last executing test programs:

2.360920028s ago: executing program 3 (id=2743):
unshare(0x48000000)
openat$ipvs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0) (fail_nth: 1)

2.103494923s ago: executing program 3 (id=2748):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
ppoll(&(0x7f0000000180)=[{r0}], 0x1, 0x0, 0x0, 0x0)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, &(0x7f0000000000)="5766b1b827f6003300", 0x10)

2.102274774s ago: executing program 2 (id=2750):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f00000001c0)={'batadv0\x00', <r1=>0x0})
sendto$packet(r0, 0x0, 0x0, 0x11, &(0x7f0000000340)={0x11, 0x8100, r1, 0x1, 0x8, 0x6, @remote}, 0x14)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000380)=ANY=[@ANYRES64, @ANYRESHEX=r1, @ANYRES8=r1, @ANYRESHEX=r0, @ANYRESOCT=r0, @ANYBLOB="795f5dcdd1f1b5302033df8c1522dd0e9ce22ba812bec8b68cd99ef98e1c8aa165307e829d1bae1a58a704b5b2bc26436d7f9efd9abc024ec74bbe0727a69d19f5a024d9dbe5b3755750b14b579401fc08c2fa73ff38868b19a6338df4a93e01aee3989dce204d6f3965d875ce75897bfcc59544b50503827dde2810363087f6baffd2f19b9acc47f36a863ae41702d625afc4cf9a2fdbc84fcbb30f655ec9e455ce7a166e3972887a594636a0"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = socket$can_raw(0x1d, 0x3, 0x1)
getsockopt$CAN_RAW_FILTER(r3, 0x65, 0x1, 0xfffffffffffffffe, &(0x7f0000000000))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000140)='contention_end\x00', r2}, 0x10)
r4 = getpid()
r5 = syz_pidfd_open(r4, 0x0)
ioctl$EXT4_IOC_MIGRATE(r5, 0xff05)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r6 = socket$rds(0x15, 0x5, 0x0)
setsockopt$SO_RDS_MSG_RXPATH_LATENCY(r6, 0x114, 0xa, &(0x7f0000000000)=ANY=[], 0x4)
r7 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x14d002)
r8 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r8, 0x0, 0x19, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r9=>0xffffffffffffffff})
ioctl$NBD_SET_SOCK(r7, 0xab00, r9)
ioctl$NBD_CLEAR_SOCK(r7, 0xab04)
ioctl$NBD_DO_IT(r7, 0xab03)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r10, &(0x7f0000000000), 0x208e24b)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r11 = socket$kcm(0xa, 0x6, 0x0)
setsockopt$sock_attach_bpf(r11, 0x10d, 0x2, &(0x7f0000000000), 0x4)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_emit_vhci(&(0x7f00000006c0)=ANY=[@ANYBLOB="040e04001220"], 0x7)
syz_emit_vhci(&(0x7f0000002200)=ANY=[@ANYBLOB="030903107794"], 0x6)

2.031300699s ago: executing program 0 (id=2752):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r1 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r1, 0xc0184800, &(0x7f0000000080)={0x10001, <r2=>r0})
mmap$dsp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x11, r2, 0x0)
socket$inet(0x2, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r6 = socket$inet_smc(0x2b, 0x1, 0x0)
connect$inet(r6, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10)
setsockopt$SO_BINDTODEVICE_wg(r6, 0x1, 0x19, &(0x7f0000000080)='wg1\x00', 0x4)
sendto$inet(r6, &(0x7f0000000040)="e5", 0xffffffe4, 0x0, 0x0, 0x0)
connect(r6, &(0x7f0000000080)=@un=@abs, 0x80)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0xf00, 0x3, &(0x7f0000fff000/0x1000)=nil)

1.521403008s ago: executing program 1 (id=2754):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3)
write$uinput_user_dev(r0, &(0x7f0000000ec0)={'syz0\x00', {}, 0x0, [0x0, 0xe74, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0xfffffffc], [0x0, 0x0, 0x0, 0xb16, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xfffffffc, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5], [0x88000001, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x100e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0xbcd5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x4], [0x0, 0x0, 0x0, 0xc63, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffd, 0x1000, 0x0, 0x0, 0x80000003, 0x0, 0x5]}, 0x45c)

1.471928731s ago: executing program 1 (id=2755):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='illinois\x00', 0x9)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r0, &(0x7f0000000640)='\x00', 0x1, 0x20000045, 0x0, 0x0)

1.471711153s ago: executing program 1 (id=2756):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000380)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f0000000580)=0x1, r1, 0x0, 0x2, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000100)={0x3, 0x40, 0xfa3f, {{0x1b, 0x4e21, 0x0, @empty, 0x4}, {0xa, 0x0, 0x0, @remote}, r1, 0x3}}, 0x48)

1.471526662s ago: executing program 1 (id=2757):
unshare(0x44040000)
open_by_handle_at(0xffffffffffffffff, 0x0, 0x0) (async)
open_by_handle_at(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_SET_TSC_KHZ(0xffffffffffffffff, 0xaea2, 0x9)
socket$nl_route(0x10, 0x3, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
unshare(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
setgroups(0x0, 0x0)
setresgid(0xee00, 0xee01, 0x0) (async)
setresgid(0xee00, 0xee01, 0x0)
prctl$PR_SET_SECUREBITS(0x1c, 0x1d) (async)
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
setuid(0xee01)
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000002640), 0x1, 0x0) (async)
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000002640), 0x1, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid() (async)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=@ipv4_delroute={0x40, 0x19, 0x901, 0x0, 0x0, {0x2, 0x18, 0x0, 0x0, 0x0, 0x0, 0xfd, 0x1}, [@RTA_DST={0x8, 0x1, @dev}, @RTA_GATEWAY={0x8, 0x5, @private=0xa010102}, @RTA_ENCAP={0xc, 0x16, 0x0, 0x1, @LWTUNNEL_IP_SRC={0x8, 0x3, @multicast2}}, @RTA_ENCAP_TYPE={0x6, 0x15, 0x6}]}, 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)

1.261256808s ago: executing program 3 (id=2758):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(0xffffffffffffffff, 0x40bc5311, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
getpid()
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x7, 0x4, 0x6, 0xfffb}, 0x1d, [0x7ffe, 0xc95a, 0xfffffff3, 0x9, 0x80, 0x2, 0x3, 0x7f, 0x6, 0x4d, 0x39cc191a, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x5, 0x8, 0x8, 0x4, 0x3c5b, 0x1, 0x9, 0x9, 0x1, 0x1f461e2c, 0x22, 0xe661, 0x9, 0x7, 0x101, 0x7fff, 0x4c74, 0x80000000, 0x242, 0x3, 0xe, 0x0, 0x71, 0xfffffff8, 0x7, 0x3, 0x0, 0xd, 0x8a80000, 0x8f, 0x6, 0x10000006, 0x0, 0x5, 0x4, 0x8, 0x0, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x4, 0xffff, 0x131, 0x8000, 0x10, 0xfffffff3, 0x129432e6, 0xcb, 0x28, 0xd, 0x2bf, 0x6c9, 0x9, 0x6, 0x3, 0x0, 0x7, 0x8, 0x0, 0xe, 0x4, 0x78, 0xd, 0x0, 0x4, 0x4, 0x8000, 0x9, 0x400, 0x4, 0x0, 0x7, 0xff, 0x20005, 0x8, 0x5f31, 0x4, 0x1000, 0x2, 0x40002, 0xa, 0x4, 0x9, 0xb, 0x800, 0x6, 0x7, 0x80000000, 0x1, 0x44, 0xffff, 0xa, 0x7f, 0x9, 0x2, 0x9, 0x9, 0x1, 0x2, 0x3, 0x2, 0x48c93690, 0x42, 0x2], [0x7, 0x4, 0x0, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7fff, 0x3, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x9, 0x8000, 0x9, 0x5, 0x7ff, 0x2, 0x3, 0x4, 0x4, 0x6d01, 0x5, 0x38, 0x800003, 0x200, 0x80, 0xf, 0x4, 0x4, 0x101000, 0xa2, 0x7, 0x53cf697b, 0x6c50, 0x7, 0xac8, 0xbf, 0x2, 0x200, 0x7ff, 0xfffffff9, 0x1, 0x80001, 0xffff, 0x3, 0x9, 0x1c, 0x120000, 0x1d96, 0x6, 0xaaed, 0x4, 0x65], [0x5, 0xbb31, 0x3, 0xb, 0x5, 0x938, 0x6, 0x4, 0x2, 0x5, 0xce7, 0x1ff, 0x2, 0x7, 0x5, 0x3, 0x101, 0x10000, 0x6, 0x7ffe, 0x8, 0xa620, 0xfffffffd, 0x5, 0x1, 0x2, 0x14c, 0x60a7, 0xd, 0x6, 0xffffffff, 0x80000000, 0x5, 0x8, 0xc8, 0xee1, 0x5, 0xffff, 0x5, 0x7f, 0x100, 0x9602, 0x7, 0x2, 0x4, 0x6, 0x1, 0x10080, 0x5, 0x8, 0x30b1d693, 0xa1f, 0x8, 0x7, 0x1, 0x2, 0x0, 0x4, 0x5, 0xb1c, 0x1, 0x200, 0xffff3441, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

1.260868581s ago: executing program 3 (id=2759):
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x528}}, 0x4800)
r0 = syz_io_uring_setup(0x881, &(0x7f0000000480)={0x0, 0xe7ae, 0x0, 0x2, 0x3}, &(0x7f0000000440)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_POLL_REMOVE={0x7, 0x2})
io_uring_enter(r0, 0x47ba, 0x0, 0x0, 0x0, 0x0)
io_setup(0x5, &(0x7f0000000100)=<r3=>0x0)
ioperm(0x0, 0x3, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x7, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="720ac4ff0000950000000000000000000000001000000062b600"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
io_pgetevents(r3, 0xc, 0x0, &(0x7f0000000040), &(0x7f0000000140), 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x181, 0x0)
r4 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB, @ANYRES32=0x1], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000240)=ANY=[@ANYRESOCT=r5, @ANYBLOB="e643fabfd7e78b460324157a1d83f469fa7e551bd0ef83f87cd4a07e30380c40b51beaefca", @ANYRESHEX=r4], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x3a, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r6}, 0xc)
socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000640)={0x28, 0x0, 0x2710}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0xa0c}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r7, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r8 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
getsockopt$XDP_MMAP_OFFSETS(0xffffffffffffffff, 0x11b, 0x1, 0x0, &(0x7f0000000100)=0x60)
preadv(r8, &(0x7f0000000580)=[{&(0x7f0000000640)=""/102396, 0x18ffc}], 0x1, 0x0, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000940)=ANY=[], 0xfffffffffffffd7d)

1.126315836s ago: executing program 0 (id=2760):
syz_open_dev$cec(&(0x7f0000000000), 0x0, 0xe2940)
bind$inet6(0xffffffffffffffff, &(0x7f0000d84000)={0xa, 0x2, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0x9}, 0x1c)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000400)={{{@in=@broadcast, @in6=@loopback, 0x0, 0x4000, 0x4e23, 0x0, 0xa, 0x0, 0x5284e0394ff026bd}, {0x3, 0xfffffffffffffffe, 0x0, 0x0, 0x8, 0x0, 0xffffffffffffff9a, 0xfffffffffffffffe}, {0x0, 0x0, 0x0, 0x6}, 0xffffffff, 0xfffffffc, 0x0, 0x1, 0x3}, {{@in=@private=0xa010101, 0x0, 0x6c}, 0xa, @in=@loopback, 0x0, 0x4, 0x0, 0x0, 0x0, 0x9, 0x5}}, 0xe4)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000500), 0x334a01, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, 0x0)
socket$kcm(0x2, 0xa, 0x2)
r2 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r2, &(0x7f00000001c0)={0xa, 0x4e23, 0xffff0000, @ipv4={'\x00', '\xff\xff', @dev}, 0x8}, 0x1c)
setsockopt$sock_linger(r2, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
sendmmsg$inet6(r2, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000540)="acd1c236d73c716d8af6614f373e6a768c32ef7a69aca168c4388e85d5bcd8cf6bb49088c2af906abd80357888fac25c5d979326bb3ca3e11f2cb3adb87a5b34d898270819ceca309c8aed840d8425216950fdc54846824230117b4c8892543db1bf39c0a270d6c3bb3f83576e0a7ec43b3e4779ed2db1924a69f8e20358d7e7822472056fd900bf9c091e2def28179f89b7f2ee3e0097965f20a500d7d4add269dfc3383531", 0xa6}, {&(0x7f0000000600)="9a350da1ec4915a804a82f8eb37037d39509eede27e0148028bb30dc71196db00ee18257ef69228cc45dd880b9e4c34642fa7a8fb88531a0d038ce650644a1f08774ea498ab25b6f8457ac695c85b60d20e8bfec4df602ee0dab5948548251da3abd8a6785b8e21f686b51bf86863d60d6ba65d3da54a792554d2031e9c53398c1abf7082636595ad71db55e9d8e28e408da78c9f6894853c2971869b5986bd3abdd9c3f8c52d8760a2e6efd960ede94641d6f30d47ea96cd710c62ff033edebc2835661e793d15db328c8d6cccd6ad0d27f038377010cd6914b18136ec61f14b7f0e2b887ecd20c", 0xe8}, {&(0x7f0000000700)="2abc3d1c91e5fb75682a170c48c05371e19fc165c9f058d4e7bcaa17df99e0bb5517619a36a3de1fb1854f953342df7a34f8c96819221dcb4d4bc50f46a06a10782e90882d18bd7de98f89f7efde38be3effcb9abd50e855150516c8261b4438a07c75053dcfd188d46e2b682b7564c64af2ed01d6a70b4357ce58626218775e7aec5921c8bfd7886e01f2ba3c6d1248890f632ea18201300e0bddeb9bc335f7681d56760ca97612459d52c86c8699ac0610d21750502f052352859f6b1e1549ae0a916afaf088d17cbb33ffaa394106ab6f0499d5f6b454ad9b4a0adc", 0xdd}, {&(0x7f0000000240)="72d059f825794758133ab7ff85ed3beb7766378aea064b07fd46d45ea369b80754b64fe64cc764a85d14bcc56a34b75eacf5ecd9a77f6a09f98e4c815c46869bb763e1f276453de1663bf95bd71859822b2cdb1dd9b9fb4c2a2f498ad47abccda8e58b14d11205212424334733b9a5d9ea79ed2c924c46ada500", 0x7a}], 0x4}}], 0x1, 0x4001404)
prlimit64(0x0, 0x4, &(0x7f0000000800)={0x7, 0x7ff}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/fscaps', 0x0, 0x28)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
shutdown(r5, 0x0)
sendmsg$nl_route_sched_retired(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0xee, &(0x7f00000011c0)={&(0x7f00000083c0)=@delchain={0x34, 0x65, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x18}}, [@f_rsvp6={{0xa}, {0x4}}]}, 0x34}}, 0x0)
r6 = dup3(r5, r4, 0x0)
recvmmsg(r6, &(0x7f00000004c0)=[{{0x0, 0x0, 0x0}}], 0xf00, 0xf0, 0x0)
read$char_usb(r4, &(0x7f0000000300)=""/186, 0xba)
r7 = dup(r3)
write$6lowpan_enable(r7, &(0x7f0000000000)='0', 0xfffffd2c)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000000c0)='devtmpfs\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000001340)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r8 = openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080), 0x18)
getdents64(r8, &(0x7f0000000300)=""/154, 0x9a)

1.070883648s ago: executing program 1 (id=2761):
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x528}}, 0x4800)
r0 = syz_io_uring_setup(0x881, &(0x7f0000000480)={0x0, 0xe7ae, 0x0, 0x2, 0x3}, &(0x7f0000000440)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_POLL_REMOVE={0x7, 0x2})
io_uring_enter(r0, 0x47ba, 0x0, 0x0, 0x0, 0x0)
io_setup(0x5, &(0x7f0000000100)=<r3=>0x0)
ioperm(0x0, 0x3, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x7, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="720ac4ff0000950000000000000000000000001000000062b600"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
io_pgetevents(r3, 0xc, 0x0, &(0x7f0000000040), &(0x7f0000000140), 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x181, 0x0)
r4 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB, @ANYRES32=0x1], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000240)=ANY=[@ANYRESOCT=r5, @ANYBLOB="e643fabfd7e78b460324157a1d83f469fa7e551bd0ef83f87cd4a07e30380c40b51beaefca", @ANYRESHEX=r4], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x3a, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r6}, 0xc)
socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000640)={0x28, 0x0, 0x2710}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0xa0c}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r7, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r8 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
getsockopt$XDP_MMAP_OFFSETS(0xffffffffffffffff, 0x11b, 0x1, 0x0, &(0x7f0000000100)=0x60)
preadv(r8, &(0x7f0000000580)=[{&(0x7f0000000640)=""/102396, 0x18ffc}], 0x1, 0x0, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000940)=ANY=[], 0xfffffffffffffd7d)
ioctl$SG_GET_PACK_ID(r4, 0x227c, 0x0)
socket$inet(0x2, 0x3, 0x6)

1.011217563s ago: executing program 2 (id=2762):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040), 0x6)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
sendmsg$IPVS_CMD_FLUSH(0xffffffffffffffff, &(0x7f0000001340)={0x0, 0x0, &(0x7f0000001300)={&(0x7f0000001280)=ANY=[@ANYBLOB='B'], 0x4c}, 0x1, 0x0, 0x0, 0x50090}, 0x0)
bind$bt_hci(r1, &(0x7f0000000100)={0x1f, 0x0, 0x4}, 0x6)
write$binfmt_misc(r1, &(0x7f0000001280), 0x6)
bind$bt_hci(0xffffffffffffffff, &(0x7f00000000c0)={0x1f, 0x3, 0x1}, 0x6)
r2 = socket(0x848000000015, 0x805, 0x0)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}, 0x10}, 0x1c)
getsockopt$bt_rfcomm_RFCOMM_CONNINFO(r2, 0x12, 0x2, &(0x7f0000000140)=""/142, &(0x7f0000000200)=0x8e)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[], 0x24}}, 0x0)
ioctl$sock_bt_hci(r0, 0x800448d5, &(0x7f00000000c0))
pipe2(&(0x7f0000000040), 0x0)
syz_clone(0x20300000, 0x0, 0x0, 0x0, 0x0, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x81)
r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VIDIOC_S_FMT(r3, 0xc0d05604, &(0x7f0000000100)={0x8, @raw_data="729d2be8a81dbe044e4d3132923b8d7f4af476784874aacc0d873bae6a0813223ca4ca16900de311ef48fa4a4abbd801a17df1f3aaf7f2be36dfab20ed9865bb3cc1bc55c958d2fd09ed111d7d4bb94d2dc0c8564e1e4b9c2f1cc0be482a98d750ced0f31ce1b4538f966f2de957cf766280d4081cc5f9c937e2a7385264256009d9f5a15406154b01b523b6f49471f852500c5e813b5c8cf677183277465e9e776554b01eb4ccd3cecde58da08b564ea9c6d4fd86e0463bae754c0589045f733416c2481bbf919e"})
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
open$dir(&(0x7f00000068c0)='./file0\x00', 0x105500, 0x281)
dup(r4)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000540)={0x0, 0x1, 0x0, 0x1000, &(0x7f0000fef000/0x1000)=nil})
getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=@newtaction={0x14, 0x30, 0x100, 0x0, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x804}, 0x40040)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)

731.556639ms ago: executing program 2 (id=2763):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000380), 0x101040)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f00000003c0)={0x9c9, 0x0, 0x0, 'queue1\x00', 0x200000})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r2, 0xfff)
syz_emit_ethernet(0x0, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r1, 0x40605346, &(0x7f0000000280)={0x0, 0x0, {0x3, 0x2}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, &(0x7f00000000c0)={0x3, 0x2, 0x0, 0x0, 0x6})
ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0)
r3 = syz_open_procfs(0xffffffffffffffff, 0x0)
read$FUSE(r3, &(0x7f00000061c0)={0x2020, 0x0, 0x0, <r4=>0x0}, 0x2020)
setreuid(0x0, r4)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)

