last executing test programs:

5m15.953780287s ago: executing program 3 (id=486):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = openat$nmem0(0xffffffffffffff9c, &(0x7f0000000000), 0x180, 0x0)
setsockopt$RDS_GET_MR_FOR_DEST(r2, 0x114, 0x7, &(0x7f0000000180)={@phonet={0x23, 0x81, 0x7f, 0x1}, {&(0x7f0000000240)=""/47, 0x2f}, &(0x7f0000000100), 0x5}, 0xa0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
syz_open_dev$vim2m(&(0x7f0000000080), 0x7ff, 0x2)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000440)={"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"})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

5m15.74398181s ago: executing program 3 (id=495):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000008c0)=@newqdisc={0x34, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
r8 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@newqdisc={0x78, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r9, {0x1f00}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x8001, 0x3151, 0x401, 0x6, 0xaa3c}, 0x3, 0x1, 0x6, 0x6, 0x7, 0x15, 0x11, 0xc, 0x6, 0x7f, {0x6, 0x407c, 0x7, 0x4, 0x2b52, 0x2}}}}]}, 0x78}, 0x1, 0x0, 0x0, 0x400dc}, 0x20000000)

5m15.608414856s ago: executing program 3 (id=503):
r0 = fsopen(&(0x7f0000000140)='tracefs\x00', 0x0)
r1 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4d8, 0xdd, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0xa0, 0x8, [{{0x9, 0x4, 0x0, 0xfe, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0xffff, 0xfd, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0x3, 0x0, 0xfd}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io(r1, &(0x7f0000000080)={0x2c, &(0x7f00000012c0)={0x0, 0x22, 0x5, {0x5, 0xc, "26ed60"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)
r2 = syz_open_dev$I2C(&(0x7f0000000100), 0x2, 0x1)
ioctl$I2C_SMBUS(r2, 0x720, &(0x7f00000002c0)={0x1, 0x22, 0x6, &(0x7f0000000240)={0x4, "0908f9b10fd7a8c420bbec83568ababe58cd42ca5d04c484efbcc9cbafcf4fbef3"}})
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000100)=0x100000001, 0x4)
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @link_local, @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @private, @multicast1}, {0x14, 0x0, 0x0, @remote}}}}}, 0x0)
connect$inet6(r3, &(0x7f0000000080)={0xa, 0x1, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f0000000140), 0x4)
getsockopt$bt_hci(r3, 0x11a, 0x4, 0x0, 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000040)='uid', &(0x7f00000008c0)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80=\x8a\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\x1f\x03\x00\x00\x00\x00\x00\x00\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9ak\x00\x00\x00\x00\x00\x00\x00\n\xa72\xa3\xef^\xe7\x8f', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2={0xff, 0x5}}, 0x1c)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x19, 0x4, 0x4, 0x9, 0x0, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r4, &(0x7f0000000140)='P', &(0x7f0000000000)=""/8, 0x2}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r4, &(0x7f0000000100), &(0x7f0000000000)=""/2, 0x2}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000340)={r4, &(0x7f0000000240)='P', 0x0}, 0x20)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.numa_stat\x00', 0x26e1, 0x0)
close(r5)
ioctl$SIOCSIFHWADDR(r5, 0x8b28, &(0x7f0000000000)={'virt_wifi0\x00', @random='4\x00'})
ioctl$VIDIOC_S_PARM(r5, 0xc0cc5616, &(0x7f0000000380)={0xe, @capture={0x0, 0x1, {0x81, 0x101}, 0x7, 0x10000}})
syz_emit_ethernet(0x6a, &(0x7f00000000c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xd}, @random="a547ae413200", @void, {@ipv4={0x800, @igmp={{0x15, 0x4, 0x0, 0x0, 0x5c, 0x0, 0x0, 0x0, 0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private=0xa010102, {[@cipso={0x86, 0x3d, 0x0, [{0x6, 0x12, "3e102459113af2c3d977c342916dd29d"}, {0x6, 0x2}, {0x6, 0xe, "1aad74bbd6bb0cb0ba2d0e84"}, {0x6, 0x7, "eb6e6ac2fa"}, {0x7, 0xe, "6cbba3fc1d4d70fc3a34328b"}]}]}}, {0x16, 0x0, 0x0, @multicast2}}}}}, 0x0)

5m12.510968729s ago: executing program 3 (id=549):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r1, &(0x7f0000000140)={0x28, 0x0, 0x2710, @local}, 0x10)
listen(r1, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000080)={0x28, 0x0, 0x2710}, 0x10)
r3 = accept4(r1, 0x0, 0x0, 0x0)
sendto(r3, &(0x7f0000000200)='9', 0x1, 0x0, 0x0, 0x0)
r4 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r4, 0x40946400, &(0x7f00000000c0)={'dt2814\x00', [0x4f27, 0x0, 0x4, 0x4, 0x5, 0x5, 0x7, 0x7, 0x54c6cff3, 0x800000fd, 0x2, 0x7, 0x1, 0x3, 0x6, 0x9, 0x0, 0x7f, 0x3, 0x40000003, 0x89, 0xcaa3, 0x0, 0x20001e5b, 0x3, 0xd6b, 0x3, 0x8, 0x4086, 0x0, 0xfffffff8]})
recvmmsg(r2, &(0x7f0000005cc0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000004400)=""/211, 0xd3}}, {{0x0, 0x0, &(0x7f0000004600), 0x2}}, {{0x0, 0x0, &(0x7f0000005c40)=[{0x0, 0x7}], 0x1}}], 0x3, 0x0, &(0x7f0000005ec0)={0x0, 0x3938700})
recvfrom(r2, &(0x7f0000000480)=""/69, 0x45, 0x100, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000080)={'vxcan1\x00', <r5=>0x0})
r6 = socket(0x10, 0x2, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r7, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r7, &(0x7f0000000340)={0xa, 0x5, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0xfffffffe}, 0x1c)
shutdown(r0, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r7, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r7, 0x11a, 0x1, &(0x7f0000000480)=@gcm_256={{0x303}, "000200", "e123c5876ff425b1ebe250a8486be34705f4f827ae60ecb65e528248d5552bff", "7e25837b", "15d0db2c77179e1a"}, 0x38)
write$binfmt_script(r7, &(0x7f0000000500)={'#! ', './file0'}, 0xb)
exit(0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r7, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4)
close_range(r6, r7, 0x0)
connect$can_bcm(r0, &(0x7f0000000000)={0x1d, r5}, 0x10)
r8 = socket$nl_route(0x10, 0x3, 0x0)
recvfrom$unix(0xffffffffffffffff, &(0x7f00000000c0)=""/123, 0x7b, 0xa1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmsg$nl_route_sched(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000040)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0xfffffffc, {0x0, 0x0, 0x74, r5, {0x1, 0x10}, {0xfff2, 0xfff6}, {0x0, 0xe}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x4008801}, 0x0)

5m11.639635232s ago: executing program 3 (id=577):
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'bridge0\x00'}, 0x0, 0x148, 0x170, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00', {0xff}, {}, 0x0, 0x0, 0x0, 0x4b}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0x3, 0x0, 0x41, 0xfffffffe, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x528)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), r1)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r4, 0x401c5820, &(0x7f0000000080)={0x8})
sendmsg$IPVS_CMD_NEW_DEST(r1, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)={0xa0, r3, 0xa00, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_SERVICE={0x24, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x13}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x1}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x4}]}, @IPVS_CMD_ATTR_DEST={0x30, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0xfffffff5}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@ipv4={'\x00', '\xff\xff', @loopback}}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x4}, @IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e24}]}, @IPVS_CMD_ATTR_DAEMON={0x24, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0xff}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x1}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @broadcast}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x5}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x1}]}]}, 0xa0}, 0x1, 0x0, 0x0, 0x40000}, 0x20008000)
prlimit64(0x0, 0x7, &(0x7f0000000000), 0x0)
landlock_create_ruleset(&(0x7f0000000000)={0x25, 0x2, 0x1}, 0x18, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r5=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r1, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)={0x1c, r2, 0x331, 0x70bd2a, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}]}, 0x1c}}, 0x0)
r6 = socket$inet6(0xa, 0x3, 0x100)
connect$inet6(r6, &(0x7f0000000180)={0xa, 0x4e21, 0x3, @empty, 0x85}, 0x1c)
sendmsg(r6, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x44004)
r7 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x422000, 0x0)
setsockopt$inet6_buf(r7, 0x29, 0x2a, &(0x7f0000000040)="3da935eac75a0a55c725c6d142772579389fa364680fae0d666a59a65aa186b381bd82b44ec90efaac1535ab5f50034300e59e7838e9da9962acfed5e7370174a8d97e84895a4d4260cffb64b13707890bc4f53be3cb59c41cdd337bc5f4386bc3dfc1a8a5c221", 0x67)

5m11.467989494s ago: executing program 3 (id=583):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x48}}, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xf88e470f, 0xed}]})
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0xa00, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x35, &(0x7f0000000000)=0x8000, 0x4)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0xe42, 0x9, 0xfffffffffffffffb, 0x5, 0x10000, 0x3, 0x4002004c2, 0x100000007ff, 0x1, 0x0, 0x10000000000400, 0x80, 0x8b, 0x0, 0x8, 0x8b], 0x58000, 0x240046})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

4m56.409036277s ago: executing program 32 (id=583):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x48}}, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xf88e470f, 0xed}]})
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0xa00, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x35, &(0x7f0000000000)=0x8000, 0x4)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0xe42, 0x9, 0xfffffffffffffffb, 0x5, 0x10000, 0x3, 0x4002004c2, 0x100000007ff, 0x1, 0x0, 0x10000000000400, 0x80, 0x8b, 0x0, 0x8, 0x8b], 0x58000, 0x240046})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

4m10.428688639s ago: executing program 1 (id=1702):
r0 = socket$inet6(0xa, 0x2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x11)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r2=>0x0})
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$inet6(r3, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1400000000000000290000000b00000000000007000000002400000000000000290000003200000000000000000000000000ffff", @ANYRESHEX=0x0], 0x40}, 0x6048090)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="2000000010000104000000000000000000480000", @ANYRES32=r2, @ANYBLOB="ebffffffffffffff"], 0x20}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.events\x00', 0x26e1, 0x0)
r6 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r6, 0x0, 0x4000)
r7 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r8, 0xae60)
ioctl$KVM_CAP_HYPERV_SYNIC2(0xffffffffffffffff, 0x4068aea3, 0x0)
ioctl$KVM_SET_MSRS(r5, 0x4008ae89, &(0x7f0000000100))
r9 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f00000001c0), r9)
sendmsg$MPTCP_PM_CMD_ANNOUNCE(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x4)
close(r5)
ioctl$SIOCSIFHWADDR(r5, 0x8b06, &(0x7f0000000000)={'ip6tnl0\x00', @random="060000000010"})
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000400)={0x0, 0x30}}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000001a40)=ANY=[], 0x158}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
r10 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r10, &(0x7f0000000140)={0x0, 0x5e, &(0x7f0000000000)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1d84848000000294e5d167cf395330e000a000f080000028000001294", 0x2e}], 0x1, 0x0, 0xffffffffffffffb4}, 0x4)
mount(&(0x7f00000000c0)=@sg0, &(0x7f0000000000)='./cgroup\x00', &(0x7f0000000040)='cramfs\x00', 0x204041, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="b70200001a000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b70600007fffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a0702839240d29c034055b67dafe6c8dc3d5d78c07fa1f7e655ce34e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946e0ebc622003b538dfc8e012e79578e51bc5f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bc04b82d2789cb132b803000000661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c581e7b148ba532e6ea09c346dfebd38608b32a0080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e14861d0227dbfd2e6d7f715a7f3deadd7130856f756436303767d2e24f29e5dad9796edb697aeea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780870014f51c3c975d5aec84222fd3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5ffff232f5e16b089f37b3591a15c0a9be6eb18208404c1b30c3a6a71bc85018e5ff2c91018afc9ffc2cc788bee1b47683db01a469398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b74cd36e7487afa447e2edfae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae486aca54183fb01c73f979ca9857399537f5dc2a2d0e0000000000000578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a088a22e8b15c3e233db7ab22e30d46a9d24d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eeff8619d73415cda2130f50714600fb6241c6e955031795b282f56411e48455b5a8b90dfae158b94f50adab988dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b400000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a308bcc87dc3addb08141bdee5d27874b2f663ddeedd005b3d96c7aabf4df517d90bdc01e73835d5a3e1a90800c66ee2b1ad76dff9f9000071414c99d4894ee7f8249dc1e3428d2129369ee1b85af6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe00000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd92052188bd1f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f633c1d987591ec3db58a7bb3042ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905deb28c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4eda0545c00f576b2b5cc7f819abd0f885cc4806f40300966fcf1e54f5a2d38708294cd6f496e5dee734fe7da3770845cf442d488afdc0e17000000000000041dcc4cabfc4a21604f0b80da4ec5500000000000000000000000000000000000000005205000000dc1c56d59f35d367632952a93466ae6e5c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a6d169c80aa4252d4ea6b8f6216ff202b5b5a182cb5e80339f9953c3093c3690d10ecb65dc5b47481edbf1f000000000000004d16d29c28eb5167e9936ed327fb237a56224e49d9ea955a5f0dec1b3ccd52364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf8179ecd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf107753cb0a6a979d3db0c407081c6281e2d8429a863903ca75f4c7df3ea8fc2018d07af1491ef060cd4403a099f32468f65bd06b4082d43e121861b5cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b65f037b21f3289f86a6826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bb37b61fa0a2d8974e69115d33394e86e4b838297ba20f96936b7e4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000a5ace201020875c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f2500579aca11033ec14bb9cc16bd83a00840e31d828ec78e116ae46c4897e2f95b6ff92e9a1e24b0b855c02f2b7add58ffb25f3390343c12aa51810134d3dfbf71f6516737be55c06d9cdcfb1e2bb10b50000eb4acff90756dba1ecf9f58afd3c19b56b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce40c14089c82759106f422582b42e3e8484ea5a6ad9aa52106eafe0e0caea1ad4cb23f3c2b8a0f475ba69ea284c268d54b43158a8b1d128d02af263b3dc1cab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fca4d97a0ae75ccf11e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da35e9f1534c8bd48bbd61627a2e0a74b5e6aefb7eee403502734137ff17320adda5867947257f164391c673b6079e65d7295eed164ca63e4ea26dce0fb3ce0f65918192fb8f386bb74b5589829b6b0679b5d65a927de6f4c09f4b742e037381c85d2ec7bb2a8152f0d6a99a0370e0cbd65744eb2efd7b65f04aa7e72588757b9612bb4253a63bb303c0c68a07f115d104f2007237a4f771416741bfd63fdfe3ae6f8bea755d8b7202c2bbae137dc1c3cf40db74a4c1c219d8ddec8f91dae2cdea1353fe062830fa1d233296ec9d8317872257e154665485e7f31cdbfbf435477faf93015b57417d84b8bc8662e097d5ba55d02d48e150695ffae3a676555b10da11751865126d19336116a1e58ab727dda6b343cc97f9479136a66f552abf8fe3d134f6d69df1cffe6740f90735f66ca54fd87800b4bda4db5e68aaccf44d24e09f8a769e3ae7bf246673f15e3d1adae4384bdb7cd30a33e30466b421feb96006c810fd3830a1c75af2580727ffc604d2b04f476acc21419fad9b1baec88974da2db29b8085b0de08b85c8086e4b7f1fd568042ad5396d3179c71b1dc43291e450ce9b8d7d80fcb44966d7ad4691a37870000000000000000000000000000000000000000000000000000000000000000000083a5765d06da91165d24bc316607e2d69344aa1c07ff7cd7bc3d17f122478b6e81077782b9c298edc2546045feff90e7aa7da88d2489fb000a4aa838f911c1a869fa55e979e033b7707df75b93cf5b8d25242741a88f2d54a7107375b25911aa11efa3a4f87fc14f180e353615b3cb9a5cf5ea843014a277c3694a5a83266f73ef039dd739187923715548d58ff43be997e357e07f9581b40470a7c2fa89cc3ef72a19760b89ded2e546f4966b51c2985101f2248f60ad8119e4db4ade09ebd23fdb750ffccba20bc0e0f52c3316767bb9f67f7e714df5e462bcfc35f3a79147f62f9227441cb3ffb35f4e4c69b04b1399efbeb4b682d6facea9fe1c456a1fb9173833107a38991abac8b0e616f11a2c3e265c484fbc6522e9894dc3b5989b7d585c56778c77c6595b7482dfa90bb818ebd3b0b352d3f48ab947a1240842d592fd9c2f13df205e8974919162421548357a8823bd322e6562fa3e7fb7c56ee00e246a98710b9a710103b3df69655b38dcc196156a16fcc14d8ddb4acf3506adc95c742919b83fd57c8b52956e93104cdcd1226ca85a29542b9ea606c72d5339a7d30f23ffcd665b85e4c90d526b33ed854543c2a1d189cd6f319644146c5fe91639d50f2083d46fd82e41bc7d528f18be618904d683726e3eee93388cc78d0df624361bb80afc96b823971fcbbb859d4c2de31f03f884ea774e4abe011389557b2429c85cf795e0a82c94ffc11616d7c8b6939eed3f0e8df5dcc75984430b2a497d78824e539e8f7944b459ae45e7ce803495686984aa91745b8cfb1f80c07c194c4a4327e02cea5fd2ef6041cf053ee5f9829410d150"], &(0x7f0000000340)='syzkaller\x00'}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)

4m10.339196559s ago: executing program 1 (id=1703):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x22080, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, 0x0}], 0x1, 0x4, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x43, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x1f00)

4m10.189872212s ago: executing program 1 (id=1706):
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000001c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000000)={&(0x7f00002b9000/0x400000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x400000, 0x3, 0x2})
r1 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi2\x00', 0x400, 0x0)
r2 = syz_open_dev$sndctrl(&(0x7f0000000080), 0x1ff, 0x101940)
ioctl$SNDRV_CTL_IOCTL_ELEM_INFO(r2, 0xc1105511, &(0x7f0000000280)={{0xa, 0x0, 0xb, 0x8}, 0x3, 0x1, 0xfffffff8, 0x0, 0x0, 0x3, 'syz1\x00', 0x0})
ioctl$COMEDI_DEVCONFIG(r1, 0x40946400, 0x0)
ioctl$COMEDI_DEVCONFIG(r1, 0x40946400, &(0x7f00000000c0)={'pcl730\x00', [0x1610, 0x3, 0x1, 0x0, 0x3, 0xcc7, 0x9, 0x1, 0xa, 0x100, 0x2, 0x1, 0x8, 0x1100004, 0x6, 0x9, 0x1, 0x1a449, 0x80000000, 0x40002003, 0x89, 0x2, 0xf27, 0x6, 0x800b, 0xca8, 0x5, 0x4, 0x400, 0x10000, 0xfffffff7]})
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='pids.current\x00', 0x275a, 0x0)
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r3, &(0x7f0000000280)={0x10, 0x30, 0xfa00, {0x0, 0x1, {0xa, 0x4e24, 0x5, @local, 0xfffffbf2}}}, 0x38)
r4 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_SUBMITURB(r4, 0x802c550a, &(0x7f0000000280)=@urb_type_interrupt={0x1, {0x1, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

4m10.110006445s ago: executing program 1 (id=1707):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_ifreq(r0, 0x8914, &(0x7f0000000380)={'dummy0\x00', @ifru_ivalue=0x4})
r1 = io_uring_setup(0x516, &(0x7f0000000640)={0x0, 0xddaa, 0x1, 0x503fa, 0x8100014e})
sendmsg$NLBL_MGMT_C_ADD(0xffffffffffffffff, 0x0, 0x4000840)
sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, 0x0, 0x40)
io_uring_setup(0x30db, &(0x7f00000000c0)={0x0, 0xfffffffe, 0x3000, 0xfffffffe, 0xfffffffd})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB="3c0000001000fdff27bd70dbdf25000000000000", @ANYRES32=0x0, @ANYBLOB="320a0500330401001c00128009000100626f6e64000000000c0002800800090000080000"], 0x3c}, 0x1, 0x0, 0x0, 0x1}, 0x4008000)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/notes', 0xc200, 0x0)
r4 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newtaction={0x6c, 0x30, 0x1, 0x3, 0x0, {}, [{0x58, 0x1, [@m_skbmod={0x54, 0x1, 0x0, 0x0, {{0xb}, {0x28, 0x2, 0x0, 0x1, [@TCA_SKBMOD_PARMS={0x24, 0x2, {{0x2, 0x3, 0xffffffffffffffff, 0x4, 0x8}, 0x4}}]}, {0x4, 0x14}, {0xc}, {0xc, 0x6, {0x0, 0x1}}}}]}]}, 0x6c}}, 0x20000000)
ioctl$sock_TIOCOUTQ(r3, 0x5411, &(0x7f00000001c0))
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x3a, [0x8000, 0x3, 0xf, 0x8, 0x80, 0x2, 0x3, 0x7f, 0x20000006, 0x20000000, 0x6, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x5, 0x4, 0x0, 0x7, 0x3c1b, 0x1, 0x24, 0xd, 0x1, 0x0, 0xffffffff, 0xe661, 0x4, 0x7, 0x3, 0x8, 0xcc74, 0x80000000, 0x242, 0x5, 0xe, 0x0, 0x80008071, 0x7, 0x6, 0xffffffff, 0x7, 0x5, 0x3e, 0x10008f, 0x6, 0x6, 0x0, 0x5, 0x4, 0x8, 0x200003ff, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0x5, 0x8000012f, 0x8004, 0x5, 0xfffffff3, 0x129432e2, 0xc8, 0xf9, 0xe, 0x2bf, 0x1, 0x9, 0xfffffffc, 0x4, 0x10001, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0x0, 0x4, 0x7, 0x7fff, 0x6, 0x400, 0x401, 0x3, 0x1, 0xff, 0x5, 0x1000005, 0x5f31, 0x1000b, 0x4e0, 0x2, 0x4, 0xb, 0x4, 0x9, 0x4, 0xd, 0xffff8005, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x4, 0x9, 0x3, 0x3, 0x9, 0x1, 0x3, 0x3, 0xbc45, 0x48c93690, 0x42, 0x2], [0x5, 0x408, 0x4, 0x5, 0xfffffffe, 0x100, 0x2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x303c, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x6d01, 0x6, 0x38, 0x800003, 0x2, 0x83, 0x3, 0x4, 0x2950bfaf, 0x1001, 0xa2, 0x7, 0xa9, 0x5, 0x6, 0xac8, 0xbf, 0x4002, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0xfffffffd, 0x5, 0x1c, 0x120000, 0x3, 0x3, 0x80a2ed, 0x4, 0x25], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x938, 0x6, 0x6, 0x0, 0xb9, 0xce7, 0x1ff, 0x2, 0x57, 0x5, 0x3, 0x101, 0xfffc, 0x4, 0x7fff, 0xffff, 0xa620, 0x1, 0x6, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x16, 0xffffffff, 0x80000000, 0xfffffffe, 0x4, 0xc8, 0x1, 0xfffff000, 0x5, 0x1003, 0x7e, 0x100, 0x9602, 0x7, 0xaf, 0x8, 0x6, 0x227, 0x8001, 0x5, 0x8, 0x30b1d693, 0xa1f, 0xf44, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1e, 0xd7, 0x200, 0xffff343e, 0x1]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r5 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r5, 0xc0049364, &(0x7f0000000180))
close_range(r1, 0xffffffffffffffff, 0x0)
r6 = syz_clone(0x5002011, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r6)
ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r6, 0x0, 0x0)
openat$comedi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/comedi4\x00', 0x8a241, 0x0)
writev(r2, &(0x7f0000000bc0)=[{&(0x7f0000000240)="b82160c8684e51ccddd2", 0xa}, {&(0x7f0000000880)="91d68d77d3959d19a3a58b5dde27e18d60fd270feef8dd869796559afcbb6cfadfdeb998794b4d7caa474263ffe650802dfead96ea16be21a7bf919f8fe523bf40f639705dd37f644aab7aa826770decbbcf4c511bb34f6254b737e4f414e93ad208c13dda539ac49269ecd943d4345ede90e8e0a3cbfab374c82a79d59dd0e58d37cadfd7225b1d51c1188744b1fb139b6a98a81ce553f120", 0x99}, {&(0x7f0000000940)="30f2413018cd2c09e64bbb84eff7192dac8ec0be0ad67d261fb128963ab26c44482a30cbb415755879cbcc9e30cf52fdb0fb9ae17afd34b5ac2a97454819c041453b10aa58ec7c1e978ded6a5e393a278bd3b9ba6788c13b07ca6199ce90cbe4cb365c030abb30083655cab9ed3716a9b7afb2dbf18ab523a48b5650c7ff81b45478493653a5ff6ca9e6b431f247ff6c838882800bad4d493c425acac0b43fbca81abbf7c7d223ddc1", 0xa9}, {&(0x7f0000000a00)="af9c81dae4d4ff3392dbeb1596be68a8aa8bdc9704a99ee7fd366fbcfcfa563d5082391146a24bf44286d2fac38435cc68b4919c43703902d73f7fda01fce065f3747cc31f020e82c006aa250085ea58cce431c2756ba87ff8aa6e7107c4e5ecb25987942b47c9ba5f34624d84e5b32cd108b4d09ffd915c3e8ffbbf0f2c0520b9ebecaee2097b3795fc7b43449d022ee02e74fbb8c8d751471b5958896ac691a165f0bb5969450f23e394b7fb91a37b6684225779c92090c696f6381eb22fbbbe889569ac414a2e8b50b97c4936b11aa651b90cae384448ef27bb14cf198d608515e916bbb10659c70061719313c05b015996c67a45", 0xf6}, {&(0x7f00000002c0)="12ceb3d56b32718873cb1e0b84cc876fd28a443e8a1e8f477c7a539f", 0x1c}, {&(0x7f0000000b00)="0a2052beab34d80c4d36e9bbbee636fee524465eb4d980edd3a51c36ccb39d2ad3fb1f4b451100e013ab17918394f0660184d569f1bf1e872585130ca943c14e78fa7607f87fe93503478c583a8357644f45fb8924562639a3e93d7ba814819bc321723da01faa4595bee1f8a5d45b6fed26709e8a0ae07ae8e464c14bb2ee096f60db5265a0ba53eff9b5b9adb3dc73bc", 0x91}], 0x6)
r7 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000740), 0x400, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x8, 0x11, r7, 0x10000000)
r8 = openat$sr(0xffffffffffffff9c, &(0x7f0000000040), 0x18080, 0x0)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r8, 0xae04)

4m9.917310216s ago: executing program 1 (id=1711):
request_key(&(0x7f0000000000)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1}, &(0x7f0000001fee)='R\x10rust\xe3c*sgrVdn:Dd', 0x0)

4m9.819965704s ago: executing program 1 (id=1713):
request_key(&(0x7f0000000000)='asymmetric\x00', 0x0, &(0x7f0000001fee)='R\x10rust\xe3c*sgrVdn:Dd', 0x0)

4m9.759182688s ago: executing program 33 (id=1713):
request_key(&(0x7f0000000000)='asymmetric\x00', 0x0, &(0x7f0000001fee)='R\x10rust\xe3c*sgrVdn:Dd', 0x0)

4.738705454s ago: executing program 0 (id=6295):
r0 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x48240)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r1=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(0xffffffffffffffff, 0xc02064b9, &(0x7f00000003c0)={&(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0], 0x4, r1, 0xeeeeeeee})

4.659735532s ago: executing program 0 (id=6298):
syz_io_uring_setup(0x3a, &(0x7f0000000640)={0x0, 0x100addc, 0x10100, 0x0, 0x396}, 0x0, &(0x7f00000003c0)=<r0=>0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000400)={<r1=>0xffffffffffffffff})
syz_io_uring_submit(0x0, r0, &(0x7f0000000600)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r1, 0x0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000019c0)=[{&(0x7f00000002c0)=""/183, 0xb7}], 0x1}, 0x0, 0x80002101})
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYRES16=<r2=>0x0, @ANYBLOB="01002bbd700000000000140000001800018014000202000500190001"], 0x34}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="5000000020000103feffffff000000000200000000"], 0x50}}, 0x4000850)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$alg(0x26, 0x5, 0x0)
setxattr$trusted_overlay_opaque(&(0x7f0000000340)='./file1\x00', &(0x7f0000000580), &(0x7f0000000600), 0x2, 0x3)
bind$alg(r4, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, 0x0, 0x0)
r5 = accept4(r4, 0x0, 0x0, 0x800)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000680)={'bridge0\x00'})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000006c0)=ANY=[@ANYRESDEC=r3, @ANYRES8=r3, @ANYRES8, @ANYBLOB="38cabf2895475cde87a1b3c4c8e3c368e1a5d9f21ecf9a43565aa361df5bd3278b69b6c16bc4430c376114094a", @ANYRES64=r2, @ANYRES16=r4], 0x48}, 0x1, 0x0, 0x0, 0x44000}, 0x0)
sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r7, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r8, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

4.659335698s ago: executing program 0 (id=6300):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000800)={0x1c, 0x2e, 0x9, 0x70bd27, 0x900, {0x4}, [@nested={0x8, 0x1a, 0x0, 0x1, [@nested={0x4, 0x4}]}]}, 0x1c}, 0x1, 0xff07, 0x0, 0x4}, 0x84)

4.515545073s ago: executing program 0 (id=6302):
syz_io_uring_setup(0x3a, &(0x7f0000000640)={0x0, 0x100addc, 0x10100, 0x0, 0x396}, &(0x7f0000000380)=<r0=>0x0, &(0x7f00000003c0)=<r1=>0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000400)={<r2=>0xffffffffffffffff})
syz_io_uring_submit(r0, r1, &(0x7f0000000600)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r2, 0x0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000019c0)=[{&(0x7f00000002c0)=""/183, 0xb7}], 0x1}, 0x0, 0x80002101})
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYRES16=<r3=>0x0, @ANYBLOB="01002bbd700000000000140000001800018014000202000500190001"], 0x34}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="5000000020000103feffffff000000000200000000"], 0x50}}, 0x4000850)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$alg(0x26, 0x5, 0x0)
setxattr$trusted_overlay_opaque(&(0x7f0000000340)='./file1\x00', &(0x7f0000000580), &(0x7f0000000600), 0x2, 0x3)
bind$alg(r5, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c", 0x15)
r6 = accept4(r5, 0x0, 0x0, 0x800)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000680)={'bridge0\x00'})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000006c0)=ANY=[@ANYRESDEC=r4, @ANYRES8=r4, @ANYRES8, @ANYBLOB="38cabf2895475cde87a1b3c4c8e3c368e1a5d9f21ecf9a43565aa361df5bd3278b69b6c16bc4430c376114094a", @ANYRES64=r3, @ANYRES16=r5], 0x48}, 0x1, 0x0, 0x0, 0x44000}, 0x0)
sendmmsg$alg(r6, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r6, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r4)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r9=>0x0})
sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r8, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r9, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

4.515342196s ago: executing program 0 (id=6303):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x7fffffff}, 0x10)
sendmsg$kcm(r0, &(0x7f00000016c0)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="670000004a008102e00f80ecdb4cb9020a", 0x4a}, {&(0x7f0000001700)="0c74c75350f4a590e15c61c7942348092734fe1863473bbce6798a60e9", 0x1d}], 0x2, 0x0, 0x0, 0x10}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f00000001c0)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000140)='./file1\x00')
r1 = open(&(0x7f0000000000)='.\x00', 0xc0000, 0x8)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
ioctl$KVM_GET_DIRTY_LOG(0xffffffffffffffff, 0x4010ae42, 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r1, 0x40049366, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x17d4}}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0x1, 0x2, 0x0)
getsockopt$sock_timeval(r3, 0x1, 0x49, 0x0, &(0x7f0000000280))
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000003c0)=ANY=[@ANYBLOB="04010000", @ANYRES16=0x0, @ANYBLOB="81c23aa2f32ed7ebdf254f00000008000300", @ANYRES32=0x0, @ANYBLOB="0c009900020000003100000058007a801c000200579bcf398bbbd75d32aa6077a886a74df3d0fcf02f399c3a1c00020024cf4713299967bd15bf44cad1f4d266b29e2a4135a412b21c0002007282cdb224050171ea757aea781d4160e9223cc0312d38d668007a801c0002005f3b5d542091777612684837dbc0ec47ea67acb692453dd20c0003005bd58c80a1143827140002009811fc13fbf66d28b02a7f7bff7ddc3414000100204183f74d05c885801d03a2488d3fd41400020032c5877eef25cfd5a4dd14ad077490051c007a800c000300b27375be034408920c000300641b0230944a0546"], 0x104}, 0x1, 0x0, 0x0, 0x10}, 0x4)
sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[@ANYBLOB="4801000042000100fffffffffddbdf250200000004003880100001800c00c8000200000000000000200104801c01"], 0x148}, 0x1, 0x0, 0x0, 0x8800}, 0x4040)

4.458078389s ago: executing program 0 (id=6307):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f0000000980)={0x48, 0x5, r1, 0x0, 0x0, 0x1})
syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x101005)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
socket$netlink(0x10, 0x3, 0x0)
pipe(&(0x7f0000000380))
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x2, 0x4, 0x1, 0xbf27, 0x500}, 0x50)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200))
r2 = syz_open_dev$dri(&(0x7f0000000080), 0x6f1dd9aa, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r3=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_ATOMIC(r2, 0xc03864bc, &(0x7f0000000180)={0x0, 0x1, &(0x7f0000000340)=[r3], &(0x7f0000000280)=[0x1], &(0x7f0000000200), &(0x7f0000000040), 0x0, 0x7f})

1.309868149s ago: executing program 5 (id=6357):
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0)
sendmsg$NL80211_CMD_RELOAD_REGDB(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)={0x14, r1, 0x1, 0x70bd25, 0x25dfdbff, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4008890}, 0x4000)
r2 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000300), r0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r3)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c)
listen(r4, 0x0)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001600), 0x0, 0x0)
ioctl$TCSBRKP(r5, 0x5425, 0x0)
ioctl$TCSETSW2(r5, 0x5425, 0x0)
r6 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r6, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r7 = accept(r3, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bind$packet(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[], 0xfffffdef}}, 0x0)
sendmsg$SEG6_CMD_GET_TUNSRC(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x28, r2, 0x223, 0x0, 0x0, {0x3}, [@SEG6_ATTR_DST={0x14, 0x1, @private2={0xfc, 0x2, '\x00', 0x1}}]}, 0x28}}, 0x0)

1.229868205s ago: executing program 4 (id=6359):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000080), 0x101100, 0x0)
ioctl$FBIOBLANK(r1, 0x4611, 0x0)
ioctl$FBIOBLANK(r1, 0x4611, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000300)={{0x1, 0x1, 0x18, <r2=>r0, {0x17}}, './cgroup.cpu/cgroup.procs\x00'})
ioctl$COMEDI_DEVINFO(r2, 0x80b06401, &(0x7f0000000440))
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
syz_open_dev$usbfs(&(0x7f0000000500), 0x5, 0x400040)
sendmsg$NFT_BATCH(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01080000000000000000020000000900020073797a2a0000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[], 0x74}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000180)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c0000000200000001000000000000926b5d92"], 0x0, 0x26, 0x0, 0x1, 0x80000001}, 0x28)
setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000340)={@in={{0x2, 0x4e22, @local}}, 0x0, 0x0, 0x33, 0x0, "cebd7ceedb7b0ad952e966bbe242b92b746b023df2cb59e32e10366456deac64e782206bd4aee372005a52a40b7161161a8b2749fe184fb0d08bc63f90010a1ed2bf603d2c3fcc250c30136f9ef2ef8b"}, 0xd8)
socket$nl_generic(0x10, 0x3, 0x10)
setxattr$incfs_id(&(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', &(0x7f0000000140), 0x0, 0x0, 0x2)
syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x11)

589.092867ms ago: executing program 2 (id=6364):
r0 = syz_open_dev$dri(0x0, 0x1, 0x48240)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r1=>0x0], 0x1})
r2 = syz_open_dev$dri(&(0x7f0000000300), 0x40100001, 0x189002)
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r2, 0xc02064b9, &(0x7f00000003c0)={&(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0], 0x4, r1, 0xeeeeeeee})

588.668086ms ago: executing program 2 (id=6365):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000750000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e00000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000380)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1}, 0x50)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[@ANYBLOB="ac000000", @ANYRES16=r1, @ANYBLOB="01060000000000000000090000002c0004801300010062726f6164636173742d6c696e6b0000140007800800060000000000080005"], 0xac}}, 0x0)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={0xffffffffffffffff, 0x0, 0x0}, 0x10)

529.917507ms ago: executing program 2 (id=6366):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40046304, {0x1, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x400}], 0x0, 0x0, 0x0})

