock_acquire+0x436/0x2890
[  556.274091][T15485]  netlink_rcv_skb+0x158/0x420
[  556.274112][T15485]  ? __pfx_genl_rcv_msg+0x10/0x10
[  556.274126][T15485]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  556.274155][T15485]  ? netlink_deliver_tap+0x1ae/0xd30
[  556.274178][T15485]  genl_rcv+0x28/0x40
[  556.274198][T15485]  netlink_unicast+0x5aa/0x870
[  556.274222][T15485]  ? __pfx_netlink_unicast+0x10/0x10
[  556.274248][T15485]  ? __pfx___might_resched+0x10/0x10
[  556.274276][T15485]  netlink_sendmsg+0x8c8/0xdd0
[  556.274300][T15485]  ? __pfx_netlink_sendmsg+0x10/0x10
[  556.274323][T15485]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  556.274352][T15485]  ____sys_sendmsg+0xa5d/0xc30
[  556.274373][T15485]  ? process_recorded_refs.constprop.0+0x1e34/0x3c60
[  556.274391][T15485]  ? __pfx_____sys_sendmsg+0x10/0x10
[  556.274413][T15485]  ? get_compat_msghdr+0x11a/0x170
[  556.274441][T15485]  ___sys_sendmsg+0x134/0x1d0
[  556.274460][T15485]  ? __pfx____sys_sendmsg+0x10/0x10
[  556.274489][T15485]  ? find_held_lock+0x2b/0x80
[  556.274522][T15485]  __sys_sendmsg+0x16d/0x220
[  556.274541][T15485]  ? __pfx___sys_sendmsg+0x10/0x10
[  556.274573][T15485]  __do_fast_syscall_32+0xe8/0x680
[  556.274598][T15485]  do_fast_syscall_32+0x32/0x80
[  556.274621][T15485]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  556.274639][T15485] RIP: 0023:0xf705d579
[  556.274651][T15485] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  556.274666][T15485] RSP: 002b:00000000f544d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  556.274682][T15485] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000540
[  556.274691][T15485] RDX: 00000000040480d4 RSI: 0000000000000000 RDI: 0000000000000000
[  556.274701][T15485] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  556.274710][T15485] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  556.274719][T15485] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  556.274739][T15485]  </TASK>
[  556.422854][T15490] FAULT_INJECTION: forcing a failure.
[  556.422854][T15490] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  556.427095][T15490] CPU: 1 UID: 0 PID: 15490 Comm: syz.5.2700 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  556.427113][T15490] Tainted: [L]=SOFTLOCKUP
[  556.427118][T15490] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  556.427124][T15490] Call Trace:
[  556.427129][T15490]  <TASK>
[  556.427133][T15490]  dump_stack_lvl+0x16c/0x1f0
[  556.427154][T15490]  should_fail_ex+0x512/0x640
[  556.427168][T15490]  _copy_from_iter+0x2a4/0x16c0
[  556.427182][T15490]  ? ip_route_output_key_hash+0x143/0x2b0
[  556.427198][T15490]  ? __pfx__copy_from_iter+0x10/0x10
[  556.427212][T15490]  ? xfrm_lookup_route+0x6a/0x200
[  556.427228][T15490]  raw_sendmsg+0x1f84/0x34f0
[  556.427246][T15490]  ? __pfx_raw_sendmsg+0x10/0x10
[  556.427258][T15490]  ? tomoyo_check_inet_address+0x44d/0x6c0
[  556.427279][T15490]  ? tomoyo_check_inet_address+0xe0/0x6c0
[  556.427309][T15490]  ? __pfx_raw_sendmsg+0x10/0x10
[  556.427323][T15490]  inet_sendmsg+0x11c/0x140
[  556.427336][T15490]  ____sys_sendmsg+0x973/0xc30
[  556.427355][T15490]  ? __pfx_____sys_sendmsg+0x10/0x10
[  556.427372][T15490]  ? get_compat_msghdr+0x11a/0x170
[  556.427388][T15490]  ? __pfx__kstrtoull+0x10/0x10
[  556.427405][T15490]  ___sys_sendmsg+0x134/0x1d0
[  556.427420][T15490]  ? __pfx____sys_sendmsg+0x10/0x10
[  556.427448][T15490]  __sys_sendmmsg+0x2f9/0x420
[  556.427464][T15490]  ? __pfx___sys_sendmmsg+0x10/0x10
[  556.427482][T15490]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  556.427504][T15490]  ? fput+0x70/0xf0
[  556.427516][T15490]  ? ksys_write+0x1ac/0x250
[  556.427531][T15490]  ? __pfx_ksys_write+0x10/0x10
[  556.427548][T15490]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  556.427563][T15490]  ? lockdep_hardirqs_on+0x7c/0x110
[  556.427579][T15490]  __do_fast_syscall_32+0xe8/0x680
[  556.427597][T15490]  do_fast_syscall_32+0x32/0x80
[  556.427614][T15490]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  556.427628][T15490] RIP: 0023:0xf707d579
[  556.427637][T15490] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  556.427649][T15490] RSP: 002b:00000000f546d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  556.427659][T15490] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080002000
[  556.427666][T15490] RDX: 0000000000000002 RSI: 0000000000040000 RDI: 0000000000000000
[  556.427673][T15490] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  556.427679][T15490] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  556.427686][T15490] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  556.427699][T15490]  </TASK>
[  556.825795][T15504] FAULT_INJECTION: forcing a failure.