731.196121ms ago: executing program 0 (id=2764):
setreuid(0xffffffffffffffff, 0xee00)
r0 = socket(0x10, 0x803, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd1200000000000085000000d0000000b70000000000000095000000000000003fba6a7d36d9b18ed812a2e2c49e8020a6f4e0e4a9446ca2b5f1cc1a100a9af698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f010c5077da80fb982c1e9400c603146cea484a415b76966118b64f751a0f241b072e90080008002d75593a280000c93e64c227c95aa0b784625704f07a72c2918451ebdcf4cef7f9606056fe5c34665c0af9360a1f7a5e6b607130c89f18c0c1089d8b85880000c29c48b45ef4adf634be763288d01aa27ae8b09e13e79ab20b0b8ed8fb7a68af2ad0000000000000006f803c6468082089b302d7bff8f06f7f918d65eae391cb41336023cdcedb5e0125ebbccbddcf10cb2364149215108355ee570f8078be5cab389cd65e7133719acd97cfa107d40224edc5465a932b77e74e712a0d42bc6099ad23000000803a90bce6dc3a13871765df961c2ed3b1006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f40cab87b1586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9f081d6a08000000ea2b1a52496dfcaf99431412fd13f4cec49669e443dcb924cfe5f3185418d60532be9c4d2ec7c32f2095e63c8cdc28f74d043ef8dba2f23b01a9ae44cf945b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142bdda5e6c5d50b83bae616b5054d1e7c13b1355d6f4a8245eaa4997da9c77af40000000000000005f58351d599e9b61e8caab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a41326eea31ae4e0f75057df3c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57010000009700ce0b4b8bc22941330000000000000000000300000000000000000000000010008bc0d955f2a83366b99711e6e8861c46495ba585a4b2d02edc3e28dd279a896249ed85b9806f0b6c4a000000002b43dcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffff7f00000000df73be83bb7d5ad883ef07000000000000006da21b40216e14ba2d6af8656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff72943327d830689da6b53ffffffff631c7771429d1200000033ed846197fcff5e1c7c3d1d6e3a52872baef9753fffffffffffffe09fec2271fe010cd7bb2366fde4a59429738fcc917a57f94f6c453cea623cc5ee0c2a5ff870ce5dfd3467decb05cfd9fcd41df54cdbd9d10a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce978275d5bc8955778567bc79e13b78249788f11f708008b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe7d7fa29822aea68a660e717a04becff0f719107000000000000002d7e927123d8ecbbc55bf404571be54c72d978cf2804107f0238abccd32368e57040906df0042e19000000000000002c06f815312e086dd022c074eb8a322fb0bf47c0a8d154b405a07feaf3dd95f6ef44cd1fe582786105c7df8be4877084d4173731efe895efc71f665c4d75cf2458e35d2c9062ece84c99e061887a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb2b5e518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad055e4af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457ac0eaaa99bf0bdc14ae358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df9b3fdf242b985bf16b99c9cc0ad1857036f1a985f369191ae954febb3df464bfe0f773ee9afe72f32a2befb89d3777399f5874c553a2ebe9061fe86e669642e09c0e5a3bb6d163118e4cbe024fd452277c3887d6116c6cc9d8046c216c1f8a9778cb26e22a2a998de5eaeadea10d3cfb41b92ecbb422a40da8daccf080842a486721737390cbf3a74cb2003efb9a101b51ab63e9600040000b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde6e4a4304e50c349f4f9ecee27defd83871c5191e10096e7e60fc3541a2c905a1a95e9571bf38aebd15172f94e3245c582909e2a3bce109b6000000000000000000d6d5210d7560eb92d6a97a27602b81f7636df1535bef1497f90100000000000000abf9010000007740890200d627e87306703be8672dc84eeadba6a41891c170d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e7a45319f18101288a0268893373750d10a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7ef8c08acaf30235b920500d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69b93e9960ff5f74562adae283d9756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff85000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a31c72ad53bc19faa5401120000793ac48c1b539c75ab40743b00020000a1f68df75cf43f8ecc8d3726602111b40e761fd210a1920382f14d12ca3c3431ee97471c781d0d1280fb00818654a53b6df4b2c97cc1c98d85fda8f80fe908b65550b4412331d73062197655b7f0469250a5989cef0e10773920ed3ccee42d2c3eb80159da5c002511e6eb93842054cfce2ac306cb6e472db3fd67a49b6855a694a8d359add43907003223a47a7fae4f3748d5a432825bc40a03aaef1c8488d86dc211dd2a3ba71e0f45492ef1f8b65ccb3dcd251a61b152d02c29ca0a3328fa7753a5cddea1acaae55ae8263fb284b7a6ab2a8826c1b948207c498cf4824ab1ea3225a53072423b907c6682f8999e0311da5b8378bc841e1787e3a8128dda381a26cb2b365702ff8a27831375b2ddaa2f56e21169f7ca4fd9655ccd4a584acd244e965a0afedaff7c415ff682a4044b3381cc2df28278c9a6824c52048a7cfabda294925cc0956bffa8e950ff5e49f41ae600d830207bf728cd9807933c3c16d80bbea611a18becc2dc38ca0a6f5740f340b76edcd100fcffff007231dcef58c7b88b5aeedaf9626cb51ce1737c10ab37d4f98a934b0f900e0eb639878a1200629f5503cf679154d27681d7a3744cbcd42af59407c9c8e39c5271868917954e604352ba26171d004f1cb2976fab3fa19c7d3ef9678bff79f5155524f061378f94fb453786c3a6f78b10d383b49e31d1568bd43ee34ce6e6be235aa6207285665c2fba773671da41959f51610963b48930658e2d6125a26085001345b0473240b7e5e91811312c43663e76f711c6529ecdec75c7ea1cf0f8f8fff40247d59bbde2ebb8659197e0f37a71be1b12a182ed7de3acba28561a04b807f7a4647e2ea6d8fb92541d07c3d5e4ba077d3cad9f8ba1919592014c00c8eccb2ca5d48ba7b1c3fb185a4bb79700cf51f818b0c701c8de47d12281a67bdaf4b0c50bee9e8f5936250df2e15c1172e7ea6619f7db330700d1e9e42a035e6fd532f61fbfed9c4a7124a1e38eee50a6bbcd1d4e3f68c3f27dd9a70f1a7c6046237ddfb0b26e197322226367d998010458cd4df10af249ce717f6f45e5176e0ddae3054d7289d4e13ab0912703ee39ce264572b89194fdf7acecc35cf8309d4b680a08eed367dad855fce210f1a7c7222dd360eafb4bef7d58bf83362930af6e3f3f851abdc0003bdf9401b533019e90feb069189100007a82df8d9b5f44ebf9355e7b1b01c9470608d4f306d21004730396a4d6c6d46e1ffac97aa93c36123532a36186575266be4981c847160079421d0137801e553069f8d025c40f287378810defc7f2ed4e15f6af17b21153394f8bcfa6a23a77c8d61c9bbc127a57b8d631f36558d9093dee08bc53d97a8003363421738650a22c8fd87b13026799caf58e59951b125e7f161ca34e2c0dd65a23d01a3cb191e743de07247c7f993cf01166fa2ac1ba02f60550e63a7f50422e478c6b5d87f9bd0567a279a9d85a380db25c43bd0529ad783b9d64aaac1b793afb44b7126e17d2b7c0d6be650de7eeef3f3605af344015d03c3e7819145cb9fe1978c98bf9cf10773db59505ae33708c728844c872dfd2cb0b29008000000000000005ca18cb72f0944d0e4fea0a0abd0285bdaf1b000000c089d640c2facb0d1e6243873ac4b1e1068c45c715b68effb7d58d1f9e726dbf6bd910ca4ce0e075658ede42192cf393a50dcc197b03402fed75083628e5dd38213d353b9049e71f037064b05e73ec00c710f1ffc5737d397d555d1cf8859cc030ea8dc3c6a5b3b6fa1c81707479db1833d593a271253aa11efd936b74784f2fc286814848e92d8ee541bc179813297a0a4cc3c8f80c28701185bea091f32475e859479b734727afc110e1abcff460172fd1b42e3c0e2a4bf94a060069000010000087c7572a1e7596f89e5c3d5e70640c90815f77b7b13d0000000085a1e1e84900000000000000000000000000b422fc160a458ee5a91a2471e6e56fdabec6c73ce8983fc68f0b7cdcdde632e6f54a07620e8aa116ce9e84fc3cd5e8288a333dcebb233da9186796995ba69487d8f77d2f8800f02d690fc70a08b231cad1bdcf3740a95d4dd1cfe0f417f275493cf33b19ffff93dfdaf7eb00b8ad87cdf7c21bab5af8e2bac54ee5597e6508c1158124a538c36f9bb11fea7d8b8c7e954b1bc7811654a6636b33f271d0923e9ecd1b724b8feffadfc23c07000000f0785fb722f346d6a5dffe1884d4d0cd8f00000092c85ed44db68ab800001f00000000406e6ed9b219ad07125381087298e75965d1cc5932ddf9e66351b9332a34bee3e3d562c914c629933f0b8724cf680889ade72558d191d9890c69a718f9018586c5131c8dc8e0379bafda1a0fd2997ff115215ce23dca8db7236c1554cdaaadcce2f31834c1bd1908d8e1b361034db56be76acb7654a195bc3e98df3a5dffd5b0783883ef7da3433110e37f7c7cb7f3800de7f99abf910d6949e062747a9c87dcfcc716d6a9c0ec53b9cffe3cfd1df69a76f373d7f997edb9b80bdea1a99c2a6fbb25e035deadaadd7917ebfedd6304a19491769476208684e343f86b4d55a7dbbb07283cb1e35a138d24ebc5b4f8e35a82d3a7f84cb1e02a5a92b53567088be0b1ca023ccd518c0e0715b1c8760801a419ebd2e26440ff7493019bdb655cc88d72d6d7b6bca5a2e19b63ec52fce43d8c53a8031e64026e0d36b6401064c49a729f11ab377f7132c5232bb80195dd5d43d29646a9378eea0761b7ed9d2172e33ed87c7413c843b180cc00000000006bedf2ed716ca43a941119b96d82b26d9061de240d85ec2cfa462bd52104489bb7a7548d7cc53627031e909c69cb824233975a1ea645de63522407c3a240a37e946f30ebf075ea97846a0a8d2286f3f446b1b99ab83a12ddf8a1c06294eadc3eb3e339591afd5c00000000000000000000000000000000000000000000000000579dad8347a3d16976bb7483840b32db0158fb6c809349333325a7866ca5d3133e33ef1a183cefdb65a79fa71800988c8445029e024822dbcfcab49c3a0aec9bd43e6e14078b260700d849a2aa14c9b593f6dcb1de334c065ecfd65031606e55949c185bcda9fde4f9b46a76b8a24bbcd31b22373eb0473248150cd179405ee1af1183b0c0ce3483dc1d9bf732b0751b78fb211d6706b55960c6431afbc02b3c7e08086573939290bb9e590a3875f02a828b07f1dc7df9c8e5da22dfb9dacbf5529e4e994128d835f85465173ea7bbcc519a0c9798ce8b1b07567e3e07169c8c3e4da8bf725c050000000000000000000000000000000000000000004775abdf0c62728eb55a9e2849a1ce05bed60dfe4cc9fa43f9684297c02382c0a35829be7a86305792a9d2e80ca9e8fc50f31f6e0fa810303da03d8b74b42c1ebaf16bb343256405a3a07229a54de09a97b269cd29e8b2f0b0d46c51a6a93eec37f4bc6e29a8e19120ae050ab682662e9b2cc3263a4aba62b63ca9123a53c0f4bf3c4463b8144c89bf058a0af0ae9fc2b7cdfc4817703e267cddc193637d7fd97646090da37093657643daae3840c7f5c10f93524f7ae4791ec6e9d9722e5f670ccb358e051a"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@fallback=r1, r1, 0x2f, 0x2024, 0x4, @void, @void, @value}, 0x20)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000280)=@ethtool_channels={0x3d, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x2000000}})

628.113148ms ago: executing program 0 (id=2765):
r0 = openat$nullb(0xffffff9c, &(0x7f0000000100), 0x40400, 0x0)
ioctl$BLKGETSIZE64(r0, 0x80041272, &(0x7f0000000140)) (async)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0xb3) (async)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000080)={0xffffffffffffffff, &(0x7f0000000300), 0x0}, 0x4b) (async)
r1 = userfaultfd(0x801) (async)
setreuid(0x0, 0xee01)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000040)) (async)
ioctl$UFFDIO_WRITEPROTECT(r1, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000800000/0x800000)=nil, 0x802000}, 0x2})

626.06078ms ago: executing program 2 (id=2766):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, &(0x7f0000000000)="5766b1b827f6003300", 0x10)

625.491397ms ago: executing program 2 (id=2767):
r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x80083, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x101, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000140)=ANY=[@ANYRES16=r3])
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000040)=ANY=[])
syz_emit_ethernet(0x76, &(0x7f00000005c0)={@local, @remote, @val={@void, {0x8100, 0x0, 0x0, 0x4}}, {@ipv4={0x800, @gre={{0x7, 0x4, 0x1, 0xd, 0x64, 0x64, 0x0, 0xd1, 0x2f, 0x0, @empty, @initdev={0xac, 0x1e, 0x1, 0x0}, {[@generic={0x86, 0x8, "c0d3fc5bfb3c"}]}}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x880b, 0x0, 0x0, [0xc0d]}, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, [0x1f88]}, {0x1, 0x0, 0x1, 0x1}, {0x8, 0x88be, 0x2, {{0x3, 0x1, 0x0, 0x0, 0x1, 0x1, 0x3, 0xd}}}, {0x8, 0x22eb, 0x0, {{0x1, 0x2, 0xe2, 0x1, 0x0, 0x2, 0x2, 0x7}, 0x2, {0x7fffffff, 0x9, 0x1, 0x8, 0x0, 0x0, 0x3, 0x1, 0x1}}}, {0x8, 0x6558, 0x3}}}}}}, 0x0)
syz_emit_ethernet(0xfc2, &(0x7f0000000000)=ANY=[@ANYBLOB="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"], 0x0)
ioctl$SNAPSHOT_AVAIL_SWAP_SIZE(r0, 0x80083313, 0x0)
r4 = syz_open_dev$swradio(&(0x7f0000000140), 0x0, 0x2)
r5 = dup(r4)
read(r5, &(0x7f0000000040), 0x0)
ioctl$VIDIOC_S_CTRL(r5, 0xc008561c, &(0x7f0000000000)={0xf0f046})
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000080)='signal_generate\x00', r6}, 0x10)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r8}, 0x10)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000004c0)={@cgroup, 0x33, 0x1, 0x8, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6, 0x0, &(0x7f0000000040)=[0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0], <r9=>0x0}, 0x40)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000500)={@fallback=r7, r8, 0x12, 0x200c, 0x0, @value, @void, @void, @void, r9}, 0x20)
r10 = openat$ndctl0(0xffffff9c, &(0x7f0000001040), 0x40000, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x40000000af01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000000340)={0x0, 0x1, 0x0, &(0x7f0000001600)=""/118, 0x0, 0x3332f000})
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f0000001500))
r11 = dup(0xffffffffffffffff)
ioctl$VHOST_NET_SET_BACKEND(0xffffffffffffffff, 0x4008af30, &(0x7f0000000040)={0x0, r11})
ioctl$VHOST_NET_SET_BACKEND(0xffffffffffffffff, 0xaf02, 0x0)
read$FUSE(r10, &(0x7f0000001140)={0x2020, 0x0, 0x0, <r12=>0x0}, 0x2020)
mount$9p_fd(0x0, &(0x7f00000010c0)='./file0\x00', &(0x7f0000001100), 0x2000, &(0x7f0000003180)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {}, 0x2c, {[{@version_9p2000}, {@posixacl}, {@msize={'msize', 0x3d, 0x41}}, {@version_L}], [{@obj_type={'obj_type', 0x3d, '\x00'}}, {@smackfsfloor={'smackfsfloor', 0x3d, 'Z]'}}, {@euid_lt={'euid<', r12}}, {@dont_hash}, {@flag='async'}, {@fscontext={'fscontext', 0x3d, 'system_u'}}]}})
r13 = syz_open_dev$mouse(&(0x7f0000001080), 0xfa, 0x400000)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000003300)={@ifindex, r5, 0x31, 0x2008, 0x0, @value=r13, @void, @void, @void, r9}, 0x20)

594.021119ms ago: executing program 0 (id=2768):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(0xffffffffffffffff, 0x40bc5311, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x7, 0x4, 0x6, 0xfffb}, 0x1d, [0x7ffe, 0xc95a, 0xfffffff3, 0x9, 0x80, 0x2, 0x3, 0x7f, 0x6, 0x4d, 0x39cc191a, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x5, 0x8, 0x8, 0x4, 0x3c5b, 0x1, 0x9, 0x9, 0x1, 0x1f461e2c, 0x22, 0xe661, 0x9, 0x7, 0x101, 0x7fff, 0x4c74, 0x80000000, 0x242, 0x3, 0xe, 0x0, 0x71, 0xfffffff8, 0x7, 0x3, 0x0, 0xd, 0x8a80000, 0x8f, 0x6, 0x10000006, 0x0, 0x5, 0x4, 0x8, 0x0, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x4, 0xffff, 0x131, 0x8000, 0x10, 0xfffffff3, 0x129432e6, 0xcb, 0x28, 0xd, 0x2bf, 0x6c9, 0x9, 0x6, 0x3, 0x0, 0x7, 0x8, 0x0, 0xe, 0x4, 0x78, 0xd, 0x0, 0x4, 0x4, 0x8000, 0x9, 0x400, 0x4, 0x0, 0x7, 0xff, 0x20005, 0x8, 0x5f31, 0x4, 0x1000, 0x2, 0x40002, 0xa, 0x4, 0x9, 0xb, 0x800, 0x6, 0x7, 0x80000000, 0x1, 0x44, 0xffff, 0xa, 0x7f, 0x9, 0x2, 0x9, 0x9, 0x1, 0x2, 0x3, 0x2, 0x48c93690, 0x42, 0x2], [0x7, 0x4, 0x0, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7fff, 0x3, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x9, 0x8000, 0x9, 0x5, 0x7ff, 0x2, 0x3, 0x4, 0x4, 0x6d01, 0x5, 0x38, 0x800003, 0x200, 0x80, 0xf, 0x4, 0x4, 0x101000, 0xa2, 0x7, 0x53cf697b, 0x6c50, 0x7, 0xac8, 0xbf, 0x2, 0x200, 0x7ff, 0xfffffff9, 0x1, 0x80001, 0xffff, 0x3, 0x9, 0x1c, 0x120000, 0x1d96, 0x6, 0xaaed, 0x4, 0x65], [0x5, 0xbb31, 0x3, 0xb, 0x5, 0x938, 0x6, 0x4, 0x2, 0x5, 0xce7, 0x1ff, 0x2, 0x7, 0x5, 0x3, 0x101, 0x10000, 0x6, 0x7ffe, 0x8, 0xa620, 0xfffffffd, 0x5, 0x1, 0x2, 0x14c, 0x60a7, 0xd, 0x6, 0xffffffff, 0x80000000, 0x5, 0x8, 0xc8, 0xee1, 0x5, 0xffff, 0x5, 0x7f, 0x100, 0x9602, 0x7, 0x2, 0x4, 0x6, 0x1, 0x10080, 0x5, 0x8, 0x30b1d693, 0xa1f, 0x8, 0x7, 0x1, 0x2, 0x0, 0x4, 0x5, 0xb1c, 0x1, 0x200, 0xffff3441, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

