last executing test programs:

12.120924071s ago: executing program 0 (id=2295):
connect$inet6(0xffffffffffffffff, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
socket$inet(0x2, 0x3, 0x30)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
mount(&(0x7f0000000140)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080)='qnx6\x00', 0x208800, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_REAPURB(r1, 0x4008550c, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x401eb94)
sigaltstack(&(0x7f00000000c0)={&(0x7f0000001740)=""/4104, 0x48a3c1a69aa87a5, 0x1008}, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000280)={0xa, 0xe1b, 0x3, @mcast1, 0xfffffffc}, 0x1c)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x81, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(r3, 0x4068aea3, &(0x7f0000000040)={0x79, 0x0, 0xc})
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f00000007c0)={"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"})
ioctl$KVM_IRQ_LINE(r3, 0x4008ae61, &(0x7f00000000c0)={0x0, 0x8})
r4 = syz_clone(0x80842111, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x0, r4, 0x0, 0x4, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYRES8, @ANYRES16, @ANYBLOB="0300"/20, @ANYRESHEX=r4, @ANYRES8=r3], 0x50)
r5 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
syz_usb_control_io(r5, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000000100)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

11.321328468s ago: executing program 2 (id=2297):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000040)=0x90000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@local})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r0, 0x7a8, &(0x7f0000000540)={{@hyper, 0x2}, @hyper, 0x0, 0x0, 0x5e})
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, 0x0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000100)={@hyper})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r1, 0x7a8, &(0x7f0000000540)={{@hyper, 0x2}, @any, 0xc, 0x4, 0x5e, 0x6, 0x4, 0x1c, 0x4})

10.382778476s ago: executing program 1 (id=2299):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$smc(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SMC_PNETID_DEL(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x40030000000000, 0x0, 0x800}, 0x80)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, 0x0, 0x0)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x282, 0x0)
r6 = dup(r5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000007, 0x38011, r6, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x14)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)

8.960941082s ago: executing program 1 (id=2300):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x0, 0x0, &(0x7f0000000000)='syzkaller\x00'}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="0b00000007000000010001000900000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00d9000000c3291a56c008d02a000000e7fffff7ffffffff00000000"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x11}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
syz_genetlink_get_family_id$fou(&(0x7f0000000100), r3)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000680)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010300000000000000001c0000001800018014000200766574683000000000000000000000000321bc7b83e0254e3ed35ae6be77b222c27ffc799ef3075c3d316e8cd142742649a26115be71151a45dc1b4896ef47c8fa08160095d05c086a290008000000922e1455ae0abb1a22f5c883b47a8f1485faf88b1dcf335525adbaed193c2bbcf6744aaf12c586880a2d343a4e4b3ced78436297ee3326"], 0x2c}, 0x1, 0x0, 0x0, 0x20040005}, 0x40040)

8.900707427s ago: executing program 0 (id=2301):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), r0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={0xffffffffffffffff, 0x20, &(0x7f0000000300)={0x0, 0x0, <r4=>0x0, &(0x7f00000003c0)=""/195, 0xc3}}, 0x10)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='contention_begin\x00', r5}, 0x18)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4, r5, 0x0, 0x0, 0x0, 0x0, 0xb}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
r7 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42f82, 0x0)
ioctl$SNDCTL_DSP_SPEED(r7, 0xc0045002, &(0x7f0000000240))
write$dsp(r7, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)

7.527975572s ago: executing program 1 (id=2303):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000680)='sys_exit\x00'}, 0x18)
lsm_set_self_attr(0x66, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usbip_server_init(0x6)
r3 = socket$netlink(0x10, 0x3, 0x15)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000400)={&(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x8, 0x80000})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000140)='syzkaller\x00', 0x6, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
sendmsg$nl_route(r3, &(0x7f0000000480)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x8000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x4040)
pipe(&(0x7f0000000080)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x4048084)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010001fff752b056800080000faff8141", @ANYRES32=0x0, @ANYBLOB="67a9fde500000000280012800a00010076786c616e"], 0x3}}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_misc(r6, &(0x7f0000000000), 0xfffffecc)
splice(r5, 0x0, r7, 0x0, 0x4ffe6, 0x0)

7.340480768s ago: executing program 3 (id=2304):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a3c000000090a010400000000000000000a0000040900010073797a3100000000080005400000000209000200737997"], 0x64}}, 0x24000000) (async, rerun: 32)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f00000001c0)=<r0=>0x0) (rerun: 32)
prlimit64(r0, 0x0, 0x0, &(0x7f0000000200)) (async, rerun: 32)
socket$packet(0x11, 0x3, 0x300) (async, rerun: 32)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x3, &(0x7f00000007c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x74d, 0x0, 0x0, 0x0, 0x7ff}, {{0x18, 0x1, 0x1, 0x0, 0x1}}, {}, [@btf_id={0x18, 0x7, 0x3, 0x0, 0x3}, @cb_func={0x18, 0x5, 0x4, 0x0, 0x2}, @printk={@lld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x2}}, @map_val={0x18, 0x9, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xfffffffb}, @map_fd={0x18, 0x5}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000300)='syzkaller\x00'}, 0xffffffffffffff82)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='contention_end\x00', r1}, 0x10) (async, rerun: 32)
mkdir(0x0, 0x1) (async, rerun: 32)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}]}) (async)
syz_init_net_socket$ax25(0x3, 0x2, 0x0)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
bind$rxrpc(r2, &(0x7f0000000100)=@in6={0x21, 0x3, 0x2, 0x1c, {0xa, 0x4e22, 0x9, @loopback, 0x3}}, 0x24)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async, rerun: 32)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) (rerun: 32)
r4 = dup(r3) (async)
r5 = syz_io_uring_setup(0x239, 0x0, 0x0, 0x0)
io_uring_enter(r5, 0x2def, 0x0, 0x0, 0x0, 0x0)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd74) (async, rerun: 32)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, 0x0) (async, rerun: 32)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000100)={0x0, 0x0}) (async)
r6 = syz_io_uring_setup(0x497, &(0x7f0000000400)={0x0, 0x717e, 0x4, 0x14, 0x193}, &(0x7f0000000140)=<r7=>0x0, &(0x7f0000000180)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x114, &(0x7f0000000080)=0xfffffffa, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r6, 0x3516, 0x0, 0x0, 0x0, 0x0) (async)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SET_TUNSRC(r9, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000006c0)=ANY=[@ANYBLOB="28000000c234be75634bd5a8703751b7a2de87dfe078b8ada66b6e337f7729ff32eddcf6dacd1df01ce0e18fb6522af9db21ed95c4e5379b570df7719334bc220c9a1fa777ee4fd22dd99409991c7ca1407048370b4422176aad718986a996d572fb8c7f0eb68b518e031b3ed96ef13f0b557c759738b54787237e6bc26e3aff46f9fc2a95bdd1d0b71de01adfa6698f9d458a47b1820754418d1b38258a15bb0762382131dd6312b8add2acdba6cf5949", @ANYRES16=r10, @ANYBLOB="010026bd7000fcdbdf25030000001400010000000000000000000000000000000001"], 0x28}, 0x1, 0x0, 0x0, 0x40004801}, 0x24004880) (async)
fcntl$addseals(r1, 0x409, 0x0)
openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r11 = syz_open_dev$sndctrl(&(0x7f0000002b80), 0x1, 0x8000)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r11, 0xc2c45513, &(0x7f0000002e00)={{0x8, 0x7, 0x7, 0x2, 'syz0\x00', 0x7b}, 0x0, [0x8, 0x200000a, 0x1000, 0x0, 0xb3d, 0x7fffffff, 0x6, 0x5, 0xbc0, 0x7, 0x15b, 0x7, 0x5944, 0x5, 0x7, 0x8004a7, 0x9, 0x5, 0xb, 0x1, 0x2c, 0x400, 0x2000040, 0x10000000, 0x7, 0x0, 0x2, 0x800, 0x3, 0x3, 0x4, 0x6, 0x6, 0xfff, 0x3ff, 0x1, 0x5, 0x3, 0x5, 0x6, 0x3, 0x7fff, 0xffff8007, 0xe, 0xe, 0x0, 0x2, 0x5, 0xe, 0x4, 0x9, 0x80000001, 0x400, 0x1ff, 0x9, 0xfffff647, 0x408, 0x4, 0x1, 0x7, 0x8, 0x1, 0x5, 0x8, 0x98, 0xbe, 0x1, 0xa, 0x7, 0x80000000, 0x81, 0x10001, 0x2, 0x80000001, 0x69e, 0xb, 0x7000000, 0x1, 0x8, 0x9, 0x7, 0x9, 0x1, 0x3, 0xfffffffd, 0xffff, 0x6, 0x8, 0x7ff, 0x4, 0xef, 0xff, 0x4, 0x3, 0xf86, 0x58a0, 0x1, 0x9, 0x895, 0x6, 0x9, 0x89, 0xfffffffe, 0xa1a9, 0xe0b2, 0x9, 0xfffff561, 0x12, 0x3, 0x3, 0xfffffffa, 0x3, 0x2, 0x1, 0x2ba, 0x1, 0xe, 0x5, 0x8, 0x2, 0xf2, 0x4, 0x1ff, 0x7, 0x2, 0x7, 0x6, 0xff]})

7.180689405s ago: executing program 3 (id=2305):
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xe, 0xc, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000073000000850000005000000095", @ANYBLOB="81b738187922e3a0048bafe4159ea0c98ccb336d29387065334645a39d4b7f61f02d0de8ded8376b2b53e22194ad496b5dd171789e"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001b40)={&(0x7f0000000100)='kfree\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000c80)={0x3, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000000000001000000000000009500000000000000af8536b0383beaf785d7dd02ea47e86d2532ccf23d2aa21f534ec8252741e31bcfe6dfa421e7f493bca332e392057a2c0748bf04bcac24caf17efcdef1ae2f0ad877177e4b7bea18ee6138574419de04233b62efd379be"], &(0x7f0000000c40)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_open_procfs(0x0, &(0x7f0000000140)='attr\x00')
socket$kcm(0xa, 0x2, 0x3a)
r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000940), 0x1, 0x0)
ioctl$SNAPSHOT_S2RAM(r1, 0x3314)
syz_open_dev$loop(&(0x7f0000000180), 0x7, 0x2480)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_rdma(0x10, 0x3, 0x14)
r2 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
ioctl$VIDIOC_ENUMOUTPUT(r2, 0xc0485630, &(0x7f00000000c0)={0x1, "88f1a5cba41c8af902c6226cc92604e5cd02b679c0eaa5a869f54557f879cff5", 0x3, 0x8, 0x9, 0x20, 0x8})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000640), r3)
sendmsg$MPTCP_PM_CMD_GET_ADDR(r3, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000ac0)={0x20, r4, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@MPTCP_PM_ATTR_TOKEN={0x8}, @MPTCP_PM_ATTR_ADDR={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x800}, 0x4)
socket$inet(0x2, 0x2, 0x0)
fsopen(&(0x7f0000000000)='f2fs\x00', 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r5 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r5, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r5, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r6=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_ATOMIC(r5, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r6], &(0x7f0000000180), &(0x7f0000000200), &(0x7f00000001c0), 0x0, 0x1})

7.017091884s ago: executing program 3 (id=2306):
socket$can_j1939(0x1d, 0x2, 0x7)
socket$netlink(0x10, 0x3, 0xb)
socket(0x1e, 0x4, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC, @ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
setuid(0xee01)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r4 = socket(0xa, 0x3, 0xff)
setsockopt$inet_mreq(r4, 0x0, 0x23, 0x0, 0x0)
unshare(0x22020600)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
chdir(&(0x7f0000000080)='./file1\x00')
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r5, 0xffffffff80000800, 0x0, &(0x7f00000000c0)={0x0, 0x800000000009, 0x9, 0x4, 0x0, 0x0, 0xffffffffffffffff, 0x3, 0xfffffffb})
syz_open_procfs$namespace(0x0, &(0x7f0000000140)='ns/mnt\x00')

6.396403177s ago: executing program 2 (id=2298):
openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x4500, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, 0x0, 0x0}, 0x94)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x800448d2, &(0x7f0000000100))
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r1, 0x8b19, &(0x7f0000000040)={'wlan1\x00', @random="3c09f3ff0200"})
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x1, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x100b, 0x8000000000002})
r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$RTC_ALM_READ(r3, 0x40187013, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0)
r5 = socket$inet(0x2, 0x6000000000000001, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000700)={'syz0\x00', {0x0, 0x0, 0x0, 0x9}, 0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0xfffffffc, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x80000000, 0x0, 0x0, 0x0, 0x8, 0x0, 0x2000001, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0xfffffffc, 0x4, 0xfffffefe, 0x0, 0xf6, 0x0, 0x0, 0x3, 0x1, 0x9, 0x0, 0x0, 0x80001ff, 0x4, 0x0, 0x1, 0x7fffffff, 0x2, 0x0, 0xfffffffd, 0x5, 0x0, 0xfdfffffe, 0x4, 0x0, 0x0, 0x0, 0x0, 0x5, 0xfffffffe, 0xffffffff, 0x7b67], [0x0, 0x0, 0x0, 0x3, 0x3, 0x0, 0xfffffffe, 0x3, 0x0, 0x0, 0x9b05, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x0, 0xfffffff8, 0xfffffffc, 0x2, 0x0, 0x5, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x4, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x6, 0x0, 0xffffffff, 0xfffffffc, 0x0, 0x0, 0xc0000, 0xffffffff, 0x1a0d, 0x39, 0xaecd, 0x0, 0x0, 0x3], [0x1, 0x0, 0x567, 0x4, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000005, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x101, 0xfffffffe, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffd, 0x0, 0x0, 0x4000000d, 0xffffffff, 0x0, 0x9, 0x3, 0x0, 0x14, 0x1, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, 0x1d, 0x400, 0x0, 0xed0, 0x4000002], [0x0, 0x1ff, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffe, 0xf7b, 0x0, 0x0, 0x0, 0x4080, 0x10000, 0x0, 0x0, 0x8, 0x0, 0x3e8, 0xfffffffd, 0x10000001, 0x0, 0x0, 0x5861, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0xf, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x101, 0xfffffffe, 0x0, 0x5, 0x0, 0xfffffffe]}, 0x45c)
syz_open_dev$vbi(&(0x7f0000000140), 0x3, 0x2)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000a00)=ANY=[@ANYBLOB="400000001800150000000000ffffffff0a2000000202000000000000240009801c00000008000000140005"], 0x40}], 0x1}, 0x0)
mmap(&(0x7f0000001000/0x200000)=nil, 0x200000, 0x2000001, 0x2011, r5, 0x0)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
dup3(r4, r2, 0x0)
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r7, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r7, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a, 0x4})
keyctl$set_timeout(0xf, 0x0, 0x960)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000180)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

6.170899214s ago: executing program 2 (id=2307):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$smc(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SMC_PNETID_DEL(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x14, r5, 0x1, 0x0, 0x200004, {0x2, 0x2, 0x2}}, 0x14}, 0x1, 0x40030000000000, 0x0, 0x800}, 0x80)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, 0x0, 0x0)
r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x282, 0x0)
r7 = dup(r6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000007, 0x38011, r7, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x14)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)

5.816351373s ago: executing program 0 (id=2308):
syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
write$6lowpan_enable(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x2def, 0x4000, 0x0, 0x0, 0x0)
setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x27, 0x0, 0x0)
socket$pptp(0x18, 0x1, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x10000, 0x25dfdbfb, {}, [{0x90, 0x1, [@m_ct={0x44, 0x11, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x8, 0x0, 0xf}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x3, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x8}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mbind(&(0x7f00001e7000/0x2000)=nil, 0x2000, 0x8003, &(0x7f0000000000)=0x9, 0x3, 0x2)
r3 = syz_init_net_socket$ax25(0x3, 0x3, 0xf0)
setsockopt$ax25_int(r3, 0x101, 0x2, &(0x7f0000003580)=0xf2c17809, 0x4)
syz_open_procfs(0x0, &(0x7f0000000040)='smaps_rollup\x00')
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r4 = userfaultfd(0x1)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x4d0})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1700000007"], 0x50)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r5, &(0x7f0000000000), 0xd)

5.300864421s ago: executing program 3 (id=2309):
openat$uhid(0xffffff9c, &(0x7f0000000280), 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [], {0x14, 0x11, 0x1, 0x0, 0x0, {0xa}}}, 0x28}}, 0x800)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$can_raw(0x1d, 0x3, 0x1)
getpeername(r3, 0x0, 0x0)
ioctl$SIOCX25SCAUSEDIAG(0xffffffffffffffff, 0x89ec, &(0x7f00000001c0)={0x10, 0xfa})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), r4)
sendmsg$WG_CMD_SET_DEVICE(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000780)={0x30, r5, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}, @WGDEVICE_A_FWMARK={0x8, 0x7, 0x1ff}]}, 0x30}}, 0x0)
setsockopt$CAN_RAW_FD_FRAMES(r3, 0x65, 0x5, &(0x7f0000000300)=0x1, 0x4)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x5d031, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000100))
r6 = userfaultfd(0x80001)
lremovexattr(&(0x7f0000000340)='./file0\x00', &(0x7f00000003c0)=@random={'osx.', '*-]#*\x00'})
r7 = socket$inet6(0xa, 0x400000000001, 0x0)
setsockopt$SO_TIMESTAMPING(r7, 0x1, 0x49, &(0x7f0000000180)=0x80000039f8, 0x4)
ioctl$UFFDIO_REGISTER(r6, 0xc020aa00, 0x0)
ioctl$UFFDIO_CONTINUE(r6, 0xc020aa08, 0x0)
socket(0x840000000002, 0x3, 0x100)

4.808731107s ago: executing program 1 (id=2310):
syz_open_dev$sndmidi(0x0, 0x2, 0x141121)
write$6lowpan_enable(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x2def, 0x4000, 0x0, 0x0, 0x0)
setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x27, 0x0, 0x0)
socket$pptp(0x18, 0x1, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x10000, 0x25dfdbfb, {}, [{0x90, 0x1, [@m_ct={0x44, 0x11, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x8, 0x0, 0xf}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x3, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x8}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mbind(&(0x7f00001e7000/0x2000)=nil, 0x2000, 0x8003, &(0x7f0000000000)=0x9, 0x3, 0x2)
r3 = syz_init_net_socket$ax25(0x3, 0x3, 0xf0)
setsockopt$ax25_int(r3, 0x101, 0x2, &(0x7f0000003580)=0xf2c17809, 0x4)
syz_open_procfs(0x0, &(0x7f0000000040)='smaps_rollup\x00')
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r4 = userfaultfd(0x1)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x4d0})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1700000007"], 0x50)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r5, &(0x7f0000000000), 0xd)

4.520534375s ago: executing program 2 (id=2311):
socket$nl_route(0x10, 0x3, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
socket$netlink(0x10, 0x3, 0xb)
socket(0x1e, 0x4, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC, @ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
setuid(0xee01)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@newlink={0x38, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x600, 0x0, 0x0, 0x6}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @wireguard={{0xe}, {0x4}}}]}, 0x38}}, 0x0)
r4 = socket(0xa, 0x3, 0xff)
setsockopt$inet_mreq(r4, 0x0, 0x23, 0x0, 0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000280)='./file1\x00', &(0x7f0000000240)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000080)='./file1\x00')
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r5, 0xffffffff80000800, 0x0, &(0x7f00000000c0)={0x0, 0x800000000009, 0x9, 0x4, 0x0, 0x0, 0xffffffffffffffff, 0x3, 0xfffffffb})
syz_open_procfs$namespace(0x0, &(0x7f0000000140)='ns/mnt\x00')

4.38779127s ago: executing program 0 (id=2312):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c0003800800014000000000080002"], 0xfc}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="68010000000101040000000000000000020000009de57c330000100e08000740000000002400028014000580"], 0x168}}, 0x4010)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYRES32=r1, @ANYRES32=r2, @ANYRES8], 0x34}, 0x1, 0x0, 0x0, 0x800c000}, 0x0)

4.381270985s ago: executing program 3 (id=2313):
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xe, 0xc, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000073000000850000005000000095", @ANYBLOB="81b738187922e3a0048bafe4159ea0c98ccb336d29387065334645a39d4b7f61f02d0de8ded8376b2b53e22194ad496b5dd171789e"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001b40)={&(0x7f0000000100)='kfree\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000c80)={0x3, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000000000001000000000000009500000000000000af8536b0383beaf785d7dd02ea47e86d2532ccf23d2aa21f534ec8252741e31bcfe6dfa421e7f493bca332e392057a2c0748bf04bcac24caf17efcdef1ae2f0ad877177e4b7bea18ee6138574419de04233b62efd379be"], &(0x7f0000000c40)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_open_procfs(0x0, &(0x7f0000000140)='attr\x00')
socket$kcm(0xa, 0x2, 0x3a)
r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000940), 0x1, 0x0)
ioctl$SNAPSHOT_S2RAM(r1, 0x3314)
syz_open_dev$loop(&(0x7f0000000180), 0x7, 0x2480)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_rdma(0x10, 0x3, 0x14)
r2 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
ioctl$VIDIOC_ENUMOUTPUT(r2, 0xc0485630, &(0x7f00000000c0)={0x1, "88f1a5cba41c8af902c6226cc92604e5cd02b679c0eaa5a869f54557f879cff5", 0x3, 0x8, 0x9, 0x20, 0x8})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000640), r3)
sendmsg$MPTCP_PM_CMD_GET_ADDR(r3, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000ac0)={0x20, r4, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@MPTCP_PM_ATTR_TOKEN={0x8}, @MPTCP_PM_ATTR_ADDR={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x800}, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1900000004000000040000000200000000000000", @ANYRES32, @ANYBLOB="00000000000000040000d5670000000100000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
fsopen(&(0x7f0000000000)='f2fs\x00', 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r5 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r5, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r5, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r6=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_ATOMIC(r5, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r6], &(0x7f0000000180), &(0x7f0000000200), &(0x7f00000001c0), 0x0, 0x1})

4.290473686s ago: executing program 0 (id=2314):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, 0x0, 0x4880)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC, @ANYRESDEC, @ANYRES8], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}})
dup3(r5, r6, 0x0)
r7 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000900), r4)
sendmsg$NL802154_CMD_SET_CHANNEL(r4, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000940)={0x1c, r7, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@NL802154_ATTR_CHANNEL={0x5, 0x8, 0x7}]}, 0x1c}}, 0x64000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x110)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f00000000c0)='./file0\x00')
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x62881, 0x19d)
write$P9_RREADLINK(r8, &(0x7f0000000180)={0x10, 0x17, 0xfffd, {0x7, './file0'}}, 0x10)
open(&(0x7f0000000140)='./file0\x00', 0x33f, 0x0)
r9 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
listen(r9, 0x0)
connect$rose(r9, &(0x7f0000000040)=@full={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, 0x0, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast]}, 0x40)