[  556.825795][T15504] name failslab, interval 1, probability 0, space 0, times 0
[  556.831092][T15504] CPU: 2 UID: 0 PID: 15504 Comm: syz.4.2706 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  556.831122][T15504] Tainted: [L]=SOFTLOCKUP
[  556.831128][T15504] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  556.831140][T15504] Call Trace:
[  556.831147][T15504]  <TASK>
[  556.831155][T15504]  dump_stack_lvl+0x16c/0x1f0
[  556.831187][T15504]  should_fail_ex+0x512/0x640
[  556.831207][T15504]  ? fs_reclaim_acquire+0xae/0x150
[  556.831254][T15504]  should_failslab+0xc2/0x120
[  556.831282][T15504]  __kmalloc_noprof+0xeb/0x910
[  556.831316][T15504]  ? tomoyo_encode2+0x100/0x3e0
[  556.831346][T15504]  ? tomoyo_encode2+0x100/0x3e0
[  556.831369][T15504]  tomoyo_encode2+0x100/0x3e0
[  556.831396][T15504]  tomoyo_encode+0x29/0x50
[  556.831418][T15504]  tomoyo_realpath_from_path+0x18f/0x6e0
[  556.831450][T15504]  tomoyo_check_open_permission+0x2ab/0x3c0
[  556.831472][T15504]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  556.831493][T15504]  ? lock_acquire+0x179/0x330
[  556.831539][T15504]  ? lock_acquire+0x179/0x330
[  556.831556][T15504]  ? find_held_lock+0x2b/0x80
[  556.831581][T15504]  ? mnt_get_write_access+0x52/0x2f0
[  556.831605][T15504]  tomoyo_file_open+0x6b/0x90
[  556.831634][T15504]  security_file_open+0x84/0x1e0
[  556.831659][T15504]  do_dentry_open+0x597/0x1590
[  556.831687][T15504]  ? security_inode_permission+0xbf/0x260
[  556.831712][T15504]  vfs_open+0x82/0x3f0
[  556.831735][T15504]  path_openat+0x2078/0x3140
[  556.831769][T15504]  ? __pfx_path_openat+0x10/0x10
[  556.831801][T15504]  ? __lock_acquire+0x436/0x2890
[  556.831821][T15504]  do_filp_open+0x20b/0x470
[  556.831848][T15504]  ? __pfx_do_filp_open+0x10/0x10
[  556.831893][T15504]  ? _raw_spin_unlock+0x28/0x50
[  556.831916][T15504]  ? alloc_fd+0x471/0x7d0
[  556.831949][T15504]  do_sys_openat2+0x121/0x290
[  556.831969][T15504]  ? __pfx_do_sys_openat2+0x10/0x10
[  556.831992][T15504]  ? __fget_files+0x20e/0x3c0
[  556.832022][T15504]  __ia32_compat_sys_openat+0x16d/0x210
[  556.832044][T15504]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  556.832066][T15504]  ? ksys_write+0x1ac/0x250
[  556.832094][T15504]  ? do_user_addr_fault+0x843/0x1370
[  556.832122][T15504]  __do_fast_syscall_32+0xe8/0x680
[  556.832153][T15504]  do_fast_syscall_32+0x32/0x80
[  556.832181][T15504]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  556.832203][T15504] RIP: 0023:0xf7f91579
[  556.832217][T15504] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  556.832235][T15504] RSP: 002b:00000000f546555c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[  556.832252][T15504] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000040
[  556.832264][T15504] RDX: 000000000000275a RSI: 0000000000000000 RDI: 0000000000000000
[  556.832275][T15504] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  556.832286][T15504] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  556.832296][T15504] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  556.832322][T15504]  </TASK>
[  556.969134][T15504] ERROR: Out of memory at tomoyo_realpath_from_path.
[  560.314339][T15548] debugfs: 'ttyS3' already exists in 'caif_serial'
[  560.326120][ T7572] usb 48-1: device descriptor read/8, error -110
[  560.690856][T15555] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2720'.
[  560.731786][ T7572] usb usb48-port1: attempt power cycle
[  560.803158][T15555] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  560.805807][T15555] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  560.810917][T15555] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  560.814155][T15555] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  561.311906][ T7572] usb usb48-port1: unable to enumerate USB device
[  561.664456][T15574] validate_nla: 2 callbacks suppressed
[  561.664473][T15574] netlink: 'syz.5.2727': attribute type 27 has an invalid length.
[  561.670060][T15574] netlink: 'syz.5.2727': attribute type 4 has an invalid length.
[  561.673695][T15574] netlink: 152 bytes leftover after parsing attributes in process `syz.5.2727'.
[  561.721347][ T6002] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  561.885136][ T6002] usb 5-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  561.888007][ T6002] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  561.890515][ T6002] usb 5-1: Product: syz
[  561.891921][ T6002] usb 5-1: Manufacturer: syz
[  561.893467][ T6002] usb 5-1: SerialNumber: syz
[  561.896156][ T6002] usb 5-1: config 0 descriptor??
[  562.184079][T15582] lo speed is unknown, defaulting to 1000
[  562.186714][T15582] lo speed is unknown, defaulting to 1000
[  562.187544][T15581] FAULT_INJECTION: forcing a failure.