471.588859ms ago: executing program 2 (id=2769):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x121600, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002ec0)=@deltfilter={0x1844, 0x2d, 0x8, 0x70bd27, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x1, 0x2}, {0x0, 0x6}, {0x10, 0x1}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x3}}, @filter_kind_options=@f_matchall={{0xd}, {0x1764, 0x2, [@TCA_MATCHALL_ACT={0x10c0, 0x2, [@m_skbmod={0x10bc, 0x1e, 0x0, 0x0, {{0xb}, {0x90, 0x2, 0x0, 0x1, [@TCA_SKBMOD_DMAC={0xa, 0x3, @local}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0x9, 0x3, 0xffffffffffffffff, 0x1}, 0x1}}, @TCA_SKBMOD_SMAC={0xa}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0x4, 0x8, 0x3, 0x5}, 0x3}}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0x2}, @TCA_SKBMOD_SMAC={0xa, 0x4, @broadcast}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0x10000, 0x8, 0x7, 0x5, 0x250c}, 0xb}}]}, {0x1004, 0x6, "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"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}]}, @TCA_MATCHALL_FLAGS={0x8, 0x3, 0x4}, @TCA_MATCHALL_FLAGS={0x8, 0x3, 0x3}, @TCA_MATCHALL_CLASSID={0x8, 0x1, {0xf, 0x3}}, @TCA_MATCHALL_FLAGS={0x8, 0x3, 0x6}, @TCA_MATCHALL_FLAGS={0x8}, @TCA_MATCHALL_CLASSID={0x8, 0x1, {0x8, 0x7}}, @TCA_MATCHALL_ACT={0x668, 0x2, [@m_tunnel_key={0x80, 0x1a, 0x0, 0x0, {{0xf}, {0x50, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_ENC_KEY_ID={0x8, 0x7, 0x3}, @TCA_TUNNEL_KEY_NO_CSUM={0x5}, @TCA_TUNNEL_KEY_NO_CSUM={0x5, 0xa, 0x1}, @TCA_TUNNEL_KEY_NO_CSUM={0x5}, @TCA_TUNNEL_KEY_ENC_IPV6_SRC={0x14, 0x5, @dev={0xfe, 0x80, '\x00', 0x3a}}, @TCA_TUNNEL_KEY_NO_CSUM={0x5}, @TCA_TUNNEL_KEY_ENC_IPV4_DST={0x8, 0x4, @remote}, @TCA_TUNNEL_KEY_ENC_IPV4_DST={0x8, 0x4, @loopback}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x6}}}}, @m_ife={0x80, 0x17, 0x0, 0x0, {{0x8}, {0xc, 0x2, 0x0, 0x1, [@TCA_IFE_TYPE={0x6, 0x5, 0xc}]}, {0x50, 0x6, "18051010c94fd1d39ae95108017446b2ece37614eab094bf4c2be8237f1a660a76dc7bfcc91d299befad7ae9129ed0fbbb184e28d8a51320d2760238213979d55b669f679ca159adf698e616"}, {0xc}, {0xc, 0x8, {0x1, 0x1}}}}, @m_mirred={0x124, 0x1b, 0x0, 0x0, {{0xb}, {0xe4, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0xc, 0x81, 0x20000000, 0x1, 0x101}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x8, 0x7, 0x1, 0x1}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x1ae8, 0x9, 0x20000000, 0xfffff000, 0x1}, 0x2}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x9, 0xd16a, 0x3, 0x9, 0x2}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x3, 0x4, 0xffffffffffffffff, 0xc2, 0x8}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x800, 0x3f4c, 0x3, 0x33049e9a, 0xfffffffc}, 0x1}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x3, 0x101, 0x1, 0x5, 0x40}, 0x3}}]}, {0x18, 0x6, "8b5f8dcc305272a0d0afbfe3ee36cb2fae24e010"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}, @m_ctinfo={0x10c, 0x8, 0x0, 0x0, {{0xb}, {0x3c, 0x2, 0x0, 0x1, [@TCA_CTINFO_ACT={0x18, 0x3, {0xe2a3, 0x1, 0xffffffffffffffff, 0x0, 0x2}}, @TCA_CTINFO_PARMS_DSCP_STATEMASK={0x8, 0x6, 0x2}, @TCA_CTINFO_ACT={0x18, 0x3, {0x1, 0x5, 0x5, 0x8, 0x789a}}]}, {0xa6, 0x6, "08233930e17de5f6948722a44ce8edb17aa0849a6b909bf6675a02693fb1ac58ced0d77bf8814691e9450c28120efd02c55a41e5066ec066ed0fdc309f691eb73c033d8deea3954d8eecaa44b0dc7897343d1574c0e967bd100bb6e2e6c689608a651cc287c4f89b71a920b9103ba527cb8935b9f71b28cfdf48dfdd626ac0ed55b7d986848e4667dd54bd4869ec75a57747fa10f6fea5dfc42b23bd637006fc34be"}, {0xc}, {0xc, 0x8, {0x1, 0x3}}}}, @m_mirred={0xb0, 0x16, 0x0, 0x0, {{0xb}, {0x84, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x5, 0x40450c12, 0x10000003, 0x9, 0x5}, 0x2}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x3, 0x5, 0x20000000, 0x4677, 0xffffffff}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x4, 0x32f, 0x2, 0x2, 0x1}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0xf3, 0x40, 0x7, 0x9, 0x80}, 0x1}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}, @m_connmark={0xe8, 0x19, 0x0, 0x0, {{0xd}, {0xac, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xb, 0xfffffff7, 0x5, 0x7, 0xc94c}, 0x5}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x7, 0x0, 0x10000008, 0x6, 0x6}, 0xa00}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x80000000, 0x8, 0x2, 0x80000000, 0x1}, 0x67f}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xc192, 0x10001, 0x2, 0xe, 0x8001}, 0x7}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x0, 0x7, 0x1, 0x66c5fb6d}, 0x4}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x200, 0x6, 0x7, 0x1, 0x1}, 0x2}}]}, {0x10, 0x6, "b8db2b5b9de77452aef9175f"}, {0xc}, {0xc, 0x8, {0x0, 0x3}}}}, @m_simple={0xf8, 0x8, 0x0, 0x0, {{0xb}, {0x48, 0x2, 0x0, 0x1, [@TCA_DEF_PARMS={0x18, 0x2, {0x0, 0x5, 0xffffffffffffffff, 0x800, 0x7}}, @TCA_DEF_DATA={0x8, 0x3, '\'+}\x00'}, @TCA_DEF_DATA={0xa, 0x3, '!)$&}\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0x5, 0x9, 0x0, 0x1, 0xfffffff7}}]}, {0x86, 0x6, "d41bef041e57bbfad6a5fc68ac95d7d9e678ca533b5f3d588b26df19acb779c1b3458f3a39064774c322e073951578c5edd9bb4c0a6b755b7f393eb21e70e4fe5b66a65d8a2c98bd529ed487c5af0989a04d727fd6016f05e222cb99ef9d4945a860ec0a9e299b54d7c7855b59bf6b0d9a234312d27c34231cdac6d8017f810b1355"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x2}}}}, @m_sample={0xa4, 0x1a, 0x0, 0x0, {{0xb}, {0x6c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_RATE={0x8, 0x3, 0x9}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x2, 0x0, 0xffffffffffffffff, 0x4a280c17, 0x4}}, @TCA_SAMPLE_RATE={0x8, 0x3, 0x2}, @TCA_SAMPLE_RATE={0x8, 0x3, 0x9}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x3, 0xa1b1, 0xffffffffffffffff, 0x3, 0xfffffff6}}, @TCA_SAMPLE_PSAMPLE_GROUP={0x8, 0x5, 0x9}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x7fffffff, 0x0, 0x10000000, 0xffff, 0x3}}]}, {0x10, 0x6, "3079e0a55902730362e6b9c0"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x2}}}}]}, @TCA_MATCHALL_FLAGS={0x8, 0x3, 0x3}]}}, @TCA_CHAIN={0x8, 0xb, 0x2}, @TCA_CHAIN={0x8, 0xb, 0x1}, @filter_kind_options=@f_u32={{0x8}, {0x84, 0x2, [@TCA_U32_MARK={0x10, 0xa, {0x2d43, 0x2}}, @TCA_U32_CLASSID={0x8, 0x1, {0xffff, 0x8}}, @TCA_U32_MARK={0x10, 0xa, {0x1, 0x3}}, @TCA_U32_POLICE={0x40, 0x6, [@TCA_POLICE_TBF={0x3c, 0x1, {0x5, 0xffffffffffffffff, 0x14, 0x0, 0x7, {0xb, 0x2, 0x0, 0x4d1d, 0x4, 0x81}, {0x2, 0x0, 0xfddb, 0xa515, 0xffff}, 0xd0d1, 0x3, 0xd363}}]}, @TCA_U32_FLAGS={0x8, 0xb, 0x5}, @TCA_U32_POLICE={0x10, 0x6, [@TCA_POLICE_RATE64={0xc, 0x8, 0x4}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x1}}]}, 0x1844}, 0x1, 0x0, 0x0, 0x24000010}, 0x0)
openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c00"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x6c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x40, 0x4, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, @immediate={{0xe}, @val={0x28, 0x2, 0x0, 0x1, [@NFTA_IMMEDIATE_DREG={0x8}, @NFTA_IMMEDIATE_DATA={0x1c, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x18, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}]}]}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x94}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)=ANY=[@ANYBLOB="1400000010000100000000000a2c000000050a09000000000000000000020000000900010073797a30000000000900030073797a3200000000140000001100010000000000000000000000000a00000000"], 0x54}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0xfffffffffffffe79, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [{0x90, 0x1, [@m_ct={0x44, 0x7, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9c, 0x11e41e7a, 0x7, 0x2, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x4000005)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r6 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$EBT_SO_GET_INIT_ENTRIES(r6, 0x0, 0x83, &(0x7f00000001c0)={'nat\x00', 0x0, 0x0, 0x2f, [], 0x0, 0x0, 0x0}, &(0x7f0000000240)=0xe0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
sendmsg$802154_dgram(r1, &(0x7f0000000000)={&(0x7f0000000040)={0x24, @none={0x0, 0x3}}, 0x14, &(0x7f0000000100)={0x0}, 0x7, 0x0, 0x0, 0x41}, 0x0)
ioctl$sock_SIOCINQ(r1, 0x541b, 0x0)

471.096797ms ago: executing program 0 (id=2770):
arch_prctl$ARCH_SHSTK_ENABLE(0x5001, 0x0)
io_uring_setup(0x3c92, 0x0)
mknod$loop(&(0x7f00000017c0)='./file0\x00', 0x2480, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000021c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',euid=', @ANYRESDEC=0x0, @ANYBLOB="1a666f776f65723d5fc520d1d13326d0a2a8c646a195d1e4a0fb454bec09fa0e4ee32693db58919bb386ac211d8d3578fa7fd8871d45fa6e3a831a61417ff050f43db3c05f45bd967f88d11c6fd5035076733f63b3d0d786b7fb8b6cb5f20ac7119866d792795215379dfd2abfd4959d54ecc9ed2c4be38258e60df925051c08c1e8a0c3ba424278ff7568ece8e3831e3ce62c12c1", @ANYRESDEC=0x0, @ANYBLOB=',fscontext=sysadm_u,ro,dont_measure,dont_hash,permit_directio,nolazytime,\x00'])
openat$sndseq(0xffffffffffffff9c, 0x0, 0x105841)
r1 = syz_open_procfs(0x0, &(0x7f0000002740)='net/igmp\x00')
openat$uinput(0xffffffffffffff9c, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2a, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0xe, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x0, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x7, 0xfffffffd}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0500000000010000000100008900000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000640)={0x0, 0x0, 0x0, &(0x7f00000002c0), 0x8, r5}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x1b, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x2, 0x90)
getgroups(0x0, 0x0)
ioctl$TCSETSW2(0xffffffffffffffff, 0x5453, 0x0)
read$FUSE(r1, &(0x7f0000000140)={0x2020}, 0x2061)
mount(&(0x7f00000000c0)=@filename='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000080)='ubifs\x00', 0x0, 0x0)

141.295551ms ago: executing program 3 (id=2771):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000000)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="212800000000000000000b00000008000300", @ANYRES32=r2, @ANYBLOB="20005080090001005d7a00060000000005000200050000000800030006ac0f"], 0x3c}}, 0x0)

92.629428ms ago: executing program 3 (id=2772):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0xd, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f00000000c0)=[{0x0, 0x5, 0xa, 0x3}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
io_setup(0x4082, &(0x7f0000000380))
unshare(0x400)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r5, &(0x7f0000000000)={0x18, 0x0, {0x1, @random="f8cbdf19c4b8", 'lo\x00'}}, 0x1e)
ioctl$PPPOEIOCSFWD(r5, 0x4008b100, &(0x7f0000000040)={0x18, 0x0, {0x1, @broadcast, 'lo\x00'}})
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/profiling', 0xa0042, 0x0)
write$tcp_mem(r6, &(0x7f0000000280)={0x7, 0x2d, 0xffffffffffffffff, 0x3a, 0x0, 0x2c}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0xb, 0x19, &(0x7f0000000700)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x9f}, [@map_idx_val={0x18, 0xa, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x80}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r6}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x3}}, @initr0={0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x400}, @alu={0xce29e5354d59a59e, 0x1, 0xb, 0x5, 0x6, 0x10, 0x1}, @printk={@i, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x6}}]}, 0x0, 0x6, 0x0, 0x0, 0x41000, 0xc, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001400)={0x0, 0xf, 0x8c8e, 0x8}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r7=>0x0})
r8 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001800)={0x6, 0x3, &(0x7f00000006c0)=@framed, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r7, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000240)={r8, r7, 0x25, 0x8, @val=@iter={0x0}}, 0x20)
socket$nl_route(0x10, 0x3, 0x0)

0s ago: executing program 1 (id=2773):
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f00000006c0)=ANY=[@ANYBLOB="18020000000000000000000000000030850000002c00000095000000000000002b4003fe37a077ae55f52c0d80a2749baca85309be96d5a45bbb29ea06f9cbc7eea15bc1ee369d2707231280f0415df341ab76de90db5ff7ffffffd075b373f51be98db7efbbe8e04acb807fbbabc68abdcce9f672b6bb61c302dfd5c1f870adac29fd64d33a3502fbeb1ed99dd0e792f24c420bfcc2635421d339ad521d6953b1137850d9e9ebf65ee988ea2dbee528678eacb4389adbb47efb7b3f19046c7f1bd1bf56e58555d96137f95b3aacd74ed1c8a8676468cf2405e48723c6b1ff3698422f88ffed8617dd64330f4c38ba86e3b50da03f4b1e4808aa5c9e9546d7190747c6abc5beab28cec4ff7faa3fab48cdb3d64cfd5d698416752a16f32a54ccef577832e4cf684fce2cb0bab7f6a5821b26483322000000000000596c6e1ac996b8a0924948750b6e52c09d53950e5c8143db8669f8a5bf6511df822532e3c78d019149651255048aab0399e5d6e317b6f3fbc2600ffc3c66c7244b7bcf6b78b5e8c0ee04ce344ceb084b4f2ef09b59a36a92b3874edc559e5bf58a567d385ba92df9121dfa257e60655dcbff581c75107b01b5baaf29ebaf24861c538fefcaecb52a6b69fc450e10645df60a9d50131466113c6aac5abbcf9e9f2f0384da3f9892af413bd87f51f7f0cf61096fd79327fa66effe89a72d7a75d40f0c1ad299f55eafcd52a39649ab6021e30f901933f11092"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x1000, &(0x7f0000001400)=""/4106, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x5, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0) (async)
r0 = fsopen(0x0, 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000b40)='source', 0x0, 0x0) (async)
ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) (async)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) (async)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) (async)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) (async)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0200000004805c0028cabb490001000000c40edecc0613d48edadb05400fe53a31d362386279cf36acc54737b0a2b5ca46673f12e60e4b0e68019b7f5b882b95d0a028b8f79104c3bd00f9afe5d86ef3ca"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r5}, 0x4)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r6}, 0x10)
shmctl$IPC_INFO(0x0, 0x3, 0x0)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0xffffffffffffffa0) (async)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x4e25, @multicast1}, 0x10)
writev(r4, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1) (async)
socket(0xa, 0x3, 0x3a)

kernel console output (not intermixed with test programs):