479.287401ms ago: executing program 2 (id=6367):
syz_io_uring_setup(0x3a, &(0x7f0000000640)={0x0, 0x100addc, 0x10100, 0x0, 0x396}, &(0x7f0000000380)=<r0=>0x0, &(0x7f00000003c0)=<r1=>0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000400)={<r2=>0xffffffffffffffff})
syz_io_uring_submit(r0, r1, &(0x7f0000000600)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r2, 0x0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000019c0)=[{&(0x7f00000002c0)=""/183, 0xb7}], 0x1}, 0x0, 0x80002101})
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYRES16=<r3=>0x0, @ANYBLOB="01002bbd700000000000140000001800018014000202000500190001"], 0x34}}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$alg(0x26, 0x5, 0x0)
setxattr$trusted_overlay_opaque(&(0x7f0000000340)='./file1\x00', &(0x7f0000000580), &(0x7f0000000600), 0x2, 0x3)
bind$alg(r5, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000280), 0x0)
r6 = accept4(r5, 0x0, 0x0, 0x800)
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000006c0)=ANY=[@ANYRESDEC=r4, @ANYRES8=r4, @ANYRES8, @ANYBLOB="38cabf2895475cde87a1b3c4c8e3c368e1a5d9f21ecf9a43565aa361df5bd3278b69b6c16bc4430c376114094a", @ANYRES64=r3, @ANYRES16=r5], 0x48}, 0x1, 0x0, 0x0, 0x44000}, 0x0)
sendmmsg$alg(r6, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r6, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r4)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r7, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r8, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

459.65581ms ago: executing program 5 (id=6368):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/comedi4\x00', 0x8a241, 0x0)
ioctl$COMEDI_INSN(r0, 0x8028640c, &(0x7f0000000040)={0xe000003, 0x1048, &(0x7f00000000c0)=[0x82, 0x52, 0x8001, 0x6, 0x8, 0x9, 0x1ff, 0x5, 0xc25, 0x674, 0x1000, 0x5, 0x5, 0xb, 0x9, 0x0, 0x10001, 0x2, 0x6580723a, 0x5, 0x9, 0x0, 0x10, 0xd85, 0x7fff, 0x16, 0x5, 0x3, 0x13, 0x1, 0x0, 0x1, 0x9, 0x5, 0x2fd5, 0x80000001, 0xfffffe29, 0x7f, 0xffffffff, 0x800, 0x8, 0x80000001, 0x2c, 0x2, 0x0, 0x3, 0x400, 0x9, 0x7, 0x2, 0x5, 0x3, 0x3c5b, 0x9, 0x3, 0x2, 0x80, 0x6, 0xff, 0x4, 0x1, 0x4, 0x800, 0x5ea1, 0xe4207fe3, 0x1, 0x8, 0x3, 0x2d, 0x7, 0x4, 0x7, 0xffffffff, 0x5, 0x4, 0x6bf6, 0x9, 0x0, 0xd, 0x7, 0xf58, 0x7, 0x7, 0xfffffff9, 0x8000, 0x8001, 0xffffffff, 0x7, 0x10001, 0x878, 0x8, 0xb1, 0x4, 0xe3d, 0x4, 0x1, 0xd, 0x371, 0x0, 0x10001, 0xaad, 0xfb, 0x1, 0x5, 0x8, 0x5, 0x7c3e, 0x5, 0x5, 0x9, 0x11, 0x5a3, 0x7f, 0x3, 0x2, 0x6a7, 0x7, 0xa77, 0x1, 0x3, 0x3, 0x9, 0x4, 0xc7d, 0x401, 0x7fff, 0x3, 0x8, 0x7, 0x10001, 0x667, 0xffffffff, 0x8, 0x40, 0x6, 0x8, 0x8000, 0x4, 0x6, 0x6, 0xbded, 0x0, 0x4, 0x30c, 0xfffffff9, 0x5d4, 0x56a8, 0x8, 0x4, 0x6, 0x6, 0x7, 0x5451, 0xa9, 0x7ff, 0x2, 0x1, 0x94b, 0x6, 0x8, 0x6, 0x1, 0x5, 0x10a, 0x0, 0xfffffffc, 0x92, 0x166, 0x80000000, 0xacf, 0x0, 0xe975, 0x200, 0x9, 0x9, 0x5, 0x4, 0x2, 0x0, 0x4c65, 0x0, 0xe, 0x9, 0x5, 0x100, 0x4, 0x0, 0x80000000, 0x9, 0x5, 0xffffffff, 0x0, 0x1, 0xd, 0x6d3, 0x6, 0x1, 0x6b0, 0x0, 0x5, 0xec3, 0x0, 0x3, 0x1, 0x9, 0x8, 0x0, 0x2, 0xff, 0x9, 0xfffffffa, 0x6, 0xffffffff, 0x1, 0x9c7, 0x1, 0x7, 0x2, 0x6, 0x1, 0x7fff, 0x400, 0x7, 0x5, 0x3, 0x0, 0x0, 0x0, 0xac, 0x68, 0xe7f9, 0x8, 0x22, 0x510f, 0xfffffff8, 0x6b2, 0xe, 0x2, 0x200, 0xfff, 0x7fffffff, 0x434, 0x6, 0x4, 0x1, 0x1000, 0xdccb, 0xf7a, 0x1, 0x4, 0x0, 0x3, 0xd, 0x9, 0x2, 0x6, 0x8, 0x1, 0x4, 0x3, 0x6, 0x377, 0x2b62c9b7, 0x401, 0x3, 0x9, 0x0, 0xfffffff8, 0x8, 0x2, 0xffffffff, 0x9, 0xf85b, 0x91, 0x4, 0x1, 0x2, 0x2, 0x4, 0x5, 0x200, 0x3, 0x0, 0x5, 0xf, 0x1, 0x1, 0xffff, 0x1c4cc450, 0x401, 0x1c0000, 0x80000000, 0x21cb, 0x9, 0xc, 0x5, 0x7fff, 0x101, 0xe, 0x4, 0x7, 0x1, 0x1, 0x91e, 0x0, 0x8, 0xf697, 0xfff, 0x0, 0x9, 0x6, 0x8, 0x640c, 0xbde, 0x1, 0x48, 0x3, 0xe371, 0x2, 0x646, 0x4, 0x7, 0x0, 0x401, 0x6, 0xd48, 0xc6, 0x8, 0x1, 0x8, 0x81, 0x2, 0x0, 0x800, 0x6, 0x7fffffff, 0xe4c7, 0x7f, 0x5, 0x2, 0x9, 0x3, 0x0, 0x2, 0x3, 0xbe8b, 0x5, 0x254c, 0x6, 0xae, 0x2, 0xc84, 0x6, 0x9, 0x97, 0x7, 0x73, 0x4, 0x1, 0x4, 0xfffffff9, 0x8001, 0x0, 0x7, 0xfffffffe, 0x9, 0x9, 0xffff8001, 0x5, 0x8, 0x5, 0xfffffffb, 0x3, 0x8, 0x7, 0x10, 0x9476291, 0x7, 0x4, 0x7, 0x9, 0x94000000, 0x3b, 0x120, 0xa8, 0x0, 0x7, 0x2, 0x4, 0x6, 0x5, 0xfffffffc, 0x48000000, 0x2, 0x0, 0x51a2, 0xab35, 0x9, 0xfffffffa, 0x7ff, 0x6, 0x8001, 0x401, 0x1ff, 0x0, 0xb7, 0x6, 0x8, 0x9, 0x2, 0x7, 0x9, 0xfc98, 0x7fff, 0x3, 0x2, 0x8, 0x0, 0x5a1, 0x3, 0x1, 0x7, 0x7, 0x81, 0xf, 0x0, 0x3, 0x9, 0x5, 0xf, 0x0, 0x6, 0x80, 0x3, 0xbd97, 0x4a3a, 0x7, 0x5, 0x2, 0x8000, 0xf, 0x4, 0x10000, 0x177, 0x7, 0x101, 0x0, 0x7fff, 0x4eb30000, 0x8, 0x0, 0x3ff, 0xfffff000, 0xffff, 0x7, 0x517, 0x0, 0x7b, 0x6, 0x5, 0x400, 0x3, 0xa4, 0x4, 0x101, 0x100, 0x6, 0x3, 0x4, 0xfffffff7, 0x2, 0xb, 0x0, 0x1ca, 0x1, 0xfffffff9, 0xd, 0x2, 0x9, 0x9, 0x7ff, 0x8001, 0x2, 0x5, 0x0, 0x0, 0xfc7, 0xafb8, 0x0, 0x0, 0xffff, 0x5, 0x4, 0x7fffffff, 0x49a, 0x0, 0x3, 0x563f, 0x9, 0x0, 0x24, 0x1, 0x10000, 0x1, 0x1, 0x8, 0x7, 0x292e8, 0x6f7b, 0x30000, 0x385, 0x9, 0x6, 0xfffff000, 0xcff8, 0x7, 0x6, 0x873, 0x80000001, 0x10000, 0x0, 0x2, 0xe, 0x7, 0xcbab, 0x8, 0x1, 0x2, 0x8, 0x2f2d, 0xd3, 0x2, 0x2, 0x181d, 0x0, 0x0, 0x2000, 0x8000, 0x80, 0xffffffff, 0x73, 0x6, 0x4, 0x2, 0x100, 0x80, 0x6, 0x52d2, 0x3, 0xffff7fff, 0x401, 0x718, 0xf54, 0x3, 0x4, 0x8001, 0x5, 0x8, 0x9, 0x8, 0xc, 0x7, 0x9, 0x0, 0xf3d, 0x0, 0x7, 0x9, 0x0, 0x15, 0x2, 0x0, 0x9, 0x1, 0x48, 0x800, 0x0, 0x5, 0x8, 0x0, 0x6, 0x3, 0x9, 0x4610, 0x0, 0x8, 0x3, 0x6, 0x0, 0x1ff, 0x8000, 0x6, 0x9, 0x800, 0x101, 0x9, 0x3, 0x5b, 0x65f0, 0x3, 0x6, 0x1ff, 0x90cd, 0x7, 0x5, 0x8, 0x9, 0x2, 0x3, 0x9, 0x2, 0x9, 0x6, 0xfffffffe, 0xf5, 0xf, 0x6, 0x70, 0xb2f, 0x6, 0x1, 0x9, 0x3, 0xffff40f0, 0x7, 0x7, 0x8, 0x0, 0x9a3, 0x6, 0xfffffffc, 0x7, 0x2, 0x72, 0x4, 0x6, 0x8, 0x1, 0x3, 0xffffff7f, 0x2, 0x9, 0xcd2, 0x4, 0x4, 0x3, 0x8, 0x2, 0x98, 0x400, 0xb, 0x101, 0x80000000, 0x1, 0x400, 0xf34b, 0x438a, 0x1, 0x9, 0x4, 0x8, 0x0, 0x5, 0x2, 0xf3, 0xfff, 0x70, 0x0, 0x7ff, 0x6, 0x40, 0x9, 0x1, 0x0, 0x0, 0xd, 0x6, 0x6, 0x4, 0x6, 0x1, 0x2, 0x3, 0xd77, 0x2, 0x1d, 0x7, 0x5, 0x1, 0x6, 0x8, 0x10, 0xb47, 0x7f, 0xa9c, 0x8, 0xd, 0x6, 0x489, 0x3, 0x4, 0xfff, 0x8f, 0xffff, 0x2, 0x2, 0x7ff, 0x8, 0x9, 0x2, 0x4, 0x873, 0x7fffffff, 0x6e9, 0x80000000, 0x7, 0x7, 0x475c, 0xd9, 0xf184564, 0xc2, 0x1000, 0x8, 0x3, 0xd6b, 0x80000001, 0x5, 0xffffff01, 0x3, 0x7, 0x0, 0x9, 0x3, 0x6245057e, 0x2, 0xff, 0x1, 0x7f, 0xff, 0x889, 0x4, 0x1, 0x1, 0x8, 0xd36, 0x6, 0x5, 0x5, 0x7, 0x5, 0x6ceb, 0xfffffffc, 0x2f76, 0x200, 0x0, 0x80000001, 0x8001, 0x9, 0x96e, 0x5e7, 0xf, 0x2, 0x0, 0x100, 0x4, 0x0, 0x1000, 0x3, 0x9, 0x5, 0x2, 0x3, 0x9, 0x101, 0x7, 0xcdb, 0x6, 0x698, 0x1, 0x9, 0x2, 0x2, 0x2, 0x3, 0x7, 0x5e, 0xf, 0xbcb, 0x7, 0x300, 0x7, 0x6, 0xfffffffd, 0xe, 0x5, 0x2, 0x5, 0x3ff, 0x10000, 0x7fffffff, 0x10, 0x7, 0x200, 0x2, 0x8, 0x0, 0x4, 0x8, 0xfffffffc, 0x40, 0x4, 0x6, 0x8, 0x2, 0xf, 0x0, 0x7fffffff, 0x8000, 0x0, 0xfffffff4, 0xa, 0xb72e, 0x9, 0x6, 0x5, 0x3, 0x3, 0x5d7c, 0x7, 0xfffffff8, 0xb, 0x2, 0x48e, 0x584, 0xfffffffe, 0x4, 0x800, 0x4, 0x4, 0x50, 0x45, 0x4, 0xf, 0x10001, 0x2, 0xa63, 0xfffffff7, 0x0, 0x3, 0x920, 0x8, 0x7fff, 0x8, 0x0, 0xe4, 0x40, 0xfff, 0x5, 0xf03, 0x40, 0x3, 0x3ff, 0x2, 0x3, 0x10001, 0x7, 0x3, 0x101, 0x0, 0xfffffff8, 0x2, 0xb, 0x5, 0x0, 0x7, 0x2, 0x2, 0x1e2, 0x6, 0x9, 0x6, 0x3ff, 0x7, 0x6, 0x1, 0x1000, 0x3, 0xfffff001, 0x7, 0x72, 0x3, 0x7, 0x1, 0xc1ee, 0xfffffff7, 0x9, 0x4e, 0x120c, 0x9, 0x6, 0x8, 0x1, 0x5, 0x8, 0x598, 0xa, 0x1, 0x1, 0x4, 0x6970, 0x337075c0, 0x0, 0x9, 0x9, 0x100, 0xac, 0xf, 0x8000, 0x4, 0x3, 0xffffff6f, 0x8, 0x7, 0x2, 0xfffffffc, 0x5, 0x9270, 0xa, 0xd2, 0x0, 0x561, 0x401, 0x8, 0x9489, 0x3, 0x7fffffff, 0x5, 0x2, 0x7f000, 0x80000000, 0xffff, 0xd, 0xd8, 0x80000000, 0xc, 0xf6, 0x8, 0x7, 0x8, 0x0, 0x33c2872, 0x3, 0x1, 0xfff, 0x8ee3, 0x7a72, 0x100, 0x5, 0xb, 0x2, 0x7fff, 0x1, 0x1, 0x7fffffff, 0x9, 0x6, 0x10000, 0x200, 0x6, 0x3, 0x0, 0xc4, 0x8, 0x4, 0x1, 0x1, 0x3da, 0x8, 0xd, 0x3, 0xa0, 0x5, 0x9, 0x6, 0x48, 0x4, 0x9, 0x5, 0x7, 0x2, 0xc4ab, 0xff, 0x8, 0x7, 0x4, 0x5, 0x2, 0x81, 0x1, 0x95, 0x401, 0x1, 0x73c, 0x2, 0x12, 0x7, 0x1, 0x200, 0x5, 0x7, 0x28ae, 0x26, 0x15, 0x8, 0x3, 0xfffffff9, 0x1, 0x4, 0xfff0000, 0x4, 0x9, 0x10000, 0xd26, 0x9, 0x6, 0x71cf, 0x8, 0x0, 0x8, 0x100, 0x5, 0x9, 0x5, 0x80000001, 0xffffffff, 0x10, 0x80, 0x6, 0x4, 0x7f, 0xf0c4, 0x3, 0xd3, 0xea, 0x8001, 0x480000, 0xa, 0x10000, 0xffff, 0x3, 0x5, 0x8, 0xad8, 0x81, 0x5598, 0x0, 0xd33, 0x81, 0x4a2, 0x6, 0x81, 0xffff6df9, 0x5, 0x1ff, 0x8000, 0x7, 0x4, 0x0, 0x0, 0x7, 0x3, 0x0, 0x3, 0x8000, 0x8, 0x4, 0x3ff, 0x3, 0x2000000, 0x4, 0xa, 0x40000000, 0x3a6f1958, 0x1, 0x7, 0x6, 0x9, 0x62fb, 0x1, 0xfff, 0x7a, 0xbe83, 0x9, 0x2, 0x3, 0x80, 0x3, 0x9, 0x8, 0x8, 0x7c0, 0x6, 0xa269, 0x649d0cfd, 0x7, 0x0, 0x2807, 0xffff9daf, 0x6, 0xa4, 0x100, 0x401, 0x800, 0xe, 0x3, 0xd2a5, 0x9, 0x8, 0xa, 0x10000, 0x8, 0x80000001, 0x7, 0x6, 0x400, 0x9, 0x9, 0x4, 0xb, 0xa2e, 0x7, 0x9, 0xd, 0x100, 0xffff1b48, 0x9, 0x8001, 0x3, 0x6, 0x8, 0x8ba4, 0x0, 0x0, 0x9, 0x7, 0x8, 0x7, 0x7, 0x2, 0x200, 0xfffffff7, 0x2f7c, 0x4, 0x7, 0x4, 0x1, 0x1000, 0x5, 0x7, 0xd, 0x2, 0x1000, 0x400, 0x8f1, 0xb30, 0x5, 0x72, 0x40, 0xbfc, 0x400, 0x1000, 0x81, 0x7, 0x2, 0x9, 0xa997, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0xfffffffa, 0x3, 0xffffff4b, 0x4, 0x3, 0x4, 0x400, 0x0, 0xfffffffa, 0x8, 0xfff, 0x8, 0x6, 0x8, 0x1, 0x85, 0x7, 0x3, 0x200, 0x4, 0x9, 0xe00000, 0x4, 0x1, 0x0, 0x1, 0x1000, 0x5, 0x5, 0x8, 0x0, 0x6, 0x7, 0x7, 0xc, 0x2, 0xa5, 0x7f, 0x21, 0x2, 0x2, 0xb67, 0x2e3, 0x9, 0x4, 0x4, 0xe, 0x8000, 0x2, 0x5, 0xfa, 0xbf, 0xffff, 0x9, 0x0, 0x8001, 0x19c4, 0x0, 0x8, 0x6, 0xffff0473, 0x5, 0x4, 0x4, 0x8, 0x80, 0x1, 0xfffffff8, 0x2, 0x8, 0xfff, 0x8, 0x7d10, 0x2b, 0x0, 0x80000000, 0x44, 0xa, 0xa5, 0x0, 0xa, 0x6638, 0x11, 0xfff, 0x5, 0x0, 0x4, 0x100, 0xfffffffa, 0x8, 0x2, 0x479075c3, 0xa9, 0x5, 0x3, 0x5, 0xf, 0x2, 0x1, 0x0, 0x7, 0xff, 0xd4e5, 0x200, 0x1ff, 0x5, 0x81, 0x5, 0x3, 0x3, 0x9, 0x7, 0xbb79, 0x40, 0x75f2, 0x0, 0x0, 0xc1, 0x1, 0x0, 0x0, 0x48, 0x40000000, 0xff15, 0xea5e0000, 0x4, 0x9, 0x6, 0x2, 0x0, 0xfffffff8, 0x401, 0x9, 0x7fffffff, 0xffff, 0x3, 0x996, 0x7, 0x0, 0x2, 0x3, 0x1000000, 0x4ff, 0x9, 0x2, 0x3, 0x10, 0x3, 0x4836, 0x4, 0x9, 0x8, 0xfff, 0x80, 0x7, 0x0, 0x3, 0x81, 0x80000001, 0xe4, 0x5, 0x6, 0x0, 0xfffffffe, 0x800, 0x8, 0xfffffffc, 0xe39, 0x0, 0x6, 0x5, 0xf2c, 0xfffffffb, 0x983, 0x7f, 0x9, 0x7fffffff, 0x746, 0x26ac0000, 0x0, 0x4, 0x4, 0x8, 0x977, 0x4, 0x4, 0x5, 0x9, 0x200, 0x8, 0xffffffa0, 0x1, 0x0, 0x67c, 0x8, 0xf3, 0xfffffffe, 0x40, 0x1, 0x9, 0x7ff, 0x1, 0x1, 0x1, 0x8, 0x8d, 0xba49, 0x401, 0xba6, 0x32ee, 0x3, 0x2, 0xf, 0x2b05, 0x8000, 0x2, 0x4e, 0x5, 0x0, 0x2, 0x3, 0x4, 0x8, 0x7ff, 0x7fffffff, 0x9e, 0x2, 0xfffffffe, 0x5, 0x5, 0x10000, 0x8, 0x1ff, 0x3, 0x1000, 0x2, 0x0, 0x4, 0x81, 0x6, 0x7, 0x6, 0x4, 0x0, 0x3, 0x51, 0x10001, 0x5, 0x2ed3, 0xd680, 0x4, 0x3d7, 0x1, 0xfb6, 0xfffff001, 0x7, 0xffffffff, 0x1ff, 0x5, 0x0, 0xf, 0x9, 0x12, 0x1ff, 0xffff3f98, 0x5, 0x6, 0xe4, 0xf18, 0x9, 0xd, 0xffffffff, 0x4, 0x4, 0x8, 0xc, 0x7, 0x8, 0x4, 0x800, 0x1ff, 0x2, 0x5, 0x0, 0x3, 0x0, 0x3, 0x8000, 0x7, 0x5, 0xffffff1f, 0x7, 0x8, 0x8, 0x0, 0x25, 0x7de, 0x1000, 0x1, 0x4, 0x2, 0x7, 0x7, 0x5, 0x8, 0x7, 0x8, 0x1, 0xa, 0x9, 0x4, 0x1, 0x7bed, 0x0, 0x9, 0x5878, 0x9, 0x7, 0x9, 0x5, 0x7, 0x2, 0x5, 0x5, 0x81, 0x3, 0x3, 0x9, 0x8, 0x4, 0x6, 0x6, 0x7ff, 0xfc, 0x1000, 0x4, 0x9, 0x0, 0x0, 0x2, 0x400, 0x2eff, 0x80000000, 0x523, 0xfa, 0x1000, 0x2, 0x8, 0x179, 0xf9, 0xe, 0xff, 0x8001, 0x3, 0x941, 0xffff, 0x9, 0x7, 0x1, 0x6, 0x7, 0x7, 0x6, 0x8e, 0x6f, 0x80, 0x0, 0xc0e6, 0x1, 0x6, 0x2, 0x8, 0xe615, 0x9, 0x9e, 0x24d, 0xfffff801, 0x4, 0xfffffffb, 0x0, 0x177a, 0x9, 0x7, 0x1c, 0x7fffffff, 0x5, 0x81, 0x3ff, 0x3, 0x2, 0xf7a4, 0x4, 0x0, 0x1, 0x7, 0x200, 0x18, 0x7, 0x1, 0x5, 0xfff, 0x7fff, 0x0, 0x0, 0x5, 0x8000, 0x2, 0xc59, 0x5, 0x8, 0x2, 0x2, 0x3, 0x0, 0x9, 0x400, 0x61, 0xd7, 0xffffffff, 0x0, 0x3, 0x7, 0x18bd, 0xae1, 0x10001, 0x3, 0x4, 0x800, 0x2, 0xea, 0x4, 0x0, 0x803, 0xf, 0x400, 0xe29, 0x4, 0x2, 0x0, 0x1, 0xb9f, 0x3, 0x71, 0x2f, 0x4, 0x31e, 0x944f, 0xe62, 0x0, 0x5, 0x86, 0x269292cc, 0x0, 0x80, 0x4, 0x10, 0x3, 0x1, 0x3, 0x9, 0x0, 0x862b, 0xd, 0x1aed66b5, 0x6, 0x3, 0x2, 0x1, 0x983, 0x9, 0x2, 0xfffffffe, 0x1ff, 0x7, 0x10000, 0x30000, 0xf63, 0xfffffffc, 0x9, 0x8, 0x5, 0x9, 0x1, 0x80000001, 0x1, 0x6ebff8e0, 0x4, 0x10001, 0x5, 0x5, 0x8000, 0x9, 0x4383, 0x7, 0x794e, 0x9624, 0x101, 0xc4, 0x8, 0x7, 0xe, 0x4, 0x2351, 0x8, 0xe2, 0x5, 0xf, 0x0, 0x8, 0x0, 0x2, 0x4, 0x6, 0xffffffff, 0xa4f3, 0x8001, 0x2, 0x2, 0x353, 0x3e8, 0xc0000, 0xd, 0x1fa, 0xfff, 0x3, 0x81, 0x80, 0xfffff729, 0x2, 0x6, 0x7, 0x89bd, 0x101, 0x1dd, 0x1, 0x1, 0x8, 0x1, 0x200, 0x5, 0x7, 0x0, 0x6ca, 0x8fb, 0x5, 0x9, 0x7, 0x2, 0xa, 0x2, 0x0, 0x2, 0x41, 0x7, 0x1, 0x4, 0x1, 0x2, 0x3ff, 0x6, 0x9, 0x1000, 0xb2a2, 0x8, 0x7, 0x5d, 0xb68, 0x10, 0xfffffffd, 0x5, 0x4, 0x73, 0x9, 0x8469, 0x4, 0x8, 0x5, 0xf3f, 0x6, 0x6, 0x9, 0x2b93, 0x3, 0x9b39, 0xe, 0x80000000, 0x3, 0xfffff001, 0x100, 0xb582, 0x1, 0x0, 0x5, 0x78, 0x7, 0x5, 0xf83, 0x8a0, 0x0, 0xff, 0x100, 0x7, 0x23, 0x2, 0x6, 0x667, 0xfffffc01, 0x6, 0x83a3, 0x9, 0x4b8, 0x8, 0x7fe0bd9c, 0x5, 0x9794, 0x8, 0x1, 0x0, 0x0, 0x7, 0x600, 0x95b, 0x400, 0xfffff927, 0x0, 0x6, 0x7, 0xed28, 0x4, 0x9, 0x8, 0xffffffff, 0xa, 0x0, 0xe, 0x0, 0x37, 0x1, 0xffffff80, 0x0, 0x3ff, 0x996, 0xa6c, 0x2, 0x1ff, 0xf6e7, 0xde45, 0x800, 0x80000001, 0xfffffffe, 0x9, 0x3, 0x40, 0x8, 0x9, 0xfffffffd, 0x80000000, 0x7fffffff, 0x2, 0x5, 0x6, 0x3, 0x8, 0x7, 0x401, 0x8, 0x1000000, 0x65537704, 0x10000, 0x9014325, 0x901e, 0xf7, 0x4, 0xffffffff, 0x800000, 0x8001, 0x4, 0x81, 0x3, 0x7, 0x80000001, 0x9, 0x80000000, 0x4, 0x4, 0xffffffff, 0xfff, 0xffffff00, 0x3, 0x17, 0x4, 0x0, 0xb, 0x0, 0x7ff, 0x51, 0x8, 0xa5, 0x80000001, 0x5, 0x6, 0x4, 0x8001, 0xa2f, 0x4, 0x1ff, 0x7, 0x1, 0x15, 0x9, 0x8, 0x0, 0x0, 0x4, 0x9, 0x6, 0x2, 0x5, 0x4, 0xa6b8, 0x11f, 0x80000001, 0x7, 0x8, 0x8, 0x5, 0xdd3, 0xa, 0xda, 0x2, 0x8, 0x8, 0xfffffffb, 0x800, 0x7, 0x6, 0x4, 0xa708, 0x8d, 0x9, 0x400, 0x6, 0xfffffff6, 0x2, 0x5, 0x2, 0x7ff, 0x4, 0xc, 0x76cd, 0x32, 0x5, 0x100, 0x5, 0x800, 0x4, 0x1, 0x200, 0x7, 0x1, 0x8, 0x7ff, 0xf3, 0x39, 0x3, 0xd, 0x0, 0x6, 0x7, 0xc5, 0x7fffffff, 0xac, 0x401, 0x2, 0x5, 0x200, 0xffffffff, 0xdc5, 0x800, 0xffffff41, 0xa0e5, 0x9, 0x9, 0x9, 0x8, 0x3, 0x0, 0x9, 0x9, 0x6, 0x74eb, 0x10000000, 0x7e5, 0x7fffffff, 0x1000, 0xff, 0x6, 0x0, 0xbfe3, 0xf9, 0x7, 0x8, 0x8b, 0x9, 0x7f, 0x8, 0x2, 0x6, 0x3, 0x7, 0x10, 0xfffffffa, 0x3, 0x8c, 0x2, 0x81, 0x0, 0x0, 0x6, 0xa1a, 0x4, 0x1, 0xfffff4e8, 0x8, 0x766, 0xbc6, 0x3, 0x9, 0x51, 0x4, 0x6e3, 0x4, 0x9, 0xffffffff, 0x3, 0x1, 0x7b2, 0x4, 0x9, 0x100, 0xa4, 0xd, 0xd, 0xffffffff, 0x8, 0x9, 0x10000, 0x8, 0x7, 0x800, 0x5, 0x3, 0x4, 0x2, 0x7, 0x8, 0x2, 0x1000, 0x0, 0x7, 0xc869, 0x0, 0x2, 0x0, 0x7, 0xff, 0x6000, 0x7, 0x8, 0x4, 0xa, 0x1, 0xfffffffa, 0x1, 0x1, 0x8, 0xff800000, 0x3, 0xc8b8, 0x6b, 0x1, 0x1, 0x400, 0xffffffff, 0x80000001, 0x3, 0x5, 0x1000, 0xf9a5, 0x9, 0x7ff, 0xb2, 0x0, 0x0, 0x6c, 0x4b0d, 0x0, 0xe3ec, 0x3, 0x40, 0x7, 0xa, 0x1, 0x5, 0x5, 0x0, 0xb72f, 0xffff, 0x8, 0x4, 0xde4, 0x7a5, 0x7fff, 0x2, 0x8, 0x849e, 0x1, 0x40ae, 0x6, 0x1, 0x3, 0x7, 0x200, 0x2, 0x697b80fa, 0x3, 0x8, 0x2, 0x4, 0x9, 0x9, 0x82e, 0x0, 0x2, 0x2, 0x4, 0x5, 0x4f80, 0xffffffff, 0x5, 0xd, 0x2, 0x3fc00, 0xf, 0x3, 0x2, 0x2, 0x2, 0x4, 0x6, 0x4, 0x5b8, 0x3, 0x7, 0x3, 0x1, 0x1, 0xa12, 0x3, 0x3, 0x9, 0x401, 0x800, 0x7, 0x100, 0x5, 0xcbe, 0x4, 0x4, 0xa0c, 0xfffffffd, 0x2, 0x4, 0x1, 0x6, 0x1, 0x4, 0x1, 0xe257, 0xa, 0x7, 0x9, 0x401, 0xad, 0x6, 0x200, 0x8, 0x0, 0xb, 0x10000, 0xe0, 0x7, 0x0, 0x5, 0x4, 0xffffa908, 0x9, 0xfc3, 0x9, 0x7, 0xc709, 0x399b386a, 0x2, 0xbd6, 0x3, 0xfffffff7, 0x8000000, 0x2, 0x400, 0x8000, 0x2, 0x0, 0x6c33105a, 0x6, 0x1ff, 0x3, 0x7f, 0xb, 0x692, 0x10001, 0x5, 0x6, 0x5, 0x2, 0xd, 0x1000, 0x7, 0x6, 0x6, 0x8, 0xc, 0x7, 0x7, 0x7, 0x5, 0x5, 0x5, 0x7ff, 0xf, 0x15ee, 0x6, 0x8, 0x8000, 0xecda, 0xffffff81, 0x7ff, 0xa, 0x8000, 0x7f, 0x80000000, 0x0, 0x4, 0x3, 0x1, 0x3, 0x5, 0x7, 0x4, 0xb38, 0x5, 0x100, 0x0, 0x10001, 0x9, 0x530, 0xff, 0x81, 0x7, 0x79, 0x336, 0x3, 0x3, 0x1000, 0x6, 0x7, 0x34e, 0x5, 0x7fffffff, 0x4, 0x6, 0x5, 0xfffffffb, 0x100, 0x8, 0xfffffff5, 0xfffeffff, 0x9, 0x3, 0x3, 0xb8a, 0x10000, 0x9, 0x6363, 0x0, 0x6, 0x7, 0x45e37a85, 0xb, 0x4, 0x3, 0xf8a, 0x4fab, 0x6, 0xc6, 0x7fff, 0x3, 0x5, 0x3, 0x10, 0x8, 0x7ff, 0x8, 0x1, 0x101, 0x6, 0x0, 0x34, 0x5, 0x0, 0x6, 0x2, 0x6, 0x8, 0x3ff, 0xa, 0x5, 0x6, 0x0, 0xfffffff8, 0x10001, 0x7ff, 0x3ff, 0x3, 0x1ff, 0xf, 0x6, 0x5, 0xc, 0xd6, 0x1, 0x0, 0x94e, 0xb0, 0x400, 0x3ff, 0x2, 0x5, 0x4, 0x3, 0x3, 0x8, 0x80000000, 0xfffffffb, 0x9ad7, 0x89, 0x2, 0x7, 0x1b6, 0x800, 0x10001, 0x7, 0x80, 0x7ff, 0x8, 0x2806, 0x8001, 0x14000, 0x80000000, 0x3, 0x80, 0x3, 0x0, 0x74, 0x6, 0x0, 0x1000, 0x7fff, 0x1, 0xc, 0x372e, 0x2c65dc1e, 0x0, 0x4, 0x1d40, 0x540, 0x8, 0x7, 0x2, 0x6, 0x7, 0x0, 0x1, 0xe, 0x0, 0x10000, 0x180000, 0x8, 0x7, 0x80000000, 0xd, 0x9, 0x80000000, 0x9, 0xe, 0xffff, 0x7, 0x1, 0x9, 0x70, 0x9f, 0x6, 0x7, 0x0, 0x4, 0x3, 0x6, 0xee, 0xa4d, 0x0, 0x101, 0x0, 0xe0, 0x804, 0x7fff, 0x1, 0x7ff, 0x9, 0x4, 0x5e, 0xff, 0xa2, 0x3ff, 0x6b53, 0x0, 0x6, 0x3, 0xffff, 0x2, 0x5, 0x9, 0x4, 0x2, 0x532b, 0x10, 0xffffffff, 0x9, 0x5b, 0xffffffff, 0x400, 0xe1d, 0x5, 0x7fffffff, 0x0, 0x0, 0x5, 0x401, 0xc02, 0x4, 0x7, 0x0, 0x3c90, 0x9, 0x5, 0xb7, 0x5, 0x3ff, 0xfe9d, 0x0, 0xe13, 0x6, 0xffffffff, 0x95, 0x1, 0x6d3, 0x8, 0x6, 0x3, 0x4, 0xa4b, 0x3, 0x6, 0x3, 0x2, 0x5, 0x5e780088, 0x7, 0x2, 0x3, 0xa33b, 0x2, 0x9000, 0x0, 0x4, 0xfffffffc, 0x4, 0x200, 0x7, 0x1, 0x4, 0x4, 0xc3e, 0xfffff34b, 0x2, 0x7, 0x5, 0x81, 0x6, 0x7, 0x6, 0x2, 0x81, 0x2, 0x10001, 0x1, 0x100, 0x5, 0xb, 0xfffffff7, 0x975, 0x1, 0x2, 0x6, 0xc3d, 0xf7, 0x3, 0x5, 0x2ea, 0x4, 0x5, 0x0, 0xff24, 0x5, 0xffffffa5, 0x81, 0x2, 0x9, 0x7, 0x0, 0x8000, 0x7, 0x3, 0x7, 0x1, 0x4, 0x81, 0x1, 0x1, 0x2, 0x5, 0x5, 0x1800, 0x8, 0x5, 0x6, 0x7, 0x7fffffff, 0x6, 0x2, 0x0, 0x7ff, 0xfffffff7, 0x9, 0xc, 0xfffffff8, 0x9, 0x0, 0x48, 0x0, 0x4, 0x7, 0x0, 0x80000001, 0x0, 0x1, 0x1, 0xfffffffd, 0x2, 0x0, 0x4, 0x2fbd, 0x2, 0x100, 0xe, 0xfffffffb, 0x8, 0x5, 0x960, 0x5, 0x400, 0x1ff, 0x2, 0xfffffff7, 0xffff, 0x8, 0x4a, 0x100, 0x9, 0x1, 0x5, 0x2, 0x6, 0x3, 0x101, 0x2, 0x2, 0x1, 0xdf, 0x3, 0x4, 0x3, 0x3891e49e, 0x5, 0x4, 0x1, 0x2, 0x5cdccc23, 0x4, 0x5, 0x5, 0x5, 0x3, 0x526, 0x5, 0x9, 0x8, 0x5, 0x4, 0x3, 0xef, 0x10000, 0x2b8, 0x200, 0x6, 0x1, 0x46e, 0x3, 0x6, 0xfffffffd, 0x5, 0xe, 0x9, 0x34b, 0x8, 0x8000, 0x5, 0x7f, 0x2, 0xa, 0x2, 0x7, 0x1, 0x2, 0xfffffc00, 0x3b8, 0x9, 0x1, 0x1, 0x6, 0x5, 0x9, 0xe86a, 0xf70, 0x2, 0xd1de, 0x2, 0x800, 0x0, 0x1000, 0x80000000, 0x6, 0x5, 0x7fff, 0x8, 0x1, 0xffffffff, 0x9, 0x5, 0x1, 0xff, 0xe, 0x10000, 0x0, 0x2, 0x1, 0x2, 0x3, 0x3, 0x7, 0x401, 0x1f, 0x9, 0x8, 0xfff, 0x6, 0x7, 0x8, 0x33c2, 0x5, 0x5, 0x8, 0x9, 0x1000, 0x9, 0x2, 0xfffffffb, 0xd3d, 0x5, 0x8, 0x7, 0x10, 0x100, 0xa, 0xb5e, 0x1, 0x1, 0x10, 0x6, 0x3, 0x4, 0x6, 0xa8, 0x454f, 0x4, 0xab, 0x5, 0x80000000, 0x800, 0x2, 0x7fffffff, 0xfffffffc, 0x878, 0x8a98, 0xfffffffd, 0x6, 0x7, 0x88e8, 0xfffffffd, 0x618, 0xfb, 0x64e, 0x7f, 0x3, 0x0, 0x9, 0x7, 0x9, 0x2, 0x9, 0x6, 0x3, 0xeae, 0x6, 0xfffffc00, 0x5d, 0x7, 0x3, 0x4, 0x1, 0x401, 0x8, 0x9, 0xfffffff9, 0xa, 0xd, 0x91, 0x0, 0xbd2, 0x200, 0x256c, 0x0, 0x10000, 0x9799, 0x101, 0x0, 0x9, 0x4, 0x7, 0x9, 0x9, 0x100, 0x9, 0x1, 0x8, 0xba69, 0x6, 0x8, 0x1, 0x9, 0x2c5, 0x8, 0x8001, 0x2, 0x0, 0x7f, 0x4, 0x63, 0xffffffff, 0x4, 0xffffffff, 0xe, 0xb, 0x3, 0x1, 0x7, 0xffff, 0x5, 0x6, 0x5, 0x81, 0x4, 0x2, 0x2, 0x6147, 0x0, 0x100, 0x7, 0x1ff, 0xfffffff6, 0x3, 0x10000, 0xfffffffb, 0x4, 0x94, 0x3ff, 0x5, 0x7, 0x7fffffff, 0x7, 0xffffffff, 0x1, 0x6cb5, 0x8, 0x80, 0xe, 0xfffffffd, 0x80, 0x3, 0x7, 0x7, 0x8, 0xfffffffe, 0xe, 0x6, 0x80, 0x1, 0x8, 0x6, 0x0, 0x6, 0x7, 0x6, 0x4, 0x7, 0x3, 0xfff, 0x81, 0xfffffffb, 0x8000, 0x8, 0x3, 0x9, 0xfffffff7, 0x6, 0x32, 0x5, 0x3, 0x2, 0x6, 0xb, 0x1, 0x81de, 0x7, 0x4, 0x8001, 0x7, 0x2, 0x6, 0x4, 0x4, 0xff31, 0x7, 0x10, 0x80000001, 0x751, 0x6, 0x6, 0x7, 0x0, 0x10, 0x8, 0x6, 0x9, 0x0, 0x22ae, 0x4, 0x7, 0x4, 0x6, 0xd8, 0x1, 0x9, 0x7, 0x4, 0x5, 0x101, 0x6, 0x9, 0x2, 0x3, 0x7, 0x9e18, 0x3, 0x6, 0x6b85, 0xab, 0x1, 0x4, 0x5, 0x5, 0x400, 0x1000, 0x3, 0x5fe1, 0x8, 0x101, 0x7, 0xd, 0xaaf, 0x9, 0x1fd2ec8c, 0x9, 0x8001, 0x2, 0x401, 0x1, 0xd300, 0xf49e, 0xd, 0x5, 0x7f, 0xb343, 0x6, 0x1, 0x8, 0xd, 0x711a0639, 0xb, 0x1, 0x3, 0x68, 0x0, 0xfffffff8, 0x8e6c, 0x9, 0xc8, 0x101, 0xd, 0xffff, 0xf0, 0x800, 0xa, 0x7, 0x400, 0xffff, 0x10, 0x0, 0xfffffffa, 0xfffffffb, 0xffffffff, 0x2, 0x5, 0x1, 0x80, 0x7, 0x5, 0x81, 0x7, 0x2, 0xd4b4, 0x60f, 0x4, 0xe, 0xfffffff7, 0x7, 0x2, 0x4de, 0x7, 0x3, 0x6, 0x80, 0x10001, 0x4, 0x0, 0x75, 0x7ff, 0x7fff, 0x8fc, 0x7, 0xffff, 0x5, 0x1, 0x401, 0x8, 0x6, 0x9, 0x101, 0x6, 0x2, 0x401, 0x8, 0x7, 0xffff0000, 0x7, 0x9, 0xffff, 0x6, 0x2, 0x2, 0x8, 0x0, 0x100, 0xb, 0xfffffffd, 0x8, 0x1, 0x1, 0x1, 0x0, 0x2, 0x1, 0x5, 0x0, 0x11, 0x0, 0x7d, 0xfff0, 0xfffffffe, 0x1000, 0xe, 0xfffffc01, 0xf, 0x3, 0x4, 0x1, 0x3, 0x9, 0xfff, 0x53, 0x1000, 0x10, 0x9, 0x4, 0x101, 0x0, 0x5, 0x2, 0x3, 0x5d5e, 0x6, 0x7f, 0xfffff000, 0x5, 0x1, 0x8000000, 0x4, 0x5, 0x9, 0x80000001, 0x200, 0x3, 0x5, 0x9, 0x6, 0x5, 0x5, 0x8, 0x40, 0x2, 0x101, 0x1, 0x4, 0xdf7, 0xfffffffa, 0x4, 0xf, 0x8, 0x7, 0x350, 0x1, 0x8, 0x8, 0x7, 0x10bad533, 0xd9, 0x4, 0x3, 0xffff, 0x28, 0xde9, 0xc1, 0x3, 0x8, 0xb, 0x2, 0x101, 0x96, 0x0, 0xffffffff, 0xf9, 0x8, 0x6, 0xd, 0xfff, 0x2, 0x3, 0x7fffffff, 0x15, 0x5, 0x683, 0x8, 0x100, 0x4, 0x5, 0x30000, 0x2, 0x7, 0xf, 0xfff, 0x800, 0x4, 0x0, 0x3, 0x101, 0x8, 0x4, 0x1, 0x4, 0x7, 0xe08e, 0x401, 0x4, 0x59e, 0x7, 0xa0fa, 0x7f1, 0x7ff, 0x6, 0x17, 0x4, 0x1, 0x1000, 0x6, 0x38000, 0xfffffffc, 0x5, 0xfffffff9, 0x4, 0x9361, 0x5, 0x3, 0x1, 0x10000, 0x1ff, 0x400, 0x3, 0x8, 0x7, 0x2, 0xb, 0x5, 0x8, 0x4, 0xd, 0x3b, 0xfffffffe, 0x7ff, 0x101, 0x4, 0x6, 0x1, 0x1, 0x0, 0x5, 0x9d1b, 0xffffcd67, 0x6, 0x7703, 0x438c0a62, 0x9, 0x8, 0x5, 0xb37, 0x4, 0x6, 0x8, 0x9, 0x9, 0x0, 0x7ff, 0x6, 0x1cc5, 0x3, 0x3, 0x4, 0x9, 0x7, 0xffffffff, 0x10001, 0x3, 0x8, 0xc, 0x200, 0x2, 0xfa08, 0x2, 0x10, 0xc, 0x2, 0x1, 0x8, 0x80000000, 0x1a, 0x66da0255, 0xb, 0x4, 0x5, 0x2, 0x0, 0x5, 0x80000000, 0x4, 0x9, 0x3ff, 0x8001, 0x6, 0x200, 0x1d0, 0x8, 0x7, 0x5, 0x9, 0xffff, 0x0, 0x0, 0x4987, 0xc4, 0x0, 0xfffffffa, 0x1, 0x460, 0x7ff, 0x1, 0x4, 0x8, 0x2, 0x1, 0x7, 0xfff, 0x2, 0x80000001, 0x5, 0x8, 0x1fc200, 0x7fff, 0x6, 0xfffffffe, 0xf9, 0x0, 0xffff, 0x1, 0x7, 0x8, 0x9, 0x7, 0x2, 0x10, 0x8, 0x9, 0x0, 0x7, 0x90, 0x1, 0x9617, 0x3, 0x7, 0x1, 0x3, 0x9, 0x40, 0x8000, 0x2, 0x3, 0x2, 0x9, 0x6, 0x64fc, 0x8001, 0x1, 0x1, 0x0, 0x3ff, 0x4, 0xfffffffe, 0x0, 0xef4, 0x6, 0x5, 0x275d, 0xaf2, 0x9, 0x1, 0x1, 0xffff1bab, 0x8, 0x5af, 0x8, 0x3ff, 0x84b, 0x3, 0x3, 0x3, 0x0, 0x9927, 0xa, 0xddc2, 0xae2, 0x80000001, 0xb1, 0x6, 0xffffffff, 0x9, 0x0, 0xfffffffc, 0xf1c6, 0x7ff, 0x2, 0x9, 0xfffffeff, 0x6, 0x9, 0x3, 0x0, 0x57, 0x6, 0x9, 0x0, 0x7, 0x3, 0x9, 0x6, 0x5, 0xffff, 0x9, 0x100, 0x7, 0x3ff, 0xa28, 0xffff, 0x2, 0x89b, 0x3, 0x3, 0x2, 0x0, 0x4, 0x5, 0x8001, 0x5, 0x8, 0x4, 0x7, 0xd74, 0x0, 0x7, 0xd, 0x3, 0xffff8000, 0xe383, 0x7, 0x94, 0x326, 0x890, 0x4, 0x1200, 0x3, 0x4, 0xb447, 0x5, 0x7, 0x800, 0xffff, 0x1, 0x4, 0x7, 0xfffffffa, 0x80000000, 0x4, 0x0, 0x9, 0x3, 0x9, 0x2, 0x8001, 0x2, 0x2, 0x401, 0x80, 0x8, 0x6356a6b0, 0x7, 0x2, 0x7d, 0x5, 0x6, 0x5, 0x9, 0x6, 0x7, 0x8, 0xc5, 0x9, 0x2, 0x6, 0x0, 0xe2, 0x4, 0x6fedba88, 0x9, 0xffff8c79, 0x0, 0x0, 0x0, 0x0, 0x5, 0x5, 0x0, 0x0, 0x6, 0x5, 0x9add, 0xe000, 0x8, 0xd, 0x4, 0xcaa, 0x7ee864cc, 0x2, 0x1000, 0x1, 0x1ff, 0xb49, 0x1, 0x27b8, 0xe2, 0x7fff, 0x80000001, 0xfffffffb, 0x9, 0x0, 0x2, 0x9e, 0x4, 0x5, 0x8, 0x8, 0x40, 0xe7, 0x9, 0x4, 0x5, 0x0, 0x1, 0x10000, 0xfff, 0x7ff, 0x100, 0x4, 0x8, 0x3, 0xeba8, 0x0, 0x3, 0x101, 0x1, 0x9, 0x4, 0x7, 0x5, 0x8, 0x4b, 0xfffffff0, 0x4, 0x9, 0x4, 0x6, 0x6, 0xff, 0x4, 0x7, 0x5, 0x400, 0x413, 0x2, 0x2, 0xffffffff, 0x7, 0x9, 0xfffffff8, 0x8, 0x6, 0x9, 0x7, 0xa, 0x0, 0x3, 0x800, 0x10000, 0x8, 0x8, 0x47, 0x400, 0x9, 0x7, 0x9, 0x9, 0x401, 0x100, 0x9, 0x80000000, 0x5, 0x80c1, 0x1, 0x8ada, 0x7, 0x5, 0xd, 0x1, 0x400, 0x971f, 0x2b, 0xffffffe1, 0x816, 0x100, 0x0, 0x7, 0x100, 0x101, 0xe9b0, 0x8, 0x80000001, 0xae, 0x3, 0x1, 0x1, 0x800, 0x1, 0x10, 0x8, 0x2, 0xf, 0x6, 0x3ce, 0x6, 0x0, 0x0, 0x401, 0x5, 0x9, 0x9, 0x8, 0xa8, 0x9, 0x800, 0x8, 0x4, 0x23, 0x5, 0x10000, 0xf75de3e, 0x66, 0xbf, 0x4, 0x8, 0x4287, 0x0, 0xcd, 0x2cb, 0x4, 0x3b, 0xd, 0x6, 0x2, 0x7, 0x509, 0x5, 0x9, 0x9, 0x800, 0x9, 0x7, 0x45e, 0xff, 0xfffffffb, 0x4, 0x2, 0x6, 0xfffffffe, 0x9, 0x5, 0x2, 0x6, 0x2c5a11e8, 0x6c9, 0x2, 0x81, 0x8, 0x0, 0x5, 0x2, 0x6, 0x5, 0x95ef, 0x8, 0x9, 0xa, 0x4, 0x2, 0x6, 0xfffffffb, 0x8, 0x5, 0x1, 0xcfbb, 0x5, 0x8, 0x1000, 0x3, 0x80000001, 0x8001, 0x5, 0x4, 0x717, 0x5ab, 0x6884, 0xfffffffa, 0x1, 0x10000, 0x40, 0x3, 0xf, 0x3, 0xd6b, 0x3, 0x3, 0x0, 0x4, 0x276f, 0x4, 0x1, 0x8, 0x4, 0xbb1, 0x53e, 0x2, 0x9, 0x3, 0x5, 0x76, 0x9, 0x8, 0x8, 0x1, 0x7, 0x4, 0x9, 0xfa, 0x100, 0x1, 0x6ce5, 0x10, 0x800, 0x3, 0x80000000, 0xffffffff, 0x7, 0x9f, 0x3ff, 0x800, 0x0, 0x0, 0x10001, 0x9db1, 0x7f, 0x5, 0x67, 0xd, 0x80000000, 0x0, 0x4, 0x81, 0x8, 0x5, 0x0, 0x400, 0xf, 0x10001, 0x7, 0x5, 0x9, 0x6, 0x2, 0x1, 0x5, 0xffffffff, 0x1, 0x6298197a, 0x80000000, 0x7ff, 0x2f6c0e9b, 0x9, 0x9, 0x1, 0x2, 0x0, 0x7, 0xd, 0x1, 0x0, 0x81, 0x4, 0x2, 0x0, 0x1, 0xd, 0x8, 0x1, 0x9b75, 0xff, 0x1, 0x5, 0xd3be, 0x3, 0x5, 0xc1, 0x1, 0x1, 0x5, 0x6, 0x5, 0x9, 0x0, 0x9, 0x8, 0x7, 0x2, 0xfffffffd, 0xa, 0x9, 0x3ff, 0x140, 0x9, 0x81, 0x0, 0x7, 0x0, 0x80, 0x1, 0x9, 0xdb17, 0x5, 0xf3b, 0xfff, 0x7fffffff, 0x3ed, 0xc5, 0x7, 0x9, 0x3, 0xc, 0x3, 0x1, 0xe, 0x6, 0x7fffffff, 0x0, 0xe5eb, 0xfffffff7, 0x7ff, 0x8, 0x7, 0x4, 0x4, 0x2, 0x7, 0x8, 0x5, 0x2, 0x8676, 0x33436f09, 0xf26, 0x1, 0x6, 0x40, 0xf, 0x8000, 0x71b, 0xa87, 0x2, 0x0, 0x40, 0xffff, 0x8000, 0x8, 0x5, 0x4, 0x7, 0x1, 0x7fffffff, 0x6, 0x4, 0x6, 0xfffffff9, 0x5, 0x5, 0x0, 0x7fff, 0x7a8d, 0x0, 0xfaf4, 0x4, 0x0, 0x4, 0xff, 0xfffffff8, 0x5, 0x5, 0x8, 0x1, 0x7, 0x1, 0x800, 0x0, 0x1, 0x8, 0xfff, 0xa9, 0xfffffffd, 0x3b7, 0x6, 0x0, 0x3, 0x3ff, 0xd, 0xd3, 0x0, 0x8, 0x9, 0x8000000, 0x4, 0x9, 0x1, 0xd4, 0x8, 0x80000001, 0x7, 0x1ff, 0xf22e, 0x5, 0x3, 0x7520, 0x8, 0x0, 0x5, 0x4, 0x4, 0x0, 0xc9f, 0x8, 0x4, 0x5, 0xc, 0x2, 0x2, 0x8, 0x8001, 0x7fffffff, 0x72, 0xa761, 0x7, 0x7, 0x2, 0x2, 0xfffffffb, 0x6, 0x5, 0xfffffff7, 0x1, 0x80000000, 0x6, 0x4a, 0x6, 0x2, 0x6, 0x8, 0x3, 0x5, 0x80, 0x6, 0xf09, 0x9, 0x9, 0x6, 0x6, 0x4, 0x2, 0xff, 0x80000000, 0x1, 0x3, 0x12e, 0x8, 0x2, 0x74, 0x6, 0xc, 0x6b, 0x4, 0x8, 0x8, 0x3, 0x7aa3, 0x8000, 0x1, 0xffffff7f, 0x2, 0xa, 0x7, 0x8001, 0xe, 0x3, 0x11, 0x1, 0x5, 0x574, 0x912, 0x2, 0x4, 0x8, 0x9, 0x8, 0x4, 0xa, 0x400, 0x2, 0x2c23, 0x6098025a, 0x5, 0x8, 0x5877, 0x8, 0x5, 0x81, 0x80, 0x6, 0xfffffff7, 0x2, 0x3, 0x3, 0x3ff, 0xc3, 0x0, 0x5, 0x3, 0x81, 0x2, 0x4, 0x9cc, 0x1, 0x9, 0x7, 0x1, 0x7, 0xa, 0x10, 0x1, 0x6, 0x15a2, 0x7, 0x6, 0x8, 0xee00, 0x10000, 0x5283, 0x3ff, 0x2, 0xffffffff, 0x0, 0x4, 0x9, 0x81, 0x2, 0x4, 0x2, 0x1, 0x7f, 0xe3, 0x7fffffff, 0x5, 0x7, 0x3, 0x2, 0x4d439856, 0x5e2a, 0x8, 0x3, 0xcb, 0x4, 0xffff7fff, 0x8ea, 0x9, 0x98df, 0x7, 0x4, 0x65b, 0x3, 0x200, 0xe, 0x6, 0x2, 0x3, 0x9, 0x3, 0xb8f2, 0x8, 0x5, 0xa250, 0x3, 0xcd, 0x3, 0x2, 0x3, 0x1, 0x9, 0x7f, 0x4, 0x7, 0x1, 0x1, 0x4, 0x0, 0x9, 0x4, 0xffff, 0x10000, 0xc3, 0x4, 0x1, 0x400, 0xcef70800, 0x8, 0x8f18, 0x5, 0x8001, 0x8, 0x7, 0x8a1c, 0x101, 0x81, 0xfffffb00, 0x4, 0x3, 0x3, 0x7, 0x8, 0x5, 0x7fffffff, 0x7, 0x1, 0x800, 0x1, 0x6, 0x50, 0x9, 0x1000, 0xc4f5, 0xfffffffc, 0x6, 0xaa34, 0x8, 0x7, 0x1621, 0x5, 0x5, 0x4, 0x8, 0x9, 0x808, 0x4, 0x200, 0x0, 0x10, 0x8, 0x3, 0x78, 0x2, 0x7, 0x7, 0x9, 0x0, 0x7, 0x5, 0x2, 0x5, 0x7, 0x9fb, 0x5, 0x9, 0x4f, 0x0, 0xa, 0x7, 0x6, 0xee2, 0x882d, 0xf563, 0x0, 0x40, 0x401, 0x6, 0x6, 0x1, 0x40, 0x6, 0x7f, 0x80, 0xd, 0x80000000, 0x4, 0x10000, 0x12, 0x0, 0x1, 0x2, 0x5, 0xc, 0x2e3, 0x81, 0x3, 0x7, 0x0, 0x7fff, 0x3b, 0x5, 0xfffffff5, 0xf0, 0x2, 0xf14e, 0x5, 0xffffffdd, 0x9, 0x6, 0x3, 0x5, 0x1, 0x100, 0x6, 0x8c, 0xff, 0x1, 0x7f, 0x6, 0x6, 0x2, 0x5d1eabf7, 0x8001, 0x9, 0x5, 0x3ff, 0x5, 0x6, 0x3, 0xf, 0x800, 0xf6, 0x4, 0x6], 0x7, 0x1000})