[  562.187544][T15581] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  562.189547][T15581] 
[  562.189555][T15581] ======================================================
[  562.189561][T15581] WARNING: possible circular locking dependency detected
[  562.189571][T15581] syzkaller #0 Tainted: G             L     
[  562.189582][T15581] ------------------------------------------------------
[  562.189588][T15581] syz.5.2730/15581 is trying to acquire lock:
[  562.189597][T15581] ffffffff8e2d6a20 (console_owner){-.-.}-{0:0}, at: vprintk_emit+0x4c3/0x6b0
[  562.189646][T15581] 
[  562.189646][T15581] but task is already holding lock:
[  562.189651][T15581] ffff88802b43add8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130
[  562.189686][T15581] 
[  562.189686][T15581] which lock already depends on the new lock.
[  562.189686][T15581] 
[  562.189690][T15581] 
[  562.189690][T15581] the existing dependency chain (in reverse order) is:
[  562.189695][T15581] 
[  562.189695][T15581] -> #4 (&rq->__lock){-.-.}-{2:2}:
[  562.189713][T15581]        _raw_spin_lock_nested+0x31/0x40
[  562.189735][T15581]        raw_spin_rq_lock_nested+0x29/0x130
[  562.189756][T15581]        task_rq_lock+0xcf/0x490
[  562.189778][T15581]        cgroup_move_task+0x81/0x2a0
[  562.189801][T15581]        css_set_move_task+0x288/0x5f0
[  562.189827][T15581]        cgroup_post_fork+0x201/0x9e0
[  562.189851][T15581]        copy_process+0x56b6/0x7430
[  562.189874][T15581]        kernel_clone+0xfc/0x910
[  562.189896][T15581]        user_mode_thread+0xc8/0x110
[  562.189920][T15581]        rest_init+0x23/0x2b0
[  562.189936][T15581]        start_kernel+0x3ef/0x4d0
[  562.189962][T15581]        x86_64_start_reservations+0x18/0x30
[  562.189978][T15581]        x86_64_start_kernel+0x130/0x190
[  562.189993][T15581]        common_startup_64+0x13e/0x148
[  562.190012][T15581] 
[  562.190012][T15581] -> #3 (&p->pi_lock){-.-.}-{2:2}:
[  562.190034][T15581]        _raw_spin_lock_irqsave+0x3a/0x60
[  562.190055][T15581]        try_to_wake_up+0xb7/0x1860
[  562.190075][T15581]        __wake_up_common+0x135/0x1f0
[  562.190090][T15581]        __wake_up+0x31/0x60
[  562.190113][T15581]        tty_port_default_wakeup+0x4d/0x60
[  562.190136][T15581]        serial8250_tx_chars+0x68e/0x860
[  562.190163][T15581]        serial8250_handle_irq+0x761/0xcb0
[  562.190187][T15581]        serial8250_default_handle_irq+0x9e/0x270
[  562.190214][T15581]        serial8250_interrupt+0xf8/0x1d0
[  562.190231][T15581]        __handle_irq_event_percpu+0x236/0x890
[  562.190254][T15581]        handle_irq_event+0xab/0x1e0
[  562.190274][T15581]        handle_edge_irq+0x3ca/0x9e0
[  562.190294][T15581]        __common_interrupt+0xd0/0x2f0
[  562.190318][T15581]        common_interrupt+0xba/0xe0
[  562.190332][T15581]        asm_common_interrupt+0x26/0x40
[  562.190347][T15581]        pv_native_safe_halt+0xf/0x20
[  562.190366][T15581]        default_idle+0x13/0x20
[  562.190377][T15581]        default_idle_call+0x6c/0xb0
[  562.190390][T15581]        do_idle+0x38d/0x510
[  562.190406][T15581]        cpu_startup_entry+0x4f/0x60
[  562.190423][T15581]        start_secondary+0x21d/0x2d0
[  562.190435][T15581]        common_startup_64+0x13e/0x148
[  562.190451][T15581] 
[  562.190451][T15581] -> #2 (&tty->write_wait){-...}-{3:3}:
[  562.190469][T15581]        _raw_spin_lock_irqsave+0x3a/0x60
[  562.190489][T15581]        __wake_up+0x1c/0x60
[  562.190511][T15581]        tty_port_default_wakeup+0x4d/0x60
[  562.190536][T15581]        serial8250_tx_chars+0x68e/0x860
[  562.190560][T15581]        __start_tx+0x3df/0x490
[  562.190582][T15581]        serial8250_start_tx+0x368/0x530
[  562.190606][T15581]        __uart_start+0x295/0x500
[  562.190625][T15581]        uart_write+0x218/0xb30
[  562.190648][T15581]        n_tty_write+0x434/0x1280
[  562.190663][T15581]        file_tty_write.constprop.0+0x503/0x9b0
[  562.190686][T15581]        redirected_tty_write+0xd4/0x120
[  562.190708][T15581]        vfs_write+0x7d3/0x11d0
[  562.190730][T15581]        ksys_write+0x12a/0x250
[  562.190752][T15581]        do_syscall_64+0xcd/0xf80
[  562.190775][T15581]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  562.190791][T15581] 
[  562.190791][T15581] -> #1 (&port_lock_key){-.-.}-{3:3}:
[  562.190813][T15581]        _raw_spin_lock_irqsave+0x3a/0x60
[  562.190834][T15581]        serial8250_console_write+0x181/0x1890