-1: Using ep0 maxpacket: 16
[  286.402592][ T6005] usb 5-1: unable to get BOS descriptor or descriptor too short
[  286.408307][ T6005] usb 5-1: unable to read config index 0 descriptor/start: -71
[  286.415366][ T6005] usb 5-1: can't read configurations, error -71
[  286.969648][T11992] Bluetooth: hci0: Opcode 0x0c1a failed: -22
[  287.833899][ T6005] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  287.993765][ T6005] usb 5-1: Using ep0 maxpacket: 32
[  287.999891][ T6005] usb 5-1: unable to get BOS descriptor or descriptor too short
[  288.007671][ T6005] usb 5-1: config 1 interface 0 altsetting 255 endpoint 0x81 has an invalid bInterval 127, changing to 10
[  288.015749][ T6005] usb 5-1: config 1 interface 0 has no altsetting 0
[  288.021614][ T6005] usb 5-1: New USB device found, idVendor=07c0, idProduct=1125, bcdDevice= 0.40
[  288.029041][ T6005] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  288.033282][ T6005] usb 5-1: Product: syz
[  288.034628][ T6005] usb 5-1: Manufacturer: syz
[  288.035994][ T6005] usb 5-1: SerialNumber: syz
[  288.496790][ T6005] usbhid 5-1:1.0: can't add hid device: -71
[  288.498542][ T6005] usbhid 5-1:1.0: probe with driver usbhid failed with error -71
[  288.501197][ T6005] usb 5-1: USB disconnect, device number 13
[  288.950533][   T40] audit: type=1326 audit(1743153781.253:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12033 comm="syz.2.1697" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  288.956594][   T40] audit: type=1326 audit(1743153781.253:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12033 comm="syz.2.1697" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  288.962494][   T40] audit: type=1326 audit(1743153781.263:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12033 comm="syz.2.1697" exe="/syz-executor" sig=0 arch=40000003 syscall=242 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  288.968452][   T40] audit: type=1326 audit(1743153781.263:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12033 comm="syz.2.1697" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  288.974665][   T40] audit: type=1326 audit(1743153781.263:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12033 comm="syz.2.1697" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  288.983896][ T6005] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  289.044936][ T5955] Bluetooth: hci0: command tx timeout
[  289.134475][ T6005] usb 8-1: Using ep0 maxpacket: 16
[  289.137843][ T6005] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  289.140882][ T6005] usb 8-1: New USB device found, idVendor=046d, idProduct=c531, bcdDevice= 0.00
[  289.143369][ T6005] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  289.146622][ T6005] usb 8-1: config 0 descriptor??
[  289.348782][T12065] netlink: 'syz.1.1712': attribute type 4 has an invalid length.
[  289.354175][ T6007] lo speed is unknown, defaulting to 1000
[  289.363881][   T65] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  289.514961][   T65] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  289.517669][   T65] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  289.520812][   T65] usb 5-1: config 0 descriptor??
[  289.523316][   T65] cp210x 5-1:0.0: cp210x converter detected
[  289.556888][ T6005] logitech-djreceiver 0003:046D:C531.002C: hidraw1: USB HID v0.00 Device [HID 046d:c531] on usb-dummy_hcd.3-1/input0
[  289.754618][ T6005] usb 8-1: USB disconnect, device number 10
[  289.783812][ T3551] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  289.927504][   T65] cp210x 5-1:0.0: failed to get vendor val 0x000e size 3: -32
[  289.943799][ T3551] usb 7-1: Using ep0 maxpacket: 16
[  289.946399][ T3551] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 151
[  289.949143][ T3551] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1024
[  289.953202][ T3551] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  289.955766][ T3551] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  289.957947][ T3551] usb 7-1: Product: syz
[  289.959113][ T3551] usb 7-1: Manufacturer: syz
[  289.960413][ T3551] usb 7-1: SerialNumber: syz
[  290.133276][   T65] usb 5-1: cp210x converter now attached to ttyUSB0
[  290.225463][ T3551] cdc_ncm 7-1:1.0: bind() failure
[  290.227983][ T3551] cdc_ncm 7-1:1.1: CDC Union missing and no IAD found
[  290.229878][ T3551] cdc_ncm 7-1:1.1: bind() failure
[  290.232268][ T3551] usb 7-1: USB disconnect, device number 10
[  290.333661][   T65] usb 5-1: USB disconnect, device number 14
[  290.338535][   T65] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  290.342443][   T65] cp210x 5-1:0.0: device disconnected
[  290.488873][   T40] audit: type=1326 audit(1743153782.793:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12102 comm="syz.1.1729" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f41579 code=0x7fc00000
[  290.495431][   T40] audit: type=1326 audit(1743153782.793:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12102 comm="syz.1.1729" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f41579 code=0x7fc00000
[  290.501314][   T40] audit: type=1326 audit(1743153782.793:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12102 comm="syz.1.1729" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f41579 code=0x7fc00000
[  290.507924][   T40] audit: type=1326 audit(1743153782.793:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12102 comm="syz.1.1729" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f41579 code=0x7fc00000
[  290.514271][   T40] audit: type=1326 audit(1743153782.793:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12102 comm="syz.1.1729" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f41579 code=0x7fc00000
[  290.764138][ T5986] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  290.914078][ T5986] usb 6-1: Using ep0 maxpacket: 32
[  290.917766][ T5986] usb 6-1: config 0 has an invalid interface number: 182 but max is 0
[  290.920197][ T5986] usb 6-1: config 0 has no interface number 0
[  290.922007][ T5986] usb 6-1: config 0 interface 182 has no altsetting 0
[  290.927496][ T5986] usb 6-1: New USB device found, idVendor=07cf, idProduct=1001, bcdDevice=8d.fa
[  290.930136][ T5986] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  290.932526][ T5986] usb 6-1: Product: syz
[  290.934183][ T5986] usb 6-1: Manufacturer: syz
[  290.935618][ T5986] usb 6-1: SerialNumber: syz
[  290.939769][ T5986] usb 6-1: config 0 descriptor??
[  290.943316][ T5986] usb-storage 6-1:0.182: USB Mass Storage device detected
[  290.960436][ T5986] usb-storage 6-1:0.182: Quirks match for vid 07cf pid 1001: a
[  291.151739][ T3551] usb 6-1: USB disconnect, device number 18
[  291.272900][T12137] netlink: 112 bytes leftover after parsing attributes in process `syz.3.1744'.
[  291.305889][T12139] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1745'.
[  291.678142][T12143] netlink: 'syz.1.1747': attribute type 1 has an invalid length.
[  292.066382][T12159] lo speed is unknown, defaulting to 1000
[  292.068778][T12159] vxcan1 speed is unknown, defaulting to 1000
[  292.099687][T12159] lo speed is unknown, defaulting to 1000
[  292.110021][T12169] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1757'.
[  292.186645][T12179] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  292.544860][T12200] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1767'.
[  293.028833][T12207] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[  293.643863][   T34] usb 6-1: new full-speed USB device number 19 using dummy_hcd
[  293.653844][   T65] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  293.803905][   T65] usb 5-1: Using ep0 maxpacket: 32
[  293.806811][   T34] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1024, setting to 64
[  293.806926][   T65] usb 5-1: unable to get BOS descriptor or descriptor too short
[  293.812435][   T34] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  293.813851][   T65] usb 5-1: config 120 has an invalid interface number: 207 but max is 0
[  293.815657][   T34] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 512, setting to 64
[  293.817443][   T65] usb 5-1: config 120 has no interface number 0
[  293.820373][   T34] usb 6-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22
[  293.833582][   T65] usb 5-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=6f.0b
[  293.836177][   T65] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  293.838398][   T65] usb 5-1: Product: syz
[  293.839562][   T65] usb 5-1: Manufacturer: syz
[  293.840857][   T65] usb 5-1: SerialNumber: syz
[  293.850896][   T65] r8152-cfgselector 5-1: Unknown version 0x0000
[  293.872530][   T34] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  293.875133][   T34] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  293.883178][   T34] usb 6-1: SerialNumber: syz
[  293.887265][T12239] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  293.889601][T12239] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  293.892730][   T34] cdc_acm 6-1:1.0: Control and data interfaces are not separated!
[  293.897402][   T34] cdc_acm 6-1:1.0: probe with driver cdc_acm failed with error -12
[  295.054327][   T10] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  295.248249][T12270] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1794'.
[  295.315464][   T10] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  295.318363][   T10] usb 8-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  295.321966][   T10] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  295.325425][   T10] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  295.329576][   T10] usb 8-1: config 0 descriptor??
[  295.335377][   T10] usbhid 8-1:0.0: couldn't find an input interrupt endpoint
[  295.353592][   T34] usb 6-1: USB disconnect, device number 19
[  295.545857][T12266] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  295.548394][T12266] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  295.690446][ T6005] usb 8-1: USB disconnect, device number 11
[  296.159193][   T65] r8152-cfgselector 5-1: USB disconnect, device number 15
[  296.187544][T12281] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1798'.
[  296.463185][T12309] lo speed is unknown, defaulting to 1000
[  296.474104][T12309] vxcan1 speed is unknown, defaulting to 1000
[  296.513100][T12309] lo speed is unknown, defaulting to 1000
[  296.514988][ T3551] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  296.684822][ T3551] usb 6-1: config 0 has an invalid interface number: 117 but max is 0
[  296.687489][ T3551] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  296.690721][ T3551] usb 6-1: config 0 has no interface number 0
[  296.692873][ T3551] usb 6-1: config 0 interface 117 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[  296.704550][ T3551] usb 6-1: config 0 interface 117 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  296.715218][ T3551] usb 6-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0
[  296.718112][ T3551] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  296.720731][ T3551] usb 6-1: Product: syz
[  296.722032][ T3551] usb 6-1: Manufacturer: syz
[  296.723598][ T3551] usb 6-1: SerialNumber: syz
[  296.735058][ T3551] usb 6-1: config 0 descriptor??
[  297.171700][T12318] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1811'.
[  297.304665][T12326] usb usb8: usbfs: process 12326 (syz.3.1815) did not claim interface 0 before use
[  297.334129][   T10] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  297.344389][ T6005] usb 6-1: USB disconnect, device number 20
[  297.495123][   T10] usb 7-1: Using ep0 maxpacket: 32
[  297.498929][   T10] usb 7-1: config 0 has an invalid interface number: 67 but max is 0
[  297.504758][   T10] usb 7-1: config 0 has no interface number 0
[  297.510054][   T10] usb 7-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  297.512541][   T10] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  297.515016][   T10] usb 7-1: Product: syz
[  297.516250][   T10] usb 7-1: Manufacturer: syz
[  297.517831][   T10] usb 7-1: SerialNumber: syz
[  297.522339][   T10] usb 7-1: config 0 descriptor??
[  297.526332][   T10] smsc95xx v2.0.0
[  298.533169][   T10] smsc95xx 7-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000034: -71
[  298.537483][   T10] smsc95xx 7-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_DATA
[  298.540965][   T10] smsc95xx 7-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71
[  298.546174][   T10] smsc95xx 7-1:0.67: probe with driver smsc95xx failed with error -71
[  298.552338][   T10] usb 7-1: USB disconnect, device number 11
[  299.266449][T12375] netlink: 220 bytes leftover after parsing attributes in process `syz.3.1835'.
[  299.269041][T12375] netlink: 220 bytes leftover after parsing attributes in process `syz.3.1835'.
[  299.543910][   T34] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  299.693829][   T34] usb 8-1: Using ep0 maxpacket: 16
[  299.697091][   T34] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  299.700960][   T34] usb 8-1: New USB device found, idVendor=046d, idProduct=c531, bcdDevice= 0.00
[  299.704338][   T34] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  299.707792][   T34] usb 8-1: config 0 descriptor??
[  300.118679][   T34] logitech-djreceiver 0003:046D:C531.002D: hidraw1: USB HID v0.00 Device [HID 046d:c531] on usb-dummy_hcd.3-1/input0
[  300.234388][T12400] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1845'.
[  300.315053][   T34] usb 8-1: USB disconnect, device number 12
[  300.325559][   T10] hid-generic 0000:0000:0000.002E: unknown main item tag 0x0
[  300.328124][   T10] hid-generic 0000:0000:0000.002E: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  301.438331][T12426] lo speed is unknown, defaulting to 1000
[  301.450113][T12426] vxcan1 speed is unknown, defaulting to 1000
[  301.505619][T12426] lo speed is unknown, defaulting to 1000
[  301.513843][ T6016] usb 7-1: new full-speed USB device number 12 using dummy_hcd
[  301.696381][ T6016] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  301.699275][ T6016] usb 7-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0x7A, changing to 0xA
[  301.702432][ T6016] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0xA has an invalid bInterval 0, changing to 10
[  301.705512][ T6016] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  301.708196][ T6016] usb 7-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  301.716745][ T6016] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  301.719431][ T6016] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  301.721734][ T6016] usb 7-1: Product: syz
[  301.723014][ T6016] usb 7-1: Manufacturer: syz
[  301.753851][ T6016] usb 7-1: SerialNumber: syz
[  302.121274][T12446] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1861'.
[  302.253921][   T34] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  302.433784][   T34] usb 8-1: Using ep0 maxpacket: 16
[  302.435726][ T5988] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  302.439496][   T34] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  302.443417][   T34] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  302.446969][   T34] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  302.451507][   T34] usb 8-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  302.454775][   T34] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  302.458402][   T34] usb 8-1: config 0 descriptor??
[  302.593757][ T5988] usb 5-1: Using ep0 maxpacket: 32
[  302.599451][ T5988] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  302.603229][ T5988] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  302.606906][ T5988] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  302.611563][ T5988] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  302.615366][ T5988] usb 5-1: config 0 descriptor??
[  302.624838][ T5988] hub 5-1:0.0: USB hub found
[  302.811203][ T6016] cdc_ncm 7-1:1.0: bind() failure
[  302.815954][ T6016] cdc_ncm 7-1:1.1: probe with driver cdc_ncm failed with error -71
[  302.819222][ T6016] cdc_mbim 7-1:1.1: probe with driver cdc_mbim failed with error -71
[  302.822901][ T6016] usbtest 7-1:1.1: probe with driver usbtest failed with error -71
[  302.827962][ T6016] usb 7-1: USB disconnect, device number 12
[  302.830195][ T5988] hub 5-1:0.0: 1 port detected
[  302.865745][   T34] microsoft 0003:045E:07DA.002F: unknown main item tag 0x0
[  302.868019][   T34] microsoft 0003:045E:07DA.002F: ignoring exceeding usage max
[  302.872811][   T34] microsoft 0003:045E:07DA.002F: No inputs registered, leaving
[  302.877177][   T34] microsoft 0003:045E:07DA.002F: hidraw1: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  302.880368][   T34] microsoft 0003:045E:07DA.002F: no inputs found
[  302.882171][   T34] microsoft 0003:045E:07DA.002F: could not initialize ff, continuing anyway
[  303.065326][ T6016] usb 8-1: USB disconnect, device number 13
[  303.432223][ T6016] hub 5-1:0.0: activate --> -90
[  303.633882][   T59] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  303.796618][   T59] usb 7-1: config 220 has an invalid interface number: 76 but max is 2
[  303.798954][   T59] usb 7-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  303.801392][   T59] usb 7-1: config 220 contains an unexpected descriptor of type 0x1, skipping
[  303.803926][   T59] usb 7-1: config 220 has an invalid descriptor of length 1, skipping remainder of the config
[  303.806707][   T59] usb 7-1: config 220 has no interface number 2
[  303.808424][   T59] usb 7-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  303.811959][   T59] usb 7-1: config 220 interface 0 has no altsetting 0
[  303.813930][   T59] usb 7-1: config 220 interface 76 has no altsetting 0
[  303.815956][   T59] usb 7-1: config 220 interface 1 has no altsetting 0
[  303.819224][   T59] usb 7-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  303.821675][   T59] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  303.823964][   T59] usb 7-1: Product: syz
[  303.825130][   T59] usb 7-1: Manufacturer: syz
[  303.826432][   T59] usb 7-1: SerialNumber: syz
[  303.835614][ T3551] usb 5-1: USB disconnect, device number 16
[  303.835626][ T6016] usb 5-1-port1: config error
[  304.004152][   T10] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[  304.032379][   T59] usb 7-1: selecting invalid altsetting 0
[  304.034314][   T59] usb 7-1: Found UVC 7.01 device syz (8086:0b07)
[  304.036105][   T59] usb 7-1: No valid video chain found.
[  304.043663][   T59] usb 7-1: selecting invalid altsetting 0
[  304.045469][   T59] usbtest 7-1:220.1: probe with driver usbtest failed with error -22
[  304.048176][   T59] usb 7-1: USB disconnect, device number 13
[  304.165150][   T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  304.168015][   T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  304.170598][   T10] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  304.174711][   T10] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  304.177129][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  304.179898][   T10] usb 6-1: config 0 descriptor??
[  304.261693][T12480] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1876'.
[  304.599334][   T10] plantronics 0003:047F:FFFF.0030: No inputs registered, leaving
[  304.610185][   T10] plantronics 0003:047F:FFFF.0030: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  306.607683][ T3551] usb 6-1: USB disconnect, device number 21
[  309.438640][T12586] netlink: 128 bytes leftover after parsing attributes in process `syz.2.1913'.
[  309.728473][T12611] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1924'.
[  310.204926][ T6016] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  310.473775][ T6016] usb 7-1: Using ep0 maxpacket: 32
[  310.479398][ T6016] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  310.487533][ T6016] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  310.493171][ T6016] usb 7-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  310.499404][ T6016] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  310.505851][ T6016] usb 7-1: config 0 descriptor??
[  310.511329][ T6016] hub 7-1:0.0: USB hub found
[  310.673808][   T59] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  310.714531][ T6016] hub 7-1:0.0: config failed, can't read hub descriptor (err -22)
[  310.833805][   T59] usb 5-1: Using ep0 maxpacket: 32
[  310.836631][   T59] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  310.839459][   T59] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  310.843295][   T59] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  310.846053][   T59] usb 5-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  310.848428][   T59] usb 5-1: Product: syz
[  310.849583][   T59] usb 5-1: Manufacturer: syz
[  310.853547][   T59] hub 5-1:4.0: USB hub found
[  310.930883][ T6016] hid-generic 0003:046D:C31C.0031: hidraw1: USB HID v8.00 Device [HID 046d:c31c] on usb-dummy_hcd.2-1/input0
[  311.062887][   T59] hub 5-1:4.0: config failed, hub doesn't have any ports! (err -19)
[  311.234333][   T10] usb 7-1: USB disconnect, device number 14
[  311.373936][   T59] usb 5-1: USB disconnect, device number 17
[  311.731826][T12657] lo speed is unknown, defaulting to 1000
[  311.734031][T12657] vxcan1 speed is unknown, defaulting to 1000
[  311.767539][T12657] lo speed is unknown, defaulting to 1000
[  311.903818][   T59] usb 6-1: new full-speed USB device number 22 using dummy_hcd
[  311.952942][T12675] netlink: 3 bytes leftover after parsing attributes in process `syz.2.1950'.
[  312.020823][T12683] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  312.076776][   T59] usb 6-1: unable to get BOS descriptor or descriptor too short
[  312.079758][   T59] usb 6-1: not running at top speed; connect to a high speed hub
[  312.083575][   T59] usb 6-1: config 160 has an invalid interface number: 236 but max is 0
[  312.086443][   T59] usb 6-1: config 160 has no interface number 0
[  312.088399][   T59] usb 6-1: config 160 interface 236 has no altsetting 0
[  312.092799][   T59] usb 6-1: New USB device found, idVendor=04b8, idProduct=0602, bcdDevice= 1.10
[  312.096655][   T59] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  312.098820][   T59] usb 6-1: Product: syz
[  312.100056][   T59] usb 6-1: Manufacturer: syz
[  312.101368][   T59] usb 6-1: SerialNumber: syz
[  312.197220][T12693] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1958'.
[  312.311110][   T59] usb-storage 6-1:160.236: USB Mass Storage device detected
[  312.324744][   T59] usb-storage 6-1:160.236: Quirks match for vid 04b8 pid 0602: 1
[  312.361742][   T59] usb 6-1: USB disconnect, device number 22
[  313.047717][T12717] af_packet: tpacket_rcv: packet too big, clamped from 42 to 4294967286. macoff=82
[  313.073378][T12724] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1969'.
[  313.264118][   T10] usb 6-1: new high-speed USB device number 23 using dummy_hcd
[  313.303846][   T59] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  313.416193][   T10] usb 6-1: config 0 has an invalid interface number: 116 but max is 0
[  313.418842][   T10] usb 6-1: config 0 has no interface number 0
[  313.421096][   T10] usb 6-1: New USB device found, idVendor=0bda, idProduct=8050, bcdDevice=83.c4
[  313.424644][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  313.430399][   T10] r8152-cfgselector 6-1: Unknown version 0x0000
[  313.432801][   T10] r8152-cfgselector 6-1: config 0 descriptor??
[  313.436814][   T10] hub 6-1:0.116: bad descriptor, ignoring hub
[  313.438711][   T10] hub 6-1:0.116: probe with driver hub failed with error -5
[  313.476291][   T59] usb 7-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[  313.479686][   T59] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  313.481960][   T59] usb 7-1: Product: syz
[  313.483563][   T59] usb 7-1: Manufacturer: syz
[  313.485115][   T59] usb 7-1: SerialNumber: syz
[  313.488461][   T59] r8152-cfgselector 7-1: Unknown version 0x0000
[  313.490479][   T59] r8152-cfgselector 7-1: config 0 descriptor??
[  313.744332][ T6008] r8152-cfgselector 6-1: USB disconnect, device number 23
[  313.898090][ T6008] r8152-cfgselector 7-1: USB disconnect, device number 15
[  314.193643][T12747] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1979'.
[  314.216879][T12751] netlink: 'syz.1.1980': attribute type 4 has an invalid length.
[  314.219366][T12751] netlink: 'syz.1.1980': attribute type 4 has an invalid length.
[  314.222754][   T34] lo speed is unknown, defaulting to 1000
[  314.936228][T12779] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1991'.
[  316.036095][T12798] lo speed is unknown, defaulting to 1000
[  316.038122][T12798] vxcan1 speed is unknown, defaulting to 1000
[  316.076092][T12798] lo speed is unknown, defaulting to 1000
[  316.488583][ T1413] ieee802154 phy0 wpan0: encryption failed: -22
[  317.129221][T12831] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2011'.
[  317.397719][   T10] usb 8-1: new full-speed USB device number 14 using dummy_hcd
[  317.556596][   T10] usb 8-1: config 1 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[  317.559744][   T10] usb 8-1: config 1 interface 0 altsetting 4 endpoint 0x82 has invalid wMaxPacketSize 0
[  317.562797][   T10] usb 8-1: config 1 interface 0 altsetting 4 endpoint 0x3 has invalid maxpacket 1023, setting to 64
[  317.566823][   T10] usb 8-1: config 1 interface 0 altsetting 4 has 3 endpoint descriptors, different from the interface descriptor's value: 22
[  317.570626][   T10] usb 8-1: config 1 interface 0 has no altsetting 0
[  317.574256][   T10] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  317.577372][   T10] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  317.579991][   T10] usb 8-1: SerialNumber: syz
[  317.583667][T12835] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  317.588217][   T10] cdc_acm 8-1:1.0: Control and data interfaces are not separated!
[  317.590601][   T10] cdc_acm 8-1:1.0: probe with driver cdc_acm failed with error -12
[  317.799788][   T10] usb 8-1: USB disconnect, device number 14
[  318.351631][T12860] lo speed is unknown, defaulting to 1000
[  318.353688][T12860] vxcan1 speed is unknown, defaulting to 1000
[  318.387938][T12860] lo speed is unknown, defaulting to 1000
[  319.018886][T12880] IPVS: set_ctl: invalid protocol: 137 127.0.0.1:20004
[  319.484486][T12902] siw: device registration error -23
[  319.762641][   T40] kauditd_printk_skb: 62 callbacks suppressed
[  319.762652][   T40] audit: type=1326 audit(1743153812.063:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12910 comm="syz.1.2036" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f41579 code=0x0
[  321.315946][T12937] IPVS: set_ctl: invalid protocol: 137 127.0.0.1:20004
[  321.735098][   T10] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[  321.885304][   T10] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  321.888290][   T10] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  321.890945][   T10] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  321.905043][   T10] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  321.910444][   T10] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  321.916611][   T10] usb 8-1: config 0 descriptor??
[  321.964408][T12951] IPVS: set_ctl: invalid protocol: 137 127.0.0.1:20004
[  322.196521][   T29] hid-generic FFF9:0000:0203.0032: unknown main item tag 0x0
[  322.198630][   T29] hid-generic FFF9:0000:0203.0032: unknown main item tag 0x0
[  322.200692][   T29] hid-generic FFF9:0000:0203.0032: unknown main item tag 0x0
[  322.203126][   T29] hid-generic FFF9:0000:0203.0032: unknown main item tag 0x0
[  322.206004][   T29] hid-generic FFF9:0000:0203.0032: unknown main item tag 0x0
[  322.208079][   T29] hid-generic FFF9:0000:0203.0032: unknown main item tag 0x0
[  322.210205][   T29] hid-generic FFF9:0000:0203.0032: unknown main item tag 0x0
[  322.212272][   T29] hid-generic FFF9:0000:0203.0032: unknown main item tag 0x0
[  322.215439][   T29] hid-generic FFF9:0000:0203.0032: unknown main item tag 0x0
[  322.217544][   T29] hid-generic FFF9:0000:0203.0032: unknown main item tag 0x0
[  322.219595][   T29] hid-generic FFF9:0000:0203.0032: unknown main item tag 0x0
[  322.221647][   T29] hid-generic FFF9:0000:0203.0032: unknown main item tag 0x0
[  322.224158][   T29] hid-generic FFF9:0000:0203.0032: unknown main item tag 0x0
[  322.226472][   T29] hid-generic FFF9:0000:0203.0032: unknown main item tag 0x0
[  322.228538][   T29] hid-generic FFF9:0000:0203.0032: unknown main item tag 0x0
[  322.230578][   T29] hid-generic FFF9:0000:0203.0032: unknown main item tag 0x0
[  322.233966][   T29] hid-generic FFF9:0000:0203.0032: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  322.327897][   T10] plantronics 0003:047F:FFFF.0033: No inputs registered, leaving
[  322.337695][   T10] plantronics 0003:047F:FFFF.0033: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  322.419185][T12959] siw: device registration error -23
[  322.950238][T12968] fuse: Unknown parameter 'euid'
[  323.213926][T12972] Invalid source name
[  323.215462][T12972] UBIFS error (pid: 12972): cannot open "./file0", error -22
[  323.380706][T12980] IPVS: set_ctl: invalid protocol: 137 127.0.0.1:20004
[  324.405737][   T29] hid-generic FFF9:0000:0203.0034: unknown main item tag 0x0
[  324.407946][   T29] hid-generic FFF9:0000:0203.0034: unknown main item tag 0x0
[  324.428162][   T29] hid-generic FFF9:0000:0203.0034: unknown main item tag 0x0
[  324.430326][   T29] hid-generic FFF9:0000:0203.0034: unknown main item tag 0x0
[  324.432428][   T29] hid-generic FFF9:0000:0203.0034: unknown main item tag 0x0
[  324.434712][   T29] hid-generic FFF9:0000:0203.0034: unknown main item tag 0x0
[  324.437518][   T29] hid-generic FFF9:0000:0203.0034: unknown main item tag 0x0
[  324.439813][   T29] hid-generic FFF9:0000:0203.0034: unknown main item tag 0x0
[  324.441990][   T29] hid-generic FFF9:0000:0203.0034: unknown main item tag 0x0
[  324.444501][   T29] hid-generic FFF9:0000:0203.0034: unknown main item tag 0x0
[  324.448200][   T29] hid-generic FFF9:0000:0203.0034: unknown main item tag 0x0
[  324.611411][   T29] hid-generic FFF9:0000:0203.0034: unknown main item tag 0x0
[  324.655668][T13004] siw: device registration error -23
[  324.671990][ T6016] usb 8-1: USB disconnect, device number 15
[  324.690891][T13007] fuse: Unknown parameter 'euid'
[  324.847761][   T29] hid-generic FFF9:0000:0203.0034: unknown main item tag 0x0
[  324.847778][   T29] hid-generic FFF9:0000:0203.0034: unknown main item tag 0x0
[  324.847790][   T29] hid-generic FFF9:0000:0203.0034: unknown main item tag 0x0
[  324.847801][   T29] hid-generic FFF9:0000:0203.0034: unknown main item tag 0x0