4.240603424s ago: executing program 3 (id=2315):
r0 = socket(0x2, 0x2, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, r0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000081c0)=[{{&(0x7f0000000380)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000200)=[{&(0x7f0000002080)="0d8f78c8cb60996ee68900000000000000070f7dfc7afe9b9d9c0b98157c360ac7e6608c86c9e3d88469979a2e54f82fbbdffea46963fcc2b969ea34c5ec4704860dd39670ee84a94baf4ac02f5f3dbd6e2891e670ff6ccd2942179e64f075d38f4f34b4e20b3b7f0cec300ffad0bc63c79fd79e2276e18687e4d16edae60969c5e558a43b67e0e66d86601804a1293be6f1ee0c640aef2a595ed1a8f8f18150b774d5dded22662dff8e6c2da93e8d64f193ce26a3e70691918653cca0b4010027c97e9956f2d2", 0xc7}, {&(0x7f0000000540)="637220494323eedb5f8f93d802dc94e3fb0e9d406ced833c1dd8910812fdec981a7daf85810f011138da5954a69d77677a777dab13d426b39084c7b3e6458a30d95db04eb74eedb161af8aebe39cac75a57a4f5a1493443db30c29c52731ca02eb1021ff0ac94f5af9208b", 0x6b}, {&(0x7f0000000980)="e3f0d9fe37e832856b95a8a00eabe19e84b9083b801782f53f1a564a41aa6e8a627642fbd79971d4d2a5cdc4dd1fab8ddd4b4ddbd35d458d37f3e53b5ec521399fe13d4bcc9e9b4752466ce10a03adb9c4aa5b908aeec3b37dc6db6f2ee4c55f0dae56a66a3424be52008ee966a015d9940002a3cebf35d6d035a7473d2b2ca07948ff39a2f652595815b8e577a8a69af09c278324b9413cba3cb7861ffe138fc8d3ce1db8db12bd0c63a15a91423b3f00b5e3deacc0af29a4b08b3b096f94d96cc471ea4ccdbac9ccfd3b7bada390c43d4ffb61e41a8dc6856ca670aef6a805c34461f57c2ab8051ce054fceb48c881c58508", 0xf3}, {&(0x7f0000000a80)="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", 0x1000}, {&(0x7f00000005c0)="40975fbd29e28af750cce29a74123b88cc09db6e", 0x14}], 0x5, &(0x7f0000001ac0)=[@rights={{0x1c, 0x1, 0x1, [r3, r0, r2, r2]}}, @cred={{0x18, 0x1, 0x2, {r1, 0x0, 0xee01}}}, @rights={{0x1c, 0x1, 0x1, [r2, 0xffffffffffffffff, 0xffffffffffffffff, r2]}}, @rights={{0x30, 0x1, 0x1, [r0, r2, r2, r0, r3, r3, r0, r0, 0xffffffffffffffff]}}], 0x80, 0x4}}, {{0x0, 0x0, &(0x7f0000001e00)=[{&(0x7f0000001b40)="d4ab1a1155b1d5624c2a6af1ca86debb971aad2327d56ec62f39175fc240f3e0c29df4f406eb858f1328d29115dd375138d6ca7a08e05e9c3c4d04b6", 0x3c}, {&(0x7f0000001b80)="438b8b40cdc83d49f83b0b8d7b3c818f6807da6c25fc7f6e5a1d4654413e14404d181b4c7cadd1f33c255fc71e5d89b736f26ecd951c8a6aa0b065c3867306941c31cece2789595aebc9ccde88c148e7ca1cdcf728ad0999e22508707ac27725d789d6b0f36e592a847c56486106b1acff69086e400822755c6ec59e896fdd0ce7707604713ceb13264f04897dee8a472c8208f1d226ce6f9516ab634776d69935c5b70069f26a49344064d6b83004c0b09fa66b2ff47e21f0ee35ffeb8e70e23af005ef6ab6f74d00"/214, 0xd6}, {&(0x7f0000001c80)="59aa12bcfcac56f154beaf58b0531868316e455f38033b16231fe600b719cf2abe1a31b0ab23248068133ce5fb6612f33291163ac2f3c03ac5b679e7422936dbc424094482369501f48b7d438d1ca5ff1ae59c3800822618f9d1404a0d19a53dd1a8adfeaf5533fbe9defffe9e4da53400796f82b37959f64ec3def7f55986c7fc957f0ea841efde61d2905a872d31c9466623e64b7312f04b2a2c018852ef2728cc691f", 0xa4}, {&(0x7f0000001d40)="14718042e2d7dbd98f378033abe8a42ae8a4609702d01454d9af981a553699f56564827027075845da9cef24d910df5e5e58b44fdcc40b63fb2fef805e428b937ee21e8c96166d45e4d6d295b2af9cef8319a80b9f92512b0f414a39ff5e9deeb792e77b24a9e38a57839ac9a6aeac99592dc9b2262f1ed9049f982438d0598e8df4b3b110d53f828d89e012a71fac22e32816582d339b95879142be3c", 0x9d}], 0x4, &(0x7f0000001e80)=[@rights={{0x24, 0x1, 0x1, [r0, 0xffffffffffffffff, 0xffffffffffffffff, r2, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x24, 0x8000}}, {{&(0x7f0000001ec0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000002040)=[{&(0x7f0000001f40)="bf76bce052920b2d2d503e94e85e63b9be549f3ab47de5b0a74bb6116f18023b011b56887dc324656d804f291bcc83d336b971d10f06c86a6e03eebac11eac8d2c0e5028a7e39b2b", 0x48}, {&(0x7f0000001fc0)="86ab1cd6cbd828e32881cba12d5b106c6b4b3c300bdaf658397a5827f237c49017286f37bf5f5b6c6fb5ea8f1f93a0d9573ce3fceef361accd78f41b6c3efdcf4d4642e762536d2a7f710234f7d580e897488b6c73e05756e4", 0x59}], 0x2, &(0x7f0000003c80)=[@rights={{0x10, 0x1, 0x1, [r0]}}, @cred={{0x18, 0x1, 0x2, {0xffffffffffffffff}}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, r3, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0]}}, @cred={{0x18, 0x1, 0x2, {r1}}}, @rights={{0x10, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x18, 0x1, 0x2, {r1}}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0]}}], 0xbc, 0x4000040}}, {{&(0x7f0000002240)=@abs={0x0, 0x0, 0x4e22}, 0x6e, &(0x7f00000035c0)=[{&(0x7f00000022c0)="ae", 0x1}, {&(0x7f0000002300)="a151ba6e9c34f267b3dc12e8c92c6ab3eea6cd03cca8aec3b9f74b51632e7f859a7fcb05978c4c27509a768168d9c30328f9f63c2de2360a707c74c996da822749e6b8087bae63c42eb918bfc8285506ae0c2746ab8203e7cad4cb8d4782040aaf072b484df8f0c66e9c2c18a9d1b324dc1bca319d199142f52cc809750a643d6e8a12de1fd145551f6a3dcf4b614a91aaf365270f05b8070b670075f3f86a2620682c29408876725f9b834827d33b65bab154261de28136b2035293ddd92ff7b841e902ffb7", 0xc6}, {&(0x7f0000002400)="8f73f04cc2408f8bc06aa15a9d1940bf223eda7921ad096c4b30b0fc75755d79812d808f7ef17496ceed43", 0x2b}, {&(0x7f0000002440)="09bcf914f37b12f11823fa69f1bff4cdd43277b092111a69b702d15d9464f56d6dc0dacf49ac5a44932325662d5e391763ad4817dff23c85bc68966ebe66435ac41b6c07b57f37260946105c4aaa5761a80ca4734a4a7e72cab2b55a985fd19279b89d1fe45746c3fb42cc56a5afbc1ada490fe80ba638542e37c535f2ab58bcb24f61a4a9ac1afe4f565bcb7b0fd098947153a44e4faf28a49ca5d73c8f325d9e67faa77a9c496ffbdbbfe7412bfb145ce118acc5b87025d7b85eab937c401eee6f293c402b1e35b82e66ed4c78d1685b822f2b71ad", 0xd6}, {&(0x7f0000002540)="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", 0x1000}, {&(0x7f0000003540)="c8a8f529aaa4e07b93c7449c6332b98d09fc9dacc54fe386b8867629988e9179c8865ddc25d9d2cdc7c131fdc691054de1e0d7b410e99af1a17b6cc0a4c5bcadda602e4581989b5eff6ed23e1555e7cdaa79092a81a37df1d41962657dde10934f5f7cfca384e7", 0x67}], 0x6, &(0x7f0000003680)=[@rights={{0xc}}, @rights={{0x10, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [r3, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, r3, 0xffffffffffffffff, 0xffffffffffffffff, r0]}}, @rights={{0x24, 0x1, 0x1, [r2, 0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18, 0x1, 0x2, {r1}}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r2, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, r3, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff]}}], 0x104, 0x8004}}, {{&(0x7f00000037c0)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f0000003c40)=[{&(0x7f0000003840)="0fa4ca1f219a5d04b5cc4ddc7a63b6042bd911401b50607d275a474d938d1833f9b248976c04f86e1496c8468c2c3da3e7aad4fb0b4452d0ca5ebc54f1ed19b13635759d294037a2370e00c06acc39358d998bc0687f783372467eaca202b1bf3640e1fef662ee565108e93e2e062037bc7745d0862611ddaecc4a8a7d7615d2fa5af56cc2b73a7d", 0x88}, {&(0x7f0000003900)="1bcf67b5445e11dc676fd6c9ff48357e99a69567e149ee6eb367bce7da8b3075ae46b05bc5b63a0b2b62b74d91466fad062b66d658ce1f31a0ed4ddf81ba18521e82260b436671922aa5011a622f3b08be77512f5736236b9a8c3ac1dcfa", 0x5e}, {&(0x7f0000003980)="b13a56e640c8693773da3cef01c17ad8da284c370abfe77f3660f32e92456f1f58f83cb66dcac681f13b8f", 0x2b}, {&(0x7f00000039c0)="401d4ad8d082134027e17fc67a8c98700ea3041b7d172215f8f88ef7c5d1a42631867aaaccdfce3f7801a75e1c73987eb4b53a0bd8693e029daba17e455c8e0d10ab3a", 0x43}, {&(0x7f0000003a40)="4fc790e28f93b68452855fc435b0da912ff56b94e375d1925a96a838f0044e80423c15c7cc5930f5ddfb784caa695a", 0x2f}, {&(0x7f0000003a80)="960dbed7c77992e9d00201a19f5264f41f416eeafc2c96cf7fac4472fcc4808e2e0e5f85f67e39b75b23b2ab5ca290f0a757624ce72fc83e0e3bf712d85d9f4d5cf64628c76ec467ac846275840ab6c4b54e485424a5cef9f9b82cb52895317286c1295c526e64a447473ff05a92a41f7490bab5bab2dd416117ae5f33a9cac51d3fd78fab3a7a27e949f6704b6117433e19b14e8461a842a601d21b38d9d82cda0dd3703ab6c0a87c67eb8bc9f3ee154a34e6744cf92e54e164d67ee5ece22e9b38bbe16b063679b62db35d93e70d0921be45fe83fa29dcea8a0ef16b4d086007ab33ef10dddf9ad2f3514ee3d4", 0xee}, {&(0x7f0000003b80)="d899dce4e62923dc34642da7362b1737210c1e2afb53994f6a39c41b91dafd8cbf4ef579ff8893aa3bce3bd72cebefb487c1e61d6e72147c22aff5323205618d24714edb488623f58929d3e21919d6c02e7d732995fb12c88cb10de5d2b895b91eae80a5149023837beb17bae31b932b242412546cdb4d939f4d93977184a025ed7e1137de9eda538ef89bb6", 0x8c}], 0x7, &(0x7f00000006c0)=ANY=[@ANYBLOB="180000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES16=r3, @ANYRES32, @ANYRES32, @ANYBLOB="2c0000000100000001000000", @ANYBLOB="92f8be68b50311bf1f0ef9333e6afcd83d1a60e69d1e81d7c6e0bbbe09bb1148b5ba0d79455bd0ece0200c9f51dc64b6423e5b5dc8d8ee8333ac1db6810bb4c90a5775a3d73589b0099ed0a6ade75316563d662100088031f85ec836a59a45b896ec920c4b3430bb97e975a7c8b76314fd39f097efb646b9d03818f186c490c1ad1645f08169388344dda104547101863195986e488bb878f50c6b701d1ab73c0014b6", @ANYRES32, @ANYRES32, @ANYRESHEX=r1, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="2c0000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="d69057d705b0be808bfb6adb6ae7f9ac1152deee4847a58864c1226e41d167c2ac9592735570c0abfbd9445c7af13ec5d3756647de9c3926e3d523cfa17c08f3c183a0dc950c4c06e39ffb8c6f1633f029aa9fc7388822b8dc5dfe03fde9ec44664dd584ca8e0aa65dccbfd3e68f0327389503ba79f1453487600f5067149635a77217906eede39ab08d92168cb5065d443e221adb5706e71ca9f1dc692f3368a0032a885b7a473afedfce24e2d66e74562862c13c43ad190ff9d6c2f3239295e0d888c39fd6fa7a6acebb3e239da1cd418452403d340d4affa456859842f0eb35f96b352fe54910e07102ea", @ANYRES16=r1, @ANYRES32=r1, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRESDEC, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r2, @ANYRES32, @ANYRES32, @ANYRES32=r2, @ANYRES32, @ANYBLOB="180000000100000002000000", @ANYRES32=0x0, @ANYRES64=r3, @ANYRES32=0x0, @ANYBLOB="18000000010000000200000082f30a684fd632c0f695621befa086f6865de64c", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="240000000100000001000000", @ANYRES32, @ANYRES16=r2, @ANYRES32=r0, @ANYRES32=r3, @ANYRES32, @ANYRES32], 0x11c, 0x45}}, {{&(0x7f0000003e40)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000004080)=[{&(0x7f0000003ec0)="561dc1a284214cc6322107bc784d85299bec0943a02cd968b6f9517b3cc09cd727fea0ad1dc88cac4dcd4035b7c069ec1c4407718201fa78a28b2c8feaafd50fa0c67507310eb9c8f6cdd7a83e60d2c2947b1ad4963c72aa3c576ba25e90332225d5b3d309081131d3b7dc02bdcf", 0x6e}, {&(0x7f0000003f40)="8e71ce85aa45e01ee626f8f86bd5e07fac67f17f7af46b128509a94ba28ab4c9b952e47482cfe97b6ed63e5cf3fb0aab0fecc730c48a5bcce5dd2b852c498bcda3c98498b3afd4a337479ed4fa66bb47084bcf19edf9073564031243f120ab2522546bcfd23c7623c5ee6c55ab656a3104147b4d85c07681190b8c3ee62a1bacd1e0cfdc0deb9c8384d86b4f3254a6a4d06efd7062b4849c45ef6f119e2d41c385ba4e2a338b5358a7817ab284fff2ebe98f813816", 0xb5}, {&(0x7f0000004000)="171fd599c72abbaf61d33abc3e0776e8a9c71847021981eccef38ce3f7906b0d9c8932c93fec1c1015cd232a6145c9072694164895432912b96ec607eb6248783ca81484539c9e98aece690b487b91de692208d5386767ec399361911faef6b91fd93917f6", 0x65}], 0x3, &(0x7f00000040c0), 0x0, 0x4000}}], 0x6, 0x81)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r5 = socket(0x400000000010, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56441, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0x10}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000640)=@newtfilter={0x50, 0x2c, 0xd27, 0x70bd2a, 0x25dfdbff, {0x0, 0x0, 0x0, r7, {0x5, 0x8}, {}, {0xa}}, [@filter_kind_options=@f_flower={{0xb}, {0x20, 0x2, [@TCA_FLOWER_KEY_ENC_IPV6_DST={0x14, 0x21, @local}, @TCA_FLOWER_KEY_ENC_UDP_DST_PORT={0x6}]}}]}, 0x50}, 0x1, 0x0, 0x0, 0x20000080}, 0x20000000)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0xc, &(0x7f0000000100)=0x5, 0x4)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r8, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
r9 = syz_open_dev$sndctrl(&(0x7f00000001c0), 0x2, 0x141002)
r10 = syz_open_procfs(r1, &(0x7f0000000280)='attr/keycreate\x00')
ioctl$EVIOCSREP(r10, 0x40084503, &(0x7f0000000300)=[0xfffffffe, 0x7])
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r9, 0xc0045543, &(0x7f0000000080))
bind$inet6(r8, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000040)=0x7)
socket$kcm(0x29, 0x2, 0x0)

2.838090342s ago: executing program 0 (id=2316):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), r0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={0xffffffffffffffff, 0x20, &(0x7f0000000300)={0x0, 0x0, <r4=>0x0, &(0x7f00000003c0)=""/195, 0xc3}}, 0x10)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='contention_begin\x00', r5}, 0x18)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4, r5, 0x0, 0x0, 0x0, 0x0, 0xb}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
r7 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42f82, 0x0)
ioctl$SNDCTL_DSP_SPEED(r7, 0xc0045002, &(0x7f0000000240))
write$dsp(r7, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)

1.389579416s ago: executing program 1 (id=2317):
socket$nl_netfilter(0x10, 0x3, 0xc)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000240)={0x0, 0x0})
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
mremap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000, 0x7, &(0x7f0000ffc000/0x3000)=nil)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, 0x0, 0x4040080)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="e000000012000100000000000000000073686133383400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000c60900000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000002000ecffffff0000000000"], 0xe0}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mknodat(0xffffffffffffff9c, 0x0, 0xc000, 0x0)
mmap(&(0x7f0000400000/0x3000)=nil, 0x3000, 0x2000009, 0x4d032, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$evdev(&(0x7f0000000000), 0x672, 0x200)
ioctl$EVIOCGMTSLOTS(r3, 0x8040450a, &(0x7f0000000100)=""/218)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
madvise(&(0x7f0000400000/0x3000)=nil, 0x3000, 0xb)
r4 = syz_open_dev$dri(&(0x7f0000002580), 0x200, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f00000026c0)={0x0, &(0x7f0000002600)=[<r5=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_SETCRTC(r4, 0xc06864a2, &(0x7f0000000200)={0x0, 0x0, r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, "427f4d05618664ecb7f952ed7667675bc32afc7ebbfea1deee1e2e520cc38c6a"}})
r6 = syz_open_dev$swradio(0x0, 0x1, 0x2)
read(r6, 0x0, 0x0)
close(r6)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

1.207749994s ago: executing program 2 (id=2318):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x11, 0x3, &(0x7f0000000280)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=@base={0x7, 0x4, 0x1e00, 0x700, 0x2c}, 0x48)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000740)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x4004}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_SET(r3, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000480)=ANY=[@ANYBLOB="94000000", @ANYRES16=r4, @ANYBLOB="010000000000000000000a000000800004801300010062726f6164636173742d6c696e6b00002400078008000300000000000800030007000000080001000000000008000300050000002c000780080002000100000008000400000100000800030004000000080001001500000008332101f89e4f0481000200030000006a00010073797a30000000000900010073797a3100000000"], 0x94}}, 0x0)
socket$netlink(0x10, 0x3, 0x5)
r5 = socket(0x10, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r5, 0x89f1, &(0x7f00000000c0)={'ip6_vti0\x00', &(0x7f0000000000)={'syztnl1\x00', 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, @dev, @dev={0xfe, 0x80, '\x00', 0x37}, 0x10, 0x0, 0x0, 0x5}})
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a7c000000060a0b04000000000000000002000000500004802c0001800b000100736f636b657400001c000280080002400000000b080001400000000308000320000180080001006475700014000280080001400000000c0800024000000002090001003b1b7a30000000000900020073797a3200000000140000001100010000000000000000000000000a0000000008"], 0xa4}}, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900), 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='writeback_bdi_register\x00', r7}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000580)={{0x1}, &(0x7f0000000440), &(0x7f0000000480)=r7}, 0x1c)

243.652268ms ago: executing program 1 (id=2320):
syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
write$6lowpan_enable(0xffffffffffffffff, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x2def, 0x4000, 0x0, 0x0, 0x0)
setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x27, 0x0, 0x0)
socket$pptp(0x18, 0x1, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x10000, 0x25dfdbfb, {}, [{0x90, 0x1, [@m_ct={0x44, 0x11, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x8, 0x0, 0xf}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x3, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x8}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mbind(&(0x7f00001e7000/0x2000)=nil, 0x2000, 0x8003, &(0x7f0000000000)=0x9, 0x3, 0x2)
r3 = syz_init_net_socket$ax25(0x3, 0x3, 0xf0)
setsockopt$ax25_int(r3, 0x101, 0x2, &(0x7f0000003580)=0xf2c17809, 0x4)
syz_open_procfs(0x0, &(0x7f0000000040)='smaps_rollup\x00')
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r4 = userfaultfd(0x1)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x4d0})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1700000007"], 0x50)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r5, &(0x7f0000000000), 0xd)

0s ago: executing program 2 (id=2321):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, 0x0, 0x4880)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC, @ANYRESDEC, @ANYRES8], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}})
dup3(r5, r6, 0x0)
r7 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000900), r4)
sendmsg$NL802154_CMD_SET_CHANNEL(r4, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000940)={0x1c, r7, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@NL802154_ATTR_CHANNEL={0x5, 0x8, 0x7}]}, 0x1c}}, 0x64000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x110)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f00000000c0)='./file0\x00')
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x62881, 0x19d)
write$P9_RREADLINK(r8, &(0x7f0000000180)={0x10, 0x17, 0xfffd, {0x7, './file0'}}, 0x10)
open(&(0x7f0000000140)='./file0\x00', 0x33f, 0x0)
r9 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
listen(r9, 0x0)
connect$rose(r9, &(0x7f0000000040)=@full={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, 0x0, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast]}, 0x40)

kernel console output (not intermixed with test programs):