[  562.190850][T15581]        console_flush_one_record+0x796/0xc60
[  562.190872][T15581]        console_unlock+0xef/0x240
[  562.190892][T15581]        vprintk_emit+0x407/0x6b0
[  562.190913][T15581]        _printk+0xc7/0x100
[  562.190928][T15581]        register_console+0x823/0x1210
[  562.190950][T15581]        univ8250_console_init+0x5f/0x90
[  562.190970][T15581]        console_init+0x152/0x600
[  562.190986][T15581]        start_kernel+0x298/0x4d0
[  562.191010][T15581]        x86_64_start_reservations+0x18/0x30
[  562.191025][T15581]        x86_64_start_kernel+0x130/0x190
[  562.191041][T15581]        common_startup_64+0x13e/0x148
[  562.191059][T15581] 
[  562.191059][T15581] -> #0 (console_owner){-.-.}-{0:0}:
[  562.191076][T15581]        __lock_acquire+0x1669/0x2890
[  562.191088][T15581]        lock_acquire+0x179/0x330
[  562.191100][T15581]        vprintk_emit+0x4d4/0x6b0
[  562.191117][T15581]        _printk+0xc7/0x100
[  562.191130][T15581]        should_fail_ex+0x4e7/0x640
[  562.191149][T15581]        strncpy_from_user+0x3b/0x2e0
[  562.191169][T15581]        strncpy_from_user_nofault+0x7f/0x180
[  562.191190][T15581]        bpf_bprintf_prepare+0xe90/0x13f0
[  562.191209][T15581]        bpf_trace_printk+0xda/0x190
[  562.191252][T15581]        bpf_prog_930ede9872f2967c+0x3e/0x44
[  562.191267][T15581]        bpf_trace_run2+0x239/0x5c0
[  562.191287][T15581]        __bpf_trace_contention_begin+0xc9/0x110
[  562.191301][T15581]        trace_contention_begin.constprop.0+0xd6/0x140
[  562.191318][T15581]        __pv_queued_spin_lock_slowpath+0x109/0xcf0
[  562.191341][T15581]        do_raw_spin_lock+0x20e/0x2b0
[  562.191359][T15581]        raw_spin_rq_lock_nested+0x7e/0x130
[  562.191380][T15581]        __schedule+0x331/0x6150
[  562.191401][T15581]        preempt_schedule_irq+0x51/0x90
[  562.191423][T15581]        irqentry_exit+0x1d8/0x8c0
[  562.191446][T15581]        asm_sysvec_reschedule_ipi+0x1a/0x20
[  562.191462][T15581]        __local_bh_enable_ip+0xac/0x120
[  562.191486][T15581]        hash_check_key.isra.0+0x78/0x1e0
[  562.191511][T15581]        hash_recvmsg_nokey+0x41/0x90
[  562.191533][T15581]        ____sys_recvmsg+0x5f9/0x6b0
[  562.191559][T15581]        ___sys_recvmsg+0x114/0x1a0
[  562.191578][T15581]        do_recvmmsg+0x55d/0x750
[  562.191597][T15581]        __sys_recvmmsg+0x21c/0x280
[  562.191618][T15581]        __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  562.191643][T15581]        __do_fast_syscall_32+0xe8/0x680
[  562.191668][T15581]        do_fast_syscall_32+0x32/0x80
[  562.191688][T15581]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  562.191706][T15581] 
[  562.191706][T15581] other info that might help us debug this:
[  562.191706][T15581] 
[  562.191710][T15581] Chain exists of:
[  562.191710][T15581]   console_owner --> &p->pi_lock --> &rq->__lock
[  562.191710][T15581] 
[  562.191731][T15581]  Possible unsafe locking scenario:
[  562.191731][T15581] 
[  562.191735][T15581]        CPU0                    CPU1
[  562.191739][T15581]        ----                    ----
[  562.191743][T15581]   lock(&rq->__lock);
[  562.191751][T15581]                                lock(&p->pi_lock);
[  562.191760][T15581]                                lock(&rq->__lock);
[  562.191770][T15581]   lock(console_owner);
[  562.191778][T15581] 
[  562.191778][T15581]  *** DEADLOCK ***
[  562.191778][T15581] 
[  562.191781][T15581] 2 locks held by syz.5.2730/15581:
[  562.191790][T15581]  #0: ffff88802b43add8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130
[  562.191825][T15581]  #1: ffffffff8e3c94a0 (rcu_read_lock){....}-{1:3}, at: bpf_trace_run2+0x1bc/0x5c0
[  562.191870][T15581] 
[  562.191870][T15581] stack backtrace:
[  562.191881][T15581] CPU: 2 UID: 0 PID: 15581 Comm: syz.5.2730 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  562.191906][T15581] Tainted: [L]=SOFTLOCKUP
[  562.191912][T15581] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  562.191924][T15581] Call Trace:
[  562.191930][T15581]  <TASK>
[  562.191937][T15581]  dump_stack_lvl+0x116/0x1f0
[  562.191964][T15581]  print_circular_bug+0x275/0x340
[  562.191988][T15581]  check_noncircular+0x146/0x160
[  562.192012][T15581]  __lock_acquire+0x1669/0x2890
[  562.192028][T15581]  lock_acquire+0x179/0x330
[  562.192041][T15581]  ? vprintk_emit+0x4c3/0x6b0
[  562.192060][T15581]  ? vprintk_emit+0x4b1/0x6b0