[  324.850541][   T29] hid-generic FFF9:0000:0203.0034: hidraw2: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  324.902193][T13012] Invalid source name
[  324.902203][T13012] UBIFS error (pid: 13012): cannot open "./file0", error -22
[  325.647573][T13027] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2070'.
[  325.652581][T13027] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2070'.
[  325.657098][T13027] netlink: 168 bytes leftover after parsing attributes in process `syz.0.2070'.
[  325.659521][T13027] netlink: 168 bytes leftover after parsing attributes in process `syz.0.2070'.
[  326.381838][   T29] hid-generic FFF9:0000:0203.0035: unknown main item tag 0x0
[  326.384076][   T29] hid-generic FFF9:0000:0203.0035: unknown main item tag 0x0
[  326.386228][   T29] hid-generic FFF9:0000:0203.0035: unknown main item tag 0x0
[  326.388333][   T29] hid-generic FFF9:0000:0203.0035: unknown main item tag 0x0
[  326.390515][   T29] hid-generic FFF9:0000:0203.0035: unknown main item tag 0x0
[  326.392643][   T29] hid-generic FFF9:0000:0203.0035: unknown main item tag 0x0
[  326.394857][   T29] hid-generic FFF9:0000:0203.0035: unknown main item tag 0x0
[  326.397072][   T29] hid-generic FFF9:0000:0203.0035: unknown main item tag 0x0
[  326.399253][   T29] hid-generic FFF9:0000:0203.0035: unknown main item tag 0x0
[  326.401404][   T29] hid-generic FFF9:0000:0203.0035: unknown main item tag 0x0
[  326.403521][   T29] hid-generic FFF9:0000:0203.0035: unknown main item tag 0x0
[  326.405765][   T29] hid-generic FFF9:0000:0203.0035: unknown main item tag 0x0
[  326.407967][   T29] hid-generic FFF9:0000:0203.0035: unknown main item tag 0x0
[  326.411173][   T29] hid-generic FFF9:0000:0203.0035: unknown main item tag 0x0
[  326.413321][   T29] hid-generic FFF9:0000:0203.0035: unknown main item tag 0x0
[  326.415748][   T29] hid-generic FFF9:0000:0203.0035: unknown main item tag 0x0
[  326.532109][T13057] siw: device registration error -23
[  326.606354][   T29] hid-generic FFF9:0000:0203.0035: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  327.504437][T13078] fuse: Unknown parameter 'euid'
[  327.691351][T13084] Invalid source name
[  327.691362][T13084] UBIFS error (pid: 13084): cannot open "./file0", error -22
[  327.980719][   T40] audit: type=1800 audit(1743153820.283:323): pid=13086 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2084" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[  328.538057][T13098] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2087'.
[  328.804030][   T29] hid-generic FFF9:0000:0203.0036: unknown main item tag 0x0
[  328.806451][   T29] hid-generic FFF9:0000:0203.0036: unknown main item tag 0x0
[  328.809328][   T29] hid-generic FFF9:0000:0203.0036: unknown main item tag 0x0
[  328.811513][   T29] hid-generic FFF9:0000:0203.0036: unknown main item tag 0x0
[  328.814182][   T29] hid-generic FFF9:0000:0203.0036: unknown main item tag 0x0
[  328.816353][   T29] hid-generic FFF9:0000:0203.0036: unknown main item tag 0x0
[  328.820847][   T29] hid-generic FFF9:0000:0203.0036: unknown main item tag 0x0
[  328.824621][   T29] hid-generic FFF9:0000:0203.0036: unknown main item tag 0x0
[  328.827464][   T29] hid-generic FFF9:0000:0203.0036: unknown main item tag 0x0
[  328.831863][   T29] hid-generic FFF9:0000:0203.0036: unknown main item tag 0x0
[  328.834576][   T29] hid-generic FFF9:0000:0203.0036: unknown main item tag 0x0
[  328.837457][   T29] hid-generic FFF9:0000:0203.0036: unknown main item tag 0x0
[  328.840847][   T29] hid-generic FFF9:0000:0203.0036: unknown main item tag 0x0
[  328.844755][   T29] hid-generic FFF9:0000:0203.0036: unknown main item tag 0x0
[  328.854658][   T29] hid-generic FFF9:0000:0203.0036: unknown main item tag 0x0
[  328.859708][   T29] hid-generic FFF9:0000:0203.0036: unknown main item tag 0x0
[  328.937862][   T29] hid-generic FFF9:0000:0203.0036: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  329.061544][T13111] IPVS: set_ctl: invalid protocol: 137 127.0.0.1:20004
[  329.064094][T13111] random: crng reseeded on system resumption
[  329.985139][T13128] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2097'.
[  330.005986][T13130] fuse: Unknown parameter 'euid'
[  330.551919][T13143] Invalid source name
[  330.553446][T13143] UBIFS error (pid: 13143): cannot open "./file0", error -22
[  330.575512][ T6008] hid-generic FFF9:0000:0203.0037: unknown main item tag 0x0
[  330.580028][ T6008] hid-generic FFF9:0000:0203.0037: unknown main item tag 0x0
[  330.582184][ T6008] hid-generic FFF9:0000:0203.0037: unknown main item tag 0x0
[  330.593587][ T6008] hid-generic FFF9:0000:0203.0037: unknown main item tag 0x0
[  330.596812][ T6008] hid-generic FFF9:0000:0203.0037: unknown main item tag 0x0
[  330.599123][ T6008] hid-generic FFF9:0000:0203.0037: unknown main item tag 0x0
[  330.601317][ T6008] hid-generic FFF9:0000:0203.0037: unknown main item tag 0x0
[  330.603477][ T6008] hid-generic FFF9:0000:0203.0037: unknown main item tag 0x0
[  330.606142][ T6008] hid-generic FFF9:0000:0203.0037: unknown main item tag 0x0
[  330.610062][ T6008] hid-generic FFF9:0000:0203.0037: unknown main item tag 0x0
[  330.613336][ T6008] hid-generic FFF9:0000:0203.0037: unknown main item tag 0x0
[  330.615953][ T6008] hid-generic FFF9:0000:0203.0037: unknown main item tag 0x0
[  330.618240][ T6008] hid-generic FFF9:0000:0203.0037: unknown main item tag 0x0
[  330.620757][ T6008] hid-generic FFF9:0000:0203.0037: unknown main item tag 0x0
[  330.622954][ T6008] hid-generic FFF9:0000:0203.0037: unknown main item tag 0x0
[  330.681771][ T6008] hid-generic FFF9:0000:0203.0037: unknown main item tag 0x0
[  330.694655][ T6008] hid-generic FFF9:0000:0203.0037: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  330.997696][T13153] netlink: 'syz.1.2103': attribute type 2 has an invalid length.
[  331.000927][T13153] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  332.128933][ T6008] hid-generic FFF9:0000:0203.0038: unknown main item tag 0x0
[  332.128951][ T6008] hid-generic FFF9:0000:0203.0038: unknown main item tag 0x0
[  332.128963][ T6008] hid-generic FFF9:0000:0203.0038: unknown main item tag 0x0
[  332.128974][ T6008] hid-generic FFF9:0000:0203.0038: unknown main item tag 0x0
[  332.128985][ T6008] hid-generic FFF9:0000:0203.0038: unknown main item tag 0x0
[  332.128995][ T6008] hid-generic FFF9:0000:0203.0038: unknown main item tag 0x0
[  332.129006][ T6008] hid-generic FFF9:0000:0203.0038: unknown main item tag 0x0
[  332.129017][ T6008] hid-generic FFF9:0000:0203.0038: unknown main item tag 0x0
[  332.129028][ T6008] hid-generic FFF9:0000:0203.0038: unknown main item tag 0x0
[  332.129039][ T6008] hid-generic FFF9:0000:0203.0038: unknown main item tag 0x0
[  332.129050][ T6008] hid-generic FFF9:0000:0203.0038: unknown main item tag 0x0
[  332.129061][ T6008] hid-generic FFF9:0000:0203.0038: unknown main item tag 0x0
[  332.129072][ T6008] hid-generic FFF9:0000:0203.0038: unknown main item tag 0x0
[  332.129083][ T6008] hid-generic FFF9:0000:0203.0038: unknown main item tag 0x0
[  332.129093][ T6008] hid-generic FFF9:0000:0203.0038: unknown main item tag 0x0
[  332.129104][ T6008] hid-generic FFF9:0000:0203.0038: unknown main item tag 0x0
[  332.129464][ T6008] hid-generic FFF9:0000:0203.0038: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  332.716726][T13207] siw: device registration error -23
[  334.892966][ T6008] hid-generic FFF9:0000:0203.0039: unknown main item tag 0x0
[  334.897916][ T6008] hid-generic FFF9:0000:0203.0039: unknown main item tag 0x0
[  334.899974][ T6008] hid-generic FFF9:0000:0203.0039: unknown main item tag 0x0
[  334.901949][ T6008] hid-generic FFF9:0000:0203.0039: unknown main item tag 0x0
[  334.917830][ T6008] hid-generic FFF9:0000:0203.0039: unknown main item tag 0x0
[  334.919871][ T6008] hid-generic FFF9:0000:0203.0039: unknown main item tag 0x0
[  334.921878][ T6008] hid-generic FFF9:0000:0203.0039: unknown main item tag 0x0
[  334.923979][ T6008] hid-generic FFF9:0000:0203.0039: unknown main item tag 0x0
[  334.925929][ T6008] hid-generic FFF9:0000:0203.0039: unknown main item tag 0x0
[  334.931458][ T6008] hid-generic FFF9:0000:0203.0039: unknown main item tag 0x0
[  334.938028][ T6008] hid-generic FFF9:0000:0203.0039: unknown main item tag 0x0
[  334.940146][ T6008] hid-generic FFF9:0000:0203.0039: unknown main item tag 0x0
[  334.942311][ T6008] hid-generic FFF9:0000:0203.0039: unknown main item tag 0x0
[  334.944443][ T6008] hid-generic FFF9:0000:0203.0039: unknown main item tag 0x0
[  334.946453][ T6008] hid-generic FFF9:0000:0203.0039: unknown main item tag 0x0
[  334.953762][ T6008] hid-generic FFF9:0000:0203.0039: unknown main item tag 0x0
[  334.956723][ T6008] hid-generic FFF9:0000:0203.0039: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  335.292741][T13260] siw: device registration error -23
[  335.733399][T13278] fuse: Unknown parameter 'euid'
[  336.070713][T13281] Invalid source name
[  336.070729][T13281] UBIFS error (pid: 13281): cannot open "./file0", error -22
[  336.669556][T13298] siw: device registration error -23
[  336.953288][   T59] hid-generic FFF9:0000:0203.003A: unknown main item tag 0x0
[  336.955500][   T59] hid-generic FFF9:0000:0203.003A: unknown main item tag 0x0
[  336.957734][   T59] hid-generic FFF9:0000:0203.003A: unknown main item tag 0x0
[  336.960545][   T59] hid-generic FFF9:0000:0203.003A: unknown main item tag 0x0
[  336.962740][   T59] hid-generic FFF9:0000:0203.003A: unknown main item tag 0x0
[  336.964895][   T59] hid-generic FFF9:0000:0203.003A: unknown main item tag 0x0
[  336.967048][   T59] hid-generic FFF9:0000:0203.003A: unknown main item tag 0x0
[  336.969185][   T59] hid-generic FFF9:0000:0203.003A: unknown main item tag 0x0
[  336.971257][   T59] hid-generic FFF9:0000:0203.003A: unknown main item tag 0x0
[  336.973467][   T59] hid-generic FFF9:0000:0203.003A: unknown main item tag 0x0
[  336.975757][   T59] hid-generic FFF9:0000:0203.003A: unknown main item tag 0x0
[  336.978058][   T59] hid-generic FFF9:0000:0203.003A: unknown main item tag 0x0
[  336.980102][   T59] hid-generic FFF9:0000:0203.003A: unknown main item tag 0x0
[  336.982201][   T59] hid-generic FFF9:0000:0203.003A: unknown main item tag 0x0
[  336.984372][   T59] hid-generic FFF9:0000:0203.003A: unknown main item tag 0x0
[  336.986539][   T59] hid-generic FFF9:0000:0203.003A: unknown main item tag 0x0
[  336.998877][   T59] hid-generic FFF9:0000:0203.003A: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  337.466855][T13316] siw: device registration error -23
[  338.799246][T13368] blk_print_req_error: 24 callbacks suppressed
[  338.799259][T13368] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  338.804746][T13368] buffer_io_error: 24 callbacks suppressed
[  338.804757][T13368] Buffer I/O error on dev nbd0, logical block 0, async page read
[  338.808853][T13368] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  338.811319][T13368] Buffer I/O error on dev nbd0, logical block 0, async page read
[  338.813510][T13368] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  338.817727][T13368] Buffer I/O error on dev nbd0, logical block 0, async page read
[  338.821177][T13368] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  338.823680][T13368] Buffer I/O error on dev nbd0, logical block 0, async page read
[  338.825917][T13368] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  338.828510][T13368] Buffer I/O error on dev nbd0, logical block 0, async page read
[  338.830802][T13368] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  338.833327][T13368] Buffer I/O error on dev nbd0, logical block 0, async page read
[  338.837126][T13368] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  338.839704][T13368] Buffer I/O error on dev nbd0, logical block 0, async page read
[  338.841935][T13368] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  338.845069][T13368] Buffer I/O error on dev nbd0, logical block 0, async page read
[  338.847275][T13368] ldm_validate_partition_table(): Disk read failed.
[  338.850132][T13368] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  338.852776][T13368] Buffer I/O error on dev nbd0, logical block 0, async page read
[  338.857046][T13368] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  338.859516][T13368] Buffer I/O error on dev nbd0, logical block 0, async page read
[  338.861935][T13368] Dev nbd0: unable to read RDB block 0
[  338.865259][T13368]  nbd0: unable to read partition table
[  338.868371][T13371] ldm_validate_partition_table(): Disk read failed.
[  338.870321][T13371] Dev nbd0: unable to read RDB block 0
[  338.872229][T13371]  nbd0: unable to read partition table
[  339.421903][   T40] audit: type=1326 audit(1743153831.723:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13389 comm="syz.2.2172" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  339.422078][   T40] audit: type=1326 audit(1743153831.723:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13389 comm="syz.2.2172" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7ffc0000
[  339.914366][T13397] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2173'.
[  340.750639][T13417] FAULT_INJECTION: forcing a failure.
[  340.750639][T13417] name failslab, interval 1, probability 0, space 0, times 0
[  340.754376][T13417] CPU: 1 UID: 0 PID: 13417 Comm: syz.0.2179 Not tainted 6.14.0-syzkaller-07318-g4fa118e5b79f #0 PREEMPT(full) 
[  340.754390][T13417] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  340.754397][T13417] Call Trace:
[  340.754400][T13417]  <TASK>
[  340.754404][T13417]  dump_stack_lvl+0x16c/0x1f0
[  340.754421][T13417]  should_fail_ex+0x512/0x640
[  340.754439][T13417]  should_failslab+0xc2/0x120
[  340.754450][T13417]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  340.754466][T13417]  ? skb_clone+0x190/0x3f0
[  340.754478][T13417]  skb_clone+0x190/0x3f0
[  340.754488][T13417]  netlink_deliver_tap+0xabd/0xd30
[  340.754500][T13417]  netlink_unicast+0x5df/0x7f0
[  340.754512][T13417]  ? __pfx_netlink_unicast+0x10/0x10
[  340.754523][T13417]  ? __phys_addr_symbol+0x30/0x80
[  340.754548][T13417]  ? __check_object_size+0x4c7/0x710
[  340.754560][T13417]  netlink_sendmsg+0x8da/0xd70
[  340.754572][T13417]  ? __pfx_netlink_sendmsg+0x10/0x10
[  340.754583][T13417]  ? __import_iovec+0x1c8/0x660
[  340.754596][T13417]  ____sys_sendmsg+0xa8d/0xc60
[  340.754609][T13417]  ? __pfx_____sys_sendmsg+0x10/0x10
[  340.754621][T13417]  ? get_compat_msghdr+0x11a/0x170
[  340.754640][T13417]  ___sys_sendmsg+0x134/0x1d0
[  340.754650][T13417]  ? __pfx____sys_sendmsg+0x10/0x10
[  340.754669][T13417]  __sys_sendmsg+0x16d/0x220
[  340.754679][T13417]  ? __pfx___sys_sendmsg+0x10/0x10
[  340.754691][T13417]  ? rcu_is_watching+0x12/0xc0
[  340.754705][T13417]  __do_fast_syscall_32+0x73/0x120
[  340.754719][T13417]  do_fast_syscall_32+0x32/0x80
[  340.754731][T13417]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  340.754743][T13417] RIP: 0023:0xf743e579
[  340.754751][T13417] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  340.754761][T13417] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  340.754770][T13417] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[  340.754776][T13417] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  340.754782][T13417] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  340.754787][T13417] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  340.754792][T13417] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  340.754802][T13417]  </TASK>
[  340.754970][T13417] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2179'.
[  342.373861][   T34] usb 8-1: new high-speed USB device number 16 using dummy_hcd
[  342.523823][   T34] usb 8-1: Using ep0 maxpacket: 8
[  342.526562][   T34] usb 8-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  342.529628][   T34] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x93, changing to 0x83
[  342.533458][   T34] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  342.536741][   T34] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  342.541660][   T34] usb 8-1: New USB device found, idVendor=15c2, idProduct=003b, bcdDevice=66.3e
[  342.544342][   T34] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  342.546458][   T34] usb 8-1: Product: syz
[  342.547715][   T34] usb 8-1: Manufacturer: syz
[  342.548990][   T34] usb 8-1: SerialNumber: syz
[  342.556117][   T34] usb 8-1: config 0 descriptor??
[  342.563152][   T34] input: iMON Panel, Knob and Mouse(15c2:003b) as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input23
[  343.529348][T13482] siw: device registration error -23
[  345.373047][   T34] imon:send_packet: packet tx failed (-71)
[  345.383816][   T34] imon 8-1:0.0: panel buttons/knobs setup failed
[  345.433783][   T34] rc_core: IR keymap rc-imon-pad not found
[  345.433874][   T34] Registered IR keymap rc-empty
[  345.433907][   T34] imon 8-1:0.0: Looks like you're trying to use an IR protocol this device does not support
[  345.433921][   T34] imon 8-1:0.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[  345.434997][   T34] imon:send_packet: packet tx failed (-71)
[  345.453890][   T34] imon 8-1:0.0: remote input dev register failed
[  345.453961][   T34] imon 8-1:0.0: imon_init_intf0: rc device setup failed
[  345.475586][   T34] imon 8-1:0.0: unable to initialize intf0, err 0
[  345.475598][   T34] imon:imon_probe: failed to initialize context!
[  345.475604][   T34] imon 8-1:0.0: unable to register, err -19
[  345.476591][   T34] usb 8-1: USB disconnect, device number 16
[  345.675598][T13532] siw: device registration error -23
[  346.016683][T13538] fuse: Unknown parameter 'euid'
[  346.587991][T13555] fuse: Unknown parameter 'euid'
[  346.765225][T13555] Invalid source name
[  346.766399][T13555] UBIFS error (pid: 13555): cannot open "./file0", error -22
[  346.787324][T13542] Invalid source name
[  346.790657][T13542] UBIFS error (pid: 13542): cannot open "./file0", error -22
[  347.301406][T13589] siw: device registration error -23
[  347.878933][T13606] fuse: Unknown parameter 'euid'
[  348.361533][T13613] Invalid source name
[  348.362848][T13613] UBIFS error (pid: 13613): cannot open "./file0", error -22
[  348.477809][T13620] siw: device registration error -23
[  348.820122][T13634] blk_print_req_error: 22 callbacks suppressed
[  348.820138][T13634] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  348.825324][T13634] buffer_io_error: 22 callbacks suppressed
[  348.825335][T13634] Buffer I/O error on dev nbd0, logical block 0, async page read
[  348.830372][T13634] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  348.837420][T13634] Buffer I/O error on dev nbd0, logical block 0, async page read
[  348.839890][T13634] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  348.843199][T13634] Buffer I/O error on dev nbd0, logical block 0, async page read
[  348.847066][T13634] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  348.850867][T13634] Buffer I/O error on dev nbd0, logical block 0, async page read
[  348.856090][T13634] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  348.859756][T13634] Buffer I/O error on dev nbd0, logical block 0, async page read
[  348.862713][T13634] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  348.866864][T13634] Buffer I/O error on dev nbd0, logical block 0, async page read
[  348.869700][T13634] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  348.872985][T13634] Buffer I/O error on dev nbd0, logical block 0, async page read
[  348.880885][T13634] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  348.883461][T13634] Buffer I/O error on dev nbd0, logical block 0, async page read
[  348.885799][T13634] ldm_validate_partition_table(): Disk read failed.
[  348.889449][T13634] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  348.892564][T13634] Buffer I/O error on dev nbd0, logical block 0, async page read
[  348.896978][T13634] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  348.899822][T13634] Buffer I/O error on dev nbd0, logical block 0, async page read
[  348.954302][T13634] Dev nbd0: unable to read RDB block 0
[  348.956355][T13634]  nbd0: unable to read partition table
[  350.430924][T13660] fuse: Unknown parameter 'euid'
[  350.628894][T13662] Invalid source name
[  350.630406][T13662] UBIFS error (pid: 13662): cannot open "./file0", error -22
[  351.024387][ T6007] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  351.175965][ T6007] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  351.179034][ T6007] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  351.181754][ T6007] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  351.185665][ T6007] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  351.188133][ T6007] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  351.190939][ T6007] usb 5-1: config 0 descriptor??
[  351.601005][ T6007] plantronics 0003:047F:FFFF.003B: No inputs registered, leaving
[  351.604403][ T6007] plantronics 0003:047F:FFFF.003B: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  351.718432][ T5960] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  351.721658][ T5960] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  351.727463][ T5960] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  351.735332][ T5960] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  351.737783][ T5960] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  351.743226][ T5955] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  351.745876][ T5955] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  351.747977][ T5955] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  351.755565][ T5955] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  351.757917][ T5955] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  351.768296][T13676] lo speed is unknown, defaulting to 1000
[  351.770189][T13676] vxcan1 speed is unknown, defaulting to 1000
[  351.799838][T13676] lo speed is unknown, defaulting to 1000
[  351.918951][T13676] chnl_net:caif_netlink_parms(): no params data found
[  352.086001][T13676] bridge0: port 1(bridge_slave_0) entered blocking state
[  352.088426][T13676] bridge0: port 1(bridge_slave_0) entered disabled state
[  352.090467][T13676] bridge_slave_0: entered allmulticast mode
[  352.092644][T13676] bridge_slave_0: entered promiscuous mode
[  352.102725][T13676] bridge0: port 2(bridge_slave_1) entered blocking state
[  352.105262][T13676] bridge0: port 2(bridge_slave_1) entered disabled state
[  352.113914][T13676] bridge_slave_1: entered allmulticast mode
[  352.124290][T13676] bridge_slave_1: entered promiscuous mode
[  352.202760][T13701] IPVS: set_ctl: invalid protocol: 137 127.0.0.1:20004
[  352.251615][T13676] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  352.261043][T13676] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  352.299467][T13676] team0: Port device team_slave_0 added
[  352.302737][T13676] team0: Port device team_slave_1 added
[  352.340604][T13676] batman_adv: batadv0: Adding interface: batadv_slave_0
[  352.342568][T13676] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  352.349800][T13676] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  352.353353][T13676] batman_adv: batadv0: Adding interface: batadv_slave_1
[  352.355361][T13676] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  352.362317][T13676] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  352.390045][T13676] hsr_slave_0: entered promiscuous mode
[  352.391880][T13676] hsr_slave_1: entered promiscuous mode
[  352.393660][T13676] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  352.396351][T13676] Cannot create hsr debugfs directory
[  352.514633][T13676] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  352.517782][T13676] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  352.622539][T13676] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  352.625930][T13676] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  352.673032][T13676] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  352.677879][T13676] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  352.756302][T13676] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  352.759130][T13676] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  352.857792][T13676] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  352.860868][T13676] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  352.863934][T13676] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  352.868363][T13676] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  352.909721][T13676] 8021q: adding VLAN 0 to HW filter on device bond0
[  352.915985][T13676] 8021q: adding VLAN 0 to HW filter on device team0
[  352.922503][   T71] bridge0: port 1(bridge_slave_0) entered blocking state
[  352.924678][   T71] bridge0: port 1(bridge_slave_0) entered forwarding state
[  352.930622][   T71] bridge0: port 2(bridge_slave_1) entered blocking state
[  352.932635][   T71] bridge0: port 2(bridge_slave_1) entered forwarding state
[  353.023561][T13676] 8021q: adding VLAN 0 to HW filter on device batadv0
[  353.043256][T13676] veth0_vlan: entered promiscuous mode
[  353.047764][T13676] veth1_vlan: entered promiscuous mode
[  353.062579][T13676] veth0_macvtap: entered promiscuous mode
[  353.067563][T13676] veth1_macvtap: entered promiscuous mode
[  353.075186][T13676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  353.078270][T13676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  353.081081][T13676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  353.084764][T13676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  353.087532][T13676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  353.090690][T13676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  353.094457][T13676] batman_adv: batadv0: Interface activated: batadv_slave_0
[  353.099391][T13676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  353.102500][T13676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  353.107620][T13676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  353.110679][T13676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  353.113991][T13676] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  353.117002][T13676] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  353.120399][T13676] batman_adv: batadv0: Interface activated: batadv_slave_1
[  353.126280][T13676] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  353.129503][T13676] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  353.132225][T13676] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  353.134994][T13676] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  353.162906][   T71] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  353.169186][   T71] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  353.178143][ T1135] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  353.180355][ T1135] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  353.256913][T13722] fuse: Unknown parameter 'euid'
[  353.560952][T13728] Invalid source name
[  353.562253][T13728] UBIFS error (pid: 13728): cannot open "./file0", error -22
[  353.843928][ T5955] Bluetooth: hci3: command tx timeout
[  353.875842][ T5986] usb 5-1: USB disconnect, device number 18
[  354.302899][T13750] fuse: Unknown parameter 'euid'
[  354.332144][   T29] hid-generic FFF9:0000:0203.003C: unknown main item tag 0x0
[  354.336193][   T29] hid-generic FFF9:0000:0203.003C: unknown main item tag 0x0
[  354.338466][   T29] hid-generic FFF9:0000:0203.003C: unknown main item tag 0x0
[  354.340922][   T29] hid-generic FFF9:0000:0203.003C: unknown main item tag 0x0
[  354.343102][   T29] hid-generic FFF9:0000:0203.003C: unknown main item tag 0x0
[  354.354053][   T29] hid-generic FFF9:0000:0203.003C: unknown main item tag 0x0
[  354.356114][   T29] hid-generic FFF9:0000:0203.003C: unknown main item tag 0x0
[  354.358175][   T29] hid-generic FFF9:0000:0203.003C: unknown main item tag 0x0
[  354.360274][   T29] hid-generic FFF9:0000:0203.003C: unknown main item tag 0x0
[  354.362308][   T29] hid-generic FFF9:0000:0203.003C: unknown main item tag 0x0
[  354.368054][   T29] hid-generic FFF9:0000:0203.003C: unknown main item tag 0x0
[  354.370348][   T29] hid-generic FFF9:0000:0203.003C: unknown main item tag 0x0
[  354.372529][   T29] hid-generic FFF9:0000:0203.003C: unknown main item tag 0x0
[  354.384511][   T29] hid-generic FFF9:0000:0203.003C: unknown main item tag 0x0
[  354.386681][   T29] hid-generic FFF9:0000:0203.003C: unknown main item tag 0x0
[  354.415926][   T29] hid-generic FFF9:0000:0203.003C: unknown main item tag 0x0
[  354.428966][   T29] hid-generic FFF9:0000:0203.003C: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  354.568288][T13754] Invalid source name
[  354.570893][T13754] UBIFS error (pid: 13754): cannot open "./file0", error -22
[  355.271810][T13762] lo speed is unknown, defaulting to 1000
[  355.278319][T13762] vxcan1 speed is unknown, defaulting to 1000
[  355.335637][T13762] lo speed is unknown, defaulting to 1000
[  355.575625][T13773] IPVS: set_ctl: invalid protocol: 137 127.0.0.1:20004
[  355.924174][ T5955] Bluetooth: hci3: command tx timeout
[  356.412430][T13782] siw: device registration error -23
[  357.486037][T13804] siw: device registration error -23
[  358.003904][ T5955] Bluetooth: hci3: command tx timeout
[  358.915645][ T5986] usb 8-1: new high-speed USB device number 17 using dummy_hcd
[  359.064276][ T5986] usb 8-1: Using ep0 maxpacket: 16
[  359.068390][ T5986] usb 8-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 151
[  359.071096][ T5986] usb 8-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1024
[  359.076260][ T5986] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  359.078861][ T5986] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  359.081131][ T5986] usb 8-1: Product: syz
[  359.082294][ T5986] usb 8-1: Manufacturer: syz
[  359.083590][ T5986] usb 8-1: SerialNumber: syz
[  359.378293][T13837] siw: device registration error -23
[  359.836813][ T5986] cdc_ncm 8-1:1.0: bind() failure
[  359.842294][ T5986] cdc_ncm 8-1:1.1: CDC Union missing and no IAD found
[  359.844758][ T5986] cdc_ncm 8-1:1.1: bind() failure
[  359.849028][ T5986] usb 8-1: USB disconnect, device number 17
[  360.094348][ T5960] Bluetooth: hci3: command tx timeout
[  361.076496][T13868] lo speed is unknown, defaulting to 1000
[  361.078408][T13868] vxcan1 speed is unknown, defaulting to 1000
[  361.126456][T13868] lo speed is unknown, defaulting to 1000
[  361.816088][T13881] FAULT_INJECTION: forcing a failure.
[  361.816088][T13881] name failslab, interval 1, probability 0, space 0, times 0
[  361.819478][T13881] CPU: 3 UID: 0 PID: 13881 Comm: syz.2.2304 Not tainted 6.14.0-syzkaller-07318-g4fa118e5b79f #0 PREEMPT(full) 