6131][T13708] 9pnet_fd: Insufficient options for proto=fd
[  745.319216][   T40] audit: type=1804 audit(1761106821.466:113): pid=13708 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1823" name="/newroot/416/file0/file0" dev="9p" ino=73924795 res=1 errno=0
[  745.663650][T11538] usb usb40-port1: attempt power cycle
[  745.733757][ T6311] usb usb38-port1: unable to enumerate USB device
[  746.289567][T11538] usb usb40-port1: unable to enumerate USB device
[  746.443708][T13732] 9pnet_fd: Insufficient options for proto=fd
[  746.488815][   T40] audit: type=1804 audit(1761106822.636:114): pid=13732 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1829" name="/newroot/481/file0/file0" dev="9p" ino=73924795 res=1 errno=0
[  746.604342][T13734] netlink: 'syz.0.1830': attribute type 10 has an invalid length.
[  746.834317][ T2300] vhci_hcd: vhci_device speed not set
[  746.986980][T13744] fuse: Bad value for 'user_id'
[  746.988580][T13744] fuse: Bad value for 'user_id'
[  747.130441][T13740] binder: BINDER_SET_CONTEXT_MGR already set
[  747.133947][T13740] binder: 13738:13740 ioctl 4018620d 80000040 returned -16
[  747.136692][T13740] binder: BINDER_SET_CONTEXT_MGR already set
[  747.138837][T13740] binder: 13738:13740 ioctl 4018620d 80000040 returned -16
[  747.143212][T13740] binder: BINDER_SET_CONTEXT_MGR already set
[  747.145166][T13740] binder: 13738:13740 ioctl 4018620d 80000040 returned -16
[  747.186993][T13751] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  747.189057][T13751] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  747.191780][T13751] vhci_hcd vhci_hcd.0: Device attached
[  747.485942][T13762] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  747.488030][T13762] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  747.492374][T13762] vhci_hcd vhci_hcd.0: Device attached
[  747.522958][T11538] usb 38-1: SetAddress Request (4) to port 0
[  747.528778][T11538] usb 38-1: new SuperSpeed USB device number 4 using vhci_hcd
[  747.676325][T13765] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(10)
[  747.678467][T13765] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  747.681294][T13765] vhci_hcd vhci_hcd.0: Device attached
[  747.753122][ T6007] usb 42-1: SetAddress Request (32) to port 0
[  747.753467][   T60] usb 44-1: SetAddress Request (13) to port 0
[  747.756099][ T6007] usb 42-1: new SuperSpeed USB device number 32 using vhci_hcd
[  747.757828][   T60] usb 44-1: new SuperSpeed USB device number 13 using vhci_hcd
[  747.859714][T13770] FAULT_INJECTION: forcing a failure.
[  747.859714][T13770] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  747.866192][T13770] CPU: 3 UID: 0 PID: 13770 Comm: syz.1.1837 Not tainted syzkaller #0 PREEMPT(full) 
[  747.866217][T13770] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  747.866228][T13770] Call Trace:
[  747.866235][T13770]  <TASK>
[  747.866242][T13770]  dump_stack_lvl+0x16c/0x1f0
[  747.866268][T13770]  should_fail_ex+0x512/0x640
[  747.866297][T13770]  _copy_from_iter+0x29f/0x1720
[  747.866328][T13770]  ? __alloc_skb+0x200/0x380
[  747.866355][T13770]  ? __pfx__copy_from_iter+0x10/0x10
[  747.866382][T13770]  ? __kernel_text_address+0xd/0x40
[  747.866399][T13770]  ? __pfx___might_resched+0x10/0x10
[  747.866427][T13770]  netlink_sendmsg+0x820/0xdd0
[  747.866452][T13770]  ? __pfx_netlink_sendmsg+0x10/0x10
[  747.866475][T13770]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  747.866505][T13770]  ____sys_sendmsg+0xa98/0xc70
[  747.866530][T13770]  ? __pfx_____sys_sendmsg+0x10/0x10
[  747.866550][T13770]  ? get_compat_msghdr+0x11a/0x170
[  747.866604][T13770]  ___sys_sendmsg+0x134/0x1d0
[  747.866623][T13770]  ? __pfx____sys_sendmsg+0x10/0x10
[  747.866663][T13770]  ? find_held_lock+0x2b/0x80
[  747.866704][T13770]  __sys_sendmsg+0x16d/0x220
[  747.866721][T13770]  ? __pfx___sys_sendmsg+0x10/0x10
[  747.866749][T13770]  ? rcu_is_watching+0x12/0xc0
[  747.866772][T13770]  __do_fast_syscall_32+0x7c/0x300
[  747.866796][T13770]  do_fast_syscall_32+0x32/0x80
[  747.866817][T13770]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  747.866839][T13770] RIP: 0023:0xf700d579
[  747.866853][T13770] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  747.866871][T13770] RSP: 002b:00000000f53fd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  747.866889][T13770] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000580
[  747.866902][T13770] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  747.866912][T13770] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  747.866922][T13770] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  747.866933][T13770] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  747.866958][T13770]  </TASK>
[  747.975761][T13752] vhci_hcd: connection reset by peer
[  747.977714][   T46] vhci_hcd: stop threads
[  747.979071][   T46] vhci_hcd: release socket
[  747.980590][   T46] vhci_hcd: disconnect device
[  748.133172][T13774] 9pnet_fd: Insufficient options for proto=fd
[  748.147868][   T40] audit: type=1804 audit(1761106824.296:115): pid=13774 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1838" name="/newroot/456/file0/file0" dev="9p" ino=73924795 res=1 errno=0
[  748.160774][T13763] vhci_hcd: connection reset by peer
[  748.163311][  T376] vhci_hcd: stop threads
[  748.164691][  T376] vhci_hcd: release socket
[  748.166154][  T376] vhci_hcd: disconnect device
[  748.179351][T13767] vhci_hcd: connection reset by peer
[  748.181772][   T46] vhci_hcd: stop threads
[  748.183745][   T46] vhci_hcd: release socket
[  748.185793][   T46] vhci_hcd: disconnect device
[  749.033216][T13785] netlink: 'syz.2.1841': attribute type 10 has an invalid length.
[  749.881744][T13811] 9pnet_fd: Insufficient options for proto=fd
[  750.192407][T13815] binder: 13812:13815 ioctl 0 80000040 returned -22
[  750.739905][T13823] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1850'.
[  750.740837][T13822] 9pnet_fd: Insufficient options for proto=fd
[  750.757014][   T40] audit: type=1804 audit(1761106826.906:116): pid=13822 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1851" name="/newroot/486/file0/file0" dev="9p" ino=73924795 res=1 errno=0
[  751.028791][T13827] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  751.031578][T13827] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  751.036104][T13827] vhci_hcd vhci_hcd.0: Device attached
[  751.193804][T13837] netlink: 'syz.0.1854': attribute type 10 has an invalid length.
[  751.650558][T13828] vhci_hcd: connection closed
[  751.650951][   T13] vhci_hcd: stop threads
[  751.655132][   T13] vhci_hcd: release socket
[  751.657433][   T13] vhci_hcd: disconnect device
[  751.805873][ T1419] ieee802154 phy0 wpan0: encryption failed: -22
[  751.805914][ T1419] ieee802154 phy1 wpan1: encryption failed: -22
[  751.964491][T13847] 9pnet_fd: Insufficient options for proto=fd
[  752.264207][T13852] Driver unsupported XDP return value 0 on prog  (id 435) dev N/A, expect packet loss!
[  752.608264][T11538] usb 38-1: device descriptor read/8, error -110
[  752.842903][   T60] usb 44-1: device descriptor read/8, error -110
[  752.862876][ T6007] usb 42-1: device descriptor read/8, error -110
[  753.029664][T11538] usb usb38-port1: attempt power cycle
[  753.059429][T13860] bridge0: port 3(syz_tun) entered blocking state
[  753.062726][T13860] bridge0: port 3(syz_tun) entered disabled state
[  753.066157][T13860] syz_tun: entered allmulticast mode
[  753.070390][T13860] syz_tun: entered promiscuous mode
[  753.073186][T13860] bridge0: port 3(syz_tun) entered blocking state
[  753.075597][T13860] bridge0: port 3(syz_tun) entered forwarding state
[  753.133943][T13868] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1859'.
[  753.153111][T13868] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1859'.
[  753.207451][T13869] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1859'.
[  753.233833][   T60] usb usb44-port1: attempt power cycle
[  753.314083][ T6007] usb usb42-port1: attempt power cycle
[  753.507574][T13876] netlink: 'syz.2.1864': attribute type 10 has an invalid length.
[  753.603374][T11538] usb usb38-port1: unable to enumerate USB device
[  753.805208][   T60] usb usb44-port1: unable to enumerate USB device
[  753.923020][ T6007] usb usb42-port1: unable to enumerate USB device
[  754.101300][T13881] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  754.106623][T13881] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1866'.
[  754.110942][T13881] bond0: entered promiscuous mode
[  754.112576][T13881] bond_slave_0: entered promiscuous mode
[  754.114584][T13881] bond_slave_1: entered promiscuous mode
[  754.116534][T13881] batadv0: entered promiscuous mode
[  754.478440][T13886] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  754.480569][T13886] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  754.483271][T13886] vhci_hcd vhci_hcd.0: Device attached
[  754.570488][T13889] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1867'.
[  754.573494][T13889] netlink: 'syz.2.1867': attribute type 18 has an invalid length.
[  754.753025][ T6007] usb 42-1: SetAddress Request (36) to port 0
[  754.755274][ T6007] usb 42-1: new SuperSpeed USB device number 36 using vhci_hcd
[  755.012650][T13887] vhci_hcd: connection reset by peer
[  755.015239][  T376] vhci_hcd: stop threads
[  755.017029][  T376] vhci_hcd: release socket
[  755.018891][  T376] vhci_hcd: disconnect device
[  755.794090][T13898] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  755.796161][T13898] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  755.799873][T13898] vhci_hcd vhci_hcd.0: Device attached
[  755.974921][T13902] wg2: entered promiscuous mode
[  756.039154][T13909] fuse: Bad value for 'user_id'
[  756.040756][T13909] fuse: Bad value for 'user_id'
[  756.732305][T13899] vhci_hcd: connection closed
[  756.732661][   T77] vhci_hcd: stop threads
[  756.735810][   T77] vhci_hcd: release socket
[  756.738171][   T77] vhci_hcd: disconnect device
[  756.828411][T13919] netlink: 'syz.0.1875': attribute type 10 has an invalid length.
[  757.356980][T13930] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  757.359137][T13930] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  757.362720][T13930] vhci_hcd vhci_hcd.0: Device attached
[  757.504622][ T6031] usb 6-1: new high-speed USB device number 36 using dummy_hcd
[  757.597916][T13939] wg2: entered promiscuous mode
[  757.633118][   T10] usb 44-1: SetAddress Request (17) to port 0
[  757.635721][   T10] usb 44-1: new SuperSpeed USB device number 17 using vhci_hcd
[  757.682963][ T6031] usb 6-1: Using ep0 maxpacket: 8
[  757.687705][ T6031] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  757.691473][ T6031] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[  757.694406][ T6031] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  757.698645][ T6031] usb 6-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  757.701440][ T6031] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  757.712456][ T6031] hub 6-1:1.0: bad descriptor, ignoring hub
[  757.714481][ T6031] hub 6-1:1.0: probe with driver hub failed with error -5
[  757.716930][ T6031] cdc_wdm 6-1:1.0: skipping garbage
[  757.718586][ T6031] cdc_wdm 6-1:1.0: skipping garbage
[  757.720236][ T6031] cdc_wdm 6-1:1.0: skipping garbage
[  757.721906][ T6031] cdc_wdm 6-1:1.0: probe with driver cdc_wdm failed with error -22
[  758.001958][T13943] fuse: Bad value for 'user_id'
[  758.004146][T13943] fuse: Bad value for 'user_id'
[  758.023253][   T53] usb 6-1: USB disconnect, device number 36
[  758.213640][T13931] vhci_hcd: connection reset by peer
[  758.236247][   T46] vhci_hcd: stop threads
[  758.274373][   T46] vhci_hcd: release socket
[  758.277757][   T46] vhci_hcd: disconnect device
[  758.362937][   T53] usb 6-1: new high-speed USB device number 37 using dummy_hcd
[  758.458228][T13955] netlink: 'syz.0.1885': attribute type 10 has an invalid length.
[  758.524424][   T53] usb 6-1: Using ep0 maxpacket: 8
[  758.527435][   T53] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  758.530578][   T53] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[  758.533727][   T53] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  758.538131][   T53] usb 6-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  758.540962][   T53] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  758.547635][   T53] hub 6-1:1.0: bad descriptor, ignoring hub
[  758.549798][   T53] hub 6-1:1.0: probe with driver hub failed with error -5
[  758.552435][   T53] cdc_wdm 6-1:1.0: skipping garbage
[  758.554213][   T53] cdc_wdm 6-1:1.0: skipping garbage
[  758.555885][   T53] cdc_wdm 6-1:1.0: skipping garbage
[  758.557511][   T53] cdc_wdm 6-1:1.0: probe with driver cdc_wdm failed with error -22
[  758.867379][   T60] usb 6-1: USB disconnect, device number 37
[  758.967921][T13962] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  758.970014][T13962] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  758.991540][T13962] vhci_hcd vhci_hcd.0: Device attached
[  759.367157][T13973] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1889'.
[  760.901099][T13963] vhci_hcd: connection reset by peer
[  760.903231][  T376] vhci_hcd: stop threads
[  760.904604][  T376] vhci_hcd: release socket
[  760.906783][  T376] vhci_hcd: disconnect device
[  761.469628][ T6007] usb 42-1: device descriptor read/8, error -110
[  761.882056][ T6007] usb usb42-port1: attempt power cycle
[  762.426651][T14012] 9pnet_fd: Insufficient options for proto=fd
[  762.440897][   T40] audit: type=1804 audit(1761106838.586:117): pid=14012 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1899" name="/newroot/468/file0/file0" dev="9p" ino=73924795 res=1 errno=0
[  762.573503][ T6007] usb usb42-port1: unable to enumerate USB device
[  762.693194][   T10] usb 44-1: device descriptor read/8, error -110
[  762.944702][T14008] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  762.947033][T14008] UDF-fs: Scanning with blocksize 2048 failed
[  762.950566][T14008] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  762.957778][T14008] UDF-fs: Scanning with blocksize 4096 failed
[  762.970098][T14017] random: crng reseeded on system resumption
[  763.083793][   T10] usb usb44-port1: attempt power cycle
[  763.227571][T14019] 9pnet_fd: Insufficient options for proto=fd
[  763.230395][T14019] 9pnet_virtio: no channels available for device syz
[  763.933670][   T10] usb usb44-port1: unable to enumerate USB device
[  764.176109][T14030] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  764.178234][T14030] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  764.205189][T14030] vhci_hcd vhci_hcd.0: Device attached
[  764.711826][T14031] vhci_hcd: connection closed
[  764.742978][ T6007] usb 42-1: SetAddress Request (40) to port 0
[  764.746418][ T6007] usb 42-1: new SuperSpeed USB device number 40 using vhci_hcd
[  764.762838][T14032] vhci_hcd: sendmsg failed!, ret=-32 for 48
[  764.786618][   T46] vhci_hcd: stop threads
[  764.788005][   T46] vhci_hcd: release socket
[  764.791722][   T46] vhci_hcd: disconnect device
[  765.070044][T14042] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1906'.
[  765.128164][T14045] loop6: detected capacity change from 0 to 63
[  765.136746][T13592] Buffer I/O error on dev loop6, logical block 0, async page read
[  765.139668][T13592] Buffer I/O error on dev loop6, logical block 0, async page read
[  765.143945][T14045] Buffer I/O error on dev loop6, logical block 0, async page read
[  765.146894][T14045] Buffer I/O error on dev loop6, logical block 0, async page read
[  765.149333][T14045] Buffer I/O error on dev loop6, logical block 0, async page read
[  765.151797][T14045] Buffer I/O error on dev loop6, logical block 0, async page read
[  765.154656][T13592] Buffer I/O error on dev loop6, logical block 0, async page read
[  765.157540][T13592] Buffer I/O error on dev loop6, logical block 0, async page read
[  765.160226][T13592] Buffer I/O error on dev loop6, logical block 0, async page read
[  765.162854][T14045] Buffer I/O error on dev loop6, logical block 0, async page read
[  765.796896][T14054] fuse: Bad value for 'user_id'
[  765.798654][T14054] fuse: Bad value for 'user_id'
[  766.052463][T14061] 9pnet_fd: Insufficient options for proto=fd
[  766.100679][T14064] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1911'.
[  766.107115][   T40] audit: type=1804 audit(1761106842.236:118): pid=14061 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1910" name="/newroot/498/file0/file0" dev="9p" ino=73924795 res=1 errno=0
[  766.186713][T14064] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1911'.
[  766.566718][T14067] 9pnet_fd: Insufficient options for proto=fd
[  766.569592][T14067] 9pnet_virtio: no channels available for device syz
[  766.855887][T14075] netlink: 'syz.0.1916': attribute type 1 has an invalid length.
[  766.943345][T14075] 8021q: adding VLAN 0 to HW filter on device bond1
[  766.969759][T14075] bond1: (slave veth0_to_bond): making interface the new active one
[  766.974198][T14075] bond1: (slave veth0_to_bond): Enslaving as an active interface with an up link
[  766.981672][T14075] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1916'.
[  766.989190][T14075] vlan2: entered allmulticast mode
[  766.991310][T14075] veth0_to_bond: entered allmulticast mode
[  767.061070][T14077] bond1: (slave veth3): Enslaving as an active interface with a down link
[  767.893846][T14092] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  767.895982][T14092] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  767.899809][T14092] vhci_hcd vhci_hcd.0: Device attached
[  767.999818][T14096] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1917'.
[  768.003130][T14096] netlink: 'syz.2.1917': attribute type 18 has an invalid length.
[  768.370361][T14094] vhci_hcd: connection closed
[  768.370749][   T12] vhci_hcd: stop threads
[  768.374512][   T12] vhci_hcd: release socket
[  768.374591][T14097] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  768.376939][   T12] vhci_hcd: disconnect device
[  768.378725][T14097] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  768.400375][T14097] vhci_hcd vhci_hcd.0: Device attached
[  768.712991][T11538] usb 38-1: SetAddress Request (8) to port 0
[  768.715016][T11538] usb 38-1: new SuperSpeed USB device number 8 using vhci_hcd
[  768.732828][   T60] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  768.885575][   T60] usb 8-1: too many configurations: 178, using maximum allowed: 8
[  768.905525][   T60] usb 8-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  768.908360][   T60] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  768.921359][   T60] usb 8-1: Product: syz
[  768.931278][   T60] usb 8-1: Manufacturer: syz
[  768.934532][   T60] usb 8-1: SerialNumber: syz
[  768.947279][   T60] usb 8-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  768.985288][T14107] 9pnet_fd: Insufficient options for proto=fd
[  768.988182][T14107] 9pnet_virtio: no channels available for device syz
[  768.992917][   T60] usb 8-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  769.207429][   T53] usb 8-1: USB disconnect, device number 7
[  769.602840][T14098] vhci_hcd: connection reset by peer
[  769.604776][   T46] vhci_hcd: stop threads
[  769.606239][   T46] vhci_hcd: release socket
[  769.607751][   T46] vhci_hcd: disconnect device
[  769.796782][T14114] input: syz0 as /devices/virtual/input/input40
[  769.839117][ T6007] usb 42-1: device descriptor read/8, error -110
[  769.855234][T14115] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  769.857271][T14115] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  769.859854][T14115] vhci_hcd vhci_hcd.0: Device attached
[  769.983406][T14117] vhci_hcd: connection closed
[  769.984091][   T77] vhci_hcd: stop threads
[  769.986871][   T77] vhci_hcd: release socket
[  769.992978][   T77] vhci_hcd: disconnect device
[  770.042853][   T60] ath9k_htc 8-1:1.0: ath9k_htc: Target is unresponsive
[  770.045946][T14127] netlink: 'syz.1.1925': attribute type 10 has an invalid length.
[  770.050740][   T60] ath9k_htc: Failed to initialize the device
[  770.070787][   T53] usb 8-1: ath9k_htc: USB layer deinitialized
[  770.093740][T14129] random: crng reseeded on system resumption
[  770.318153][T14133] 9pnet_fd: Insufficient options for proto=fd
[  770.468279][T14135] 9pnet_fd: Insufficient options for proto=fd
[  770.485731][T14135] syz.1.1930 (14135) used greatest stack depth: 20856 bytes left
[  770.691625][T14141] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  770.693768][T14141] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  770.697914][T14141] vhci_hcd vhci_hcd.0: Device attached
[  771.308360][T14166] tipc: Started in network mode
[  771.309986][T14166] tipc: Node identity 060019506245, cluster identity 4711
[  771.312501][T14166] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  771.316079][T14166] syzkaller0: entered promiscuous mode
[  771.317805][T14166] syzkaller0: entered allmulticast mode
[  771.322665][T14166] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  771.331826][T14166] tipc: Resetting bearer <eth:syzkaller0>
[  771.341262][T14165] tipc: Resetting bearer <eth:syzkaller0>
[  771.353062][T14165] tipc: Disabling bearer <eth:syzkaller0>
[  771.696961][T14142] vhci_hcd: connection closed
[  771.702990][ T1205] vhci_hcd: stop threads
[  771.706130][ T1205] vhci_hcd: release socket
[  771.707605][ T1205] vhci_hcd: disconnect device
[  772.165121][T14179] 9pnet_fd: Insufficient options for proto=fd
[  772.174549][   T40] audit: type=1804 audit(1761106848.326:119): pid=14179 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1942" name="/newroot/509/file0/file0" dev="9p" ino=73924795 res=1 errno=0
[  772.350040][T14183] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1943'.
[  772.366669][T14183] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1943'.
[  772.369967][T14183] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1943'.
[  772.528114][T14188] 9pnet_fd: Insufficient options for proto=fd
[  772.596274][T14190] tipc: Started in network mode
[  772.598369][T14190] tipc: Node identity 82fc2a9d7446, cluster identity 4711
[  772.601529][T14190] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  772.604642][T14190] syzkaller0: entered promiscuous mode
[  772.606389][T14190] syzkaller0: entered allmulticast mode
[  772.609831][T14190] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  772.618414][T14190] FAULT_INJECTION: forcing a failure.
[  772.618414][T14190] name failslab, interval 1, probability 0, space 0, times 0
[  772.622303][T14190] CPU: 0 UID: 0 PID: 14190 Comm: syz.3.1946 Not tainted syzkaller #0 PREEMPT(full) 
[  772.622318][T14190] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  772.622324][T14190] Call Trace:
[  772.622329][T14190]  <TASK>
[  772.622333][T14190]  dump_stack_lvl+0x16c/0x1f0
[  772.622349][T14190]  should_fail_ex+0x512/0x640
[  772.622366][T14190]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  772.622384][T14190]  should_failslab+0xc2/0x120
[  772.622399][T14190]  kmem_cache_alloc_node_noprof+0x78/0x770
[  772.622411][T14190]  ? __alloc_skb+0x2b2/0x380
[  772.622431][T14190]  ? __alloc_skb+0x2b2/0x380
[  772.622446][T14190]  __alloc_skb+0x2b2/0x380
[  772.622463][T14190]  ? __pfx___alloc_skb+0x10/0x10
[  772.622485][T14190]  ? if_nlmsg_size+0x475/0xaf0
[  772.622498][T14190]  rtmsg_ifinfo_build_skb+0x81/0x280
[  772.622515][T14190]  rtnetlink_event+0xf3/0x1f0
[  772.622529][T14190]  notifier_call_chain+0xbc/0x410
[  772.622544][T14190]  ? __pfx_rtnetlink_event+0x10/0x10
[  772.622559][T14190]  call_netdevice_notifiers_info+0xbe/0x140
[  772.622574][T14190]  netif_set_mtu_ext+0x590/0x7d0
[  772.622600][T14190]  ? __pfx_netif_set_mtu_ext+0x10/0x10
[  772.622611][T14190]  ? __lock_acquire+0xb8a/0x1c90
[  772.622628][T14190]  ? kasan_save_stack+0x42/0x60
[  772.622640][T14190]  ? kasan_save_stack+0x33/0x60
[  772.622652][T14190]  ? __kasan_save_free_info+0x3b/0x60
[  772.622665][T14190]  netif_set_mtu+0x98/0x140
[  772.622675][T14190]  ? __pfx_netif_set_mtu+0x10/0x10
[  772.622691][T14190]  ? full_name_hash+0xbc/0x110
[  772.622707][T14190]  dev_set_mtu+0xb2/0x260
[  772.622720][T14190]  dev_ifsioc+0xd1f/0x1ee0
[  772.622739][T14190]  ? __pfx_dev_ifsioc+0x10/0x10
[  772.622757][T14190]  ? __pfx___mutex_lock+0x10/0x10
[  772.622775][T14190]  ? dev_load+0x8e/0x240
[  772.622794][T14190]  dev_ioctl+0x223/0x1060
[  772.622812][T14190]  sock_do_ioctl+0x19d/0x280
[  772.622825][T14190]  ? __pfx_sock_do_ioctl+0x10/0x10
[  772.622838][T14190]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  772.622859][T14190]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  772.622881][T14190]  compat_sock_ioctl+0x301/0x730
[  772.622897][T14190]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  772.622911][T14190]  ? hook_file_ioctl_common+0x145/0x410
[  772.622926][T14190]  ? __fget_files+0x20e/0x3c0
[  772.622941][T14190]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  772.622955][T14190]  __ia32_compat_sys_ioctl+0x242/0x370
[  772.622974][T14190]  __do_fast_syscall_32+0x7c/0x300
[  772.622989][T14190]  do_fast_syscall_32+0x32/0x80
[  772.623002][T14190]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  772.623016][T14190] RIP: 0023:0xf70ad579
[  772.623025][T14190] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  772.623036][T14190] RSP: 002b:00000000f549d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  772.623047][T14190] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000008922