[  562.192085][T15581]  vprintk_emit+0x4d4/0x6b0
[  562.192107][T15581]  ? vprintk_emit+0x4c3/0x6b0
[  562.192130][T15581]  ? __pfx_vprintk_emit+0x10/0x10
[  562.192161][T15581]  _printk+0xc7/0x100
[  562.192179][T15581]  ? __pfx__printk+0x10/0x10
[  562.192197][T15581]  ? bpf_put_buffers+0x44/0x70
[  562.192216][T15581]  ? bpf_bprintf_cleanup+0x34/0x80
[  562.192236][T15581]  ? __pfx____ratelimit+0x10/0x10
[  562.192261][T15581]  should_fail_ex+0x4e7/0x640
[  562.192279][T15581]  ? bpf_trace_run2+0x3f9/0x5c0
[  562.192303][T15581]  strncpy_from_user+0x3b/0x2e0
[  562.192322][T15581]  strncpy_from_user_nofault+0x7f/0x180
[  562.192344][T15581]  bpf_bprintf_prepare+0xe90/0x13f0
[  562.192367][T15581]  ? __pfx_bpf_bprintf_prepare+0x10/0x10
[  562.192391][T15581]  ? bpf_trace_run2+0x3f9/0x5c0
[  562.192412][T15581]  bpf_trace_printk+0xda/0x190
[  562.192430][T15581]  ? __pfx_bpf_trace_printk+0x10/0x10
[  562.192451][T15581]  ? bpf_trace_run2+0x3f9/0x5c0
[  562.192475][T15581]  bpf_prog_930ede9872f2967c+0x3e/0x44
[  562.192486][T15581]  bpf_trace_run2+0x239/0x5c0
[  562.192507][T15581]  ? __pfx_bpf_trace_run2+0x10/0x10
[  562.192531][T15581]  __bpf_trace_contention_begin+0xc9/0x110
[  562.192546][T15581]  ? __pfx___bpf_trace_contention_begin+0x10/0x10
[  562.192562][T15581]  ? is_bpf_text_address+0x8a/0x1a0
[  562.192585][T15581]  ? bpf_ksym_find+0x124/0x1c0
[  562.192603][T15581]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  562.192631][T15581]  ? is_bpf_text_address+0x94/0x1a0
[  562.192654][T15581]  ? kernel_text_address+0x8d/0x100
[  562.192675][T15581]  trace_contention_begin.constprop.0+0xd6/0x140
[  562.192697][T15581]  __pv_queued_spin_lock_slowpath+0x109/0xcf0
[  562.192721][T15581]  ? __lock_acquire+0x436/0x2890
[  562.192734][T15581]  ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[  562.192756][T15581]  ? stack_trace_save+0x8e/0xc0
[  562.192781][T15581]  do_raw_spin_lock+0x20e/0x2b0
[  562.192801][T15581]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  562.192821][T15581]  ? rcu_qs+0x2b/0xe0
[  562.192844][T15581]  ? rcu_note_context_switch+0x191/0x1de0
[  562.192871][T15581]  raw_spin_rq_lock_nested+0x7e/0x130
[  562.192894][T15581]  ? preempt_schedule_irq+0x51/0x90
[  562.192919][T15581]  __schedule+0x331/0x6150
[  562.192946][T15581]  ? __lock_acquire+0x436/0x2890
[  562.192962][T15581]  ? __pfx___schedule+0x10/0x10
[  562.192983][T15581]  ? __lock_acquire+0x436/0x2890
[  562.192999][T15581]  ? __lock_acquire+0x436/0x2890
[  562.193015][T15581]  preempt_schedule_irq+0x51/0x90
[  562.193039][T15581]  irqentry_exit+0x1d8/0x8c0
[  562.193063][T15581]  ? rcu_is_watching+0x12/0xc0
[  562.193088][T15581]  asm_sysvec_reschedule_ipi+0x1a/0x20
[  562.193108][T15581] RIP: 0010:__local_bh_enable_ip+0xac/0x120
[  562.193131][T15581] Code: 1d c9 86 34 12 65 8b 05 c2 86 34 12 a9 00 ff ff 00 74 4d bf 01 00 00 00 e8 71 28 0c 00 e8 ac ce 48 00 fb 65 8b 05 a4 86 34 12 <85> c0 74 52 5b 5d e9 09 da fa 09 65 8b 05 2e ca 34 12 85 c0 75 9e
[  562.193172][T15581] RSP: 0018:ffffc90002df7938 EFLAGS: 00000206
[  562.193184][T15581] RAX: 0000000080000000 RBX: 00000000fffffe00 RCX: ffffffff81c6773f
[  562.193194][T15581] RDX: 0000000000000000 RSI: ffffffff8daca17d RDI: ffffffff8bf2b500
[  562.193203][T15581] RBP: ffffffff847e9718 R08: 0000000000000001 R09: 0000000000000001
[  562.193213][T15581] R10: ffffffff9088e2d7 R11: ffff888023150b30 R12: ffff8880283ec584
[  562.193222][T15581] R13: 0000000000000000 R14: 0000000080000060 R15: 0000000080000060
[  562.193232][T15581]  ? hash_check_key.isra.0+0x78/0x1e0
[  562.193254][T15581]  ? trace_irq_enable.constprop.0+0x2f/0x110
[  562.193279][T15581]  ? __local_bh_enable_ip+0xa4/0x120
[  562.193299][T15581]  hash_check_key.isra.0+0x78/0x1e0
[  562.193323][T15581]  hash_recvmsg_nokey+0x41/0x90
[  562.193348][T15581]  ____sys_recvmsg+0x5f9/0x6b0
[  562.193376][T15581]  ? __pfx_____sys_recvmsg+0x10/0x10
[  562.193402][T15581]  ? import_iovec+0x86/0xb0
[  562.193423][T15581]  ? __lock_acquire+0x436/0x2890
[  562.193442][T15581]  ___sys_recvmsg+0x114/0x1a0
[  562.193463][T15581]  ? __pfx____sys_recvmsg+0x10/0x10
[  562.193487][T15581]  ? find_held_lock+0x2b/0x80
[  562.193513][T15581]  ? __pfx___might_resched+0x10/0x10
[  562.193540][T15581]  do_recvmmsg+0x55d/0x750
[  562.193563][T15581]  ? __pfx_do_recvmmsg+0x10/0x10
[  562.193584][T15581]  ? finish_task_switch.isra.0+0x207/0xbd0