[  361.819493][T13881] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  361.819499][T13881] Call Trace:
[  361.819502][T13881]  <TASK>
[  361.819506][T13881]  dump_stack_lvl+0x16c/0x1f0
[  361.819522][T13881]  should_fail_ex+0x512/0x640
[  361.819537][T13881]  ? fs_reclaim_acquire+0xae/0x150
[  361.819551][T13881]  ? tomoyo_encode2+0x100/0x3e0
[  361.819563][T13881]  should_failslab+0xc2/0x120
[  361.819573][T13881]  __kmalloc_noprof+0xd2/0x510
[  361.819582][T13881]  ? d_absolute_path+0x136/0x1a0
[  361.819596][T13881]  tomoyo_encode2+0x100/0x3e0
[  361.819608][T13881]  tomoyo_encode+0x29/0x50
[  361.819618][T13881]  tomoyo_realpath_from_path+0x18f/0x6e0
[  361.819633][T13881]  tomoyo_path_number_perm+0x245/0x580
[  361.819642][T13881]  ? tomoyo_path_number_perm+0x237/0x580
[  361.819652][T13881]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  361.819662][T13881]  ? find_held_lock+0x2b/0x80
[  361.819681][T13881]  ? find_held_lock+0x2b/0x80
[  361.819692][T13881]  ? __fget_files+0x204/0x3c0
[  361.819702][T13881]  ? __fget_files+0x20e/0x3c0
[  361.819712][T13881]  security_file_ioctl_compat+0x9b/0x240
[  361.819723][T13881]  __do_compat_sys_ioctl+0x4e/0x2c0
[  361.819737][T13881]  __do_fast_syscall_32+0x73/0x120
[  361.819750][T13881]  do_fast_syscall_32+0x32/0x80
[  361.819762][T13881]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  361.819775][T13881] RIP: 0023:0xf7fd3579
[  361.819782][T13881] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  361.819792][T13881] RSP: 002b:00000000f50f655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  361.819803][T13881] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0185500
[  361.819809][T13881] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[  361.819814][T13881] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  361.819820][T13881] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  361.819825][T13881] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  361.819835][T13881]  </TASK>
[  361.819843][T13881] ERROR: Out of memory at tomoyo_realpath_from_path.
[  361.919087][T13888] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2305'.
[  361.939394][T13888] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  361.941685][T13888] IPv6: NLM_F_CREATE should be set when creating new route
[  362.174130][ T5955] Bluetooth: hci3: command 0x0406 tx timeout
[  365.369201][T13945] overlayfs: missing 'workdir'
[  365.376539][T13947] siw: device registration error -23
[  366.126937][T13967] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2329'.
[  366.129585][T13967] netlink: 'syz.2.2329': attribute type 7 has an invalid length.
[  366.131822][T13967] netlink: 'syz.2.2329': attribute type 8 has an invalid length.
[  366.134396][T13967] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2329'.
[  366.137938][T13967] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2329'.
[  366.140480][T13967] netlink: 'syz.2.2329': attribute type 7 has an invalid length.
[  366.142628][T13967] netlink: 'syz.2.2329': attribute type 8 has an invalid length.
[  366.145205][T13967] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2329'.
[  366.437814][T13983] siw: device registration error -23
[  367.420831][T14016] siw: device registration error -23
[  368.057930][T14034] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2352'.
[  368.367637][T14048] siw: device registration error -23
[  368.496540][T14049] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.2355' sets config #0
[  368.499787][T14049] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.2355' sets config #1
[  369.571132][ T5960] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  369.575392][ T5960] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  369.578687][ T5960] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  369.581209][ T5960] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  369.583566][ T5960] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  369.612783][  T223] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  369.616264][  T223] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  369.632723][T14084] lo speed is unknown, defaulting to 1000
[  369.634818][T14084] vxcan1 speed is unknown, defaulting to 1000
[  369.665208][T14084] lo speed is unknown, defaulting to 1000
[  369.688991][  T223] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  369.691883][  T223] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  369.755440][T14084] chnl_net:caif_netlink_parms(): no params data found
[  369.796766][  T223] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  369.800483][  T223] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  369.830398][T14084] bridge0: port 1(bridge_slave_0) entered blocking state
[  369.835388][T14084] bridge0: port 1(bridge_slave_0) entered disabled state
[  369.837996][T14084] bridge_slave_0: entered allmulticast mode
[  369.840672][T14084] bridge_slave_0: entered promiscuous mode
[  369.844373][T14084] bridge0: port 2(bridge_slave_1) entered blocking state
[  369.847243][T14084] bridge0: port 2(bridge_slave_1) entered disabled state
[  369.850272][T14084] bridge_slave_1: entered allmulticast mode
[  369.867155][T14084] bridge_slave_1: entered promiscuous mode
[  369.915694][  T223] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  369.918736][  T223] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  369.958281][T14084] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  369.961789][T14084] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  369.983553][T14084] team0: Port device team_slave_0 added
[  369.987565][T14084] team0: Port device team_slave_1 added
[  370.025984][T14084] batman_adv: batadv0: Adding interface: batadv_slave_0
[  370.028499][T14084] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  370.042044][T14084] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  370.077156][T14084] batman_adv: batadv0: Adding interface: batadv_slave_1
[  370.079668][T14084] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  370.090863][T14084] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  370.144748][  T223] bridge_slave_1: left allmulticast mode
[  370.146988][  T223] bridge_slave_1: left promiscuous mode
[  370.150427][  T223] bridge0: port 2(bridge_slave_1) entered disabled state
[  370.155525][  T223] bridge_slave_0: left allmulticast mode
[  370.157624][  T223] bridge_slave_0: left promiscuous mode
[  370.159867][  T223] bridge0: port 1(bridge_slave_0) entered disabled state
[  370.174903][  T223] batman_adv: batadv0: Interface deactivated: ip6gretap1
[  370.238061][  T223] batman_adv: batadv0: Removing interface: ip6gretap1
[  370.496638][  T223] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  370.500751][  T223] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  370.504873][  T223] bond0 (unregistering): Released all slaves
[  370.505525][T14116] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2376'.
[  370.510695][  T223] bond1 (unregistering): Released all slaves
[  370.517060][T14084] hsr_slave_0: entered promiscuous mode
[  370.519130][T14084] hsr_slave_1: entered promiscuous mode
[  370.521924][T14084] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  370.524475][T14084] Cannot create hsr debugfs directory
[  370.536366][T14114] IPv6: NLM_F_CREATE should be specified when creating new route
[  370.582642][  T223] : left promiscuous mode
[  370.641124][  T223] tipc: Left network mode
[  370.790839][  T223] hsr_slave_0: left promiscuous mode
[  370.793084][  T223] hsr_slave_1: left promiscuous mode
[  370.795754][  T223] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  370.798607][  T223] batman_adv: batadv0: Removing interface: batadv_slave_0
[  370.802046][  T223] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  370.805263][  T223] batman_adv: batadv0: Removing interface: batadv_slave_1
[  370.839734][  T223] veth1_macvtap: left promiscuous mode
[  370.841590][  T223] veth0_macvtap: left promiscuous mode
[  370.844100][  T223] veth1_vlan: left promiscuous mode
[  370.845843][  T223] veth0_vlan: left promiscuous mode
[  371.629837][  T223] team0 (unregistering): Port device team_slave_1 removed
[  371.696157][ T5955] Bluetooth: hci4: command tx timeout
[  371.714650][  T223] team0 (unregistering): Port device team_slave_0 removed
[  372.223325][   T12] smc: removing ib device syz1
[  372.455663][T13715] vxcan1 speed is unknown, defaulting to 1000
[  372.613289][T14084] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  372.628406][T14084] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  372.635564][T14084] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  372.650387][T14084] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  372.695529][T14084] 8021q: adding VLAN 0 to HW filter on device bond0
[  372.702411][T14084] 8021q: adding VLAN 0 to HW filter on device team0
[  372.706055][   T71] bridge0: port 1(bridge_slave_0) entered blocking state
[  372.708569][   T71] bridge0: port 1(bridge_slave_0) entered forwarding state
[  372.712785][   T71] bridge0: port 2(bridge_slave_1) entered blocking state
[  372.714799][   T71] bridge0: port 2(bridge_slave_1) entered forwarding state
[  372.790103][T14084] 8021q: adding VLAN 0 to HW filter on device batadv0
[  372.806589][T14084] veth0_vlan: entered promiscuous mode
[  372.811101][T14084] veth1_vlan: entered promiscuous mode
[  372.825975][T14084] veth0_macvtap: entered promiscuous mode
[  372.829224][T14084] veth1_macvtap: entered promiscuous mode
[  372.836434][T14084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  372.839337][T14084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  372.842040][T14084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  372.844978][T14084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  372.847758][T14084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  372.850934][T14084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  372.854530][T14084] batman_adv: batadv0: Interface activated: batadv_slave_0
[  372.865917][T14084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  372.868879][T14084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  372.872185][T14084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  372.875437][T14084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  372.878204][T14084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  372.881105][T14084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  372.885336][T14084] batman_adv: batadv0: Interface activated: batadv_slave_1
[  372.890023][T14084] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  372.892461][T14084] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  372.895897][T14084] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  372.898460][T14084] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  372.921527][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  372.925828][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  372.936591][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  372.938951][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  373.763813][ T5955] Bluetooth: hci4: command tx timeout
[  373.832250][ T5955] Bluetooth: hci3: ACL packet for unknown connection handle 201
[  374.717786][T14184] FAULT_INJECTION: forcing a failure.
[  374.717786][T14184] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  374.722459][T14184] CPU: 2 UID: 0 PID: 14184 Comm: syz.1.2392 Not tainted 6.14.0-syzkaller-07318-g4fa118e5b79f #0 PREEMPT(full) 
[  374.722481][T14184] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  374.722490][T14184] Call Trace:
[  374.722496][T14184]  <TASK>
[  374.722502][T14184]  dump_stack_lvl+0x16c/0x1f0
[  374.722527][T14184]  should_fail_ex+0x512/0x640
[  374.722551][T14184]  _copy_to_user+0x32/0xd0
[  374.722565][T14184]  simple_read_from_buffer+0xe0/0x170
[  374.722586][T14184]  proc_fail_nth_read+0x197/0x270
[  374.722606][T14184]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  374.722625][T14184]  ? rw_verify_area+0xcf/0x680
[  374.722643][T14184]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  374.722662][T14184]  vfs_read+0x1de/0xc70
[  374.722681][T14184]  ? __pfx___mutex_lock+0x10/0x10
[  374.722698][T14184]  ? __pfx_vfs_read+0x10/0x10
[  374.722720][T14184]  ? __fget_files+0x20e/0x3c0
[  374.722736][T14184]  ksys_read+0x12a/0x240
[  374.722754][T14184]  ? __pfx_ksys_read+0x10/0x10
[  374.722780][T14184]  ? rcu_is_watching+0x12/0xc0
[  374.722797][T14184]  __do_fast_syscall_32+0x73/0x120
[  374.722818][T14184]  do_fast_syscall_32+0x32/0x80
[  374.722838][T14184]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  374.722857][T14184] RIP: 0023:0xf7f41579
[  374.722869][T14184] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  374.722883][T14184] RSP: 002b:00000000f5066590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  374.722898][T14184] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5066620
[  374.722909][T14184] RDX: 000000000000000f RSI: 00000000f73ccff4 RDI: 0000000000000000
[  374.722918][T14184] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  374.722927][T14184] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  374.722936][T14184] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  374.722953][T14184]  </TASK>
[  374.789067][    C2] hpet: Lost 3 RTC interrupts
[  375.844503][ T5955] Bluetooth: hci4: command tx timeout
[  376.126813][T14222] fuse: Bad value for 'fd'
[  376.586872][T14222] Invalid source name
[  376.588542][T14222] UBIFS error (pid: 14222): cannot open "./file0", error -22
[  377.652895][T14258] ipt_ECN: cannot use operation on non-tcp rule
[  377.924623][ T5955] Bluetooth: hci4: command tx timeout
[  377.934839][ T1413] ieee802154 phy0 wpan0: encryption failed: -22
[  378.399720][  T834] usb 8-1: new high-speed USB device number 18 using dummy_hcd
[  378.545425][  T834] usb 8-1: config 0 has no interfaces?
[  378.547051][  T834] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  378.549532][  T834] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  378.552438][  T834] usb 8-1: config 0 descriptor??
[  378.928244][ T5960] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  378.931871][ T5960] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  378.935702][ T5960] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  378.939605][ T5960] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  378.947886][ T5960] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  378.961663][T14288] lo speed is unknown, defaulting to 1000
[  378.963630][T14288] lo speed is unknown, defaulting to 1000
[  379.038457][T14288] chnl_net:caif_netlink_parms(): no params data found
[  379.085190][T14288] bridge0: port 1(bridge_slave_0) entered blocking state
[  379.087296][T14288] bridge0: port 1(bridge_slave_0) entered disabled state
[  379.089432][T14288] bridge_slave_0: entered allmulticast mode
[  379.091576][T14288] bridge_slave_0: entered promiscuous mode
[  379.095721][T14288] bridge0: port 2(bridge_slave_1) entered blocking state
[  379.097839][T14288] bridge0: port 2(bridge_slave_1) entered disabled state
[  379.099952][T14288] bridge_slave_1: entered allmulticast mode
[  379.102095][T14288] bridge_slave_1: entered promiscuous mode
[  379.119138][T14288] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  379.122674][T14288] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  379.141389][T14288] team0: Port device team_slave_0 added
[  379.144610][T14288] team0: Port device team_slave_1 added
[  379.162401][T14288] batman_adv: batadv0: Adding interface: batadv_slave_0
[  379.164487][T14288] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  379.171921][T14288] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  379.176119][T14288] batman_adv: batadv0: Adding interface: batadv_slave_1
[  379.178264][T14288] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  379.188641][T14288] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  379.215217][T14288] hsr_slave_0: entered promiscuous mode
[  379.217119][T14288] hsr_slave_1: entered promiscuous mode
[  379.218986][T14288] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  379.221141][T14288] Cannot create hsr debugfs directory
[  379.234946][T14299] block nbd2: shutting down sockets
[  379.606911][T14288] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  379.610000][T14288] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  379.613072][T14288] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  379.616317][T14288] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  379.634853][T14288] bridge0: port 2(bridge_slave_1) entered blocking state
[  379.636930][T14288] bridge0: port 2(bridge_slave_1) entered forwarding state
[  379.639319][T14288] bridge0: port 1(bridge_slave_0) entered blocking state
[  379.642870][T14288] bridge0: port 1(bridge_slave_0) entered forwarding state
[  379.669721][T14288] 8021q: adding VLAN 0 to HW filter on device bond0
[  379.677868][ T1135] bridge0: port 1(bridge_slave_0) entered disabled state
[  379.680815][ T1135] bridge0: port 2(bridge_slave_1) entered disabled state
[  379.702149][T14288] 8021q: adding VLAN 0 to HW filter on device team0
[  379.718869][T14288] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  379.721763][T14288] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  379.780569][T14288] 8021q: adding VLAN 0 to HW filter on device batadv0
[  379.798593][T14288] veth0_vlan: entered promiscuous mode
[  379.802141][T14288] veth1_vlan: entered promiscuous mode
[  379.810201][T14288] veth0_macvtap: entered promiscuous mode
[  379.813041][T14288] veth1_macvtap: entered promiscuous mode
[  379.820192][T14288] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  379.823256][T14288] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  379.826406][T14288] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  379.829801][T14288] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  379.833144][T14288] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  379.837174][T14288] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  379.839845][T14288] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  379.842702][T14288] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  379.846494][T14288] batman_adv: batadv0: Interface activated: batadv_slave_0
[  379.850216][T14288] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  379.853539][T14288] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  379.856969][T14288] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  379.860120][T14288] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  379.863816][T14288] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  379.867701][T14288] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  379.870657][T14288] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  379.874993][T14288] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  379.879119][T14288] batman_adv: batadv0: Interface activated: batadv_slave_1
[  379.890653][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  379.893108][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  379.896031][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  379.898072][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  379.905487][T14288] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  379.908003][T14288] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  379.910402][T14288] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  379.913386][T14288] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  379.944374][T14157] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  379.949053][T14157] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  379.957258][ T1135] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  379.959547][ T1135] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  380.350215][T14327] netlink: 72 bytes leftover after parsing attributes in process `syz.0.2430'.
[  380.744072][   T59] usb 8-1: USB disconnect, device number 18
[  380.793575][T14333] FAULT_INJECTION: forcing a failure.
[  380.793575][T14333] name failslab, interval 1, probability 0, space 0, times 0
[  380.798750][T14333] CPU: 2 UID: 0 PID: 14333 Comm: syz.3.2432 Not tainted 6.14.0-syzkaller-07318-g4fa118e5b79f #0 PREEMPT(full) 
[  380.798773][T14333] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  380.798780][T14333] Call Trace:
[  380.798783][T14333]  <TASK>
[  380.798787][T14333]  dump_stack_lvl+0x16c/0x1f0
[  380.798803][T14333]  should_fail_ex+0x512/0x640
[  380.798818][T14333]  ? fs_reclaim_acquire+0xae/0x150
[  380.798832][T14333]  should_failslab+0xc2/0x120
[  380.798842][T14333]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  380.798858][T14333]  ? security_inode_alloc+0x3b/0x2b0
[  380.798874][T14333]  security_inode_alloc+0x3b/0x2b0
[  380.798889][T14333]  inode_init_always_gfp+0xce4/0x1030
[  380.798904][T14333]  alloc_inode+0x86/0x240
[  380.798916][T14333]  sock_alloc+0x40/0x280
[  380.798928][T14333]  __sock_create+0xc1/0x8d0
[  380.798942][T14333]  __sys_socket+0x14d/0x260
[  380.798953][T14333]  ? fput+0x70/0xf0
[  380.798964][T14333]  ? __pfx___sys_socket+0x10/0x10
[  380.798975][T14333]  ? ksys_write+0x1b9/0x240
[  380.798989][T14333]  ? __pfx_ksys_write+0x10/0x10
[  380.799004][T14333]  __ia32_sys_socket+0x72/0xb0
[  380.799016][T14333]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  380.799029][T14333]  __do_fast_syscall_32+0x73/0x120
[  380.799043][T14333]  do_fast_syscall_32+0x32/0x80
[  380.799055][T14333]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  380.799068][T14333] RIP: 0023:0xf7f18579
[  380.799075][T14333] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  380.799085][T14333] RSP: 002b:00000000f503655c EFLAGS: 00000296 ORIG_RAX: 0000000000000167
[  380.799095][T14333] RAX: ffffffffffffffda RBX: 0000000000000018 RCX: 0000000000000001
[  380.799101][T14333] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  380.799106][T14333] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  380.799112][T14333] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  380.799117][T14333] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  380.799127][T14333]  </TASK>
[  380.799353][T14333] socket: no more sockets
[  380.974567][ T5955] Bluetooth: hci0: command tx timeout
[  382.115297][T14369] : entered promiscuous mode
[  383.044198][ T5955] Bluetooth: hci0: command tx timeout
[  383.628484][T14399] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2448'.
[  385.138278][ T5955] Bluetooth: hci0: command tx timeout
[  385.475453][T14430] fuse: Unknown parameter 'euid'
[  385.829953][T14440] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2460'.
[  385.877766][T14442] Invalid source name
[  385.883916][T14442] UBIFS error (pid: 14442): cannot open "./file0", error -22
[  386.484661][T14455] FAULT_INJECTION: forcing a failure.
[  386.484661][T14455] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  386.491446][T14455] CPU: 1 UID: 0 PID: 14455 Comm: syz.3.2461 Not tainted 6.14.0-syzkaller-07318-g4fa118e5b79f #0 PREEMPT(full) 
[  386.491470][T14455] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  386.491476][T14455] Call Trace:
[  386.491480][T14455]  <TASK>
[  386.491484][T14455]  dump_stack_lvl+0x16c/0x1f0
[  386.491501][T14455]  should_fail_ex+0x512/0x640
[  386.491518][T14455]  _copy_to_user+0x32/0xd0
[  386.491529][T14455]  simple_read_from_buffer+0xe0/0x170
[  386.491544][T14455]  proc_fail_nth_read+0x197/0x270
[  386.491559][T14455]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  386.491574][T14455]  ? rw_verify_area+0xcf/0x680
[  386.491587][T14455]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  386.491601][T14455]  vfs_read+0x1de/0xc70
[  386.491621][T14455]  ? __pfx___mutex_lock+0x10/0x10
[  386.491634][T14455]  ? __pfx_vfs_read+0x10/0x10
[  386.491650][T14455]  ? __fget_files+0x20e/0x3c0
[  386.491661][T14455]  ksys_read+0x12a/0x240
[  386.491675][T14455]  ? __pfx_ksys_read+0x10/0x10
[  386.491689][T14455]  ? rcu_is_watching+0x12/0xc0
[  386.491703][T14455]  __do_fast_syscall_32+0x73/0x120
[  386.491716][T14455]  do_fast_syscall_32+0x32/0x80
[  386.491729][T14455]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  386.491741][T14455] RIP: 0023:0xf7f18579
[  386.491749][T14455] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  386.491759][T14455] RSP: 002b:00000000f4ff4590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  386.491769][T14455] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000f4ff4620
[  386.491775][T14455] RDX: 000000000000000f RSI: 00000000f739cff4 RDI: 0000000000000000
[  386.491781][T14455] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  386.491786][T14455] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  386.491792][T14455] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  386.491802][T14455]  </TASK>
[  386.684914][   T40] audit: type=1800 audit(1743153878.993:326): pid=14457 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2465" name="file1" dev="overlay" ino=3154 res=0 errno=0
[  387.213914][ T5955] Bluetooth: hci0: command tx timeout
[  387.839563][T14495] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  387.923258][T14499] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2476'.
[  388.200538][T14504] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  388.366844][   T40] audit: type=1800 audit(1743153880.673:327): pid=14512 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2478" name="file1" dev="overlay" ino=83 res=0 errno=0
[  389.349492][T14536] FAULT_INJECTION: forcing a failure.
[  389.349492][T14536] name failslab, interval 1, probability 0, space 0, times 0
[  389.352963][T14536] CPU: 2 UID: 0 PID: 14536 Comm: syz.2.2487 Not tainted 6.14.0-syzkaller-07318-g4fa118e5b79f #0 PREEMPT(full) 
[  389.352978][T14536] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  389.352983][T14536] Call Trace:
[  389.352987][T14536]  <TASK>
[  389.352991][T14536]  dump_stack_lvl+0x16c/0x1f0
[  389.353007][T14536]  should_fail_ex+0x512/0x640
[  389.353023][T14536]  ? __kvmalloc_node_noprof+0x122/0x600
[  389.353039][T14536]  should_failslab+0xc2/0x120
[  389.353050][T14536]  __kvmalloc_node_noprof+0x135/0x600
[  389.353065][T14536]  ? io_alloc_cache_init+0x33/0x170
[  389.353079][T14536]  ? io_alloc_cache_init+0x33/0x170
[  389.353091][T14536]  io_alloc_cache_init+0x33/0x170
[  389.353113][T14536]  io_uring_setup+0x67d/0x2080
[  389.353124][T14536]  ? __pfx_io_uring_setup+0x10/0x10
[  389.353132][T14536]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  389.353146][T14536]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  389.353160][T14536]  ? __fget_files+0x20e/0x3c0
[  389.353171][T14536]  ? ksys_write+0x1b9/0x240
[  389.353185][T14536]  ? __pfx_ksys_write+0x10/0x10
[  389.353201][T14536]  __ia32_sys_io_uring_setup+0xc2/0x170
[  389.353211][T14536]  __do_fast_syscall_32+0x73/0x120
[  389.353224][T14536]  do_fast_syscall_32+0x32/0x80
[  389.353237][T14536]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  389.353249][T14536] RIP: 0023:0xf749e579
[  389.353260][T14536] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  389.353274][T14536] RSP: 002b:00000000f512650c EFLAGS: 00000206 ORIG_RAX: 00000000000001a9
[  389.353288][T14536] RAX: ffffffffffffffda RBX: 0000000000000239 RCX: 0000000080000740
[  389.353296][T14536] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  389.353305][T14536] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  389.353313][T14536] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  389.353320][T14536] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  389.353330][T14536]  </TASK>
[  389.409435][    C2] hpet: Lost 2 RTC interrupts
[  390.588927][T14564] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  391.151888][T14577] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  391.364346][ T5955] Bluetooth: hci4: command 0x0406 tx timeout
[  392.679417][T14605] netlink: 'syz.2.2506': attribute type 1 has an invalid length.
[  392.682138][T14605] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  392.685127][T14605] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  392.688486][T14605] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  392.943102][T14590] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  392.946458][T14590] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  392.949073][T14590] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  392.952195][T14590] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  392.956853][T14590] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  392.975290][T14612] lo speed is unknown, defaulting to 1000
[  392.977323][T14612] lo speed is unknown, defaulting to 1000
[  393.057956][T14612] chnl_net:caif_netlink_parms(): no params data found
[  393.152799][T14612] bridge0: port 1(bridge_slave_0) entered blocking state
[  393.155513][T14612] bridge0: port 1(bridge_slave_0) entered disabled state
[  393.158125][T14612] bridge_slave_0: entered allmulticast mode
[  393.161754][T14612] bridge_slave_0: entered promiscuous mode
[  393.165552][T14612] bridge0: port 2(bridge_slave_1) entered blocking state
[  393.168542][T14612] bridge0: port 2(bridge_slave_1) entered disabled state
[  393.170625][T14612] bridge_slave_1: entered allmulticast mode
[  393.172699][T14612] bridge_slave_1: entered promiscuous mode
[  393.191660][T14612] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  393.195844][T14612] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  393.216984][T14612] team0: Port device team_slave_0 added
[  393.219593][T14612] team0: Port device team_slave_1 added
[  393.238447][T14612] batman_adv: batadv0: Adding interface: batadv_slave_0
[  393.240460][T14612] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  393.249913][T14612] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  393.256833][T14612] batman_adv: batadv0: Adding interface: batadv_slave_1
[  393.258917][T14612] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  393.266596][T14612] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  393.288468][T14612] hsr_slave_0: entered promiscuous mode
[  393.290428][T14612] hsr_slave_1: entered promiscuous mode
[  393.292258][T14612] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  393.294471][T14612] Cannot create hsr debugfs directory
[  393.354881][T14612] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  393.445204][T14612] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  393.522781][T14612] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  393.608952][T14612] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  394.536183][T14612] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  394.554181][T14612] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  394.561251][T14612] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  394.571200][T14612] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  394.596967][T14612] 8021q: adding VLAN 0 to HW filter on device bond0