[  772.623054][T14190] RDX: 0000000080002280 RSI: 0000000000000000 RDI: 0000000000000000
[  772.623061][T14190] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  772.623067][T14190] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  772.623073][T14190] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  772.623087][T14190]  </TASK>
[  772.723952][T14190] tipc: Resetting bearer <eth:syzkaller0>
[  772.785703][T14189] tipc: Resetting bearer <eth:syzkaller0>
[  772.800118][T14189] tipc: Disabling bearer <eth:syzkaller0>
[  772.956487][T14195] netlink: 'syz.1.1947': attribute type 6 has an invalid length.
[  773.566291][T14206] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  773.568496][T14206] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  773.571225][T14206] vhci_hcd vhci_hcd.0: Device attached
[  773.735170][T14206] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1949'.
[  773.735193][T14206] netlink: 'syz.1.1949': attribute type 18 has an invalid length.
[  773.811636][T11538] usb 38-1: device descriptor read/8, error -110
[  773.844129][ T2300] usb 40-1: SetAddress Request (32) to port 0
[  773.847001][ T2300] usb 40-1: new SuperSpeed USB device number 32 using vhci_hcd
[  774.062381][T14207] vhci_hcd: connection reset by peer
[  774.065086][ T1205] vhci_hcd: stop threads
[  774.066452][ T1205] vhci_hcd: release socket
[  774.067953][ T1205] vhci_hcd: disconnect device
[  774.174521][T14210] 9pnet_fd: Insufficient options for proto=fd
[  774.185572][   T40] audit: type=1804 audit(1761106850.336:120): pid=14210 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1951" name="/newroot/512/file0/file0" dev="9p" ino=73924795 res=1 errno=0
[  774.274334][T11538] usb usb38-port1: attempt power cycle
[  774.338576][   T40] audit: type=1326 audit(1761106850.486:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14212 comm="syz.3.1953" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ad579 code=0x7ffc0000
[  774.345409][   T40] audit: type=1326 audit(1761106850.486:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14212 comm="syz.3.1953" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ad579 code=0x7ffc0000
[  774.357296][   T40] audit: type=1326 audit(1761106850.506:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14212 comm="syz.3.1953" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf70ad579 code=0x7ffc0000
[  774.364382][   T40] audit: type=1326 audit(1761106850.506:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14212 comm="syz.3.1953" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ad579 code=0x7ffc0000
[  774.372183][   T40] audit: type=1326 audit(1761106850.506:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14212 comm="syz.3.1953" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ad579 code=0x7ffc0000
[  774.380310][   T40] audit: type=1326 audit(1761106850.506:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14212 comm="syz.3.1953" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf70ad579 code=0x7ffc0000
[  774.388883][   T40] audit: type=1326 audit(1761106850.506:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14212 comm="syz.3.1953" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ad579 code=0x7ffc0000
[  774.395735][   T40] audit: type=1326 audit(1761106850.506:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14212 comm="syz.3.1953" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ad579 code=0x7ffc0000
[  774.672907][ T6031] usb 7-1: new high-speed USB device number 127 using dummy_hcd
[  774.873054][T14228] 9pnet_fd: Insufficient options for proto=fd
[  774.892816][ T6031] usb 7-1: Using ep0 maxpacket: 8
[  774.897524][ T6031] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  774.901734][ T6031] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2
[  774.906330][ T6031] usb 7-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0x76, changing to 0x6
[  774.911087][ T6031] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x6 has an invalid bInterval 100, changing to 10
[  774.915754][ T6031] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x6 has invalid maxpacket 24936, setting to 1024
[  774.921335][ T6031] usb 7-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  774.925413][ T6031] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  774.960395][ T6031] hub 7-1:1.0: bad descriptor, ignoring hub
[  774.961480][T14229] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  774.964833][T14229] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  774.968335][T14229] vhci_hcd vhci_hcd.0: Device attached
[  774.970236][ T6031] hub 7-1:1.0: probe with driver hub failed with error -5
[  774.973172][ T6031] cdc_wdm 7-1:1.0: skipping garbage
[  774.976992][ T6031] cdc_wdm 7-1:1.0: skipping garbage
[  774.979162][ T6031] cdc_wdm 7-1:1.0: probe with driver cdc_wdm failed with error -22
[  775.166993][T11538] usb usb38-port1: unable to enumerate USB device
[  775.253020][   T60] usb 7-1: USB disconnect, device number 127
[  775.602885][   T60] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  775.625900][T14230] vhci_hcd: connection closed
[  775.634154][  T104] vhci_hcd: stop threads
[  775.637277][  T104] vhci_hcd: release socket
[  775.638731][  T104] vhci_hcd: disconnect device
[  775.782882][   T60] usb 7-1: Using ep0 maxpacket: 8
[  775.793484][   T60] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  775.798280][   T60] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2
[  775.802080][   T60] usb 7-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0x76, changing to 0x6
[  775.806878][   T60] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x6 has an invalid bInterval 100, changing to 10
[  775.811538][   T60] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x6 has invalid maxpacket 24936, setting to 1024
[  775.816227][   T60] usb 7-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  775.819997][   T60] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  775.832061][T14237] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  775.833967][T14237] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  775.836909][   T60] hub 7-1:1.0: bad descriptor, ignoring hub
[  775.839452][   T60] hub 7-1:1.0: probe with driver hub failed with error -5
[  775.843424][T14237] vhci_hcd vhci_hcd.0: Device attached
[  775.850640][   T60] cdc_wdm 7-1:1.0: skipping garbage
[  775.854619][   T60] cdc_wdm 7-1:1.0: skipping garbage
[  775.856644][   T60] cdc_wdm 7-1:1.0: probe with driver cdc_wdm failed with error -22
[  776.056954][T14241] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1957'.
[  776.059798][T14241] netlink: 'syz.0.1957': attribute type 18 has an invalid length.
[  776.133151][   T53] usb 38-1: SetAddress Request (12) to port 0
[  776.135394][   T53] usb 38-1: new SuperSpeed USB device number 12 using vhci_hcd
[  776.143091][   T60] usb 7-1: USB disconnect, device number 2
[  776.168265][T14239] vhci_hcd: connection reset by peer
[  776.170942][   T77] vhci_hcd: stop threads
[  776.172889][   T77] vhci_hcd: release socket
[  776.175123][   T77] vhci_hcd: disconnect device
[  777.938084][T14267] fuse: Unknown parameter '0xffffffffffffffff0x0000000000000003'
[  778.104409][T14271] netlink: 'syz.1.1966': attribute type 12 has an invalid length.
[  778.373230][ T6031] usb 6-1: new high-speed USB device number 38 using dummy_hcd
[  778.522848][ T6031] usb 6-1: Using ep0 maxpacket: 8
[  778.534230][ T6031] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  778.542827][ T6031] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[  778.546594][ T6031] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  778.562839][ T6031] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  778.567317][ T6031] usb 6-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  778.570987][ T6031] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  778.576839][T14285] 9pnet_fd: Insufficient options for proto=fd
[  778.584141][ T6031] hub 6-1:1.0: bad descriptor, ignoring hub
[  778.586767][ T6031] hub 6-1:1.0: probe with driver hub failed with error -5
[  778.590097][ T6031] cdc_wdm 6-1:1.0: skipping garbage
[  778.592356][ T6031] cdc_wdm 6-1:1.0: skipping garbage
[  778.596000][ T6031] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  778.598498][ T6031] cdc_wdm 6-1:1.0: Unknown control protocol
[  778.922829][ T2300] usb 40-1: device descriptor read/8, error -110
[  779.373315][ T2300] usb usb40-port1: attempt power cycle
[  779.646872][T14276] cdc_wdm 6-1:1.0: Error autopm - -16
[  779.647169][T11493] usb 6-1: USB disconnect, device number 38
[  779.954744][ T2300] usb usb40-port1: unable to enumerate USB device
[  780.334492][T14305] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  780.336811][T14305] UDF-fs: Scanning with blocksize 2048 failed
[  780.339602][T14305] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  780.341875][T14305] UDF-fs: Scanning with blocksize 4096 failed
[  780.730723][T14310] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  780.733018][T14310] UDF-fs: Scanning with blocksize 2048 failed
[  780.736132][T14310] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  780.738448][T14310] UDF-fs: Scanning with blocksize 4096 failed
[  781.154339][T14318] bridge4: entered allmulticast mode
[  781.159813][T14318] ªªªªª»: renamed from hsr0 (while UP)
[  781.163526][   T53] usb 38-1: device descriptor read/8, error -110
[  781.554569][   T53] usb usb38-port1: attempt power cycle
[  781.653551][T14344] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  781.656000][T14344] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  781.666354][T14344] vhci_hcd vhci_hcd.0: Device attached
[  781.736456][T14344] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1983'.
[  781.748439][T14344] netlink: 'syz.0.1983': attribute type 18 has an invalid length.
[  781.902966][   T53] usb 38-1: SetAddress Request (14) to port 0
[  781.905261][   T53] usb 38-1: new SuperSpeed USB device number 14 using vhci_hcd
[  782.175764][T14360] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1990'.
[  782.182834][T14345] vhci_hcd: connection reset by peer
[  782.185715][T14360] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1990'.
[  782.192976][   T46] vhci_hcd: stop threads
[  782.194386][   T46] vhci_hcd: release socket
[  782.195966][   T46] vhci_hcd: disconnect device
[  782.406177][T14365] fuse: Bad value for 'user_id'
[  782.406190][T14365] fuse: Bad value for 'user_id'
[  782.856414][T14376] random: crng reseeded on system resumption
[  783.508532][T14391] netlink: 'syz.2.1999': attribute type 32 has an invalid length.
[  783.511106][T14391] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1999'.
[  783.512709][T14389] 9pnet_fd: Insufficient options for proto=fd
[  783.514072][T14391] netlink: 'syz.2.1999': attribute type 32 has an invalid length.
[  784.516158][T14405] random: crng reseeded on system resumption
[  784.635447][T14409] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2004'.
[  784.638539][T14409] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2004'.
[  784.705514][T14410] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2004'.
[  784.708605][T14410] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2004'.
[  785.090505][T14420] trusted_key: encrypted_key: key user:syz not found
[  786.772873][T14433] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  786.776997][T14433] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  786.791779][T14433] vhci_hcd vhci_hcd.0: Device attached
[  786.893507][T11538] libceph: connect (1)[c::]:6789 error -101
[  786.895985][T11538] libceph: mon0 (1)[c::]:6789 connect error
[  786.917181][T14439] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2008'.
[  786.933126][T14436] ceph: No mds server is up or the cluster is laggy
[  786.954186][T14439] netlink: 'syz.2.2008': attribute type 18 has an invalid length.
[  787.033694][   T53] usb 38-1: device descriptor read/8, error -110
[  787.107091][ T2300] usb 42-1: SetAddress Request (42) to port 0
[  787.201545][ T2300] usb 42-1: new SuperSpeed USB device number 42 using vhci_hcd
[  787.221942][T14434] vhci_hcd: connection closed
[  787.222617][   T46] vhci_hcd: stop threads
[  787.226573][   T46] vhci_hcd: release socket
[  787.228233][   T46] vhci_hcd: disconnect device
[  787.433866][   T53] usb usb38-port1: unable to enumerate USB device
[  787.516748][T14448] binder: 14444:14448 ioctl 0 80000040 returned -22
[  787.900199][T14450] random: crng reseeded on system resumption
[  789.212655][T14477] FAULT_INJECTION: forcing a failure.
[  789.212655][T14477] name failslab, interval 1, probability 0, space 0, times 0
[  789.217557][T14477] CPU: 0 UID: 0 PID: 14477 Comm: syz.0.2020 Not tainted syzkaller #0 PREEMPT(full) 
[  789.217573][T14477] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  789.217600][T14477] Call Trace:
[  789.217607][T14477]  <TASK>
[  789.217612][T14477]  dump_stack_lvl+0x16c/0x1f0
[  789.217628][T14477]  should_fail_ex+0x512/0x640
[  789.217646][T14477]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  789.217659][T14477]  should_failslab+0xc2/0x120
[  789.217675][T14477]  kmem_cache_alloc_noprof+0x75/0x6e0
[  789.217686][T14477]  ? security_file_alloc+0x34/0x2b0
[  789.217701][T14477]  ? security_file_alloc+0x34/0x2b0
[  789.217711][T14477]  security_file_alloc+0x34/0x2b0
[  789.217723][T14477]  init_file+0x93/0x4c0
[  789.217738][T14477]  alloc_empty_file+0x73/0x1e0
[  789.217755][T14477]  alloc_file_pseudo+0x13a/0x230
[  789.217772][T14477]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  789.217787][T14477]  ? preempt_schedule_thunk+0x16/0x30
[  789.217809][T14477]  __anon_inode_getfile+0xe8/0x280
[  789.217825][T14477]  anon_inode_getfile_fmode+0x37/0xa0
[  789.217840][T14477]  __do_sys_timerfd_create+0x216/0x3e0
[  789.217855][T14477]  ? lockdep_hardirqs_on+0x7c/0x110
[  789.217868][T14477]  __do_fast_syscall_32+0x7c/0x300
[  789.217882][T14477]  do_fast_syscall_32+0x32/0x80
[  789.217895][T14477]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  789.217910][T14477] RIP: 0023:0xf7fe2579
[  789.217919][T14477] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  789.217930][T14477] RSP: 002b:00000000f549455c EFLAGS: 00000296 ORIG_RAX: 0000000000000142
[  789.217942][T14477] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000
[  789.217949][T14477] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  789.217955][T14477] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  789.217961][T14477] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  789.217967][T14477] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  789.217981][T14477]  </TASK>
[  789.343961][T14478] netlink: 'syz.2.2019': attribute type 10 has an invalid length.
[  789.362082][T14467] syz.1.2017 (14467) used greatest stack depth: 19208 bytes left
[  789.837572][T14487] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2024'.
[  789.961395][T14489] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  789.963988][T14489] UDF-fs: Scanning with blocksize 2048 failed
[  789.967531][T14489] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  789.969793][T14489] UDF-fs: Scanning with blocksize 4096 failed
[  790.191504][T14492] tmpfs: Unknown parameter 'usrquota_inode'
[  790.722931][T14499] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  790.725060][T14499] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  790.727802][T14499] vhci_hcd vhci_hcd.0: Device attached
[  791.000903][T14507] 9pnet_fd: Insufficient options for proto=fd
[  791.132835][T11538] usb 40-1: SetAddress Request (36) to port 0
[  791.134867][T11538] usb 40-1: new SuperSpeed USB device number 36 using vhci_hcd
[  791.194600][T14510] netlink: 'syz.0.2030': attribute type 10 has an invalid length.
[  791.452577][T14514] 9pnet_fd: Insufficient options for proto=fd
[  791.531074][T14500] vhci_hcd: connection reset by peer
[  791.534988][   T62] vhci_hcd: stop threads
[  791.536430][   T62] vhci_hcd: release socket
[  791.538124][   T62] vhci_hcd: disconnect device
[  791.993499][T14522] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  791.995899][T14522] UDF-fs: Scanning with blocksize 2048 failed
[  791.998851][T14522] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  792.001124][T14522] UDF-fs: Scanning with blocksize 4096 failed
[  792.283287][ T2300] usb 42-1: device descriptor read/8, error -110
[  792.334618][T14526] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  792.336933][T14526] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  792.350221][T14526] vhci_hcd vhci_hcd.0: Device attached
[  792.672901][ T2300] usb 42-1: SetAddress Request (43) to port 0
[  792.675308][ T2300] usb 42-1: new SuperSpeed USB device number 43 using vhci_hcd
[  792.887102][T14537] random: crng reseeded on system resumption
[  792.901587][T14537] F2FS-fs: Value of option "test_dummy_encryption" is unrecognized
[  792.984805][T14540] random: crng reseeded on system resumption
[  793.233247][T14527] vhci_hcd: connection reset by peer
[  793.235631][  T376] vhci_hcd: stop threads
[  793.237378][  T376] vhci_hcd: release socket
[  793.243164][  T376] vhci_hcd: disconnect device
[  793.276722][T14548] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  793.278839][T14548] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  793.281634][T14548] vhci_hcd vhci_hcd.0: Device attached
[  793.297378][T14538] usb 2-1: USB disconnect, device number 2
[  793.360314][T14552] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2040'.
[  793.363534][T14552] netlink: 'syz.3.2040': attribute type 18 has an invalid length.
[  793.685438][ T6007] usb 44-1: SetAddress Request (21) to port 0
[  793.687992][ T6007] usb 44-1: new SuperSpeed USB device number 21 using vhci_hcd
[  793.930092][T14549] vhci_hcd: connection reset by peer
[  793.933054][   T12] vhci_hcd: stop threads
[  793.936465][   T12] vhci_hcd: release socket
[  793.938490][   T12] vhci_hcd: disconnect device
[  794.577277][T14559] netlink: 'syz.1.2042': attribute type 10 has an invalid length.
[  794.681027][T14561] 9pnet_fd: Insufficient options for proto=fd
[  795.817161][T14575] binder: 14574:14575 ioctl c0306201 80000680 returned -14
[  795.899744][T14582] fuse: Bad value for 'user_id'
[  795.901803][T14582] fuse: Bad value for 'user_id'
[  796.180939][T14595] netlink: 'syz.0.2051': attribute type 1 has an invalid length.
[  796.183623][T14595] netlink: 396 bytes leftover after parsing attributes in process `syz.0.2051'.
[  796.207664][T11538] usb 40-1: device descriptor read/8, error -110
[  796.805859][T14599] 9pnet_fd: Insufficient options for proto=fd
[  796.843466][   T40] kauditd_printk_skb: 3 callbacks suppressed
[  796.843573][   T40] audit: type=1804 audit(1761106872.986:132): pid=14599 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.2048" name="/newroot/543/file0/file0" dev="9p" ino=73924795 res=1 errno=0
[  796.975583][T11538] usb usb40-port1: attempt power cycle
[  797.403104][T14606] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  797.405160][T14606] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  797.407975][T14606] vhci_hcd vhci_hcd.0: Device attached
[  797.593104][T11538] usb usb40-port1: unable to enumerate USB device
[  797.604761][T14614] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2053'.
[  797.607559][T14614] netlink: 'syz.0.2053': attribute type 18 has an invalid length.
[  797.627925][T14612] random: crng reseeded on system resumption
[  797.761619][ T2300] usb 42-1: device descriptor read/8, error -110
[  797.763882][T10828] usb 38-1: SetAddress Request (16) to port 0
[  797.765989][T10828] usb 38-1: new SuperSpeed USB device number 16 using vhci_hcd
[  797.821938][T14618] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  797.824458][T14618] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  797.827947][T14618] vhci_hcd vhci_hcd.0: Device attached
[  797.873334][ T2300] usb usb42-port1: attempt power cycle
[  797.917645][T14621] 9pnet_fd: Insufficient options for proto=fd
[  798.027491][T14607] vhci_hcd: connection reset by peer
[  798.029546][   T62] vhci_hcd: stop threads
[  798.030978][   T62] vhci_hcd: release socket
[  798.032434][   T62] vhci_hcd: disconnect device
[  798.153346][ T6311] usb 40-1: SetAddress Request (40) to port 0
[  798.155676][ T6311] usb 40-1: new SuperSpeed USB device number 40 using vhci_hcd
[  798.170688][T14625] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2057'.
[  798.191339][T14625] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2057'.
[  798.202572][T14625] 8021q: adding VLAN 0 to HW filter on device bond2
[  798.225736][T14625] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2057'.
[  798.463434][ T2300] usb usb42-port1: unable to enumerate USB device
[  798.762905][ T6007] usb 44-1: device descriptor read/8, error -110
[  799.519019][T14619] vhci_hcd: connection reset by peer
[  799.524372][ T1153] vhci_hcd: stop threads
[  799.526010][ T1153] vhci_hcd: release socket
[  799.527936][ T1153] vhci_hcd: disconnect device
[  799.671315][ T6007] usb usb44-port1: attempt power cycle
[  799.691918][T14640] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2062'.
[  799.789691][T14646] netlink: 25 bytes leftover after parsing attributes in process `syz.3.2062'.
[  799.794251][T14646] fuse: Bad value for 'fd'
[  799.827157][T14647] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2060'.
[  799.829931][T14647] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2060'.
[  799.908981][T14650] random: crng reseeded on system resumption
[  800.249278][ T6007] usb usb44-port1: unable to enumerate USB device
[  800.903282][T14666] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  800.905366][T14666] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  800.908126][T14666] vhci_hcd vhci_hcd.0: Device attached
[  801.017260][T14671] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2067'.
[  801.020367][T14671] netlink: 'syz.2.2067': attribute type 18 has an invalid length.
[  801.183261][ T6007] usb 42-1: SetAddress Request (46) to port 0
[  801.185500][ T6007] usb 42-1: new SuperSpeed USB device number 46 using vhci_hcd
[  801.512255][T14667] vhci_hcd: connection reset by peer
[  801.515034][   T77] vhci_hcd: stop threads
[  801.516710][   T77] vhci_hcd: release socket
[  801.518483][   T77] vhci_hcd: disconnect device
[  802.101560][T14678] 9pnet_fd: Insufficient options for proto=fd
[  802.111322][   T40] audit: type=1804 audit(1761106878.256:133): pid=14678 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2069" name="/newroot/508/file0/file0" dev="9p" ino=73924795 res=1 errno=0
[  802.339269][T14682] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  802.341378][T14682] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  802.344356][T14682] vhci_hcd vhci_hcd.0: Device attached
[  802.842908][T10828] usb 38-1: device descriptor read/8, error -110
[  802.858700][   T40] audit: type=1326 audit(1761106879.006:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14688 comm="syz.0.2072" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x80000000
[  802.965096][T14683] vhci_hcd: connection closed
[  802.965347][ T1153] vhci_hcd: stop threads
[  802.968184][ T1153] vhci_hcd: release socket
[  802.972549][ T1153] vhci_hcd: disconnect device
[  802.975482][T14693] random: crng reseeded on system resumption
[  803.235630][T14700] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2074'.
[  803.238869][T14700] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2074'.
[  803.241875][T14700] netlink: 100 bytes leftover after parsing attributes in process `syz.1.2074'.
[  803.244952][ T6311] usb 40-1: device descriptor read/8, error -110
[  803.247542][T10828] usb usb38-port1: attempt power cycle
[  803.745962][ T6311] usb usb40-port1: attempt power cycle
[  803.823535][T10828] usb usb38-port1: unable to enumerate USB device
[  804.100100][T14716] lo speed is unknown, defaulting to 1000
[  804.207691][T14723] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  804.210177][T14723] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  804.221917][T14723] vhci_hcd vhci_hcd.0: Device attached
[  804.304528][T14730] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2078'.
[  804.307453][T14730] netlink: 'syz.1.2078': attribute type 18 has an invalid length.
[  804.372974][ T6311] usb 40-1: SetAddress Request (43) to port 0
[  804.419396][ T6311] usb 40-1: new SuperSpeed USB device number 43 using vhci_hcd
[  804.778174][T14724] vhci_hcd: connection reset by peer
[  804.778402][  T376] vhci_hcd: stop threads
[  804.778413][  T376] vhci_hcd: release socket
[  804.778461][  T376] vhci_hcd: disconnect device
[  805.536888][T14754] netlink: 'syz.1.2089': attribute type 1 has an invalid length.
[  805.550605][T14754] 8021q: adding VLAN 0 to HW filter on device bond3
[  805.572990][T14754] bond3: (slave veth3): Enslaving as an active interface with a down link
[  805.608829][T14758] evm: overlay not supported
[  806.193884][T14766] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  806.196363][T14766] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  806.199187][T14766] vhci_hcd vhci_hcd.0: Device attached
[  806.292953][ T6007] usb 42-1: device descriptor read/8, error -110
[  806.713434][ T6007] usb usb42-port1: attempt power cycle
[  806.739850][T14775] 9pnet_fd: Insufficient options for proto=fd