455.891386ms ago: executing program 2 (id=6369):
r0 = syz_open_dev$I2C(&(0x7f0000000240), 0x2, 0x1)
ioctl$I2C_RDWR(r0, 0x707, &(0x7f0000000040)={&(0x7f0000000200)=[{0x3, 0x8001, 0x0, 0x0}], 0x1})

452.73703ms ago: executing program 5 (id=6370):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
r1 = syz_open_dev$I2C(&(0x7f0000000000), 0x0, 0x0)
ioctl$I2C_SMBUS(r1, 0x720, &(0x7f0000000180)={0x0, 0x0, 0x8, &(0x7f0000000140)={0x1, "96e67ad2d329458afe83c910c40800000000000000000000000000f000"}})
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
r2 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r3=>0x0], 0x0, 0x0, 0x0, 0x3ffffffffffffcd0})
ioctl$DRM_IOCTL_MODE_GETCRTC(r2, 0xc06864a1, &(0x7f0000000500)={0x0, 0x0, r3, <r4=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r2, 0xc06864ce, &(0x7f0000000440)={r4, 0x0, 0x0, 0x0, 0x3, [<r5=>0x0], [], [0x0, 0x0, 0x0, 0xffffffff]})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r2, 0xc00c64d2, &(0x7f0000000180)={r5, 0x80000})
r6 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
ioctl$sock_bt_hidp_HIDPCONNADD(r6, 0x400448c8, &(0x7f0000000280)={r0, r0, 0xc, 0x1, &(0x7f0000000340)='\x00', 0xb, 0x1, 0xb57, 0xc6e, 0x9, 0x1, 0x1, 'syz1\x00'})

376.706125ms ago: executing program 2 (id=6371):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000140)={0x1fe, 0x0, 0x0, 0x2000, &(0x7f0000fe5000/0x2000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION2(r1, 0x40a0ae49, &(0x7f0000000240)={0x1fe, 0x1, 0x4000, 0x2000, &(0x7f0000fe5000/0x2000)=nil, 0xfffffffffffffffe})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000000c0), 0x8480, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000400)={0xc})
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000240)={0x0, 0x1c, &(0x7f00000001c0)=[@in6={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0xd022}]}, &(0x7f0000000200)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r4=>0x0]}, &(0x7f0000000080)=0xff73)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000080)={r4, @in={{0x2, 0x4e21, @empty}}, 0x5, 0x0, 0x80000003, 0x4, 0xe2d8f2eb1d010935, 0x5, 0x7}, 0x9c)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f0000000040)={r4, 0x7f, 0x30, 0x3, 0xffffffffffffffff}, &(0x7f0000000100)=0x18)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r5 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r5, 0x3b81, &(0x7f0000000400)={0xc})
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x3, 0x0)
r8 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000004640)={&(0x7f0000000580)=@newqdisc={0x48, 0x24, 0xf0b, 0xffffffff, 0x25dfdbfb, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}, {0xa, 0x6}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x10, '\x00', 0x5, 0x40000003, 0x200, 0x8001}}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000}, 0x4005820)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r10, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000003a80)=ANY=[@ANYBLOB="883800003f000701feffffff02000000027c00000400f6000c000180060006008035"], 0x3888}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
r11 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r11, 0x90009427, &(0x7f0000000180))
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000180)={'hsr0\x00', <r12=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x6, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x10, 0x4}, [@ldst={0x3, 0x0, 0x3, 0xa, 0x0, 0xff70}], {0x95, 0x0, 0xb}}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff4d, 0x10, &(0x7f0000000000), 0xfffffe51}, 0x48)
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="680000001000030500000000fcdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="00000000008000004800128008000100687372003c000280060005000180000008000100", @ANYRES32=r12, @ANYBLOB="0500060001000000050007000000000005000300df00000008000200", @ANYRES32=r12], 0x68}}, 0x0)

376.316073ms ago: executing program 4 (id=6372):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000400)={<r0=>0xffffffffffffffff})
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000600)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r0, 0x0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000019c0)=[{&(0x7f00000002c0)=""/183, 0xb7}], 0x1}, 0x0, 0x80002101})
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYRES16=0x0, @ANYBLOB="01002bbd700000000000140000001800018014000202000500190001"], 0x34}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="5000000020000103feffffff0000000002000000"], 0x50}}, 0x4000850)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$alg(0x26, 0x5, 0x0)
setxattr$trusted_overlay_opaque(&(0x7f0000000340)='./file1\x00', &(0x7f0000000580), &(0x7f0000000600), 0x2, 0x3)
bind$alg(r2, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r3 = accept4(r2, 0x0, 0x0, 0x800)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000680)={'bridge0\x00'})
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r1)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r5, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r6, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

376.191013ms ago: executing program 5 (id=6373):
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000640)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x2, [@int={0x0, 0x0, 0x0, 0x1, 0x5, 0x0, 0x0, 0xfd}]}}, 0x0, 0x2a, 0x0, 0x1}, 0x20)
ioctl$VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000040)={0x201, 0xa, 0x1})
ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f0000000140)=@multiplanar_mmap={0x9, 0xa, 0x4, 0x10, 0xfc, {}, {0x1, 0x2, 0x4, 0x6a, 0x2, 0x5, "1b6a1204"}, 0x6, 0x1, {&(0x7f00000000c0)=[{0x8, 0x6, {0x4}, 0x4}, {0xfffffffc, 0x8, {0x9}, 0xfff}]}, 0x7})
ioctl$VIDIOC_S_HW_FREQ_SEEK(r0, 0x40305652, &(0x7f0000000000)={0x7, 0x1, 0x3, 0x1, 0x8, 0x7, 0xfffffff8})

309.965223ms ago: executing program 4 (id=6374):
r0 = syz_open_dev$dri(0x0, 0x1, 0x48240)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r1=>0x0], 0x1})
r2 = syz_open_dev$dri(&(0x7f0000000300), 0x40100001, 0x189002)
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r2, 0xc02064b9, &(0x7f00000003c0)={&(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0], 0x4, r1, 0xeeeeeeee})

309.591843ms ago: executing program 4 (id=6375):
write$rfkill(0xffffffffffffffff, 0x0, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
r1 = syz_open_dev$usbfs(0x0, 0x5, 0x400040)
ioctl$USBDEVFS_BULK(r1, 0xc0185502, 0x0)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)

229.528901ms ago: executing program 4 (id=6376):
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r1, &(0x7f0000000200)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
r2 = syz_io_uring_setup(0x497, &(0x7f0000000540)={0x0, 0x4660, 0x400, 0x5, 0x287}, &(0x7f00000004c0)=<r3=>0x0, &(0x7f0000000340)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r1, 0x0, 0x0})
io_uring_enter(r2, 0x38da, 0x969, 0x5, 0x0, 0x0)
dup3(r2, r0, 0x80000)

79.443913ms ago: executing program 4 (id=6377):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000200)="0fa32eb8080000000f23d00f21f835300000000f23f8f20f2d51f80f009f26a30000c4e1a35802650f01d1260f01b100000000c4c3857bb50f00000000440f20c03506000000dee70f22c00f32", 0x4d}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