[  394.606189][T14612] 8021q: adding VLAN 0 to HW filter on device team0
[  394.610964][ T1144] bridge0: port 1(bridge_slave_0) entered blocking state
[  394.612995][ T1144] bridge0: port 1(bridge_slave_0) entered forwarding state
[  394.624849][ T1144] bridge0: port 2(bridge_slave_1) entered blocking state
[  394.626838][ T1144] bridge0: port 2(bridge_slave_1) entered forwarding state
[  394.672647][T14612] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  394.734939][T14612] 8021q: adding VLAN 0 to HW filter on device batadv0
[  394.749154][T14612] veth0_vlan: entered promiscuous mode
[  394.756314][T14612] veth1_vlan: entered promiscuous mode
[  394.767470][T14612] veth0_macvtap: entered promiscuous mode
[  394.770427][T14612] veth1_macvtap: entered promiscuous mode
[  394.775860][T14612] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  394.778712][T14612] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  394.781448][T14612] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  394.786996][T14612] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  394.789694][T14612] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  394.792621][T14612] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  394.795850][T14612] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  394.798690][T14612] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  394.801335][T14612] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  394.805350][T14612] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  394.809097][T14612] batman_adv: batadv0: Interface activated: batadv_slave_0
[  394.813834][T14612] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  394.817242][T14612] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  394.820580][T14612] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  394.823367][T14612] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  394.826993][T14612] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  394.829916][T14612] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  394.832661][T14612] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  394.837025][T14612] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  394.839814][T14612] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  394.842669][T14612] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  394.846401][T14612] batman_adv: batadv0: Interface activated: batadv_slave_1
[  394.849619][T14612] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  394.852080][T14612] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  394.854752][T14612] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  394.857211][T14612] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  394.899628][   T71] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  394.902444][   T71] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  394.913522][   T71] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  394.918234][   T71] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  394.967661][T14590] Bluetooth: hci1: command tx timeout
[  395.880310][T14684] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2522'.
[  395.884266][T14684] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2522'.
[  396.021934][T14685] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2522'.
[  396.590074][T14708] mac80211_hwsim hwsim17 wlan0: entered promiscuous mode
[  396.592262][T14708] mac80211_hwsim hwsim17 wlan0: entered allmulticast mode
[  397.045252][T14590] Bluetooth: hci1: command tx timeout
[  399.124054][ T5960] Bluetooth: hci1: command tx timeout
[  399.182178][T14753] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  401.433796][T14590] Bluetooth: hci1: command 0x0419 tx timeout
[  402.642135][T14825] tmpfs: User quota block hardlimit too large.
[  402.861189][T14834] tap0: tun_chr_ioctl cmd 1074025678
[  402.862722][T14834] tap0: group set to 0
[  403.454484][T14590] Bluetooth: hci1: command 0x0419 tx timeout
[  403.590248][T14850] bochs-drm 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem
[  404.478865][T14869] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2571'.
[  404.481379][T14869] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2571'.
[  404.553172][T14870] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2571'.
[  404.704333][T14873] bochs-drm 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  404.707388][T14873] FAULT_INJECTION: forcing a failure.
[  404.707388][T14873] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  404.711078][T14873] CPU: 3 UID: 0 PID: 14873 Comm: syz.3.2572 Not tainted 6.14.0-syzkaller-07318-g4fa118e5b79f #0 PREEMPT(full) 
[  404.711091][T14873] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  404.711096][T14873] Call Trace:
[  404.711100][T14873]  <TASK>
[  404.711104][T14873]  dump_stack_lvl+0x16c/0x1f0
[  404.711119][T14873]  should_fail_ex+0x512/0x640
[  404.711137][T14873]  _copy_to_user+0x32/0xd0
[  404.711147][T14873]  simple_read_from_buffer+0xe0/0x170
[  404.711163][T14873]  proc_fail_nth_read+0x197/0x270
[  404.711178][T14873]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  404.711192][T14873]  ? rw_verify_area+0xcf/0x680
[  404.711205][T14873]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  404.711219][T14873]  vfs_read+0x1de/0xc70
[  404.711234][T14873]  ? __pfx___mutex_lock+0x10/0x10
[  404.711255][T14873]  ? __pfx_vfs_read+0x10/0x10
[  404.711274][T14873]  ? __fget_files+0x20e/0x3c0
[  404.711286][T14873]  ksys_read+0x12a/0x240
[  404.711299][T14873]  ? __pfx_ksys_read+0x10/0x10
[  404.711314][T14873]  ? rcu_is_watching+0x12/0xc0
[  404.711326][T14873]  __do_fast_syscall_32+0x73/0x120
[  404.711340][T14873]  do_fast_syscall_32+0x32/0x80
[  404.711353][T14873]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  404.711365][T14873] RIP: 0023:0xf7f18579
[  404.711373][T14873] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  404.711382][T14873] RSP: 002b:00000000f5036590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  404.711392][T14873] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5036620
[  404.711398][T14873] RDX: 000000000000000f RSI: 00000000f739cff4 RDI: 0000000000000000
[  404.711404][T14873] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  404.711414][T14873] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  404.711419][T14873] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  404.711430][T14873]  </TASK>
[  406.087172][T14901] FAULT_INJECTION: forcing a failure.
[  406.087172][T14901] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  406.090968][T14901] CPU: 2 UID: 0 PID: 14901 Comm: syz.1.2582 Not tainted 6.14.0-syzkaller-07318-g4fa118e5b79f #0 PREEMPT(full) 
[  406.090989][T14901] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  406.090998][T14901] Call Trace:
[  406.091004][T14901]  <TASK>
[  406.091010][T14901]  dump_stack_lvl+0x16c/0x1f0
[  406.091035][T14901]  should_fail_ex+0x512/0x640
[  406.091062][T14901]  _copy_to_user+0x32/0xd0
[  406.091079][T14901]  simple_read_from_buffer+0xe0/0x170
[  406.091103][T14901]  proc_fail_nth_read+0x197/0x270
[  406.091125][T14901]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  406.091148][T14901]  ? rw_verify_area+0xcf/0x680
[  406.091169][T14901]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  406.091192][T14901]  vfs_read+0x1de/0xc70
[  406.091216][T14901]  ? __pfx___mutex_lock+0x10/0x10
[  406.091237][T14901]  ? __pfx_vfs_read+0x10/0x10
[  406.091262][T14901]  ? __fget_files+0x20e/0x3c0
[  406.091280][T14901]  ksys_read+0x12a/0x240
[  406.091301][T14901]  ? __pfx_ksys_read+0x10/0x10
[  406.091329][T14901]  ? rcu_is_watching+0x12/0xc0
[  406.091354][T14901]  __do_fast_syscall_32+0x73/0x120
[  406.091376][T14901]  do_fast_syscall_32+0x32/0x80
[  406.091396][T14901]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  406.091416][T14901] RIP: 0023:0xf73ce579
[  406.091428][T14901] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  406.091443][T14901] RSP: 002b:00000000f5056590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  406.091459][T14901] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f5056620
[  406.091468][T14901] RDX: 000000000000000f RSI: 00000000f73bcff4 RDI: 0000000000000000
[  406.091478][T14901] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  406.091486][T14901] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  406.091495][T14901] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  406.091512][T14901]  </TASK>
[  406.159704][    C2] hpet: Lost 3 RTC interrupts
[  406.177329][T14896] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  406.289556][T14909] 9pnet_fd: Insufficient options for proto=fd
[  406.826996][T14916] fuse: Unknown parameter 'euid'
[  407.635777][T14922] Invalid source name
[  407.636953][T14922] UBIFS error (pid: 14922): cannot open "./file0", error -22
[  407.856586][T14936] FAULT_INJECTION: forcing a failure.
[  407.856586][T14936] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  407.862276][T14936] CPU: 0 UID: 0 PID: 14936 Comm: syz.3.2589 Not tainted 6.14.0-syzkaller-07318-g4fa118e5b79f #0 PREEMPT(full) 
[  407.862291][T14936] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  407.862297][T14936] Call Trace:
[  407.862300][T14936]  <TASK>
[  407.862304][T14936]  dump_stack_lvl+0x16c/0x1f0
[  407.862321][T14936]  should_fail_ex+0x512/0x640
[  407.862338][T14936]  _copy_from_user+0x2e/0xd0
[  407.862348][T14936]  video_usercopy+0xf11/0x1700
[  407.862363][T14936]  ? __pfx___video_do_ioctl+0x10/0x10
[  407.862375][T14936]  ? __pfx_video_usercopy+0x10/0x10
[  407.862394][T14936]  v4l2_ioctl+0x1ba/0x250
[  407.862407][T14936]  v4l2_compat_ioctl32+0x214/0x2c0
[  407.862418][T14936]  ? __pfx_v4l2_compat_ioctl32+0x10/0x10
[  407.862433][T14936]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  407.862448][T14936]  __do_fast_syscall_32+0x73/0x120
[  407.862462][T14936]  do_fast_syscall_32+0x32/0x80
[  407.862474][T14936]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  407.862486][T14936] RIP: 0023:0xf7f18579
[  407.862494][T14936] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  407.862504][T14936] RSP: 002b:00000000f503655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  407.862513][T14936] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c008561c
[  407.862519][T14936] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[  407.862525][T14936] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  407.862531][T14936] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  407.862536][T14936] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  407.862546][T14936]  </TASK>
[  408.148875][T14950] mapping of prio or/and queue is allowed only from OUTPUT/FORWARD/POSTROUTING chains
[  408.233824][ T6016] usb 8-1: new high-speed USB device number 19 using dummy_hcd
[  408.404029][ T6016] usb 8-1: Using ep0 maxpacket: 8
[  408.411653][ T6016] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  408.414963][ T6016] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  408.417497][ T6016] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  408.420633][ T6016] usb 8-1: config 0 descriptor??
[  408.638320][ T6016] iowarrior 8-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  408.642811][ T6016] usb 8-1: USB disconnect, device number 19
[  408.730947][T14967] Bluetooth: MGMT ver 1.23
[  409.086179][T14983] mapping of prio or/and queue is allowed only from OUTPUT/FORWARD/POSTROUTING chains
[  409.200173][  T834] IPVS: starting estimator thread 0...
[  409.295130][T14996] IPVS: using max 44 ests per chain, 105600 per kthread
[  409.442089][T15005] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2612'.
[  410.037424][T15019] No control pipe specified
[  410.040703][T15019] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[  410.043398][T15019] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  410.137560][T15023] netlink: 'syz.1.2623': attribute type 1 has an invalid length.
[  410.140596][T15023] netlink: 208292 bytes leftover after parsing attributes in process `syz.1.2623'.
[  410.144093][T15023] netlink: 'syz.1.2623': attribute type 2 has an invalid length.
[  410.147600][T15023] netlink: 'syz.1.2623': attribute type 1 has an invalid length.
[  410.229784][T15038] fuse: Unknown parameter 'euid'
[  410.348524][T15043] netlink: 'syz.2.2630': attribute type 1 has an invalid length.
[  410.350635][T15043] netlink: 224 bytes leftover after parsing attributes in process `syz.2.2630'.
[  410.403172][T15047] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2632'.
[  410.406526][T15047] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2632'.
[  410.506599][T15042] Invalid source name
[  410.507859][T15042] UBIFS error (pid: 15042): cannot open "./file0", error -22
[  411.240689][T15075] netlink: 'syz.0.2640': attribute type 9 has an invalid length.
[  411.250446][T15075] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.2640'.
[  413.540581][T15154] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  413.765064][ T5960] Bluetooth: hci0: command 0x0406 tx timeout
[  415.019854][ T6008] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  415.183798][ T6008] usb 7-1: Using ep0 maxpacket: 8
[  415.207837][ T6008] usb 7-1: config 57 has an invalid interface number: 92 but max is 3
[  415.231963][ T6008] usb 7-1: config 57 has an invalid descriptor of length 1, skipping remainder of the config
[  415.240989][ T6008] usb 7-1: config 57 has 1 interface, different from the descriptor's value: 4
[  415.247072][ T6008] usb 7-1: config 57 has no interface number 0
[  415.250913][ T6008] usb 7-1: config 57 interface 92 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 7
[  415.264699][ T6008] usb 7-1: New USB device found, idVendor=0471, idProduct=0326, bcdDevice=9b.82
[  415.269307][ T6008] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  415.274684][ T6008] usb 7-1: Product: syz
[  415.276911][ T6008] usb 7-1: Manufacturer: Ѓ
[  415.279289][ T6008] usb 7-1: SerialNumber: syz
[  415.703889][T15185] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  415.703970][T15185] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  415.752589][ T6008] gspca_main: gspca_zc3xx-2.14.0 probing 0471:0326
[  415.758898][ T6008] gspca_zc3xx: reg_w_i err -71
[  416.108077][T15217] kvm: apic: phys broadcast and lowest prio
[  416.158682][T15220] FAULT_INJECTION: forcing a failure.
[  416.158682][T15220] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  416.165108][T15220] CPU: 0 UID: 0 PID: 15220 Comm: syz.1.2685 Not tainted 6.14.0-syzkaller-07318-g4fa118e5b79f #0 PREEMPT(full) 
[  416.165124][T15220] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  416.165133][T15220] Call Trace:
[  416.165138][T15220]  <TASK>
[  416.165143][T15220]  dump_stack_lvl+0x16c/0x1f0
[  416.165165][T15220]  should_fail_ex+0x512/0x640
[  416.165190][T15220]  _copy_from_iter+0x2a4/0x15b0
[  416.165207][T15220]  ? find_held_lock+0x2b/0x80
[  416.165226][T15220]  ? __pfx__copy_from_iter+0x10/0x10
[  416.165242][T15220]  ? __virt_addr_valid+0x5e/0x590
[  416.165263][T15220]  ? __phys_addr_symbol+0x30/0x80
[  416.165282][T15220]  ? __check_object_size+0x4c7/0x710
[  416.165299][T15220]  netlink_sendmsg+0x83a/0xd70
[  416.165320][T15220]  ? __pfx_netlink_sendmsg+0x10/0x10
[  416.165338][T15220]  ? __import_iovec+0x1c8/0x660
[  416.165358][T15220]  ____sys_sendmsg+0xa8d/0xc60
[  416.165379][T15220]  ? __pfx_____sys_sendmsg+0x10/0x10
[  416.165399][T15220]  ? get_compat_msghdr+0x11a/0x170
[  416.165432][T15220]  ___sys_sendmsg+0x134/0x1d0
[  416.165450][T15220]  ? __pfx____sys_sendmsg+0x10/0x10
[  416.165486][T15220]  __sys_sendmsg+0x16d/0x220
[  416.165503][T15220]  ? __pfx___sys_sendmsg+0x10/0x10
[  416.165525][T15220]  ? rcu_is_watching+0x12/0xc0
[  416.165547][T15220]  __do_fast_syscall_32+0x73/0x120
[  416.165571][T15220]  do_fast_syscall_32+0x32/0x80
[  416.165593][T15220]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  416.165613][T15220] RIP: 0023:0xf73ce579
[  416.165634][T15220] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  416.165650][T15220] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  416.165666][T15220] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000200
[  416.165677][T15220] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  416.165686][T15220] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  416.165695][T15220] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  416.165705][T15220] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  416.165722][T15220]  </TASK>
[  416.477234][T15235] input: syz1 as /devices/virtual/input/input26
[  416.523852][ T6008] gspca_zc3xx: Unknown sensor - set to TAS5130C
[  416.526848][ T6008] gspca_zc3xx 7-1:57.92: probe with driver gspca_zc3xx failed with error -71
[  416.543315][ T6008] usb 7-1: USB disconnect, device number 16
[  417.175003][T15252] netlink: 'syz.1.2694': attribute type 1 has an invalid length.
[  417.231679][T15257] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2694'.
[  417.245519][T15257] 8021q: adding VLAN 0 to HW filter on device batadv1
[  417.250503][T15257] bond1: (slave batadv1): Enslaving as a backup interface with an up link
[  417.288351][T15256] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  417.388565][T15249] bond1 (unregistering): (slave batadv1): Releasing backup interface
[  417.395924][T15249] bond1 (unregistering): Released all slaves
[  418.478416][T15313] FAULT_INJECTION: forcing a failure.
[  418.478416][T15313] name failslab, interval 1, probability 0, space 0, times 0
[  418.478434][T15313] CPU: 1 UID: 0 PID: 15313 Comm: syz.1.2710 Not tainted 6.14.0-syzkaller-07318-g4fa118e5b79f #0 PREEMPT(full) 
[  418.478447][T15313] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  418.478453][T15313] Call Trace:
[  418.478456][T15313]  <TASK>
[  418.478459][T15313]  dump_stack_lvl+0x16c/0x1f0
[  418.478475][T15313]  should_fail_ex+0x512/0x640
[  418.478491][T15313]  ? __kvmalloc_node_noprof+0x122/0x600
[  418.478507][T15313]  should_failslab+0xc2/0x120
[  418.478518][T15313]  __kvmalloc_node_noprof+0x135/0x600
[  418.478533][T15313]  ? io_alloc_cache_init+0x33/0x170
[  418.478547][T15313]  ? io_alloc_cache_init+0x33/0x170
[  418.478558][T15313]  io_alloc_cache_init+0x33/0x170
[  418.478570][T15313]  io_uring_setup+0x67d/0x2080
[  418.478580][T15313]  ? __pfx_io_uring_setup+0x10/0x10
[  418.478588][T15313]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  418.478602][T15313]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  418.478616][T15313]  ? __fget_files+0x20e/0x3c0
[  418.478627][T15313]  ? ksys_write+0x1b9/0x240
[  418.478641][T15313]  ? __pfx_ksys_write+0x10/0x10
[  418.478657][T15313]  __ia32_sys_io_uring_setup+0xc2/0x170
[  418.478667][T15313]  __do_fast_syscall_32+0x73/0x120
[  418.478680][T15313]  do_fast_syscall_32+0x32/0x80
[  418.478692][T15313]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  418.478704][T15313] RIP: 0023:0xf73ce579
[  418.478712][T15313] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  418.478721][T15313] RSP: 002b:00000000f505650c EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[  418.478731][T15313] RAX: ffffffffffffffda RBX: 000000000000010e RCX: 0000000080000140
[  418.478736][T15313] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  418.478742][T15313] RBP: 0000000080000240 R08: 0000000000000000 R09: 0000000000000000
[  418.478747][T15313] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  418.478753][T15313] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  418.478763][T15313]  </TASK>
[  421.690338][T15416] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2738'.
[  421.974050][T15414] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  421.984047][T15414] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  421.994255][T15414] bond0 (unregistering): Released all slaves
[  422.178819][T15416] netlink: 'syz.3.2738': attribute type 2 has an invalid length.
[  422.577239][T15437] lo speed is unknown, defaulting to 1000
[  422.580155][T15437] lo speed is unknown, defaulting to 1000
[  422.711424][T15441] lo speed is unknown, defaulting to 1000
[  422.718269][T15441] lo speed is unknown, defaulting to 1000
[  422.782999][T15450] FAULT_INJECTION: forcing a failure.
[  422.782999][T15450] name failslab, interval 1, probability 0, space 0, times 0
[  422.788942][T15450] CPU: 0 UID: 0 PID: 15450 Comm: syz.3.2743 Not tainted 6.14.0-syzkaller-07318-g4fa118e5b79f #0 PREEMPT(full) 
[  422.788957][T15450] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  422.788963][T15450] Call Trace:
[  422.788966][T15450]  <TASK>
[  422.788971][T15450]  dump_stack_lvl+0x16c/0x1f0
[  422.788987][T15450]  should_fail_ex+0x512/0x640
[  422.789002][T15450]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  422.789024][T15450]  should_failslab+0xc2/0x120
[  422.789041][T15450]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  422.789064][T15450]  ? getname_flags.part.0+0x48/0x540
[  422.789078][T15450]  getname_flags.part.0+0x48/0x540
[  422.789091][T15450]  getname_flags+0x93/0xf0
[  422.789105][T15450]  do_sys_openat2+0xb8/0x1d0
[  422.789116][T15450]  ? __pfx_do_sys_openat2+0x10/0x10
[  422.789128][T15450]  ? __fget_files+0x20e/0x3c0
[  422.789138][T15450]  __ia32_compat_sys_openat+0x16d/0x210
[  422.789150][T15450]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  422.789162][T15450]  ? ksys_write+0x1b9/0x240
[  422.789177][T15450]  ? rcu_is_watching+0x12/0xc0
[  422.789190][T15450]  __do_fast_syscall_32+0x73/0x120
[  422.789204][T15450]  do_fast_syscall_32+0x32/0x80
[  422.789216][T15450]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  422.789229][T15450] RIP: 0023:0xf7f18579
[  422.789236][T15450] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  422.789247][T15450] RSP: 002b:00000000f501555c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[  422.789257][T15450] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000800001c0
[  422.789269][T15450] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  422.789274][T15450] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  422.789280][T15450] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  422.789286][T15450] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  422.789296][T15450]  </TASK>
[  423.034505][T15469] block nbd2: shutting down sockets
[  423.569984][T15484] lo speed is unknown, defaulting to 1000
[  423.572172][T15484] lo speed is unknown, defaulting to 1000
[  424.038821][T15503] overlayfs: missing 'lowerdir'
[  424.042806][T15508] overlayfs: overlapping lowerdir path
[  424.395500][T15518] random: crng reseeded on system resumption
[  424.801165][T15533] Invalid source name
[  424.814704][T15533] UBIFS error (pid: 15533): cannot open "./file0", error -22
[  425.106063][T15543] kernel profiling enabled (shift: 7)
[  425.153243][T15543] ------------[ cut here ]------------
[  425.154796][T15543] WARNING: CPU: 1 PID: 15543 at ./include/net/netdev_lock.h:54 dev_xdp_install+0x610/0x9b0
[  425.157358][T15543] Modules linked in:
[  425.158568][T15543] CPU: 1 UID: 0 PID: 15543 Comm: syz.3.2772 Not tainted 6.14.0-syzkaller-07318-g4fa118e5b79f #0 PREEMPT(full) 
[  425.162895][T15543] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  425.165575][T15543] RIP: 0010:dev_xdp_install+0x610/0x9b0
[  425.166954][T15543] Code: 8d bc 24 28 0d 00 00 be ff ff ff ff e8 99 cd 26 02 31 ff 89 c5 89 c6 e8 1e 77 7d f8 85 ed 0f 85 59 fb ff ff e8 e1 7b 7d f8 90 <0f> 0b 90 e9 4b fb ff ff e8 d3 7b 7d f8 49 8d bc 24 28 0d 00 00 be
[  425.171692][T15543] RSP: 0018:ffffc90003d47940 EFLAGS: 00010283
[  425.173216][T15543] RAX: 00000000000002f8 RBX: ffff88806cc18cbd RCX: ffffc90032c05000
[  425.175254][T15543] RDX: 0000000000080000 RSI: ffffffff893dc6cf RDI: 0000000000000005
[  425.177264][T15543] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[  425.179217][T15543] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88806cc18000
[  425.181180][T15543] R13: ffffffff8708e0b0 R14: ffffc90006485000 R15: 0000000000000002
[  425.183131][T15543] FS:  0000000000000000(0000) GS:ffff888097920000(0063) knlGS:00000000f4ff4b40
[  425.185405][T15543] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  425.187112][T15543] CR2: 00000000f71637f0 CR3: 0000000025c4c000 CR4: 0000000000352ef0
[  425.189095][T15543] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  425.191100][T15543] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  425.193121][T15543] Call Trace:
[  425.194004][T15543]  <TASK>
[  425.194755][T15543]  ? __warn+0xea/0x3c0
[  425.195801][T15543]  ? dev_xdp_install+0x610/0x9b0
[  425.197083][T15543]  ? report_bug+0x3c3/0x580
[  425.198231][T15543]  ? dev_xdp_install+0x610/0x9b0
[  425.199498][T15543]  ? handle_bug+0x184/0x210
[  425.200651][T15543]  ? exc_invalid_op+0x17/0x50
[  425.201845][T15543]  ? asm_exc_invalid_op+0x1a/0x20
[  425.203232][T15543]  ? __pfx_nsim_bpf+0x10/0x10
[  425.204624][T15543]  ? dev_xdp_install+0x60f/0x9b0
[  425.205867][T15543]  ? dev_xdp_install+0x610/0x9b0
[  425.207102][T15543]  ? __pfx_nsim_bpf+0x10/0x10
[  425.208364][T15543]  ? __pfx_dev_xdp_install+0x10/0x10
[  425.209673][T15543]  ? __pfx___up_read+0x10/0x10
[  425.210869][T15543]  ? __pfx_nsim_bpf+0x10/0x10
[  425.212064][T15543]  dev_xdp_attach+0x6d1/0x16a0
[  425.213273][T15543]  ? __pfx_dev_xdp_attach+0x10/0x10
[  425.214651][T15543]  bpf_xdp_link_attach+0x2c5/0x680
[  425.215890][T15543]  ? __pfx_bpf_xdp_link_attach+0x10/0x10
[  425.217239][T15543]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  425.218712][T15543]  __sys_bpf+0x1bc7/0x4c80
[  425.219823][T15543]  ? __pfx___sys_bpf+0x10/0x10
[  425.220969][T15543]  ? __schedule+0x1186/0x5de0
[  425.222127][T15543]  ? do_futex+0x122/0x350
[  425.223195][T15543]  ? __pfx_do_futex+0x10/0x10
[  425.224423][T15543]  ? xfd_validate_state+0x5d/0x180
[  425.225665][T15543]  ? rcu_is_watching+0x12/0xc0
[  425.226855][T15543]  __ia32_sys_bpf+0x76/0xe0
[  425.227987][T15543]  __do_fast_syscall_32+0x73/0x120
[  425.229246][T15543]  do_fast_syscall_32+0x32/0x80
[  425.230557][T15543]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  425.232335][T15543] RIP: 0023:0xf7f18579
[  425.233444][T15543] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  425.238377][T15543] RSP: 002b:00000000f4ff455c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  425.240568][T15543] RAX: ffffffffffffffda RBX: 000000000000001c RCX: 0000000080000240
[  425.242538][T15543] RDX: 0000000000000020 RSI: 0000000000000000 RDI: 0000000000000000
[  425.244600][T15543] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  425.246651][T15543] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  425.248626][T15543] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  425.250567][T15543]  </TASK>
[  425.251361][T15543] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  425.253171][T15543] CPU: 1 UID: 0 PID: 15543 Comm: syz.3.2772 Not tainted 6.14.0-syzkaller-07318-g4fa118e5b79f #0 PREEMPT(full) 
[  425.255985][T15543] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  425.258596][T15543] Call Trace:
[  425.259415][T15543]  <TASK>
[  425.260170][T15543]  dump_stack_lvl+0x3d/0x1f0
[  425.261335][T15543]  panic+0x71c/0x800
[  425.262324][T15543]  ? __pfx_panic+0x10/0x10
[  425.263464][T15543]  ? show_trace_log_lvl+0x29c/0x3c0
[  425.264765][T15543]  ? dev_xdp_install+0x610/0x9b0
[  425.265995][T15543]  check_panic_on_warn+0xab/0xb0
[  425.267235][T15543]  __warn+0xf6/0x3c0
[  425.268226][T15543]  ? dev_xdp_install+0x610/0x9b0
[  425.269457][T15543]  report_bug+0x3c3/0x580
[  425.270576][T15543]  ? dev_xdp_install+0x610/0x9b0
[  425.271841][T15543]  handle_bug+0x184/0x210
[  425.272942][T15543]  exc_invalid_op+0x17/0x50
[  425.274078][T15543]  asm_exc_invalid_op+0x1a/0x20
[  425.275288][T15543] RIP: 0010:dev_xdp_install+0x610/0x9b0
[  425.276681][T15543] Code: 8d bc 24 28 0d 00 00 be ff ff ff ff e8 99 cd 26 02 31 ff 89 c5 89 c6 e8 1e 77 7d f8 85 ed 0f 85 59 fb ff ff e8 e1 7b 7d f8 90 <0f> 0b 90 e9 4b fb ff ff e8 d3 7b 7d f8 49 8d bc 24 28 0d 00 00 be
[  425.281357][T15543] RSP: 0018:ffffc90003d47940 EFLAGS: 00010283
[  425.282798][T15543] RAX: 00000000000002f8 RBX: ffff88806cc18cbd RCX: ffffc90032c05000
[  425.284708][T15543] RDX: 0000000000080000 RSI: ffffffff893dc6cf RDI: 0000000000000005
[  425.286645][T15543] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[  425.288599][T15543] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88806cc18000
[  425.290534][T15543] R13: ffffffff8708e0b0 R14: ffffc90006485000 R15: 0000000000000002
[  425.292485][T15543]  ? __pfx_nsim_bpf+0x10/0x10
[  425.293617][T15543]  ? dev_xdp_install+0x60f/0x9b0
[  425.294803][T15543]  ? __pfx_nsim_bpf+0x10/0x10
[  425.295983][T15543]  ? __pfx_dev_xdp_install+0x10/0x10
[  425.297298][T15543]  ? __pfx___up_read+0x10/0x10
[  425.298489][T15543]  ? __pfx_nsim_bpf+0x10/0x10
[  425.299678][T15543]  dev_xdp_attach+0x6d1/0x16a0
[  425.300875][T15543]  ? __pfx_dev_xdp_attach+0x10/0x10
[  425.302246][T15543]  bpf_xdp_link_attach+0x2c5/0x680
[  425.303638][T15543]  ? __pfx_bpf_xdp_link_attach+0x10/0x10
[  425.305133][T15543]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  425.306642][T15543]  __sys_bpf+0x1bc7/0x4c80
[  425.307778][T15543]  ? __pfx___sys_bpf+0x10/0x10
[  425.308968][T15543]  ? __schedule+0x1186/0x5de0
[  425.310138][T15543]  ? do_futex+0x122/0x350
[  425.311224][T15543]  ? __pfx_do_futex+0x10/0x10
[  425.312430][T15543]  ? xfd_validate_state+0x5d/0x180
[  425.313724][T15543]  ? rcu_is_watching+0x12/0xc0
[  425.314925][T15543]  __ia32_sys_bpf+0x76/0xe0
[  425.316084][T15543]  __do_fast_syscall_32+0x73/0x120
[  425.317408][T15543]  do_fast_syscall_32+0x32/0x80
[  425.318623][T15543]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  425.320202][T15543] RIP: 0023:0xf7f18579
[  425.321221][T15543] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  425.325925][T15543] RSP: 002b:00000000f4ff455c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  425.327895][T15543] RAX: ffffffffffffffda RBX: 000000000000001c RCX: 0000000080000240
[  425.329736][T15543] RDX: 0000000000000020 RSI: 0000000000000000 RDI: 0000000000000000
[  425.331681][T15543] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  425.333674][T15543] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  425.335625][T15543] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  425.337580][T15543]  </TASK>
[  425.338842][T15543] Kernel Offset: disabled
[  425.339943][T15543] Rebooting in 86400 seconds..