[  806.777345][T14767] vhci_hcd: connection closed
[  806.777701][   T62] vhci_hcd: stop threads
[  806.781562][   T62] vhci_hcd: release socket
[  806.783865][   T62] vhci_hcd: disconnect device
[  807.292462][ T6007] usb usb42-port1: unable to enumerate USB device
[  807.452821][T14777] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2092'.
[  807.667615][T14782] random: crng reseeded on system resumption
[  807.995230][T14795] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  807.997830][T14795] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  808.003831][T14795] vhci_hcd vhci_hcd.0: Device attached
[  808.218503][T14801] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2094'.
[  808.221956][T14801] netlink: 'syz.3.2094': attribute type 18 has an invalid length.
[  808.272925][ T6007] usb 44-1: SetAddress Request (25) to port 0
[  808.275298][ T6007] usb 44-1: new SuperSpeed USB device number 25 using vhci_hcd
[  808.561005][T14796] vhci_hcd: connection reset by peer
[  808.569466][   T62] vhci_hcd: stop threads
[  808.571396][   T62] vhci_hcd: release socket
[  808.575924][   T62] vhci_hcd: disconnect device
[  808.665611][T14805] 9pnet_fd: Insufficient options for proto=fd
[  808.677823][   T40] audit: type=1804 audit(1761106884.826:135): pid=14805 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.2098" name="/newroot/479/file0/file0" dev="9p" ino=73924795 res=1 errno=0
[  808.809313][T14814] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2101'.
[  808.860286][T14816] netlink: 'syz.2.2102': attribute type 1 has an invalid length.
[  808.874930][T14816] 8021q: adding VLAN 0 to HW filter on device bond2
[  808.880390][T14816] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2102'.
[  808.883932][T14816] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2102'.
[  809.075371][T14820] 9pnet_fd: Insufficient options for proto=fd
[  809.080792][T14820] 9pnet_virtio: no channels available for device syz
[  809.378877][   T40] audit: type=1326 audit(1761106885.526:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14822 comm="syz.3.2104" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ad579 code=0x7ffc0000
[  809.385799][   T40] audit: type=1326 audit(1761106885.526:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14822 comm="syz.3.2104" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ad579 code=0x7ffc0000
[  809.394509][   T40] audit: type=1326 audit(1761106885.526:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14822 comm="syz.3.2104" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ad579 code=0x7ffc0000
[  809.403903][   T40] audit: type=1326 audit(1761106885.526:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14822 comm="syz.3.2104" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ad598 code=0x7ffc0000
[  809.412331][   T40] audit: type=1326 audit(1761106885.526:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14822 comm="syz.3.2104" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ad579 code=0x7ffc0000
[  809.421366][   T40] audit: type=1326 audit(1761106885.526:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14822 comm="syz.3.2104" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ad598 code=0x7ffc0000
[  809.430335][   T40] audit: type=1326 audit(1761106885.526:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14822 comm="syz.3.2104" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ad579 code=0x7ffc0000
[  809.439311][   T40] audit: type=1326 audit(1761106885.526:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14822 comm="syz.3.2104" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ad579 code=0x7ffc0000
[  809.448207][   T40] audit: type=1326 audit(1761106885.526:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14822 comm="syz.3.2104" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ad598 code=0x7ffc0000
[  809.482929][ T6311] usb 40-1: device descriptor read/8, error -110
[  809.598517][ T6311] usb usb40-port1: unable to enumerate USB device
[  809.871752][T14833] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  809.874482][T14833] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  810.122928][T14833] vhci_hcd vhci_hcd.0: Device attached
[  810.614963][T14835] vhci_hcd: connection closed
[  810.615158][  T104] vhci_hcd: stop threads
[  810.618904][  T104] vhci_hcd: release socket
[  810.621581][  T104] vhci_hcd: disconnect device
[  810.957873][T14849] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  810.960696][T14849] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  810.964351][T14849] vhci_hcd vhci_hcd.0: Device attached
[  810.980487][T14850] vhci_hcd: connection closed
[  810.980691][   T12] vhci_hcd: stop threads
[  810.988213][   T12] vhci_hcd: release socket
[  810.989807][   T12] vhci_hcd: disconnect device
[  811.000125][T14855] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2110'.
[  811.738827][T14871] 9pnet_fd: Insufficient options for proto=fd
[  811.920110][T14870] team_slave_0: entered promiscuous mode
[  811.922447][T14870] team_slave_1: entered promiscuous mode
[  811.933252][   T53] e1000 0000:00:06.0 eth0: Reset adapter
[  811.954559][T14867] Process accounting resumed
[  812.228201][T14891] FAULT_INJECTION: forcing a failure.
[  812.228201][T14891] name failslab, interval 1, probability 0, space 0, times 0
[  812.231988][T14891] CPU: 0 UID: 0 PID: 14891 Comm: syz.1.2119 Not tainted syzkaller #0 PREEMPT(full) 
[  812.232004][T14891] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  812.232011][T14891] Call Trace:
[  812.232016][T14891]  <TASK>
[  812.232020][T14891]  dump_stack_lvl+0x16c/0x1f0
[  812.232038][T14891]  should_fail_ex+0x512/0x640
[  812.232056][T14891]  ? __kmalloc_noprof+0xca/0x880
[  812.232076][T14891]  should_failslab+0xc2/0x120
[  812.232092][T14891]  __kmalloc_noprof+0xdd/0x880
[  812.232110][T14891]  ? fib_nl2rule.constprop.0+0x315/0x1c10
[  812.232125][T14891]  ? fib_nl2rule.constprop.0+0x315/0x1c10
[  812.232136][T14891]  fib_nl2rule.constprop.0+0x315/0x1c10
[  812.232149][T14891]  ? __pfx_fib_nl2rule.constprop.0+0x10/0x10
[  812.232162][T14891]  ? __nla_parse+0x40/0x60
[  812.232176][T14891]  fib_delrule+0x21c/0x1bd0
[  812.232188][T14891]  ? kasan_quarantine_put+0x10a/0x240
[  812.232203][T14891]  ? __pfx_fib_delrule+0x10/0x10
[  812.232227][T14891]  ? find_held_lock+0x2b/0x80
[  812.232239][T14891]  ? __pfx_fib_nl_delrule+0x10/0x10
[  812.232250][T14891]  ? __pfx_fib_nl_delrule+0x10/0x10
[  812.232261][T14891]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  812.232273][T14891]  ? __pfx_fib_nl_delrule+0x10/0x10
[  812.232288][T14891]  rtnetlink_rcv_msg+0x95e/0xe90
[  812.232311][T14891]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  812.232335][T14891]  ? ref_tracker_free+0x37c/0x830
[  812.232365][T14891]  netlink_rcv_skb+0x158/0x420
[  812.232383][T14891]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  812.232403][T14891]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  812.232431][T14891]  ? netlink_deliver_tap+0x1ae/0xd30
[  812.232465][T14891]  netlink_unicast+0x5aa/0x870
[  812.232487][T14891]  ? __pfx_netlink_unicast+0x10/0x10
[  812.232516][T14891]  netlink_sendmsg+0x8c8/0xdd0
[  812.232538][T14891]  ? __pfx_netlink_sendmsg+0x10/0x10
[  812.232560][T14891]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  812.232590][T14891]  ____sys_sendmsg+0xa98/0xc70
[  812.232615][T14891]  ? __pfx_____sys_sendmsg+0x10/0x10
[  812.232634][T14891]  ? get_compat_msghdr+0x11a/0x170
[  812.232657][T14891]  ___sys_sendmsg+0x134/0x1d0
[  812.232669][T14891]  ? __pfx____sys_sendmsg+0x10/0x10
[  812.232694][T14891]  ? find_held_lock+0x2b/0x80
[  812.232713][T14891]  __sys_sendmsg+0x16d/0x220
[  812.232724][T14891]  ? __pfx___sys_sendmsg+0x10/0x10
[  812.232755][T14891]  ? rcu_is_watching+0x12/0xc0
[  812.232769][T14891]  __do_fast_syscall_32+0x7c/0x300
[  812.232785][T14891]  do_fast_syscall_32+0x32/0x80
[  812.232798][T14891]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  812.232812][T14891] RIP: 0023:0xf700d579
[  812.232823][T14891] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  812.232834][T14891] RSP: 002b:00000000f53fd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  812.232845][T14891] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[  812.232852][T14891] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  812.232858][T14891] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  812.232864][T14891] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  812.232871][T14891] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  812.232885][T14891]  </TASK>
[  812.388036][T14896] netlink: 'syz.1.2121': attribute type 10 has an invalid length.
[  812.392198][T14896] bond2: (slave dummy0): Releasing active interface
[  812.397719][T14896] dummy0: entered promiscuous mode
[  812.400082][T14896] team0: Port device dummy0 added
[  812.678495][T14904] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  812.680615][T14904] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  812.684063][T14904] vhci_hcd vhci_hcd.0: Device attached
[  812.973429][T10828] usb 40-1: SetAddress Request (44) to port 0
[  812.975413][T10828] usb 40-1: new SuperSpeed USB device number 44 using vhci_hcd
[  813.244925][ T1419] ieee802154 phy0 wpan0: encryption failed: -22
[  813.289174][T14905] vhci_hcd: connection reset by peer
[  813.291609][ T1153] vhci_hcd: stop threads
[  813.293475][ T1153] vhci_hcd: release socket
[  813.294962][ T1153] vhci_hcd: disconnect device
[  813.323054][ T6007] usb 44-1: device descriptor read/8, error -110
[  813.714667][ T6007] usb usb44-port1: attempt power cycle
[  814.123924][   T53] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX
[  814.297347][ T6007] usb usb44-port1: unable to enumerate USB device
[  818.043057][T10828] usb 40-1: device descriptor read/8, error -110
[  818.443830][T10828] usb usb40-port1: attempt power cycle
[  819.004357][T10828] usb usb40-port1: unable to enumerate USB device
[  822.521657][T14932] vxfs: unable to read disk superblock at 1
[  822.524244][T14932] vxfs: unable to read disk superblock at 8
[  822.526361][T14932] vxfs: can't find superblock.
[  824.312960][T14954] 9pnet_fd: Insufficient options for proto=fd
[  824.581753][T14961] siw: device registration error -23
[  825.532985][T14969] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  825.535098][T14969] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  825.578757][T14969] vhci_hcd vhci_hcd.0: Device attached
[  825.755260][T14977] syzkaller1: entered promiscuous mode
[  825.757566][T14977] syzkaller1: entered allmulticast mode
[  825.920128][T10828] usb 42-1: SetAddress Request (50) to port 0
[  825.922185][T10828] usb 42-1: new SuperSpeed USB device number 50 using vhci_hcd
[  826.010504][T14980] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2136'.
[  826.159649][T14970] vhci_hcd: connection reset by peer
[  826.162271][  T376] vhci_hcd: stop threads
[  826.164290][  T376] vhci_hcd: release socket
[  826.167112][  T376] vhci_hcd: disconnect device
[  827.053307][T14990] openvswitch: netlink: Flow actions attr not present in new flow.
[  827.056410][T14990] FAULT_INJECTION: forcing a failure.
[  827.056410][T14990] name failslab, interval 1, probability 0, space 0, times 0
[  827.061432][T14990] CPU: 1 UID: 0 PID: 14990 Comm: syz.2.2139 Not tainted syzkaller #0 PREEMPT(full) 
[  827.061454][T14990] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  827.061465][T14990] Call Trace:
[  827.061471][T14990]  <TASK>
[  827.061479][T14990]  dump_stack_lvl+0x16c/0x1f0
[  827.061501][T14990]  should_fail_ex+0x512/0x640
[  827.061526][T14990]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  827.061547][T14990]  should_failslab+0xc2/0x120
[  827.061569][T14990]  kmem_cache_alloc_node_noprof+0x78/0x770
[  827.061586][T14990]  ? __alloc_skb+0x2b2/0x380
[  827.061616][T14990]  ? __alloc_skb+0x2b2/0x380
[  827.061638][T14990]  __alloc_skb+0x2b2/0x380
[  827.061662][T14990]  ? __pfx___alloc_skb+0x10/0x10
[  827.061687][T14990]  ? genl_rcv_msg+0x550/0x800
[  827.061705][T14990]  ? genl_rcv_msg+0x4bb/0x800
[  827.061733][T14990]  netlink_ack+0x15d/0xb80
[  827.061760][T14990]  netlink_rcv_skb+0x332/0x420
[  827.061780][T14990]  ? __pfx_genl_rcv_msg+0x10/0x10
[  827.061802][T14990]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  827.061831][T14990]  ? netlink_deliver_tap+0x1ae/0xd30
[  827.061862][T14990]  genl_rcv+0x28/0x40
[  827.061879][T14990]  netlink_unicast+0x5aa/0x870
[  827.061901][T14990]  ? __pfx_netlink_unicast+0x10/0x10
[  827.061930][T14990]  netlink_sendmsg+0x8c8/0xdd0
[  827.061952][T14990]  ? __pfx_netlink_sendmsg+0x10/0x10
[  827.061973][T14990]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  827.062003][T14990]  ____sys_sendmsg+0xa98/0xc70
[  827.062026][T14990]  ? __pfx_____sys_sendmsg+0x10/0x10
[  827.062046][T14990]  ? get_compat_msghdr+0x11a/0x170
[  827.062084][T14990]  ___sys_sendmsg+0x134/0x1d0
[  827.062102][T14990]  ? __pfx____sys_sendmsg+0x10/0x10
[  827.062149][T14990]  ? find_held_lock+0x2b/0x80
[  827.062186][T14990]  __sys_sendmsg+0x16d/0x220
[  827.062203][T14990]  ? __pfx___sys_sendmsg+0x10/0x10
[  827.062233][T14990]  ? rcu_is_watching+0x12/0xc0
[  827.062256][T14990]  __do_fast_syscall_32+0x7c/0x300
[  827.062279][T14990]  do_fast_syscall_32+0x32/0x80
[  827.062299][T14990]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  827.062319][T14990] RIP: 0023:0xf7f75579
[  827.062333][T14990] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  827.062349][T14990] RSP: 002b:00000000f546655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  827.062365][T14990] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[  827.062376][T14990] RDX: 000000000000c000 RSI: 0000000000000000 RDI: 0000000000000000
[  827.062386][T14990] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  827.062396][T14990] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  827.062406][T14990] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  827.062430][T14990]  </TASK>
[  827.309212][T14997] virtio-fs: tag <c:::> not found
[  827.650824][T15004] random: crng reseeded on system resumption
[  828.113598][T15012] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  828.116277][T15012] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  828.150736][T15012] vhci_hcd vhci_hcd.0: Device attached
[  828.422830][ T6007] usb 38-1: SetAddress Request (20) to port 0
[  828.424853][ T6007] usb 38-1: new SuperSpeed USB device number 20 using vhci_hcd
[  828.547616][T15013] vhci_hcd: connection reset by peer
[  828.549520][  T376] vhci_hcd: stop threads
[  828.550924][  T376] vhci_hcd: release socket
[  828.552449][  T376] vhci_hcd: disconnect device
[  828.637118][T15022] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  828.639719][T15022] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  828.643591][T15022] vhci_hcd vhci_hcd.0: Device attached
[  828.679103][T15025] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  828.682221][T15025] UDF-fs: Scanning with blocksize 2048 failed
[  828.690149][T15025] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  828.693178][T15025] UDF-fs: Scanning with blocksize 4096 failed
[  828.957086][T15030] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  828.959152][T15030] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  828.961792][T15030] vhci_hcd vhci_hcd.0: Device attached
[  829.112947][ T2300] usb 40-1: SetAddress Request (48) to port 0
[  829.115904][ T2300] usb 40-1: new SuperSpeed USB device number 48 using vhci_hcd
[  829.342879][T15023] vhci_hcd: connection reset by peer
[  829.345566][ T1153] vhci_hcd: stop threads
[  829.347316][ T1153] vhci_hcd: release socket
[  829.349260][ T1153] vhci_hcd: disconnect device
[  829.551614][T15031] vhci_hcd: connection closed
[  829.582953][ T1205] vhci_hcd: stop threads
[  829.592300][ T1205] vhci_hcd: release socket
[  829.612721][ T1205] vhci_hcd: disconnect device
[  830.087874][T15040] Process accounting resumed
[  830.202322][T15046] random: crng reseeded on system resumption
[  830.252828][T15048] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2154'.
[  830.323334][T15048] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2154'.
[  830.389927][T15054] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2154'.
[  830.794956][T15064] 9pnet_fd: Insufficient options for proto=fd
[  830.798622][T15066] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  830.801151][T15066] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  830.813079][T15066] vhci_hcd vhci_hcd.0: Device attached
[  831.055833][T15069] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2156'.
[  831.058972][T15069] netlink: 'syz.2.2156': attribute type 18 has an invalid length.
[  831.204329][T15075] Bluetooth: MGMT ver 1.23
[  831.296379][T15067] vhci_hcd: connection reset by peer
[  831.298846][   T12] vhci_hcd: stop threads
[  831.300235][   T12] vhci_hcd: release socket
[  831.301704][   T12] vhci_hcd: disconnect device
[  831.301732][T10828] usb 42-1: device descriptor read/8, error -110
[  831.595622][T15082] netlink: 'syz.0.2164': attribute type 9 has an invalid length.
[  831.651029][T15085] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2163'.
[  831.674322][T15085] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2163'.
[  831.733076][T15092] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2163'.
[  831.767671][T10828] usb usb42-port1: attempt power cycle
[  831.879803][T15098] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  831.881801][T15098] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  831.887308][T15098] vhci_hcd vhci_hcd.0: Device attached
[  832.073685][T15111] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2167'.
[  832.089169][T15111] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2167'.
[  832.145246][T15113] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2167'.
[  832.328797][T10828] usb usb42-port1: unable to enumerate USB device
[  832.557005][T15099] vhci_hcd: connection closed
[  832.559197][   T13] vhci_hcd: stop threads
[  832.569369][   T13] vhci_hcd: release socket
[  832.571936][   T13] vhci_hcd: disconnect device
[  832.994647][T15128] FAULT_INJECTION: forcing a failure.
[  832.994647][T15128] name failslab, interval 1, probability 0, space 0, times 0
[  832.998650][T15128] CPU: 0 UID: 0 PID: 15128 Comm: syz.1.2171 Not tainted syzkaller #0 PREEMPT(full) 
[  832.998665][T15128] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  832.998673][T15128] Call Trace:
[  832.998677][T15128]  <TASK>
[  832.998682][T15128]  dump_stack_lvl+0x16c/0x1f0
[  832.998698][T15128]  should_fail_ex+0x512/0x640
[  832.998716][T15128]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  832.998735][T15128]  should_failslab+0xc2/0x120
[  832.998759][T15128]  kmem_cache_alloc_node_noprof+0x78/0x770
[  832.998776][T15128]  ? __alloc_skb+0x2b2/0x380
[  832.998811][T15128]  ? __alloc_skb+0x2b2/0x380
[  832.998827][T15128]  __alloc_skb+0x2b2/0x380
[  832.998844][T15128]  ? __pfx___alloc_skb+0x10/0x10
[  832.998862][T15128]  ? nl80211_parse_counter_offsets+0x252/0x2d0
[  832.998880][T15128]  ? rcu_is_watching+0x12/0xc0
[  832.998895][T15128]  nl80211_tx_mgmt+0x7b0/0xdd0
[  832.998914][T15128]  ? __pfx_nl80211_tx_mgmt+0x10/0x10
[  832.998931][T15128]  ? __pfx_netdev_run_todo+0x10/0x10
[  832.998953][T15128]  ? nl80211_pre_doit+0x1b0/0xb10
[  832.998966][T15128]  genl_family_rcv_msg_doit+0x209/0x2f0
[  832.998981][T15128]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  832.999000][T15128]  ? bpf_lsm_capable+0x9/0x10
[  832.999015][T15128]  ? security_capable+0x7e/0x260
[  832.999031][T15128]  ? ns_capable+0xd7/0x110
[  832.999045][T15128]  genl_rcv_msg+0x55c/0x800
[  832.999060][T15128]  ? __pfx_genl_rcv_msg+0x10/0x10
[  832.999073][T15128]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  832.999084][T15128]  ? __pfx_nl80211_tx_mgmt+0x10/0x10
[  832.999100][T15128]  ? __pfx_nl80211_post_doit+0x10/0x10
[  832.999120][T15128]  netlink_rcv_skb+0x158/0x420
[  832.999132][T15128]  ? __pfx_genl_rcv_msg+0x10/0x10
[  832.999146][T15128]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  832.999163][T15128]  ? netlink_deliver_tap+0x1ae/0xd30
[  832.999184][T15128]  genl_rcv+0x28/0x40
[  832.999196][T15128]  netlink_unicast+0x5aa/0x870
[  832.999209][T15128]  ? __pfx_netlink_unicast+0x10/0x10
[  832.999226][T15128]  netlink_sendmsg+0x8c8/0xdd0
[  832.999240][T15128]  ? __pfx_netlink_sendmsg+0x10/0x10
[  832.999253][T15128]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  832.999272][T15128]  ____sys_sendmsg+0xa98/0xc70
[  832.999288][T15128]  ? __pfx_____sys_sendmsg+0x10/0x10
[  832.999301][T15128]  ? get_compat_msghdr+0x11a/0x170
[  832.999325][T15128]  ___sys_sendmsg+0x134/0x1d0
[  832.999336][T15128]  ? __pfx____sys_sendmsg+0x10/0x10
[  832.999362][T15128]  ? find_held_lock+0x2b/0x80
[  832.999383][T15128]  __sys_sendmsg+0x16d/0x220
[  832.999393][T15128]  ? __pfx___sys_sendmsg+0x10/0x10
[  832.999410][T15128]  ? rcu_is_watching+0x12/0xc0
[  832.999424][T15128]  __do_fast_syscall_32+0x7c/0x300
[  832.999439][T15128]  do_fast_syscall_32+0x32/0x80
[  832.999453][T15128]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  832.999467][T15128] RIP: 0023:0xf700d579
[  832.999476][T15128] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  832.999487][T15128] RSP: 002b:00000000f53fd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  832.999497][T15128] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000c00
[  832.999504][T15128] RDX: 0000000024008846 RSI: 0000000000000000 RDI: 0000000000000000
[  832.999511][T15128] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  832.999518][T15128] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  832.999524][T15128] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  832.999538][T15128]  </TASK>
[  833.527675][T15142] FAULT_INJECTION: forcing a failure.
[  833.527675][T15142] name failslab, interval 1, probability 0, space 0, times 0
[  833.531742][T15142] CPU: 3 UID: 0 PID: 15142 Comm: syz.1.2177 Not tainted syzkaller #0 PREEMPT(full) 
[  833.531758][T15142] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  833.531765][T15142] Call Trace:
[  833.531769][T15142]  <TASK>
[  833.531773][T15142]  dump_stack_lvl+0x16c/0x1f0
[  833.531790][T15142]  should_fail_ex+0x512/0x640
[  833.531808][T15142]  ? __kmalloc_noprof+0xca/0x880
[  833.531828][T15142]  should_failslab+0xc2/0x120
[  833.531843][T15142]  __kmalloc_noprof+0xdd/0x880
[  833.531865][T15142]  ? lsm_blob_alloc+0x68/0x90
[  833.531882][T15142]  ? lsm_blob_alloc+0x68/0x90
[  833.531894][T15142]  lsm_blob_alloc+0x68/0x90
[  833.531908][T15142]  security_task_alloc+0x2d/0x260
[  833.531921][T15142]  copy_process+0x220b/0x76a0
[  833.531936][T15142]  ? lockdep_hardirqs_on+0x7c/0x110
[  833.531954][T15142]  ? __pfx_copy_process+0x10/0x10
[  833.531966][T15142]  ? native_apic_msr_write+0x28/0x40
[  833.531982][T15142]  ? __irq_work_queue_local+0x1d7/0x580
[  833.532000][T15142]  ? __pfx___irq_work_queue_local+0x10/0x10
[  833.532021][T15142]  kernel_clone+0xfc/0x930
[  833.532036][T15142]  ? __pfx_kernel_clone+0x10/0x10
[  833.532057][T15142]  __do_compat_sys_ia32_clone+0xcb/0x110
[  833.532073][T15142]  ? __pfx___do_compat_sys_ia32_clone+0x10/0x10
[  833.532095][T15142]  ? syscall_trace_enter+0x1cb/0x240
[  833.532116][T15142]  ? rcu_is_watching+0x12/0xc0
[  833.532130][T15142]  __do_fast_syscall_32+0x7c/0x300
[  833.532145][T15142]  do_fast_syscall_32+0x32/0x80
[  833.532158][T15142]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  833.532172][T15142] RIP: 0023:0xf700d579
[  833.532181][T15142] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  833.532192][T15142] RSP: 002b:00000000f53fd50c EFLAGS: 00000246 ORIG_RAX: 0000000000000078
[  833.532202][T15142] RAX: ffffffffffffffda RBX: 0000000000000011 RCX: 0000000000000000
[  833.532209][T15142] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  833.532216][T15142] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  833.532222][T15142] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  833.532228][T15142] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  833.532256][T15142]  </TASK>
[  833.606093][ T6007] usb 38-1: device descriptor read/8, error -110
[  833.745484][T15152] random: crng reseeded on system resumption
[  833.883199][T15154] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  833.885274][T15154] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  833.888557][T15154] vhci_hcd vhci_hcd.0: Device attached
[  834.058891][ T6007] usb usb38-port1: attempt power cycle
[  834.183342][T10828] usb 44-1: SetAddress Request (29) to port 0
[  834.187263][T10828] usb 44-1: new SuperSpeed USB device number 29 using vhci_hcd
[  834.215037][ T2300] usb 40-1: device descriptor read/8, error -110
[  834.539294][T15162] FAULT_INJECTION: forcing a failure.
[  834.539294][T15162] name failslab, interval 1, probability 0, space 0, times 0
[  834.543370][T15162] CPU: 3 UID: 0 PID: 15162 Comm: syz.1.2181 Not tainted syzkaller #0 PREEMPT(full) 
[  834.543385][T15162] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  834.543392][T15162] Call Trace:
[  834.543396][T15162]  <TASK>
[  834.543400][T15162]  dump_stack_lvl+0x16c/0x1f0
[  834.543417][T15162]  should_fail_ex+0x512/0x640
[  834.543434][T15162]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  834.543449][T15162]  should_failslab+0xc2/0x120
