last executing test programs:

9.089929039s ago: executing program 1 (id=2187):
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = syz_clone(0x90000000, 0x0, 0x0, &(0x7f0000000040), &(0x7f0000000140), &(0x7f0000000280))
prctl$PR_SCHED_CORE(0x3e, 0x0, r0, 0x3, &(0x7f0000000300))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, 0x0, 0x14)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r2 = syz_open_dev$vim2m(&(0x7f0000000000), 0xa, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r2, 0xc0405602, &(0x7f0000000300)={0x16, 0x2, 0x1, "4dc009179f4e5989070600ca0a010dee6e678a92ddf91f0000000000002000cd", 0x3247504d})
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
process_vm_readv(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x5, 0x2, 0x4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000dc0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x0, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000001100000850000008600000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
setsockopt$sock_attach_bpf(r6, 0x1, 0x32, &(0x7f00000000c0)=r8, 0x4)
sendmsg$unix(r7, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f000047b000)={0xa, 0x0, 0x0, @private1, 0x10000}, 0x1c)
mremap(&(0x7f0000241000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000d5e9bd40eb030200c0ba050000010902115c01000000000904000001b504b100090581"], 0x0)
r9 = syz_open_dev$evdev(&(0x7f00000000c0), 0x40, 0x0)
ioctl$EVIOCGKEYCODE_V2(r9, 0x80284504, &(0x7f0000000040)=""/95)
r10 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x800)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000900)={0x18, 0x30, &(0x7f0000000500)=ANY=[@ANYRES32, @ANYBLOB, @ANYRESHEX=0x0, @ANYBLOB="0000000000000000b70500000800000085000000a5000000b7080000000000007b8af8ff00000000b7080000e0ffffff7b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffff", @ANYRESHEX, @ANYRES8=r10], 0x0, 0x91bb, 0x0, 0x0, 0x40f00, 0x50, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000840)={0x0, 0x7, 0x8, 0xfffffffe}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)

6.972841831s ago: executing program 1 (id=2200):
creat(&(0x7f0000000340)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_INIT(r2, &(0x7f0000001740)={0x50, 0x0, 0x0, {0x7, 0x21}}, 0x50)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000004380), 0x0, &(0x7f0000004280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',uname='])

6.96469879s ago: executing program 1 (id=2202):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4)
r1 = getpid()
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000014c8002085000000040000", @ANYRES32], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xc, 0x4, &(0x7f0000000040)=ANY=[@ANYRESDEC], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f0000000440)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0xffffffffffffff5f, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000380)='scsi_dispatch_cmd_start\x00', r2}, 0x10)
r3 = socket(0x22, 0x3, 0x0)
getsockopt$inet6_mreq(r3, 0x29, 0x15, &(0x7f00000000c0)={@loopback, <r4=>0x0}, &(0x7f0000000240)=0x14)
ioctl$F2FS_IOC_MOVE_RANGE(r3, 0xc020f509, &(0x7f0000000280)={<r5=>r3, 0x8001, 0x400, 0x2})
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@bloom_filter={0x1e, 0x2, 0x2, 0x3, 0x80, 0xffffffffffffffff, 0x7fff, '\x00', r4, r5, 0x4, 0x4, 0x0, 0x4, @void, @value, @void, @value}, 0x48)
r6 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003b000b05d25a80258c6394f90424fc60100005000a000200053582c137153e3704000880fc0b02000300", 0x33fe0}], 0x1}, 0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x5, 0x4, &(0x7f00000015c0)=ANY=[], &(0x7f0000000140)='GPL\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x21, '\x00', r4, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r5, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000080)={'syzkaller1\x00', 0xc201})
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)={0x9c, 0x0, 0x1, 0x401, 0x0, 0x1a14, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x1}, @CTA_SYNPROXY={0x1c, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_ITS={0x8}, @CTA_SYNPROXY_ISN={0x8}, @CTA_SYNPROXY_TSOFF={0x8}]}, @CTA_SEQ_ADJ_REPLY={0x1c, 0x10, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x8}, @CTA_SEQADJ_OFFSET_BEFORE={0x8}, @CTA_SEQADJ_OFFSET_AFTER={0x8}]}]}, 0x9c}}, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x38, 0x3, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x38}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$BTRFS_IOC_DEV_REPLACE(r9, 0xca289435, &(0x7f0000000680)={0x1, 0x4000, @status={[0x3, 0xb5, 0xbdd4, 0x3, 0x7, 0x4]}, [0xffffffffffffffff, 0x4, 0xd, 0x7e82, 0x4, 0x6, 0xe70d, 0x6, 0x2, 0x4, 0x7f, 0x10000000000, 0x0, 0x2, 0x8000000000000001, 0x1, 0x1, 0x5, 0x81, 0x400, 0x1000, 0xff, 0x1, 0xfffffffffffffffe, 0x8, 0x8, 0x6, 0x0, 0x1, 0x7, 0x3, 0x8000000000000000, 0x11c, 0x2, 0x6d39, 0x7f, 0x7, 0x9, 0xffffffffffffffff, 0x80, 0x1708, 0x5, 0xc504, 0x9ef, 0xd166, 0x96d, 0x6, 0xaeb, 0x9, 0x241, 0x1, 0x9, 0x12, 0x5, 0x8000, 0x5, 0x80000001, 0xffffffffffffff43, 0x9, 0x8, 0x5dfa, 0x8, 0x5, 0x6e]})
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='blkio.bfq.sectors_recursive\x00', 0x275a, 0x0)
write$cgroup_int(r10, &(0x7f0000000100), 0x1001)
r11 = syz_open_dev$sndpcmc(&(0x7f0000000480), 0x1, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE_OLD(r11, 0xc1004110, &(0x7f0000000000)={0x0, [0x6, 0xffff133a, 0x1], [{0x0, 0x0, 0x0, 0x1}, {0x35, 0x85}, {0x0, 0x1}, {}, {}, {0x0, 0x2}, {0x0, 0xfeffffff}], 0xc})
r12 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe55, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={&(0x7f0000000180)='tlb_flush\x00', r12}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)

5.929142489s ago: executing program 1 (id=2213):
socket$inet_sctp(0x2, 0x1, 0x84)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
socket(0xa, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x0, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000e5ffffff00000000000051110012", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
r3 = eventfd(0x0)
syz_emit_ethernet(0x46, &(0x7f00000009c0)=ANY=[@ANYBLOB="8d44bf073aaebbbbbbbbbbbb86dd6001010000101100fe8000000000b3000000000000000000bbfe8000"/54], 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0x4008af12, &(0x7f0000000200)={0x1, 0x101})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000001c0)={0x0, 0x3, 0x0, &(0x7f0000000bc0)=""/142, 0x0, 0x3000})
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000940)={0x1, 0x0, [{0x0, 0xc3, &(0x7f0000000540)=""/195}]})
ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000040)={0x1, r3})
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0xd, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000090000000000000003000000850000005b000000181b0000", @ANYRES32, @ANYBLOB="0000000000000000acb9feffffffefff0976001003000000850000007700000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000000c000000b700000000000000"], &(0x7f0000000640)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r4, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb3, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000680)={r1, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf3, 0x8, 0x0, 0x0}}, 0x10)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/233, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
r5 = socket$inet_udp(0x2, 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000a40)=ANY=[@ANYBLOB="1a00000016000000b30000009500000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="030000000400000000908b95dfc365cacf203f828c3a26b60000001500"/43], 0x50)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f00000002c0)=ANY=[@ANYBLOB="18080000000000001d0000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bca900000000000035090100000000009509000000000000b702000000000000739af8ff00000000b509fdff00000000dbaaf8ff00000000bf8600000000000007080000fffdffffbfa400000000000007040000f0ffffffc70200000800000018220000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7050000080000004608f0ff76000000bf9800000000000056080000000000008500000007000000b7000000000000009500000000000000"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f455e2d33dcb2c6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r6, &(0x7f00000001c0), &(0x7f0000000040)=@tcp, 0x3}, 0x20)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r5, 0x89fb, &(0x7f00000000c0)={'sit0\x00', &(0x7f00000006c0)={@empty, @private=0xa010100, 0x1e, 0xd}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x1, 0x2, &(0x7f0000000140)=ANY=[@ANYBLOB="000000040000000000000000491df516"], &(0x7f0000000200)='GPL\x00', 0x4, 0x88, &(0x7f0000000240)=""/136, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
setsockopt$inet_int(r5, 0x0, 0x14, &(0x7f0000000000)=0x7e6, 0x4)
syz_usb_connect(0x1, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="1a0100005c6b4408070a64006e4001020303090224002af62300000904000002ca744d0009053f034d00ff99090805848f"], &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
r9 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
write$char_usb(r9, &(0x7f00000002c0)="0bd1f243a1140600ab", 0x9)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)

5.247798064s ago: executing program 3 (id=2208):
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = syz_clone(0x90000000, 0x0, 0x0, &(0x7f0000000040), &(0x7f0000000140), &(0x7f0000000280))
prctl$PR_SCHED_CORE(0x3e, 0x0, r0, 0x3, &(0x7f0000000300))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, 0x0, 0x14)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r2 = syz_open_dev$vim2m(&(0x7f0000000000), 0xa, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r2, 0xc0405602, &(0x7f0000000300)={0x16, 0x2, 0x1, "4dc009179f4e5989070600ca0a010dee6e678a92ddf91f0000000000002000cd", 0x3247504d})
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
process_vm_readv(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x5, 0x2, 0x4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000dc0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x0, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000001100000850000008600000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
setsockopt$sock_attach_bpf(r6, 0x1, 0x32, &(0x7f00000000c0)=r8, 0x4)
sendmsg$unix(r7, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f000047b000)={0xa, 0x0, 0x0, @private1, 0x10000}, 0x1c)
mremap(&(0x7f0000241000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000d5e9bd40eb030200c0ba050000010902115c01000000000904000001b504b100090581"], 0x0)
r9 = syz_open_dev$evdev(&(0x7f00000000c0), 0x40, 0x0)
ioctl$EVIOCGKEYCODE_V2(r9, 0x80284504, &(0x7f0000000040)=""/95)
r10 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x800)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000900)={0x18, 0x30, &(0x7f0000000500)=ANY=[@ANYRES32, @ANYBLOB, @ANYRESHEX=0x0, @ANYBLOB="0000000000000000b70500000800000085000000a5000000b7080000000000007b8af8ff00000000b7080000e0ffffff7b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffff", @ANYRESHEX, @ANYRES8=r10], 0x0, 0x91bb, 0x0, 0x0, 0x40f00, 0x50, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000840)={0x0, 0x7, 0x8, 0xfffffffe}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)

4.181390423s ago: executing program 2 (id=2217):
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0xcf0, 0x2c285829, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
r2 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r2, &(0x7f0000000080)={0x2a, 0xffffffff, 0xfffffffe}, 0xc)
writev(r2, &(0x7f0000000880)=[{&(0x7f0000000340)="64e5fa06", 0x4}, {0x0, 0x97}], 0x2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
brk(0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001300)=@newtfilter={0x34, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0x9}, {}, {0x1c, 0xfff1}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x4}}]}, 0x34}}, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0)

3.689861092s ago: executing program 2 (id=2219):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x18, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000620120004000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) (async)
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SCUDMATCHLEN(r0, 0x89e7, 0x0)

3.63782215s ago: executing program 2 (id=2221):
socket$nl_route(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x4adf, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x48241, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f0000000100))
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d0000006700000005"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='tlb_flush\x00', r3}, 0x10)
socket(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = getpid()
process_vm_readv(r4, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x36}], 0x1, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x5f}], 0x1, 0x0)
r5 = socket(0x10, 0x3, 0x0)
r6 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000180)={'bridge0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newqdisc={0x3c, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_FLOWS={0x8, 0x2, 0x83a2}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x81}, 0x0)
r8 = dup3(r2, r1, 0x0)
r9 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r9, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r9, 0x4018620d, &(0x7f0000000040))
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000300)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r8, 0xc0306201, &(0x7f0000000380)={0x4c, 0x0, &(0x7f0000000740)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000740)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40}], 0x0, 0x0, 0x0})
io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f0000000740)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1)
io_uring_register$IORING_UNREGISTER_PBUF_RING(r0, 0x17, &(0x7f0000000300)={0x0}, 0x1)

3.559567235s ago: executing program 2 (id=2222):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB], &(0x7f00000000c0)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
timer_create(0x0, 0x0, &(0x7f0000bbdffc)=<r1=>0x0)
timer_getoverrun(0x0)
set_mempolicy(0x1, 0x0, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000440)=ANY=[@ANYBLOB="bba0ae87aaaaaaaa0800450c00280000000000019078ac1480000000078000000000000007000000008bc3cfdde089d6a13a1b37e3821339bd297458af9a0a41e6574cf92b0dc797e112f21ac214c0858681c0f88004aa8b767016d31b064b59e844cb1aff084c0cae9ddfdb028b223e6f3019a1a4dead65265db99be32b832e8e"], 0x0)
sched_setaffinity(0x0, 0xffffffffffffff58, &(0x7f0000000200)=0x6)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x200000b, 0x8c4b815a5465c2b2, 0xffffffffffffffff, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
io_uring_setup(0x3eae, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x6, 0x3})
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket(0x10, 0x803, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
socket$nl_route(0x10, 0x3, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x2)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000180)='net/ip_vs_stats_percpu\x00')
read(r5, &(0x7f0000001a00)=""/177, 0xb1)
sendfile(r3, 0xffffffffffffffff, 0x0, 0x2)
setpriority(0x2, 0x0, 0x3)
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000000)=ANY=[@ANYBLOB="0e00f6ff06ecff00060000000300000022010000", @ANYRES32, @ANYBLOB="0400"/20, @ANYRES32=0x0, @ANYRESOCT=r1, @ANYBLOB="02000000010000000400"/28], 0x48)

2.322798459s ago: executing program 3 (id=2226):
creat(&(0x7f0000000340)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000004240)=ANY=[@ANYBLOB="1500000065ffff001000000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_INIT(r2, &(0x7f0000001740)={0x50, 0x0, 0x0, {0x7, 0x21}}, 0x50)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000004380), 0x0, &(0x7f0000004280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfd', @ANYRESHEX=r2, @ANYBLOB=',uname=}'])

2.229257759s ago: executing program 3 (id=2227):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x200, 0x0)
read$msr(r0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'digest_null\x00'}, 0x58)
timer_create(0x9, 0x0, &(0x7f0000000500))
timer_settime(0x0, 0x0, &(0x7f0000000140)={{0x77359400}, {0x0, 0x989680}}, 0x0)
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={0x0, &(0x7f00000004c0)=""/228, 0x0, 0xe4, 0x0, 0x0, 0x0, @void, @value}, 0x20)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000002c0)={0x1b, 0x0, 0x0, 0x4, 0x0, 0xffffffffffffffff, 0x9, '\x00', 0x0, r2, 0x0, 0x3, 0x5, 0x0, @void, @value, @void, @value}, 0x48)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0x22242, 0x0)
write$USERIO_CMD_SET_PORT_TYPE(r4, &(0x7f00000002c0)={0x1, 0x5}, 0x2)
ioctl$TIOCNOTTY(r3, 0x5422)
dup(r3)
r5 = io_uring_setup(0x17ba, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1})
openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff})
recvmmsg(r6, &(0x7f0000005c40)=[{{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000440)=""/233, 0xe9}], 0x1}}], 0x1, 0x0, 0x0)
close_range(r5, 0xffffffffffffffff, 0x0)
r7 = syz_open_dev$cec(&(0x7f0000000340), 0x0, 0x0)
ioctl$CEC_DQEVENT(r7, 0xc0506107, 0x0)
ioctl$CEC_DQEVENT(r7, 0xc0506107, &(0x7f0000000200)={0x0, 0x0, 0x0, @lost_msgs})
ioctl$IOC_PR_PREEMPT(r7, 0x40046109, &(0x7f0000000040)={0xd0})
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
write$char_usb(0xffffffffffffffff, &(0x7f0000000040)="93b5ccfa", 0x4)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000180)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})

2.210866266s ago: executing program 2 (id=2228):
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0xcf0, 0x2c285829, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
r2 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r2, &(0x7f0000000080)={0x2a, 0xffffffff, 0xfffffffe}, 0xc)
writev(r2, &(0x7f0000000880)=[{&(0x7f0000000340)="64e5fa06", 0x4}, {0x0, 0x97}], 0x2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
brk(0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001300)=@newtfilter={0x34, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0x9}, {}, {0x1c, 0xfff1}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x4}}]}, 0x34}}, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1.999209343s ago: executing program 3 (id=2233):
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
bind$phonet(r0, &(0x7f0000000100)={0x23, 0x30}, 0x10)

1.92548408s ago: executing program 3 (id=2236):
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = syz_clone(0x90000000, 0x0, 0x0, &(0x7f0000000040), &(0x7f0000000140), &(0x7f0000000280))
prctl$PR_SCHED_CORE(0x3e, 0x0, r0, 0x3, &(0x7f0000000300))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, 0x0, 0x14)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r2 = syz_open_dev$vim2m(&(0x7f0000000000), 0xa, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r2, 0xc0405602, &(0x7f0000000300)={0x16, 0x2, 0x1, "4dc009179f4e5989070600ca0a010dee6e678a92ddf91f0000000000002000cd", 0x3247504d})
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
process_vm_readv(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x5, 0x2, 0x4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000dc0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x0, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000001100000850000008600000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
setsockopt$sock_attach_bpf(r6, 0x1, 0x32, &(0x7f00000000c0)=r8, 0x4)
sendmsg$unix(r7, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f000047b000)={0xa, 0x0, 0x0, @private1, 0x10000}, 0x1c)
mremap(&(0x7f0000241000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000d5e9bd40eb030200c0ba050000010902115c01000000000904000001b504b100090581"], 0x0)
r9 = syz_open_dev$evdev(&(0x7f00000000c0), 0x40, 0x0)
ioctl$EVIOCGKEYCODE_V2(r9, 0x80284504, &(0x7f0000000040)=""/95)
r10 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x800)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000900)={0x18, 0x30, &(0x7f0000000500)=ANY=[@ANYRES32, @ANYBLOB, @ANYRESHEX=0x0, @ANYBLOB="0000000000000000b70500000800000085000000a5000000b7080000000000007b8af8ff00000000b7080000e0ffffff7b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffff", @ANYRESHEX, @ANYRES8=r10], 0x0, 0x91bb, 0x0, 0x0, 0x40f00, 0x50, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000840)={0x0, 0x7, 0x8, 0xfffffffe}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)

1.925073288s ago: executing program 2 (id=2237):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0xffffffffffffffff, 0x0, &(0x7f00000000c0)=0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00'}, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000000)=ANY=[@ANYBLOB="0180c2000000a538ae004500001c0000000000029078ac1e0001e000000112009078e000000100000000"], 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0xaa00, 0x0)
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
getpid()
getpid()
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000140)=0x1, 0x4)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="6c000000000101040000000000000000020000002400018014000180080001007f00000108000200e0010000000000240002671400018094b8fb146d3f4e08000100ac1414aa7f9c0200ac1414bb0c000280050000000000000000020740000000000600124000080000000085f6"], 0x6c}}, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, 0x0)
syz_usb_connect$cdc_ncm(0x4, 0x6e, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000020000002505a1a440000102030109025c0002010000000904000001a3f45747d649f9a30105240000000d240f8100000000000000000006241a0000000905810300000000000904010000020d00000904010102020d000009058202000000000009050302"], 0x0)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000100)=ANY=[@ANYRESOCT=0x0], 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
write$char_usb(r1, &(0x7f0000001300)="92", 0x2)
write$char_usb(r1, 0x0, 0x0)
r2 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r2, 0xd000943e, &(0x7f0000003380)={<r3=>0x0, 0x0, "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", "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"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f00000b2f40)={r3, 0x0, "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", "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"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000001340)={0x2020, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}, 0x2020)
process_vm_readv(r4, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x36}, {&(0x7f0000000440)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x5f}], 0x1, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000240), 0x5, 0x12000)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha384-generic\x00'}, 0x58)
accept4(r5, 0x0, 0x0, 0x0)