8.504659ms ago: executing program 5 (id=6378):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/comedi4\x00', 0x8a241, 0x0)
ioctl$COMEDI_INSN(r0, 0x8028640c, &(0x7f0000000040)={0xe000003, 0x1047, &(0x7f00000000c0)=[0x82, 0x52, 0x8001, 0x6, 0x8, 0x9, 0x1ff, 0x5, 0xc25, 0x674, 0x1000, 0x5, 0x5, 0xb, 0x9, 0x0, 0x10001, 0x2, 0x6580723a, 0x5, 0x9, 0x0, 0x10, 0xd85, 0x7fff, 0x16, 0x5, 0x3, 0x13, 0x1, 0x0, 0x1, 0x9, 0x5, 0x2fd5, 0x80000001, 0xfffffe29, 0x7f, 0xffffffff, 0x800, 0x8, 0x80000001, 0x2c, 0x2, 0x0, 0x3, 0x400, 0x9, 0x7, 0x2, 0x5, 0x3, 0x3c5b, 0x9, 0x3, 0x2, 0x80, 0x6, 0xff, 0x4, 0x1, 0x4, 0x800, 0x5ea1, 0xe4207fe3, 0x1, 0x8, 0x3, 0x2d, 0x7, 0x4, 0x7, 0xffffffff, 0x5, 0x4, 0x6bf6, 0x9, 0x0, 0xd, 0x7, 0xf58, 0x7, 0x7, 0xfffffff9, 0x8000, 0x8001, 0xffffffff, 0x7, 0x10001, 0x878, 0x8, 0xb1, 0x4, 0xe3d, 0x4, 0x1, 0xd, 0x371, 0x0, 0x10001, 0xaad, 0xfb, 0x1, 0x5, 0x8, 0x5, 0x7c3e, 0x5, 0x5, 0x9, 0x11, 0x5a3, 0x7f, 0x3, 0x2, 0x6a7, 0x7, 0xa77, 0x1, 0x3, 0x3, 0x9, 0x4, 0xc7d, 0x401, 0x7fff, 0x3, 0x8, 0x7, 0x10001, 0x667, 0xffffffff, 0x8, 0x40, 0x6, 0x8, 0x8000, 0x4, 0x6, 0x6, 0xbded, 0x0, 0x4, 0x30c, 0xfffffff9, 0x5d4, 0x56a8, 0x8, 0x4, 0x6, 0x6, 0x7, 0x5451, 0xa9, 0x7ff, 0x2, 0x1, 0x94b, 0x6, 0x8, 0x6, 0x1, 0x5, 0x10a, 0x0, 0xfffffffc, 0x92, 0x166, 0x80000000, 0xacf, 0x0, 0xe975, 0x200, 0x9, 0x9, 0x5, 0x4, 0x2, 0x0, 0x4c65, 0x0, 0xe, 0x9, 0x5, 0x100, 0x4, 0x0, 0x80000000, 0x9, 0x5, 0xffffffff, 0x0, 0x1, 0xd, 0x6d3, 0x6, 0x1, 0x6b0, 0x0, 0x5, 0xec3, 0x0, 0x3, 0x1, 0x9, 0x8, 0x0, 0x2, 0xff, 0x9, 0xfffffffa, 0x6, 0xffffffff, 0x1, 0x9c7, 0x1, 0x7, 0x2, 0x6, 0x1, 0x7fff, 0x400, 0x7, 0x5, 0x3, 0x0, 0x0, 0x0, 0xac, 0x68, 0xe7f9, 0x8, 0x22, 0x510f, 0xfffffff8, 0x6b2, 0xe, 0x2, 0x200, 0xfff, 0x7fffffff, 0x434, 0x6, 0x4, 0x1, 0x1000, 0xdccb, 0xf7a, 0x1, 0x4, 0x0, 0x3, 0xd, 0x9, 0x2, 0x6, 0x8, 0x1, 0x4, 0x3, 0x6, 0x377, 0x2b62c9b7, 0x401, 0x3, 0x9, 0x0, 0xfffffff8, 0x8, 0x2, 0xffffffff, 0x9, 0xf85b, 0x91, 0x4, 0x1, 0x2, 0x2, 0x4, 0x5, 0x200, 0x3, 0x0, 0x5, 0xf, 0x1, 0x1, 0xffff, 0x1c4cc450, 0x401, 0x1c0000, 0x80000000, 0x21cb, 0x9, 0xc, 0x5, 0x7fff, 0x101, 0xe, 0x4, 0x7, 0x1, 0x1, 0x91e, 0x0, 0x8, 0xf697, 0xfff, 0x0, 0x9, 0x6, 0x8, 0x640c, 0xbde, 0x1, 0x48, 0x3, 0xe371, 0x2, 0x646, 0x4, 0x7, 0x0, 0x401, 0x6, 0xd48, 0xc6, 0x8, 0x1, 0x8, 0x81, 0x2, 0x0, 0x800, 0x6, 0x7fffffff, 0xe4c7, 0x7f, 0x5, 0x2, 0x9, 0x3, 0x0, 0x2, 0x3, 0xbe8b, 0x5, 0x254c, 0x6, 0xae, 0x2, 0xc84, 0x6, 0x9, 0x97, 0x7, 0x73, 0x4, 0x1, 0x4, 0xfffffff9, 0x8001, 0x0, 0x7, 0xfffffffe, 0x9, 0x9, 0xffff8001, 0x5, 0x8, 0x5, 0xfffffffb, 0x3, 0x8, 0x7, 0x10, 0x9476291, 0x7, 0x4, 0x7, 0x9, 0x94000000, 0x3b, 0x120, 0xa8, 0x0, 0x7, 0x2, 0x4, 0x6, 0x5, 0xfffffffc, 0x48000000, 0x2, 0x0, 0x51a2, 0xab35, 0x9, 0xfffffffa, 0x7ff, 0x6, 0x8001, 0x401, 0x1ff, 0x0, 0xb7, 0x6, 0x8, 0x9, 0x2, 0x7, 0x9, 0xfc98, 0x7fff, 0x3, 0x2, 0x8, 0x0, 0x5a1, 0x3, 0x1, 0x7, 0x7, 0x81, 0xf, 0x0, 0x3, 0x9, 0x5, 0xf, 0x0, 0x6, 0x80, 0x3, 0xbd97, 0x4a3a, 0x7, 0x5, 0x2, 0x8000, 0xf, 0x4, 0x10000, 0x177, 0x7, 0x101, 0x0, 0x7fff, 0x4eb30000, 0x8, 0x0, 0x3ff, 0xfffff000, 0xffff, 0x7, 0x517, 0x0, 0x7b, 0x6, 0x5, 0x400, 0x3, 0xa4, 0x4, 0x101, 0x100, 0x6, 0x3, 0x4, 0xfffffff7, 0x2, 0xb, 0x0, 0x1ca, 0x1, 0xfffffff9, 0xd, 0x2, 0x9, 0x9, 0x7ff, 0x8001, 0x2, 0x5, 0x0, 0x0, 0xfc7, 0xafb8, 0x0, 0x0, 0xffff, 0x5, 0x4, 0x7fffffff, 0x49a, 0x0, 0x3, 0x563f, 0x9, 0x0, 0x24, 0x1, 0x10000, 0x1, 0x1, 0x8, 0x7, 0x292e8, 0x6f7b, 0x30000, 0x385, 0x9, 0x6, 0xfffff000, 0xcff8, 0x7, 0x6, 0x873, 0x80000001, 0x10000, 0x0, 0x2, 0xe, 0x7, 0xcbab, 0x8, 0x1, 0x2, 0x8, 0x2f2d, 0xd3, 0x2, 0x2, 0x181d, 0x0, 0x0, 0x2000, 0x8000, 0x80, 0xffffffff, 0x73, 0x6, 0x4, 0x2, 0x100, 0x80, 0x6, 0x52d2, 0x3, 0xffff7fff, 0x401, 0x718, 0xf54, 0x3, 0x4, 0x8001, 0x5, 0x8, 0x9, 0x8, 0xc, 0x7, 0x9, 0x0, 0xf3d, 0x0, 0x7, 0x9, 0x0, 0x15, 0x2, 0x0, 0x9, 0x1, 0x48, 0x800, 0x0, 0x5, 0x8, 0x0, 0x6, 0x3, 0x9, 0x4610, 0x0, 0x8, 0x3, 0x6, 0x0, 0x1ff, 0x8000, 0x6, 0x9, 0x800, 0x101, 0x9, 0x3, 0x5b, 0x65f0, 0x3, 0x6, 0x1ff, 0x90cd, 0x7, 0x5, 0x8, 0x9, 0x2, 0x3, 0x9, 0x2, 0x9, 0x6, 0xfffffffe, 0xf5, 0xf, 0x6, 0x70, 0xb2f, 0x6, 0x1, 0x9, 0x3, 0xffff40f0, 0x7, 0x7, 0x8, 0x0, 0x9a3, 0x6, 0xfffffffc, 0x7, 0x2, 0x72, 0x4, 0x6, 0x8, 0x1, 0x3, 0xffffff7f, 0x2, 0x9, 0xcd2, 0x4, 0x4, 0x3, 0x8, 0x2, 0x98, 0x400, 0xb, 0x101, 0x80000000, 0x1, 0x400, 0xf34b, 0x438a, 0x1, 0x9, 0x4, 0x8, 0x0, 0x5, 0x2, 0xf3, 0xfff, 0x70, 0x0, 0x7ff, 0x6, 0x40, 0x9, 0x1, 0x0, 0x0, 0xd, 0x6, 0x6, 0x4, 0x6, 0x1, 0x2, 0x3, 0xd77, 0x2, 0x1d, 0x7, 0x5, 0x1, 0x6, 0x8, 0x10, 0xb47, 0x7f, 0xa9c, 0x8, 0xd, 0x6, 0x489, 0x3, 0x4, 0xfff, 0x8f, 0xffff, 0x2, 0x2, 0x7ff, 0x8, 0x9, 0x2, 0x4, 0x873, 0x7fffffff, 0x6e9, 0x80000000, 0x7, 0x7, 0x475c, 0xd9, 0xf184564, 0xc2, 0x1000, 0x8, 0x3, 0xd6b, 0x80000001, 0x5, 0xffffff01, 0x3, 0x7, 0x0, 0x9, 0x3, 0x6245057e, 0x2, 0xff, 0x1, 0x7f, 0xff, 0x889, 0x4, 0x1, 0x1, 0x8, 0xd36, 0x6, 0x5, 0x5, 0x7, 0x5, 0x6ceb, 0xfffffffc, 0x2f76, 0x200, 0x0, 0x80000001, 0x8001, 0x9, 0x96e, 0x5e7, 0xf, 0x2, 0x0, 0x100, 0x4, 0x0, 0x1000, 0x3, 0x9, 0x5, 0x2, 0x3, 0x9, 0x101, 0x7, 0xcdb, 0x6, 0x698, 0x1, 0x9, 0x2, 0x2, 0x2, 0x3, 0x7, 0x5e, 0xf, 0xbcb, 0x7, 0x300, 0x7, 0x6, 0xfffffffd, 0xe, 0x5, 0x2, 0x5, 0x3ff, 0x10000, 0x7fffffff, 0x10, 0x7, 0x200, 0x2, 0x8, 0x0, 0x4, 0x8, 0xfffffffc, 0x40, 0x4, 0x6, 0x8, 0x2, 0xf, 0x0, 0x7fffffff, 0x8000, 0x0, 0xfffffff4, 0xa, 0xb72e, 0x9, 0x6, 0x5, 0x3, 0x3, 0x5d7c, 0x7, 0xfffffff8, 0xb, 0x2, 0x48e, 0x584, 0xfffffffe, 0x4, 0x800, 0x4, 0x4, 0x50, 0x45, 0x4, 0xf, 0x10001, 0x2, 0xa63, 0xfffffff7, 0x0, 0x3, 0x920, 0x8, 0x7fff, 0x8, 0x0, 0xe4, 0x40, 0xfff, 0x5, 0xf03, 0x40, 0x3, 0x3ff, 0x2, 0x3, 0x10001, 0x7, 0x3, 0x101, 0x0, 0xfffffff8, 0x2, 0xb, 0x5, 0x0, 0x7, 0x2, 0x2, 0x1e2, 0x6, 0x9, 0x6, 0x3ff, 0x7, 0x6, 0x1, 0x1000, 0x3, 0xfffff001, 0x7, 0x72, 0x3, 0x7, 0x1, 0xc1ee, 0xfffffff7, 0x9, 0x4e, 0x120c, 0x9, 0x6, 0x8, 0x1, 0x5, 0x8, 0x598, 0xa, 0x1, 0x1, 0x4, 0x6970, 0x337075c0, 0x0, 0x9, 0x9, 0x100, 0xac, 0xf, 0x8000, 0x4, 0x3, 0xffffff6f, 0x8, 0x7, 0x2, 0xfffffffc, 0x5, 0x9270, 0xa, 0xd2, 0x0, 0x561, 0x401, 0x8, 0x9489, 0x3, 0x7fffffff, 0x5, 0x2, 0x7f000, 0x80000000, 0xffff, 0xd, 0xd8, 0x80000000, 0xc, 0xf6, 0x8, 0x7, 0x8, 0x0, 0x33c2872, 0x3, 0x1, 0xfff, 0x8ee3, 0x7a72, 0x100, 0x5, 0xb, 0x2, 0x7fff, 0x1, 0x1, 0x7fffffff, 0x9, 0x6, 0x10000, 0x200, 0x6, 0x3, 0x0, 0xc4, 0x8, 0x4, 0x1, 0x1, 0x3da, 0x8, 0xd, 0x3, 0xa0, 0x5, 0x9, 0x6, 0x48, 0x4, 0x9, 0x5, 0x7, 0x2, 0xc4ab, 0xff, 0x8, 0x7, 0x4, 0x5, 0x2, 0x81, 0x1, 0x95, 0x401, 0x1, 0x73c, 0x2, 0x12, 0x7, 0x1, 0x200, 0x5, 0x7, 0x28ae, 0x26, 0x15, 0x8, 0x3, 0xfffffff9, 0x1, 0x4, 0xfff0000, 0x4, 0x9, 0x10000, 0xd26, 0x9, 0x6, 0x71cf, 0x8, 0x0, 0x8, 0x100, 0x5, 0x9, 0x5, 0x80000001, 0xffffffff, 0x10, 0x80, 0x6, 0x4, 0x7f, 0xf0c4, 0x3, 0xd3, 0xea, 0x8001, 0x480000, 0xa, 0x10000, 0xffff, 0x3, 0x5, 0x8, 0xad8, 0x81, 0x5598, 0x0, 0xd33, 0x81, 0x4a2, 0x6, 0x81, 0xffff6df9, 0x5, 0x1ff, 0x8000, 0x7, 0x4, 0x0, 0x0, 0x7, 0x3, 0x0, 0x3, 0x8000, 0x8, 0x4, 0x3ff, 0x3, 0x2000000, 0x4, 0xa, 0x40000000, 0x3a6f1958, 0x1, 0x7, 0x6, 0x9, 0x62fb, 0x1, 0xfff, 0x7a, 0xbe83, 0x9, 0x2, 0x3, 0x80, 0x3, 0x9, 0x8, 0x8, 0x7c0, 0x6, 0xa269, 0x649d0cfd, 0x7, 0x0, 0x2807, 0xffff9daf, 0x6, 0xa4, 0x100, 0x401, 0x800, 0xe, 0x3, 0xd2a5, 0x9, 0x8, 0xa, 0x10000, 0x8, 0x80000001, 0x7, 0x6, 0x400, 0x9, 0x9, 0x4, 0xb, 0xa2e, 0x7, 0x9, 0xd, 0x100, 0xffff1b48, 0x9, 0x8001, 0x3, 0x6, 0x8, 0x8ba4, 0x0, 0x0, 0x9, 0x7, 0x8, 0x7, 0x7, 0x2, 0x200, 0xfffffff7, 0x2f7c, 0x4, 0x7, 0x4, 0x1, 0x1000, 0x5, 0x7, 0xd, 0x2, 0x1000, 0x400, 0x8f1, 0xb30, 0x5, 0x72, 0x40, 0xbfc, 0x400, 0x1000, 0x81, 0x7, 0x2, 0x9, 0xa997, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0xfffffffa, 0x3, 0xffffff4b, 0x4, 0x3, 0x4, 0x400, 0x0, 0xfffffffa, 0x8, 0xfff, 0x8, 0x6, 0x8, 0x1, 0x85, 0x7, 0x3, 0x200, 0x4, 0x9, 0xe00000, 0x4, 0x1, 0x0, 0x1, 0x1000, 0x5, 0x5, 0x8, 0x0, 0x6, 0x7, 0x7, 0xc, 0x2, 0xa5, 0x7f, 0x21, 0x2, 0x2, 0xb67, 0x2e3, 0x9, 0x4, 0x4, 0xe, 0x8000, 0x2, 0x5, 0xfa, 0xbf, 0xffff, 0x9, 0x0, 0x8001, 0x19c4, 0x0, 0x8, 0x6, 0xffff0473, 0x5, 0x4, 0x4, 0x8, 0x80, 0x1, 0xfffffff8, 0x2, 0x8, 0xfff, 0x8, 0x7d10, 0x2b, 0x0, 0x80000000, 0x44, 0xa, 0xa5, 0x0, 0xa, 0x6638, 0x11, 0xfff, 0x5, 0x0, 0x4, 0x100, 0xfffffffa, 0x8, 0x2, 0x479075c3, 0xa9, 0x5, 0x3, 0x5, 0xf, 0x2, 0x1, 0x0, 0x7, 0xff, 0xd4e5, 0x200, 0x1ff, 0x5, 0x81, 0x5, 0x3, 0x3, 0x9, 0x7, 0xbb79, 0x40, 0x75f2, 0x0, 0x0, 0xc1, 0x1, 0x0, 0x0, 0x48, 0x40000000, 0xff15, 0xea5e0000, 0x4, 0x9, 0x6, 0x2, 0x0, 0xfffffff8, 0x401, 0x9, 0x7fffffff, 0xffff, 0x3, 0x996, 0x7, 0x0, 0x2, 0x3, 0x1000000, 0x4ff, 0x9, 0x2, 0x3, 0x10, 0x3, 0x4836, 0x4, 0x9, 0x8, 0xfff, 0x80, 0x7, 0x0, 0x3, 0x81, 0x80000001, 0xe4, 0x5, 0x6, 0x0, 0xfffffffe, 0x800, 0x8, 0xfffffffc, 0xe39, 0x0, 0x6, 0x5, 0xf2c, 0xfffffffb, 0x983, 0x7f, 0x9, 0x7fffffff, 0x746, 0x26ac0000, 0x0, 0x4, 0x4, 0x8, 0x977, 0x4, 0x4, 0x5, 0x9, 0x200, 0x8, 0xffffffa0, 0x1, 0x0, 0x67c, 0x8, 0xf3, 0xfffffffe, 0x40, 0x1, 0x9, 0x7ff, 0x1, 0x1, 0x1, 0x8, 0x8d, 0xba49, 0x401, 0xba6, 0x32ee, 0x3, 0x2, 0xf, 0x2b05, 0x8000, 0x2, 0x4e, 0x5, 0x0, 0x2, 0x3, 0x4, 0x8, 0x7ff, 0x7fffffff, 0x9e, 0x2, 0xfffffffe, 0x5, 0x5, 0x10000, 0x8, 0x1ff, 0x3, 0x1000, 0x2, 0x0, 0x4, 0x81, 0x6, 0x7, 0x6, 0x4, 0x0, 0x3, 0x51, 0x10001, 0x5, 0x2ed3, 0xd680, 0x4, 0x3d7, 0x1, 0xfb6, 0xfffff001, 0x7, 0xffffffff, 0x1ff, 0x5, 0x0, 0xf, 0x9, 0x12, 0x1ff, 0xffff3f98, 0x5, 0x6, 0xe4, 0xf18, 0x9, 0xd, 0xffffffff, 0x4, 0x4, 0x8, 0xc, 0x7, 0x8, 0x4, 0x800, 0x1ff, 0x2, 0x5, 0x0, 0x3, 0x0, 0x3, 0x8000, 0x7, 0x5, 0xffffff1f, 0x7, 0x8, 0x8, 0x0, 0x25, 0x7de, 0x1000, 0x1, 0x4, 0x2, 0x7, 0x7, 0x5, 0x8, 0x7, 0x8, 0x1, 0xa, 0x9, 0x4, 0x1, 0x7bed, 0x0, 0x9, 0x5878, 0x9, 0x7, 0x9, 0x5, 0x7, 0x2, 0x5, 0x5, 0x81, 0x3, 0x3, 0x9, 0x8, 0x4, 0x6, 0x6, 0x7ff, 0xfc, 0x1000, 0x4, 0x9, 0x0, 0x0, 0x2, 0x400, 0x2eff, 0x80000000, 0x523, 0xfa, 0x1000, 0x2, 0x8, 0x179, 0xf9, 0xe, 0xff, 0x8001, 0x3, 0x941, 0xffff, 0x9, 0x7, 0x1, 0x6, 0x7, 0x7, 0x6, 0x8e, 0x6f, 0x80, 0x0, 0xc0e6, 0x1, 0x6, 0x2, 0x8, 0xe615, 0x9, 0x9e, 0x24d, 0xfffff801, 0x4, 0xfffffffb, 0x0, 0x177a, 0x9, 0x7, 0x1c, 0x7fffffff, 0x5, 0x81, 0x3ff, 0x3, 0x2, 0xf7a4, 0x4, 0x0, 0x1, 0x7, 0x200, 0x18, 0x7, 0x1, 0x5, 0xfff, 0x7fff, 0x0, 0x0, 0x5, 0x8000, 0x2, 0xc59, 0x5, 0x8, 0x2, 0x2, 0x3, 0x0, 0x9, 0x400, 0x61, 0xd7, 0xffffffff, 0x0, 0x3, 0x7, 0x18bd, 0xae1, 0x10001, 0x3, 0x4, 0x800, 0x2, 0xea, 0x4, 0x0, 0x803, 0xf, 0x400, 0xe29, 0x4, 0x2, 0x0, 0x1, 0xb9f, 0x3, 0x71, 0x2f, 0x4, 0x31e, 0x944f, 0xe62, 0x0, 0x5, 0x86, 0x269292cc, 0x0, 0x80, 0x4, 0x10, 0x3, 0x1, 0x3, 0x9, 0x0, 0x862b, 0xd, 0x1aed66b5, 0x6, 0x3, 0x2, 0x1, 0x983, 0x9, 0x2, 0xfffffffe, 0x1ff, 0x7, 0x10000, 0x30000, 0xf63, 0xfffffffc, 0x9, 0x8, 0x5, 0x9, 0x1, 0x80000001, 0x1, 0x6ebff8e0, 0x4, 0x10001, 0x5, 0x5, 0x8000, 0x9, 0x4383, 0x7, 0x794e, 0x9624, 0x101, 0xc4, 0x8, 0x7, 0xe, 0x4, 0x2351, 0x8, 0xe2, 0x5, 0xf, 0x0, 0x8, 0x0, 0x2, 0x4, 0x6, 0xffffffff, 0xa4f3, 0x8001, 0x2, 0x2, 0x353, 0x3e8, 0xc0000, 0xd, 0x1fa, 0xfff, 0x3, 0x81, 0x80, 0xfffff729, 0x2, 0x6, 0x7, 0x89bd, 0x101, 0x1dd, 0x1, 0x1, 0x8, 0x1, 0x200, 0x5, 0x7, 0x0, 0x6ca, 0x8fb, 0x5, 0x9, 0x7, 0x2, 0xa, 0x2, 0x0, 0x2, 0x41, 0x7, 0x1, 0x4, 0x1, 0x2, 0x3ff, 0x6, 0x9, 0x1000, 0xb2a2, 0x8, 0x7, 0x5d, 0xb68, 0x10, 0xfffffffd, 0x5, 0x4, 0x73, 0x9, 0x8469, 0x4, 0x8, 0x5, 0xf3f, 0x6, 0x6, 0x9, 0x2b93, 0x3, 0x9b39, 0xe, 0x80000000, 0x3, 0xfffff001, 0x100, 0xb582, 0x1, 0x0, 0x5, 0x78, 0x7, 0x5, 0xf83, 0x8a0, 0x0, 0xff, 0x100, 0x7, 0x23, 0x2, 0x6, 0x667, 0xfffffc01, 0x6, 0x83a3, 0x9, 0x4b8, 0x8, 0x7fe0bd9c, 0x5, 0x9794, 0x8, 0x1, 0x0, 0x0, 0x7, 0x600, 0x95b, 0x400, 0xfffff927, 0x0, 0x6, 0x7, 0xed28, 0x4, 0x9, 0x8, 0xffffffff, 0xa, 0x0, 0xe, 0x0, 0x37, 0x1, 0xffffff80, 0x0, 0x3ff, 0x996, 0xa6c, 0x2, 0x1ff, 0xf6e7, 0xde45, 0x800, 0x80000001, 0xfffffffe, 0x9, 0x3, 0x40, 0x8, 0x9, 0xfffffffd, 0x80000000, 0x7fffffff, 0x2, 0x5, 0x6, 0x3, 0x8, 0x7, 0x401, 0x8, 0x1000000, 0x65537704, 0x10000, 0x9014325, 0x901e, 0xf7, 0x4, 0xffffffff, 0x800000, 0x8001, 0x4, 0x81, 0x3, 0x7, 0x80000001, 0x9, 0x80000000, 0x4, 0x4, 0xffffffff, 0xfff, 0xffffff00, 0x3, 0x17, 0x4, 0x0, 0xb, 0x0, 0x7ff, 0x51, 0x8, 0xa5, 0x80000001, 0x5, 0x6, 0x4, 0x8001, 0xa2f, 0x4, 0x1ff, 0x7, 0x1, 0x15, 0x9, 0x8, 0x0, 0x0, 0x4, 0x9, 0x6, 0x2, 0x5, 0x4, 0xa6b8, 0x11f, 0x80000001, 0x7, 0x8, 0x8, 0x5, 0xdd3, 0xa, 0xda, 0x2, 0x8, 0x8, 0xfffffffb, 0x800, 0x7, 0x6, 0x4, 0xa708, 0x8d, 0x9, 0x400, 0x6, 0xfffffff6, 0x2, 0x5, 0x2, 0x7ff, 0x4, 0xc, 0x76cd, 0x32, 0x5, 0x100, 0x5, 0x800, 0x4, 0x1, 0x200, 0x7, 0x1, 0x8, 0x7ff, 0xf3, 0x39, 0x3, 0xd, 0x0, 0x6, 0x7, 0xc5, 0x7fffffff, 0xac, 0x401, 0x2, 0x5, 0x200, 0xffffffff, 0xdc5, 0x800, 0xffffff41, 0xa0e5, 0x9, 0x9, 0x9, 0x8, 0x3, 0x0, 0x9, 0x9, 0x6, 0x74eb, 0x10000000, 0x7e5, 0x7fffffff, 0x1000, 0xff, 0x6, 0x0, 0xbfe3, 0xf9, 0x7, 0x8, 0x8b, 0x9, 0x7f, 0x8, 0x2, 0x6, 0x3, 0x7, 0x10, 0xfffffffa, 0x3, 0x8c, 0x2, 0x81, 0x0, 0x0, 0x6, 0xa1a, 0x4, 0x1, 0xfffff4e8, 0x8, 0x766, 0xbc6, 0x3, 0x9, 0x51, 0x4, 0x6e3, 0x4, 0x9, 0xffffffff, 0x3, 0x1, 0x7b2, 0x4, 0x9, 0x100, 0xa4, 0xd, 0xd, 0xffffffff, 0x8, 0x9, 0x10000, 0x8, 0x7, 0x800, 0x5, 0x3, 0x4, 0x2, 0x7, 0x8, 0x2, 0x1000, 0x0, 0x7, 0xc869, 0x0, 0x2, 0x0, 0x7, 0xff, 0x6000, 0x7, 0x8, 0x4, 0xa, 0x1, 0xfffffffa, 0x1, 0x1, 0x8, 0xff800000, 0x3, 0xc8b8, 0x6b, 0x1, 0x1, 0x400, 0xffffffff, 0x80000001, 0x3, 0x5, 0x1000, 0xf9a5, 0x9, 0x7ff, 0xb2, 0x0, 0x0, 0x6c, 0x4b0d, 0x0, 0xe3ec, 0x3, 0x40, 0x7, 0xa, 0x1, 0x5, 0x5, 0x0, 0xb72f, 0xffff, 0x8, 0x4, 0xde4, 0x7a5, 0x7fff, 0x2, 0x8, 0x849e, 0x1, 0x40ae, 0x6, 0x1, 0x3, 0x7, 0x200, 0x2, 0x697b80fa, 0x3, 0x8, 0x2, 0x4, 0x9, 0x9, 0x82e, 0x0, 0x2, 0x2, 0x4, 0x5, 0x4f80, 0xffffffff, 0x5, 0xd, 0x2, 0x3fc00, 0xf, 0x3, 0x2, 0x2, 0x2, 0x4, 0x6, 0x4, 0x5b8, 0x3, 0x7, 0x3, 0x1, 0x1, 0xa12, 0x3, 0x3, 0x9, 0x401, 0x800, 0x7, 0x100, 0x5, 0xcbe, 0x4, 0x4, 0xa0c, 0xfffffffd, 0x2, 0x4, 0x1, 0x6, 0x1, 0x4, 0x1, 0xe257, 0xa, 0x7, 0x9, 0x401, 0xad, 0x6, 0x200, 0x8, 0x0, 0xb, 0x10000, 0xe0, 0x7, 0x0, 0x5, 0x4, 0xffffa908, 0x9, 0xfc3, 0x9, 0x7, 0xc709, 0x399b386a, 0x2, 0xbd6, 0x3, 0xfffffff7, 0x8000000, 0x2, 0x400, 0x8000, 0x2, 0x0, 0x6c33105a, 0x6, 0x1ff, 0x3, 0x7f, 0xb, 0x692, 0x10001, 0x5, 0x6, 0x5, 0x2, 0xd, 0x1000, 0x7, 0x6, 0x6, 0x8, 0xc, 0x7, 0x7, 0x7, 0x5, 0x5, 0x5, 0x7ff, 0xf, 0x15ee, 0x6, 0x8, 0x8000, 0xecda, 0xffffff81, 0x7ff, 0xa, 0x8000, 0x7f, 0x80000000, 0x0, 0x4, 0x3, 0x1, 0x3, 0x5, 0x7, 0x4, 0xb38, 0x5, 0x100, 0x0, 0x10001, 0x9, 0x530, 0xff, 0x81, 0x7, 0x79, 0x336, 0x3, 0x3, 0x1000, 0x6, 0x7, 0x34e, 0x5, 0x7fffffff, 0x4, 0x6, 0x5, 0xfffffffb, 0x100, 0x8, 0xfffffff5, 0xfffeffff, 0x9, 0x3, 0x3, 0xb8a, 0x10000, 0x9, 0x6363, 0x0, 0x6, 0x7, 0x45e37a85, 0xb, 0x4, 0x3, 0xf8a, 0x4fab, 0x6, 0xc6, 0x7fff, 0x3, 0x5, 0x3, 0x10, 0x8, 0x7ff, 0x8, 0x1, 0x101, 0x6, 0x0, 0x34, 0x5, 0x0, 0x6, 0x2, 0x6, 0x8, 0x3ff, 0xa, 0x5, 0x6, 0x0, 0xfffffff8, 0x10001, 0x7ff, 0x3ff, 0x3, 0x1ff, 0xf, 0x6, 0x5, 0xc, 0xd6, 0x1, 0x0, 0x94e, 0xb0, 0x400, 0x3ff, 0x2, 0x5, 0x4, 0x3, 0x3, 0x8, 0x80000000, 0xfffffffb, 0x9ad7, 0x89, 0x2, 0x7, 0x1b6, 0x800, 0x10001, 0x7, 0x80, 0x7ff, 0x8, 0x2806, 0x8001, 0x14000, 0x80000000, 0x3, 0x80, 0x3, 0x0, 0x74, 0x6, 0x0, 0x1000, 0x7fff, 0x1, 0xc, 0x372e, 0x2c65dc1e, 0x0, 0x4, 0x1d40, 0x540, 0x8, 0x7, 0x2, 0x6, 0x7, 0x0, 0x1, 0xe, 0x0, 0x10000, 0x180000, 0x8, 0x7, 0x80000000, 0xd, 0x9, 0x80000000, 0x9, 0xe, 0xffff, 0x7, 0x1, 0x9, 0x70, 0x9f, 0x6, 0x7, 0x0, 0x4, 0x3, 0x6, 0xee, 0xa4d, 0x0, 0x101, 0x0, 0xe0, 0x804, 0x7fff, 0x1, 0x7ff, 0x9, 0x4, 0x5e, 0xff, 0xa2, 0x3ff, 0x6b53, 0x0, 0x6, 0x3, 0xffff, 0x2, 0x5, 0x9, 0x4, 0x2, 0x532b, 0x10, 0xffffffff, 0x9, 0x5b, 0xffffffff, 0x400, 0xe1d, 0x5, 0x7fffffff, 0x0, 0x0, 0x5, 0x401, 0xc02, 0x4, 0x7, 0x0, 0x3c90, 0x9, 0x5, 0xb7, 0x5, 0x3ff, 0xfe9d, 0x0, 0xe13, 0x6, 0xffffffff, 0x95, 0x1, 0x6d3, 0x8, 0x6, 0x3, 0x4, 0xa4b, 0x3, 0x6, 0x3, 0x2, 0x5, 0x5e780088, 0x7, 0x2, 0x3, 0xa33b, 0x2, 0x9000, 0x0, 0x4, 0xfffffffc, 0x4, 0x200, 0x7, 0x1, 0x4, 0x4, 0xc3e, 0xfffff34b, 0x2, 0x7, 0x5, 0x81, 0x6, 0x7, 0x6, 0x2, 0x81, 0x2, 0x10001, 0x1, 0x100, 0x5, 0xb, 0xfffffff7, 0x975, 0x1, 0x2, 0x6, 0xc3d, 0xf7, 0x3, 0x5, 0x2ea, 0x4, 0x5, 0x0, 0xff24, 0x5, 0xffffffa5, 0x81, 0x2, 0x9, 0x7, 0x0, 0x8000, 0x7, 0x3, 0x7, 0x1, 0x4, 0x81, 0x1, 0x1, 0x2, 0x5, 0x5, 0x1800, 0x8, 0x5, 0x6, 0x7, 0x7fffffff, 0x6, 0x2, 0x0, 0x7ff, 0xfffffff7, 0x9, 0xc, 0xfffffff8, 0x9, 0x0, 0x48, 0x0, 0x4, 0x7, 0x0, 0x80000001, 0x0, 0x1, 0x1, 0xfffffffd, 0x2, 0x0, 0x4, 0x2fbd, 0x2, 0x100, 0xe, 0xfffffffb, 0x8, 0x5, 0x960, 0x5, 0x400, 0x1ff, 0x2, 0xfffffff7, 0xffff, 0x8, 0x4a, 0x100, 0x9, 0x1, 0x5, 0x2, 0x6, 0x3, 0x101, 0x2, 0x2, 0x1, 0xdf, 0x3, 0x4, 0x3, 0x3891e49e, 0x5, 0x4, 0x1, 0x2, 0x5cdccc23, 0x4, 0x5, 0x5, 0x5, 0x3, 0x526, 0x5, 0x9, 0x8, 0x5, 0x4, 0x3, 0xef, 0x10000, 0x2b8, 0x200, 0x6, 0x1, 0x46e, 0x3, 0x6, 0xfffffffd, 0x5, 0xe, 0x9, 0x34b, 0x8, 0x8000, 0x5, 0x7f, 0x2, 0xa, 0x2, 0x7, 0x1, 0x2, 0xfffffc00, 0x3b8, 0x9, 0x1, 0x1, 0x6, 0x5, 0x9, 0xe86a, 0xf70, 0x2, 0xd1de, 0x2, 0x800, 0x0, 0x1000, 0x80000000, 0x6, 0x5, 0x7fff, 0x8, 0x1, 0xffffffff, 0x9, 0x5, 0x1, 0xff, 0xe, 0x10000, 0x0, 0x2, 0x1, 0x2, 0x3, 0x3, 0x7, 0x401, 0x1f, 0x9, 0x8, 0xfff, 0x6, 0x7, 0x8, 0x33c2, 0x5, 0x5, 0x8, 0x9, 0x1000, 0x9, 0x2, 0xfffffffb, 0xd3d, 0x5, 0x8, 0x7, 0x10, 0x100, 0xa, 0xb5e, 0x1, 0x1, 0x10, 0x6, 0x3, 0x4, 0x6, 0xa8, 0x454f, 0x4, 0xab, 0x5, 0x80000000, 0x800, 0x2, 0x7fffffff, 0xfffffffc, 0x878, 0x8a98, 0xfffffffd, 0x6, 0x7, 0x88e8, 0xfffffffd, 0x618, 0xfb, 0x64e, 0x7f, 0x3, 0x0, 0x9, 0x7, 0x9, 0x2, 0x9, 0x6, 0x3, 0xeae, 0x6, 0xfffffc00, 0x5d, 0x7, 0x3, 0x4, 0x1, 0x401, 0x8, 0x9, 0xfffffff9, 0xa, 0xd, 0x91, 0x0, 0xbd2, 0x200, 0x256c, 0x0, 0x10000, 0x9799, 0x101, 0x0, 0x9, 0x4, 0x7, 0x9, 0x9, 0x100, 0x9, 0x1, 0x8, 0xba69, 0x6, 0x8, 0x1, 0x9, 0x2c5, 0x8, 0x8001, 0x2, 0x0, 0x7f, 0x4, 0x63, 0xffffffff, 0x4, 0xffffffff, 0xe, 0xb, 0x3, 0x1, 0x7, 0xffff, 0x5, 0x6, 0x5, 0x81, 0x4, 0x2, 0x2, 0x6147, 0x0, 0x100, 0x7, 0x1ff, 0xfffffff6, 0x3, 0x10000, 0xfffffffb, 0x4, 0x94, 0x3ff, 0x5, 0x7, 0x7fffffff, 0x7, 0xffffffff, 0x1, 0x6cb5, 0x8, 0x80, 0xe, 0xfffffffd, 0x80, 0x3, 0x7, 0x7, 0x8, 0xfffffffe, 0xe, 0x6, 0x80, 0x1, 0x8, 0x6, 0x0, 0x6, 0x7, 0x6, 0x4, 0x7, 0x3, 0xfff, 0x81, 0xfffffffb, 0x8000, 0x8, 0x3, 0x9, 0xfffffff7, 0x6, 0x32, 0x5, 0x3, 0x2, 0x6, 0xb, 0x1, 0x81de, 0x7, 0x4, 0x8001, 0x7, 0x2, 0x6, 0x4, 0x4, 0xff31, 0x7, 0x10, 0x80000001, 0x751, 0x6, 0x6, 0x7, 0x0, 0x10, 0x8, 0x6, 0x9, 0x0, 0x22ae, 0x4, 0x7, 0x4, 0x6, 0xd8, 0x1, 0x9, 0x7, 0x4, 0x5, 0x101, 0x6, 0x9, 0x2, 0x3, 0x7, 0x9e18, 0x3, 0x6, 0x6b85, 0xab, 0x1, 0x4, 0x5, 0x5, 0x400, 0x1000, 0x3, 0x5fe1, 0x8, 0x101, 0x7, 0xd, 0xaaf, 0x9, 0x1fd2ec8c, 0x9, 0x8001, 0x2, 0x401, 0x1, 0xd300, 0xf49e, 0xd, 0x5, 0x7f, 0xb343, 0x6, 0x1, 0x8, 0xd, 0x711a0639, 0xb, 0x1, 0x3, 0x68, 0x0, 0xfffffff8, 0x8e6c, 0x9, 0xc8, 0x101, 0xd, 0xffff, 0xf0, 0x800, 0xa, 0x7, 0x400, 0xffff, 0x10, 0x0, 0xfffffffa, 0xfffffffb, 0xffffffff, 0x2, 0x5, 0x1, 0x80, 0x7, 0x5, 0x81, 0x7, 0x2, 0xd4b4, 0x60f, 0x4, 0xe, 0xfffffff7, 0x7, 0x2, 0x4de, 0x7, 0x3, 0x6, 0x80, 0x10001, 0x4, 0x0, 0x75, 0x7ff, 0x7fff, 0x8fc, 0x7, 0xffff, 0x5, 0x1, 0x401, 0x8, 0x6, 0x9, 0x101, 0x6, 0x2, 0x401, 0x8, 0x7, 0xffff0000, 0x7, 0x9, 0xffff, 0x6, 0x2, 0x2, 0x8, 0x0, 0x100, 0xb, 0xfffffffd, 0x8, 0x1, 0x1, 0x1, 0x0, 0x2, 0x1, 0x5, 0x0, 0x11, 0x0, 0x7d, 0xfff0, 0xfffffffe, 0x1000, 0xe, 0xfffffc01, 0xf, 0x3, 0x4, 0x1, 0x3, 0x9, 0xfff, 0x53, 0x1000, 0x10, 0x9, 0x4, 0x101, 0x0, 0x5, 0x2, 0x3, 0x5d5e, 0x6, 0x7f, 0xfffff000, 0x5, 0x1, 0x8000000, 0x4, 0x5, 0x9, 0x80000001, 0x200, 0x3, 0x5, 0x9, 0x6, 0x5, 0x5, 0x8, 0x40, 0x2, 0x101, 0x1, 0x4, 0xdf7, 0xfffffffa, 0x4, 0xf, 0x8, 0x7, 0x350, 0x1, 0x8, 0x8, 0x7, 0x10bad533, 0xd9, 0x4, 0x3, 0xffff, 0x28, 0xde9, 0xc1, 0x3, 0x8, 0xb, 0x2, 0x101, 0x96, 0x0, 0xffffffff, 0xf9, 0x8, 0x6, 0xd, 0xfff, 0x2, 0x3, 0x7fffffff, 0x15, 0x5, 0x683, 0x8, 0x100, 0x4, 0x5, 0x30000, 0x2, 0x7, 0xf, 0xfff, 0x800, 0x4, 0x0, 0x3, 0x101, 0x8, 0x4, 0x1, 0x4, 0x7, 0xe08e, 0x401, 0x4, 0x59e, 0x7, 0xa0fa, 0x7f1, 0x7ff, 0x6, 0x17, 0x4, 0x1, 0x1000, 0x6, 0x38000, 0xfffffffc, 0x5, 0xfffffff9, 0x4, 0x9361, 0x5, 0x3, 0x1, 0x10000, 0x1ff, 0x400, 0x3, 0x8, 0x7, 0x2, 0xb, 0x5, 0x8, 0x4, 0xd, 0x3b, 0xfffffffe, 0x7ff, 0x101, 0x4, 0x6, 0x1, 0x1, 0x0, 0x5, 0x9d1b, 0xffffcd67, 0x6, 0x7703, 0x438c0a62, 0x9, 0x8, 0x5, 0xb37, 0x4, 0x6, 0x8, 0x9, 0x9, 0x0, 0x7ff, 0x6, 0x1cc5, 0x3, 0x3, 0x4, 0x9, 0x7, 0xffffffff, 0x10001, 0x3, 0x8, 0xc, 0x200, 0x2, 0xfa08, 0x2, 0x10, 0xc, 0x2, 0x1, 0x8, 0x80000000, 0x1a, 0x66da0255, 0xb, 0x4, 0x5, 0x2, 0x0, 0x5, 0x80000000, 0x4, 0x9, 0x3ff, 0x8001, 0x6, 0x200, 0x1d0, 0x8, 0x7, 0x5, 0x9, 0xffff, 0x0, 0x0, 0x4987, 0xc4, 0x0, 0xfffffffa, 0x1, 0x460, 0x7ff, 0x1, 0x4, 0x8, 0x2, 0x1, 0x7, 0xfff, 0x2, 0x80000001, 0x5, 0x8, 0x1fc200, 0x7fff, 0x6, 0xfffffffe, 0xf9, 0x0, 0xffff, 0x1, 0x7, 0x8, 0x9, 0x7, 0x2, 0x10, 0x8, 0x9, 0x0, 0x7, 0x90, 0x1, 0x9617, 0x3, 0x7, 0x1, 0x3, 0x9, 0x40, 0x8000, 0x2, 0x3, 0x2, 0x9, 0x6, 0x64fc, 0x8001, 0x1, 0x1, 0x0, 0x3ff, 0x4, 0xfffffffe, 0x0, 0xef4, 0x6, 0x5, 0x275d, 0xaf2, 0x9, 0x1, 0x1, 0xffff1bab, 0x8, 0x5af, 0x8, 0x3ff, 0x84b, 0x3, 0x3, 0x3, 0x0, 0x9927, 0xa, 0xddc2, 0xae2, 0x80000001, 0xb1, 0x6, 0xffffffff, 0x9, 0x0, 0xfffffffc, 0xf1c6, 0x7ff, 0x2, 0x9, 0xfffffeff, 0x6, 0x9, 0x3, 0x0, 0x57, 0x6, 0x9, 0x0, 0x7, 0x3, 0x9, 0x6, 0x5, 0xffff, 0x9, 0x100, 0x7, 0x3ff, 0xa28, 0xffff, 0x2, 0x89b, 0x3, 0x3, 0x2, 0x0, 0x4, 0x5, 0x8001, 0x5, 0x8, 0x4, 0x7, 0xd74, 0x0, 0x7, 0xd, 0x3, 0xffff8000, 0xe383, 0x7, 0x94, 0x326, 0x890, 0x4, 0x1200, 0x3, 0x4, 0xb447, 0x5, 0x7, 0x800, 0xffff, 0x1, 0x4, 0x7, 0xfffffffa, 0x80000000, 0x4, 0x0, 0x9, 0x3, 0x9, 0x2, 0x8001, 0x2, 0x2, 0x401, 0x80, 0x8, 0x6356a6b0, 0x7, 0x2, 0x7d, 0x5, 0x6, 0x5, 0x9, 0x6, 0x7, 0x8, 0xc5, 0x9, 0x2, 0x6, 0x0, 0xe2, 0x4, 0x6fedba88, 0x9, 0xffff8c79, 0x0, 0x0, 0x0, 0x0, 0x5, 0x5, 0x0, 0x0, 0x6, 0x5, 0x9add, 0xe000, 0x8, 0xd, 0x4, 0xcaa, 0x7ee864cc, 0x2, 0x1000, 0x1, 0x1ff, 0xb49, 0x1, 0x27b8, 0xe2, 0x7fff, 0x80000001, 0xfffffffb, 0x9, 0x0, 0x2, 0x9e, 0x4, 0x5, 0x8, 0x8, 0x40, 0xe7, 0x9, 0x4, 0x5, 0x0, 0x1, 0x10000, 0xfff, 0x7ff, 0x100, 0x4, 0x8, 0x3, 0xeba8, 0x0, 0x3, 0x101, 0x1, 0x9, 0x4, 0x7, 0x5, 0x8, 0x4b, 0xfffffff0, 0x4, 0x9, 0x4, 0x6, 0x6, 0xff, 0x4, 0x7, 0x5, 0x400, 0x413, 0x2, 0x2, 0xffffffff, 0x7, 0x9, 0xfffffff8, 0x8, 0x6, 0x9, 0x7, 0xa, 0x0, 0x3, 0x800, 0x10000, 0x8, 0x8, 0x47, 0x400, 0x9, 0x7, 0x9, 0x9, 0x401, 0x100, 0x9, 0x80000000, 0x5, 0x80c1, 0x1, 0x8ada, 0x7, 0x5, 0xd, 0x1, 0x400, 0x971f, 0x2b, 0xffffffe1, 0x816, 0x100, 0x0, 0x7, 0x100, 0x101, 0xe9b0, 0x8, 0x80000001, 0xae, 0x3, 0x1, 0x1, 0x800, 0x1, 0x10, 0x8, 0x2, 0xf, 0x6, 0x3ce, 0x6, 0x0, 0x0, 0x401, 0x5, 0x9, 0x9, 0x8, 0xa8, 0x9, 0x800, 0x8, 0x4, 0x23, 0x5, 0x10000, 0xf75de3e, 0x66, 0xbf, 0x4, 0x8, 0x4287, 0x0, 0xcd, 0x2cb, 0x4, 0x3b, 0xd, 0x6, 0x2, 0x7, 0x509, 0x5, 0x9, 0x9, 0x800, 0x9, 0x7, 0x45e, 0xff, 0xfffffffb, 0x4, 0x2, 0x6, 0xfffffffe, 0x9, 0x5, 0x2, 0x6, 0x2c5a11e8, 0x6c9, 0x2, 0x81, 0x8, 0x0, 0x5, 0x2, 0x6, 0x5, 0x95ef, 0x8, 0x9, 0xa, 0x4, 0x2, 0x6, 0xfffffffb, 0x8, 0x5, 0x1, 0xcfbb, 0x5, 0x8, 0x1000, 0x3, 0x80000001, 0x8001, 0x5, 0x4, 0x717, 0x5ab, 0x6884, 0xfffffffa, 0x1, 0x10000, 0x40, 0x3, 0xf, 0x3, 0xd6b, 0x3, 0x3, 0x0, 0x4, 0x276f, 0x4, 0x1, 0x8, 0x4, 0xbb1, 0x53e, 0x2, 0x9, 0x3, 0x5, 0x76, 0x9, 0x8, 0x8, 0x1, 0x7, 0x4, 0x9, 0xfa, 0x100, 0x1, 0x6ce5, 0x10, 0x800, 0x3, 0x80000000, 0xffffffff, 0x7, 0x9f, 0x3ff, 0x800, 0x0, 0x0, 0x10001, 0x9db1, 0x7f, 0x5, 0x67, 0xd, 0x80000000, 0x0, 0x4, 0x81, 0x8, 0x5, 0x0, 0x400, 0xf, 0x10001, 0x7, 0x5, 0x9, 0x6, 0x2, 0x1, 0x5, 0xffffffff, 0x1, 0x6298197a, 0x80000000, 0x7ff, 0x2f6c0e9b, 0x9, 0x9, 0x1, 0x2, 0x0, 0x7, 0xd, 0x1, 0x0, 0x81, 0x4, 0x2, 0x0, 0x1, 0xd, 0x8, 0x1, 0x9b75, 0xff, 0x1, 0x5, 0xd3be, 0x3, 0x5, 0xc1, 0x1, 0x1, 0x5, 0x6, 0x5, 0x9, 0x0, 0x9, 0x8, 0x7, 0x2, 0xfffffffd, 0xa, 0x9, 0x3ff, 0x140, 0x9, 0x81, 0x0, 0x7, 0x0, 0x80, 0x1, 0x9, 0xdb17, 0x5, 0xf3b, 0xfff, 0x7fffffff, 0x3ed, 0xc5, 0x7, 0x9, 0x3, 0xc, 0x3, 0x1, 0xe, 0x6, 0x7fffffff, 0x0, 0xe5eb, 0xfffffff7, 0x7ff, 0x8, 0x7, 0x4, 0x4, 0x2, 0x7, 0x8, 0x5, 0x2, 0x8676, 0x33436f09, 0xf26, 0x1, 0x6, 0x40, 0xf, 0x8000, 0x71b, 0xa87, 0x2, 0x0, 0x40, 0xffff, 0x8000, 0x8, 0x5, 0x4, 0x7, 0x1, 0x7fffffff, 0x6, 0x4, 0x6, 0xfffffff9, 0x5, 0x5, 0x0, 0x7fff, 0x7a8d, 0x0, 0xfaf4, 0x4, 0x0, 0x4, 0xff, 0xfffffff8, 0x5, 0x5, 0x8, 0x1, 0x7, 0x1, 0x800, 0x0, 0x1, 0x8, 0xfff, 0xa9, 0xfffffffd, 0x3b7, 0x6, 0x0, 0x3, 0x3ff, 0xd, 0xd3, 0x0, 0x8, 0x9, 0x8000000, 0x4, 0x9, 0x1, 0xd4, 0x8, 0x80000001, 0x7, 0x1ff, 0xf22e, 0x5, 0x3, 0x7520, 0x8, 0x0, 0x5, 0x4, 0x4, 0x0, 0xc9f, 0x8, 0x4, 0x5, 0xc, 0x2, 0x2, 0x8, 0x8001, 0x7fffffff, 0x72, 0xa761, 0x7, 0x7, 0x2, 0x2, 0xfffffffb, 0x6, 0x5, 0xfffffff7, 0x1, 0x80000000, 0x6, 0x4a, 0x6, 0x2, 0x6, 0x8, 0x3, 0x5, 0x80, 0x6, 0xf09, 0x9, 0x9, 0x6, 0x6, 0x4, 0x2, 0xff, 0x80000000, 0x1, 0x3, 0x12e, 0x8, 0x2, 0x74, 0x6, 0xc, 0x6b, 0x4, 0x8, 0x8, 0x3, 0x7aa3, 0x8000, 0x1, 0xffffff7f, 0x2, 0xa, 0x7, 0x8001, 0xe, 0x3, 0x11, 0x1, 0x5, 0x574, 0x912, 0x2, 0x4, 0x8, 0x9, 0x8, 0x4, 0xa, 0x400, 0x2, 0x2c23, 0x6098025a, 0x5, 0x8, 0x5877, 0x8, 0x5, 0x81, 0x80, 0x6, 0xfffffff7, 0x2, 0x3, 0x3, 0x3ff, 0xc3, 0x0, 0x5, 0x3, 0x81, 0x2, 0x4, 0x9cc, 0x1, 0x9, 0x7, 0x1, 0x7, 0xa, 0x10, 0x1, 0x6, 0x15a2, 0x7, 0x6, 0x8, 0xee00, 0x10000, 0x5283, 0x3ff, 0x2, 0xffffffff, 0x0, 0x4, 0x9, 0x81, 0x2, 0x4, 0x2, 0x1, 0x7f, 0xe3, 0x7fffffff, 0x5, 0x7, 0x3, 0x2, 0x4d439856, 0x5e2a, 0x8, 0x3, 0xcb, 0x4, 0xffff7fff, 0x8ea, 0x9, 0x98df, 0x7, 0x4, 0x65b, 0x3, 0x200, 0xe, 0x6, 0x2, 0x3, 0x9, 0x3, 0xb8f2, 0x8, 0x5, 0xa250, 0x3, 0xcd, 0x3, 0x2, 0x3, 0x1, 0x9, 0x7f, 0x4, 0x7, 0x1, 0x1, 0x4, 0x0, 0x9, 0x4, 0xffff, 0x10000, 0xc3, 0x4, 0x1, 0x400, 0xcef70800, 0x8, 0x8f18, 0x5, 0x8001, 0x8, 0x7, 0x8a1c, 0x101, 0x81, 0xfffffb00, 0x4, 0x3, 0x3, 0x7, 0x8, 0x5, 0x7fffffff, 0x7, 0x1, 0x800, 0x1, 0x6, 0x50, 0x9, 0x1000, 0xc4f5, 0xfffffffc, 0x6, 0xaa34, 0x8, 0x7, 0x1621, 0x5, 0x5, 0x4, 0x8, 0x9, 0x808, 0x4, 0x200, 0x0, 0x10, 0x8, 0x3, 0x78, 0x2, 0x7, 0x7, 0x9, 0x0, 0x7, 0x5, 0x2, 0x5, 0x7, 0x9fb, 0x5, 0x9, 0x4f, 0x0, 0xa, 0x7, 0x6, 0xee2, 0x882d, 0xf563, 0x0, 0x40, 0x401, 0x6, 0x6, 0x1, 0x40, 0x6, 0x7f, 0x80, 0xd, 0x80000000, 0x4, 0x10000, 0x12, 0x0, 0x1, 0x2, 0x5, 0xc, 0x2e3, 0x81, 0x3, 0x7, 0x0, 0x7fff, 0x3b, 0x5, 0xfffffff5, 0xf0, 0x2, 0xf14e, 0x5, 0xffffffdd, 0x9, 0x6, 0x3, 0x5, 0x1, 0x100, 0x6, 0x8c, 0xff, 0x1, 0x7f, 0x6, 0x6, 0x2, 0x5d1eabf7, 0x8001, 0x9, 0x5, 0x3ff, 0x5, 0x6, 0x3, 0xf, 0x800, 0xf6, 0x4], 0x7, 0x1000})