[  834.543464][T15162]  kmem_cache_alloc_node_noprof+0x78/0x770
[  834.543476][T15162]  ? __alloc_skb+0x2b2/0x380
[  834.543496][T15162]  ? __alloc_skb+0x2b2/0x380
[  834.543512][T15162]  __alloc_skb+0x2b2/0x380
[  834.543529][T15162]  ? __pfx___alloc_skb+0x10/0x10
[  834.543546][T15162]  ? genl_rcv_msg+0x550/0x800
[  834.543559][T15162]  ? genl_rcv_msg+0x4bb/0x800
[  834.543575][T15162]  netlink_ack+0x15d/0xb80
[  834.543591][T15162]  netlink_rcv_skb+0x332/0x420
[  834.543602][T15162]  ? __pfx_genl_rcv_msg+0x10/0x10
[  834.543617][T15162]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  834.543634][T15162]  ? netlink_deliver_tap+0x1ae/0xd30
[  834.543655][T15162]  genl_rcv+0x28/0x40
[  834.543666][T15162]  netlink_unicast+0x5aa/0x870
[  834.543679][T15162]  ? __pfx_netlink_unicast+0x10/0x10
[  834.543696][T15162]  netlink_sendmsg+0x8c8/0xdd0
[  834.543710][T15162]  ? __pfx_netlink_sendmsg+0x10/0x10
[  834.543723][T15162]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  834.543742][T15162]  ____sys_sendmsg+0xa98/0xc70
[  834.543758][T15162]  ? __pfx_____sys_sendmsg+0x10/0x10
[  834.543771][T15162]  ? get_compat_msghdr+0x11a/0x170
[  834.543795][T15162]  ___sys_sendmsg+0x134/0x1d0
[  834.543806][T15162]  ? __pfx____sys_sendmsg+0x10/0x10
[  834.543832][T15162]  ? find_held_lock+0x2b/0x80
[  834.543852][T15162]  __sys_sendmsg+0x16d/0x220
[  834.543863][T15162]  ? __pfx___sys_sendmsg+0x10/0x10
[  834.543884][T15162]  ? rcu_is_watching+0x12/0xc0
[  834.543899][T15162]  __do_fast_syscall_32+0x7c/0x300
[  834.543914][T15162]  do_fast_syscall_32+0x32/0x80
[  834.543928][T15162]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  834.543942][T15162] RIP: 0023:0xf700d579
[  834.543952][T15162] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  834.543962][T15162] RSP: 002b:00000000f53fd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  834.543973][T15162] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800006c0
[  834.543980][T15162] RDX: 0000000000040000 RSI: 0000000000000000 RDI: 0000000000000000
[  834.543987][T15162] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  834.543993][T15162] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  834.544000][T15162] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  834.544014][T15162]  </TASK>
[  834.545951][T15155] vhci_hcd: connection reset by peer
[  834.621681][T15166] syzkaller0: entered promiscuous mode
[  834.625889][   T62] vhci_hcd: stop threads
[  834.626709][T15166] syzkaller0: entered allmulticast mode
[  834.629177][   T62] vhci_hcd: release socket
[  834.629231][   T62] vhci_hcd: disconnect device
[  834.660580][T15166] FAULT_INJECTION: forcing a failure.
[  834.660580][T15166] name failslab, interval 1, probability 0, space 0, times 0
[  834.665564][T15166] CPU: 0 UID: 0 PID: 15166 Comm: syz.1.2183 Not tainted syzkaller #0 PREEMPT(full) 
[  834.665580][T15166] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  834.665587][T15166] Call Trace:
[  834.665591][T15166]  <TASK>
[  834.665596][T15166]  dump_stack_lvl+0x16c/0x1f0
[  834.665612][T15166]  should_fail_ex+0x512/0x640
[  834.665630][T15166]  ? __kmalloc_cache_noprof+0x5f/0x780
[  834.665666][T15166]  should_failslab+0xc2/0x120
[  834.665683][T15166]  __kmalloc_cache_noprof+0x72/0x780
[  834.665702][T15166]  ? nf_nat_masq_schedule+0x2cf/0x620
[  834.665722][T15166]  ? nf_nat_masq_schedule+0x2cf/0x620
[  834.665738][T15166]  nf_nat_masq_schedule+0x2cf/0x620
[  834.665755][T15166]  ? __pfx_device_cmp+0x10/0x10
[  834.665771][T15166]  ? __pfx_nf_nat_masq_schedule+0x10/0x10
[  834.665788][T15166]  ? nfqnl_rcv_dev_event+0x35/0x5e0
[  834.665807][T15166]  ? __pfx_failover_event+0x10/0x10
[  834.665822][T15166]  ? __pfx_virt_wifi_event+0x10/0x10
[  834.665837][T15166]  masq_device_event+0xc0/0xf0
[  834.665853][T15166]  notifier_call_chain+0xbc/0x410
[  834.665869][T15166]  ? __pfx_masq_device_event+0x10/0x10
[  834.665888][T15166]  call_netdevice_notifiers_info+0xbe/0x140
[  834.665904][T15166]  netif_close_many+0x319/0x630
[  834.665919][T15166]  ? __pfx_netif_close_many+0x10/0x10
[  834.665934][T15166]  ? netif_close_many_and_unlock+0x24/0x270
[  834.665950][T15166]  unregister_netdevice_many_notify+0x549/0x25c0
[  834.665968][T15166]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  834.665989][T15166]  unregister_netdevice_queue+0x305/0x3f0
[  834.666002][T15166]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  834.666013][T15166]  ? linkwatch_schedule_work+0x181/0x1c0
[  834.666028][T15166]  ? linkwatch_fire_event+0x6f/0x270
[  834.666045][T15166]  __tun_detach+0x119c/0x1490
[  834.666073][T15166]  ? __pfx_tun_chr_close+0x10/0x10
[  834.666090][T15166]  tun_chr_close+0xc2/0x230
[  834.666107][T15166]  __fput+0x402/0xb70
[  834.666126][T15166]  fput_close_sync+0x118/0x210
[  834.666143][T15166]  ? __pfx_fput_close_sync+0x10/0x10
[  834.666159][T15166]  ? dnotify_flush+0x79/0x4c0
[  834.666176][T15166]  __ia32_sys_close+0x8b/0x120
[  834.666194][T15166]  __do_fast_syscall_32+0x7c/0x300
[  834.666209][T15166]  do_fast_syscall_32+0x32/0x80
[  834.666222][T15166]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  834.666237][T15166] RIP: 0023:0xf700d579
[  834.666246][T15166] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  834.666257][T15166] RSP: 002b:00000000f53fd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000006
[  834.666268][T15166] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  834.666275][T15166] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  834.666281][T15166] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  834.666287][T15166] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  834.666293][T15166] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  834.666308][T15166]  </TASK>
[  834.866698][ T6007] usb usb38-port1: unable to enumerate USB device
[  834.869208][ T2300] usb usb40-port1: attempt power cycle
[  835.580072][ T2300] usb usb40-port1: unable to enumerate USB device
[  835.724480][T15180] random: crng reseeded on system resumption
[  836.634707][T15204] bridge0: port 2(bridge_slave_1) entered disabled state
[  836.822108][T15208] FAULT_INJECTION: forcing a failure.
[  836.822108][T15208] name failslab, interval 1, probability 0, space 0, times 0
[  836.828756][T15208] CPU: 1 UID: 0 PID: 15208 Comm: syz.0.2193 Not tainted syzkaller #0 PREEMPT(full) 
[  836.828780][T15208] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  836.828791][T15208] Call Trace:
[  836.828811][T15208]  <TASK>
[  836.828819][T15208]  dump_stack_lvl+0x16c/0x1f0
[  836.828843][T15208]  should_fail_ex+0x512/0x640
[  836.828888][T15208]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  836.828908][T15208]  should_failslab+0xc2/0x120
[  836.828931][T15208]  kmem_cache_alloc_noprof+0x75/0x6e0
[  836.828948][T15208]  ? radix_tree_node_alloc.constprop.0+0x7c/0x350
[  836.828979][T15208]  ? radix_tree_node_alloc.constprop.0+0x7c/0x350
[  836.829003][T15208]  radix_tree_node_alloc.constprop.0+0x7c/0x350
[  836.829032][T15208]  idr_get_free+0x528/0xa30
[  836.829058][T15208]  idr_alloc_u32+0x190/0x2f0
[  836.829077][T15208]  ? __pfx_idr_alloc_u32+0x10/0x10
[  836.829103][T15208]  tcf_idr_check_alloc+0x136/0x770
[  836.829124][T15208]  ? find_held_lock+0x2b/0x80
[  836.829143][T15208]  ? __pfx_tcf_idr_check_alloc+0x10/0x10
[  836.829166][T15208]  ? __nla_parse+0x40/0x60
[  836.829188][T15208]  tcf_sample_init+0x1d3/0x930
[  836.829209][T15208]  ? __pfx_tcf_sample_init+0x10/0x10
[  836.829236][T15208]  ? __asan_memcpy+0x3c/0x60
[  836.829257][T15208]  tcf_action_init_1+0x460/0x6c0
[  836.829282][T15208]  ? __pfx_tcf_action_init_1+0x10/0x10
[  836.829317][T15208]  ? __nla_parse+0x40/0x60
[  836.829336][T15208]  tcf_action_init+0x432/0xa50
[  836.829367][T15208]  ? __pfx_tcf_action_init+0x10/0x10
[  836.829405][T15208]  ? arch_stack_walk+0xa6/0x100
[  836.829445][T15208]  ? __kasan_slab_free+0x5f/0x80
[  836.829465][T15208]  ? kmem_cache_free+0x2d4/0x6c0
[  836.829481][T15208]  ? kfree_skbmem+0x1a4/0x1f0
[  836.829500][T15208]  ? consume_skb+0xcc/0x100
[  836.829515][T15208]  ? nlmon_xmit+0xa5/0xe0
[  836.829535][T15208]  ? dev_hard_start_xmit+0x97/0x740
[  836.829557][T15208]  ? __dev_queue_xmit+0xa46/0x4490
[  836.829577][T15208]  ? netlink_deliver_tap+0xa87/0xd30
[  836.829602][T15208]  ? netlink_unicast+0x64c/0x870
[  836.829618][T15208]  ? netlink_sendmsg+0x8c8/0xdd0
[  836.829633][T15208]  ? ____sys_sendmsg+0xa98/0xc70
[  836.829657][T15208]  tcf_action_add+0xee/0x5c0
[  836.829684][T15208]  ? __pfx_tcf_action_add+0x10/0x10
[  836.829750][T15208]  ? __nla_parse+0x40/0x60
[  836.829772][T15208]  tc_ctl_action+0x35b/0x470
[  836.829794][T15208]  ? __pfx_tc_ctl_action+0x10/0x10
[  836.829825][T15208]  ? __pfx_tc_ctl_action+0x10/0x10
[  836.829847][T15208]  rtnetlink_rcv_msg+0x3c9/0xe90
[  836.829866][T15208]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  836.829891][T15208]  ? ref_tracker_free+0x37c/0x830
[  836.829920][T15208]  netlink_rcv_skb+0x158/0x420
[  836.829937][T15208]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  836.829955][T15208]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  836.829997][T15208]  ? netlink_deliver_tap+0x1ae/0xd30
[  836.830029][T15208]  netlink_unicast+0x5aa/0x870
[  836.830050][T15208]  ? __pfx_netlink_unicast+0x10/0x10
[  836.830078][T15208]  netlink_sendmsg+0x8c8/0xdd0
[  836.830100][T15208]  ? __pfx_netlink_sendmsg+0x10/0x10
[  836.830121][T15208]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  836.830151][T15208]  ____sys_sendmsg+0xa98/0xc70
[  836.830175][T15208]  ? __pfx_____sys_sendmsg+0x10/0x10
[  836.830195][T15208]  ? get_compat_msghdr+0x11a/0x170
[  836.830232][T15208]  ___sys_sendmsg+0x134/0x1d0
[  836.830250][T15208]  ? __pfx____sys_sendmsg+0x10/0x10
[  836.830289][T15208]  ? find_held_lock+0x2b/0x80
[  836.830322][T15208]  __sys_sendmsg+0x16d/0x220
[  836.830338][T15208]  ? __pfx___sys_sendmsg+0x10/0x10
[  836.830365][T15208]  ? rcu_is_watching+0x12/0xc0
[  836.830386][T15208]  __do_fast_syscall_32+0x7c/0x300
[  836.830409][T15208]  do_fast_syscall_32+0x32/0x80
[  836.830428][T15208]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  836.830449][T15208] RIP: 0023:0xf7fe2579
[  836.830463][T15208] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  836.830477][T15208] RSP: 002b:00000000f54b555c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  836.830493][T15208] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000100
[  836.830504][T15208] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  836.830514][T15208] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  836.830524][T15208] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  836.830535][T15208] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  836.830560][T15208]  </TASK>
[  837.274238][T15218] random: crng reseeded on system resumption
[  837.501210][T15223] 9pnet_fd: Insufficient options for proto=fd
[  837.596012][T15224] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  837.598085][T15224] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  837.600991][T15224] vhci_hcd vhci_hcd.0: Device attached
[  838.193443][T15225] vhci_hcd: connection closed
[  838.193836][   T12] vhci_hcd: stop threads
[  838.197616][   T12] vhci_hcd: release socket
[  838.199553][   T12] vhci_hcd: disconnect device
[  839.172081][T15268] random: crng reseeded on system resumption
[  839.181905][T15268] F2FS-fs: Value of option "test_dummy_encryption" is unrecognized
[  839.243151][T10828] usb 44-1: device descriptor read/8, error -110
[  839.713806][T10828] usb usb44-port1: attempt power cycle
[  840.130226][T15283] overlayfs: failed to resolve './file1': -2
[  840.230780][T15288] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2208'.
[  840.293883][T10828] usb usb44-port1: unable to enumerate USB device
[  841.315359][T15309] bond_slave_0: entered promiscuous mode
[  841.317775][T15309] bond_slave_1: entered promiscuous mode
[  841.320936][T15309] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  841.366754][T15310] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  841.369536][T15310] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  841.382867][T15310] vhci_hcd vhci_hcd.0: Device attached
[  841.414791][T15309] bond_slave_0: left promiscuous mode
[  841.416507][T15309] bond_slave_1: left promiscuous mode
[  841.712071][T15323] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2218'.
[  841.716427][T15323] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2218'.
[  841.732018][T15325] FAULT_INJECTION: forcing a failure.
[  841.732018][T15325] name failslab, interval 1, probability 0, space 0, times 0
[  841.732920][T10828] usb 44-1: SetAddress Request (33) to port 0
[  841.739262][T15325] CPU: 2 UID: 0 PID: 15325 Comm: syz.0.2219 Not tainted syzkaller #0 PREEMPT(full) 
[  841.739306][T15325] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  841.739318][T15325] Call Trace:
[  841.739326][T15325]  <TASK>
[  841.739333][T15325]  dump_stack_lvl+0x16c/0x1f0
[  841.739355][T15325]  should_fail_ex+0x512/0x640
[  841.739380][T15325]  ? __kmalloc_noprof+0xca/0x880
[  841.739410][T15325]  should_failslab+0xc2/0x120
[  841.739433][T15325]  __kmalloc_noprof+0xdd/0x880
[  841.739457][T15325]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  841.739483][T15325]  ? parse+0x9b/0x160
[  841.739511][T15325]  ? parse+0x9b/0x160
[  841.739533][T15325]  parse+0x9b/0x160
[  841.739559][T15325]  taskstats_user_cmd+0x925/0x1170
[  841.739582][T15325]  ? __pfx___nla_validate_parse+0x10/0x10
[  841.739605][T15325]  ? __pfx_taskstats_user_cmd+0x10/0x10
[  841.739631][T15325]  ? rcu_is_watching+0x12/0xc0
[  841.739655][T15325]  ? __nla_parse+0x40/0x60
[  841.739677][T15325]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  841.739698][T15325]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  841.739725][T15325]  genl_family_rcv_msg_doit+0x209/0x2f0
[  841.739748][T15325]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  841.739768][T15325]  ? rcu_is_watching+0x12/0xc0
[  841.739801][T15325]  ? bpf_lsm_capable+0x9/0x10
[  841.739822][T15325]  ? security_capable+0x7e/0x260
[  841.739852][T15325]  genl_rcv_msg+0x55c/0x800
[  841.739877][T15325]  ? __pfx_genl_rcv_msg+0x10/0x10
[  841.739899][T15325]  ? __pfx_taskstats_user_cmd+0x10/0x10
[  841.739935][T15325]  netlink_rcv_skb+0x158/0x420
[  841.739953][T15325]  ? __pfx_genl_rcv_msg+0x10/0x10
[  841.739976][T15325]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  841.740007][T15325]  ? netlink_deliver_tap+0x1ae/0xd30
[  841.740038][T15325]  genl_rcv+0x28/0x40
[  841.740054][T15325]  netlink_unicast+0x5aa/0x870
[  841.740077][T15325]  ? __pfx_netlink_unicast+0x10/0x10
[  841.740108][T15325]  netlink_sendmsg+0x8c8/0xdd0
[  841.740131][T15325]  ? __pfx_netlink_sendmsg+0x10/0x10
[  841.740154][T15325]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  841.740182][T15325]  ____sys_sendmsg+0xa98/0xc70
[  841.740207][T15325]  ? __pfx_____sys_sendmsg+0x10/0x10
[  841.740228][T15325]  ? get_compat_msghdr+0x11a/0x170
[  841.740269][T15325]  ___sys_sendmsg+0x134/0x1d0
[  841.740285][T15325]  ? __pfx____sys_sendmsg+0x10/0x10
[  841.740327][T15325]  ? find_held_lock+0x2b/0x80
[  841.740367][T15325]  __sys_sendmsg+0x16d/0x220
[  841.740385][T15325]  ? __pfx___sys_sendmsg+0x10/0x10
[  841.740413][T15325]  ? rcu_is_watching+0x12/0xc0
[  841.740436][T15325]  __do_fast_syscall_32+0x7c/0x300
[  841.740460][T15325]  do_fast_syscall_32+0x32/0x80
[  841.740481][T15325]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  841.740501][T15325] RIP: 0023:0xf7fe2579
[  841.740514][T15325] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  841.740531][T15325] RSP: 002b:00000000f54d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  841.740548][T15325] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000080
[  841.740560][T15325] RDX: 000000000000c000 RSI: 0000000000000000 RDI: 0000000000000000
[  841.740570][T15325] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  841.740580][T15325] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  841.740591][T15325] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  841.740618][T15325]  </TASK>
[  841.772621][T15326] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2218'.
[  841.902918][T10828] usb 44-1: new SuperSpeed USB device number 33 using vhci_hcd
[  842.102424][T15311] vhci_hcd: connection reset by peer
[  842.111894][   T12] vhci_hcd: stop threads
[  842.114207][   T12] vhci_hcd: release socket
[  842.116044][   T12] vhci_hcd: disconnect device
[  842.325718][T15344] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2223'.
[  842.342887][   T60] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  842.502884][   T60] usb 7-1: Using ep0 maxpacket: 8
[  842.506619][   T60] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  842.511075][   T60] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2
[  842.514940][   T60] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  842.519507][   T60] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  842.524050][   T60] usb 7-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  842.527366][   T60] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  842.538360][   T60] hub 7-1:1.0: bad descriptor, ignoring hub
[  842.541259][   T60] hub 7-1:1.0: probe with driver hub failed with error -5
[  842.544753][   T60] cdc_wdm 7-1:1.0: skipping garbage
[  842.547010][   T60] cdc_wdm 7-1:1.0: skipping garbage
[  842.551330][   T60] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  842.554023][   T60] cdc_wdm 7-1:1.0: Unknown control protocol
[  843.433367][T15333] usb 7-1: reset high-speed USB device number 3 using dummy_hcd
[  843.594469][T15364] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2228'.
[  843.642040][T15368] overlayfs: failed to resolve './file1': -2
[  843.724170][T15369] FAULT_INJECTION: forcing a failure.
[  843.724170][T15369] name failslab, interval 1, probability 0, space 0, times 0
[  843.728464][T15369] CPU: 1 UID: 0 PID: 15369 Comm: syz.3.2229 Not tainted syzkaller #0 PREEMPT(full) 
[  843.728492][T15369] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  843.728499][T15369] Call Trace:
[  843.728504][T15369]  <TASK>
[  843.728509][T15369]  dump_stack_lvl+0x16c/0x1f0
[  843.728525][T15369]  should_fail_ex+0x512/0x640
[  843.728542][T15369]  ? fs_reclaim_acquire+0xae/0x150
[  843.728559][T15369]  should_failslab+0xc2/0x120
[  843.728575][T15369]  __kmalloc_noprof+0xdd/0x880
[  843.728593][T15369]  ? tomoyo_encode2+0x100/0x3e0
[  843.728609][T15369]  ? tomoyo_encode2+0x100/0x3e0
[  843.728620][T15369]  tomoyo_encode2+0x100/0x3e0
[  843.728634][T15369]  tomoyo_encode+0x29/0x50
[  843.728646][T15369]  tomoyo_realpath_from_path+0x18f/0x6e0
[  843.728663][T15369]  tomoyo_path2_perm+0x2a1/0x710
[  843.728680][T15369]  ? tomoyo_path2_perm+0x293/0x710
[  843.728699][T15369]  ? __pfx_tomoyo_path2_perm+0x10/0x10
[  843.728737][T15369]  ? do_raw_spin_unlock+0x172/0x230
[  843.728759][T15369]  ? simple_lookup+0x105/0x1d0
[  843.728771][T15369]  tomoyo_path_link+0xae/0x100
[  843.728804][T15369]  ? __pfx_tomoyo_path_link+0x10/0x10
[  843.728818][T15369]  ? make_vfsgid+0xf1/0x140
[  843.728834][T15369]  ? __pfx_make_vfsgid+0x10/0x10
[  843.728853][T15369]  security_path_link+0x12f/0x2b0
[  843.728872][T15369]  do_linkat+0x412/0x5a0
[  843.728888][T15369]  ? __pfx_do_linkat+0x10/0x10
[  843.728900][T15369]  ? strncpy_from_user+0x203/0x2e0
[  843.728918][T15369]  ? getname_flags.part.0+0x1c5/0x550
[  843.728938][T15369]  __ia32_sys_linkat+0xea/0x130
[  843.728953][T15369]  __do_fast_syscall_32+0x7c/0x300
[  843.728972][T15369]  do_fast_syscall_32+0x32/0x80
[  843.728985][T15369]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  843.729000][T15369] RIP: 0023:0xf70ad579
[  843.729009][T15369] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  843.729020][T15369] RSP: 002b:00000000f547c55c EFLAGS: 00000296 ORIG_RAX: 000000000000012f
[  843.729032][T15369] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[  843.729039][T15369] RDX: 0000000000000003 RSI: 0000000080000240 RDI: 0000000000000000
[  843.729045][T15369] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  843.729051][T15369] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  843.729058][T15369] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  843.729072][T15369]  </TASK>
[  843.729448][T15369] ERROR: Out of memory at tomoyo_realpath_from_path.
[  843.797124][T15333] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  843.841819][T15371] 9pnet_fd: Insufficient options for proto=fd
[  843.842082][T15333] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  843.923574][   T40] kauditd_printk_skb: 236 callbacks suppressed
[  843.923612][   T40] audit: type=1804 audit(1761106920.076:381): pid=15366 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2227" name="/newroot/555/file0/file0" dev="9p" ino=73924795 res=1 errno=0
[  843.944098][T11493] usb 7-1: USB disconnect, device number 3
[  844.688481][T15385] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  844.691307][T15385] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  844.695171][T15385] vhci_hcd vhci_hcd.0: Device attached
[  844.973031][ T6031] usb 42-1: SetAddress Request (54) to port 0
[  844.975749][ T6031] usb 42-1: new SuperSpeed USB device number 54 using vhci_hcd
[  845.441068][T15400] block device autoloading is deprecated and will be removed.
[  845.506765][T15387] vhci_hcd: connection reset by peer
[  845.517480][ T1153] vhci_hcd: stop threads
[  845.519420][ T1153] vhci_hcd: release socket
[  845.522211][ T1153] vhci_hcd: disconnect device
[  845.622389][T15402] 9pnet_fd: Insufficient options for proto=fd
[  846.394389][T15413] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2237'.
[  846.851476][T15418] 9pnet_fd: Insufficient options for proto=fd
[  846.982808][   T40] audit: type=1804 audit(1761106923.026:382): pid=15418 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.2238" name="/newroot/578/file0/file0" dev="9p" ino=73924795 res=1 errno=0
[  847.003092][T10828] usb 44-1: device descriptor read/8, error -110
[  847.272406][T15421] FAULT_INJECTION: forcing a failure.
[  847.272406][T15421] name failslab, interval 1, probability 0, space 0, times 0
[  847.277735][T15421] CPU: 2 UID: 0 PID: 15421 Comm: syz.1.2239 Not tainted syzkaller #0 PREEMPT(full) 
[  847.277759][T15421] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  847.277771][T15421] Call Trace:
[  847.277778][T15421]  <TASK>
[  847.277786][T15421]  dump_stack_lvl+0x16c/0x1f0
[  847.277810][T15421]  should_fail_ex+0x512/0x640
[  847.277841][T15421]  should_failslab+0xc2/0x120
[  847.277865][T15421]  kmem_cache_alloc_node_noprof+0x78/0x770
[  847.277885][T15421]  ? __alloc_skb+0x2b2/0x380
[  847.278007][T15421]  ? __alloc_skb+0x2b2/0x380
[  847.278033][T15421]  __alloc_skb+0x2b2/0x380
[  847.278060][T15421]  ? __pfx___alloc_skb+0x10/0x10
[  847.278089][T15421]  ? if_nlmsg_size+0x475/0xaf0
[  847.278111][T15421]  rtmsg_ifinfo_build_skb+0x81/0x280
[  847.278138][T15421]  rtmsg_ifinfo+0x9f/0x1a0
[  847.278162][T15421]  __dev_notify_flags+0x24c/0x2e0
[  847.278191][T15421]  ? __pfx___dev_notify_flags+0x10/0x10
[  847.278216][T15421]  ? __dev_change_flags+0x3d5/0x720
[  847.278245][T15421]  ? __pfx___dev_change_flags+0x10/0x10
[  847.278272][T15421]  ? validate_linkmsg+0x57c/0xb60
[  847.278296][T15421]  netif_change_flags+0x108/0x160
[  847.278316][T15421]  do_setlink.constprop.0+0xb53/0x4380
[  847.278341][T15421]  ? __pfx_do_setlink.constprop.0+0x10/0x10
[  847.278362][T15421]  ? stack_trace_save+0x8e/0xc0
[  847.278386][T15421]  ? __lock_acquire+0xb8a/0x1c90
[  847.278416][T15421]  ? kasan_save_stack+0x42/0x60
[  847.278439][T15421]  ? __mutex_trylock_common+0xe9/0x250
[  847.278465][T15421]  ? __pfx___mutex_trylock_common+0x10/0x10
[  847.278491][T15421]  ? __pfx___might_resched+0x10/0x10
[  847.278511][T15421]  ? rcu_is_watching+0x12/0xc0
[  847.278530][T15421]  ? trace_contention_end+0xdd/0x130
[  847.278554][T15421]  ? __mutex_lock+0x1c5/0x1060
[  847.278575][T15421]  ? __nla_validate_parse+0x600/0x2880
[  847.278597][T15421]  ? rcu_is_watching+0x12/0xc0
[  847.278618][T15421]  ? __pfx___mutex_lock+0x10/0x10
[  847.278646][T15421]  ? full_name_hash+0xbc/0x110
[  847.278670][T15421]  ? netdev_name_node_lookup+0x127/0x180
[  847.278697][T15421]  rtnl_newlink+0x1446/0x2000
[  847.278724][T15421]  ? __pfx_rtnl_newlink+0x10/0x10
[  847.278747][T15421]  ? kmem_cache_free+0x2d4/0x6c0
[  847.278766][T15421]  ? kfree_skbmem+0x1a4/0x1f0
[  847.278792][T15421]  ? kfree_skbmem+0x1a4/0x1f0
[  847.278816][T15421]  ? __lock_acquire+0x622/0x1c90
[  847.278842][T15421]  ? rcu_is_watching+0x12/0xc0
[  847.278871][T15421]  ? __pfx_rtnl_newlink+0x10/0x10
[  847.278888][T15421]  ? __pfx_rtnl_newlink+0x10/0x10
[  847.278904][T15421]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  847.278923][T15421]  ? __pfx_rtnl_newlink+0x10/0x10
[  847.278951][T15421]  rtnetlink_rcv_msg+0x95e/0xe90
[  847.278972][T15421]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  847.279001][T15421]  ? ref_tracker_free+0x37c/0x830
[  847.279031][T15421]  netlink_rcv_skb+0x158/0x420
[  847.279051][T15421]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  847.279072][T15421]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  847.279102][T15421]  ? netlink_deliver_tap+0x1ae/0xd30
[  847.279136][T15421]  netlink_unicast+0x5aa/0x870
[  847.279160][T15421]  ? __pfx_netlink_unicast+0x10/0x10
[  847.279191][T15421]  netlink_sendmsg+0x8c8/0xdd0