[  562.193609][T15581]  ? rcu_is_watching+0x12/0xc0
[  562.193634][T15581]  ? __schedule+0x10b9/0x6150
[  562.193656][T15581]  ? __schedule+0x114c/0x6150
[  562.193684][T15581]  __sys_recvmmsg+0x21c/0x280
[  562.193707][T15581]  ? __pfx___sys_recvmmsg+0x10/0x10
[  562.193730][T15581]  ? rcu_is_watching+0x12/0xc0
[  562.193756][T15581]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  562.193780][T15581]  ? __do_fast_syscall_32+0x9a/0x680
[  562.193807][T15581]  ? lockdep_hardirqs_on+0x7c/0x110
[  562.193832][T15581]  __do_fast_syscall_32+0xe8/0x680
[  562.193859][T15581]  do_fast_syscall_32+0x32/0x80
[  562.193887][T15581]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  562.193908][T15581] RIP: 0023:0xf707d579
[  562.193920][T15581] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  562.193937][T15581] RSP: 002b:00000000f544c55c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  562.193954][T15581] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000800053c0
[  562.193966][T15581] RDX: 0000000000000a32 RSI: 0000000000000060 RDI: 0000000000000000
[  562.193978][T15581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  562.193988][T15581] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  562.193999][T15581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  562.194016][T15581]  </TASK>
[  562.194768][T15582] lo speed is unknown, defaulting to 1000
[  562.195063][T15581] CPU: 2 UID: 0 PID: 15581 Comm: syz.5.2730 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  562.195084][T15581] Tainted: [L]=SOFTLOCKUP
[  562.195089][T15581] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  562.195098][T15581] Call Trace:
[  562.195103][T15581]  <TASK>
[  562.195109][T15581]  dump_stack_lvl+0x116/0x1f0
[  562.195130][T15581]  should_fail_ex+0x512/0x640
[  562.195146][T15581]  ? bpf_trace_run2+0x3f9/0x5c0
[  562.195179][T15581]  strncpy_from_user+0x3b/0x2e0
SYZFAIL: failed to recv rpc
[  562.195197][T15581]  strncpy_from_user_nofault+0x7f/0x180
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  562.195220][T15581]  bpf_bprintf_prepare+0xe90/0x13f0
[  562.195244][T15581]  ? __pfx_bpf_bprintf_prepare+0x10/0x10
[  562.195270][T15581]  ? bpf_trace_run2+0x3f9/0x5c0
[  562.195294][T15581]  bpf_trace_printk+0xda/0x190
[  562.195313][T15581]  ? __pfx_bpf_trace_printk+0x10/0x10
[  562.195334][T15581]  ? bpf_trace_run2+0x3f9/0x5c0
[  562.195357][T15581]  bpf_prog_930ede9872f2967c+0x3e/0x44
[  562.195369][T15581]  bpf_trace_run2+0x239/0x5c0
[  562.195391][T15581]  ? __pfx_bpf_trace_run2+0x10/0x10
[  562.195420][T15581]  __bpf_trace_contention_begin+0xc9/0x110
[  562.195438][T15581]  ? __pfx___bpf_trace_contention_begin+0x10/0x10
[  562.195456][T15581]  ? is_bpf_text_address+0x8a/0x1a0
[  562.195480][T15581]  ? bpf_ksym_find+0x124/0x1c0
[  562.195499][T15581]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  562.195528][T15581]  ? is_bpf_text_address+0x94/0x1a0
[  562.195551][T15581]  ? kernel_text_address+0x8d/0x100
[  562.195572][T15581]  trace_contention_begin.constprop.0+0xd6/0x140
[  562.195594][T15581]  __pv_queued_spin_lock_slowpath+0x109/0xcf0
[  562.195621][T15581]  ? __lock_acquire+0x436/0x2890
[  562.195637][T15581]  ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[  562.195664][T15581]  ? stack_trace_save+0x8e/0xc0
[  562.195693][T15581]  do_raw_spin_lock+0x20e/0x2b0
[  562.195713][T15581]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  562.195733][T15581]  ? rcu_qs+0x2b/0xe0
[  562.195756][T15581]  ? rcu_note_context_switch+0x191/0x1de0
[  562.195782][T15581]  raw_spin_rq_lock_nested+0x7e/0x130
[  562.195807][T15581]  ? preempt_schedule_irq+0x51/0x90
[  562.195832][T15581]  __schedule+0x331/0x6150
[  562.195860][T15581]  ? __lock_acquire+0x436/0x2890
[  562.195877][T15581]  ? __pfx___schedule+0x10/0x10
[  562.195897][T15581]  ? __lock_acquire+0x436/0x2890
[  562.195914][T15581]  ? __lock_acquire+0x436/0x2890
[  562.195932][T15581]  preempt_schedule_irq+0x51/0x90
[  562.195956][T15581]  irqentry_exit+0x1d8/0x8c0
[  562.195981][T15581]  ? rcu_is_watching+0x12/0xc0
[  562.196007][T15581]  asm_sysvec_reschedule_ipi+0x1a/0x20
[  562.196026][T15581] RIP: 0010:__local_bh_enable_ip+0xac/0x120
[  562.196052][T15581] Code: 1d c9 86 34 12 65 8b 05 c2 86 34 12 a9 00 ff ff 00 74 4d bf 01 00 00 00 e8 71 28 0c 00 e8 ac ce 48 00 fb 65 8b 05 a4 86 34 12 <85> c0 74 52 5b 5d e9 09 da fa 09 65 8b 05 2e ca 34 12 85 c0 75 9e