1.237171066s ago: executing program 0 (id=2241):
socket$nl_route(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x4adf, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x48241, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f0000000100))
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d0000006700000005"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='tlb_flush\x00', r3}, 0x10)
socket(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = getpid()
process_vm_readv(r4, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x36}, {0x0}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x5f}], 0x1, 0x0)
r5 = socket(0x10, 0x3, 0x0)
r6 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000180)={'bridge0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newqdisc={0x3c, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_FLOWS={0x8, 0x2, 0x83a2}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x81}, 0x0)
r8 = dup3(r2, r1, 0x0)
r9 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r9, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r9, 0x4018620d, &(0x7f0000000040))
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000300)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r8, 0xc0306201, &(0x7f0000000380)={0x4c, 0x0, &(0x7f0000000740)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000740)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40}], 0x0, 0x0, 0x0})
io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f0000000740)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1)
io_uring_register$IORING_UNREGISTER_PBUF_RING(r0, 0x17, &(0x7f0000000300)={0x0}, 0x1)

909.796222ms ago: executing program 1 (id=2242):
r0 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$FBIOPUT_CON2FBMAP(r0, 0x4610, &(0x7f0000000140)={0x39})
ioctl$FBIOPUT_CON2FBMAP(r0, 0x4610, &(0x7f00000000c0)={0x1})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_PMKSA(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)={0x44, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_PMKID={0x14, 0x55, "3dd7b6d2db5b3550449e4977514874c2"}, @NL80211_ATTR_PMK_LIFETIME={0x8, 0x11f, 0x8001}]}, 0x44}, 0x1, 0x0, 0x0, 0x1}, 0x0)
syz_open_dev$ttys(0xc, 0x2, 0x1)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
close(r6)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440))
socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x1c, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {}, [@NHA_BLACKHOLE={0x4}]}, 0x1c}}, 0x0)
sendmsg$nl_route(r7, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@ipv6_newrule={0x24, 0x18, 0x409, 0x0, 0x0, {0xa, 0x10, 0x10}, [@FIB_RULE_POLICY=@FRA_GOTO={0x8, 0x1e, 0x1}]}, 0x24}}, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r9 = socket$netlink(0x10, 0x3, 0x0)
socket$inet(0x2, 0x3, 0x0)
r10 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010d00000000000000850a000000000000000500000014000500200100000000000000000100000000001c00090008000000", @ANYRES32=r10], 0x4c}}, 0x0)
r11 = socket$netlink(0x10, 0x3, 0x7)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r9)
sendmsg$ETHTOOL_MSG_STRSET_GET(r11, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000340)={0x188, 0x0, 0x200, 0x70bd28, 0x25dfdbfd, {}, [@ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_STRINGSETS={0x16c, 0x2, 0x0, 0x1, [{0x4}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}]}, {0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0xf}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}]}, {0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}]}]}]}, 0x188}, 0x1, 0x0, 0x0, 0xc040}, 0x40000)
ioctl$SIOCSIFHWADDR(r6, 0x8b06, &(0x7f0000000080)={'wlan1\x00', @dev={'\xaa\xaa\xaa\xaa\xaa', 0x44}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r5}, 0x10)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
socket$packet(0x11, 0x2, 0x300)

907.247867ms ago: executing program 0 (id=2250):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000008c0)={'wlan0\x00'})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000680), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00'})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[@ANYRES8=r1, @ANYRES16=0x0, @ANYRESDEC=r0, @ANYRES32=r0], 0x30}, 0x1, 0x0, 0x0, 0x44090}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
r5 = openat$uinput(0xffffffffffffff9c, &(0x7f00000001c0), 0x802, 0x0)
ioctl$UI_BEGIN_FF_ERASE(r5, 0x4004556b, &(0x7f0000000000))
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000001100)={'wlan0\x00'})
r6 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r6, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
sendmmsg$inet(r6, &(0x7f0000004580)=[{{&(0x7f0000001580)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x28}}, 0x10, &(0x7f0000001800), 0x0, &(0x7f0000000900)=[@ip_retopts={{0x30, 0x0, 0x7, {[@ssrr={0x89, 0x7, 0xcc, [@initdev={0xac, 0x1e, 0x0, 0x0}]}, @rr={0x7, 0x17, 0xf3, [@multicast2, @local, @loopback, @multicast2, @private=0xa010101]}]}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x4}}, @ip_tos_int={{0x14, 0x0, 0x1, 0xbdd271a}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x1}}, @ip_retopts={{0xa4, 0x0, 0x7, {[@lsrr={0x83, 0xb, 0xca, [@broadcast, @rand_addr=0x64010102]}, @cipso={0x86, 0x58, 0x3, [{0x6, 0xa, "aeadbe849ffc3d44"}, {0x6, 0x10, "b3862eab23c995cf1b30d6abbe6c"}, {0x6, 0xd, "b44e59702d4d09a3d7c25c"}, {0x0, 0xd, "7840fa7f02531c8841a297"}, {0x6, 0x10, "7aed9d2a4f6669312a0fd8762eca"}, {0x7, 0x6, "d6473fbb"}, {0x1, 0x8, "c5bab02f7865"}]}, @cipso={0x86, 0x6, 0x2}, @lsrr={0x83, 0xf, 0x2c, [@broadcast, @local, @local]}, @lsrr={0x83, 0x1b, 0xbe, [@multicast2, @rand_addr=0x64010100, @broadcast, @multicast1, @dev={0xac, 0x14, 0x14, 0x36}, @rand_addr=0x64010102]}]}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x5}}, @ip_ttl={{0x14, 0x0, 0x2, 0x80000001}}], 0x170}}, {{0x0, 0x0, &(0x7f0000001d80)=[{&(0x7f0000001c80)="3a22695a031d9e465602d8333c1909e7bf36f91e2360a6f734456ba680fdcdff8badc040082a5a4c587e23c4e6be3453052a5a9a0bc61964cd25e429fe286218ebed46b86a28868e3de2722f0b1ac88cf1cb2391257415b9a850a9dd6dd2b0f76c7cccd1ce90e20f560e4bb497d70bdd89e0039f7cb26c47fd98ea847a7643f8c6f0f346863fd4cbf9b73a3f1a1378689b0b68f9770d2287ac72149e6a54730f67edd259eb1e6b1540920b96ce53c0aab8c278fe4471c3ffa05be1e134f9736bf4cc88", 0xc3}], 0x1, &(0x7f0000001dc0)=ANY=[@ANYBLOB="110000010000000000000009f2000000b3000000000000001405000000000000000000008100000000000000000000007c00000000f8ffffffffffffff000000830bb3c91e0101640101028621000000010110d67123ff182d09e7617fd596fdfb020b7f54278c1c2456bb6f831b2600000000ac1e0001ac1414bb64010102ffffffff64010101890798ffffffff00441c2e70000000000000000600000006000000060000005e000000030000000000140000000000000000000000020000000500000000000000"], 0xc8}}, {{0x0, 0x0, &(0x7f00000022c0)=[{&(0x7f0000001840)="648538c36528c7c09c9ccd35f00431990000000000a97550fc38de01228a07510e2acaf65ae300"/50, 0x32}, {&(0x7f0000001f00)="2577ecb7043b189e827087f392570139b8a9b166c0db1fd2fd3a3ca89f3460e1ec370dd16311e759f6c20b7a0d2a62d85e3e41ce316287bacd0735d0ecad71e64ad160841b42ed7aff74a65502bb1cfced9cb00096ca8811fb78f0f5d2d1068cf686695e0b9071013d2daada2a83cd4ea4bcbdaef61b54c3ace0f30dd9f70584fbb2f65d7484b80b4e98438bed500e78c52961005193ae94f706ec6fb396e9847ec2d0887c4f5926004f8897bbf5d6e6afeb22cb9598ace9be7c6e0269f30aae523245dec01cc9fadf9c640d56f4c13576577266328468aa4a573bd66ac1be9bd019bac333ae67f48a6a62c18e8be0ac7e05", 0xf2}, {&(0x7f0000002000)="a3bd4b6c7da0da51710141c75c6f2797a0c0fa5fd3664636", 0x18}, {&(0x7f0000002040)="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", 0xfe}, {&(0x7f00000046c0)="83bbe5f95d3af1b8ec2d8c08e0e6ce30cdfa72d69ab27fe59d7ab28b6045f4aad129de2f3f91a8552d4de77edf73ecf307d09ac21ec1e851df67ab9bde83ccdde6e9c1bf2d6214bc064513dfb653e250c1d42e88bc24d99d94fd9dccaafc1f7e6fcd5ad0912cc863b04b15f91aca3b78198dc053bde17cde436dab8a078e74fd574a3b158452015ca8f8439fce862cd6dca20cae74da1d3e00d9195bb5cf0119caae0d9e6465d5b78a4cf03c77b8b9633eaffd847a148a36358cfd38a86b31de40dadbf719c83063e80515b20cf23e592ab1935f88059ad31fca4653cb2eb83409607b2d7671a0c972db3b626165e19deb512b0e554e683c", 0xf8}, {&(0x7f00000021c0)="5a4e2729326650f941487f91c338df7335129100d1f2c20e789dcc3050846d0435a6ce2f0e8c460d67a5d50ca591d7567d9ff97ab08442a9be1273b79cec1eb65e0e0f3fb36032b7386ba18b9ffee3616de4de30909f034b8ad394a65a5b207df22412447814fbae3814f042ee8c1c32f5e03a27744e77568b475547de0ff25991403fb07037a8bd7e7f6dc7171feb8496ab20c84e95111218b2941eddf535377c06eedf6cad627c01c2571a8d1df98480ca155c25a3342cf63e45fcd72073e4734afc150e65955d8d96331b13b7efdb735e8bf2f279a6e93d7f692d65f2bab91d9d204b284c0d80627f28c2e8224d7b3017b5c1d4987c1d", 0xf8}], 0x6, &(0x7f0000002340)=[@ip_ttl={{0x14, 0x0, 0x2, 0xfffffffc}}, @ip_ttl={{0x14, 0x0, 0x2, 0xfffffff8}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @remote, @broadcast}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0xff}}], 0x68}}, {{&(0x7f00000023c0)={0x2, 0x4e20, @remote}, 0x10, &(0x7f0000002640)=[{&(0x7f0000002400)="ab9e6162d1fa12f624", 0x9}, {&(0x7f0000002440)="7fa34c38d9ea94bfd2e216b0068119e374b7e04b79b503883ce094f5110cfc9b0968bd4a9093ddd26bcff00509931a0f788f256db5185ded1ce34372e35565d7623e066b39b3094544dbc4424e9e2f82f40e69864201b9476c5170c29cfadcd96d36841ddfa15dcdf1c1d04e090214227f031da30490e3112cfd3180f054c5c5cc0c7da661be61f519a0aad1c2cb46e21402d32a9bcdee4617697f7d1bca9fa6f862354f94bba4545fcb6fdc57c4158bc0ff396ff9ac949de0f060327bb7f9aad788cee43207de9c71e0ae15ae555b16e5e68ecf0b53b8c853106f2275402881f5dfe804a5cc25189d03c4fd0adf844f7368", 0xf2}, {&(0x7f0000002540)="bd7ff2067a702970fa4c7d95ee5bb1cb6accc4768e0157090448b8d5d065216762a6b9997077134ed32b1602f227aea54a463050a0891aee6b5a24c43ccf0e44d1db5c642e08d0783fa6", 0x4a}, {&(0x7f00000025c0)="82e87b2db62a1e6c68b17619fc340770cb4d79a158df51e96c9c98cb3d28fca592ac2f01142dfe083d8e78fa09ec182197b6d4170dfe5991c0b4b077e7f35310a220ee8e6477b88659", 0x49}], 0x4, &(0x7f00000003c0)=[@ip_retopts={{0x114, 0x0, 0x7, {[@noop, @cipso={0x86, 0x5b, 0x0, [{0x5, 0x8, "fbe1028d9311"}, {0x6, 0xb, "64d41b824d4161baf0"}, {0x6, 0x10, "dd2bbbbcdde27b9f1b9fde7aa42b"}, {0x1, 0x5, "9ab74d"}, {0x0, 0x4, "cf54"}, {0x7, 0x12, "842c1a3cdc6fef90258bd029e7b0137e"}, {0x6, 0x9, "fbb4664d82a27d"}, {0x7, 0xe, "cf23ca3d96cb23509418a26d"}]}, @end, @ra={0x94, 0x4}, @end, @cipso={0x86, 0x51, 0x0, [{0x6, 0x9, "3b111b77eb5a60"}, {0x7, 0x2}, {0x7, 0x12, "fde8090700000000000db6fe7d29b946"}, {0x1, 0xb, "89c3fc0192fec52a31"}, {0x0, 0x4, "9704"}, {0x0, 0x8, "b0bab4d87e3e"}, {0x7, 0x3, '='}, {0x6, 0x7, "976cc8bd3b"}, {0x6, 0x6, "b04ed33a"}, {0x2, 0x7, "7d35d18b41"}]}, @cipso={0x86, 0x4d, 0x2, [{0x2, 0xb, "c3eabfcaf3cf1eceec"}, {0x0, 0x5, "f3673e"}, {0x2, 0x10, "2b9352efa0f9150b43935c60bd71"}, {0x1, 0xd, "79b170225fcb4a18b6381c"}, {0x5, 0x10, "65d7a3f41ac6e5e3af0b00d36b10"}, {0x6, 0xa, "e0ccfb8880f0689b"}]}, @end]}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @broadcast, @rand_addr=0x64010100}}}], 0x138}}, {{&(0x7f0000002780)={0x2, 0x4e24, @empty}, 0x10, &(0x7f0000004380)=[{&(0x7f0000000280)="a5370d612ac2689a721eb1afb1e0ddf10c62338a500d93fd4e9b74951355d66b284ab1ea79ce4996c947ca875f82787d57384c7c815bfbf83da762badb1511b05a2c5fde172dfc4a7b65333aa090740f944c3a6f8194fdb8156cb3867815db857a7f6ae12dd2ebc5f45d740ff03971b298db66238b27ed3ed6eb2ebe8af408eb97efc229e3d661d0c073e111347446362590ea47a96744a84cada68f8287cc53da390586c2be162f48588624a38c1259db5e20a42d528f7aba2f62089dcb4e9fe6bb5182658d0127138d1c63fa524169f09e3834b25cfcb035a80dae581ba86220f66eb91bd65463da7278a280ed85", 0xef}, {&(0x7f0000004280)="ff107bd6da5459261d", 0x9}, {&(0x7f00000042c0)="e8e2dd396ff497a16d7010c95bd436745fa42f5001e408797435f74588e1fa63a96c040cca4014e25e90ba44dcf88cfececa441966381ea93788ed68f67e5e5064628af19ea67d891e9853a2051625886c918c93e14c3c741107dec6fa9a3a7ce84649c8b1a3078b9657a963dbf197aeecbaf6995a4f24e4affa250e4ea7d61a0f09ed7697a90561f984ef769aedc3ad6f56a496c14ce15e29fb843e3001", 0x9e}], 0x3, &(0x7f0000004480)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0x4d}}, @ip_retopts={{0x50, 0x0, 0x7, {[@end, @lsrr={0x83, 0x3, 0xb2}, @lsrr={0x83, 0x17, 0x38, [@rand_addr=0x64010100, @multicast1, @broadcast, @local, @local]}, @generic={0x88, 0xe, "10feecffe9255e0ea4c658ec"}, @lsrr={0x83, 0x3, 0xf0}, @ssrr={0x89, 0x13, 0x9a, [@rand_addr=0x64010101, @multicast2, @rand_addr=0x64010100, @rand_addr=0x64010100]}]}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @empty, @dev={0xac, 0x14, 0x14, 0x2f}}}}], 0x88}}], 0x5, 0x0)
getsockopt$EBT_SO_GET_INIT_INFO(r6, 0x0, 0x30, 0x0, &(0x7f0000000180))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r7 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r7, 0xaf01, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(r8, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001140)=ANY=[@ANYBLOB="28010000", @ANYRES16=r9, @ANYBLOB="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"], 0x128}}, 0x855)
r10 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r7, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(r7, 0x4004af07, &(0x7f0000000240)=r10)
ioctl$VHOST_SET_VRING_KICK(r7, 0x4008af20, &(0x7f0000000040)={0x1, r10})
userfaultfd(0x80001)

741.688278ms ago: executing program 1 (id=2243):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x200, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)
timer_create(0x9, 0x0, &(0x7f0000000500))
timer_settime(0x0, 0x0, &(0x7f0000000140)={{0x77359400}, {0x0, 0x989680}}, 0x0)
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={0x0, &(0x7f00000004c0)=""/228, 0x0, 0xe4, 0x0, 0x0, 0x0, @void, @value}, 0x20)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000002c0)={0x1b, 0x0, 0x0, 0x4, 0x0, 0xffffffffffffffff, 0x9, '\x00', 0x0, r2, 0x0, 0x3, 0x5, 0x0, @void, @value, @void, @value}, 0x48)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0x22242, 0x0)
write$USERIO_CMD_SET_PORT_TYPE(r4, &(0x7f00000002c0)={0x1, 0x5}, 0x2)
ioctl$TIOCNOTTY(r3, 0x5422)
dup(r3)
r5 = io_uring_setup(0x17ba, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1})
openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff})
recvmmsg(r6, &(0x7f0000005c40)=[{{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000440)=""/233, 0xe9}], 0x1}}], 0x1, 0x0, 0x0)
close_range(r5, 0xffffffffffffffff, 0x0)
r7 = syz_open_dev$cec(&(0x7f0000000340), 0x0, 0x0)
ioctl$CEC_DQEVENT(r7, 0xc0506107, 0x0)
ioctl$CEC_DQEVENT(r7, 0xc0506107, &(0x7f0000000200)={0x0, 0x0, 0x0, @lost_msgs})
ioctl$IOC_PR_PREEMPT(r7, 0x40046109, &(0x7f0000000040)={0xd0})
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
write$char_usb(0xffffffffffffffff, &(0x7f0000000040)="93b5ccfa", 0x4)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000180)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})

710.566665ms ago: executing program 0 (id=2244):
r0 = socket$kcm(0x10, 0x5, 0x0)
sendmsg$kcm(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000000)={r0})
socket$kcm(0x29, 0x5, 0x0)
setsockopt$XDP_UMEM_FILL_RING(0xffffffffffffffff, 0x11b, 0x5, 0x0, 0x0)
socket$kcm(0x10, 0x3, 0x10)
r1 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000040), 0x42002, 0x0)
sendmsg$RDMA_NLDEV_CMD_GET(r1, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0xd2ec9b3d94f4ab7c}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x40, 0x1401, 0x400, 0x70bd26, 0x25dfdbfd, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}]}, 0x40}, 0x1, 0x0, 0x0, 0x8014}, 0x4000841)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000340)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000300)={<r3=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_INIT_QP_ATTR(r2, &(0x7f0000000380)={0xb, 0x10, 0xfa00, {0x0, r3}}, 0x18)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x400, 0x0)
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$inet6(0xa, 0x6, 0x0)
ioperm(0x0, 0x5, 0x6)
unshare(0x0)
r4 = memfd_create(&(0x7f0000000040)='\\\x00', 0x0)
fsetxattr$trusted_overlay_redirect(r4, &(0x7f0000000000), 0x0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000200)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_INQUIRY_CANCEL={{}, 0x9}}}, 0x7)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(0xffffffffffffffff, 0x40605346, 0x0)