[  847.279215][T15421]  ? __pfx_netlink_sendmsg+0x10/0x10
[  847.279238][T15421]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  847.279270][T15421]  ____sys_sendmsg+0xa98/0xc70
[  847.279289][T15421]  ? btrfs_delalloc_reserve_metadata+0x664/0x960
[  847.279318][T15421]  ? __pfx_____sys_sendmsg+0x10/0x10
[  847.279337][T15421]  ? get_compat_msghdr+0x11a/0x170
[  847.279378][T15421]  ___sys_sendmsg+0x134/0x1d0
[  847.279399][T15421]  ? __pfx____sys_sendmsg+0x10/0x10
[  847.279441][T15421]  ? find_held_lock+0x2b/0x80
[  847.279480][T15421]  __sys_sendmsg+0x16d/0x220
[  847.279498][T15421]  ? __pfx___sys_sendmsg+0x10/0x10
[  847.279530][T15421]  ? rcu_is_watching+0x12/0xc0
[  847.279552][T15421]  __do_fast_syscall_32+0x7c/0x300
[  847.279576][T15421]  do_fast_syscall_32+0x32/0x80
[  847.279598][T15421]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  847.279620][T15421] RIP: 0023:0xf700d579
[  847.279635][T15421] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  847.279652][T15421] RSP: 002b:00000000f53fd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  847.279671][T15421] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000040
[  847.279682][T15421] RDX: 00000000040408c4 RSI: 0000000000000000 RDI: 0000000000000000
[  847.279693][T15421] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  847.279704][T15421] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  847.279714][T15421] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  847.279740][T15421]  </TASK>
[  847.292415][T15423] vivid-004: disconnect
[  847.450606][T15422] vivid-004: reconnect
[  847.655898][T10828] usb usb44-port1: attempt power cycle
[  847.759879][T15433] siw: device registration error -23
[  848.283629][T10828] usb usb44-port1: unable to enumerate USB device
[  848.450357][T15440] random: crng reseeded on system resumption
[  848.461029][T15440] F2FS-fs: Value of option "test_dummy_encryption" is unrecognized
[  848.530715][T15442] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2246'.
[  849.695097][T15461] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  849.697856][T15461] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  849.700618][T15461] vhci_hcd vhci_hcd.0: Device attached
[  850.003639][T10828] usb 38-1: SetAddress Request (24) to port 0
[  850.009165][T10828] usb 38-1: new SuperSpeed USB device number 24 using vhci_hcd
[  850.053241][ T6031] usb 42-1: device descriptor read/8, error -110
[  850.516509][ T6031] usb usb42-port1: attempt power cycle
[  850.521811][T15469] vhci_hcd: connection reset by peer
[  850.526577][  T376] vhci_hcd: stop threads
[  850.528406][  T376] vhci_hcd: release socket
[  850.530396][  T376] vhci_hcd: disconnect device
[  851.093904][ T6031] usb usb42-port1: unable to enumerate USB device
[  851.366396][T15484] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2254'.
[  851.370162][T15484] netlink: 'syz.3.2254': attribute type 7 has an invalid length.
[  851.374299][T15484] netlink: 'syz.3.2254': attribute type 8 has an invalid length.
[  851.377555][T15484] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2254'.
[  851.386897][T15484] ip6gretap0: entered promiscuous mode
[  851.390442][T15484] syz_tun: entered promiscuous mode
[  851.584818][T15484] ip6gretap0: left promiscuous mode
[  851.633787][T15484] syz_tun: left promiscuous mode
[  851.754659][T15493] 9pnet_fd: Insufficient options for proto=fd
[  851.948441][T15496] netlink: 'syz.2.2256': attribute type 10 has an invalid length.
[  852.655508][T15506] loop4: detected capacity change from 0 to 524255232
[  854.532884][T15531] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  854.535121][T15531] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  854.537806][T15531] vhci_hcd vhci_hcd.0: Device attached
[  854.543286][T15527] 9pnet_fd: Insufficient options for proto=fd
[  854.832877][ T6311] usb 42-1: SetAddress Request (58) to port 0
[  854.835500][ T6311] usb 42-1: new SuperSpeed USB device number 58 using vhci_hcd
[  855.169946][T15548] netlink: 'syz.1.2267': attribute type 1 has an invalid length.
[  855.173516][T15548] netlink: 224 bytes leftover after parsing attributes in process `syz.1.2267'.
[  855.223780][T15550] netlink: 'syz.3.2269': attribute type 10 has an invalid length.
[  855.739228][T10828] usb 38-1: device descriptor read/8, error -110
[  855.769189][T15533] vhci_hcd: connection reset by peer
[  855.772081][  T104] vhci_hcd: stop threads
[  855.779502][  T104] vhci_hcd: release socket
[  855.788432][  T104] vhci_hcd: disconnect device
[  856.013534][T15555] FAULT_INJECTION: forcing a failure.
[  856.013534][T15555] name failslab, interval 1, probability 0, space 0, times 0
[  856.018547][T15555] CPU: 1 UID: 0 PID: 15555 Comm: syz.0.2272 Not tainted syzkaller #0 PREEMPT(full) 
[  856.018569][T15555] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  856.018581][T15555] Call Trace:
[  856.018587][T15555]  <TASK>
[  856.018595][T15555]  dump_stack_lvl+0x16c/0x1f0
[  856.018620][T15555]  should_fail_ex+0x512/0x640
[  856.018645][T15555]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  856.018666][T15555]  should_failslab+0xc2/0x120
[  856.018690][T15555]  kmem_cache_alloc_node_noprof+0x78/0x770
[  856.018708][T15555]  ? __alloc_skb+0x2b2/0x380
[  856.018740][T15555]  ? __alloc_skb+0x2b2/0x380
[  856.018761][T15555]  __alloc_skb+0x2b2/0x380
[  856.018787][T15555]  ? __pfx___alloc_skb+0x10/0x10
[  856.018812][T15555]  ? genl_rcv_msg+0x550/0x800
[  856.018830][T15555]  ? genl_rcv_msg+0x4bb/0x800
[  856.018857][T15555]  netlink_ack+0x15d/0xb80
[  856.018884][T15555]  netlink_rcv_skb+0x332/0x420
[  856.018902][T15555]  ? __pfx_genl_rcv_msg+0x10/0x10
[  856.018928][T15555]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  856.018956][T15555]  ? netlink_deliver_tap+0x1ae/0xd30
[  856.018987][T15555]  genl_rcv+0x28/0x40
[  856.019005][T15555]  netlink_unicast+0x5aa/0x870
[  856.019025][T15555]  ? __pfx_netlink_unicast+0x10/0x10
[  856.019052][T15555]  netlink_sendmsg+0x8c8/0xdd0
[  856.019075][T15555]  ? __pfx_netlink_sendmsg+0x10/0x10
[  856.019096][T15555]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  856.019125][T15555]  ____sys_sendmsg+0xa98/0xc70
[  856.019143][T15555]  ? btrfs_delalloc_reserve_metadata+0x620/0x960
[  856.019170][T15555]  ? __pfx_____sys_sendmsg+0x10/0x10
[  856.019190][T15555]  ? get_compat_msghdr+0x11a/0x170
[  856.019226][T15555]  ___sys_sendmsg+0x134/0x1d0
[  856.019244][T15555]  ? __pfx____sys_sendmsg+0x10/0x10
[  856.019284][T15555]  ? find_held_lock+0x2b/0x80
[  856.019318][T15555]  __sys_sendmsg+0x16d/0x220
[  856.019335][T15555]  ? __pfx___sys_sendmsg+0x10/0x10
[  856.019364][T15555]  ? rcu_is_watching+0x12/0xc0
[  856.019386][T15555]  __do_fast_syscall_32+0x7c/0x300
[  856.019410][T15555]  do_fast_syscall_32+0x32/0x80
[  856.019429][T15555]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  856.019452][T15555] RIP: 0023:0xf7fe2579
[  856.019465][T15555] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  856.019482][T15555] RSP: 002b:00000000f54d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  856.019498][T15555] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000980
[  856.019507][T15555] RDX: 0000000004040880 RSI: 0000000000000000 RDI: 0000000000000000
[  856.019516][T15555] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  856.019526][T15555] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  856.019536][T15555] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  856.019559][T15555]  </TASK>
[  856.158465][T15557] random: crng reseeded on system resumption
[  856.174142][T15559] netlink: 'syz.1.2270': attribute type 6 has an invalid length.
[  856.243798][T15567] tmpfs: Too small a size for current use
[  856.255864][T15565] fuse: blksize only supported for fuseblk
[  856.423290][T10828] usb usb38-port1: attempt power cycle
[  857.189328][T10828] usb usb38-port1: unable to enumerate USB device
[  857.941959][T15583] netlink: 'syz.2.2280': attribute type 11 has an invalid length.
[  858.006598][T15592] netlink: 224 bytes leftover after parsing attributes in process `syz.3.2283'.
[  858.166398][T15598] netlink: 'syz.2.2284': attribute type 10 has an invalid length.
[  859.432908][   T60] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  859.883297][ T6311] usb 42-1: device descriptor read/8, error -110
[  860.273312][ T6311] usb usb42-port1: attempt power cycle
[  860.707367][T15477] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  860.710896][T15477] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  860.741382][T13644] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  860.745553][T13644] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  860.748426][T13644] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  860.751490][T13644] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  860.754921][T13644] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  860.807264][T15477] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  860.811403][T15477] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  860.843415][ T6311] usb usb42-port1: unable to enumerate USB device
[  860.872470][T15647] lo speed is unknown, defaulting to 1000
[  860.901508][T15477] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  860.905526][T15477] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  861.004431][T15477] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  861.007721][T15477] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  861.016603][T15647] chnl_net:caif_netlink_parms(): no params data found
[  861.189723][T15647] bridge0: port 1(bridge_slave_0) entered blocking state
[  861.193241][T15647] bridge0: port 1(bridge_slave_0) entered disabled state
[  861.196223][T15647] bridge_slave_0: entered allmulticast mode
[  861.199546][T15647] bridge_slave_0: entered promiscuous mode
[  861.212224][T15647] bridge0: port 2(bridge_slave_1) entered blocking state
[  861.215751][T15647] bridge0: port 2(bridge_slave_1) entered disabled state
[  861.218715][T15647] bridge_slave_1: entered allmulticast mode
[  861.222388][T15647] bridge_slave_1: entered promiscuous mode
[  861.247496][T15477] bridge_slave_1: left allmulticast mode
[  861.250065][T15477] bridge_slave_1: left promiscuous mode
[  861.252464][T15477] bridge0: port 2(bridge_slave_1) entered disabled state
[  861.259667][T15477] bridge_slave_0: left allmulticast mode
[  861.261918][T15477] bridge_slave_0: left promiscuous mode
[  861.265669][T15477] bridge0: port 1(bridge_slave_0) entered disabled state
[  861.332946][   T60] usb 8-1: Using ep0 maxpacket: 8
[  861.378520][   T60] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  861.382959][   T60] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 2
[  861.386727][   T60] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  861.391393][   T60] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  861.395996][   T60] usb 8-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  861.399746][   T60] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  861.407921][   T60] hub 8-1:1.0: bad descriptor, ignoring hub
[  861.410343][   T60] hub 8-1:1.0: probe with driver hub failed with error -5
[  861.413636][   T60] cdc_wdm 8-1:1.0: skipping garbage
[  861.415733][   T60] cdc_wdm 8-1:1.0: skipping garbage
[  861.419188][   T60] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  861.421682][   T60] cdc_wdm 8-1:1.0: Unknown control protocol
[  861.922570][T15477] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  861.928181][T15477] bond_slave_0: left promiscuous mode
[  861.940185][T15477] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  861.944777][T15477] bond_slave_1: left promiscuous mode
[  861.949689][T15477] bond0 (unregistering): (slave batadv0): Releasing backup interface
[  861.953807][T15477] batadv0: left promiscuous mode
[  861.957198][T15477] bond0 (unregistering): Released all slaves
[  862.053785][T15477] bond1 (unregistering): (slave dummy0): Releasing active interface
[  862.059008][T15477] bond1 (unregistering): Released all slaves
[  862.135479][T15477] bond2 (unregistering): Released all slaves
[  862.161238][T15647] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  862.171908][T15647] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  862.204255][T15647] team0: Port device team_slave_0 added
[  862.207714][T15647] team0: Port device team_slave_1 added
[  862.254268][T15647] batman_adv: batadv0: Adding interface: batadv_slave_0
[  862.256574][T15647] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  862.265340][T15647] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  862.270404][T15647] batman_adv: batadv0: Adding interface: batadv_slave_1
[  862.272633][T15647] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  862.281630][T15647] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  862.325705][T15627] usb 8-1: reset high-speed USB device number 8 using dummy_hcd
[  862.436669][T15647] hsr_slave_0: entered promiscuous mode
[  862.439840][T15647] hsr_slave_1: entered promiscuous mode
[  862.444394][T15647] debugfs: 'hsr0' already exists in 'hsr'
[  862.446312][T15647] Cannot create hsr debugfs directory
[  862.695287][T15627] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  862.700536][T15627] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  862.739019][T15477] hsr_slave_0: left promiscuous mode
[  862.742669][T15477] hsr_slave_1: left promiscuous mode
[  862.745847][T15477] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  862.748992][T15477] batman_adv: batadv0: Removing interface: batadv_slave_0
[  862.754109][T15477] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  862.757221][T15477] batman_adv: batadv0: Removing interface: batadv_slave_1
[  862.772966][T13644] Bluetooth: hci2: command tx timeout
[  862.790005][T15477] veth1_macvtap: left promiscuous mode
[  862.791974][T15477] veth0_macvtap: left promiscuous mode
[  862.795610][T15477] veth1_vlan: left promiscuous mode
[  862.798068][T15477] veth0_vlan: left promiscuous mode
[  862.823028][T11493] usb 8-1: USB disconnect, device number 8
[  863.479458][T15477] team0 (unregistering): Port device team_slave_1 removed
[  863.520161][T15688] netlink: 'syz.3.2302': attribute type 1 has an invalid length.
[  863.545512][T15477] team0 (unregistering): Port device team_slave_0 removed
[  864.103973][T15685] IPVS: Unknown mcast interface: vcan0
[  864.435109][T15712] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  864.437390][T15712] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  864.441738][T15712] vhci_hcd vhci_hcd.0: Device attached
[  864.507011][T15717] random: crng reseeded on system resumption
[  864.564746][T15720] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2303'.
[  864.617699][T15647] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  864.623532][T15647] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  864.630730][T15647] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  864.637759][T15647] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  864.738279][T15647] 8021q: adding VLAN 0 to HW filter on device bond0
[  864.749043][T15647] 8021q: adding VLAN 0 to HW filter on device team0
[  864.766602][   T62] bridge0: port 1(bridge_slave_0) entered blocking state
[  864.769718][   T62] bridge0: port 1(bridge_slave_0) entered forwarding state
[  864.774288][   T62] bridge0: port 2(bridge_slave_1) entered blocking state
[  864.776585][   T62] bridge0: port 2(bridge_slave_1) entered forwarding state
[  864.790970][ T6311] usb 40-1: SetAddress Request (52) to port 0
[  864.793755][ T6311] usb 40-1: new SuperSpeed USB device number 52 using vhci_hcd
[  864.844370][T13644] Bluetooth: hci2: command tx timeout
[  865.005327][T15647] 8021q: adding VLAN 0 to HW filter on device batadv0
[  865.062108][T15647] veth0_vlan: entered promiscuous mode
[  865.074778][T15647] veth1_vlan: entered promiscuous mode
[  865.105076][T15647] veth0_macvtap: entered promiscuous mode
[  865.111536][T15647] veth1_macvtap: entered promiscuous mode
[  865.131017][T15647] batman_adv: batadv0: Interface activated: batadv_slave_0
[  865.141918][T15647] batman_adv: batadv0: Interface activated: batadv_slave_1
[  865.154711][T15477] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  865.158339][T15477] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  865.172084][T15477] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  865.177018][T15477] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  865.225027][   T77] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  865.228245][   T77] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  865.255986][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  865.258695][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  865.340712][T15743] IPv6: NLM_F_CREATE should be specified when creating new route
[  865.344819][T15743] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  865.347217][T15743] IPv6: NLM_F_CREATE should be set when creating new route
[  865.349401][T15743] IPv6: NLM_F_CREATE should be set when creating new route
[  865.798151][T15713] vhci_hcd: connection reset by peer
[  865.801838][   T77] vhci_hcd: stop threads
[  865.804812][   T77] vhci_hcd: release socket
[  865.806352][   T77] vhci_hcd: disconnect device
[  866.923452][T13644] Bluetooth: hci2: command tx timeout
[  867.361035][T15770] random: crng reseeded on system resumption
[  867.638347][T15776] 9pnet_fd: Insufficient options for proto=fd
[  867.698399][   T40] audit: type=1804 audit(1761106943.846:383): pid=15776 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.2314" name="/newroot/535/file0/file0" dev="9p" ino=73924795 res=1 errno=0
[  869.002983][T13644] Bluetooth: hci2: command tx timeout
[  869.892924][ T6311] usb 40-1: device descriptor read/8, error -110
[  870.313904][ T6311] usb usb40-port1: attempt power cycle
[  870.923243][ T6311] usb usb40-port1: unable to enumerate USB device
[  870.967213][ T5948] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  870.973335][ T5948] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  870.978097][ T5948] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  870.981813][ T5948] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  870.986364][ T5948] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  871.061972][T15796] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2318'.
[  871.190747][T15798] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2318'.
[  871.422561][T15794] lo speed is unknown, defaulting to 1000
[  871.537938][T15794] chnl_net:caif_netlink_parms(): no params data found
[  871.635427][   T46] smc: removing ib device syz1
[  871.643122][ T1027] syz1: Port: 1 Link DOWN
[  871.763983][T15794] bridge0: port 1(bridge_slave_0) entered blocking state
[  871.766230][T15794] bridge0: port 1(bridge_slave_0) entered disabled state
[  871.768706][T15794] bridge_slave_0: entered allmulticast mode
[  871.771376][T15794] bridge_slave_0: entered promiscuous mode
[  871.774908][T15794] bridge0: port 2(bridge_slave_1) entered blocking state
[  871.777220][T15794] bridge0: port 2(bridge_slave_1) entered disabled state
[  871.779569][T15794] bridge_slave_1: entered allmulticast mode
[  871.783253][T15794] bridge_slave_1: entered promiscuous mode
[  871.962488][T15814] 9pnet_fd: Insufficient options for proto=fd
[  872.108190][   T40] audit: type=1804 audit(1761106948.256:384): pid=15815 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.2321" name="/newroot/4/file0/file0" dev="9p" ino=73924795 res=1 errno=0
[  872.126136][T15794] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  872.130887][T15794] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  872.367542][   T46] ------------[ cut here ]------------
[  872.370088][   T46] GID entry ref leak for dev syz1 index 2 ref=1
[  872.373992][   T46] WARNING: CPU: 0 PID: 46 at drivers/infiniband/core/cache.c:806 gid_table_release_one+0x387/0x4b0
[  872.378465][   T46] Modules linked in:
[  872.380450][   T46] CPU: 0 UID: 0 PID: 46 Comm: kworker/u32:2 Not tainted syzkaller #0 PREEMPT(full) 
[  872.385564][   T46] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  872.388875][   T46] Workqueue: ib-unreg-wq ib_unregister_work
[  872.390762][   T46] RIP: 0010:gid_table_release_one+0x387/0x4b0
[  872.393017][   T46] Code: 07 00 00 48 85 f6 74 2b 48 89 74 24 38 e8 a1 50 60 f9 48 8b 74 24 38 44 89 f1 44 89 ea 48 c7 c7 40 ad 96 8c e8 4a d3 1e f9 90 <0f> 0b 90 90 e9 6e fe ff ff e8 7b 50 60 f9 48 8d bd 78 07 00 00 48
[  872.399787][   T46] RSP: 0018:ffffc900006dfb40 EFLAGS: 00010282
[  872.401808][   T46] RAX: 0000000000000000 RBX: ffff88804fe85800 RCX: ffffffff817aee58
[  872.404536][   T46] RDX: ffff88801fdf8000 RSI: ffffffff817aee65 RDI: 0000000000000001
[  872.407034][   T46] RBP: ffff888044220000 R08: 0000000000000001 R09: 0000000000000000
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  872.409890][   T46] R10: 0000000000000001 R11: 0000000000000001 R12: ffffed1009fd0b1b
[  872.412562][   T46] R13: 0000000000000002 R14: 0000000000000001 R15: dffffc0000000000
[  872.415478][   T46] FS:  0000000000000000(0000) GS:ffff888097812000(0000) knlGS:0000000000000000
[  872.418492][   T46] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  872.421278][   T46] CR2: 00000000800d8fd8 CR3: 0000000028619000 CR4: 0000000000352ef0
[  872.424713][   T46] Call Trace:
[  872.426171][   T46]  <TASK>
[  872.427523][   T46]  ib_device_release+0xef/0x1e0
[  872.429674][   T46]  ? __pfx_ib_device_release+0x10/0x10
[  872.431979][   T46]  device_release+0xa4/0x240
[  872.434158][   T46]  kobject_put+0x1e7/0x5a0
[  872.436061][   T46]  put_device+0x1f/0x30
[  872.437783][   T46]  process_one_work+0x9cf/0x1b70
[  872.439843][   T46]  ? __pfx_process_one_work+0x10/0x10
[  872.442148][   T46]  ? assign_work+0x1a0/0x250
[  872.444256][   T46]  worker_thread+0x6c8/0xf10
[  872.446260][   T46]  ? __kthread_parkme+0x19e/0x250
[  872.448366][   T46]  ? __pfx_worker_thread+0x10/0x10
[  872.450520][   T46]  kthread+0x3c5/0x780
[  872.452699][   T46]  ? __pfx_kthread+0x10/0x10
[  872.455069][   T46]  ? rcu_is_watching+0x12/0xc0
[  872.457102][   T46]  ? __pfx_kthread+0x10/0x10
[  872.459059][   T46]  ret_from_fork+0x675/0x7d0
[  872.461089][   T46]  ? __pfx_kthread+0x10/0x10
[  872.463269][   T46]  ret_from_fork_asm+0x1a/0x30
[  872.465395][   T46]  </TASK>
[  872.466761][   T46] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  872.469805][   T46] CPU: 0 UID: 0 PID: 46 Comm: kworker/u32:2 Not tainted syzkaller #0 PREEMPT(full) 
[  872.473100][   T46] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  872.477022][   T46] Workqueue: ib-unreg-wq ib_unregister_work
[  872.478982][   T46] Call Trace:
[  872.480241][   T46]  <TASK>
[  872.481199][   T46]  dump_stack_lvl+0x3d/0x1f0
[  872.482789][   T46]  vpanic+0x640/0x6f0
[  872.484490][   T46]  ? gid_table_release_one+0x387/0x4b0
[  872.486794][   T46]  panic+0xca/0xd0
[  872.488344][   T46]  ? __pfx_panic+0x10/0x10
[  872.490175][   T46]  ? check_panic_on_warn+0x1f/0xb0
[  872.492048][   T46]  check_panic_on_warn+0xab/0xb0
[  872.493681][   T46]  __warn+0xf6/0x3c0
[  872.494932][   T46]  ? preempt_schedule_notrace+0x62/0xe0
[  872.496688][   T46]  ? gid_table_release_one+0x387/0x4b0
[  872.498403][   T46]  report_bug+0x3c3/0x580
[  872.499800][   T46]  ? gid_table_release_one+0x387/0x4b0
[  872.501802][   T46]  handle_bug+0x184/0x210
[  872.503199][   T46]  exc_invalid_op+0x17/0x50
[  872.504757][   T46]  asm_exc_invalid_op+0x1a/0x20
[  872.506311][   T46] RIP: 0010:gid_table_release_one+0x387/0x4b0
[  872.508163][   T46] Code: 07 00 00 48 85 f6 74 2b 48 89 74 24 38 e8 a1 50 60 f9 48 8b 74 24 38 44 89 f1 44 89 ea 48 c7 c7 40 ad 96 8c e8 4a d3 1e f9 90 <0f> 0b 90 90 e9 6e fe ff ff e8 7b 50 60 f9 48 8d bd 78 07 00 00 48
[  872.514136][   T46] RSP: 0018:ffffc900006dfb40 EFLAGS: 00010282
[  872.516069][   T46] RAX: 0000000000000000 RBX: ffff88804fe85800 RCX: ffffffff817aee58
[  872.518561][   T46] RDX: ffff88801fdf8000 RSI: ffffffff817aee65 RDI: 0000000000000001
[  872.521222][   T46] RBP: ffff888044220000 R08: 0000000000000001 R09: 0000000000000000
[  872.524495][   T46] R10: 0000000000000001 R11: 0000000000000001 R12: ffffed1009fd0b1b
[  872.527729][   T46] R13: 0000000000000002 R14: 0000000000000001 R15: dffffc0000000000
[  872.531030][   T46]  ? __warn_printk+0x198/0x350
[  872.533063][   T46]  ? __warn_printk+0x1a5/0x350
[  872.535092][   T46]  ib_device_release+0xef/0x1e0
[  872.536655][   T46]  ? __pfx_ib_device_release+0x10/0x10
[  872.538372][   T46]  device_release+0xa4/0x240
[  872.539861][   T46]  kobject_put+0x1e7/0x5a0
[  872.541230][   T46]  put_device+0x1f/0x30
[  872.542716][   T46]  process_one_work+0x9cf/0x1b70
[  872.544747][   T46]  ? __pfx_process_one_work+0x10/0x10
[  872.546907][   T46]  ? assign_work+0x1a0/0x250
[  872.548829][   T46]  worker_thread+0x6c8/0xf10
[  872.550804][   T46]  ? __kthread_parkme+0x19e/0x250
[  872.552911][   T46]  ? __pfx_worker_thread+0x10/0x10
[  872.555082][   T46]  kthread+0x3c5/0x780
[  872.556560][   T46]  ? __pfx_kthread+0x10/0x10
[  872.558118][   T46]  ? rcu_is_watching+0x12/0xc0
[  872.560160][   T46]  ? __pfx_kthread+0x10/0x10
[  872.561671][   T46]  ret_from_fork+0x675/0x7d0
[  872.563150][   T46]  ? __pfx_kthread+0x10/0x10
[  872.565053][   T46]  ret_from_fork_asm+0x1a/0x30
[  872.566674][   T46]  </TASK>
[  872.568320][   T46] Kernel Offset: disabled
[  872.569911][   T46] Rebooting in 86400 seconds..