VM DIAGNOSIS:
09:12:28  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000c1375b RBX=0000000000000000 RCX=ffffffff8b64a339 RDX=0000000000000000
RSI=ffffffff8dbbee4d RDI=ffffffff8bf3d4c0 RBP=fffffbfff1c12ee8 RSP=ffffffff8e007e18
R8 =0000000000000001 R9 =ffffed10056465bd R10=ffff88802b232deb R11=0000000000000000
R12=0000000000000000 R13=ffffffff8e097740 R14=ffffffff9083f510 R15=0000000000000000
RIP=ffffffff8b64b72f RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097820000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080000240 CR3=000000004ee42000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000000006f RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85477895 RDI=ffffffff9adaac00 RBP=ffffffff9adaabc0 RSP=ffffc90003d472b0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=000000000000006f R14=ffffffff9adaabc0 R15=ffffffff85477830
RIP=ffffffff854778bf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097920000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f71637f0 CR3=0000000025c4c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000003 RBX=0000000000000008 RCX=0000000000000000 RDX=ffff8880291b8000
RSI=ffffffff815f40dc RDI=0000000000000008 RBP=ffffc90000538e30 RSP=ffffc90000538cd8
R8 =0000000000000000 R9 =0000000000000017 R10=0000000000000017 R11=0000000000000000
R12=ffffc90000538e30 R13=0000000000000000 R14=000000000000000a R15=ffffffff87ab9910
RIP=ffffffff815f40e2 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f3ff16aad00 ffffffff 00c00000
GS =0000 ffff888097a20000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000557e2fda9000 CR3=00000000223f8000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=1a648dbe1a648dbe 1a648dbe1a648dbe 1a648dbe1a648dbe 1a648dbe1a648dbe 1a648dbe1a648dbe 1a648dbe1a648dbe 1a648dbe1a648dbe 1a648dbe1a648dbe
ZMM22=6a4ad1d46a4ad1d4 6a4ad1d46a4ad1d4 6a4ad1d46a4ad1d4 6a4ad1d46a4ad1d4 6a4ad1d46a4ad1d4 6a4ad1d46a4ad1d4 6a4ad1d46a4ad1d4 6a4ad1d46a4ad1d4
ZMM23=e49df918e49df918 e49df918e49df918 e49df918e49df918 e49df918e49df918 e49df918e49df918 e49df918e49df918 e49df918e49df918 e49df918e49df918
ZMM24=9083ec2b9083ec2b 9083ec2b9083ec2b 9083ec2b9083ec2b 9083ec2b9083ec2b 9083ec2b9083ec2b 9083ec2b9083ec2b 9083ec2b9083ec2b 9083ec2b9083ec2b
ZMM25=59061a2e59061a2e 59061a2e59061a2e 59061a2e59061a2e 59061a2e59061a2e 59061a2e59061a2e 59061a2e59061a2e 59061a2e59061a2e 59061a2e59061a2e
ZMM26=a5e57befa5e57bef a5e57befa5e57bef a5e57befa5e57bef a5e57befa5e57bef a5e57befa5e57bef a5e57befa5e57bef a5e57befa5e57bef a5e57befa5e57bef
ZMM27=7e91c74d7e91c74d 7e91c74d7e91c74d 7e91c74d7e91c74d 7e91c74d7e91c74d 7e91c74d7e91c74d 7e91c74d7e91c74d 7e91c74d7e91c74d 7e91c74d7e91c74d
ZMM28=000000200000001f 0000001e0000001d 0000001c0000001b 0000001a00000019 0000001800000017 0000001600000015 0000001400000013 0000001200000011
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=4e1200004e120000 4e1200004e120000 4e1200004e120000 4e1200004e120000 4e1200004e120000 4e1200004e120000 4e1200004e120000 4e1200004e120000
info registers vcpu 3

CPU#3
RAX=0000000000080000 RBX=1ffff920008e1f66 RCX=ffffc90032804000 RDX=0000000000080000
RSI=ffffffff8933931c RDI=0000000000000005 RBP=ffffc9000470fc80 RSP=ffffc9000470fb18
R8 =0000000000000005 R9 =0000000000000000 R10=0000000080000002 R11=0000000000000000
R12=0000000000007b8e R13=0000000080000002 R14=ffffc9000470fd60 R15=00000000800f7280
RIP=ffffffff81bb4316 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097b20000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000025c4c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 8eaf5970a1fa8da2 7a68102c627d4989
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 b72a3ebc8ad5a8f5 7f4ad4e761067314
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f4bdccd0e75b791d 585655b756727295
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 057f2aec37aea6db a7c407be1464f6b5
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000002c0
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000010200000102 719ee1de71ce1272
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000102 0000010200000102
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001027155157c 6fcd7ae001ec1009
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 71decefa80a9c69a 000001026fcd526e
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 796cab486622a6a4 7c2d270bf37c1ab3
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 c0bb5bf3bcd96d4c 05890be0d20ff5dc
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000