634.023756ms ago: executing program 0 (id=2245):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB='\v\x00\x00\x00\x00', @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="1b0008000000000000000000000004000004d75d6a1f9c", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000780)=ANY=[@ANYRESHEX=r1, @ANYRES32=0x0, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002e00)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000740), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x7, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r3, 0x18000000000002a0, 0xe28, 0xfffffffffffffff5, &(0x7f0000000980)="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", 0x0, 0x2f, 0xe8034000, 0xf000, 0xfffffffffffffe2a, &(0x7f0000000000), &(0x7f00000000c0)="c6769e45b7c61302926682c7f9e9bb5ba2b3cdf023e8da0392a4cd62e2370f25ae5ba0dab896bcf5b774cd28bebbde39f796ae27d04582bb7c03e9fe830ea22c9fd03f6d2779515fdad3f5d0de07b7b70996102fdb67b1e77a34a5b7136a212fa2c0ea502588309dc3e42c55a6f93e6ba5e1b492f9db48f0fdd2f9fb937b3e8a63dcf9dd855837433998ba579da27559", 0x5dc}, 0x28)
r4 = semget$private(0x0, 0x207, 0x200)
semtimedop(r4, &(0x7f00000002c0)=[{}, {0x4, 0xff78, 0x1800}], 0x2, 0x0)
semop(r4, &(0x7f0000000100)=[{0x3, 0x4, 0x800}, {0x3, 0xf, 0x1800}, {0x4, 0x0, 0x1000}, {0x0, 0x9, 0x800}, {0x0, 0x5, 0x800}], 0x5)
semctl$GETALL(r4, 0x0, 0xd, &(0x7f0000000140)=""/155)
semtimedop(r4, &(0x7f0000000000)=[{0x1, 0x800, 0x1800}, {0x2, 0x1, 0x1000}, {0x1, 0x5, 0x2000}, {0x4, 0x2e73, 0x1800}], 0x4, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000300), 0x500, 0x0)
write$tun(r5, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x33c)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r6=>0xffffffffffffffff})
ioctl$TUNGETDEVNETNS(r6, 0x8982, 0x20000000)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=@framed={{}, [@printk={@lli, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x70}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kfree_skb\x00', r7}, 0x10)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000006cf926dd2bc2520000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r8, 0x0, 0x8, 0x0, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x17, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000000bbb6f015fd77c6d00061100189f90000009500000000000000"], &(0x7f0000000140)='syzkaller\x00', 0x5, 0xec, &(0x7f0000000000)=""/236, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
sendmsg$inet(r10, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000080)="30a0", 0x2}], 0x1}, 0x4040001)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
recvmsg$unix(r9, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000ac0)=[{&(0x7f00000000c0)=""/109, 0x6d}], 0x1}, 0x0)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r11, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a300000000014000780080008400000000008001240200000000500050002000000050004000000000010000300686173683a69702c6d6163"], 0x5c}, 0x1, 0x0, 0x0, 0x8000010}, 0x8000)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000000c0), 0x0, 0x5, r0}, 0x38)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000001040)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sched_switch\x00', r12}, 0x10)

558.631066ms ago: executing program 0 (id=2246):
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0xcf0, 0x2c285829, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
r2 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r2, &(0x7f0000000080)={0x2a, 0xffffffff, 0xfffffffe}, 0xc)
writev(r2, &(0x7f0000000880)=[{&(0x7f0000000340)="64e5fa06", 0x4}, {0x0, 0x97}], 0x2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
brk(0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001300)=@newtfilter={0x34, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0x9}, {}, {0x1c, 0xfff1}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x4}}]}, 0x34}}, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0)

259.355287ms ago: executing program 0 (id=2247):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x2010000, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
r0 = openat$procfs(0xffffff9c, &(0x7f0000000000)='/proc/asound/seq/timer\x00', 0x0, 0x0)
copy_file_range(r0, &(0x7f00000008c0)=0x1000, 0xffffffffffffffff, 0x0, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
r1 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000380)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3, 0x2, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000400)={0x1b, 0x0, 0x0, 0x8000, 0x0, 0x1, 0x8a5, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x1, 0x4, 0x0, @void, @value, @void, @value}, 0x48)
r3 = open$dir(&(0x7f0000000140)='./file0\x00', 0x1, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_wait_time\x00', 0x275a, 0x0)
ftruncate(r4, 0x2000009)
sendfile(r3, r4, 0x0, 0x7ffff000)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0xe, 0x4, 0x4, 0x3, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={r0, 0x20, &(0x7f0000000240)={&(0x7f00000006c0)=""/136, 0x88, <r7=>0x0, &(0x7f00000000c0)=""/57, 0x39}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0x1c, &(0x7f00000009c0)=ANY=[@ANYBLOB="1808000000000000000000000500000018110000", @ANYRES32=r5, @ANYRESDEC=r6, @ANYRES32=r0, @ANYBLOB="0000000000000000b7050000080000004608f0ff760000005d9800000000000056080000000000008500000007000000b70000000000000095c84cb3b5b9c9bdd0da60eb47c3f6e6f0f9f82753a4fb76becc0aac793fc4b9d5f259780259001d6d5a4075fd8209c4d794dcc6cdd077004aa74cee03b72848df3a9073982d1cea61d10e966acc7e8b104aa28814f8b128b2168b50760e6606fc88bba161f0d46eb0ea541e46ffea0f448d3a16c27b252d76fabcb46a48e029d267f29711be61e067438a73a233a6c87e3dc3486af421419842e48fbf38c18efaeef1"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, r7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000580)={{0xffffffffffffffff, <r8=>0xffffffffffffffff}, &(0x7f0000000500), &(0x7f0000000540)}, 0x1c)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000680)={{0x1, <r9=>0xffffffffffffffff}, &(0x7f0000000600), &(0x7f0000000640)}, 0x1c)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000800)=@bpf_tracing={0x1a, 0xb, &(0x7f0000000140)=@raw=[@btf_id={0x18, 0x5, 0x3, 0x0, 0x1}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}], &(0x7f0000000080)='syzkaller\x00', 0x3caa, 0xe, &(0x7f0000000200)=""/14, 0x41000, 0xa, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, &(0x7f0000000280)={0x4, 0x5}, 0x8, 0x10, &(0x7f0000000300)={0x3, 0x0, 0x80000001, 0x10001}, 0x10, 0x90af, 0xffffffffffffffff, 0x0, &(0x7f00000007c0)=[r1, r2, r4, r8, 0xffffffffffffffff, 0x1, r9, 0xffffffffffffffff, 0xffffffffffffffff], 0x0, 0x10, 0x5, @void, @value}, 0x90)
open(&(0x7f00000002c0)='./file0\x00', 0x1c1042, 0x0)

0s ago: executing program 3 (id=2248):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4)
r1 = getpid()
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000014c8002085000000040000", @ANYRES32, @ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xc, 0x4, &(0x7f0000000040)=ANY=[@ANYRESDEC], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f0000000440)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0xffffffffffffff5f, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000380)='scsi_dispatch_cmd_start\x00', r2}, 0x10)
r3 = socket(0x22, 0x3, 0x0)
getsockopt$inet6_mreq(r3, 0x29, 0x15, &(0x7f00000000c0)={@loopback, <r4=>0x0}, &(0x7f0000000240)=0x14)
ioctl$F2FS_IOC_MOVE_RANGE(r3, 0xc020f509, &(0x7f0000000280)={<r5=>r3, 0x8001, 0x400, 0x2})
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@bloom_filter={0x1e, 0x2, 0x2, 0x3, 0x80, 0xffffffffffffffff, 0x7fff, '\x00', r4, r5, 0x4, 0x4, 0x0, 0x4, @void, @value, @void, @value}, 0x48)
r6 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003b000b05d25a80258c6394f90424fc60100005000a000200053582c137153e3704000880fc0b02000300", 0x33fe0}], 0x1}, 0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x5, 0x4, &(0x7f00000015c0)=ANY=[], &(0x7f0000000140)='GPL\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x21, '\x00', r4, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r5, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000080)={'syzkaller1\x00', 0xc201})
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)={0x9c, 0x0, 0x1, 0x401, 0x0, 0x1a14, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x1}, @CTA_SYNPROXY={0x1c, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_ITS={0x8}, @CTA_SYNPROXY_ISN={0x8}, @CTA_SYNPROXY_TSOFF={0x8}]}, @CTA_SEQ_ADJ_REPLY={0x1c, 0x10, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x8}, @CTA_SEQADJ_OFFSET_BEFORE={0x8}, @CTA_SEQADJ_OFFSET_AFTER={0x8}]}]}, 0x9c}}, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x38, 0x3, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x38}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$BTRFS_IOC_DEV_REPLACE(r9, 0xca289435, &(0x7f0000000680)={0x1, 0x4000, @status={[0x3, 0xb5, 0xbdd4, 0x3, 0x7, 0x4]}, [0xffffffffffffffff, 0x4, 0xd, 0x7e82, 0x4, 0x6, 0xe70d, 0x6, 0x2, 0x4, 0x7f, 0x10000000000, 0x0, 0x2, 0x8000000000000001, 0x1, 0x1, 0x5, 0x81, 0x400, 0x1000, 0xff, 0x1, 0xfffffffffffffffe, 0x8, 0x8, 0x6, 0x0, 0x1, 0x7, 0x3, 0x8000000000000000, 0x11c, 0x2, 0x6d39, 0x7f, 0x7, 0x9, 0xffffffffffffffff, 0x80, 0x1708, 0x5, 0xc504, 0x9ef, 0xd166, 0x96d, 0x6, 0xaeb, 0x9, 0x241, 0x1, 0x9, 0x12, 0x5, 0x8000, 0x5, 0x80000001, 0xffffffffffffff43, 0x9, 0x8, 0x5dfa, 0x8, 0x5, 0x6e]})
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='blkio.bfq.sectors_recursive\x00', 0x275a, 0x0)
write$cgroup_int(r10, &(0x7f0000000100), 0x1001)
r11 = syz_open_dev$sndpcmc(&(0x7f0000000480), 0x1, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE_OLD(r11, 0xc1004110, &(0x7f0000000000)={0x0, [0x6, 0xffff133a, 0x1], [{0x0, 0x0, 0x0, 0x1}, {0x35, 0x85}, {0x0, 0x1}, {}, {}, {0x0, 0x2}, {0x0, 0xfeffffff}], 0xc})
r12 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe55, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={&(0x7f0000000180)='tlb_flush\x00', r12}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)

kernel console output (not intermixed with test programs):