[  562.196070][T15581] RSP: 0018:ffffc90002df7938 EFLAGS: 00000206
[  562.196085][T15581] RAX: 0000000080000000 RBX: 00000000fffffe00 RCX: ffffffff81c6773f
[  562.196097][T15581] RDX: 0000000000000000 RSI: ffffffff8daca17d RDI: ffffffff8bf2b500
[  562.196109][T15581] RBP: ffffffff847e9718 R08: 0000000000000001 R09: 0000000000000001
[  562.196121][T15581] R10: ffffffff9088e2d7 R11: ffff888023150b30 R12: ffff8880283ec584
[  562.196133][T15581] R13: 0000000000000000 R14: 0000000080000060 R15: 0000000080000060
[  562.196146][T15581]  ? hash_check_key.isra.0+0x78/0x1e0
[  562.196177][T15581]  ? trace_irq_enable.constprop.0+0x2f/0x110
[  562.196208][T15581]  ? __local_bh_enable_ip+0xa4/0x120
[  562.196233][T15581]  hash_check_key.isra.0+0x78/0x1e0
[  562.196258][T15581]  hash_recvmsg_nokey+0x41/0x90
[  562.196284][T15581]  ____sys_recvmsg+0x5f9/0x6b0
[  562.196313][T15581]  ? __pfx_____sys_recvmsg+0x10/0x10
[  562.196338][T15581]  ? import_iovec+0x86/0xb0
[  562.196360][T15581]  ? __lock_acquire+0x436/0x2890
[  562.196376][T15581]  ___sys_recvmsg+0x114/0x1a0
[  562.196399][T15581]  ? __pfx____sys_recvmsg+0x10/0x10
[  562.196421][T15581]  ? find_held_lock+0x2b/0x80
[  562.196446][T15581]  ? __pfx___might_resched+0x10/0x10
[  562.196473][T15581]  do_recvmmsg+0x55d/0x750
[  562.196496][T15581]  ? __pfx_do_recvmmsg+0x10/0x10
[  562.196515][T15581]  ? finish_task_switch.isra.0+0x207/0xbd0
[  562.196539][T15581]  ? rcu_is_watching+0x12/0xc0
[  562.196563][T15581]  ? __schedule+0x10b9/0x6150
[  562.196585][T15581]  ? __schedule+0x114c/0x6150
[  562.196613][T15581]  __sys_recvmmsg+0x21c/0x280
[  562.196636][T15581]  ? __pfx___sys_recvmmsg+0x10/0x10
[  562.196660][T15581]  ? rcu_is_watching+0x12/0xc0
[  562.196684][T15581]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  562.196708][T15581]  ? __do_fast_syscall_32+0x9a/0x680
[  562.196735][T15581]  ? lockdep_hardirqs_on+0x7c/0x110
[  562.196757][T15581]  __do_fast_syscall_32+0xe8/0x680
[  562.196784][T15581]  do_fast_syscall_32+0x32/0x80
[  562.196810][T15581]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  562.196830][T15581] RIP: 0023:0xf707d579
[  562.196844][T15581] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  562.196861][T15581] RSP: 002b:00000000f544c55c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  562.196876][T15581] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000800053c0
[  562.196886][T15581] RDX: 0000000000000a32 RSI: 0000000000000060 RDI: 0000000000000000
[  562.196897][T15581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  562.196907][T15581] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  562.196917][T15581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  562.196933][T15581]  </TASK>
[  562.801299][ T5946] Bluetooth: hci4: command 0x0c1a tx timeout
[  562.827245][T15582] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  562.894770][ T5946] Bluetooth: hci1: command 0x0c1a tx timeout
[  562.896782][ T5946] Bluetooth: hci2: command 0x0c1a tx timeout
[  562.898744][ T5946] Bluetooth: hci3: command 0x0405 tx timeout
[  562.945949][T15582] lo speed is unknown, defaulting to 1000
[  563.007834][T15582] lo speed is unknown, defaulting to 1000
[  563.013803][T15582] lo speed is unknown, defaulting to 1000
[  563.019239][T15582] lo speed is unknown, defaulting to 1000
[  563.023927][T15582] lo speed is unknown, defaulting to 1000
[  563.282958][ T7099] smc: removing ib device syz1
[  563.469862][ T6483] syz1: Port: 1 Link DOWN
[  563.921552][ T8546] usb 5-1: USB disconnect, device number 19
[  564.426019][ T6905] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  564.430345][ T6905] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  564.434327][ T6905] bond0 (unregistering): Released all slaves
[  564.438537][ T6905] bond1 (unregistering): Released all slaves
[  564.524125][ T6905] bond2 (unregistering): Released all slaves
[  564.889485][ T6905] hsr_slave_0: left promiscuous mode
[  564.892209][ T6905] hsr_slave_1: left promiscuous mode
[  564.894698][ T6905] batman_adv: batadv0: Removing interface: batadv_slave_0
[  564.897897][ T6905] batman_adv: batadv0: Removing interface: batadv_slave_1
[  565.051403][ T6905] team0 (unregistering): Port device team_slave_1 removed
[  565.073968][ T6905] team0 (unregistering): Port device team_slave_0 removed
[  565.635922][ T6905] IPVS: stop unused estimator thread 0...