0s ago: executing program 5 (id=6386):
syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x101005)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
socket$netlink(0x10, 0x3, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x2, 0x4, 0x1, 0xbf27, 0x500}, 0x50)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x6f1dd9aa, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r1=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000180)={0x0, 0x1, &(0x7f0000000340)=[r1], &(0x7f0000000280)=[0x1], &(0x7f0000000200), &(0x7f0000000040), 0x0, 0x7f}) (fail_nth: 8)

kernel console output (not intermixed with test programs):

 comm="syz.5.5565" path="/234/file1" dev="tmpfs" ino=1208 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  367.050074][   T40] audit: type=1400 audit(2000524502.829:25106): avc:  denied  { write } for  pid=20762 comm="syz.5.5567" name="comedi4" dev="devtmpfs" ino=1306 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  367.180116][   T40] audit: type=1400 audit(2000524502.959:25107): avc:  denied  { create } for  pid=20768 comm="syz.5.5570" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  367.364226][ T6003] em28xx 7-1:0.0: unknown em28xx chip ID (0)
[  367.773568][ T6003] em28xx 7-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  367.777127][ T6003] em28xx 7-1:0.0: board has no eeprom
[  367.838704][ T6003] em28xx 7-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  367.842165][ T6003] em28xx 7-1:0.0: dvb set to bulk mode.
[  367.844638][ T6023] em28xx 7-1:0.0: Binding DVB extension
[  367.850540][ T6003] usb 7-1: USB disconnect, device number 30
[  367.854527][ T6003] em28xx 7-1:0.0: Disconnecting em28xx
[  367.882251][ T6023] em28xx 7-1:0.0: Registering input extension
[  367.885221][ T6003] em28xx 7-1:0.0: Closing input extension
[  367.894570][ T6003] em28xx 7-1:0.0: Freeing device
[  368.228720][T20705] Bluetooth: hci1: command 0x0406 tx timeout
[  368.315956][   T40] audit: type=1400 audit(2000524504.089:25108): avc:  denied  { name_bind } for  pid=20774 comm="syz.2.5572" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  368.325581][   T40] audit: type=1400 audit(2000524504.099:25109): avc:  denied  { node_bind } for  pid=20774 comm="syz.2.5572" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  368.538695][T20705] Bluetooth: hci0: command 0x1407 tx timeout
[  368.540757][ T5939] Bluetooth: hci0: Opcode 0x1407 failed: -110
[  368.986560][   T40] audit: type=1400 audit(2000524504.759:25110): avc:  denied  { create } for  pid=20777 comm="syz.4.5573" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  368.998659][   T40] audit: type=1400 audit(2000524504.759:25111): avc:  denied  { map } for  pid=20777 comm="syz.4.5573" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=108211 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  369.006095][   T40] audit: type=1400 audit(2000524504.759:25112): avc:  denied  { read write } for  pid=20777 comm="syz.4.5573" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=108211 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  369.018314][   T40] audit: type=1400 audit(2000524504.779:25113): avc:  denied  { create } for  pid=20777 comm="syz.4.5573" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  369.026741][   T40] audit: type=1400 audit(2000524504.779:25114): avc:  denied  { bind } for  pid=20777 comm="syz.4.5573" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  369.184011][T20800] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=20800 comm=syz.5.5584
[  369.188172][T20800] netlink: 'syz.5.5584': attribute type 29 has an invalid length.
[  369.210065][ T6003] hid-generic 0005:0C45:0C6E.0026: unknown main item tag 0x0
[  369.216914][ T6003] hid-generic 0005:0C45:0C6E.0026: hidraw0: BLUETOOTH HID v0.09 Device [syz1] on aa:aa:aa:aa:aa:aa
[  369.239629][T20800] netlink: 'syz.5.5584': attribute type 29 has an invalid length.
[  369.348719][ T6003] usb 9-1: new high-speed USB device number 37 using dummy_hcd
[  369.374937][T20820] FAULT_INJECTION: forcing a failure.
[  369.374937][T20820] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  369.379630][T20820] CPU: 2 UID: 0 PID: 20820 Comm: syz.5.5593 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  369.379649][T20820] Tainted: [L]=SOFTLOCKUP
[  369.379653][T20820] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  369.379660][T20820] Call Trace:
[  369.379664][T20820]  <TASK>
[  369.379669][T20820]  dump_stack_lvl+0x100/0x190
[  369.379688][T20820]  should_fail_ex.cold+0x5/0xa
[  369.379700][T20820]  _copy_to_user+0x32/0xd0
[  369.379717][T20820]  simple_read_from_buffer+0xcb/0x170
[  369.379730][T20820]  proc_fail_nth_read+0x1af/0x230
[  369.379746][T20820]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  369.379762][T20820]  ? rw_verify_area+0xce/0x6d0
[  369.379773][T20820]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  369.379788][T20820]  vfs_read+0x1e4/0xb30
[  369.379801][T20820]  ? __pfx_vfs_read+0x10/0x10
[  369.379812][T20820]  ? find_held_lock+0x2b/0x80
[  369.379827][T20820]  ? __fget_files+0x215/0x3d0
[  369.379843][T20820]  ? __fget_files+0x21f/0x3d0
[  369.379860][T20820]  ksys_read+0x12a/0x250
[  369.379872][T20820]  ? __pfx_ksys_read+0x10/0x10
[  369.379887][T20820]  do_syscall_64+0xc9/0xf80
[  369.379901][T20820]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  369.379912][T20820] RIP: 0033:0x7f0dd7b5b58e
[  369.379922][T20820] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  369.379933][T20820] RSP: 002b:00007f0dd8a7ffe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  369.379944][T20820] RAX: ffffffffffffffda RBX: 00007f0dd8a806c0 RCX: 00007f0dd7b5b58e
[  369.379951][T20820] RDX: 000000000000000f RSI: 00007f0dd8a800a0 RDI: 0000000000000004
[  369.379958][T20820] RBP: 00007f0dd8a80090 R08: 0000000000000000 R09: 0000000000000000
[  369.379964][T20820] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  369.379971][T20820] R13: 00007f0dd7e16038 R14: 00007f0dd7e15fa0 R15: 00007fff4f770c88
[  369.379985][T20820]  </TASK>
[  369.422831][T20821] __nla_validate_parse: 13 callbacks suppressed
[  369.422844][T20821] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5591'.
[  369.455420][T20821] netlink: 'syz.0.5591': attribute type 30 has an invalid length.
[  369.456718][T20824] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  369.457892][T20821] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5591'.
[  369.508809][ T6003] usb 9-1: Using ep0 maxpacket: 16
[  369.514918][ T6003] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  369.520814][ T6003] usb 9-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  369.524518][ T6003] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  369.527932][ T6003] usb 9-1: Product: syz
[  369.529772][ T6003] usb 9-1: Manufacturer: syz
[  369.531697][ T6003] usb 9-1: SerialNumber: syz
[  369.536255][ T6003] usb 9-1: config 0 descriptor??
[  369.544778][ T6003] em28xx 9-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  369.548695][ T6003] em28xx 9-1:0.0: DVB interface 0 found: bulk
[  370.152260][ T6003] em28xx 9-1:0.0: unknown em28xx chip ID (0)
[  370.563001][ T6003] em28xx 9-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  370.570981][ T6003] em28xx 9-1:0.0: board has no eeprom
[  370.618690][ T5939] Bluetooth: hci0: Opcode 0x1407 failed: -110
[  370.618843][   T64] Bluetooth: hci0: command 0x1407 tx timeout
[  370.622912][ T5939] Bluetooth: hci0: Opcode 0x1407 failed: -110
[  370.628782][ T6003] em28xx 9-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  370.631451][ T6003] em28xx 9-1:0.0: dvb set to bulk mode.
[  370.635753][  T845] em28xx 9-1:0.0: Binding DVB extension
[  370.638182][ T6003] usb 9-1: USB disconnect, device number 37
[  370.641682][ T6003] em28xx 9-1:0.0: Disconnecting em28xx
[  370.650700][T20849] CIFS: Unable to determine destination address
[  370.669804][  T845] em28xx 9-1:0.0: Registering input extension
[  370.672423][ T6003] em28xx 9-1:0.0: Closing input extension
[  370.681082][ T6003] em28xx 9-1:0.0: Freeing device
[  370.775031][T20855] sctp: [Deprecated]: syz.5.5604 (pid 20855) Use of struct sctp_assoc_value in delayed_ack socket option.
[  370.775031][T20855] Use struct sctp_sack_info instead
[  370.786379][T20855] gfs2: error -5 reading superblock
[  370.919753][T20861] netlink: 9 bytes leftover after parsing attributes in process `syz.0.5609'.
[  371.100742][   T54] hid-generic 0005:15C2:0C6E.0027: unknown main item tag 0x0
[  371.105672][   T54] hid-generic 0005:15C2:0C6E.0027: hidraw0: BLUETOOTH HID v0.09 Device [syz1] on aa:aa:aa:aa:aa:aa
[  371.308710][   T10] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  371.489597][T20900] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=20900 comm=syz.4.5628
[  371.498462][T20900] netlink: 'syz.4.5628': attribute type 29 has an invalid length.
[  371.498758][   T10] usb 5-1: Using ep0 maxpacket: 16
[  371.506179][   T10] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  371.515873][   T10] usb 5-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  371.518710][   T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  371.521216][   T10] usb 5-1: Product: syz
[  371.522531][   T10] usb 5-1: Manufacturer: syz
[  371.523962][   T10] usb 5-1: SerialNumber: syz
[  371.529813][   T10] usb 5-1: config 0 descriptor??
[  371.533579][   T10] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  371.534689][T20900] netlink: 'syz.4.5628': attribute type 29 has an invalid length.
[  371.536539][   T10] em28xx 5-1:0.0: DVB interface 0 found: bulk
[  371.576963][T20902] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=62736 sclass=netlink_route_socket pid=20902 comm=syz.2.5627
[  371.839675][T20925] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=20925 comm=syz.4.5639
[  371.845650][T20925] netlink: 'syz.4.5639': attribute type 29 has an invalid length.
[  371.870327][T20925] netlink: 'syz.4.5639': attribute type 29 has an invalid length.
[  372.043228][T20931] FAULT_INJECTION: forcing a failure.
[  372.043228][T20931] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  372.047530][T20931] CPU: 3 UID: 0 PID: 20931 Comm: syz.4.5642 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  372.047550][T20931] Tainted: [L]=SOFTLOCKUP
[  372.047554][T20931] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  372.047561][T20931] Call Trace:
[  372.047566][T20931]  <TASK>
[  372.047572][T20931]  dump_stack_lvl+0x100/0x190
[  372.047592][T20931]  should_fail_ex.cold+0x5/0xa
[  372.047605][T20931]  _copy_from_user+0x2e/0xd0
[  372.047622][T20931]  copy_msghdr_from_user+0x9f/0x4f0
[  372.047636][T20931]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  372.047649][T20931]  ? _kstrtoull+0x13c/0x1f0
[  372.047660][T20931]  ? __pfx__kstrtoull+0x10/0x10
[  372.047673][T20931]  ___sys_sendmsg+0x106/0x1e0
[  372.047685][T20931]  ? __pfx____sys_sendmsg+0x10/0x10
[  372.047713][T20931]  __sys_sendmmsg+0x205/0x430
[  372.047730][T20931]  ? __pfx___sys_sendmmsg+0x10/0x10
[  372.047749][T20931]  ? __fget_files+0x215/0x3d0
[  372.047763][T20931]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  372.047783][T20931]  ? fput+0x79/0x100
[  372.047798][T20931]  ? ksys_write+0x1ac/0x250
[  372.047811][T20931]  ? __pfx_ksys_write+0x10/0x10
[  372.047826][T20931]  __x64_sys_sendmmsg+0x9c/0x100
[  372.047846][T20931]  ? lockdep_hardirqs_on+0x78/0x100
[  372.047862][T20931]  do_syscall_64+0xc9/0xf80
[  372.047883][T20931]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  372.047900][T20931] RIP: 0033:0x7f3a9139acb9
[  372.047914][T20931] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  372.047930][T20931] RSP: 002b:00007f3a9227a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  372.047948][T20931] RAX: ffffffffffffffda RBX: 00007f3a91615fa0 RCX: 00007f3a9139acb9
[  372.047959][T20931] RDX: 0000000000000001 RSI: 0000200000004980 RDI: 0000000000000003
[  372.047969][T20931] RBP: 00007f3a9227a090 R08: 0000000000000000 R09: 0000000000000000
[  372.047979][T20931] R10: 0000000020008000 R11: 0000000000000246 R12: 0000000000000001
[  372.047990][T20931] R13: 00007f3a91616038 R14: 00007f3a91615fa0 R15: 00007ffdf4cdc998
[  372.048014][T20931]  </TASK>
[  372.135323][   T10] em28xx 5-1:0.0: unknown em28xx chip ID (0)
[  372.159694][T20933] netlink: 32 bytes leftover after parsing attributes in process `syz.4.5643'.
[  372.181455][   T40] kauditd_printk_skb: 120 callbacks suppressed
[  372.181471][   T40] audit: type=1400 audit(2000524507.959:25235): avc:  denied  { create } for  pid=20932 comm="syz.4.5643" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  372.196002][   T40] audit: type=1400 audit(2000524507.969:25236): avc:  denied  { connect } for  pid=20932 comm="syz.4.5643" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  372.484900][T20948] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=20948 comm=syz.4.5649
[  372.489794][T20948] netlink: 'syz.4.5649': attribute type 29 has an invalid length.
[  372.501939][ T5517] hid-generic 0005:0C45:0C6E.0028: unknown main item tag 0x0
[  372.506543][ T5517] hid-generic 0005:0C45:0C6E.0028: hidraw0: BLUETOOTH HID v0.09 Device [syz1] on aa:aa:aa:aa:aa:aa
[  372.519528][T20948] netlink: 'syz.4.5649': attribute type 29 has an invalid length.
[  372.558642][   T10] em28xx 5-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  372.563181][   T10] em28xx 5-1:0.0: board has no eeprom
[  372.596573][T20952] [U] vÔ3¸Âfù¾"SçÁ/Éê4:ÃXTz“W¡t‘’lWµ«=
[  372.599069][T20952] [U] J"—e:ÀÆ"