 ? __pfx___might_resched+0x10/0x10
[  341.952061][T12088]  ? input_inject_event+0x193/0x370
[  341.953451][T12088]  evdev_write+0x36e/0x750
[  341.954764][T12088]  ? __pfx_evdev_write+0x10/0x10
[  341.956450][T12088]  ? bpf_lsm_file_permission+0x9/0x10
[  341.957949][T12088]  ? security_file_permission+0x71/0x210
[  341.959629][T12088]  ? __pfx_evdev_write+0x10/0x10
[  341.961035][T12088]  vfs_write+0x28e/0x1140
[  341.962198][T12088]  ? __pfx_vfs_write+0x10/0x10
[  341.963466][T12088]  ? __fget_files+0x244/0x3f0
[  341.964745][T12088]  ? __fget_light+0x173/0x210
[  341.965994][T12088]  ksys_write+0x1f8/0x260
[  341.967133][T12088]  ? __pfx_ksys_write+0x10/0x10
[  341.968406][T12088]  do_syscall_64+0xcd/0x250
[  341.969601][T12088]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  341.971138][T12088] RIP: 0033:0x7f501f97def9
[  341.972305][T12088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  341.977488][T12088] RSP: 002b:00007f502073e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  341.980268][T12088] RAX: ffffffffffffffda RBX: 00007f501fb35f80 RCX: 00007f501f97def9
[  341.983021][T12088] RDX: 00000000000012d8 RSI: 0000000020000040 RDI: 0000000000000003
[  341.985282][T12088] RBP: 00007f502073e090 R08: 0000000000000000 R09: 0000000000000000
[  341.987353][T12088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  341.989453][T12088] R13: 0000000000000000 R14: 00007f501fb35f80 R15: 00007fff9b9305e8
[  341.991602][T12088]  </TASK>
[  342.071229][T12094] vlan2: entered promiscuous mode
[  342.072706][T12094] veth0_to_hsr: entered promiscuous mode
[  342.082669][   T39] audit: type=1800 audit(1726579488.187:3268): pid=12094 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.3.1781" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[  342.085896][T12094] program syz.3.1781 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  342.093156][   T39] audit: type=1400 audit(1726579488.197:3269): avc:  denied  { mounton } for  pid=12092 comm="syz.3.1781" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  342.307920][   T35] usb 6-1: new full-speed USB device number 44 using dummy_hcd
[  342.510641][   T35] usb 6-1: config 1 interface 0 has no altsetting 0
[  342.515812][   T35] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  342.518738][   T39] audit: type=1400 audit(1726579488.627:3270): avc:  denied  { map } for  pid=12115 comm="syz.0.1785" path="/dev/hpet" dev="devtmpfs" ino=632 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  342.535220][   T35] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  342.539845][   T35] usb 6-1: Product: syz
[  342.541664][   T35] usb 6-1: Manufacturer: syz
[  342.544659][   T35] usb 6-1: SerialNumber: syz
[  342.611069][T12119] FAULT_INJECTION: forcing a failure.
[  342.611069][T12119] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  342.614906][T12119] CPU: 0 UID: 0 PID: 12119 Comm: syz.0.1785 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0
[  342.617550][T12119] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  342.620322][T12119] Call Trace:
[  342.621279][T12119]  <TASK>
[  342.622065][T12119]  dump_stack_lvl+0x16c/0x1f0
[  342.623280][T12119]  should_fail_ex+0x497/0x5b0
[  342.624510][T12119]  _copy_to_user+0x30/0xc0
[  342.625721][T12119]  simple_read_from_buffer+0xd0/0x160
[  342.627127][T12119]  proc_fail_nth_read+0x198/0x270
[  342.628443][T12119]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  342.629841][T12119]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  342.631205][T12119]  vfs_read+0x1ce/0xbd0
[  342.632307][T12119]  ? __fdget_pos+0xe8/0x170
[  342.633519][T12119]  ? __pfx_vfs_read+0x10/0x10
[  342.634798][T12119]  ? __pfx___mutex_lock+0x10/0x10
[  342.636130][T12119]  ? __fget_files+0x244/0x3f0
[  342.637379][T12119]  ksys_read+0x12f/0x260
[  342.638479][T12119]  ? __pfx_ksys_read+0x10/0x10
[  342.639736][T12119]  do_syscall_64+0xcd/0x250
[  342.640938][T12119]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.642430][T12119] RIP: 0033:0x7fdb3517c93c
[  342.643552][T12119] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  342.648340][T12119] RSP: 002b:00007fdb3602a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  342.650458][T12119] RAX: ffffffffffffffda RBX: 00007fdb35336058 RCX: 00007fdb3517c93c
[  342.652774][T12119] RDX: 000000000000000f RSI: 00007fdb3602a0a0 RDI: 0000000000000008
[  342.654784][T12119] RBP: 00007fdb3602a090 R08: 0000000000000000 R09: 0000000000000000
[  342.656867][T12119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  342.659081][T12119] R13: 0000000000000000 R14: 00007fdb35336058 R15: 00007fff19d7ce08
[  342.661139][T12119]  </TASK>
[  343.218971][    T8] usb 8-1: new high-speed USB device number 40 using dummy_hcd
[  343.404191][    T8] usb 8-1: config index 0 descriptor too short (expected 23569, got 27)
[  343.406728][    T8] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  343.412696][    T8] usb 8-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  343.415977][    T8] usb 8-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  343.420863][    T8] usb 8-1: Manufacturer: syz
[  343.432438][    T8] usb 8-1: config 0 descriptor??
[  343.541166][    T8] rc_core: IR keymap rc-hauppauge not found
[  343.543583][    T8] Registered IR keymap rc-empty
[  343.549950][    T8] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0
[  343.553815][    T8] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0/input70
[  343.567041][T12133] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1788'.
[  343.773263][   T35] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 44 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  343.794928][   T35] usb 6-1: USB disconnect, device number 44
[  343.804793][   T35] usblp0: removed
[  344.011817][   T39] audit: type=1400 audit(1726579490.127:3271): avc:  denied  { listen } for  pid=12137 comm="syz.0.1790" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  344.164024][   T39] audit: type=1400 audit(1726579490.277:3272): avc:  denied  { unmount } for  pid=11368 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  344.568575][ T1290] usb 8-1: USB disconnect, device number 40
[  345.207109][T12156] FAULT_INJECTION: forcing a failure.
[  345.207109][T12156] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  345.213460][T12156] CPU: 2 UID: 0 PID: 12156 Comm: syz.1.1795 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0
[  345.216321][T12156] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  345.219186][T12156] Call Trace:
[  345.220078][T12156]  <TASK>
[  345.220888][T12156]  dump_stack_lvl+0x16c/0x1f0
[  345.222232][T12156]  should_fail_ex+0x497/0x5b0
[  345.224016][T12156]  _copy_from_user+0x30/0xf0
[  345.225751][T12156]  copy_msghdr_from_user+0x99/0x160
[  345.227669][T12156]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  345.229829][T12156]  ? __pfx___lock_acquire+0x10/0x10
[  345.231379][T12156]  ___sys_sendmsg+0xff/0x1e0
[  345.232900][T12156]  ? __pfx____sys_sendmsg+0x10/0x10
[  345.234799][T12156]  ? find_held_lock+0x2d/0x110
[  345.236260][T12156]  ? ksys_write+0x21c/0x260
[  345.237500][T12156]  ? __fget_light+0x173/0x210
[  345.238868][T12156]  __sys_sendmsg+0x117/0x1f0
[  345.240523][T12156]  ? __pfx___sys_sendmsg+0x10/0x10
[  345.242752][T12156]  do_syscall_64+0xcd/0x250
[  345.244418][T12156]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  345.246489][T12156] RIP: 0033:0x7fba4cb7def9
[  345.248136][T12156] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  345.255120][T12156] RSP: 002b:00007fba4da66038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  345.258475][T12156] RAX: ffffffffffffffda RBX: 00007fba4cd35f80 RCX: 00007fba4cb7def9
[  345.261364][T12156] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[  345.264202][T12156] RBP: 00007fba4da66090 R08: 0000000000000000 R09: 0000000000000000
[  345.266607][T12156] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  345.268683][T12156] R13: 0000000000000000 R14: 00007fba4cd35f80 R15: 00007ffd924a9828
[  345.270931][T12156]  </TASK>
[  345.916468][T12169] hub 6-0:1.0: USB hub found
[  345.925052][T12169] hub 6-0:1.0: 1 port detected
[  346.834570][T12183] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1802'.
[  347.408764][ T5400] usb 8-1: new high-speed USB device number 41 using dummy_hcd
[  347.608386][ T5400] usb 8-1: Using ep0 maxpacket: 32
[  347.621960][ T5400] usb 8-1: config index 0 descriptor too short (expected 29220, got 36)
[  347.626120][ T5400] usb 8-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  347.630731][ T5400] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 81
[  347.634982][ T5400] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  347.639321][ T5400] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  347.642864][ T5400] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  347.647784][ T5400] usb 8-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  347.651480][ T5400] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  347.666093][ T5400] usb 8-1: config 0 descriptor??
[  347.910857][ T5400] usblp 8-1:0.0: usblp0: USB Bidirectional printer dev 41 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  347.915466][ T5400] usb 8-1: USB disconnect, device number 41
[  347.919796][ T5400] usblp0: removed
[  348.390650][T12213] FAULT_INJECTION: forcing a failure.
[  348.390650][T12213] name failslab, interval 1, probability 0, space 0, times 0
[  348.396729][T12213] CPU: 3 UID: 0 PID: 12213 Comm: syz.0.1811 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0
[  348.400603][T12213] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  348.404441][T12213] Call Trace:
[  348.405411][T12213]  <TASK>
[  348.406185][T12213]  dump_stack_lvl+0x16c/0x1f0
[  348.407409][T12213]  should_fail_ex+0x497/0x5b0
[  348.408635][T12213]  ? fs_reclaim_acquire+0xae/0x160
[  348.409986][T12213]  should_failslab+0xc2/0x120
[  348.411221][T12213]  __kmalloc_noprof+0xcb/0x400
[  348.412477][T12213]  ? __pfx_lock_acquire+0x10/0x10
[  348.413815][T12213]  tomoyo_realpath_from_path+0xb9/0x720
[  348.415322][T12213]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  348.416826][T12213]  ? tomoyo_profile+0x47/0x60
[  348.418053][T12213]  tomoyo_path_number_perm+0x245/0x590
[  348.419581][T12213]  ? tomoyo_path_number_perm+0x232/0x590
[  348.421078][T12213]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  348.422673][T12213]  ? __fget_files+0x244/0x3f0
[  348.423912][T12213]  security_file_ioctl+0x9b/0x240
[  348.425364][T12213]  __x64_sys_ioctl+0xbb/0x210
[  348.426606][T12213]  do_syscall_64+0xcd/0x250
[  348.427801][T12213]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.429351][T12213] RIP: 0033:0x7fdb3517def9
[  348.430520][T12213] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  348.435571][T12213] RSP: 002b:00007fdb3604b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  348.437724][T12213] RAX: ffffffffffffffda RBX: 00007fdb35335f80 RCX: 00007fdb3517def9
[  348.439765][T12213] RDX: 0000000020000500 RSI: 0000000000008b15 RDI: 0000000000000006
[  348.441827][T12213] RBP: 00007fdb3604b090 R08: 0000000000000000 R09: 0000000000000000
[  348.443871][T12213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  348.446038][T12213] R13: 0000000000000000 R14: 00007fdb35335f80 R15: 00007fff19d7ce08
[  348.448090][T12213]  </TASK>
[  348.449428][T12213] ERROR: Out of memory at tomoyo_realpath_from_path.
[  348.498227][ T5400] usb 8-1: new high-speed USB device number 42 using dummy_hcd
[  348.566567][T12222] FAULT_INJECTION: forcing a failure.
[  348.566567][T12222] name failslab, interval 1, probability 0, space 0, times 0
[  348.572601][T12222] CPU: 3 UID: 0 PID: 12222 Comm: syz.2.1815 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0
[  348.575864][T12222] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  348.578755][T12222] Call Trace:
[  348.579646][T12222]  <TASK>
[  348.580439][T12222]  dump_stack_lvl+0x16c/0x1f0
[  348.581966][T12222]  should_fail_ex+0x497/0x5b0
[  348.583677][T12222]  ? fs_reclaim_acquire+0xae/0x160
[  348.585328][T12222]  should_failslab+0xc2/0x120
[  348.586555][T12222]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  348.587961][T12222]  ? security_file_alloc+0x34/0x2b0
[  348.589334][T12222]  ? rcu_is_watching+0x12/0xc0
[  348.590614][T12222]  security_file_alloc+0x34/0x2b0
[  348.592001][T12222]  init_file+0x93/0x230
[  348.593133][T12222]  alloc_empty_file+0x91/0x1e0
[  348.594404][T12222]  alloc_file_pseudo+0x147/0x210
[  348.595757][T12222]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  348.597183][T12222]  ? do_raw_spin_unlock+0x172/0x230
[  348.598530][T12222]  ? _raw_spin_unlock+0x28/0x50
[  348.599807][T12222]  ? alloc_fd+0x2d7/0x6c0
[  348.600969][T12222]  sock_alloc_file+0x50/0x1d0
[  348.602337][T12222]  __sys_socket+0x1c2/0x260
[  348.603554][T12222]  ? __pfx___sys_socket+0x10/0x10
[  348.605057][T12222]  ? ksys_write+0x1ab/0x260
[  348.606283][T12222]  ? __pfx_ksys_write+0x10/0x10
[  348.607558][T12222]  __x64_sys_socket+0x72/0xb0
[  348.608800][T12222]  ? lockdep_hardirqs_on+0x7c/0x110
[  348.610156][T12222]  do_syscall_64+0xcd/0x250
[  348.611339][T12222]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.612887][T12222] RIP: 0033:0x7f5b5f17def9
[  348.614045][T12222] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  348.619162][T12222] RSP: 002b:00007f5b5fea5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  348.621356][T12222] RAX: ffffffffffffffda RBX: 00007f5b5f335f80 RCX: 00007f5b5f17def9
[  348.623381][T12222] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000010
[  348.625925][T12222] RBP: 00007f5b5fea5090 R08: 0000000000000000 R09: 0000000000000000
[  348.628411][T12222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  348.630461][T12222] R13: 0000000000000000 R14: 00007f5b5f335f80 R15: 00007ffebdc8bcc8
[  348.632508][T12222]  </TASK>
[  348.707983][ T5400] usb 8-1: Using ep0 maxpacket: 32
[  348.717225][ T5400] usb 8-1: config index 0 descriptor too short (expected 29220, got 36)
[  348.719790][ T5400] usb 8-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  348.722435][ T5400] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 81
[  348.725663][ T5400] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  348.729264][ T5400] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  348.732718][ T5400] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  348.738489][ T5400] usb 8-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  348.741969][ T5400] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  348.746133][T12229] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  348.748061][ T5400] usb 8-1: config 0 descriptor??
[  348.957265][ T5400] usblp 8-1:0.0: usblp0: USB Bidirectional printer dev 42 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  349.029336][T12235] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1817'.
[  349.184175][   T39] audit: type=1400 audit(1726579495.287:3273): avc:  denied  { read write } for  pid=12187 comm="syz.3.1805" name="lp0" dev="devtmpfs" ino=3165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[  349.192217][   T39] audit: type=1400 audit(1726579495.287:3274): avc:  denied  { open } for  pid=12187 comm="syz.3.1805" path="/dev/usb/lp0" dev="devtmpfs" ino=3165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[  349.259963][    C3] usblp0: nonzero read bulk status received: -71
[  349.261578][ T5400] usb 8-1: USB disconnect, device number 42
[  349.268313][T12188] usblp0: error -71 reading from printer
[  349.282140][ T5400] usblp0: removed
[  349.307371][   T39] audit: type=1400 audit(1726579495.417:3275): avc:  denied  { ioctl } for  pid=12187 comm="syz.3.1805" path="/dev/ptyqb" dev="devtmpfs" ino=140 ioctlcmd=0x5423 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  349.896458][   T39] audit: type=1400 audit(1726579496.007:3276): avc:  denied  { map } for  pid=12246 comm="syz.1.1822" path="/dev/dri/card1" dev="devtmpfs" ino=638 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  350.328054][T12266] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1827'.
[  350.975649][ T5341] Bluetooth: hci4: unexpected event for opcode 0x203d
[  350.990332][T12277] Cannot find add_set index 0 as target
[  351.453159][T12286] can: request_module (can-proto-4) failed.
[  351.486849][T12289] FAULT_INJECTION: forcing a failure.
[  351.486849][T12289] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  351.490435][T12289] CPU: 2 UID: 0 PID: 12289 Comm: syz.1.1833 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0
[  351.493252][T12289] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  351.496045][T12289] Call Trace:
[  351.496950][T12289]  <TASK>
[  351.497732][T12289]  dump_stack_lvl+0x16c/0x1f0
[  351.499002][T12289]  should_fail_ex+0x497/0x5b0
[  351.500281][T12289]  copy_fpstate_to_sigframe+0x812/0xaa0
[  351.501793][T12289]  ? __pfx_copy_fpstate_to_sigframe+0x10/0x10
[  351.503382][T12289]  ? __pfx_lock_acquire+0x10/0x10
[  351.504723][T12289]  ? do_raw_spin_unlock+0x172/0x230
[  351.506093][T12289]  ? do_raw_spin_lock+0x12d/0x2c0
[  351.507401][T12289]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  351.508764][T12289]  ? find_held_lock+0x2d/0x110
[  351.509942][T12289]  get_sigframe+0x455/0x930
[  351.511087][T12289]  ? __pfx_get_sigframe+0x10/0x10
[  351.512379][T12289]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  351.513794][T12289]  ? _raw_spin_unlock_irq+0x23/0x50
[  351.515162][T12289]  ? siginfo_layout+0x177/0x290
[  351.516402][T12289]  x64_setup_rt_frame+0x129/0xce0
[  351.517734][T12289]  ? __pfx_x64_setup_rt_frame+0x10/0x10
[  351.519188][T12289]  arch_do_signal_or_restart+0x5e6/0x7e0
[  351.520689][T12289]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  351.522295][T12289]  ? __x64_sys_preadv+0x1d3/0x310
[  351.523622][T12289]  ? __pfx___x64_sys_preadv+0x10/0x10
[  351.525075][T12289]  syscall_exit_to_user_mode+0x150/0x2a0
[  351.526556][T12289]  do_syscall_64+0xda/0x250
[  351.527778][T12289]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  351.529333][T12289] RIP: 0033:0x7fba4cb7def7
[  351.530511][T12289] Code: ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89
[  351.535525][T12289] RSP: 002b:00007fba4da66038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  351.537722][T12289] RAX: 0000000000000127 RBX: 00007fba4cd35f80 RCX: 00007fba4cb7def9
[  351.539795][T12289] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000004
[  351.541878][T12289] RBP: 00007fba4da66090 R08: 0000000000000000 R09: 0000000000000000
[  351.543868][T12289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  351.545854][T12289] R13: 0000000000000000 R14: 00007fba4cd35f80 R15: 00007ffd924a9828
[  351.547863][T12289]  </TASK>
[  351.632399][ T5380] usb 7-1: new high-speed USB device number 43 using dummy_hcd
[  351.790997][ T5380] usb 7-1: device descriptor read/64, error -71
[  352.091218][ T5380] usb 7-1: new high-speed USB device number 44 using dummy_hcd
[  352.268739][ T5380] usb 7-1: device descriptor read/64, error -71
[  352.388959][ T5380] usb usb7-port1: attempt power cycle
[  352.898202][ T5380] usb 7-1: new high-speed USB device number 45 using dummy_hcd
[  352.930320][ T5380] usb 7-1: device descriptor read/8, error -71
[  352.977889][ T1290] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[  353.190750][ T1290] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
[  353.195542][ T1290] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  353.200131][ T5380] usb 7-1: new high-speed USB device number 46 using dummy_hcd
[  353.202958][ T1290] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  353.205996][ T1290] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  353.209667][ T1290] usb 5-1: Manufacturer: syz
[  353.218129][ T1290] usb 5-1: config 0 descriptor??
[  353.233954][ T5380] usb 7-1: device descriptor read/8, error -71
[  353.308339][ T1290] rc_core: IR keymap rc-hauppauge not found
[  353.310329][ T1290] Registered IR keymap rc-empty
[  353.312529][ T1290] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0
[  353.317334][ T1290] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input71
[  353.344512][T12311] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1838'.
[  353.350894][ T5380] usb usb7-port1: unable to enumerate USB device
[  353.899130][ T5380] usb 5-1: USB disconnect, device number 36
[  354.347679][ T5382] usb 8-1: new full-speed USB device number 43 using dummy_hcd
[  354.549228][ T5382] usb 8-1: config 1 interface 0 has no altsetting 0
[  354.552724][ T5382] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  354.555099][ T5382] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  354.557202][ T5382] usb 8-1: Product: syz
[  354.558377][ T5382] usb 8-1: Manufacturer: syz
[  354.559586][ T5382] usb 8-1: SerialNumber: syz
[  355.007913][ T5341] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  355.011456][ T5341] Bluetooth: hci4: Injecting HCI hardware error event
[  355.019037][ T4766] Bluetooth: hci4: hardware error 0x00
[  355.428238][ T1290] usb 7-1: new high-speed USB device number 47 using dummy_hcd
[  355.545921][T12318] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  355.578825][T12318] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  355.670555][ T1290] usb 7-1: config index 0 descriptor too short (expected 23569, got 27)
[  355.674660][ T1290] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  355.675460][ T5382] usblp 8-1:1.0: usblp0: USB Unidirectional printer dev 43 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  355.679419][ T1290] usb 7-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  355.682508][ T1290] usb 7-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  355.684712][ T1290] usb 7-1: Manufacturer: syz
[  355.685210][ T5382] usb 8-1: USB disconnect, device number 43
[  355.693136][ T5382] usblp0: removed
[  355.697856][ T1290] usb 7-1: config 0 descriptor??
[  355.797888][ T1290] rc_core: IR keymap rc-hauppauge not found
[  355.800119][ T1290] Registered IR keymap rc-empty
[  355.804299][ T1290] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0
[  355.813363][ T1290] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0/input72
[  356.382535][ T1290] usb 7-1: USB disconnect, device number 47
[  356.489559][ T5380] usb 5-1: new full-speed USB device number 37 using dummy_hcd
[  356.582490][T12363] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.1852'.
[  356.674787][ T5380] usb 5-1: config 1 interface 0 has no altsetting 0
[  356.685590][ T5380] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  356.690229][ T5380] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  356.693091][ T5380] usb 5-1: Product: syz
[  356.694757][ T5380] usb 5-1: Manufacturer: syz
[  356.696435][ T5380] usb 5-1: SerialNumber: syz
[  357.087671][ T4766] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  357.162645][T12373] FAULT_INJECTION: forcing a failure.