VM DIAGNOSIS:
04:22:28  Registers:
info registers vcpu 0

CPU#0
RAX=000000000000005b RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff852660a5 RDI=ffffffff9adc0d60 RBP=ffffffff9adc0d20 RSP=ffffc900006df4b0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=000000000000005b R14=ffffffff9adc0d20 R15=ffffffff85266040
RIP=ffffffff852660cf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097812000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000800d8fd8 CR3=0000000028619000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000001 Opmask01=0000000000000001 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=00000000fffbfbff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe9b1932db 00007ffe9b1932db
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe9b1937e0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe9b1937e0 0000003000000018
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7020656874206576 6c6f7320646c756f 772032333531206f 742055544d206500
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7020656274206576 6665732064667565 7720323335312065 7420555447206500
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 206e612073612067 6e6976616c736e45 203a29315f657661 6c735f646e6f6220
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 303d6f6e72726520 313d736572203539 3734323933373d6f 6e6920227039223d
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 766564202230656c 69662f30656c6966 2f342f746f6f7277 656e2f223d656d61
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e2022313233322e 322e7a7973223d6d 6d6f632073726574 6972775f6e65706f
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3d65737561632072 63705f64696c6176 6e693d706f206465 6e69666e6f636e75
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 65746e656d676172 66206562206c6c69 7720656361667265 746e692073696874
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000080000 RBX=0000000000000000 RCX=ffffc90025a11000 RDX=ffff888023654900
RSI=ffffffff8b5b7b7d RDI=ffffc90002e36c98 RBP=ffff888024668a18 RSP=ffffc90002e36bc8
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=1ffff920005c6d8f R13=ffffc90002e36c98 R14=ffffc90002e36c98 R15=ffffea0001d13220
RIP=ffffffff81bc6a10 RFL=00000082 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097912000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002efeaffc CR3=000000005040d000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000014 RBX=ffff888020f43050 RCX=ffffc90000538954 RDX=0000000000000005
RSI=ffffffff8e3c42e0 RDI=ffff888020f43050 RBP=0000000000000004 RSP=ffffc90000538910
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000006291
R12=ffffffff8e3c42e0 R13=ffffc90000538954 R14=0000000000000005 R15=0000000000000005
RIP=ffffffff8b5d0510 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097a12000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002ea24008 CR3=000000006380a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000c400000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=ffffea00016ed940 RCX=ffffffff8b5b8300 RDX=ffff888040ee4900
RSI=ffffffff8b5b8165 RDI=0000000000000007 RBP=000000000000001f RSP=ffffc900006cf228
R8 =0000000000000007 R9 =0000000000000002 R10=0000000000000000 R11=0000000000000001
R12=ffffea000158c900 R13=dffffc0000000000 R14=ffff88806a9291a0 R15=ffff88806a929080
RIP=ffffffff8b5b8165 RFL=00000093 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097b12000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00000000f73c7590 CR3=0000000056846000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 8a6477b3c43aee4a c02e7373db4465c7
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f4305ce09a0ddfcb 97a4689815b67ee2
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 27fd581802753cf2 07883827be67c183
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 8690eb494edc2322 e58bcbbcf78d67ad
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ffffffff 00000000000000b4
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000034
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 fd17b57fb64fe99a b02d8a3fee87de3a
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5f2bb6d61df56581 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 44a83645567ff4e2 7f2b40395ba518f5
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f6934ce700000000 b4e0c92ebce75354
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 34b1df8e20ee4422 e15c2dd346dacdd3
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 14419d027f052e4d f4f744090206af78
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000