[  372.612143][T20952] vivid-000: =================  START STATUS  =================
[  372.614633][T20952] vivid-000: Test Pattern: 75% Colorbar
[  372.616661][   T40] audit: type=1400 audit(2000524508.389:25237): avc:  denied  { ioctl } for  pid=20951 comm="syz.5.5650" path="/dev/video7" dev="devtmpfs" ino=974 ioctlcmd=0x5646 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  372.618763][T20952] vivid-000: Fill Percentage of Frame: 4
[  372.626532][T20952] vivid-000: Horizontal Movement: Move Right
[  372.628548][T20952] vivid-000: Vertical Movement: 
[  372.628692][   T10] em28xx 5-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  372.630351][   T10] em28xx 5-1:0.0: dvb set to bulk mode.
[  372.634621][ T6022] em28xx 5-1:0.0: Binding DVB extension
[  372.635078][T20952] No Movement
[  372.637804][T20952] vivid-000: OSD Text Mode: Counters Only
[  372.640367][   T10] usb 5-1: USB disconnect, device number 30
[  372.641217][T20952] vivid-000: Show Border: true
[  372.642993][   T10] em28xx 5-1:0.0: Disconnecting em28xx
[  372.643943][T20952] vivid-000: Show Square: true
[  372.647377][T20952] vivid-000: Sensor Flipped Horizontally: false
[  372.649758][T20952] vivid-000: Sensor Flipped Vertically: false
[  372.651717][T20952] vivid-000: Insert SAV Code in Image: false
[  372.653659][T20952] vivid-000: Insert EAV Code in Image: false
[  372.655594][T20952] vivid-000: Insert Video Guard Band: false
[  372.657613][T20952] vivid-000: Reduced Framerate: false
[  372.659509][T20952] vivid-000: HDMI 000-0 Is Connected To: Output HDMI 023-0
[  372.661793][T20952] vivid-000: S-Video 000-0 Is Connected To: Output S-Video 002-0
[  372.664352][T20952] vivid-000: Enable Capture Cropping: true
[  372.666244][T20952] vivid-000: Enable Capture Composing: true
[  372.667886][   T40] audit: type=1400 audit(2000524508.439:25238): avc:  denied  { execmem } for  pid=20956 comm="syz.4.5652" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  372.668371][T20952] vivid-000: Enable Capture Scaler: true
[  372.676548][T20958] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[  372.677065][T20952] vivid-000: Timestamp Source: End of Frame
[  372.677082][T20952] vivid-000: Colorspace: sRGB
[  372.677094][T20952] vivid-000: Transfer Function: Default
[  372.677105][T20952] vivid-000: Y'CbCr Encoding: Default
[  372.677116][T20952] vivid-000: HSV Encoding: 
[  372.679679][ T6022] em28xx 5-1:0.0: Registering input extension
[  372.688424][   T10] em28xx 5-1:0.0: Closing input extension
[  372.690211][T20952] Hue 0-179
[  372.690224][T20952] vivid-000: Quantization: Default
[  372.690242][T20952] vivid-000: Apply Alpha To Red Only: false
[  372.690255][T20952] vivid-000: Standard Aspect Ratio: 4x3
[  372.690267][T20952] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[  372.690283][T20952] vivid-000: DV Timings: 640x480p59 inactive
[  372.690301][T20952] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[  372.690313][T20952] vivid-000: Maximum EDID Blocks: 2
[  372.690326][T20952] vivid-000: Limited RGB Range (16-235): false
[  372.690339][T20952] vivid-000: Rx RGB Quantization Range: Automatic
[  372.690351][T20952] vivid-000: Power Present: 0x00000001
[  372.698737][   T40] audit: type=1400 audit(2000524508.459:25239): avc:  denied  { prog_load } for  pid=20951 comm="syz.5.5650" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  372.698918][ T5939] Bluetooth: hci0: command 0x1407 tx timeout
[  372.698967][T20952] tpg source WxH: 3840x2160 (Y'CbCr)
[  372.698978][T20952] tpg field: 1
[  372.698982][T20952] tpg crop: (0,0)/3840x2160
[  372.698990][T20952] tpg compose: (0,0)/3840x2160
[  372.699003][T20952] tpg colorspace: 8
[  372.699008][T20952] tpg transfer function: 0/2
[  372.699013][T20952] tpg Y'CbCr encoding: 0/1
[  372.699019][T20952] tpg quantization: 0/2
[  372.699024][T20952] tpg RGB range: 0/2
[  372.699030][T20952] vivid-000: ==================  END STATUS  ==================
[  372.701668][   T40] audit: type=1400 audit(2000524508.459:25240): avc:  denied  { bpf } for  pid=20951 comm="syz.5.5650" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  372.705927][   T10] em28xx 5-1:0.0: Freeing device
[  372.706337][   T40] audit: type=1400 audit(2000524508.459:25241): avc:  denied  { write } for  pid=20951 comm="syz.5.5650" name="001" dev="devtmpfs" ino=751 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  372.777214][   T40] audit: type=1400 audit(2000524508.539:25242): avc:  denied  { create } for  pid=20961 comm="syz.2.5654" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  372.785404][   T40] audit: type=1400 audit(2000524508.539:25243): avc:  denied  { bind } for  pid=20961 comm="syz.2.5654" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  372.791668][   T40] audit: type=1400 audit(2000524508.539:25244): avc:  denied  { setopt } for  pid=20961 comm="syz.2.5654" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  372.913754][T20978] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=20978 comm=syz.4.5660
[  372.918091][T20978] netlink: 'syz.4.5660': attribute type 29 has an invalid length.
[  372.928845][T20980] netlink: 48 bytes leftover after parsing attributes in process `syz.2.5661'.
[  372.931889][T20980] netlink: 48 bytes leftover after parsing attributes in process `syz.2.5661'.
[  373.223316][T21004] gretap1: entered promiscuous mode
[  373.227182][T21004] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5673'.
[  373.345308][T21013] loop6: detected capacity change from 0 to 2640
[  373.351855][T21013] buffer_io_error: 27 callbacks suppressed
[  373.351870][T21013] Buffer I/O error on dev loop6, logical block 0, async page read
[  373.357678][T21013] Buffer I/O error on dev loop6, logical block 0, async page read
[  373.364908][T21013] Buffer I/O error on dev loop6, logical block 0, async page read
[  373.368246][T21013] Buffer I/O error on dev loop6, logical block 0, async page read
[  373.372185][T21013] Buffer I/O error on dev loop6, logical block 0, async page read
[  373.375580][T21013] Buffer I/O error on dev loop6, logical block 0, async page read
[  373.379521][T21013] Buffer I/O error on dev loop6, logical block 0, async page read
[  373.382798][T21013] Buffer I/O error on dev loop6, logical block 0, async page read
[  373.386179][T21013] ldm_validate_partition_table(): Disk read failed.
[  373.391044][T21013] Buffer I/O error on dev loop6, logical block 0, async page read
[  373.394341][T21013] Buffer I/O error on dev loop6, logical block 0, async page read
[  373.397694][T21013] Dev loop6: unable to read RDB block 0
[  373.400513][T21013]  loop6: unable to read partition table
[  373.403232][T21013] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  373.657472][T21035] netlink: 48 bytes leftover after parsing attributes in process `syz.2.5684'.
[  373.661190][T21035] netlink: 48 bytes leftover after parsing attributes in process `syz.2.5684'.
[  373.739635][T11356] usb 9-1: new high-speed USB device number 38 using dummy_hcd
[  373.748692][   T54] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  373.783789][T21043] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=21043 comm=syz.5.5688
[  373.808278][ T5517] hid-generic 0005:0C45:0C6E.0029: unknown main item tag 0x0
[  373.814531][ T5517] hid-generic 0005:0C45:0C6E.0029: hidraw0: BLUETOOTH HID v0.09 Device [syz1] on aa:aa:aa:aa:aa:aa
[  373.908754][   T54] usb 5-1: Using ep0 maxpacket: 16
[  373.911410][T11356] usb 9-1: Using ep0 maxpacket: 16
[  373.915721][   T54] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  373.922349][T11356] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  373.929302][T11356] usb 9-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  373.933651][T21049]  pmem0: [POWERTEC]
[  373.933872][   T54] usb 5-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  373.939509][T11356] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  373.942938][T11356] usb 9-1: Product: syz
[  373.944731][T11356] usb 9-1: Manufacturer: syz
[  373.946763][T11356] usb 9-1: SerialNumber: syz
[  373.948832][   T54] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  373.952490][   T54] usb 5-1: Product: syz
[  373.954291][   T54] usb 5-1: Manufacturer: syz
[  373.956234][   T54] usb 5-1: SerialNumber: syz
[  373.969883][T11356] usb 9-1: config 0 descriptor??
[  373.973099][   T54] usb 5-1: config 0 descriptor??
[  373.984004][T11356] em28xx 9-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  373.987874][T11356] em28xx 9-1:0.0: DVB interface 0 found: bulk
[  373.992529][   T54] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  373.996501][   T54] em28xx 5-1:0.0: DVB interface 0 found: bulk
[  374.579139][T11356] em28xx 9-1:0.0: unknown em28xx chip ID (0)
[  374.585478][   T54] em28xx 5-1:0.0: unknown em28xx chip ID (0)
[  374.686555][T21069] lo: entered allmulticast mode
[  374.738393][T21069] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5698'.
[  374.742484][T21068] lo: left allmulticast mode
[  374.778718][ T5939] Bluetooth: hci0: command 0x1407 tx timeout
[  374.999422][T11356] em28xx 9-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  375.002822][T11356] em28xx 9-1:0.0: board has no eeprom
[  375.005867][   T54] em28xx 5-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  375.014160][   T54] em28xx 5-1:0.0: board has no eeprom
[  375.014235][T21083] validate_nla: 4 callbacks suppressed
[  375.014251][T21083] netlink: 'syz.2.5704': attribute type 21 has an invalid length.
[  375.020838][T21083] IPv6: NLM_F_CREATE should be specified when creating new route
[  375.078677][T11356] em28xx 9-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  375.081725][T11356] em28xx 9-1:0.0: dvb set to bulk mode.
[  375.083996][   T54] em28xx 5-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  375.088767][   T24] em28xx 9-1:0.0: Binding DVB extension
[  375.090772][   T54] em28xx 5-1:0.0: dvb set to bulk mode.
[  375.100014][T11356] usb 9-1: USB disconnect, device number 38
[  375.109294][T11356] em28xx 9-1:0.0: Disconnecting em28xx
[  375.116039][   T54] usb 5-1: USB disconnect, device number 31
[  375.125940][   T54] em28xx 5-1:0.0: Disconnecting em28xx
[  375.129502][   T24] em28xx 9-1:0.0: Registering input extension
[  375.133754][ T3333] em28xx 5-1:0.0: Binding DVB extension
[  375.156275][ T3333] em28xx 5-1:0.0: Registering input extension
[  375.159338][T11356] em28xx 9-1:0.0: Closing input extension
[  375.162193][   T54] em28xx 5-1:0.0: Closing input extension
[  375.185413][T11356] em28xx 9-1:0.0: Freeing device
[  375.188358][   T54] em28xx 5-1:0.0: Freeing device
[  375.190778][T21091] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=21091 comm=syz.2.5707
[  375.197907][T21091] netlink: 'syz.2.5707': attribute type 29 has an invalid length.
[  375.220544][ T6022] hid-generic 0005:0C45:0C6E.002A: unknown main item tag 0x0
[  375.231155][ T6022] hid-generic 0005:0C45:0C6E.002A: hidraw0: BLUETOOTH HID v0.09 Device [syz1] on aa:aa:aa:aa:aa:aa
[  375.242338][T21091] netlink: 'syz.2.5707': attribute type 29 has an invalid length.
[  375.266506][T21095] FAULT_INJECTION: forcing a failure.
[  375.266506][T21095] name failslab, interval 1, probability 0, space 0, times 0
[  375.276315][T21095] CPU: 3 UID: 0 PID: 21095 Comm: syz.5.5708 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  375.276346][T21095] Tainted: [L]=SOFTLOCKUP
[  375.276352][T21095] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  375.276364][T21095] Call Trace:
[  375.276371][T21095]  <TASK>
[  375.276379][T21095]  dump_stack_lvl+0x100/0x190
[  375.276407][T21095]  should_fail_ex.cold+0x5/0xa
[  375.276423][T21095]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  375.276448][T21095]  should_failslab+0xc2/0x120
[  375.276472][T21095]  kmem_cache_alloc_noprof+0x83/0x780
[  375.276495][T21095]  ? skb_clone+0x190/0x400
[  375.276522][T21095]  ? skb_clone+0x190/0x400
[  375.276542][T21095]  skb_clone+0x190/0x400
[  375.276564][T21095]  netlink_deliver_tap+0xaed/0xcc0
[  375.276594][T21095]  netlink_unicast+0x70c/0x870
[  375.276623][T21095]  ? __pfx_netlink_unicast+0x10/0x10
[  375.276649][T21095]  ? genl_rcv_msg+0x4be/0x800
[  375.276670][T21095]  netlink_ack+0x655/0xb80
[  375.276702][T21095]  netlink_rcv_skb+0x333/0x420
[  375.276725][T21095]  ? __pfx_genl_rcv_msg+0x10/0x10
[  375.276743][T21095]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  375.276777][T21095]  ? netlink_deliver_tap+0x1ae/0xcc0
[  375.276805][T21095]  genl_rcv+0x28/0x40
[  375.276829][T21095]  netlink_unicast+0x5aa/0x870
[  375.276857][T21095]  ? __pfx_netlink_unicast+0x10/0x10
[  375.276891][T21095]  netlink_sendmsg+0x8b0/0xda0
[  375.276919][T21095]  ? __pfx_netlink_sendmsg+0x10/0x10
[  375.276941][T21095]  ? __might_fault+0x30/0x140
[  375.277000][T21095]  ____sys_sendmsg+0xa54/0xc30
[  375.277039][T21095]  ? __pfx_____sys_sendmsg+0x10/0x10
[  375.277079][T21095]  ___sys_sendmsg+0x190/0x1e0
[  375.277101][T21095]  ? __pfx____sys_sendmsg+0x10/0x10
[  375.277127][T21095]  ? find_held_lock+0x2b/0x80
[  375.277166][T21095]  __sys_sendmsg+0x170/0x220
[  375.277189][T21095]  ? __pfx___sys_sendmsg+0x10/0x10
[  375.277222][T21095]  ? fput+0x79/0x100
[  375.277249][T21095]  do_syscall_64+0xc9/0xf80
[  375.277271][T21095]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  375.277288][T21095] RIP: 0033:0x7f0dd7b9acb9
[  375.277304][T21095] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  375.277320][T21095] RSP: 002b:00007f0dd8a80028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  375.277339][T21095] RAX: ffffffffffffffda RBX: 00007f0dd7e15fa0 RCX: 00007f0dd7b9acb9
[  375.277351][T21095] RDX: 0000000000000000 RSI: 00002000000006c0 RDI: 0000000000000003
[  375.277362][T21095] RBP: 00007f0dd8a80090 R08: 0000000000000000 R09: 0000000000000000
[  375.277372][T21095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  375.277382][T21095] R13: 00007f0dd7e16038 R14: 00007f0dd7e15fa0 R15: 00007fff4f770c88
[  375.277408][T21095]  </TASK>
[  375.613592][T21114] sp0: Synchronizing with TNC
[  375.737427][T21128] FAULT_INJECTION: forcing a failure.
[  375.737427][T21128] name failslab, interval 1, probability 0, space 0, times 0
[  375.743431][T21128] CPU: 2 UID: 0 PID: 21128 Comm: syz.5.5724 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  375.743458][T21128] Tainted: [L]=SOFTLOCKUP
[  375.743464][T21128] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  375.743473][T21128] Call Trace:
[  375.743479][T21128]  <TASK>
[  375.743485][T21128]  dump_stack_lvl+0x100/0x190
[  375.743538][T21128]  should_fail_ex.cold+0x5/0xa
[  375.743558][T21128]  should_failslab+0xc2/0x120
[  375.743580][T21128]  __kmalloc_cache_noprof+0x80/0x810
[  375.743598][T21128]  ? security_load_policy+0xcb/0x1090
[  375.743625][T21128]  ? security_load_policy+0xcb/0x1090
[  375.743647][T21128]  security_load_policy+0xcb/0x1090
[  375.743669][T21128]  ? irqentry_exit+0x180/0x670
[  375.743689][T21128]  ? irqentry_exit+0x180/0x670
[  375.743708][T21128]  ? __pfx_security_load_policy+0x10/0x10
[  375.743738][T21128]  ? _copy_from_user+0x93/0xd0
[  375.743763][T21128]  sel_write_load+0x2ab/0x560
[  375.743787][T21128]  ? __pfx_sel_write_load+0x10/0x10
[  375.743809][T21128]  vfs_write+0x2aa/0x1070
[  375.743822][T21128]  ? __pfx_sel_write_load+0x10/0x10
[  375.743840][T21128]  ? __pfx_vfs_write+0x10/0x10
[  375.743851][T21128]  ? find_held_lock+0x2b/0x80
[  375.743867][T21128]  ? __fget_files+0x215/0x3d0
[  375.743882][T21128]  ? __fget_files+0x21f/0x3d0
[  375.743900][T21128]  ksys_write+0x12a/0x250
[  375.743912][T21128]  ? __pfx_ksys_write+0x10/0x10
[  375.743928][T21128]  do_syscall_64+0xc9/0xf80
[  375.743941][T21128]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  375.743952][T21128] RIP: 0033:0x7f0dd7b9acb9
[  375.743964][T21128] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  375.743976][T21128] RSP: 002b:00007f0dd8a80028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  375.743987][T21128] RAX: ffffffffffffffda RBX: 00007f0dd7e15fa0 RCX: 00007f0dd7b9acb9
[  375.743994][T21128] RDX: 0000000000002000 RSI: 0000200000000000 RDI: 0000000000000003
[  375.744001][T21128] RBP: 00007f0dd8a80090 R08: 0000000000000000 R09: 0000000000000000
[  375.744007][T21128] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  375.744014][T21128] R13: 00007f0dd7e16038 R14: 00007f0dd7e15fa0 R15: 00007fff4f770c88
[  375.744028][T21128]  </TASK>
[  375.744034][T21128] SELinux: failed to load policy
[  375.873522][T21140] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5729'.
[  375.877155][T21140] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5729'.
[  375.912905][T21140] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5729'.
[  375.915842][T21140] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5729'.
[  375.949100][ T6022] usb 9-1: new high-speed USB device number 39 using dummy_hcd
[  376.088714][   T10] usb 7-1: new high-speed USB device number 31 using dummy_hcd
[  376.118831][ T6022] usb 9-1: Using ep0 maxpacket: 16
[  376.123291][ T6022] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  376.129026][ T6022] usb 9-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  376.132576][ T6022] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  376.135201][ T6022] usb 9-1: Product: syz
[  376.136758][ T6022] usb 9-1: Manufacturer: syz
[  376.139866][ T6022] usb 9-1: SerialNumber: syz
[  376.147077][ T6022] usb 9-1: config 0 descriptor??
[  376.152520][ T6022] em28xx 9-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  376.156375][ T6022] em28xx 9-1:0.0: DVB interface 0 found: bulk
[  376.236262][T21162] overlay: Unknown parameter 'dont_measure'
[  376.249722][   T10] usb 7-1: Using ep0 maxpacket: 16
[  376.253550][   T10] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  376.260679][   T10] usb 7-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  376.269005][   T10] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  376.278711][   T10] usb 7-1: Product: syz
[  376.280129][   T10] usb 7-1: Manufacturer: syz
[  376.281681][   T10] usb 7-1: SerialNumber: syz
[  376.289641][   T10] usb 7-1: config 0 descriptor??
[  376.294082][   T10] em28xx 7-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  376.297031][   T10] em28xx 7-1:0.0: DVB interface 0 found: bulk
[  376.756218][ T6022] em28xx 9-1:0.0: unknown em28xx chip ID (0)
[  376.807972][T21184] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5750'.
[  376.850861][T21186] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5751'.
[  376.854384][T21186] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5751'.
[  376.857821][T21186] netlink: 'syz.5.5751': attribute type 18 has an invalid length.
[  376.858896][ T5939] Bluetooth: hci0: command 0x1407 tx timeout
[  376.861210][T21186] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5751'.
[  376.895536][   T10] em28xx 7-1:0.0: unknown em28xx chip ID (0)
[  376.936070][T21190] SELinux:  policydb magic number 0xf97cff05 does not match expected magic number 0xf97cff8c
[  376.943223][T21190] SELinux: failed to load policy
[  376.986716][T21194] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5755'.
[  377.165019][ T6022] em28xx 9-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  377.168321][ T6022] em28xx 9-1:0.0: board has no eeprom
[  377.209334][   T40] kauditd_printk_skb: 198 callbacks suppressed
[  377.209353][   T40] audit: type=1400 audit(2000524512.989:25441): avc:  denied  { create } for  pid=21211 comm="syz.5.5763" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  377.220424][   T40] audit: type=1400 audit(2000524512.999:25442): avc:  denied  { prog_load } for  pid=21211 comm="syz.5.5763" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  377.228264][   T40] audit: type=1400 audit(2000524512.999:25443): avc:  denied  { bpf } for  pid=21211 comm="syz.5.5763" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  377.228745][ T6022] em28xx 9-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  377.240159][ T6022] em28xx 9-1:0.0: dvb set to bulk mode.
[  377.242182][    T9] em28xx 9-1:0.0: Binding DVB extension
[  377.247109][ T6022] usb 9-1: USB disconnect, device number 39
[  377.251379][ T6022] em28xx 9-1:0.0: Disconnecting em28xx
[  377.256935][   T40] audit: type=1400 audit(2000524513.029:25444): avc:  denied  { execmem } for  pid=21215 comm="syz.0.5764" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  377.278753][   T40] audit: type=1400 audit(2000524513.049:25445): avc:  denied  { getopt } for  pid=21211 comm="syz.5.5763" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  377.287689][    T9] em28xx 9-1:0.0: Registering input extension
[  377.289381][   T40] audit: type=1400 audit(2000524513.049:25446): avc:  denied  { setopt } for  pid=21211 comm="syz.5.5763" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  377.291443][ T6022] em28xx 9-1:0.0: Closing input extension
[  377.298145][   T40] audit: type=1400 audit(2000524513.049:25447): avc:  denied  { read } for  pid=21215 comm="syz.0.5764" name="binder0" dev="binder" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  377.313664][   T40] audit: type=1400 audit(2000524513.049:25448): avc:  denied  { open } for  pid=21215 comm="syz.0.5764" path="/dev/binderfs/binder0" dev="binder" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  377.314623][   T10] em28xx 7-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  377.324218][   T40] audit: type=1400 audit(2000524513.059:25449): avc:  denied  { ioctl } for  pid=21215 comm="syz.0.5764" path="/dev/binderfs/binder0" dev="binder" ino=10 ioctlcmd=0x620d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  377.328475][   T10] em28xx 7-1:0.0: board has no eeprom
[  377.340258][   T40] audit: type=1400 audit(2000524513.059:25450): avc:  denied  { set_context_mgr } for  pid=21215 comm="syz.0.5764" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  377.350050][ T6022] em28xx 9-1:0.0: Freeing device
[  377.408690][   T10] em28xx 7-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  377.411966][   T10] em28xx 7-1:0.0: dvb set to bulk mode.
[  377.413894][    T9] em28xx 7-1:0.0: Binding DVB extension
[  377.425990][   T10] usb 7-1: USB disconnect, device number 31
[  377.433418][   T10] em28xx 7-1:0.0: Disconnecting em28xx
[  377.436927][T21227] dlm: plock device version mismatch: kernel (1.2.0), user (24.0.0)
[  377.441565][    T9] em28xx 7-1:0.0: Registering input extension
[  377.444310][   T10] em28xx 7-1:0.0: Closing input extension
[  377.461244][   T10] em28xx 7-1:0.0: Freeing device
[  377.586980][T21237] FAULT_INJECTION: forcing a failure.
[  377.586980][T21237] name failslab, interval 1, probability 0, space 0, times 0
[  377.592342][T21237] CPU: 1 UID: 0 PID: 21237 Comm: syz.5.5773 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  377.592370][T21237] Tainted: [L]=SOFTLOCKUP
[  377.592377][T21237] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  377.592389][T21237] Call Trace:
[  377.592395][T21237]  <TASK>
[  377.592403][T21237]  dump_stack_lvl+0x100/0x190
[  377.592430][T21237]  should_fail_ex.cold+0x5/0xa
[  377.592448][T21237]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  377.592476][T21237]  should_failslab+0xc2/0x120
[  377.592502][T21237]  kmem_cache_alloc_noprof+0x83/0x780
[  377.592523][T21237]  ? skb_clone+0x190/0x400
[  377.592553][T21237]  ? skb_clone+0x190/0x400
[  377.592573][T21237]  skb_clone+0x190/0x400
[  377.592596][T21237]  netlink_deliver_tap+0xaed/0xcc0
[  377.592626][T21237]  netlink_unicast+0x650/0x870
[  377.592655][T21237]  ? __pfx_netlink_unicast+0x10/0x10
[  377.592688][T21237]  netlink_sendmsg+0x8b0/0xda0
[  377.592719][T21237]  ? __pfx_netlink_sendmsg+0x10/0x10
[  377.592742][T21237]  ? __might_fault+0x30/0x140
[  377.592768][T21237]  ____sys_sendmsg+0xa54/0xc30
[  377.592799][T21237]  ? __pfx_____sys_sendmsg+0x10/0x10
[  377.592835][T21237]  ___sys_sendmsg+0x190/0x1e0
[  377.592855][T21237]  ? __pfx____sys_sendmsg+0x10/0x10
[  377.592886][T21237]  ? find_held_lock+0x2b/0x80
[  377.592923][T21237]  __sys_sendmsg+0x170/0x220
[  377.592967][T21237]  ? __pfx___sys_sendmsg+0x10/0x10
[  377.593010][T21237]  do_syscall_64+0xc9/0xf80
[  377.593032][T21237]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  377.593051][T21237] RIP: 0033:0x7f0dd7b9acb9
[  377.593068][T21237] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  377.593085][T21237] RSP: 002b:00007f0dd8a80028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  377.593105][T21237] RAX: ffffffffffffffda RBX: 00007f0dd7e15fa0 RCX: 00007f0dd7b9acb9
[  377.593117][T21237] RDX: 0000000000000080 RSI: 00002000000002c0 RDI: 0000000000000003
[  377.593128][T21237] RBP: 00007f0dd8a80090 R08: 0000000000000000 R09: 0000000000000000
[  377.593140][T21237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  377.593151][T21237] R13: 00007f0dd7e16038 R14: 00007f0dd7e15fa0 R15: 00007fff4f770c88
[  377.593176][T21237]  </TASK>
[  377.722229][T21244] netlink: 'syz.5.5776': attribute type 29 has an invalid length.
[  377.739331][  T845] hid-generic 0005:0C45:0C6E.002B: unknown main item tag 0x0
[  377.749676][  T845] hid-generic 0005:0C45:0C6E.002B: hidraw0: BLUETOOTH HID v0.09 Device [syz1] on aa:aa:aa:aa:aa:aa
[  377.763626][T21248] FAULT_INJECTION: forcing a failure.
[  377.763626][T21248] name failslab, interval 1, probability 0, space 0, times 0
[  377.769117][T21248] CPU: 2 UID: 0 PID: 21248 Comm: syz.4.5777 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  377.769146][T21248] Tainted: [L]=SOFTLOCKUP
[  377.769153][T21248] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  377.769163][T21248] Call Trace:
[  377.769169][T21248]  <TASK>
[  377.769177][T21248]  dump_stack_lvl+0x100/0x190
[  377.769206][T21248]  should_fail_ex.cold+0x5/0xa
[  377.769232][T21248]  should_failslab+0xc2/0x120
[  377.769256][T21248]  __kmalloc_cache_noprof+0x80/0x810
[  377.769274][T21248]  ? virtio_gpu_plane_duplicate_state+0x72/0xd0
[  377.769293][T21248]  ? ww_mutex_lock_interruptible+0x37/0x160
[  377.769318][T21248]  ? virtio_gpu_plane_duplicate_state+0x72/0xd0
[  377.769338][T21248]  virtio_gpu_plane_duplicate_state+0x72/0xd0
[  377.769358][T21248]  drm_atomic_get_plane_state+0x279/0x760
[  377.769391][T21248]  drm_atomic_set_property+0x710/0x3bf0
[  377.769416][T21248]  ? __pfx_drm_atomic_set_property+0x10/0x10
[  377.769435][T21248]  ? __might_fault+0xc5/0x140
[  377.769453][T21248]  ? __might_fault+0xc5/0x140
[  377.769481][T21248]  drm_mode_atomic_ioctl+0x6c5/0x2680
[  377.769518][T21248]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  377.769537][T21248]  ? __lock_acquire+0x4a5/0x2630
[  377.769570][T21248]  ? drm_is_current_master+0x2c/0x40
[  377.769588][T21248]  ? drm_is_current_master+0x2c/0x40
[  377.769611][T21248]  ? do_raw_spin_unlock+0x145/0x1e0
[  377.769635][T21248]  drm_ioctl_kernel+0x1f3/0x3e0
[  377.769652][T21248]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  377.769673][T21248]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  377.769699][T21248]  drm_ioctl+0x5e6/0xc60
[  377.769719][T21248]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  377.769741][T21248]  ? __pfx_drm_ioctl+0x10/0x10
[  377.769769][T21248]  ? selinux_file_ioctl+0x139/0x290
[  377.769787][T21248]  ? selinux_file_ioctl+0xb4/0x290
[  377.769805][T21248]  ? __pfx_drm_ioctl+0x10/0x10
[  377.769821][T21248]  __x64_sys_ioctl+0x18e/0x210
[  377.769838][T21248]  do_syscall_64+0xc9/0xf80
[  377.769857][T21248]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  377.769873][T21248] RIP: 0033:0x7f3a9139acb9
[  377.769887][T21248] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  377.769902][T21248] RSP: 002b:00007f3a9227a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  377.769919][T21248] RAX: ffffffffffffffda RBX: 00007f3a91615fa0 RCX: 00007f3a9139acb9
[  377.769929][T21248] RDX: 0000200000000180 RSI: 00000000c03864bc RDI: 0000000000000013
[  377.769939][T21248] RBP: 00007f3a9227a090 R08: 0000000000000000 R09: 0000000000000000
[  377.769948][T21248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  377.769957][T21248] R13: 00007f3a91616038 R14: 00007f3a91615fa0 R15: 00007ffdf4cdc998
[  377.769979][T21248]  </TASK>
[  377.777784][T21244] netlink: 'syz.5.5776': attribute type 29 has an invalid length.
[  377.999855][T21262] FAULT_INJECTION: forcing a failure.
[  377.999855][T21262] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  378.005249][T21262] CPU: 3 UID: 0 PID: 21262 Comm: syz.5.5783 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  378.005278][T21262] Tainted: [L]=SOFTLOCKUP
[  378.005285][T21262] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  378.005296][T21262] Call Trace:
[  378.005303][T21262]  <TASK>
[  378.005311][T21262]  dump_stack_lvl+0x100/0x190
[  378.005340][T21262]  should_fail_ex.cold+0x5/0xa
[  378.005360][T21262]  _copy_from_user+0x2e/0xd0
[  378.005386][T21262]  input_event_from_user+0x123/0x310
[  378.005409][T21262]  ? __pfx_input_event_from_user+0x10/0x10
[  378.005429][T21262]  ? __pfx___might_resched+0x10/0x10
[  378.005450][T21262]  ? input_inject_event+0x1c9/0x3b0
[  378.005473][T21262]  evdev_write+0x342/0x610
[  378.005499][T21262]  ? __pfx_evdev_write+0x10/0x10
[  378.005520][T21262]  ? bpf_lsm_file_permission+0x9/0x10
[  378.005543][T21262]  ? security_file_permission+0x76/0x210
[  378.005565][T21262]  ? rw_verify_area+0xce/0x6d0
[  378.005584][T21262]  vfs_write+0x2aa/0x1070
[  378.005605][T21262]  ? __pfx_evdev_write+0x10/0x10
[  378.005627][T21262]  ? __pfx_vfs_write+0x10/0x10
[  378.005644][T21262]  ? find_held_lock+0x2b/0x80
[  378.005666][T21262]  ? __fget_files+0x215/0x3d0
[  378.005687][T21262]  ? __fget_files+0x215/0x3d0
[  378.005712][T21262]  ? __fget_files+0x21f/0x3d0
[  378.005740][T21262]  ksys_write+0x1f8/0x250
[  378.005759][T21262]  ? __pfx_ksys_write+0x10/0x10
[  378.005785][T21262]  do_syscall_64+0xc9/0xf80
[  378.005807][T21262]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  378.005826][T21262] RIP: 0033:0x7f0dd7b9acb9
[  378.005841][T21262] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  378.005858][T21262] RSP: 002b:00007f0dd8a80028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  378.005876][T21262] RAX: ffffffffffffffda RBX: 00007f0dd7e15fa0 RCX: 00007f0dd7b9acb9
[  378.005887][T21262] RDX: 000000000000ff0f RSI: 0000200000000040 RDI: 0000000000000003
[  378.005898][T21262] RBP: 00007f0dd8a80090 R08: 0000000000000000 R09: 0000000000000000
[  378.005909][T21262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  378.005919][T21262] R13: 00007f0dd7e16038 R14: 00007f0dd7e15fa0 R15: 00007fff4f770c88
[  378.005944][T21262]  </TASK>
[  378.278820][   T10] usb 7-1: new high-speed USB device number 32 using dummy_hcd
[  378.448740][   T10] usb 7-1: Using ep0 maxpacket: 16
[  378.452759][   T10] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  378.459543][   T10] usb 7-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  378.463522][   T10] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  378.467255][   T10] usb 7-1: Product: syz
[  378.469596][   T10] usb 7-1: Manufacturer: syz
[  378.471725][   T10] usb 7-1: SerialNumber: syz
[  378.477554][   T10] usb 7-1: config 0 descriptor??
[  378.485855][   T10] em28xx 7-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  378.490021][   T10] em28xx 7-1:0.0: DVB interface 0 found: bulk
[  379.092188][   T10] em28xx 7-1:0.0: unknown em28xx chip ID (0)
[  379.498757][   T10] em28xx 7-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  379.501870][   T10] em28xx 7-1:0.0: board has no eeprom
[  379.570119][   T10] em28xx 7-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  379.573404][   T10] em28xx 7-1:0.0: dvb set to bulk mode.
[  379.577320][ T6022] em28xx 7-1:0.0: Binding DVB extension
[  379.586943][   T10] usb 7-1: USB disconnect, device number 32
[  379.591673][   T10] em28xx 7-1:0.0: Disconnecting em28xx
[  379.616050][ T6022] em28xx 7-1:0.0: Registering input extension
[  379.620671][   T10] em28xx 7-1:0.0: Closing input extension
[  379.634890][   T10] em28xx 7-1:0.0: Freeing device
[  379.738717][   T64] Bluetooth: hci0: command 0x1407 tx timeout
[  379.739447][ T5939] Bluetooth: hci0: Opcode 0x1407 failed: -110
[  379.827965][T21340] netlink: 'syz.4.5817': attribute type 9 has an invalid length.
[  380.388350][T21376] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=49936 sclass=netlink_route_socket pid=21376 comm=syz.5.5834
[  380.512681][T21389] futex_wake_op: syz.0.5838 tries to shift op by -1; fix this program
[  380.528139][T21389] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  380.588837][  T845] usb 7-1: new high-speed USB device number 33 using dummy_hcd
[  380.602534][T21397] __nla_validate_parse: 19 callbacks suppressed
[  380.602552][T21397] netlink: 36 bytes leftover after parsing attributes in process `syz.0.5843'.
[  380.610016][T21397] netlink: 36 bytes leftover after parsing attributes in process `syz.0.5843'.
[  380.748667][  T845] usb 7-1: Using ep0 maxpacket: 16
[  380.754600][  T845] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  380.766335][  T845] usb 7-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  380.770621][  T845] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  380.773150][  T845] usb 7-1: Product: syz
[  380.773162][  T845] usb 7-1: Manufacturer: syz
[  380.773171][  T845] usb 7-1: SerialNumber: syz
[  380.775041][  T845] usb 7-1: config 0 descriptor??
[  380.777853][  T845] em28xx 7-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  380.777872][  T845] em28xx 7-1:0.0: DVB interface 0 found: bulk
[  380.807532][T21402] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5845'.
[  381.180081][T21417] netlink: 36 bytes leftover after parsing attributes in process `syz.5.5852'.
[  381.183957][T21417] netlink: 36 bytes leftover after parsing attributes in process `syz.5.5852'.
[  381.211036][T21419] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5853'.
[  381.214076][T21419] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5853'.
[  381.287324][T21427] netlink: 'syz.4.5856': attribute type 10 has an invalid length.
[  381.290896][T21427] netlink: 40 bytes leftover after parsing attributes in process `syz.4.5856'.
[  381.307485][T21427] team0: Port device geneve0 added
[  381.381638][  T845] em28xx 7-1:0.0: unknown em28xx chip ID (0)
[  381.719316][T21465] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5873'.
[  381.796452][  T845] em28xx 7-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  381.800329][  T845] em28xx 7-1:0.0: board has no eeprom
[  381.858654][  T845] em28xx 7-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  381.862133][  T845] em28xx 7-1:0.0: dvb set to bulk mode.
[  381.875170][ T6023] em28xx 7-1:0.0: Binding DVB extension
[  381.884994][  T845] usb 7-1: USB disconnect, device number 33
[  381.892526][  T845] em28xx 7-1:0.0: Disconnecting em28xx
[  381.918072][ T6023] em28xx 7-1:0.0: Registering input extension
[  381.918257][  T845] em28xx 7-1:0.0: Closing input extension
[  381.927704][  T845] em28xx 7-1:0.0: Freeing device
[  381.985299][T11356] hid-generic 0005:0B57:0C6E.002C: unknown main item tag 0x0
[  381.998765][T11356] hid-generic 0005:0B57:0C6E.002C: hidraw0: BLUETOOTH HID v0.09 Device [syz1] on aa:aa:aa:aa:aa:aa
[  382.108963][T21505] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5890'.
[  382.258865][   T40] kauditd_printk_skb: 233 callbacks suppressed
[  382.258880][   T40] audit: type=1400 audit(2000524518.039:25684): avc:  denied  { ioctl } for  pid=21513 comm="syz.5.5894" path="socket:[114384]" dev="sockfs" ino=114384 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  382.339862][   T40] audit: type=1400 audit(2000524518.119:25685): avc:  denied  { name_bind } for  pid=21515 comm="syz.2.5895" src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  382.347057][   T40] audit: type=1400 audit(2000524518.119:25686): avc:  denied  { create } for  pid=21515 comm="syz.2.5895" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  382.353997][   T40] audit: type=1400 audit(2000524518.119:25687): avc:  denied  { write } for  pid=21515 comm="syz.2.5895" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  382.386090][   T40] audit: type=1400 audit(2000524518.159:25688): avc:  denied  { perfmon } for  pid=21517 comm="syz.5.5896" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  382.400386][   T40] audit: type=1400 audit(2000524518.179:25689): avc:  denied  { getopt } for  pid=21519 comm="syz.2.5897" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  382.402841][T21519] delete_channel: no stack
[  382.406800][   T40] audit: type=1400 audit(2000524518.179:25690): avc:  denied  { create } for  pid=21519 comm="syz.2.5897" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  382.414931][   T40] audit: type=1400 audit(2000524518.179:25691): avc:  denied  { setopt } for  pid=21519 comm="syz.2.5897" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  382.445150][   T40] audit: type=1400 audit(2000524518.219:25692): avc:  denied  { create } for  pid=21523 comm="syz.2.5899" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  382.452062][   T40] audit: type=1400 audit(2000524518.219:25693): avc:  denied  { connect } for  pid=21523 comm="syz.2.5899" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  382.576328][T21539] netlink: 'syz.2.5906': attribute type 29 has an invalid length.
[  382.601637][T21539] netlink: 'syz.2.5906': attribute type 29 has an invalid length.
[  382.779056][T11356] usb 9-1: new high-speed USB device number 40 using dummy_hcd
[  382.949089][T11356] usb 9-1: Using ep0 maxpacket: 16
[  382.952418][T11356] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  382.957700][T11356] usb 9-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  382.962136][T11356] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  382.964654][T11356] usb 9-1: Product: syz
[  382.966116][T11356] usb 9-1: Manufacturer: syz
[  382.967716][T11356] usb 9-1: SerialNumber: syz
[  382.971459][T11356] usb 9-1: config 0 descriptor??
[  382.975377][T11356] em28xx 9-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  382.978429][T11356] em28xx 9-1:0.0: DVB interface 0 found: bulk
[  383.283030][T21592] FAULT_INJECTION: forcing a failure.
[  383.283030][T21592] name failslab, interval 1, probability 0, space 0, times 0
[  383.287333][T21592] CPU: 3 UID: 0 PID: 21592 Comm: syz.5.5929 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  383.287352][T21592] Tainted: [L]=SOFTLOCKUP
[  383.287356][T21592] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  383.287364][T21592] Call Trace:
[  383.287368][T21592]  <TASK>
[  383.287373][T21592]  dump_stack_lvl+0x100/0x190
[  383.287407][T21592]  should_fail_ex.cold+0x5/0xa
[  383.287419][T21592]  should_failslab+0xc2/0x120