[  357.162645][T12373] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  357.166044][T12373] CPU: 3 UID: 0 PID: 12373 Comm: syz.2.1857 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0
[  357.168838][T12373] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  357.171640][T12373] Call Trace:
[  357.172530][T12373]  <TASK>
[  357.173324][T12373]  dump_stack_lvl+0x16c/0x1f0
[  357.174582][T12373]  should_fail_ex+0x497/0x5b0
[  357.175838][T12373]  _copy_from_user+0x30/0xf0
[  357.177080][T12373]  __sys_bpf+0x21c/0x49c0
[  357.178225][T12373]  ? ksys_write+0x21c/0x260
[  357.179434][T12373]  ? reacquire_held_locks+0x480/0x4c0
[  357.180882][T12373]  ? __pfx___sys_bpf+0x10/0x10
[  357.182149][T12373]  ? vfs_write+0x14d/0x1140
[  357.183355][T12373]  ? __mutex_unlock_slowpath+0x164/0x650
[  357.184850][T12373]  ? fput+0x30/0x390
[  357.185894][T12373]  ? ksys_write+0x1ab/0x260
[  357.187098][T12373]  ? __pfx_ksys_write+0x10/0x10
[  357.188386][T12373]  __x64_sys_bpf+0x78/0xc0
[  357.189574][T12373]  ? lockdep_hardirqs_on+0x7c/0x110
[  357.190944][T12373]  do_syscall_64+0xcd/0x250
[  357.192159][T12373]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  357.193732][T12373] RIP: 0033:0x7f5b5f17def9
[  357.194912][T12373] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  357.199931][T12373] RSP: 002b:00007f5b5fea5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  357.202123][T12373] RAX: ffffffffffffffda RBX: 00007f5b5f335f80 RCX: 00007f5b5f17def9
[  357.204249][T12373] RDX: 0000000000000070 RSI: 00000000200000c0 RDI: 0000000000000005
[  357.206318][T12373] RBP: 00007f5b5fea5090 R08: 0000000000000000 R09: 0000000000000000
[  357.208359][T12373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  357.210414][T12373] R13: 0000000000000000 R14: 00007f5b5f335f80 R15: 00007ffebdc8bcc8
[  357.212461][T12373]  </TASK>
[  357.718712][   T30] usb 7-1: new high-speed USB device number 48 using dummy_hcd
[  357.803949][T12356] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  357.807809][T12356] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  357.886795][ T5380] usblp 5-1:1.0: usblp0: USB Unidirectional printer dev 37 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  357.897350][ T5380] usb 5-1: USB disconnect, device number 37
[  357.899205][   T30] usb 7-1: config index 0 descriptor too short (expected 23569, got 27)
[  357.899233][   T30] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  357.900335][   T30] usb 7-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  357.906934][ T5380] usblp0: removed
[  357.908074][   T30] usb 7-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  357.910512][   T30] usb 7-1: Manufacturer: syz
[  357.913332][   T30] usb 7-1: config 0 descriptor??
[  357.978476][   T30] rc_core: IR keymap rc-hauppauge not found
[  357.980050][   T30] Registered IR keymap rc-empty
[  357.981832][   T30] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0
[  357.985250][   T30] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0/input73
[  358.236968][T12408] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.1866'.
[  359.161242][ T1290] usb 7-1: USB disconnect, device number 48
[  360.391991][T12447] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.1877'.
[  361.134964][T12458] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1879'.
[  361.619099][T12474] futex_wake_op: syz.0.1884 tries to shift op by 32; fix this program
[  361.868563][   T39] audit: type=1400 audit(1726579507.967:3277): avc:  denied  { write } for  pid=12473 comm="syz.0.1884" name="nvram" dev="devtmpfs" ino=633 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  362.228140][ T5400] usb 8-1: new high-speed USB device number 44 using dummy_hcd
[  362.436824][ T5400] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  362.493872][ T5400] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  362.497032][ T5400] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  362.500787][ T5400] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  362.504166][ T5400] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  362.506556][ T5400] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  362.510954][ T5400] usb 8-1: config 0 descriptor??
[  362.513380][T12476] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  362.588020][ T1290] usb 6-1: new full-speed USB device number 45 using dummy_hcd
[  362.768337][T12494] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1889'.
[  362.788599][ T5389] usb 5-1: new high-speed USB device number 38 using dummy_hcd
[  362.789203][ T1290] usb 6-1: config 1 interface 0 has no altsetting 0
[  362.794850][ T1290] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  362.797271][ T1290] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  362.799802][ T1290] usb 6-1: Product: syz
[  362.800991][ T1290] usb 6-1: Manufacturer: syz
[  362.802251][ T1290] usb 6-1: SerialNumber: syz
[  362.930648][ T5400] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  362.933049][ T5400] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  362.935064][ T5400] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  362.937030][ T5400] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  362.939423][ T5400] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  362.941426][ T5400] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  362.943488][ T5400] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  362.945502][ T5400] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  362.947469][ T5400] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  362.949801][ T5400] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  362.951763][ T5400] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  362.953802][ T5400] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  362.955763][ T5400] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  362.958249][ T5400] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  362.960341][ T5400] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  362.963023][ T5400] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving
[  362.969679][ T5389] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  362.972946][ T5400] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  362.973342][ T5389] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  362.973367][ T5389] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  362.984173][ T5389] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  362.989021][ T5389] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  362.991477][ T5389] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  362.996029][ T5389] usb 5-1: config 0 descriptor??
[  362.998897][T12492] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22
[  363.015387][ T1290] usblp 6-1:1.0: usblp1: USB Unidirectional printer dev 45 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  363.020358][ T1290] usb 6-1: USB disconnect, device number 45
[  363.023032][ T1290] usblp1: removed
[  363.203963][ T5400] usb 8-1: USB disconnect, device number 44
[  363.207040][   T39] audit: type=1400 audit(1726579509.317:3278): avc:  denied  { map } for  pid=12491 comm="syz.0.1888" path="/proc/222/net/xfrm_stat" dev="proc" ino=4026534403 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  363.214012][   T39] audit: type=1400 audit(1726579509.317:3279): avc:  denied  { execute } for  pid=12491 comm="syz.0.1888" path="/proc/222/net/xfrm_stat" dev="proc" ino=4026534403 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  363.226525][ T5389] usbhid 5-1:0.0: can't add hid device: -71
[  363.229373][ T5389] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  363.232439][ T5389] usb 5-1: USB disconnect, device number 38
[  363.885706][   T39] audit: type=1400 audit(1726579509.997:3280): avc:  denied  { read } for  pid=12514 comm="syz.3.1896" name="file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  363.892462][   T39] audit: type=1400 audit(1726579509.997:3281): avc:  denied  { open } for  pid=12514 comm="syz.3.1896" path="/141/file0/file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  363.906096][   T39] audit: type=1400 audit(1726579510.017:3282): avc:  denied  { ioctl } for  pid=12514 comm="syz.3.1896" path="/141/file0/file0" dev="fuse" ino=0 ioctlcmd=0x581f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  364.370947][T12528] xt_time: invalid argument - start or stop time greater than 23:59:59
[  364.817211][T12545] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1902'.
[  365.030450][   T39] audit: type=1400 audit(1726579511.147:3283): avc:  denied  { append } for  pid=12550 comm="syz.3.1904" name="binder1" dev="binder" ino=23 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  365.308355][   T39] audit: type=1800 audit(1726579511.427:3284): pid=12563 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.0.1907" name="/" dev="fuse" ino=1 res=0 errno=0
[  365.770395][T12582] usb 1-1: USB disconnect, device number 2
[  365.810348][   T39] audit: type=1400 audit(1726579511.917:3285): avc:  denied  { load_policy } for  pid=12578 comm="syz.3.1915" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  365.816750][T12579] SELinux:  policydb magic number 0x5f59527f does not match expected magic number 0xf97cff8c
[  365.822697][T12579] SELinux: failed to load policy
[  365.828766][T12579] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  365.849512][   T39] audit: type=1400 audit(1726579511.967:3286): avc:  denied  { write } for  pid=12585 comm="syz.1.1911" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  366.118621][T12603] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1918'.
[  366.760240][T12623] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.1925'.
[  367.294475][   T39] audit: type=1400 audit(1726579513.407:3287): avc:  denied  { read } for  pid=12629 comm="syz.1.1927" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  368.145239][T12641] netlink: 88 bytes leftover after parsing attributes in process `syz.3.1928'.
[  368.149328][ T1290] usb 6-1: new high-speed USB device number 46 using dummy_hcd
[  368.154377][T12641] netlink: 20056 bytes leftover after parsing attributes in process `syz.3.1928'.
[  368.338211][ T1290] usb 6-1: Using ep0 maxpacket: 8
[  368.342751][ T1290] usb 6-1: config index 0 descriptor too short (expected 1307, got 27)
[  368.346011][ T1290] usb 6-1: config 128 has an invalid descriptor of length 128, skipping remainder of the config
[  368.350899][ T1290] usb 6-1: config 128 has 0 interfaces, different from the descriptor's value: 7
[  368.359793][ T1290] usb 6-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[  368.362971][ T1290] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  368.365547][ T1290] usb 6-1: Product: syz
[  368.366799][ T1290] usb 6-1: Manufacturer: syz
[  368.378506][ T1290] usb 6-1: SerialNumber: syz
[  368.398705][T12652] FAULT_INJECTION: forcing a failure.
[  368.398705][T12652] name failslab, interval 1, probability 0, space 0, times 0
[  368.403180][T12652] CPU: 1 UID: 0 PID: 12652 Comm: syz.0.1931 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0
[  368.406611][T12652] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  368.410166][T12652] Call Trace:
[  368.411285][T12652]  <TASK>
[  368.412280][T12652]  dump_stack_lvl+0x16c/0x1f0
[  368.413862][T12652]  should_fail_ex+0x497/0x5b0
[  368.415435][T12652]  ? fs_reclaim_acquire+0xae/0x160
[  368.417158][T12652]  should_failslab+0xc2/0x120
[  368.418734][T12652]  __kmalloc_node_noprof+0xd1/0x430
[  368.420477][T12652]  ? crypto_alloc_tfmmem.isra.0+0x38/0x110
[  368.422433][T12652]  ? __pfx_crypto_alg_extsize+0x10/0x10
[  368.424265][T12652]  crypto_alloc_tfmmem.isra.0+0x38/0x110
[  368.426153][T12652]  crypto_create_tfm_node+0x83/0x320
[  368.427928][T12652]  crypto_alloc_tfm_node+0x102/0x260
[  368.429694][T12652]  fscrypt_init_hkdf+0x98/0x290
[  368.431330][T12652]  ? __pfx_fscrypt_init_hkdf+0x10/0x10
[  368.433169][T12652]  ? __might_fault+0x13b/0x190
[  368.434780][T12652]  add_master_key+0x298/0x6d0
[  368.436385][T12652]  ? __pfx_add_master_key+0x10/0x10
[  368.438112][T12652]  fscrypt_ioctl_add_key+0x24a/0x630
[  368.439876][T12652]  ? __pfx_fscrypt_ioctl_add_key+0x10/0x10
[  368.441847][T12652]  ? __pfx_avc_has_extended_perms+0x10/0x10
[  368.443801][T12652]  ? kfree+0x388/0x3b0
[  368.445189][T12652]  __ext4_ioctl+0x43c/0x4630
[  368.446749][T12652]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  368.448762][T12652]  ? __pfx___ext4_ioctl+0x10/0x10
[  368.450452][T12652]  ? do_vfs_ioctl+0x50f/0x1aa0
[  368.452065][T12652]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  368.453790][T12652]  ? ioctl_has_perm.constprop.0.isra.0+0x2ea/0x460
[  368.455945][T12652]  ? ioctl_has_perm.constprop.0.isra.0+0x2f3/0x460
[  368.458124][T12652]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  368.460426][T12652]  ? selinux_file_ioctl+0x180/0x270
[  368.462173][T12652]  ? selinux_file_ioctl+0xb4/0x270
[  368.463886][T12652]  ? __pfx_ext4_ioctl+0x10/0x10
[  368.465534][T12652]  __x64_sys_ioctl+0x18d/0x210
[  368.467132][T12652]  do_syscall_64+0xcd/0x250
[  368.468680][T12652]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  368.470675][T12652] RIP: 0033:0x7fdb3517def9
[  368.472191][T12652] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  368.478644][T12652] RSP: 002b:00007fdb3604b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  368.481262][T12652] RAX: ffffffffffffffda RBX: 00007fdb35335f80 RCX: 00007fdb3517def9
[  368.483349][T12652] RDX: 0000000020000280 RSI: 00000000c0506617 RDI: 0000000000000005
[  368.485461][T12652] RBP: 00007fdb3604b090 R08: 0000000000000000 R09: 0000000000000000
[  368.487518][T12652] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  368.489575][T12652] R13: 0000000000000000 R14: 00007fdb35335f80 R15: 00007fff19d7ce08
[  368.491646][T12652]  </TASK>
[  368.494341][T12652] fscrypt: Error allocating hmac(sha512): -12
[  368.975415][T12665] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1934'.
[  369.187239][ T1290] usb 6-1: USB disconnect, device number 46
[  369.608404][T12673] sp0: Synchronizing with TNC
[  369.829664][T12692] pim6reg1: entered promiscuous mode
[  369.831480][T12692] pim6reg1: entered allmulticast mode
[  369.845589][   T39] audit: type=1400 audit(1726579515.957:3288): avc:  denied  { map } for  pid=12688 comm="syz.1.1939" path="socket:[43511]" dev="sockfs" ino=43511 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  369.854770][   T39] audit: type=1400 audit(1726579515.957:3289): avc:  denied  { accept } for  pid=12688 comm="syz.1.1939" path="socket:[43511]" dev="sockfs" ino=43511 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  369.888329][   T56] usb 8-1: new low-speed USB device number 45 using dummy_hcd
[  370.079417][   T56] usb 8-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  370.085231][   T56] usb 8-1: config 246 descriptor has 1 excess byte, ignoring
[  370.087791][   T56] usb 8-1: config 246 has 1 interface, different from the descriptor's value: 42
[  370.090707][   T56] usb 8-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  370.093907][   T56] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 77, setting to 8
[  370.096965][   T56] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  370.100943][   T56] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  370.104732][   T56] usb 8-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  370.108646][   T56] usb 8-1: config 246 descriptor has 1 excess byte, ignoring
[  370.110844][   T56] usb 8-1: config 246 has 1 interface, different from the descriptor's value: 42
[  370.116324][   T56] usb 8-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  370.122908][   T56] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 77, setting to 8
[  370.126141][   T56] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  370.129629][   T56] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  370.133148][   T56] usb 8-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  370.138030][   T56] usb 8-1: config 246 descriptor has 1 excess byte, ignoring
[  370.140104][   T56] usb 8-1: config 246 has 1 interface, different from the descriptor's value: 42
[  370.142523][   T56] usb 8-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  370.145562][   T56] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 77, setting to 8
[  370.149202][   T56] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  370.155249][   T56] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  370.160659][   T56] usb 8-1: string descriptor 0 read error: -22
[  370.162303][   T56] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  370.171540][   T56] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  370.189878][   T56] adutux 8-1:246.0: ADU100  now attached to /dev/usb/adutux0
[  370.603630][T12722] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1945'.
[  370.869119][T12734] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1946'.
[  371.152448][   T39] audit: type=1400 audit(1726579517.267:3290): avc:  denied  { ioctl } for  pid=12736 comm="syz.2.1949" path="socket:[44551]" dev="sockfs" ino=44551 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  371.680259][   T35] usb 7-1: new high-speed USB device number 49 using dummy_hcd
[  371.862140][   T35] usb 7-1: config index 0 descriptor too short (expected 23569, got 27)
[  371.865140][   T35] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  371.870549][   T35] usb 7-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  371.873714][   T35] usb 7-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  371.875997][   T35] usb 7-1: Manufacturer: syz
[  371.882808][   T35] usb 7-1: config 0 descriptor??
[  371.912233][ T5382] usb 5-1: new high-speed USB device number 39 using dummy_hcd
[  371.947868][   T35] rc_core: IR keymap rc-hauppauge not found
[  371.949514][   T35] Registered IR keymap rc-empty
[  371.951533][   T35] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0
[  371.956770][   T35] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0/input74
[  371.997686][ T1290] usb 6-1: new high-speed USB device number 47 using dummy_hcd
[  372.126142][ T5382] usb 5-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  372.130597][ T5382] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  372.133521][ T5382] usb 5-1: Product: syz
[  372.134671][ T5382] usb 5-1: Manufacturer: syz
[  372.136106][ T5382] usb 5-1: SerialNumber: syz
[  372.144891][ T5382] usb 5-1: config 0 descriptor??
[  372.182288][ T1290] usb 6-1: config 36 has an invalid descriptor of length 0, skipping remainder of the config
[  372.185974][ T1290] usb 6-1: config 36 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  372.194374][ T1290] usb 6-1: New USB device found, idVendor=6993, idProduct=b001, bcdDevice=3d.29
[  372.198658][ T1290] usb 6-1: New USB device strings: Mfr=244, Product=0, SerialNumber=16
[  372.201425][ T1290] usb 6-1: Manufacturer: syz
[  372.202971][ T1290] usb 6-1: SerialNumber: syz
[  372.216519][ T5389] usb 7-1: USB disconnect, device number 49
[  372.352862][T12750] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  372.356075][T12750] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  372.418179][ T1290] usbhid 6-1:36.0: couldn't find an input interrupt endpoint
[  372.425757][ T1290] usb 6-1: USB disconnect, device number 47
[  372.797007][T12755] FAULT_INJECTION: forcing a failure.
[  372.797007][T12755] name failslab, interval 1, probability 0, space 0, times 0
[  372.801118][T12755] CPU: 3 UID: 0 PID: 12755 Comm: syz.2.1955 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0
[  372.803966][T12755] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  372.806861][T12755] Call Trace:
[  372.807811][T12755]  <TASK>
[  372.808653][T12755]  dump_stack_lvl+0x16c/0x1f0
[  372.809941][T12755]  should_fail_ex+0x497/0x5b0
[  372.811218][T12755]  should_failslab+0xc2/0x120
[  372.812495][T12755]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  372.813971][T12755]  ? skb_clone+0x190/0x3f0
[  372.815224][T12755]  skb_clone+0x190/0x3f0
[  372.816413][T12755]  netlink_deliver_tap+0xab3/0xd90
[  372.817856][T12755]  netlink_unicast+0x5e1/0x7f0
[  372.819145][T12755]  ? __pfx_netlink_unicast+0x10/0x10
[  372.820578][T12755]  netlink_sendmsg+0x8b8/0xd70
[  372.821859][T12755]  ? __pfx_netlink_sendmsg+0x10/0x10
[  372.823263][T12755]  ? __import_iovec+0x1fd/0x6e0
[  372.824574][T12755]  ____sys_sendmsg+0xaaf/0xc90
[  372.825841][T12755]  ? copy_msghdr_from_user+0x10b/0x160
[  372.827276][T12755]  ? __pfx_____sys_sendmsg+0x10/0x10
[  372.828682][T12755]  ? __pfx___lock_acquire+0x10/0x10
[  372.830074][T12755]  ___sys_sendmsg+0x135/0x1e0
[  372.831343][T12755]  ? __pfx____sys_sendmsg+0x10/0x10
[  372.832748][T12755]  ? find_held_lock+0x2d/0x110
[  372.834031][T12755]  ? __pfx_lock_release+0x10/0x10
[  372.835364][T12755]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  372.836875][T12755]  ? __fget_light+0x173/0x210
[  372.838116][T12755]  __sys_sendmmsg+0x1a1/0x450
[  372.839370][T12755]  ? __pfx___sys_sendmmsg+0x10/0x10
[  372.840767][T12755]  ? vfs_write+0x14d/0x1140
[  372.841982][T12755]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  372.843551][T12755]  ? fput+0x30/0x390
[  372.844600][T12755]  ? ksys_write+0x1ab/0x260
[  372.845804][T12755]  ? __pfx_ksys_write+0x10/0x10
[  372.847089][T12755]  __x64_sys_sendmmsg+0x9c/0x100
[  372.848399][T12755]  ? lockdep_hardirqs_on+0x7c/0x110
[  372.849777][T12755]  do_syscall_64+0xcd/0x250
[  372.850973][T12755]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  372.852536][T12755] RIP: 0033:0x7f5b5f17def9
[  372.853717][T12755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  372.858733][T12755] RSP: 002b:00007f5b5fea5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  372.860924][T12755] RAX: ffffffffffffffda RBX: 00007f5b5f335f80 RCX: 00007f5b5f17def9
[  372.862987][T12755] RDX: 040000000000009f RSI: 00000000200002c0 RDI: 0000000000000004
[  372.865053][T12755] RBP: 00007f5b5fea5090 R08: 0000000000000000 R09: 0000000000000000
[  372.867122][T12755] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  372.869273][T12755] R13: 0000000000000000 R14: 00007f5b5f335f80 R15: 00007ffebdc8bcc8
[  372.871398][T12755]  </TASK>
[  373.073534][    T8] usb 5-1: USB disconnect, device number 39
[  373.951228][   T39] audit: type=1400 audit(1726579520.067:3291): avc:  denied  { validate_trans } for  pid=12781 comm="syz.0.1963" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  374.544557][   T62] usb 8-1: USB disconnect, device number 45
[  374.719593][ T5389] usb 5-1: new high-speed USB device number 40 using dummy_hcd
[  374.752099][T12804] netlink: 'syz.1.1970': attribute type 9 has an invalid length.
[  374.754486][T12804] netlink: 134672 bytes leftover after parsing attributes in process `syz.1.1970'.