[  565.687610][ T6905] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  565.747123][ T6905] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  565.814738][ T6905] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  565.868867][ T6905] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  565.963613][ T6905] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  566.035940][ T6905] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  566.084501][ T6905] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  566.149333][ T6905] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  566.225374][ T6905] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  566.274697][ T6905] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  566.354513][ T6905] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  566.418585][ T6905] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  566.504529][ T6905] bridge_slave_1: left allmulticast mode
[  566.506615][ T6905] bridge_slave_1: left promiscuous mode
[  566.508433][ T6905] bridge0: port 2(bridge_slave_1) entered disabled state
[  566.511594][ T6905] bridge_slave_0: left allmulticast mode
[  566.513487][ T6905] bridge_slave_0: left promiscuous mode
[  566.515727][ T6905] bridge0: port 1(bridge_slave_0) entered disabled state
[  566.519615][ T6905] bridge_slave_1: left allmulticast mode
[  566.521959][ T6905] bridge_slave_1: left promiscuous mode
[  566.524185][ T6905] bridge0: port 2(bridge_slave_1) entered disabled state
[  566.527961][ T6905] bridge_slave_0: left allmulticast mode
[  566.530130][ T6905] bridge_slave_0: left promiscuous mode
[  566.532605][ T6905] bridge0: port 1(bridge_slave_0) entered disabled state
[  566.670992][ T6905] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  566.675945][ T6905] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  566.679743][ T6905] bond0 (unregistering): Released all slaves
[  566.698461][ T6905] bond1 (unregistering): (slave gretap1): Releasing active interface
[  566.778142][ T6905] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  566.781816][ T6905] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  566.785045][ T6905] bond0 (unregistering): Released all slaves
[  566.851796][ T6905] bond1 (unregistering): Released all slaves
[  566.871953][ T6905] bond5 (unregistering): (slave gretap1): Releasing active interface
[  567.092700][ T6905] bond0 (unregistering): Released all slaves
[  567.169279][ T6905] bond1 (unregistering): Released all slaves
[  567.173955][ T6905] bond2 (unregistering): Released all slaves
[  567.252608][ T6905] bond3 (unregistering): Released all slaves
[  567.334869][ T6905] bond4 (unregistering): (slave veth5): Releasing active interface
[  567.338034][ T6905] bond4 (unregistering): Released all slaves
[  567.406721][ T6905] bond5 (unregistering): Released all slaves
[  567.452720][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  567.454714][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  567.522205][ T6905] : left promiscuous mode
[  567.576240][ T6905] tipc: Disabling bearer <udp:syz2>
[  567.578247][ T6905] tipc: Left network mode
[  568.051041][ T6905] hsr_slave_0: left promiscuous mode
[  568.053258][ T6905] hsr_slave_1: left promiscuous mode
[  568.055168][ T6905] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  568.057522][ T6905] batman_adv: batadv0: Removing interface: batadv_slave_0
[  568.060031][ T6905] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  568.062461][ T6905] batman_adv: batadv0: Removing interface: batadv_slave_1
[  568.066175][ T6905] hsr_slave_0: left promiscuous mode
[  568.068102][ T6905] hsr_slave_1: left promiscuous mode
[  568.069981][ T6905] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  568.072363][ T6905] batman_adv: batadv0: Removing interface: batadv_slave_0
[  568.074893][ T6905] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  568.077216][ T6905] batman_adv: batadv0: Removing interface: batadv_slave_1
[  568.083454][ T6905] hsr_slave_0: left promiscuous mode
[  568.085538][ T6905] hsr_slave_1: left promiscuous mode
[  568.095477][ T6905] veth1_macvtap: left promiscuous mode
[  568.097829][ T6905] veth0_macvtap: left promiscuous mode
[  568.100176][ T6905] veth1_vlan: left promiscuous mode
[  568.102215][ T6905] veth0_vlan: left promiscuous mode
[  568.104412][ T6905] veth1_macvtap: left promiscuous mode
[  568.106204][ T6905] veth0_macvtap: left promiscuous mode
[  568.107993][ T6905] veth1_vlan: left promiscuous mode
[  568.109710][ T6905] veth0_vlan: left promiscuous mode
[  568.111940][ T6905] veth1_macvtap: left promiscuous mode
[  568.113780][ T6905] veth0_macvtap: left promiscuous mode
[  568.115562][ T6905] veth1_vlan: left promiscuous mode
[  568.117269][ T6905] veth0_vlan: left promiscuous mode
[  568.185120][ T6905] team0 (unregistering): Port device batadv1 removed
[  568.254131][ T6905] team0 (unregistering): Port device team_slave_1 removed
[  568.272062][ T6905] team0 (unregistering): Port device team_slave_0 removed
[  568.395669][ T6905] team0 (unregistering): Port device team_slave_1 removed
[  568.409637][ T6905] team0 (unregistering): Port device team_slave_0 removed
[  568.704353][T14396] lo speed is unknown, defaulting to 1000
[  568.706856][T14396] infiniband syz2: ib_query_port failed (-19)
[  569.600132][ T6905] IPVS: stop unused estimator thread 0...