[  383.287434][T21592]  ? drm_atomic_state_init+0x183/0x540
[  383.287453][T21592]  __kmalloc_noprof+0xf6/0x9c0
[  383.287467][T21592]  ? drm_atomic_state_init+0x183/0x540
[  383.287478][T21592]  drm_atomic_state_init+0x183/0x540
[  383.287489][T21592]  ? kasan_save_track+0x14/0x30
[  383.287504][T21592]  drm_atomic_state_alloc+0xd3/0x120
[  383.287517][T21592]  drm_mode_atomic_ioctl+0x395/0x2680
[  383.287532][T21592]  ? find_held_lock+0x2b/0x80
[  383.287552][T21592]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  383.287565][T21592]  ? __lock_acquire+0x4a5/0x2630
[  383.287583][T21592]  ? drm_is_current_master+0x2c/0x40
[  383.287595][T21592]  ? drm_is_current_master+0x2c/0x40
[  383.287609][T21592]  ? do_raw_spin_unlock+0x145/0x1e0
[  383.287624][T21592]  drm_ioctl_kernel+0x1f3/0x3e0
[  383.287635][T21592]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  383.287649][T21592]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  383.287663][T21592]  drm_ioctl+0x5e6/0xc60
[  383.287676][T21592]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  383.287689][T21592]  ? __pfx_drm_ioctl+0x10/0x10
[  383.287706][T21592]  ? selinux_file_ioctl+0x139/0x290
[  383.287717][T21592]  ? selinux_file_ioctl+0xb4/0x290
[  383.287729][T21592]  ? __pfx_drm_ioctl+0x10/0x10
[  383.287740][T21592]  __x64_sys_ioctl+0x18e/0x210
[  383.287752][T21592]  do_syscall_64+0xc9/0xf80
[  383.287771][T21592]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  383.287782][T21592] RIP: 0033:0x7f0dd7b9acb9
[  383.287792][T21592] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  383.287802][T21592] RSP: 002b:00007f0dd8a80028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  383.287837][T21592] RAX: ffffffffffffffda RBX: 00007f0dd7e15fa0 RCX: 00007f0dd7b9acb9
[  383.287847][T21592] RDX: 0000200000000180 RSI: 00000000c03864bc RDI: 0000000000000011
[  383.287856][T21592] RBP: 00007f0dd8a80090 R08: 0000000000000000 R09: 0000000000000000
[  383.287866][T21592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  383.287874][T21592] R13: 00007f0dd7e16038 R14: 00007f0dd7e15fa0 R15: 00007fff4f770c88
[  383.287895][T21592]  </TASK>
[  383.543656][T21610] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[  383.579617][T11356] em28xx 9-1:0.0: unknown em28xx chip ID (0)
[  383.775625][T21636] netlink: 'syz.0.5950': attribute type 9 has an invalid length.
[  383.779450][T21636] netlink: 'syz.0.5950': attribute type 6 has an invalid length.
[  383.786096][T21637] Sensor A: =================  START STATUS  =================
[  383.789337][T21636] Sensor A: =================  START STATUS  =================
[  383.792387][T21636] Sensor A: Test Pattern: 75% Colorbar
[  383.795553][T21636] Sensor A: Show Information: All
[  383.799309][T21636] Sensor A: Vertical Flip: false
[  383.801500][T21636] Sensor A: Horizontal Flip: false
[  383.803529][T21636] Sensor A: Brightness: 128
[  383.805306][T21636] Sensor A: Contrast: 128
[  383.806976][T21636] Sensor A: Hue: 127
[  383.808467][T21636] Sensor A: Saturation: 128
[  383.810657][T21636] Sensor A: ==================  END STATUS  ==================
[  383.810685][T21637] Sensor A: Test Pattern: 75% Colorbar
[  383.815889][T21637] Sensor A: Show Information: All
[  383.817988][T21637] Sensor A: Vertical Flip: false
[  383.820246][T21637] Sensor A: Horizontal Flip: false
[  383.822440][T21637] Sensor A: Brightness: 128
[  383.824390][T21637] Sensor A: Contrast: 128
[  383.826257][T21637] Sensor A: Hue: 127
[  383.827932][T21637] Sensor A: Saturation: 128
[  383.829822][T21637] Sensor A: ==================  END STATUS  ==================
[  383.983592][ T1425] ieee802154 phy0 wpan0: encryption failed: -22
[  383.992988][T11356] em28xx 9-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  383.996410][T11356] em28xx 9-1:0.0: board has no eeprom
[  384.058853][T11356] em28xx 9-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  384.062388][T11356] em28xx 9-1:0.0: dvb set to bulk mode.
[  384.064772][   T54] em28xx 9-1:0.0: Binding DVB extension
[  384.077740][T11356] usb 9-1: USB disconnect, device number 40
[  384.085526][T21668] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=21668 comm=syz.0.5963
[  384.091494][T11356] em28xx 9-1:0.0: Disconnecting em28xx
[  384.093656][T21668] netlink: 'syz.0.5963': attribute type 29 has an invalid length.
[  384.100996][   T54] em28xx 9-1:0.0: Registering input extension
[  384.104094][T11356] em28xx 9-1:0.0: Closing input extension
[  384.116864][T11356] em28xx 9-1:0.0: Freeing device
[  384.126332][   T10] hid-generic 0005:0C45:0C6E.002D: unknown main item tag 0x0
[  384.137349][   T10] hid-generic 0005:0C45:0C6E.002D: hidraw0: BLUETOOTH HID v0.09 Device [syz1] on aa:aa:aa:aa:aa:aa
[  384.149708][T21668] netlink: 'syz.0.5963': attribute type 29 has an invalid length.
[  384.228693][T21677] FAULT_INJECTION: forcing a failure.
[  384.228693][T21677] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  384.234294][T21677] CPU: 2 UID: 0 PID: 21677 Comm: syz.5.5965 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  384.234323][T21677] Tainted: [L]=SOFTLOCKUP
[  384.234330][T21677] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  384.234341][T21677] Call Trace:
[  384.234349][T21677]  <TASK>
[  384.234357][T21677]  dump_stack_lvl+0x100/0x190
[  384.234386][T21677]  should_fail_ex.cold+0x5/0xa
[  384.234407][T21677]  _copy_to_user+0x32/0xd0
[  384.234433][T21677]  simple_read_from_buffer+0xcb/0x170
[  384.234457][T21677]  proc_fail_nth_read+0x1af/0x230
[  384.234483][T21677]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  384.234508][T21677]  ? rw_verify_area+0xce/0x6d0
[  384.234525][T21677]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  384.234549][T21677]  vfs_read+0x1e4/0xb30
[  384.234571][T21677]  ? __pfx_vfs_read+0x10/0x10
[  384.234588][T21677]  ? find_held_lock+0x2b/0x80
[  384.234612][T21677]  ? __fget_files+0x215/0x3d0
[  384.234637][T21677]  ? __fget_files+0x21f/0x3d0
[  384.234665][T21677]  ksys_read+0x12a/0x250
[  384.234684][T21677]  ? __pfx_ksys_read+0x10/0x10
[  384.234705][T21677]  ? fput+0x79/0x100
[  384.234731][T21677]  do_syscall_64+0xc9/0xf80
[  384.234752][T21677]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  384.234771][T21677] RIP: 0033:0x7f0dd7b5b58e
[  384.234786][T21677] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  384.234803][T21677] RSP: 002b:00007f0dd8a7ffe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  384.234821][T21677] RAX: ffffffffffffffda RBX: 00007f0dd8a806c0 RCX: 00007f0dd7b5b58e
[  384.234832][T21677] RDX: 000000000000000f RSI: 00007f0dd8a800a0 RDI: 0000000000000003
[  384.234843][T21677] RBP: 00007f0dd8a80090 R08: 0000000000000000 R09: 0000000000000000
[  384.234854][T21677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  384.234864][T21677] R13: 00007f0dd7e16038 R14: 00007f0dd7e15fa0 R15: 00007fff4f770c88
[  384.234890][T21677]  </TASK>
[  384.497897][T21697] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=21697 comm=syz.5.5975
[  384.502457][T21697] netlink: 'syz.5.5975': attribute type 29 has an invalid length.
[  384.530063][T21697] netlink: 'syz.5.5975': attribute type 29 has an invalid length.
[  384.620170][ T5939] Bluetooth: hci0: command 0x1407 tx timeout
[  384.625263][   T64] Bluetooth: hci0: Opcode 0x1407 failed: -110
[  384.730459][T21721] FAULT_INJECTION: forcing a failure.
[  384.730459][T21721] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  384.734993][T21721] CPU: 3 UID: 0 PID: 21721 Comm: syz.5.5987 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  384.735013][T21721] Tainted: [L]=SOFTLOCKUP
[  384.735017][T21721] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  384.735024][T21721] Call Trace:
[  384.735029][T21721]  <TASK>
[  384.735034][T21721]  dump_stack_lvl+0x100/0x190
[  384.735053][T21721]  should_fail_ex.cold+0x5/0xa
[  384.735065][T21721]  _copy_from_user+0x2e/0xd0
[  384.735081][T21721]  move_addr_to_kernel+0x65/0x170
[  384.735093][T21721]  copy_msghdr_from_user+0x417/0x4f0
[  384.735105][T21721]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  384.735118][T21721]  ? _kstrtoull+0x13c/0x1f0
[  384.735127][T21721]  ? __pfx__kstrtoull+0x10/0x10
[  384.735140][T21721]  ___sys_sendmsg+0x106/0x1e0
[  384.735151][T21721]  ? __pfx____sys_sendmsg+0x10/0x10
[  384.735182][T21721]  __sys_sendmmsg+0x205/0x430
[  384.735199][T21721]  ? __pfx___sys_sendmmsg+0x10/0x10
[  384.735217][T21721]  ? __fget_files+0x215/0x3d0
[  384.735231][T21721]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  384.735261][T21721]  ? fput+0x79/0x100
[  384.735277][T21721]  ? ksys_write+0x1ac/0x250
[  384.735289][T21721]  ? __pfx_ksys_write+0x10/0x10
[  384.735303][T21721]  __x64_sys_sendmmsg+0x9c/0x100
[  384.735318][T21721]  ? lockdep_hardirqs_on+0x78/0x100
[  384.735330][T21721]  do_syscall_64+0xc9/0xf80
[  384.735342][T21721]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  384.735354][T21721] RIP: 0033:0x7f0dd7b9acb9
[  384.735364][T21721] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  384.735375][T21721] RSP: 002b:00007f0dd8a80028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  384.735386][T21721] RAX: ffffffffffffffda RBX: 00007f0dd7e15fa0 RCX: 00007f0dd7b9acb9
[  384.735393][T21721] RDX: 0000000000000001 RSI: 0000200000004980 RDI: 0000000000000003
[  384.735400][T21721] RBP: 00007f0dd8a80090 R08: 0000000000000000 R09: 0000000000000000
[  384.735406][T21721] R10: 0000000020008000 R11: 0000000000000246 R12: 0000000000000001
[  384.735413][T21721] R13: 00007f0dd7e16038 R14: 00007f0dd7e15fa0 R15: 00007fff4f770c88
[  384.735427][T21721]  </TASK>
[  384.763935][T21727] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=21727 comm=syz.0.5990
[  384.785791][T21728] cgroup: Unknown subsys name 'cpuset'
[  384.798157][T21727] netlink: 'syz.0.5990': attribute type 29 has an invalid length.
[  384.798864][T21725] cgroup: Unknown subsys name 'cpuset'
[  384.938727][ T6023] usb 9-1: new high-speed USB device number 41 using dummy_hcd
[  385.100074][ T6023] usb 9-1: Using ep0 maxpacket: 16
[  385.103131][ T6023] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  385.107820][ T6023] usb 9-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  385.111191][ T6023] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  385.113780][ T6023] usb 9-1: Product: syz
[  385.115123][ T6023] usb 9-1: Manufacturer: syz
[  385.116739][ T6023] usb 9-1: SerialNumber: syz
[  385.122344][ T6023] usb 9-1: config 0 descriptor??
[  385.129898][ T6023] em28xx 9-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  385.132785][ T6023] em28xx 9-1:0.0: DVB interface 0 found: bulk
[  385.195630][T21739] lo speed is unknown, defaulting to 1000
[  385.759201][ T6023] em28xx 9-1:0.0: unknown em28xx chip ID (0)
[  385.832614][T21762] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=21762 comm=syz.5.6003
[  385.843849][ T5517] hid-generic 0005:0C45:0C6E.002E: unknown main item tag 0x0
[  385.856589][ T5517] hid-generic 0005:0C45:0C6E.002E: hidraw0: BLUETOOTH HID v0.09 Device [syz1] on aa:aa:aa:aa:aa:aa
[  385.947069][T21768] FAULT_INJECTION: forcing a failure.
[  385.947069][T21768] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  385.952756][T21768] CPU: 0 UID: 0 PID: 21768 Comm: syz.2.6005 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  385.952783][T21768] Tainted: [L]=SOFTLOCKUP
[  385.952789][T21768] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  385.952799][T21768] Call Trace:
[  385.952805][T21768]  <TASK>
[  385.952812][T21768]  dump_stack_lvl+0x100/0x190
[  385.952840][T21768]  should_fail_ex.cold+0x5/0xa
[  385.952859][T21768]  _copy_from_user+0x2e/0xd0
[  385.952913][T21768]  do_tcp_setsockopt+0x73e/0x2ac0
[  385.952953][T21768]  ? __pfx_do_tcp_setsockopt+0x10/0x10
[  385.952973][T21768]  ? proc_fail_nth_write+0x9f/0x220
[  385.953002][T21768]  ? __pfx_sock_has_perm+0x10/0x10
[  385.953028][T21768]  ? selinux_netlbl_socket_setsockopt+0x134/0x470
[  385.953049][T21768]  ? __pfx_selinux_netlbl_socket_setsockopt+0x10/0x10
[  385.953074][T21768]  ? find_held_lock+0x2b/0x80
[  385.953096][T21768]  ? __fget_files+0x215/0x3d0
[  385.953121][T21768]  tcp_setsockopt+0xe2/0x100
[  385.953140][T21768]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  385.953168][T21768]  do_sock_setsockopt+0xf3/0x1d0
[  385.953195][T21768]  __sys_setsockopt+0x195/0x220
[  385.953222][T21768]  __x64_sys_setsockopt+0xbd/0x160
[  385.953241][T21768]  ? do_syscall_64+0x94/0xf80
[  385.953257][T21768]  ? lockdep_hardirqs_on+0x78/0x100
[  385.953272][T21768]  do_syscall_64+0xc9/0xf80
[  385.953289][T21768]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  385.953307][T21768] RIP: 0033:0x7f43d719acb9
[  385.953321][T21768] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  385.953338][T21768] RSP: 002b:00007f43d8082028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  385.953356][T21768] RAX: ffffffffffffffda RBX: 00007f43d7415fa0 RCX: 00007f43d719acb9
[  385.953367][T21768] RDX: 0000000000000013 RSI: 0000000000000006 RDI: 0000000000000003
[  385.953377][T21768] RBP: 00007f43d8082090 R08: 0000000000000004 R09: 0000000000000000
[  385.953387][T21768] R10: 00002000000001c0 R11: 0000000000000246 R12: 0000000000000001
[  385.953397][T21768] R13: 00007f43d7416038 R14: 00007f43d7415fa0 R15: 00007ffd0f7f2f48
[  385.953418][T21768]  </TASK>
[  386.141709][T21775] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  386.170528][ T6023] em28xx 9-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  386.173149][ T6023] em28xx 9-1:0.0: board has no eeprom
[  386.183735][T21775] batman_adv: batadv0: Removing interface: batadv_slave_0
[  386.229033][ T6023] em28xx 9-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  386.231608][ T6023] em28xx 9-1:0.0: dvb set to bulk mode.
[  386.233686][ T6003] em28xx 9-1:0.0: Binding DVB extension
[  386.246440][ T6023] usb 9-1: USB disconnect, device number 41
[  386.255033][ T6023] em28xx 9-1:0.0: Disconnecting em28xx
[  386.258884][ T6003] em28xx 9-1:0.0: Registering input extension
[  386.270458][ T6023] em28xx 9-1:0.0: Closing input extension
[  386.276967][ T6023] em28xx 9-1:0.0: Freeing device
[  386.573575][T21791] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=21791 comm=syz.2.6015
[  386.578097][T21791] validate_nla: 3 callbacks suppressed
[  386.578108][T21791] netlink: 'syz.2.6015': attribute type 29 has an invalid length.
[  386.600997][T21791] netlink: 'syz.2.6015': attribute type 29 has an invalid length.
[  386.698741][   T64] Bluetooth: hci0: Opcode 0x1407 failed: -110
[  386.701234][ T5939] Bluetooth: hci0: command 0x1407 tx timeout
[  386.703523][   T64] Bluetooth: hci0: Opcode 0x1407 failed: -110
[  386.752633][T21795] __nla_validate_parse: 4 callbacks suppressed
[  386.752651][T21795] netlink: 48 bytes leftover after parsing attributes in process `syz.2.6017'.
[  386.760057][T21795] netlink: 48 bytes leftover after parsing attributes in process `syz.2.6017'.
[  386.844657][T21803] macsec1: entered promiscuous mode
[  386.847046][T21803] macsec1: entered allmulticast mode
[  386.850572][T21803] veth1_macvtap: entered allmulticast mode
[  386.854348][T21803] veth1_macvtap: left allmulticast mode
[  387.029901][T21816] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=21816 comm=syz.4.6026
[  387.039265][T21816] netlink: 'syz.4.6026': attribute type 29 has an invalid length.
[  387.057618][ T6003] hid-generic 0005:0C45:0C6E.002F: unknown main item tag 0x0
[  387.073371][ T6003] hid-generic 0005:0C45:0C6E.002F: hidraw0: BLUETOOTH HID v0.09 Device [syz1] on aa:aa:aa:aa:aa:aa
[  387.083187][T21816] netlink: 'syz.4.6026': attribute type 29 has an invalid length.
[  387.112573][T21821] lo: entered allmulticast mode
[  387.160220][T21821] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6029'.
[  387.163895][T21820] lo: left allmulticast mode
[  387.301757][   T40] kauditd_printk_skb: 258 callbacks suppressed
[  387.301774][   T40] audit: type=1400 audit(2000524523.079:25950): avc:  denied  { create } for  pid=21835 comm="syz.5.6034" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  387.312752][   T40] audit: type=1400 audit(2000524523.089:25951): avc:  denied  { name_bind } for  pid=21835 comm="syz.5.6034" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  387.323943][T21843] sch_tbf: burst 32855 is lower than device lo mtu (65550) !
[  387.330412][   T40] audit: type=1400 audit(2000524523.089:25952): avc:  denied  { node_bind } for  pid=21835 comm="syz.5.6034" saddr=224.0.0.1 src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  387.357661][   T40] audit: type=1400 audit(2000524523.089:25953): avc:  denied  { create } for  pid=21835 comm="syz.5.6034" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  387.366275][   T40] audit: type=1400 audit(2000524523.089:25954): avc:  denied  { ioctl } for  pid=21835 comm="syz.5.6034" path="socket:[116959]" dev="sockfs" ino=116959 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  387.379713][   T40] audit: type=1400 audit(2000524523.159:25955): avc:  denied  { write } for  pid=21844 comm="syz.2.6039" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  387.380209][T21846] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6039'.
[  387.399270][   T40] audit: type=1400 audit(2000524523.169:25956): avc:  denied  { write } for  pid=21835 comm="syz.5.6034" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  387.405574][   T40] audit: type=1400 audit(2000524523.179:25957): avc:  denied  { create } for  pid=21835 comm="syz.5.6034" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  387.412852][   T40] audit: type=1400 audit(2000524523.179:25958): avc:  denied  { getopt } for  pid=21835 comm="syz.5.6034" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  387.419477][   T40] audit: type=1400 audit(2000524523.179:25959): avc:  denied  { setopt } for  pid=21835 comm="syz.5.6034" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  387.478467][T21856] futex_wake_op: syz.2.6044 tries to shift op by -1; fix this program
[  387.790201][T21856]  pmem0: [POWERTEC]
[  387.835846][T21871] FAULT_INJECTION: forcing a failure.
[  387.835846][T21871] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  387.841646][T21871] CPU: 2 UID: 0 PID: 21871 Comm: syz.4.6048 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  387.841675][T21871] Tainted: [L]=SOFTLOCKUP
[  387.841681][T21871] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  387.841692][T21871] Call Trace:
[  387.841699][T21871]  <TASK>
[  387.841707][T21871]  dump_stack_lvl+0x100/0x190
[  387.841736][T21871]  should_fail_ex.cold+0x5/0xa
[  387.841756][T21871]  _copy_to_user+0x32/0xd0
[  387.841782][T21871]  simple_read_from_buffer+0xcb/0x170
[  387.841804][T21871]  proc_fail_nth_read+0x1af/0x230
[  387.841830][T21871]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  387.841855][T21871]  ? rw_verify_area+0xce/0x6d0
[  387.841872][T21871]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  387.841896][T21871]  vfs_read+0x1e4/0xb30
[  387.841927][T21871]  ? __pfx_vfs_read+0x10/0x10
[  387.841944][T21871]  ? find_held_lock+0x2b/0x80
[  387.841968][T21871]  ? __fget_files+0x215/0x3d0
[  387.841994][T21871]  ? __fget_files+0x21f/0x3d0
[  387.842022][T21871]  ksys_read+0x12a/0x250
[  387.842040][T21871]  ? __pfx_ksys_read+0x10/0x10
[  387.842067][T21871]  do_syscall_64+0xc9/0xf80
[  387.842091][T21871]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  387.842110][T21871] RIP: 0033:0x7f3a9135b58e
[  387.842124][T21871] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  387.842141][T21871] RSP: 002b:00007f3a92279fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  387.842159][T21871] RAX: ffffffffffffffda RBX: 00007f3a9227a6c0 RCX: 00007f3a9135b58e
[  387.842171][T21871] RDX: 000000000000000f RSI: 00007f3a9227a0a0 RDI: 0000000000000004
[  387.842181][T21871] RBP: 00007f3a9227a090 R08: 0000000000000000 R09: 0000000000000000
[  387.842192][T21871] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  387.842202][T21871] R13: 00007f3a91616038 R14: 00007f3a91615fa0 R15: 00007ffdf4cdc998
[  387.842227][T21871]  </TASK>
[  388.077483][T21889] netlink: 'syz.2.6056': attribute type 1 has an invalid length.
[  388.084650][T21889] workqueue: Failed to create a rescuer kthread for wq "bond4": -EINTR
[  388.096447][T21895] netlink: 'syz.4.6057': attribute type 10 has an invalid length.
[  388.419484][ T6003] usb 10-1: new low-speed USB device number 30 using dummy_hcd
[  388.421170][T21918] FAULT_INJECTION: forcing a failure.
[  388.421170][T21918] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  388.428309][T21918] CPU: 3 UID: 0 PID: 21918 Comm: syz.2.6068 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  388.428335][T21918] Tainted: [L]=SOFTLOCKUP
[  388.428341][T21918] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  388.428350][T21918] Call Trace:
[  388.428357][T21918]  <TASK>
[  388.428364][T21918]  dump_stack_lvl+0x100/0x190
[  388.428392][T21918]  should_fail_ex.cold+0x5/0xa
[  388.428413][T21918]  _copy_from_user+0x2e/0xd0
[  388.428437][T21918]  drm_mode_atomic_ioctl+0x689/0x2680
[  388.428475][T21918]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  388.428495][T21918]  ? __lock_acquire+0x4a5/0x2630
[  388.428526][T21918]  ? drm_is_current_master+0x2c/0x40
[  388.428546][T21918]  ? drm_is_current_master+0x2c/0x40
[  388.428586][T21918]  ? do_raw_spin_unlock+0x145/0x1e0
[  388.428609][T21918]  drm_ioctl_kernel+0x1f3/0x3e0
[  388.428627][T21918]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  388.428648][T21918]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  388.428674][T21918]  drm_ioctl+0x5e6/0xc60
[  388.428696][T21918]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  388.428719][T21918]  ? __pfx_drm_ioctl+0x10/0x10
[  388.428748][T21918]  ? selinux_file_ioctl+0x139/0x290
[  388.428766][T21918]  ? selinux_file_ioctl+0xb4/0x290
[  388.428786][T21918]  ? __pfx_drm_ioctl+0x10/0x10
[  388.428804][T21918]  __x64_sys_ioctl+0x18e/0x210
[  388.428824][T21918]  do_syscall_64+0xc9/0xf80
[  388.428846][T21918]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  388.428886][T21918] RIP: 0033:0x7f43d719acb9
[  388.428903][T21918] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  388.428920][T21918] RSP: 002b:00007f43d8082028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  388.428939][T21918] RAX: ffffffffffffffda RBX: 00007f43d7415fa0 RCX: 00007f43d719acb9
[  388.428950][T21918] RDX: 0000200000000180 RSI: 00000000c03864bc RDI: 0000000000000014
[  388.428962][T21918] RBP: 00007f43d8082090 R08: 0000000000000000 R09: 0000000000000000
[  388.428973][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  388.428983][T21918] R13: 00007f43d7416038 R14: 00007f43d7415fa0 R15: 00007ffd0f7f2f48
[  388.429008][T21918]  </TASK>
[  388.608689][ T6003] usb 10-1: Invalid ep0 maxpacket: 16
[  388.689325][T21936] RDS: rds_bind could not find a transport for ::ffff:10.1.1.0, load rds_tcp or rds_rdma?
[  388.749006][ T6003] usb 10-1: new low-speed USB device number 31 using dummy_hcd
[  388.789564][   T64] Bluetooth: hci0: Opcode 0x1407 failed: -110
[  388.792449][ T5939] Bluetooth: hci0: command 0x1407 tx timeout
[  388.795861][   T64] Bluetooth: hci0: Opcode 0x1407 failed: -110
[  388.863467][T21956] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6086'.
[  388.870374][T21956] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6086'.
[  388.875646][T21960] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6088'.
[  388.898688][ T6003] usb 10-1: Invalid ep0 maxpacket: 16
[  388.900758][ T6003] usb usb10-port1: attempt power cycle
[  388.993391][T21970] SELinux: failed to load policy
[  389.029225][T21978] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=21978 comm=syz.2.6096
[  389.033050][T21978] netlink: 'syz.2.6096': attribute type 29 has an invalid length.
[  389.053253][ T6005] hid-generic 0005:0C45:0C6E.0030: unknown main item tag 0x0
[  389.057917][ T6005] hid-generic 0005:0C45:0C6E.0030: hidraw0: BLUETOOTH HID v0.09 Device [syz1] on aa:aa:aa:aa:aa:aa
[  389.068424][T21978] netlink: 'syz.2.6096': attribute type 29 has an invalid length.
[  389.085564][T21985] netlink: 48 bytes leftover after parsing attributes in process `syz.4.6099'.
[  389.107955][T21985] netlink: 48 bytes leftover after parsing attributes in process `syz.4.6099'.
[  389.159609][T21996] FAULT_INJECTION: forcing a failure.
[  389.159609][T21996] name failslab, interval 1, probability 0, space 0, times 0
[  389.164513][T21996] CPU: 0 UID: 0 PID: 21996 Comm: syz.0.6103 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  389.164539][T21996] Tainted: [L]=SOFTLOCKUP
[  389.164543][T21996] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  389.164550][T21996] Call Trace:
[  389.164555][T21996]  <TASK>
[  389.164560][T21996]  dump_stack_lvl+0x100/0x190
[  389.164579][T21996]  should_fail_ex.cold+0x5/0xa
[  389.164592][T21996]  should_failslab+0xc2/0x120
[  389.164607][T21996]  __kmalloc_node_track_caller_noprof+0xf9/0x9d0
[  389.164623][T21996]  ? sidtab_sid2str_get+0x17a/0x670
[  389.164639][T21996]  ? kmemdup_noprof+0x29/0x60
[  389.164652][T21996]  kmemdup_noprof+0x29/0x60
[  389.164666][T21996]  sidtab_sid2str_get+0x17a/0x670
[  389.164680][T21996]  security_sid_to_context_core+0x35a/0x6d0
[  389.164713][T21996]  avc_audit_post_callback+0x109/0x8b0
[  389.164728][T21996]  ? __pfx_audit_log_lsm_data+0x10/0x10
[  389.164740][T21996]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  389.164754][T21996]  ? skb_put+0x138/0x180
[  389.164773][T21996]  ? audit_log_n_string+0x256/0x550
[  389.164798][T21996]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  389.164812][T21996]  common_lsm_audit+0x23f/0x2b0
[  389.164824][T21996]  ? __pfx_common_lsm_audit+0x10/0x10
[  389.164836][T21996]  ? lockdep_hardirqs_on+0x78/0x100
[  389.164870][T21996]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  389.164897][T21996]  slow_avc_audit+0x186/0x210
[  389.164918][T21996]  ? __pfx_slow_avc_audit+0x10/0x10
[  389.164940][T21996]  ? avc_denied+0x14a/0x190
[  389.164956][T21996]  ? avc_has_perm_noaudit+0x2fc/0x3b0
[  389.164973][T21996]  avc_has_perm+0x1a6/0x1e0
[  389.164994][T21996]  ? __pfx_avc_has_perm+0x10/0x10
[  389.165024][T21996]  sock_has_perm+0x251/0x2f0
[  389.165046][T21996]  ? __pfx_sock_has_perm+0x10/0x10
[  389.165065][T21996]  ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10
[  389.165084][T21996]  ? import_ubuf+0x1b6/0x220
[  389.165106][T21996]  ? __might_fault+0x30/0x140
[  389.165129][T21996]  ? __might_fault+0xc5/0x140
[  389.165151][T21996]  security_socket_sendmsg+0xd3/0x230
[  389.165173][T21996]  ____sys_sendmsg+0x3c3/0xc30
[  389.165202][T21996]  ? __pfx_____sys_sendmsg+0x10/0x10
[  389.165229][T21996]  ? _kstrtoull+0x13c/0x1f0
[  389.165244][T21996]  ? __pfx__kstrtoull+0x10/0x10
[  389.165263][T21996]  ___sys_sendmsg+0x190/0x1e0
[  389.165280][T21996]  ? __pfx____sys_sendmsg+0x10/0x10
[  389.165320][T21996]  __sys_sendmmsg+0x205/0x430
[  389.165345][T21996]  ? __pfx___sys_sendmmsg+0x10/0x10
[  389.165371][T21996]  ? __fget_files+0x215/0x3d0
[  389.165388][T21996]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  389.165416][T21996]  ? fput+0x79/0x100
[  389.165438][T21996]  ? ksys_write+0x1ac/0x250
[  389.165455][T21996]  ? __pfx_ksys_write+0x10/0x10
[  389.165476][T21996]  __x64_sys_sendmmsg+0x9c/0x100
[  389.165492][T21996]  ? lockdep_hardirqs_on+0x78/0x100
[  389.165509][T21996]  do_syscall_64+0xc9/0xf80
[  389.165528][T21996]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  389.165545][T21996] RIP: 0033:0x7f1a14b9acb9
[  389.165559][T21996] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  389.165573][T21996] RSP: 002b:00007f1a159ed028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  389.165588][T21996] RAX: ffffffffffffffda RBX: 00007f1a14e15fa0 RCX: 00007f1a14b9acb9
[  389.165597][T21996] RDX: 0000000000000001 RSI: 00002000000020c0 RDI: 0000000000000004
[  389.165607][T21996] RBP: 00007f1a159ed090 R08: 0000000000000000 R09: 0000000000000000
[  389.165617][T21996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  389.165626][T21996] R13: 00007f1a14e16038 R14: 00007f1a14e15fa0 R15: 00007ffcd6cc9ed8
[  389.165649][T21996]  </TASK>
[  389.206192][T21998] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6104'.
[  389.300424][ T6003] usb 10-1: new low-speed USB device number 32 using dummy_hcd
[  389.305541][T21999] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  389.322129][ T6003] usb 10-1: Invalid ep0 maxpacket: 16
[  389.431766][T22018] vlan2: entered promiscuous mode
[  389.434124][T22018] vlan2: entered allmulticast mode
[  389.436263][T22018] hsr_slave_1: entered allmulticast mode
[  389.468729][ T6003] usb 10-1: new low-speed USB device number 33 using dummy_hcd
[  389.489391][ T6003] usb 10-1: Invalid ep0 maxpacket: 16
[  389.491393][ T6003] usb usb10-port1: unable to enumerate USB device
[  389.699687][T22047] FAULT_INJECTION: forcing a failure.
[  389.699687][T22047] name failslab, interval 1, probability 0, space 0, times 0
[  389.704535][T22047] CPU: 2 UID: 0 PID: 22047 Comm: syz.0.6125 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  389.704554][T22047] Tainted: [L]=SOFTLOCKUP
[  389.704558][T22047] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  389.704565][T22047] Call Trace:
[  389.704569][T22047]  <TASK>
[  389.704574][T22047]  dump_stack_lvl+0x100/0x190
[  389.704593][T22047]  should_fail_ex.cold+0x5/0xa
[  389.704606][T22047]  should_failslab+0xc2/0x120
[  389.704622][T22047]  __kmalloc_cache_noprof+0x80/0x810
[  389.704634][T22047]  ? drm_atomic_helper_crtc_duplicate_state+0x72/0xd0
[  389.704653][T22047]  ? drm_atomic_helper_crtc_duplicate_state+0x72/0xd0
[  389.704668][T22047]  drm_atomic_helper_crtc_duplicate_state+0x72/0xd0
[  389.704685][T22047]  drm_atomic_get_crtc_state+0x1de/0x620
[  389.704719][T22047]  drm_atomic_get_plane_state+0x4a3/0x760
[  389.704740][T22047]  drm_atomic_set_property+0x710/0x3bf0
[  389.704756][T22047]  ? __pfx_drm_atomic_set_property+0x10/0x10
[  389.704769][T22047]  ? __might_fault+0xc5/0x140
[  389.704780][T22047]  ? __might_fault+0xc5/0x140
[  389.704797][T22047]  drm_mode_atomic_ioctl+0x6c5/0x2680
[  389.704819][T22047]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  389.704832][T22047]  ? __lock_acquire+0x4a5/0x2630
[  389.704876][T22047]  ? drm_is_current_master+0x2c/0x40
[  389.704890][T22047]  ? drm_is_current_master+0x2c/0x40
[  389.704904][T22047]  ? do_raw_spin_unlock+0x145/0x1e0
[  389.704919][T22047]  drm_ioctl_kernel+0x1f3/0x3e0
[  389.704929][T22047]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  389.704943][T22047]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  389.704958][T22047]  drm_ioctl+0x5e6/0xc60
[  389.704971][T22047]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  389.704985][T22047]  ? __pfx_drm_ioctl+0x10/0x10
[  389.705001][T22047]  ? selinux_file_ioctl+0x139/0x290
[  389.705013][T22047]  ? selinux_file_ioctl+0xb4/0x290
[  389.705025][T22047]  ? __pfx_drm_ioctl+0x10/0x10
[  389.705036][T22047]  __x64_sys_ioctl+0x18e/0x210
[  389.705048][T22047]  do_syscall_64+0xc9/0xf80
[  389.705062][T22047]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  389.705073][T22047] RIP: 0033:0x7f1a14b9acb9
[  389.705083][T22047] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  389.705094][T22047] RSP: 002b:00007f1a159ed028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  389.705106][T22047] RAX: ffffffffffffffda RBX: 00007f1a14e15fa0 RCX: 00007f1a14b9acb9
[  389.705113][T22047] RDX: 0000200000000180 RSI: 00000000c03864bc RDI: 0000000000000013
[  389.705120][T22047] RBP: 00007f1a159ed090 R08: 0000000000000000 R09: 0000000000000000
[  389.705126][T22047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  389.705132][T22047] R13: 00007f1a14e16038 R14: 00007f1a14e15fa0 R15: 00007ffcd6cc9ed8
[  389.705152][T22047]  </TASK>
[  389.878699][T22055] FAULT_INJECTION: forcing a failure.
[  389.878699][T22055] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  389.883940][T22055] CPU: 3 UID: 0 PID: 22055 Comm: syz.4.6130 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  389.883967][T22055] Tainted: [L]=SOFTLOCKUP
[  389.883973][T22055] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  389.883983][T22055] Call Trace:
[  389.883990][T22055]  <TASK>
[  389.883997][T22055]  dump_stack_lvl+0x100/0x190
[  389.884025][T22055]  should_fail_ex.cold+0x5/0xa
[  389.884044][T22055]  _copy_from_user+0x2e/0xd0
[  389.884067][T22055]  input_event_from_user+0x123/0x310
[  389.884088][T22055]  ? __pfx_input_event_from_user+0x10/0x10
[  389.884108][T22055]  ? __pfx___might_resched+0x10/0x10
[  389.884127][T22055]  ? input_inject_event+0x1c9/0x3b0
[  389.884148][T22055]  evdev_write+0x342/0x610
[  389.884171][T22055]  ? __pfx_evdev_write+0x10/0x10
[  389.884191][T22055]  ? bpf_lsm_file_permission+0x9/0x10
[  389.884212][T22055]  ? security_file_permission+0x76/0x210
[  389.884232][T22055]  ? rw_verify_area+0xce/0x6d0
[  389.884251][T22055]  vfs_write+0x2aa/0x1070
[  389.884269][T22055]  ? __pfx_evdev_write+0x10/0x10
[  389.884289][T22055]  ? __pfx_vfs_write+0x10/0x10
[  389.884305][T22055]  ? find_held_lock+0x2b/0x80
[  389.884325][T22055]  ? __fget_files+0x215/0x3d0
[  389.884344][T22055]  ? __fget_files+0x215/0x3d0
[  389.884367][T22055]  ? __fget_files+0x21f/0x3d0
[  389.884393][T22055]  ksys_write+0x1f8/0x250
[  389.884410][T22055]  ? __pfx_ksys_write+0x10/0x10
[  389.884434][T22055]  do_syscall_64+0xc9/0xf80
[  389.884456][T22055]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  389.884473][T22055] RIP: 0033:0x7f3a9139acb9
[  389.884487][T22055] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  389.884501][T22055] RSP: 002b:00007f3a9227a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  389.884518][T22055] RAX: ffffffffffffffda RBX: 00007f3a91615fa0 RCX: 00007f3a9139acb9
[  389.884529][T22055] RDX: 000000000000ff0f RSI: 0000200000000040 RDI: 0000000000000003
[  389.884539][T22055] RBP: 00007f3a9227a090 R08: 0000000000000000 R09: 0000000000000000
[  389.884548][T22055] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  389.884557][T22055] R13: 00007f3a91616038 R14: 00007f3a91615fa0 R15: 00007ffdf4cdc998
[  389.884580][T22055]  </TASK>
[  389.988113][T22057] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  390.327205][T22083] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=22083 comm=syz.0.6143
[  390.328723][ T6022] usb 7-1: new high-speed USB device number 34 using dummy_hcd
[  390.335652][T22083] netlink: 'syz.0.6143': attribute type 29 has an invalid length.
[  390.350875][ T6003] hid-generic 0005:0C45:0C6E.0031: unknown main item tag 0x0
[  390.360014][ T6003] hid-generic 0005:0C45:0C6E.0031: hidraw0: BLUETOOTH HID v0.09 Device [syz1] on aa:aa:aa:aa:aa:aa
[  390.384672][T22083] netlink: 'syz.0.6143': attribute type 29 has an invalid length.
[  390.488875][ T6022] usb 7-1: Using ep0 maxpacket: 16
[  390.491809][ T6022] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  390.497620][ T6022] usb 7-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  390.500392][ T6022] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  390.502985][ T6022] usb 7-1: Product: syz
[  390.504336][ T6022] usb 7-1: Manufacturer: syz
[  390.506124][ T6022] usb 7-1: SerialNumber: syz
[  390.510433][ T6022] usb 7-1: config 0 descriptor??
[  390.517687][ T6022] em28xx 7-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  390.522203][ T6022] em28xx 7-1:0.0: DVB interface 0 found: bulk
[  390.653835][T22108] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  390.858738][   T64] Bluetooth: hci0: Opcode 0x1407 failed: -110
[  390.858903][ T5939] Bluetooth: hci0: command 0x1407 tx timeout
[  390.863589][   T64] Bluetooth: hci0: Opcode 0x1407 failed: -110
[  390.898725][T11356] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  391.119374][ T6022] em28xx 7-1:0.0: unknown em28xx chip ID (0)
[  391.430968][T22117] kvm: pic: non byte write
[  391.480940][T22121] syz.4.6156 uses old SIOCAX25GETINFO
[  391.492627][   T54] hid-generic 0005:046D:0C6E.0032: unknown main item tag 0x0
[  391.502205][   T54] hid-generic 0005:046D:0C6E.0032: hidraw0: BLUETOOTH HID v0.09 Device [syz1] on aa:aa:aa:aa:aa:aa
[  391.513358][T22117] ip6gre1: entered allmulticast mode
[  391.531267][ T6022] em28xx 7-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  391.534949][ T6022] em28xx 7-1:0.0: board has no eeprom
[  391.598750][ T6022] em28xx 7-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  391.601415][ T6022] em28xx 7-1:0.0: dvb set to bulk mode.
[  391.607515][   T10] em28xx 7-1:0.0: Binding DVB extension
[  391.609970][ T6022] usb 7-1: USB disconnect, device number 34
[  391.613232][ T6022] em28xx 7-1:0.0: Disconnecting em28xx
[  391.641664][   T10] em28xx 7-1:0.0: Registering input extension
[  391.644481][ T6022] em28xx 7-1:0.0: Closing input extension
[  391.652248][ T6022] em28xx 7-1:0.0: Freeing device
[  391.794803][T22140] FAULT_INJECTION: forcing a failure.
[  391.794803][T22140] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  391.799583][T22140] CPU: 1 UID: 0 PID: 22140 Comm: syz.4.6162 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  391.799603][T22140] Tainted: [L]=SOFTLOCKUP
[  391.799607][T22140] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  391.799614][T22140] Call Trace:
[  391.799618][T22140]  <TASK>
[  391.799623][T22140]  dump_stack_lvl+0x100/0x190
[  391.799642][T22140]  should_fail_ex.cold+0x5/0xa
[  391.799655][T22140]  _copy_from_user+0x2e/0xd0
[  391.799671][T22140]  sctp_setsockopt+0x8cc/0xb370
[  391.799692][T22140]  ? __pfx_sctp_setsockopt+0x10/0x10
[  391.799709][T22140]  ? __fget_files+0x215/0x3d0
[  391.799724][T22140]  ? selinux_socket_setsockopt+0x6a/0x80
[  391.799742][T22140]  ? sock_common_setsockopt+0x2e/0xf0
[  391.799760][T22140]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  391.799778][T22140]  do_sock_setsockopt+0xf3/0x1d0
[  391.799796][T22140]  __sys_setsockopt+0x195/0x220
[  391.799813][T22140]  __x64_sys_setsockopt+0xbd/0x160
[  391.799826][T22140]  ? do_syscall_64+0x94/0xf80
[  391.799838][T22140]  ? lockdep_hardirqs_on+0x78/0x100
[  391.799849][T22140]  do_syscall_64+0xc9/0xf80
[  391.799861][T22140]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  391.799873][T22140] RIP: 0033:0x7f3a9139acb9
[  391.799883][T22140] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  391.799894][T22140] RSP: 002b:00007f3a92259028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  391.799906][T22140] RAX: ffffffffffffffda RBX: 00007f3a91616090 RCX: 00007f3a9139acb9
[  391.799912][T22140] RDX: 0000000000000077 RSI: 0000000000000084 RDI: 0000000000000003
[  391.799919][T22140] RBP: 00007f3a92259090 R08: 0000000000000008 R09: 0000000000000000