[  374.757428][T12804] openvswitch: netlink: Key 2 has unexpected len 20 expected 4
[  374.761625][T12804] FAULT_INJECTION: forcing a failure.
[  374.761625][T12804] name failslab, interval 1, probability 0, space 0, times 0
[  374.766210][T12804] CPU: 0 UID: 0 PID: 12804 Comm: syz.1.1970 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0
[  374.769761][T12804] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  374.772644][T12804] Call Trace:
[  374.773612][T12804]  <TASK>
[  374.774518][T12804]  dump_stack_lvl+0x16c/0x1f0
[  374.775968][T12804]  should_fail_ex+0x497/0x5b0
[  374.777444][T12804]  should_failslab+0xc2/0x120
[  374.778923][T12804]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  374.780527][T12804]  ? skb_clone+0x190/0x3f0
[  374.781796][T12804]  skb_clone+0x190/0x3f0
[  374.782881][T12804]  netlink_deliver_tap+0xab3/0xd90
[  374.784607][T12804]  netlink_unicast+0x6b4/0x7f0
[  374.785963][T12804]  ? __pfx_netlink_unicast+0x10/0x10
[  374.787688][T12804]  ? genl_rcv_msg+0x4bd/0x800
[  374.789284][T12804]  netlink_ack+0x6a8/0xb90
[  374.790883][T12804]  netlink_rcv_skb+0x348/0x440
[  374.792119][T12804]  ? __pfx_genl_rcv_msg+0x10/0x10
[  374.793673][T12804]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  374.795082][T12804]  ? down_read+0xc9/0x330
[  374.796167][T12804]  ? __pfx_down_read+0x10/0x10
[  374.797455][T12804]  ? netlink_deliver_tap+0x1ae/0xd90
[  374.798847][T12804]  genl_rcv+0x28/0x40
[  374.799916][T12804]  netlink_unicast+0x53c/0x7f0
[  374.801317][T12804]  ? __pfx_netlink_unicast+0x10/0x10
[  374.802712][T12804]  ? const_folio_flags.constprop.0+0x56/0x150
[  374.804319][T12804]  netlink_sendmsg+0x8b8/0xd70
[  374.805550][T12804]  ? __pfx_netlink_sendmsg+0x10/0x10
[  374.806985][T12804]  ? __import_iovec+0x1fd/0x6e0
[  374.808299][T12804]  ____sys_sendmsg+0xaaf/0xc90
[  374.809580][T12804]  ? copy_msghdr_from_user+0x10b/0x160
[  374.811008][T12804]  ? __pfx_____sys_sendmsg+0x10/0x10
[  374.812379][T12804]  ? __pfx___lock_acquire+0x10/0x10
[  374.813678][T12804]  ___sys_sendmsg+0x135/0x1e0
[  374.814922][T12804]  ? __pfx____sys_sendmsg+0x10/0x10
[  374.816279][T12804]  ? find_held_lock+0x2d/0x110
[  374.817706][T12804]  ? ksys_write+0x21c/0x260
[  374.818958][T12804]  ? __fget_light+0x173/0x210
[  374.820251][T12804]  __sys_sendmsg+0x117/0x1f0
[  374.821517][T12804]  ? __pfx___sys_sendmsg+0x10/0x10
[  374.822911][T12804]  do_syscall_64+0xcd/0x250
[  374.824158][T12804]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  374.825758][T12804] RIP: 0033:0x7fba4cb7def9
[  374.827057][T12804] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  374.832139][T12804] RSP: 002b:00007fba4da66038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  374.834324][T12804] RAX: ffffffffffffffda RBX: 00007fba4cd35f80 RCX: 00007fba4cb7def9
[  374.836566][T12804] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[  374.838691][T12804] RBP: 00007fba4da66090 R08: 0000000000000000 R09: 0000000000000000
[  374.840891][T12804] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  374.843031][T12804] R13: 0000000000000000 R14: 00007fba4cd35f80 R15: 00007ffd924a9828
[  374.845147][T12804]  </TASK>
[  374.928040][T12814] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1974'.
[  374.932070][T12814] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1974'.
[  374.950170][ T5389] usb 5-1: config 36 has an invalid descriptor of length 0, skipping remainder of the config
[  374.953174][ T5389] usb 5-1: config 36 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  374.960126][ T5389] usb 5-1: New USB device found, idVendor=6993, idProduct=b001, bcdDevice=3d.29
[  374.962522][ T5389] usb 5-1: New USB device strings: Mfr=244, Product=0, SerialNumber=16
[  374.964600][ T5389] usb 5-1: Manufacturer: syz
[  374.965791][ T5389] usb 5-1: SerialNumber: syz
[  374.977326][T12814] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1974'.
[  375.180278][ T5389] usbhid 5-1:36.0: couldn't find an input interrupt endpoint
[  375.186146][ T5389] usb 5-1: USB disconnect, device number 40
[  375.743304][   T39] audit: type=1326 audit(1726579521.857:3292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12834 comm="syz.0.1980" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdb3517def9 code=0x0
[  375.919580][   T39] audit: type=1400 audit(1726579522.037:3293): avc:  denied  { mount } for  pid=12832 comm="syz.2.1979" name="/" dev="gadgetfs" ino=45348 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  375.976526][T12843] input: syz0 as /devices/virtual/input/input75
[  376.030794][ T5389] hid-generic 0000:0000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz1
[  376.614126][   T39] audit: type=1326 audit(1726579522.717:3294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12846 comm="syz.3.1983" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f501f97def9 code=0x0
[  376.682393][T12861] capability: warning: `syz.2.1986' uses 32-bit capabilities (legacy support in use)
[  377.509505][T12882] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.1992'.
[  377.727986][   T35] usb 5-1: new high-speed USB device number 41 using dummy_hcd
[  377.940237][   T35] usb 5-1: config 36 has an invalid descriptor of length 0, skipping remainder of the config
[  377.945066][   T35] usb 5-1: config 36 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  377.959718][   T35] usb 5-1: New USB device found, idVendor=6993, idProduct=b001, bcdDevice=3d.29
[  377.962996][   T35] usb 5-1: New USB device strings: Mfr=244, Product=0, SerialNumber=16
[  377.966000][   T35] usb 5-1: Manufacturer: syz
[  377.968274][   T35] usb 5-1: SerialNumber: syz
[  378.190094][   T35] usbhid 5-1:36.0: couldn't find an input interrupt endpoint
[  378.193393][   T35] usb 5-1: USB disconnect, device number 41
[  378.240514][   T39] audit: type=1326 audit(1726579524.357:3295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12889 comm="syz.2.1994" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b5f17def9 code=0x7ffc0000
[  378.248439][   T39] audit: type=1326 audit(1726579524.357:3296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12889 comm="syz.2.1994" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b5f17def9 code=0x7ffc0000
[  378.256377][   T39] audit: type=1326 audit(1726579524.357:3297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12889 comm="syz.2.1994" exe="/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f5b5f17def9 code=0x7ffc0000
[  378.265816][   T39] audit: type=1326 audit(1726579524.357:3298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12889 comm="syz.2.1994" exe="/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f5b5f17df33 code=0x7ffc0000
[  378.273838][   T39] audit: type=1326 audit(1726579524.357:3299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12889 comm="syz.2.1994" exe="/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f5b5f17df33 code=0x7ffc0000
[  378.273866][   T39] audit: type=1326 audit(1726579524.357:3300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12889 comm="syz.2.1994" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b5f17def9 code=0x7ffc0000
[  378.530998][ T1382] ieee802154 phy1 wpan1: encryption failed: -22
[  378.779258][T12909] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.1997'.
[  379.549845][T12922] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.2001'.
[  379.696398][T12928] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1999'.
[  380.528820][ T5341] Bluetooth: hci5: Controller not accepting commands anymore: ncmd = 0
[  380.532833][ T5341] Bluetooth: hci5: Injecting HCI hardware error event
[  380.607745][ T5341] Bluetooth: hci5: command 0x0406 tx timeout
[  380.623181][ T4766] Bluetooth: hci5: hardware error 0x00
[  380.958175][   T25] usb 7-1: new high-speed USB device number 50 using dummy_hcd
[  381.159777][   T25] usb 7-1: config 36 has an invalid descriptor of length 0, skipping remainder of the config
[  381.162483][   T25] usb 7-1: config 36 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  381.176497][   T25] usb 7-1: New USB device found, idVendor=6993, idProduct=b001, bcdDevice=3d.29
[  381.179325][   T25] usb 7-1: New USB device strings: Mfr=244, Product=0, SerialNumber=16
[  381.181561][   T25] usb 7-1: Manufacturer: syz
[  381.182788][   T25] usb 7-1: SerialNumber: syz
[  381.453501][   T25] usbhid 7-1:36.0: couldn't find an input interrupt endpoint
[  381.460996][   T25] usb 7-1: USB disconnect, device number 50
[  381.691014][T12970] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2012'.
[  381.708315][ T1290] usb 5-1: new high-speed USB device number 42 using dummy_hcd
[  381.916943][ T1290] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
[  381.919590][ T1290] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  381.923066][ T1290] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  381.925740][ T1290] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  381.928841][ T1290] usb 5-1: Manufacturer: syz
[  381.933507][ T1290] usb 5-1: config 0 descriptor??
[  382.018105][ T1290] rc_core: IR keymap rc-hauppauge not found
[  382.020369][ T1290] Registered IR keymap rc-empty
[  382.027404][ T1290] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0
[  382.032449][ T1290] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input77
[  382.690862][ T4766] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[  383.411458][ T5382] usb 5-1: USB disconnect, device number 42
[  383.671505][T13004] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2017'.
[  384.678539][   T25] usb 5-1: new high-speed USB device number 43 using dummy_hcd
[  384.890539][T13020] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2023'.
[  384.971459][   T25] usb 5-1: config 36 has an invalid descriptor of length 0, skipping remainder of the config
[  384.974238][   T25] usb 5-1: config 36 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  384.981756][   T25] usb 5-1: New USB device found, idVendor=6993, idProduct=b001, bcdDevice=3d.29
[  384.984133][   T25] usb 5-1: New USB device strings: Mfr=244, Product=0, SerialNumber=16
[  384.986318][   T25] usb 5-1: Manufacturer: syz
[  384.987829][   T25] usb 5-1: SerialNumber: syz
[  385.204991][   T25] usbhid 5-1:36.0: couldn't find an input interrupt endpoint
[  385.213210][   T25] usb 5-1: USB disconnect, device number 43
[  386.368515][ T1290] usb 6-1: new full-speed USB device number 48 using dummy_hcd
[  386.397736][ T5382] usb 7-1: new high-speed USB device number 51 using dummy_hcd
[  386.579213][ T1290] usb 6-1: config 1 interface 0 has no altsetting 0
[  386.583615][ T1290] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  386.586580][ T1290] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  386.589375][   T25] usb 5-1: new high-speed USB device number 44 using dummy_hcd
[  386.591873][ T1290] usb 6-1: Product: syz
[  386.592414][ T5382] usb 7-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  386.593441][ T1290] usb 6-1: Manufacturer: syz
[  386.596199][ T5382] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  386.596222][ T5382] usb 7-1: Product: syz
[  386.596237][ T5382] usb 7-1: Manufacturer: syz
[  386.596250][ T5382] usb 7-1: SerialNumber: syz
[  386.598663][ T1290] usb 6-1: SerialNumber: syz
[  386.603028][ T5382] usb 7-1: config 0 descriptor??
[  386.800826][   T25] usb 5-1: config 36 has an invalid descriptor of length 0, skipping remainder of the config
[  386.804388][   T25] usb 5-1: config 36 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  386.810570][   T25] usb 5-1: New USB device found, idVendor=6993, idProduct=b001, bcdDevice=3d.29
[  386.813593][   T25] usb 5-1: New USB device strings: Mfr=244, Product=0, SerialNumber=16
[  386.816504][   T25] usb 5-1: Manufacturer: syz
[  386.818492][   T25] usb 5-1: SerialNumber: syz
[  386.831352][T13046] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  386.834918][T13046] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  387.038665][   T25] usbhid 5-1:36.0: couldn't find an input interrupt endpoint
[  387.042293][   T25] usb 5-1: USB disconnect, device number 44
[  387.536987][   T25] usb 7-1: USB disconnect, device number 51
[  387.599096][T13043] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  387.602805][T13043] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  387.627254][ T1290] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 48 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  387.634041][ T1290] usb 6-1: USB disconnect, device number 48
[  387.637244][ T1290] usblp0: removed
[  388.177687][   T35] usb 5-1: new high-speed USB device number 45 using dummy_hcd
[  388.188656][ T1290] usb 6-1: new high-speed USB device number 49 using dummy_hcd
[  388.250115][T13073] Cannot find add_set index 0 as target
[  388.373799][ T1290] usb 6-1: config index 0 descriptor too short (expected 23569, got 27)
[  388.375858][ T1290] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  388.380056][ T1290] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  388.382333][ T1290] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  388.384187][ T1290] usb 6-1: Manufacturer: syz
[  388.391764][   T35] usb 5-1: config 36 has an invalid descriptor of length 0, skipping remainder of the config
[  388.395254][   T35] usb 5-1: config 36 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  388.397867][T13075] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2035'.
[  388.403708][ T1290] usb 6-1: config 0 descriptor??
[  388.405889][   T35] usb 5-1: New USB device found, idVendor=6993, idProduct=b001, bcdDevice=3d.29
[  388.409182][   T35] usb 5-1: New USB device strings: Mfr=244, Product=0, SerialNumber=16
[  388.412711][   T35] usb 5-1: Manufacturer: syz
[  388.414363][   T35] usb 5-1: SerialNumber: syz
[  388.477926][ T1290] rc_core: IR keymap rc-hauppauge not found
[  388.479547][ T1290] Registered IR keymap rc-empty
[  388.482119][ T1290] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0
[  388.488964][ T1290] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0/input78
[  388.632953][   T35] usbhid 5-1:36.0: couldn't find an input interrupt endpoint
[  388.648991][   T35] usb 5-1: USB disconnect, device number 45
[  389.204839][   T35] usb 6-1: USB disconnect, device number 49
[  389.507696][ T1290] usb 5-1: new low-speed USB device number 46 using dummy_hcd
[  389.689935][ T1290] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  389.692581][ T1290] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[  389.694593][ T1290] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[  389.697285][ T1290] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  389.702161][ T1290] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 77, setting to 8
[  389.705178][ T1290] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  389.708407][ T1290] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  389.711913][ T1290] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  389.714318][ T1290] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[  389.716371][ T1290] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[  389.719309][ T1290] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  389.722376][ T1290] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 77, setting to 8
[  389.725305][ T1290] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  389.728589][ T1290] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  389.745549][ T1290] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  389.748472][ T1290] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[  389.750832][ T1290] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[  389.753647][ T1290] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  389.757324][ T1290] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 77, setting to 8
[  389.760736][ T1290] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  389.764409][ T1290] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  389.769462][ T1290] usb 5-1: string descriptor 0 read error: -22
[  389.771337][ T1290] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  389.773700][ T1290] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  389.785513][ T1290] adutux 5-1:246.0: ADU100  now attached to /dev/usb/adutux0
[  390.117630][   T30] usb 6-1: new high-speed USB device number 50 using dummy_hcd
[  390.311212][   T30] usb 6-1: config index 0 descriptor too short (expected 23569, got 27)
[  390.313453][   T30] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  390.320052][   T30] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  390.328807][   T30] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  390.331722][   T30] usb 6-1: Manufacturer: syz
[  390.337885][   T30] usb 6-1: config 0 descriptor??
[  390.400730][   T30] rc_core: IR keymap rc-hauppauge not found
[  390.403007][   T30] Registered IR keymap rc-empty
[  390.406292][   T30] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0
[  390.424236][   T30] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0/input79
[  390.820219][T13120] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2048'.
[  390.840797][   T30] usb 6-1: USB disconnect, device number 50
[  391.706858][   T39] kauditd_printk_skb: 34 callbacks suppressed
[  391.707026][   T39] audit: type=1326 audit(1726579537.817:3335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13126 comm="syz.1.2050" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fba4cb7def9 code=0x0
[  392.017731][   T35] usb 8-1: new high-speed USB device number 46 using dummy_hcd
[  392.209297][   T35] usb 8-1: config index 0 descriptor too short (expected 23569, got 27)
[  392.211497][   T35] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  392.215411][   T35] usb 8-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  392.218961][   T35] usb 8-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  392.221584][   T35] usb 8-1: Manufacturer: syz
[  392.226129][   T35] usb 8-1: config 0 descriptor??
[  392.287660][   T35] rc_core: IR keymap rc-hauppauge not found
[  392.289747][   T35] Registered IR keymap rc-empty
[  392.293117][   T35] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0
[  392.298294][   T35] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0/input80
[  392.504111][ T1290] usb 8-1: USB disconnect, device number 46
[  392.805843][T13143] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.2055'.
[  394.131714][ T1290] usb 5-1: USB disconnect, device number 46
[  394.260374][T13180] usb usb8: usbfs: process 13180 (syz.3.2063) did not claim interface 0 before use
[  394.657949][ T1290] usb 5-1: new high-speed USB device number 47 using dummy_hcd
[  394.832296][T13191] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.2066'.
[  394.848723][ T5380] usb 6-1: new high-speed USB device number 51 using dummy_hcd
[  394.850689][ T1290] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
[  394.854574][ T1290] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  394.864701][ T1290] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  394.867755][ T1290] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  394.870117][ T1290] usb 5-1: Manufacturer: syz
[  394.873851][ T1290] usb 5-1: config 0 descriptor??
[  394.937977][ T1290] rc_core: IR keymap rc-hauppauge not found
[  394.939570][ T1290] Registered IR keymap rc-empty
[  394.942250][ T1290] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0
[  394.952045][ T1290] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input81
[  395.040185][ T5380] usb 6-1: config index 0 descriptor too short (expected 23569, got 27)
[  395.046265][ T5380] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  395.061462][ T5380] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  395.063927][ T5380] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  395.066066][ T5380] usb 6-1: Manufacturer: syz
[  395.071353][ T5380] usb 6-1: config 0 descriptor??
[  395.189767][ T5380] rc_core: IR keymap rc-hauppauge not found
[  395.191591][ T5380] Registered IR keymap rc-empty
[  395.195212][ T5380] rc rc1: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc1
[  395.204148][ T5380] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc1/input82
[  395.559981][  T831] usb 6-1: USB disconnect, device number 51
[  395.695872][ T5380] usb 5-1: USB disconnect, device number 47
[  396.917746][T13232] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.2078'.
[  397.220178][T13233] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0
[  398.337406][   T39] audit: type=1326 audit(1726579544.447:3336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13256 comm="syz.1.2084" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fba4cb7def9 code=0x0
[  398.498258][   T25] usb 5-1: new high-speed USB device number 48 using dummy_hcd
[  398.709638][   T25] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
[  398.711774][   T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  398.719463][   T25] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  398.722708][   T25] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  398.725491][   T25] usb 5-1: Manufacturer: syz
[  398.729400][   T25] usb 5-1: config 0 descriptor??
[  398.797786][   T25] rc_core: IR keymap rc-hauppauge not found
[  398.799448][   T25] Registered IR keymap rc-empty
[  398.808185][   T25] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0
[  398.811559][   T25] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input83
[  398.867176][   T25] IPVS: starting estimator thread 0...
[  398.959737][T13266] IPVS: using max 20 ests per chain, 48000 per kthread
[  399.361980][  T830] usb 5-1: USB disconnect, device number 48
[  399.893166][T13282] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.2090'.
[  399.903364][T13284] input: syz0 as /devices/virtual/input/input84
[  399.972967][   T35] hid-generic 0000:0000:0000.0008: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz1
[  400.546841][T13295] 9pnet_fd: Insufficient options for proto=fd
[  401.309120][  T831] usb 6-1: new high-speed USB device number 52 using dummy_hcd
[  401.349792][   T30] usb 7-1: new high-speed USB device number 52 using dummy_hcd
[  401.411978][   T39] audit: type=1326 audit(1726579547.527:3337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13320 comm="syz.0.2100" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb3517def9 code=0x7ffc0000
[  401.426520][   T39] audit: type=1326 audit(1726579547.537:3338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13320 comm="syz.0.2100" exe="/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fdb3517def9 code=0x7ffc0000
[  401.445336][   T39] audit: type=1326 audit(1726579547.537:3339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13320 comm="syz.0.2100" exe="/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fdb3517df33 code=0x7ffc0000
[  401.453083][   T39] audit: type=1326 audit(1726579547.537:3340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13320 comm="syz.0.2100" exe="/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fdb3517df33 code=0x7ffc0000
[  401.459165][   T39] audit: type=1326 audit(1726579547.537:3341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13320 comm="syz.0.2100" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb3517def9 code=0x7ffc0000
[  401.468044][   T39] audit: type=1326 audit(1726579547.537:3342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13320 comm="syz.0.2100" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb3517def9 code=0x7ffc0000
[  401.468096][   T39] audit: type=1326 audit(1726579547.567:3343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13320 comm="syz.0.2100" exe="/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7fdb3517def9 code=0x7ffc0000
[  401.468145][   T39] audit: type=1326 audit(1726579547.567:3344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13320 comm="syz.0.2100" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb3517def9 code=0x7ffc0000
[  401.468188][   T39] audit: type=1326 audit(1726579547.567:3345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13320 comm="syz.0.2100" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb3517def9 code=0x7ffc0000
[  401.499965][  T831] usb 6-1: config index 0 descriptor too short (expected 23569, got 27)
[  401.499996][  T831] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  401.501727][  T831] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  401.501743][  T831] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  401.501755][  T831] usb 6-1: Manufacturer: syz
[  401.507080][  T831] usb 6-1: config 0 descriptor??
[  401.567985][   T30] usb 7-1: Using ep0 maxpacket: 32
[  401.571393][   T30] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  401.584109][   T30] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  401.590362][   T30] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  401.592731][   T30] usb 7-1: Product: syz
[  401.594056][   T30] usb 7-1: Manufacturer: syz
[  401.595384][   T30] usb 7-1: SerialNumber: syz
[  401.599289][   T30] usb 7-1: config 0 descriptor??
[  401.601402][T13317] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  401.637886][  T831] rc_core: IR keymap rc-hauppauge not found
[  401.640553][  T831] Registered IR keymap rc-empty
[  401.643766][  T831] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0
[  401.656038][  T831] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0/input85
[  401.834976][T13329] tipc: Started in network mode
[  401.836900][T13329] tipc: Node identity ffffffff, cluster identity 4711
[  401.847699][T13329] tipc: Node number set to 4294967295
[  402.118200][   T35] usb 7-1: USB disconnect, device number 52
[  402.415709][T13347] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  402.623906][    T8] usb 6-1: USB disconnect, device number 52
[  403.047288][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.050099][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.052283][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.056355][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.059132][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.061542][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.061801][T13363] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.2112'.
[  403.063726][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.069390][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.071468][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.073630][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.075625][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.078167][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.088073][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.098003][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.100529][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.102530][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.104689][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.106678][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.110666][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.112854][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.114867][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.116904][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.120800][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.122993][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.125025][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.127049][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.130179][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.137926][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.140373][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.143002][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.145046][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.147013][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.149582][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.153066][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.155217][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.157240][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.162317][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.164524][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.166645][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.187096][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.191802][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.204825][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.209253][   T25] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  403.216656][   T25] hid-generic 0000:0000:0000.0009: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  403.343079][T13367] syzkaller1: entered promiscuous mode
[  403.345209][T13367] syzkaller1: entered allmulticast mode
[  403.370195][T13367] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2113'.
[  403.392050][   T39] kauditd_printk_skb: 28 callbacks suppressed
[  403.392069][   T39] audit: type=1400 audit(1726579549.507:3374): avc:  denied  { ioctl } for  pid=13365 comm="syz.1.2113" path="socket:[46798]" dev="sockfs" ino=46798 ioctlcmd=0x8922 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  403.494336][T13372] 9pnet_fd: Insufficient options for proto=fd
[  404.078393][T13380] 9pnet_fd: Insufficient options for proto=fd
[  404.095685][T13382] 9pnet_fd: Insufficient options for proto=fd
[  404.175808][   T39] audit: type=1400 audit(1726579550.287:3375): avc:  denied  { mounton } for  pid=13388 comm="syz.2.2120" path="/syzcgroup/cpu/syz2/cgroup.procs" dev="cgroup" ino=289 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=file permissive=1
[  404.190062][   T39] audit: type=1400 audit(1726579550.287:3376): avc:  denied  { write } for  pid=35 comm="kworker/3:0" path="socket:[47906]" dev="sockfs" ino=47906 scontext=system_u:system_r:kernel_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  404.577677][   T35] usb 6-1: new high-speed USB device number 53 using dummy_hcd
[  404.777406][   T35] usb 6-1: config index 0 descriptor too short (expected 23569, got 27)
[  404.786784][   T35] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  404.804619][   T35] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  404.818428][   T35] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  404.822716][   T35] usb 6-1: Manufacturer: syz
[  404.842548][   T35] usb 6-1: config 0 descriptor??
[  404.920531][T13411] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.2126'.
[  404.958108][   T35] rc_core: IR keymap rc-hauppauge not found
[  404.960383][   T35] Registered IR keymap rc-empty
[  404.968555][   T35] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0
[  404.983752][   T35] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0/input86
[  405.281133][T13415] 9pnet_fd: Insufficient options for proto=fd
[  405.551176][T13420] binder: 13419:13420 unknown command 0
[  405.553030][T13420] binder: 13419:13420 ioctl c0306201 20000100 returned -22
[  405.925587][T13434] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2133'.
[  406.091142][   T25] usb 6-1: USB disconnect, device number 53
[  407.421416][   T39] audit: type=1400 audit(1726579553.517:3377): avc:  denied  { sqpoll } for  pid=13458 comm="syz.3.2140" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  407.426411][   T39] audit: type=1400 audit(1726579553.517:3378): avc:  denied  { mount } for  pid=13458 comm="syz.3.2140" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  407.882549][   T39] audit: type=1400 audit(1726579553.997:3379): avc:  denied  { getopt } for  pid=13484 comm="syz.2.2148" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  407.899684][  T831] usb 8-1: new low-speed USB device number 47 using dummy_hcd
[  407.920629][T13485] input: syz1 as /devices/virtual/input/input87
[  408.089850][  T831] usb 8-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  408.092407][  T831] usb 8-1: config 246 descriptor has 1 excess byte, ignoring
[  408.094369][  T831] usb 8-1: config 246 has 1 interface, different from the descriptor's value: 42
[  408.096760][  T831] usb 8-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  408.100024][  T831] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 77, setting to 8
[  408.102673][  T831] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  408.106326][  T831] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  408.110269][  T831] usb 8-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  408.112507][  T831] usb 8-1: config 246 descriptor has 1 excess byte, ignoring
[  408.114501][  T831] usb 8-1: config 246 has 1 interface, different from the descriptor's value: 42
[  408.116891][  T831] usb 8-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  408.120333][  T831] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 77, setting to 8
[  408.123064][  T831] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  408.126000][  T831] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  408.130288][  T831] usb 8-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  408.132815][  T831] usb 8-1: config 246 descriptor has 1 excess byte, ignoring
[  408.135149][  T831] usb 8-1: config 246 has 1 interface, different from the descriptor's value: 42
[  408.137872][  T831] usb 8-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  408.140847][  T831] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 77, setting to 8
[  408.143683][  T831] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  408.146645][  T831] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  408.156426][  T831] usb 8-1: string descriptor 0 read error: -22
[  408.158530][   T30] usb 6-1: new high-speed USB device number 54 using dummy_hcd
[  408.160951][  T831] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  408.163493][  T831] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  408.180923][  T831] adutux 8-1:246.0: ADU100  now attached to /dev/usb/adutux0
[  408.352760][   T30] usb 6-1: config index 0 descriptor too short (expected 23569, got 27)
[  408.355903][   T30] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  408.364159][   T30] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  408.367483][   T30] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  408.370545][   T30] usb 6-1: Manufacturer: syz
[  408.375997][   T30] usb 6-1: config 0 descriptor??
[  408.492242][   T39] audit: type=1400 audit(1726579554.607:3380): avc:  denied  { read } for  pid=13496 comm="syz.2.2150" name="usbmon0" dev="devtmpfs" ino=723 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  408.501442][   T30] rc_core: IR keymap rc-hauppauge not found
[  408.501456][   T30] Registered IR keymap rc-empty
[  408.505402][   T30] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0
[  408.505399][   T39] audit: type=1400 audit(1726579554.607:3381): avc:  denied  { open } for  pid=13496 comm="syz.2.2150" path="/dev/usbmon0" dev="devtmpfs" ino=723 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  408.505446][   T39] audit: type=1400 audit(1726579554.607:3382): avc:  denied  { ioctl } for  pid=13496 comm="syz.2.2150" path="/dev/usbmon0" dev="devtmpfs" ino=723 ioctlcmd=0x9208 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  408.516181][   T30] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0/input88
[  408.716396][   T39] audit: type=1400 audit(1726579554.827:3383): avc:  denied  { read } for  pid=13505 comm="syz.2.2153" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  409.003636][T13514] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.2155'.
[  409.289631][ T5380] usb 6-1: USB disconnect, device number 54
[  409.620249][T13523] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2157'.
[  410.717048][T13550] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.2164'.
[  411.679871][  T830] usb 6-1: new high-speed USB device number 55 using dummy_hcd
[  411.754116][T13569] 9pnet_fd: Insufficient options for proto=fd
[  411.765493][T13567] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2168'.
[  411.872331][  T830] usb 6-1: config index 0 descriptor too short (expected 23569, got 27)
[  411.875018][  T830] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  411.883375][  T830] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  411.886098][  T830] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  411.891491][  T830] usb 6-1: Manufacturer: syz
[  411.900553][  T830] usb 6-1: config 0 descriptor??
[  412.080526][  T830] rc_core: IR keymap rc-hauppauge not found
[  412.085097][  T830] Registered IR keymap rc-empty
[  412.093011][  T830] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0
[  412.102702][  T830] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0/input89
[  412.529135][ T5400] usb 8-1: USB disconnect, device number 47
[  412.717457][   T39] audit: type=1400 audit(1726579558.827:3384): avc:  denied  { bind } for  pid=13581 comm="syz.2.2180" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  412.732431][   T39] audit: type=1400 audit(1726579558.847:3385): avc:  denied  { listen } for  pid=13581 comm="syz.2.2180" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  412.738615][T13579] input: syz1 as /devices/virtual/input/input90
[  412.843307][   T30] usb 6-1: USB disconnect, device number 55
[  412.973306][T13594] xt_addrtype: output interface limitation not valid in PREROUTING and INPUT
[  413.254843][T13596] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.2177'.
[  413.615889][T13599] 9pnet_fd: Insufficient options for proto=fd
[  413.899605][    T8] usb 8-1: new low-speed USB device number 48 using dummy_hcd
[  414.081564][    T8] usb 8-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  414.084416][    T8] usb 8-1: config 246 descriptor has 1 excess byte, ignoring
[  414.086491][    T8] usb 8-1: config 246 has 1 interface, different from the descriptor's value: 42
[  414.090250][    T8] usb 8-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  414.093259][    T8] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 77, setting to 8
[  414.096053][    T8] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  414.108207][    T8] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  414.111890][    T8] usb 8-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  414.114586][    T8] usb 8-1: config 246 descriptor has 1 excess byte, ignoring
[  414.116496][    T8] usb 8-1: config 246 has 1 interface, different from the descriptor's value: 42
[  414.121739][    T8] usb 8-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  414.124666][    T8] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 77, setting to 8
[  414.127370][    T8] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  414.139735][    T8] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  414.148410][    T8] usb 8-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  414.151049][    T8] usb 8-1: config 246 descriptor has 1 excess byte, ignoring
[  414.153030][    T8] usb 8-1: config 246 has 1 interface, different from the descriptor's value: 42
[  414.155503][    T8] usb 8-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  414.168811][    T8] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 77, setting to 8
[  414.171656][    T8] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  414.174522][    T8] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  414.190189][    T8] usb 8-1: string descriptor 0 read error: -22
[  414.192037][    T8] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  414.194528][    T8] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  414.220508][    T8] adutux 8-1:246.0: ADU100  now attached to /dev/usb/adutux0
[  414.845789][T13618] ieee802154 phy1 wpan1: encryption failed: -90
[  415.544673][T13631] 9pnet_fd: Insufficient options for proto=fd
[  415.774289][T13637] 9pnet_fd: Insufficient options for proto=fd
[  415.824057][T13639] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.2192'.
[  415.868774][ T1290] usb 6-1: new high-speed USB device number 56 using dummy_hcd
[  416.060199][ T1290] usb 6-1: config index 0 descriptor too short (expected 23569, got 27)
[  416.065842][ T1290] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  416.080362][ T1290] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  416.083651][ T1290] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  416.086418][ T1290] usb 6-1: Manufacturer: syz
[  416.098161][ T1290] usb 6-1: config 0 descriptor??
[  416.178552][ T1290] rc_core: IR keymap rc-hauppauge not found
[  416.182294][ T1290] Registered IR keymap rc-empty
[  416.189806][ T1290] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0
[  416.194907][ T1290] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0/input91
[  417.046549][ T1290] usb 6-1: USB disconnect, device number 56
[  417.664122][T13673] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.2202'.
[  418.620108][   T35] usb 8-1: USB disconnect, device number 48
[  418.948567][ T5400] usb 6-1: new low-speed USB device number 57 using dummy_hcd
[  419.141658][ T5400] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  419.158296][ T5400] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[  419.161291][ T5400] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[  419.164567][ T5400] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  419.178401][ T5400] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 77, setting to 8
[  419.185182][ T5400] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  419.189946][ T5400] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  419.195838][ T5400] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  419.199350][ T5400] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[  419.202200][ T5400] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[  419.205845][ T5400] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  419.213228][ T5400] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 77, setting to 8
[  419.217947][ T5400] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  419.222022][ T5400] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  419.228812][ T5400] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  419.231119][ T5400] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[  419.233110][ T5400] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[  419.247199][ T5400] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  419.255954][ T5400] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 77, setting to 8
[  419.262938][ T5400] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  419.267966][ T5400] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  419.288006][ T5400] usb 6-1: string descriptor 0 read error: -22
[  419.289801][ T5400] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  419.292375][ T5400] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  419.320755][ T5400] adutux 6-1:246.0: ADU100  now attached to /dev/usb/adutux0
[  419.747775][ T5400] usb 8-1: new high-speed USB device number 49 using dummy_hcd
[  419.905496][T13721] can: request_module (can-proto-0) failed.
[  419.929339][ T5400] usb 8-1: config index 0 descriptor too short (expected 23569, got 27)
[  419.931916][ T5400] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  419.935300][ T5400] usb 8-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  419.937975][ T5400] usb 8-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  419.940071][ T5400] usb 8-1: Manufacturer: syz
[  419.942646][ T5400] usb 8-1: config 0 descriptor??
[  420.048571][ T5400] rc_core: IR keymap rc-hauppauge not found
[  420.050763][ T5400] Registered IR keymap rc-empty
[  420.059710][ T5400] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0
[  420.065290][ T5400] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0/input92
[  420.294214][T13728] FAULT_INJECTION: forcing a failure.
[  420.294214][T13728] name failslab, interval 1, probability 0, space 0, times 0
[  420.301398][T13728] CPU: 1 UID: 0 PID: 13728 Comm: syz.0.2216 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0
[  420.305241][T13728] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  420.309178][T13728] Call Trace:
[  420.310409][T13728]  <TASK>
[  420.311515][T13728]  dump_stack_lvl+0x16c/0x1f0
[  420.313288][T13728]  should_fail_ex+0x497/0x5b0
[  420.314994][T13728]  ? fs_reclaim_acquire+0xae/0x160
[  420.316877][T13728]  should_failslab+0xc2/0x120
[  420.318593][T13728]  __kmalloc_cache_noprof+0x6b/0x300
[  420.320526][T13728]  ? macvlan_common_newlink+0x407/0x1a10
[  420.322520][T13728]  macvlan_common_newlink+0x407/0x1a10
[  420.324470][T13728]  ? __pfx_macvlan_common_newlink+0x10/0x10
[  420.326597][T13728]  ? rtnl_create_link+0xa51/0xfa0
[  420.328386][T13728]  ? __pfx_macvlan_newlink+0x10/0x10
[  420.330237][T13728]  __rtnl_newlink+0x1197/0x1920
[  420.331966][T13728]  ? __pfx___rtnl_newlink+0x10/0x10
[  420.333822][T13728]  rtnl_newlink+0x67/0xa0
[  420.335117][T13728]  ? __pfx_rtnl_newlink+0x10/0x10
[  420.336469][T13728]  rtnetlink_rcv_msg+0x3c7/0xea0
[  420.337935][T13728]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  420.339910][T13728]  netlink_rcv_skb+0x16b/0x440
[  420.341701][T13728]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  420.343311][T13728]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  420.344744][T13728]  ? netlink_deliver_tap+0x1ae/0xd90
[  420.346187][T13728]  netlink_unicast+0x53c/0x7f0
[  420.347614][T13728]  ? __pfx_netlink_unicast+0x10/0x10
[  420.349157][T13728]  netlink_sendmsg+0x8b8/0xd70
[  420.350477][T13728]  ? __pfx_netlink_sendmsg+0x10/0x10
[  420.351928][T13728]  ? __import_iovec+0x1fd/0x6e0
[  420.353460][T13728]  ____sys_sendmsg+0xaaf/0xc90
[  420.354941][T13728]  ? copy_msghdr_from_user+0x10b/0x160
[  420.356464][T13728]  ? __pfx_____sys_sendmsg+0x10/0x10