[  391.799925][T22140] R10: 00002000000003c0 R11: 0000000000000246 R12: 0000000000000001
[  391.799932][T22140] R13: 00007f3a91616128 R14: 00007f3a91616090 R15: 00007ffdf4cdc998
[  391.799945][T22140]  </TASK>
[  391.821144][T22141] __nla_validate_parse: 3 callbacks suppressed
[  391.821160][T22141] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6163'.
[  391.896884][T22142] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6163'.
[  392.074213][T22144] netlink: 28 bytes leftover after parsing attributes in process `syz.2.6164'.
[  392.102385][ T6003] libceph: connect (1)[c::]:6789 error -101
[  392.104909][ T6003] libceph: mon0 (1)[c::]:6789 connect error
[  392.111315][ T6003] libceph: connect (1)[c::]:6789 error -101
[  392.113322][ T6003] libceph: mon0 (1)[c::]:6789 connect error
[  392.160018][ T6003] libceph: connect (1)[c::]:6789 error -101
[  392.162086][ T6003] libceph: mon0 (1)[c::]:6789 connect error
[  392.371379][ T6003] libceph: connect (1)[c::]:6789 error -101
[  392.373884][ T6003] libceph: mon0 (1)[c::]:6789 connect error
[  392.419056][ T6003] libceph: connect (1)[c::]:6789 error -101
[  392.421365][ T6003] libceph: mon0 (1)[c::]:6789 connect error
[  392.608014][   T40] kauditd_printk_skb: 255 callbacks suppressed
[  392.608025][   T40] audit: type=1400 audit(2000524528.379:26215): avc:  denied  { write } for  pid=22151 comm="syz.4.6165" name="comedi4" dev="devtmpfs" ino=1306 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  392.617596][   T40] audit: type=1400 audit(2000524528.389:26216): avc:  denied  { read } for  pid=22152 comm="syz.5.6166" name="iommu" dev="devtmpfs" ino=632 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  392.625304][   T40] audit: type=1400 audit(2000524528.389:26217): avc:  denied  { open } for  pid=22152 comm="syz.5.6166" path="/dev/iommu" dev="devtmpfs" ino=632 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  392.643234][   T40] audit: type=1400 audit(2000524528.389:26218): avc:  denied  { ioctl } for  pid=22152 comm="syz.5.6166" path="/dev/iommu" dev="devtmpfs" ino=632 ioctlcmd=0x3b81 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  392.658469][   T40] audit: type=1400 audit(2000524528.389:26219): avc:  denied  { write } for  pid=22152 comm="syz.5.6166" name="sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  392.668873][   T40] audit: type=1400 audit(2000524528.389:26220): avc:  denied  { open } for  pid=22152 comm="syz.5.6166" path="/dev/sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  392.677340][   T40] audit: type=1400 audit(2000524528.389:26221): avc:  denied  { create } for  pid=22152 comm="syz.5.6166" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  392.686292][   T40] audit: type=1400 audit(2000524528.389:26222): avc:  denied  { map_create } for  pid=22152 comm="syz.5.6166" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  392.696402][   T40] audit: type=1400 audit(2000524528.389:26223): avc:  denied  { perfmon } for  pid=22152 comm="syz.5.6166" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  392.704022][   T40] audit: type=1400 audit(2000524528.389:26224): avc:  denied  { map_read map_write } for  pid=22152 comm="syz.5.6166" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  392.774392][T22165] binder: 22164:22165 unknown command 1074029333
[  392.776499][T22165] binder: 22164:22165 ioctl c0306201 2000000001c0 returned -22
[  392.879677][ T6003] libceph: connect (1)[c::]:6789 error -101
[  392.882412][ T6003] libceph: mon0 (1)[c::]:6789 connect error
[  392.898689][T22147] ceph: No mds server is up or the cluster is laggy
[  392.898696][T22144] ceph: No mds server is up or the cluster is laggy
[  392.948656][ T5939] Bluetooth: hci0: command 0x1407 tx timeout
[  392.948663][   T64] Bluetooth: hci0: Opcode 0x1407 failed: -110
[  393.020740][T22176] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6174'.
[  393.028379][T22176] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6174'.
[  393.078714][ T6005] usb 10-1: new high-speed USB device number 34 using dummy_hcd
[  393.238704][ T6005] usb 10-1: Using ep0 maxpacket: 16
[  393.238742][   T54] usb 7-1: new high-speed USB device number 35 using dummy_hcd
[  393.242906][ T6005] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  393.250395][ T6005] usb 10-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  393.254207][ T6005] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  393.257620][ T6005] usb 10-1: Product: syz
[  393.259672][ T6005] usb 10-1: Manufacturer: syz
[  393.261664][ T6005] usb 10-1: SerialNumber: syz
[  393.267149][ T6005] usb 10-1: config 0 descriptor??
[  393.272686][ T6005] em28xx 10-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  393.276522][ T6005] em28xx 10-1:0.0: DVB interface 0 found: bulk
[  393.408998][   T54] usb 7-1: Using ep0 maxpacket: 32
[  393.414372][   T54] usb 7-1: config index 0 descriptor too short (expected 29220, got 36)
[  393.417846][   T54] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  393.421275][   T54] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81
[  393.425147][   T54] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  393.429373][   T54] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  393.433401][   T54] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  393.438723][   T54] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  393.441754][   T54] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  393.447744][   T54] usb 7-1: config 0 descriptor??
[  393.659586][   T54] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 35 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  393.668099][   T54] usb 7-1: USB disconnect, device number 35
[  393.675035][   T54] usblp0: removed
[  393.678977][T22178] binder: 22177:22178 unknown command 0
[  393.680761][T22178] binder: 22177:22178 ioctl c0306201 2000000001c0 returned -22
[  393.838131][T22189] netlink: 108 bytes leftover after parsing attributes in process `syz.0.6180'.
[  393.856227][T22175] comedi: No check for data length of config insn id 1997 is implemented
[  393.860420][T22175] comedi: Add a check to check_insn_config_length in drivers/comedi/comedi_fops.c
[  393.864511][T22175] comedi: Assuming n=15 is correct
[  393.874199][ T6005] em28xx 10-1:0.0: unknown em28xx chip ID (0)
[  393.984540][T22189] kvm: pic: non byte write
[  394.057251][T22189] ip6gre1: entered allmulticast mode
[  394.098755][   T54] usb 7-1: new high-speed USB device number 36 using dummy_hcd
[  394.209338][T22209] netlink: 9 bytes leftover after parsing attributes in process `syz.4.6189'.
[  394.228659][   T54] usb 7-1: device descriptor read/64, error -71
[  394.289877][ T6005] em28xx 10-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  394.292979][ T6005] em28xx 10-1:0.0: board has no eeprom
[  394.358719][ T6005] em28xx 10-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  394.361998][ T6005] em28xx 10-1:0.0: dvb set to bulk mode.
[  394.375741][ T6005] usb 10-1: USB disconnect, device number 34
[  394.379495][ T6005] em28xx 10-1:0.0: Disconnecting em28xx
[  394.381889][ T5517] em28xx 10-1:0.0: Binding DVB extension
[  394.404562][ T3333] hid-generic 0005:15C2:0C6E.0033: unknown main item tag 0x0
[  394.418404][ T5517] em28xx 10-1:0.0: Registering input extension
[  394.420888][ T6005] em28xx 10-1:0.0: Closing input extension
[  394.424179][ T3333] hid-generic 0005:15C2:0C6E.0033: hidraw0: BLUETOOTH HID v0.09 Device [syz1] on aa:aa:aa:aa:aa:aa
[  394.434593][ T6005] em28xx 10-1:0.0: Freeing device
[  394.479419][   T54] usb 7-1: new high-speed USB device number 37 using dummy_hcd
[  394.618873][   T54] usb 7-1: device descriptor read/64, error -71
[  394.730087][   T54] usb usb7-port1: attempt power cycle
[  395.018712][   T64] Bluetooth: hci0: Opcode 0x1407 failed: -110
[  395.018714][T20705] Bluetooth: hci0: command 0x1407 tx timeout
[  395.078711][   T54] usb 7-1: new high-speed USB device number 38 using dummy_hcd
[  395.109547][   T54] usb 7-1: device descriptor read/8, error -71
[  395.333864][T22236] netlink: 108 bytes leftover after parsing attributes in process `syz.4.6198'.
[  395.358791][   T54] usb 7-1: new high-speed USB device number 39 using dummy_hcd
[  395.379090][   T54] usb 7-1: device descriptor read/8, error -71
[  395.489181][   T54] usb usb7-port1: unable to enumerate USB device
[  395.534252][T22236] kvm: pic: non byte write
[  395.653416][T22236] ip6gre1: entered allmulticast mode
[  396.071598][T22272] lo speed is unknown, defaulting to 1000
[  396.108934][ T6022] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  396.260441][T22272] netlink: 28 bytes leftover after parsing attributes in process `syz.2.6212'.
[  396.268906][ T6022] usb 5-1: Using ep0 maxpacket: 16
[  396.272610][ T6022] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  396.279006][ T6022] usb 5-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  396.282838][ T6022] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  396.286279][ T6022] usb 5-1: Product: syz
[  396.288187][ T6022] usb 5-1: Manufacturer: syz
[  396.290579][ T6022] usb 5-1: SerialNumber: syz
[  396.295403][ T6022] usb 5-1: config 0 descriptor??
[  396.301017][ T6022] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  396.304901][ T6022] em28xx 5-1:0.0: DVB interface 0 found: bulk
[  396.674169][T22281] netlink: 108 bytes leftover after parsing attributes in process `syz.2.6215'.
[  396.876837][T22292] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6219'.
[  396.902243][ T6022] em28xx 5-1:0.0: unknown em28xx chip ID (0)
[  397.004428][T22302] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6224'.
[  397.099088][ T5939] Bluetooth: hci0: command 0x1407 tx timeout
[  397.148197][T22311] 9p: Bad value for 'version'
[  397.181064][T22313] netlink: 280 bytes leftover after parsing attributes in process `syz.2.6229'.
[  397.321030][ T6022] em28xx 5-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  397.324320][ T6022] em28xx 5-1:0.0: board has no eeprom
[  397.388498][T22324] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6233'.
[  397.391688][ T6022] em28xx 5-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  397.394588][ T6022] em28xx 5-1:0.0: dvb set to bulk mode.
[  397.396938][   T10] em28xx 5-1:0.0: Binding DVB extension
[  397.406582][ T6022] usb 5-1: USB disconnect, device number 33
[  397.412649][ T6022] em28xx 5-1:0.0: Disconnecting em28xx
[  397.433644][   T10] em28xx 5-1:0.0: Registering input extension
[  397.438718][ T6022] em28xx 5-1:0.0: Closing input extension
[  397.444660][ T6022] em28xx 5-1:0.0: Freeing device
[  397.635861][   T40] kauditd_printk_skb: 186 callbacks suppressed
[  397.635873][   T40] audit: type=1400 audit(2000524533.409:26411): avc:  denied  { create } for  pid=22329 comm="syz.2.6235" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  397.722579][   T40] audit: type=1400 audit(2000524533.499:26412): avc:  denied  { read write } for  pid=22333 comm="syz.2.6237" name="fuse" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  397.730543][   T40] audit: type=1400 audit(2000524533.509:26413): avc:  denied  { open } for  pid=22333 comm="syz.2.6237" path="/dev/fuse" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  397.738230][   T40] audit: type=1400 audit(2000524533.509:26414): avc:  denied  { create } for  pid=22333 comm="syz.2.6237" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  397.746726][   T40] audit: type=1400 audit(2000524533.509:26415): avc:  denied  { setopt } for  pid=22333 comm="syz.2.6237" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  397.761784][   T40] audit: type=1400 audit(2000524533.539:26416): avc:  denied  { append } for  pid=22335 comm="syz.2.6238" name="pmem0" dev="devtmpfs" ino=710 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  397.772077][T22336]  pmem0: [POWERTEC]
[  397.816906][T22338] netlink: 'syz.4.6240': attribute type 10 has an invalid length.
[  397.819546][   T40] audit: type=1400 audit(2000524533.589:26417): avc:  denied  { write } for  pid=22339 comm="syz.2.6241" name="vmci" dev="devtmpfs" ino=708 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  397.823006][   T40] audit: type=1400 audit(2000524533.599:26418): avc:  denied  { read write } for  pid=22339 comm="syz.2.6241" name="video3" dev="devtmpfs" ino=959 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  397.829365][T22338] bridge_slave_1: left allmulticast mode
[  397.836132][T22338] bridge_slave_1: left promiscuous mode
[  397.840051][T22338] bridge0: port 2(bridge_slave_1) entered disabled state
[  397.847310][T22338] bridge_slave_1: entered promiscuous mode
[  397.848050][   T40] audit: type=1400 audit(2000524533.599:26419): avc:  denied  { open } for  pid=22339 comm="syz.2.6241" path="/dev/video3" dev="devtmpfs" ino=959 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  397.849735][T22338] bridge_slave_1: entered allmulticast mode
[  397.857168][   T40] audit: type=1400 audit(2000524533.599:26420): avc:  denied  { ioctl } for  pid=22339 comm="syz.2.6241" path="/dev/video3" dev="devtmpfs" ino=959 ioctlcmd=0x5608 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  397.859864][T22338] bond0: (slave bridge_slave_1): Enslaving as an active interface with an up link
[  397.912385][T22344] netlink: 6032 bytes leftover after parsing attributes in process `syz.4.6243'.
[  397.988139][T22358] sctp: [Deprecated]: syz.4.6248 (pid 22358) Use of int in max_burst socket option deprecated.
[  397.988139][T22358] Use struct sctp_assoc_value instead
[  397.995866][T22358] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[  397.998364][T22358] cramfs: block size(16384) > page size(4096) not supported by filesystem
[  398.003142][T22358] cramfs: wrong magic
[  398.006887][T22358] netlink: 'syz.4.6248': attribute type 1 has an invalid length.
[  398.018780][T22360]  pmem0: [POWERTEC]
[  398.056305][T22366] netlink: 'syz.2.6254': attribute type 10 has an invalid length.
[  398.067278][T22366] 8021q: adding VLAN 0 to HW filter on device batadv0
[  398.072650][T22366] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  398.186812][T22385] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6262'.
[  398.190352][T22385] veth1_macvtap: default FDB implementation only supports local addresses
[  398.261029][T22395] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  399.098553][T22449] netlink: 804 bytes leftover after parsing attributes in process `syz.4.6290'.
[  399.127046][   T46] Bluetooth: hci3: Frame reassembly failed (-84)
[  399.180038][T20705] Bluetooth: hci0: command 0x1407 tx timeout
[  399.182019][ T5939] Bluetooth: hci0: Opcode 0x1407 failed: -110
[  399.187026][T22453] FAT-fs (sr0): bogus number of reserved sectors
[  399.189741][T22453] FAT-fs (sr0): Can't find a valid FAT filesystem
[  399.322586][T22457] SELinux:  policydb magic number 0x4c5047 does not match expected magic number 0xf97cff8c
[  399.327114][T22457] SELinux: failed to load policy
[  399.409306][T22463] sock: sock_timestamping_bind_phc: sock not bind to device
[  399.418309][T22467]  pmem0: [POWERTEC]
[  399.502351][T22476] FAULT_INJECTION: forcing a failure.
[  399.502351][T22476] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  399.508057][T22476] CPU: 0 UID: 0 PID: 22476 Comm: syz.5.6301 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  399.508092][T22476] Tainted: [L]=SOFTLOCKUP
[  399.508098][T22476] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  399.508108][T22476] Call Trace:
[  399.508114][T22476]  <TASK>
[  399.508122][T22476]  dump_stack_lvl+0x100/0x190
[  399.508168][T22476]  should_fail_ex.cold+0x5/0xa
[  399.508188][T22476]  _copy_from_iter+0x1f4/0x1690
[  399.508226][T22476]  ? __pfx__copy_from_iter+0x10/0x10
[  399.508254][T22476]  ? sock_has_perm+0x258/0x2f0
[  399.508281][T22476]  ? __pfx_sock_has_perm+0x10/0x10
[  399.508310][T22476]  hci_sock_sendmsg+0x4a1/0x2620
[  399.508343][T22476]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  399.508371][T22476]  sock_write_iter+0x566/0x610
[  399.508400][T22476]  ? __pfx_sock_write_iter+0x10/0x10
[  399.508435][T22476]  ? bpf_lsm_file_permission+0x9/0x10
[  399.508458][T22476]  ? security_file_permission+0x76/0x210
[  399.508480][T22476]  ? rw_verify_area+0xce/0x6d0
[  399.508499][T22476]  vfs_write+0x6ac/0x1070
[  399.508519][T22476]  ? __pfx_sock_write_iter+0x10/0x10
[  399.508548][T22476]  ? __pfx_vfs_write+0x10/0x10
[  399.508581][T22476]  ? find_held_lock+0x2b/0x80
[  399.508620][T22476]  ksys_write+0x1f8/0x250
[  399.508639][T22476]  ? __pfx_ksys_write+0x10/0x10
[  399.508678][T22476]  do_syscall_64+0xc9/0xf80
[  399.508700][T22476]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  399.508719][T22476] RIP: 0033:0x7f0dd7b9acb9
[  399.508733][T22476] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  399.508773][T22476] RSP: 002b:00007f0dd8a80028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  399.508793][T22476] RAX: ffffffffffffffda RBX: 00007f0dd7e15fa0 RCX: 00007f0dd7b9acb9
[  399.508805][T22476] RDX: 000000000000000d RSI: 0000200000000000 RDI: 0000000000000004
[  399.508816][T22476] RBP: 00007f0dd8a80090 R08: 0000000000000000 R09: 0000000000000000
[  399.508826][T22476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  399.508836][T22476] R13: 00007f0dd7e16038 R14: 00007f0dd7e15fa0 R15: 00007fff4f770c88
[  399.508860][T22476]  </TASK>
[  399.626018][T22482] netlink: 'syz.0.6303': attribute type 1 has an invalid length.
[  399.628528][T22482] netlink: 'syz.0.6303': attribute type 2 has an invalid length.
[  399.631245][T22482] netlink: 'syz.0.6303': attribute type 1 has an invalid length.
[  399.633886][T22482] netlink: 'syz.0.6303': attribute type 3 has an invalid length.
[  399.636526][T22482] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6303'.
[  399.974044][T22516] FAULT_INJECTION: forcing a failure.
[  399.974044][T22516] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  399.980909][T22516] CPU: 0 UID: 0 PID: 22516 Comm: syz.2.6320 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  399.980940][T22516] Tainted: [L]=SOFTLOCKUP
[  399.980947][T22516] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  399.980958][T22516] Call Trace:
[  399.980966][T22516]  <TASK>
[  399.980974][T22516]  dump_stack_lvl+0x100/0x190
[  399.981004][T22516]  should_fail_ex.cold+0x5/0xa
[  399.981026][T22516]  _copy_from_user+0x2e/0xd0
[  399.981051][T22516]  copy_msghdr_from_user+0x9f/0x4f0
[  399.981073][T22516]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  399.981101][T22516]  ? _kstrtoull+0x13c/0x1f0
[  399.981120][T22516]  ? __pfx__kstrtoull+0x10/0x10
[  399.981143][T22516]  ___sys_sendmsg+0x106/0x1e0
[  399.981164][T22516]  ? __pfx____sys_sendmsg+0x10/0x10
[  399.981211][T22516]  __sys_sendmmsg+0x205/0x430
[  399.981241][T22516]  ? __pfx___sys_sendmmsg+0x10/0x10
[  399.981270][T22516]  ? __fget_files+0x215/0x3d0
[  399.981294][T22516]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  399.981326][T22516]  ? fput+0x79/0x100
[  399.981351][T22516]  ? ksys_write+0x1ac/0x250
[  399.981372][T22516]  ? __pfx_ksys_write+0x10/0x10
[  399.981398][T22516]  __x64_sys_sendmmsg+0x9c/0x100
[  399.981422][T22516]  ? lockdep_hardirqs_on+0x78/0x100
[  399.981442][T22516]  do_syscall_64+0xc9/0xf80
[  399.981465][T22516]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  399.981484][T22516] RIP: 0033:0x7f43d719acb9
[  399.981501][T22516] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  399.981519][T22516] RSP: 002b:00007f43d8082028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  399.981539][T22516] RAX: ffffffffffffffda RBX: 00007f43d7415fa0 RCX: 00007f43d719acb9
[  399.981552][T22516] RDX: 040000000000009f RSI: 00002000000002c0 RDI: 0000000000000003
[  399.981564][T22516] RBP: 00007f43d8082090 R08: 0000000000000000 R09: 0000000000000000
[  399.981576][T22516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  399.981586][T22516] R13: 00007f43d7416038 R14: 00007f43d7415fa0 R15: 00007ffd0f7f2f48
[  399.981612][T22516]  </TASK>
[  399.983246][T22518] tmpfs: Bad value for 'mpol'
[  400.050773][T22521] netlink: 'syz.5.6321': attribute type 12 has an invalid length.
[  400.073512][T22521] netlink: 190972 bytes leftover after parsing attributes in process `syz.5.6321'.
[  400.086825][T22518] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6321'.
[  400.379039][   T54] usb 7-1: new high-speed USB device number 40 using dummy_hcd
[  400.538667][   T54] usb 7-1: Using ep0 maxpacket: 16
[  400.541758][   T54] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  400.546461][   T54] usb 7-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  400.549422][   T54] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  400.551936][   T54] usb 7-1: Product: syz
[  400.553271][   T54] usb 7-1: Manufacturer: syz
[  400.554780][   T54] usb 7-1: SerialNumber: syz
[  400.560561][   T54] usb 7-1: config 0 descriptor??
[  400.566274][   T54] em28xx 7-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  400.570388][   T54] em28xx 7-1:0.0: DVB interface 0 found: bulk
[  401.172372][   T54] em28xx 7-1:0.0: unknown em28xx chip ID (0)
[  401.188807][T20705] Bluetooth: hci3: command 0x1003 tx timeout
[  401.189402][   T64] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  401.258756][   T64] Bluetooth: hci0: command 0x1407 tx timeout
[  401.258835][ T5939] Bluetooth: hci0: Opcode 0x1407 failed: -110
[  401.581424][   T54] em28xx 7-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  401.584527][   T54] em28xx 7-1:0.0: board has no eeprom
[  401.644610][T22567] netlink: 'syz.4.6340': attribute type 62 has an invalid length.
[  401.660949][T22567] 8021q: adding VLAN 0 to HW filter on device ipvlan3
[  401.664434][T22567] team0: Device ipvlan3 is already an upper device of the team interface
[  401.723172][T22570] netlink: 'syz.5.6341': attribute type 3 has an invalid length.
[  401.727602][T22570] loop6: detected capacity change from 0 to 2640
[  401.747479][T20269] buffer_io_error: 11 callbacks suppressed
[  401.747496][T20269] Buffer I/O error on dev loop6, logical block 74, async page read
[  401.755087][T22571] Buffer I/O error on dev loop6, logical block 74, async page read
[  401.759978][T22571] Buffer I/O error on dev loop6, logical block 74, async page read
[  401.763506][T22571] Buffer I/O error on dev loop6, logical block 74, async page read
[  401.767037][T22571] Buffer I/O error on dev loop6, logical block 74, async page read
[  401.770682][T22571] Buffer I/O error on dev loop6, logical block 74, async page read
[  401.774109][T22571] Buffer I/O error on dev loop6, logical block 74, async page read
[  401.777708][T22571] Buffer I/O error on dev loop6, logical block 74, async page read
[  401.782401][T22571] Buffer I/O error on dev loop6, logical block 74, async page read
[  401.785811][T22571] Buffer I/O error on dev loop6, logical block 74, async page read
[  402.041983][T22586] binder: 22585:22586 ioctl c0306201 200000000640 returned -22
[  402.050981][T22586] sctp: [Deprecated]: syz.4.6348 (pid 22586) Use of int in max_burst socket option.
[  402.050981][T22586] Use struct sctp_assoc_value instead
[  402.630418][T22529] em28xx 7-1:0.0: reading from i2c device at 0x6 failed (error=-5)
[  402.654626][T22596] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6353'.
[  402.666270][   T40] kauditd_printk_skb: 177 callbacks suppressed
[  402.666286][   T40] audit: type=1400 audit(2000524538.439:26596): avc:  denied  { prog_load } for  pid=22597 comm="syz.5.6354" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  402.677837][   T40] audit: type=1400 audit(2000524538.449:26597): avc:  denied  { perfmon } for  pid=22597 comm="syz.5.6354" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  402.690728][   T40] audit: type=1400 audit(2000524538.459:26598): avc:  denied  { read write } for  pid=22599 comm="syz.4.6355" name="fuse" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  402.698733][   T54] em28xx 7-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  402.700391][   T40] audit: type=1400 audit(2000524538.459:26599): avc:  denied  { open } for  pid=22599 comm="syz.4.6355" path="/dev/fuse" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  402.704076][   T54] em28xx 7-1:0.0: dvb set to bulk mode.
[  402.711795][   T40] audit: type=1400 audit(2000524538.479:26600): avc:  denied  { create } for  pid=22597 comm="syz.5.6354" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  402.720057][ T3333] em28xx 7-1:0.0: Binding DVB extension
[  402.725292][   T40] audit: type=1400 audit(2000524538.499:26601): avc:  denied  { read } for  pid=22597 comm="syz.5.6354" name="iommu" dev="devtmpfs" ino=632 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  402.729191][   T54] usb 7-1: USB disconnect, device number 40
[  402.735538][   T40] audit: type=1400 audit(2000524538.499:26602): avc:  denied  { open } for  pid=22597 comm="syz.5.6354" path="/dev/iommu" dev="devtmpfs" ino=632 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  402.744704][   T40] audit: type=1400 audit(2000524538.509:26603): avc:  denied  { ioctl } for  pid=22597 comm="syz.5.6354" path="/dev/iommu" dev="devtmpfs" ino=632 ioctlcmd=0x3b8a scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  402.749602][   T54] em28xx 7-1:0.0: Disconnecting em28xx
[  402.753477][   T40] audit: type=1400 audit(2000524538.529:26604): avc:  denied  { create } for  pid=22603 comm="syz.4.6356" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  402.760198][ T3333] em28xx 7-1:0.0: Registering input extension
[  402.761778][   T40] audit: type=1400 audit(2000524538.539:26605): avc:  denied  { create } for  pid=22603 comm="syz.4.6356" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  402.763882][   T54] em28xx 7-1:0.0: Closing input extension
[  402.776547][   T54] em28xx 7-1:0.0: Freeing device
[  402.941277][T22612] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6359'.
[  402.947142][T22612] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6359'.
[  403.339598][ T5939] Bluetooth: hci0: Opcode 0x1407 failed: -110
[  403.348752][   T64] Bluetooth: hci0: command 0x1407 tx timeout
[  403.534938][T22631] netlink: 108 bytes leftover after parsing attributes in process `syz.2.6365'.
[  403.587195][T22633] binder: 22632:22633 unknown command 21
[  403.589635][T22633] binder: 22632:22633 ioctl c0306201 2000000001c0 returned -22
[  403.697477][ T6003] hid-generic 0005:0B57:0C6E.0034: unknown main item tag 0x0
[  403.702935][ T6003] hid-generic 0005:0B57:0C6E.0034: hidraw0: BLUETOOTH HID v0.09 Device [syz1] on aa:aa:aa:aa:aa:aa
[  404.147369][T22669] FAULT_INJECTION: forcing a failure.
[  404.147369][T22669] name failslab, interval 1, probability 0, space 0, times 0
[  404.152746][T22669] CPU: 3 UID: 0 PID: 22669 Comm: syz.5.6386 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  404.152774][T22669] Tainted: [L]=SOFTLOCKUP
[  404.152788][T22669] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  404.152798][T22669] Call Trace:
[  404.152804][T22669]  <TASK>
[  404.152812][T22669]  dump_stack_lvl+0x100/0x190
[  404.152855][T22669]  should_fail_ex.cold+0x5/0xa
[  404.152876][T22669]  should_failslab+0xc2/0x120
[  404.152899][T22669]  __kmalloc_cache_noprof+0x80/0x810
[  404.152918][T22669]  ? virtio_gpu_plane_duplicate_state+0x72/0xd0
[  404.152945][T22669]  ? ww_mutex_lock_interruptible+0x37/0x160
[  404.152975][T22669]  ? virtio_gpu_plane_duplicate_state+0x72/0xd0
[  404.152996][T22669]  virtio_gpu_plane_duplicate_state+0x72/0xd0
[  404.153015][T22669]  drm_atomic_get_plane_state+0x279/0x760
[  404.153047][T22669]  drm_atomic_set_property+0x710/0x3bf0
[  404.153073][T22669]  ? __pfx_drm_atomic_set_property+0x10/0x10
[  404.153092][T22669]  ? __might_fault+0xc5/0x140
[  404.153110][T22669]  ? __might_fault+0xc5/0x140
[  404.153139][T22669]  drm_mode_atomic_ioctl+0x6c5/0x2680
[  404.153174][T22669]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  404.153194][T22669]  ? __lock_acquire+0x4a5/0x2630
[  404.153226][T22669]  ? drm_is_current_master+0x2c/0x40
[  404.153245][T22669]  ? drm_is_current_master+0x2c/0x40
[  404.153267][T22669]  ? do_raw_spin_unlock+0x145/0x1e0
[  404.153291][T22669]  drm_ioctl_kernel+0x1f3/0x3e0
[  404.153307][T22669]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  404.153329][T22669]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  404.153353][T22669]  drm_ioctl+0x5e6/0xc60
[  404.153390][T22669]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  404.153413][T22669]  ? __pfx_drm_ioctl+0x10/0x10
[  404.153438][T22669]  ? selinux_file_ioctl+0x139/0x290
[  404.153456][T22669]  ? selinux_file_ioctl+0xb4/0x290
[  404.153476][T22669]  ? __pfx_drm_ioctl+0x10/0x10
[  404.153494][T22669]  __x64_sys_ioctl+0x18e/0x210
[  404.153514][T22669]  do_syscall_64+0xc9/0xf80
[  404.153535][T22669]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  404.153553][T22669] RIP: 0033:0x7f0dd7b9acb9
[  404.153569][T22669] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  404.153586][T22669] RSP: 002b:00007f0dd8a80028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  404.153603][T22669] RAX: ffffffffffffffda RBX: 00007f0dd7e15fa0 RCX: 00007f0dd7b9acb9
[  404.153615][T22669] RDX: 0000200000000180 RSI: 00000000c03864bc RDI: 0000000000000011
[  404.153626][T22669] RBP: 00007f0dd8a80090 R08: 0000000000000000 R09: 0000000000000000
[  404.153636][T22669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  404.153647][T22669] R13: 00007f0dd7e16038 R14: 00007f0dd7e15fa0 R15: 00007fff4f770c88
[  404.153672][T22669]  </TASK>
[  404.258701][T22668] ------------[ cut here ]------------
[  404.271126][T22668] [CRTC:37:crtc-0] vblank wait timed out
[  404.273002][T22668] WARNING: drivers/gpu/drm/drm_atomic_helper.c:1920 at drm_atomic_helper_wait_for_vblanks.part.0+0x738/0x8a0, CPU#0: syz.5.6386/22668
[  404.277425][T22668] Modules linked in:
[  404.279748][T22668] CPU: 0 UID: 0 PID: 22668 Comm: syz.5.6386 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  404.283286][T22668] Tainted: [L]=SOFTLOCKUP
[  404.284742][T22668] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  404.288052][T22668] RIP: 0010:drm_atomic_helper_wait_for_vblanks.part.0+0x73e/0x8a0
[  404.290688][T22668] Code: 00 00 00 fc ff df 48 89 f9 48 c1 e9 03 0f b6 04 01 84 c0 74 08 3c 03 0f 8e 44 01 00 00 48 8d 3d 18 28 2f 0b 8b b3 d8 00 00 00 <67> 48 0f b9 3a e9 e1 fc ff ff e8 53 10 74 fc e9 7c fe ff ff e8 79
[  404.296950][T22668] RSP: 0018:ffffc9000d6077b0 EFLAGS: 00010246
[  404.299297][T22668] RAX: 0000000000000000 RBX: ffff888027860040 RCX: 1ffff11004f0c023
[  404.301871][T22668] RDX: ffff888102ae4000 RSI: 0000000000000025 RDI: ffffffff90c217b0
[  404.304336][T22668] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000000
[  404.306899][T22668] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  404.310052][T22668] R13: 0000000000000000 R14: 0000000000000000 R15: ffff88803db17c00
[  404.312679][T22668] FS:  0000555578131500(0000) GS:ffff8880d65dc000(0000) knlGS:0000000000000000
[  404.315762][T22668] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  404.318291][T22668] CR2: 0000200000001b80 CR3: 000000002716c000 CR4: 0000000000352ef0
[  404.321023][T22668] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000008
[  404.323522][T22668] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  404.326072][T22668] Call Trace:
[  404.327176][T22668]  <TASK>
[  404.328142][T22668]  ? __pfx_drm_atomic_helper_wait_for_vblanks.part.0+0x10/0x10
[  404.330785][T22668]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  404.332620][T22668]  ? lockdep_hardirqs_on+0x78/0x100
[  404.334232][T22668]  ? __pfx_autoremove_wake_function+0x10/0x10
[  404.336148][T22668]  ? drm_atomic_helper_commit_hw_done+0x36d/0x490
[  404.338152][T22668]  drm_atomic_helper_commit_tail+0xff/0x130
[  404.340141][T22668]  commit_tail+0x338/0x430
[  404.341732][T22668]  drm_atomic_helper_commit+0x303/0x380
[  404.343501][T22668]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[  404.345470][T22668]  drm_atomic_commit+0x230/0x300
[  404.347103][T22668]  ? __pfx_drm_atomic_commit+0x10/0x10
[  404.349081][T22668]  ? __pfx___drm_printfn_info+0x10/0x10
[  404.350846][T22668]  ? drm_client_rotation+0x451/0x6a0
[  404.352555][T22668]  drm_client_modeset_commit_atomic+0x6a6/0x7e0
[  404.354547][T22668]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  404.356774][T22668]  drm_client_modeset_commit_locked+0x14d/0x580
[  404.359033][T22668]  drm_client_modeset_commit+0x4f/0x80
[  404.360778][T22668]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  404.363343][T22668]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  404.365575][T22668]  drm_fbdev_client_restore+0x1b/0x30
[  404.367489][T22668]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  404.369767][T22668]  drm_client_dev_restore+0x205/0x2a0
[  404.371489][T22668]  drm_release+0x2c6/0x360
[  404.372950][T22668]  ? __pfx_drm_release+0x10/0x10
[  404.374534][T22668]  __fput+0x3ff/0xb40
[  404.375838][T22668]  task_work_run+0x150/0x240
[  404.377387][T22668]  ? __pfx_task_work_run+0x10/0x10
[  404.379139][T22668]  exit_to_user_mode_loop+0x100/0x4b0
[  404.381025][T22668]  ? rcu_is_watching+0x12/0xc0
[  404.382600][T22668]  do_syscall_64+0x4fe/0xf80
[  404.384095][T22668]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  404.386132][T22668] RIP: 0033:0x7f0dd7b9acb9
[  404.387625][T22668] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  404.394157][T22668] RSP: 002b:00007fff4f770de8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  404.396914][T22668] RAX: 0000000000000000 RBX: 00007fff4f770ed0 RCX: 00007f0dd7b9acb9
[  404.399682][T22668] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  404.402430][T22668] RBP: 0000000000062835 R08: 0000000000000001 R09: 0000000000000000
[  404.405068][T22668] R10: 0000001b2e220000 R11: 0000000000000246 R12: 00007fff4f770f10
[  404.407695][T22668] R13: 00007f0dd7e15fac R14: 0000000000062870 R15: 00007f0dd7e15fa0
[  404.410455][T22668]  </TASK>
[  404.411548][T22668] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  404.413959][T22668] CPU: 0 UID: 0 PID: 22668 Comm: syz.5.6386 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  404.417478][T22668] Tainted: [L]=SOFTLOCKUP
[  404.418914][T22668] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  404.422329][T22668] Call Trace:
[  404.423672][T22668]  <TASK>
[  404.425029][T22668]  dump_stack_lvl+0x100/0x190
[  404.427108][T22668]  vpanic+0x20d/0x630
[  404.428804][T22668]  panic+0xd1/0xd1
[  404.430436][T22668]  ? __pfx_panic+0x10/0x10
[  404.432387][T22668]  ? check_panic_on_warn+0x1f/0x90
[  404.434571][T22668]  check_panic_on_warn.cold+0x19/0x34
[  404.436919][T22668]  ? drm_atomic_helper_wait_for_vblanks.part.0+0x738/0x8a0
[  404.439887][T22668]  __warn.cold+0x191/0x2f8
[  404.441793][T22668]  __report_bug+0x296/0x3d0
[  404.443742][T22668]  ? drm_atomic_helper_wait_for_vblanks.part.0+0x738/0x8a0
[  404.446241][T22668]  ? __pfx___report_bug+0x10/0x10
[  404.448138][T22668]  ? lockdep_hardirqs_on+0x78/0x100
[  404.449866][T22668]  report_bug_entry+0xe1/0x290
[  404.451511][T22668]  ? drm_atomic_helper_wait_for_vblanks.part.0+0x73e/0x8a0
[  404.453854][T22668]  handle_bug+0x1c9/0x2a0
[  404.455305][T22668]  exc_invalid_op+0x17/0x50
[  404.456875][T22668]  asm_exc_invalid_op+0x1a/0x20
[  404.458693][T22668] RIP: 0010:drm_atomic_helper_wait_for_vblanks.part.0+0x73e/0x8a0
[  404.461326][T22668] Code: 00 00 00 fc ff df 48 89 f9 48 c1 e9 03 0f b6 04 01 84 c0 74 08 3c 03 0f 8e 44 01 00 00 48 8d 3d 18 28 2f 0b 8b b3 d8 00 00 00 <67> 48 0f b9 3a e9 e1 fc ff ff e8 53 10 74 fc e9 7c fe ff ff e8 79
[  404.468459][T22668] RSP: 0018:ffffc9000d6077b0 EFLAGS: 00010246
[  404.471042][T22668] RAX: 0000000000000000 RBX: ffff888027860040 RCX: 1ffff11004f0c023
[  404.474390][T22668] RDX: ffff888102ae4000 RSI: 0000000000000025 RDI: ffffffff90c217b0
[  404.477749][T22668] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000000
[  404.481054][T22668] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  404.484282][T22668] R13: 0000000000000000 R14: 0000000000000000 R15: ffff88803db17c00
[  404.486872][T22668]  ? __pfx_drm_atomic_helper_wait_for_vblanks.part.0+0x10/0x10
[  404.489321][T22668]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  404.491183][T22668]  ? lockdep_hardirqs_on+0x78/0x100
[  404.492915][T22668]  ? __pfx_autoremove_wake_function+0x10/0x10
[  404.494898][T22668]  ? drm_atomic_helper_commit_hw_done+0x36d/0x490
[  404.497479][T22668]  drm_atomic_helper_commit_tail+0xff/0x130
[  404.499973][T22668]  commit_tail+0x338/0x430
[  404.501903][T22668]  drm_atomic_helper_commit+0x303/0x380
[  404.504245][T22668]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[  404.506879][T22668]  drm_atomic_commit+0x230/0x300
[  404.508994][T22668]  ? __pfx_drm_atomic_commit+0x10/0x10
[  404.511306][T22668]  ? __pfx___drm_printfn_info+0x10/0x10
[  404.513343][T22668]  ? drm_client_rotation+0x451/0x6a0
[  404.515188][T22668]  drm_client_modeset_commit_atomic+0x6a6/0x7e0
[  404.517494][T22668]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  404.519913][T22668]  drm_client_modeset_commit_locked+0x14d/0x580
[  404.522566][T22668]  drm_client_modeset_commit+0x4f/0x80
[  404.524921][T22668]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  404.528063][T22668]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  404.530821][T22668]  drm_fbdev_client_restore+0x1b/0x30
[  404.533128][T22668]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  404.535683][T22668]  drm_client_dev_restore+0x205/0x2a0
[  404.537992][T22668]  drm_release+0x2c6/0x360
[  404.539887][T22668]  ? __pfx_drm_release+0x10/0x10
[  404.542003][T22668]  __fput+0x3ff/0xb40
[  404.543723][T22668]  task_work_run+0x150/0x240
[  404.545728][T22668]  ? __pfx_task_work_run+0x10/0x10
[  404.547948][T22668]  exit_to_user_mode_loop+0x100/0x4b0
[  404.550156][T22668]  ? rcu_is_watching+0x12/0xc0
[  404.552227][T22668]  do_syscall_64+0x4fe/0xf80
[  404.554207][T22668]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  404.556734][T22668] RIP: 0033:0x7f0dd7b9acb9
[  404.558644][T22668] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  404.566493][T22668] RSP: 002b:00007fff4f770de8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  404.569688][T22668] RAX: 0000000000000000 RBX: 00007fff4f770ed0 RCX: 00007f0dd7b9acb9
[  404.572593][T22668] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  404.575183][T22668] RBP: 0000000000062835 R08: 0000000000000001 R09: 0000000000000000
[  404.577935][T22668] R10: 0000001b2e220000 R11: 0000000000000246 R12: 00007fff4f770f10
[  404.580479][T22668] R13: 00007f0dd7e15fac R14: 0000000000062870 R15: 00007f0dd7e15fa0
[  404.583082][T22668]  </TASK>
[  404.584875][T22668] Kernel Offset: disabled
[  404.586370][T22668] Rebooting in 86400 seconds..