[  420.358367][T13728]  ? __pfx___lock_acquire+0x10/0x10
[  420.360314][T13728]  ___sys_sendmsg+0x135/0x1e0
[  420.362057][T13728]  ? __pfx____sys_sendmsg+0x10/0x10
[  420.363916][T13728]  ? find_held_lock+0x2d/0x110
[  420.365394][T13728]  ? ksys_write+0x21c/0x260
[  420.366781][T13728]  ? __fget_light+0x173/0x210
[  420.368166][T13728]  __sys_sendmsg+0x117/0x1f0
[  420.369399][T13728]  ? __pfx___sys_sendmsg+0x10/0x10
[  420.370954][T13728]  do_syscall_64+0xcd/0x250
[  420.372197][T13728]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.373773][T13728] RIP: 0033:0x7fdb3517def9
[  420.374959][T13728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  420.381125][T13728] RSP: 002b:00007fdb3604b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  420.383474][T13728] RAX: ffffffffffffffda RBX: 00007fdb35335f80 RCX: 00007fdb3517def9
[  420.385709][T13728] RDX: 0000000000000000 RSI: 0000000020000440 RDI: 0000000000000003
[  420.388077][T13728] RBP: 00007fdb3604b090 R08: 0000000000000000 R09: 0000000000000000
[  420.390139][T13728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  420.392201][T13728] R13: 0000000000000000 R14: 00007fdb35335f80 R15: 00007fff19d7ce08
[  420.394267][T13728]  </TASK>
[  420.449660][T13730] FAULT_INJECTION: forcing a failure.
[  420.449660][T13730] name failslab, interval 1, probability 0, space 0, times 0
[  420.453383][T13730] CPU: 1 UID: 0 PID: 13730 Comm: syz.0.2218 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0
[  420.456558][T13730] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  420.460337][T13730] Call Trace:
[  420.461521][T13730]  <TASK>
[  420.462587][T13730]  dump_stack_lvl+0x16c/0x1f0
[  420.464299][T13730]  should_fail_ex+0x497/0x5b0
[  420.466009][T13730]  ? fs_reclaim_acquire+0xae/0x160
[  420.467480][T13730]  should_failslab+0xc2/0x120
[  420.468766][T13730]  __kmalloc_cache_node_noprof+0x6e/0x350
[  420.470304][T13730]  ? __get_vm_area_node+0xe1/0x2d0
[  420.472018][T13730]  __get_vm_area_node+0xe1/0x2d0
[  420.473760][T13730]  ? vmap_small_pages_range_noflush+0x7d2/0xd30
[  420.475767][T13730]  __vmalloc_node_range_noprof+0x270/0x14e0
[  420.477921][T13730]  ? bpf_prog_calc_tag+0x108/0x720
[  420.479858][T13730]  ? kasan_save_stack+0x33/0x60
[  420.481536][T13730]  ? __pfx_cmp_subprogs+0x10/0x10
[  420.483332][T13730]  ? bpf_prog_calc_tag+0x108/0x720
[  420.485107][T13730]  ? __pfx_cmp_subprogs+0x10/0x10
[  420.486849][T13730]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  420.489002][T13730]  ? add_subprog+0x276/0x380
[  420.490615][T13730]  ? __pfx_add_subprog+0x10/0x10
[  420.492376][T13730]  ? bpf_prog_calc_tag+0x108/0x720
[  420.494203][T13730]  vmalloc_noprof+0x6b/0x90
[  420.495428][T13730]  ? bpf_prog_calc_tag+0x108/0x720
[  420.496759][T13730]  bpf_prog_calc_tag+0x108/0x720
[  420.498184][T13730]  ? __pfx_bpf_prog_calc_tag+0x10/0x10
[  420.499636][T13730]  ? __pfx_add_subprog_and_kfunc+0x10/0x10
[  420.501559][T13730]  ? check_subprogs+0x57c/0x7d0
[  420.503138][T13730]  bpf_check+0x4b9a/0x9e50
[  420.504749][T13730]  ? security_bpf_prog_load+0x211/0x240
[  420.506507][T13730]  ? bpf_prog_load+0xe81/0x2660
[  420.507895][T13730]  ? __sys_bpf+0x8e3/0x49c0
[  420.509380][T13730]  ? do_syscall_64+0xcd/0x250
[  420.510792][T13730]  ? __pfx_bpf_check+0x10/0x10
[  420.512163][T13730]  ? __kasan_kmalloc+0xaa/0xb0
[  420.513577][T13730]  ? selinux_bpf_prog_load+0x15f/0x1c0
[  420.515435][T13730]  bpf_prog_load+0xedb/0x2660
[  420.517142][T13730]  ? __pfx_bpf_prog_load+0x10/0x10
[  420.518931][T13730]  ? avc_has_perm_noaudit+0x143/0x3a0
[  420.520868][T13730]  ? selinux_bpf+0xde/0x130
[  420.522488][T13730]  __sys_bpf+0x8e3/0x49c0
[  420.524059][T13730]  ? ksys_write+0x21c/0x260
[  420.525736][T13730]  ? reacquire_held_locks+0x480/0x4c0
[  420.527544][T13730]  ? __pfx___sys_bpf+0x10/0x10
[  420.529187][T13730]  ? vfs_write+0x14d/0x1140
[  420.530757][T13730]  ? __mutex_unlock_slowpath+0x164/0x650
[  420.532347][T13730]  ? fput+0x30/0x390
[  420.533458][T13730]  ? ksys_write+0x1ab/0x260
[  420.534948][T13730]  ? __pfx_ksys_write+0x10/0x10
[  420.536438][T13730]  __x64_sys_bpf+0x78/0xc0
[  420.537526][T13730]  ? lockdep_hardirqs_on+0x7c/0x110
[  420.539394][T13730]  do_syscall_64+0xcd/0x250
[  420.541055][T13730]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.543225][T13730] RIP: 0033:0x7fdb3517def9
[  420.544644][T13730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  420.550605][T13730] RSP: 002b:00007fdb3604b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  420.552938][T13730] RAX: ffffffffffffffda RBX: 00007fdb35335f80 RCX: 00007fdb3517def9
[  420.555039][T13730] RDX: 0000000000000080 RSI: 0000000020000340 RDI: 0000000000000005
[  420.557335][T13730] RBP: 00007fdb3604b090 R08: 0000000000000000 R09: 0000000000000000
[  420.560312][T13730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  420.562649][T13730] R13: 0000000000000000 R14: 00007fdb35335f80 R15: 00007fff19d7ce08
[  420.564868][T13730]  </TASK>
[  420.571371][T13730] syz.0.2218: vmalloc error: size 64, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=syz0,mems_allowed=0-1
[  420.583360][T13730] CPU: 1 UID: 0 PID: 13730 Comm: syz.0.2218 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0
[  420.586803][T13730] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  420.589763][T13730] Call Trace:
[  420.590957][T13730]  <TASK>
[  420.592013][T13730]  dump_stack_lvl+0x16c/0x1f0
[  420.593738][T13730]  warn_alloc+0x24d/0x3a0
[  420.595259][T13730]  ? __pfx_warn_alloc+0x10/0x10
[  420.596723][T13730]  ? rcu_is_watching+0x12/0xc0
[  420.597971][T13730]  ? trace_kmalloc+0x2d/0xe0
[  420.599188][T13730]  ? __kasan_kmalloc+0x8a/0xb0
[  420.600386][T13730]  ? __get_vm_area_node+0x1bc/0x2d0
[  420.601783][T13730]  __vmalloc_node_range_noprof+0xc0d/0x14e0
[  420.603502][T13730]  ? kasan_save_stack+0x33/0x60
[  420.605246][T13730]  ? __pfx_cmp_subprogs+0x10/0x10
[  420.606916][T13730]  ? bpf_prog_calc_tag+0x108/0x720
[  420.608247][T13730]  ? __pfx_cmp_subprogs+0x10/0x10
[  420.609995][T13730]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  420.612220][T13730]  ? add_subprog+0x276/0x380
[  420.613843][T13730]  ? __pfx_add_subprog+0x10/0x10
[  420.615563][T13730]  ? bpf_prog_calc_tag+0x108/0x720
[  420.617302][T13730]  vmalloc_noprof+0x6b/0x90
[  420.618506][T13730]  ? bpf_prog_calc_tag+0x108/0x720
[  420.619881][T13730]  bpf_prog_calc_tag+0x108/0x720
[  420.621102][T13730]  ? __pfx_bpf_prog_calc_tag+0x10/0x10
[  420.622541][T13730]  ? __pfx_add_subprog_and_kfunc+0x10/0x10
[  420.624294][T13730]  ? check_subprogs+0x57c/0x7d0
[  420.626058][T13730]  bpf_check+0x4b9a/0x9e50
[  420.627343][T13730]  ? security_bpf_prog_load+0x211/0x240
[  420.629291][T13730]  ? bpf_prog_load+0xe81/0x2660
[  420.631021][T13730]  ? __sys_bpf+0x8e3/0x49c0
[  420.632682][T13730]  ? do_syscall_64+0xcd/0x250
[  420.634472][T13730]  ? __pfx_bpf_check+0x10/0x10
[  420.636304][T13730]  ? __kasan_kmalloc+0xaa/0xb0
[  420.638142][T13730]  ? selinux_bpf_prog_load+0x15f/0x1c0
[  420.640178][T13730]  bpf_prog_load+0xedb/0x2660
[  420.641861][T13730]  ? __pfx_bpf_prog_load+0x10/0x10
[  420.643676][T13730]  ? avc_has_perm_noaudit+0x143/0x3a0
[  420.645614][T13730]  ? selinux_bpf+0xde/0x130
[  420.647273][T13730]  __sys_bpf+0x8e3/0x49c0
[  420.648848][T13730]  ? ksys_write+0x21c/0x260
[  420.650587][T13730]  ? reacquire_held_locks+0x480/0x4c0
[  420.652717][T13730]  ? __pfx___sys_bpf+0x10/0x10
[  420.654514][T13730]  ? vfs_write+0x14d/0x1140
[  420.656168][T13730]  ? __mutex_unlock_slowpath+0x164/0x650
[  420.657837][T13730]  ? fput+0x30/0x390
[  420.658872][T13730]  ? ksys_write+0x1ab/0x260
[  420.660201][T13730]  ? __pfx_ksys_write+0x10/0x10
[  420.661941][T13730]  __x64_sys_bpf+0x78/0xc0
[  420.663549][T13730]  ? lockdep_hardirqs_on+0x7c/0x110
[  420.665273][T13730]  do_syscall_64+0xcd/0x250
[  420.666890][T13730]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.669017][T13730] RIP: 0033:0x7fdb3517def9
[  420.670605][T13730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  420.677358][T13730] RSP: 002b:00007fdb3604b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  420.680421][T13730] RAX: ffffffffffffffda RBX: 00007fdb35335f80 RCX: 00007fdb3517def9
[  420.683255][T13730] RDX: 0000000000000080 RSI: 0000000020000340 RDI: 0000000000000005
[  420.685625][T13730] RBP: 00007fdb3604b090 R08: 0000000000000000 R09: 0000000000000000
[  420.687670][T13730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  420.690086][T13730] R13: 0000000000000000 R14: 00007fdb35335f80 R15: 00007fff19d7ce08
[  420.692954][T13730]  </TASK>
[  420.696710][T13730] Mem-Info:
[  420.698891][T13730] active_anon:8428 inactive_anon:0 isolated_anon:0
[  420.698891][T13730]  active_file:3609 inactive_file:50349 isolated_file:0
[  420.698891][T13730]  unevictable:1768 dirty:236 writeback:0
[  420.698891][T13730]  slab_reclaimable:6604 slab_unreclaimable:83376
[  420.698891][T13730]  mapped:27919 shmem:2300 pagetables:977
[  420.698891][T13730]  sec_pagetables:314 bounce:0
[  420.698891][T13730]  kernel_misc_reclaimable:0
[  420.698891][T13730]  free:453912 free_pcp:2410 free_cma:0
[  420.713283][T13730] Node 0 active_anon:33588kB inactive_anon:0kB active_file:14436kB inactive_file:201316kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:111676kB dirty:940kB writeback:0kB shmem:5664kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11984kB pagetables:3908kB sec_pagetables:1256kB all_unreclaimable? no
[  420.740388][T13730] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:80kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  420.757706][T13730] Node 0 DMA free:15360kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  420.767934][T13730] lowmem_reserve[]: 0 1218 0 0 0
[  420.769963][T13730] Node 0 DMA32 free:160840kB boost:0kB min:27696kB low:34620kB high:41544kB reserved_highatomic:0KB active_anon:31728kB inactive_anon:0kB active_file:14436kB inactive_file:201316kB unevictable:3536kB writepending:940kB present:2080628kB managed:1274728kB mlocked:0kB bounce:0kB free_pcp:9840kB local_pcp:3984kB free_cma:0kB
[  420.781821][T13730] lowmem_reserve[]: 0 0 0 0 0
[  420.788595][T13730] Node 1 Normal free:1641556kB boost:0kB min:39540kB low:49424kB high:59308kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:80kB unevictable:3536kB writepending:4kB present:2097152kB managed:1781924kB mlocked:0kB bounce:0kB free_pcp:248kB local_pcp:0kB free_cma:0kB
[  420.800682][T13730] lowmem_reserve[]: 0 0 0 0 0
[  420.802550][T13730] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (U) = 15360kB
[  420.807201][T13730] Node 0 DMA32: 531*4kB (UME) 730*8kB (UME) 318*16kB (UME) 274*32kB (UME) 300*64kB (UME) 141*128kB (UME) 53*256kB (UME) 28*512kB (UME) 12*1024kB (UM) 10*2048kB (UM) 10*4096kB (UM) = 160700kB
[  420.814321][T13730] Node 1 Normal: 33*4kB (UM) 34*8kB (UM) 16*16kB (UM) 18*32kB (UM) 24*64kB (UM) 7*128kB (UM) 4*256kB (U) 9*512kB (UM) 2*1024kB (U) 4*2048kB (UM) 396*4096kB (UM) = 1641556kB
[  420.820673][T13730] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  420.824648][T13730] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  420.828442][T13730] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  420.832206][T13730] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  420.835750][T13730] 56247 total pagecache pages
[  420.838253][T13730] 5 pages in swap cache
[  420.839979][T13730] Free swap  = 123884kB
[  420.841559][T13730] Total swap = 124996kB
[  420.842842][T13730] 1048443 pages RAM
[  420.844409][T13730] 0 pages HighMem/MovableOnly
[  420.846664][T13730] 280440 pages reserved
[  420.849837][T13730] 0 pages cma reserved
[  420.960307][T13745] FAULT_INJECTION: forcing a failure.
[  420.960307][T13745] name failslab, interval 1, probability 0, space 0, times 0
[  420.963897][T13745] CPU: 0 UID: 0 PID: 13745 Comm: syz.0.2229 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0
[  420.966620][T13745] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  420.969450][T13745] Call Trace:
[  420.970331][T13745]  <TASK>
[  420.971468][T13745]  dump_stack_lvl+0x16c/0x1f0
[  420.972778][T13745]  should_fail_ex+0x497/0x5b0
[  420.974028][T13745]  ? fs_reclaim_acquire+0xae/0x160
[  420.975391][T13745]  should_failslab+0xc2/0x120
[  420.976614][T13745]  kmem_cache_alloc_node_noprof+0x71/0x310
[  420.978112][T13745]  ? __alloc_skb+0x2b1/0x380
[  420.979329][T13745]  __alloc_skb+0x2b1/0x380
[  420.980541][T13745]  ? __pfx___alloc_skb+0x10/0x10
[  420.981883][T13745]  ? module_put+0xd/0x30
[  420.983048][T13745]  ? rtnetlink_rcv_msg+0x3e6/0xea0
[  420.984461][T13745]  netlink_ack+0x164/0xb90
[  420.985692][T13745]  netlink_rcv_skb+0x348/0x440
[  420.987024][T13745]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  420.988506][T13745]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  420.989901][T13745]  ? netlink_deliver_tap+0x1ae/0xd90
[  420.991280][T13745]  netlink_unicast+0x53c/0x7f0
[  420.992554][T13745]  ? __pfx_netlink_unicast+0x10/0x10
[  420.993950][T13745]  netlink_sendmsg+0x8b8/0xd70
[  420.995216][T13745]  ? __pfx_netlink_sendmsg+0x10/0x10
[  420.996606][T13745]  ? __import_iovec+0x1fd/0x6e0
[  420.997897][T13745]  ____sys_sendmsg+0xaaf/0xc90
[  420.999154][T13745]  ? copy_msghdr_from_user+0x10b/0x160
[  421.000602][T13745]  ? __pfx_____sys_sendmsg+0x10/0x10
[  421.001994][T13745]  ? __pfx___lock_acquire+0x10/0x10
[  421.003358][T13745]  ___sys_sendmsg+0x135/0x1e0
[  421.004611][T13745]  ? __pfx____sys_sendmsg+0x10/0x10
[  421.005972][T13745]  ? find_held_lock+0x2d/0x110
[  421.007232][T13745]  ? ksys_write+0x21c/0x260
[  421.008438][T13745]  ? __fget_light+0x173/0x210
[  421.009669][T13745]  __sys_sendmsg+0x117/0x1f0
[  421.010893][T13745]  ? __pfx___sys_sendmsg+0x10/0x10
[  421.012249][T13745]  do_syscall_64+0xcd/0x250
[  421.013464][T13745]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  421.014987][T13745] RIP: 0033:0x7fdb3517def9
[  421.016176][T13745] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  421.021546][T13745] RSP: 002b:00007fdb3604b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  421.023813][T13745] RAX: ffffffffffffffda RBX: 00007fdb35335f80 RCX: 00007fdb3517def9
[  421.025742][T13745] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003
[  421.027768][T13745] RBP: 00007fdb3604b090 R08: 0000000000000000 R09: 0000000000000000
[  421.029837][T13745] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  421.031873][T13745] R13: 0000000000000000 R14: 00007fdb35335f80 R15: 00007fff19d7ce08
[  421.033927][T13745]  </TASK>
[  421.630091][ T5380] usb 8-1: USB disconnect, device number 49
[  422.279355][T13762] FAULT_INJECTION: forcing a failure.
[  422.279355][T13762] name failslab, interval 1, probability 0, space 0, times 0
[  422.283442][T13760] 9pnet_fd: Insufficient options for proto=fd
[  422.283606][T13762] CPU: 3 UID: 0 PID: 13762 Comm: syz.0.2235 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0
[  422.289118][T13762] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  422.292705][T13762] Call Trace:
[  422.293858][T13762]  <TASK>
[  422.294886][T13762]  dump_stack_lvl+0x16c/0x1f0
[  422.296421][T13762]  should_fail_ex+0x497/0x5b0
[  422.297617][T13762]  ? fs_reclaim_acquire+0xae/0x160
[  422.298927][T13762]  should_failslab+0xc2/0x120
[  422.300273][T13762]  __kmalloc_cache_node_noprof+0x6e/0x350
[  422.301894][T13762]  ? __get_vm_area_node+0xe1/0x2d0
[  422.303654][T13762]  __get_vm_area_node+0xe1/0x2d0
[  422.305380][T13762]  ? vmap_small_pages_range_noflush+0x7d2/0xd30
[  422.307738][T13762]  __vmalloc_node_range_noprof+0x270/0x14e0
[  422.310214][T13762]  ? bpf_prog_calc_tag+0x108/0x720
[  422.312040][T13762]  ? kasan_save_stack+0x33/0x60
[  422.313827][T13762]  ? __pfx_cmp_subprogs+0x10/0x10
[  422.315623][T13762]  ? bpf_prog_calc_tag+0x108/0x720
[  422.317369][T13762]  ? __pfx_cmp_subprogs+0x10/0x10
[  422.318848][T13762]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  422.320822][T13762]  ? add_subprog+0x276/0x380
[  422.322470][T13762]  ? __pfx_add_subprog+0x10/0x10
[  422.324222][T13762]  ? bpf_prog_calc_tag+0x108/0x720
[  422.326094][T13762]  vmalloc_noprof+0x6b/0x90
[  422.327758][T13762]  ? bpf_prog_calc_tag+0x108/0x720
[  422.329567][T13762]  bpf_prog_calc_tag+0x108/0x720
[  422.331262][T13762]  ? __pfx_bpf_prog_calc_tag+0x10/0x10
[  422.333117][T13762]  ? __pfx_add_subprog_and_kfunc+0x10/0x10
[  422.335197][T13762]  ? check_subprogs+0x57c/0x7d0
[  422.335229][T13762]  bpf_check+0x4b9a/0x9e50
[  422.338301][T13762]  ? security_bpf_prog_load+0x211/0x240
[  422.339844][T13762]  ? bpf_prog_load+0xe81/0x2660
[  422.341634][T13762]  ? __sys_bpf+0x8e3/0x49c0
[  422.343281][T13762]  ? do_syscall_64+0xcd/0x250
[  422.345073][T13762]  ? __pfx_bpf_check+0x10/0x10
[  422.346875][T13762]  ? __kasan_kmalloc+0xaa/0xb0
[  422.348641][T13762]  ? selinux_bpf_prog_load+0x15f/0x1c0
[  422.350198][T13762]  bpf_prog_load+0xedb/0x2660
[  422.351577][T13762]  ? __pfx_bpf_prog_load+0x10/0x10
[  422.352976][T13762]  ? avc_has_perm_noaudit+0x143/0x3a0
[  422.354860][T13762]  ? selinux_bpf+0xde/0x130
[  422.356108][T13762]  __sys_bpf+0x8e3/0x49c0
[  422.357219][T13762]  ? ksys_write+0x21c/0x260
[  422.358435][T13762]  ? reacquire_held_locks+0x480/0x4c0
[  422.360244][T13762]  ? __pfx___sys_bpf+0x10/0x10
[  422.362153][T13762]  ? vfs_write+0x14d/0x1140
[  422.363825][T13762]  ? __mutex_unlock_slowpath+0x164/0x650
[  422.365489][T13762]  ? fput+0x30/0x390
[  422.366728][T13762]  ? ksys_write+0x1ab/0x260
[  422.367868][T13762]  ? __pfx_ksys_write+0x10/0x10
[  422.369255][T13762]  __x64_sys_bpf+0x78/0xc0
[  422.370745][T13762]  ? lockdep_hardirqs_on+0x7c/0x110
[  422.372126][T13762]  do_syscall_64+0xcd/0x250
[  422.373327][T13762]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  422.374868][T13762] RIP: 0033:0x7fdb3517def9
[  422.376052][T13762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  422.380855][T13762] RSP: 002b:00007fdb3604b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  422.383042][T13762] RAX: ffffffffffffffda RBX: 00007fdb35335f80 RCX: 00007fdb3517def9
[  422.385079][T13762] RDX: 0000000000000090 RSI: 00000000200000c0 RDI: 0000000000000005
[  422.387179][T13762] RBP: 00007fdb3604b090 R08: 0000000000000000 R09: 0000000000000000
[  422.389508][T13762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  422.391675][T13762] R13: 0000000000000000 R14: 00007fdb35335f80 R15: 00007fff19d7ce08
[  422.393867][T13762]  </TASK>
[  422.427093][T13770] 9pnet_fd: Insufficient options for proto=fd
[  422.629835][T13785] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2237'.
[  422.632239][T13785] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2237'.
[  422.694808][T13787] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.2238'.
[  422.927902][ T5400] usb 7-1: new high-speed USB device number 53 using dummy_hcd
[  422.967680][   T35] usb 8-1: new high-speed USB device number 50 using dummy_hcd
[  423.078523][ T5400] usb 7-1: device descriptor read/64, error -71
[  423.178094][   T35] usb 8-1: config index 0 descriptor too short (expected 23569, got 27)
[  423.180558][   T35] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  423.188230][   T35] usb 8-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  423.190672][   T35] usb 8-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  423.192791][   T35] usb 8-1: Manufacturer: syz
[  423.208290][   T35] usb 8-1: config 0 descriptor??
[  423.300716][T13793] 9pnet_fd: Insufficient options for proto=fd
[  423.307618][   T35] rc_core: IR keymap rc-hauppauge not found
[  423.309410][   T35] Registered IR keymap rc-empty
[  423.311689][   T35] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0
[  423.315539][   T35] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0/input93
[  423.368135][ T5400] usb 7-1: new high-speed USB device number 54 using dummy_hcd
[  423.518108][ T5400] usb 7-1: device descriptor read/64, error -71
[  423.641474][ T5400] usb usb7-port1: attempt power cycle
[  423.648769][   T62] usb 6-1: USB disconnect, device number 57
[  423.987184][   T62] usb 8-1: USB disconnect, device number 50
[  424.058362][ T5400] usb 7-1: new high-speed USB device number 55 using dummy_hcd
[  424.091482][ T5400] usb 7-1: device descriptor read/8, error -71
[  424.349584][   T39] audit: type=1400 audit(1726579570.467:3386): avc:  denied  { append } for  pid=13818 comm="syz.0.2247" path="/165/file0/blkio.bfq.io_wait_time" dev="9p" ino=39321950 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  424.378525][ T5400] usb 7-1: new high-speed USB device number 56 using dummy_hcd
[  424.420363][ T5400] usb 7-1: device descriptor read/8, error -71
[  424.538742][ T5400] usb usb7-port1: unable to enumerate USB device
[  424.579273][T13822] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.2248'.
[  424.772228][T13818] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x20023 pfn:0x4ef88
[  424.774878][T13818] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  424.776649][T13818] raw: 00fff00000000000 ffffea0001912b88 ffffea00013be248 0000000000000000
[  424.779381][T13818] raw: 0000000000020023 0000000000000000 00000000ffffffff 0000000000000000
[  424.781949][T13818] page dumped because: VM_BUG_ON_FOLIO(((unsigned int) folio_ref_count(folio) + 127u <= 127u))
[  424.784893][T13818] page_owner tracks the page as freed
[  424.786742][T13818] page last allocated via order 0, migratetype Movable, gfp_mask 0x140dca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_ZERO), pid 13784, tgid 13781 (syz.3.2236), ts 423141701125, free_ts 424505751581
[  424.794559][T13818]  post_alloc_hook+0x2d1/0x350
[  424.796519][T13818]  get_page_from_freelist+0x1351/0x2e50
[  424.798556][T13818]  __alloc_pages_noprof+0x22b/0x2460
[  424.800194][T13818]  alloc_pages_mpol_noprof+0x275/0x610
[  424.801955][T13818]  folio_alloc_mpol_noprof+0x36/0xd0
[  424.803594][T13818]  vma_alloc_folio_noprof+0xee/0x1b0
[  424.805373][T13818]  __handle_mm_fault+0x2dd7/0x5650
[  424.806914][T13818]  handle_mm_fault+0x498/0xa60
[  424.809297][T13818]  do_user_addr_fault+0x7a3/0x13f0
[  424.811377][T13818]  exc_page_fault+0x5c/0xc0
[  424.812710][T13818]  asm_exc_page_fault+0x26/0x30
[  424.814028][T13818] page last free pid 13781 tgid 13781 stack trace:
[  424.815751][T13818]  free_unref_folios+0x9e9/0x1390
[  424.817221][T13818]  folios_put_refs+0x560/0x760
[  424.819722][T13818]  free_pages_and_swap_cache+0x36d/0x510
[  424.821351][T13818]  __tlb_batch_free_encoded_pages+0xf9/0x290
[  424.822995][T13818]  tlb_flush_mmu+0xe9/0x590
[  424.824333][T13818]  unmap_page_range+0x1d20/0x3d30
[  424.825725][T13818]  unmap_single_vma+0x194/0x2b0
[  424.827042][T13818]  unmap_vmas+0x22f/0x490
[  424.829342][T13818]  exit_mmap+0x1b8/0xb20
[  424.831358][T13818]  __mmput+0x12a/0x480
[  424.832471][T13818]  mmput+0x62/0x70
[  424.833578][T13818]  do_exit+0x9bf/0x2bb0
[  424.834789][T13818]  do_group_exit+0xd3/0x2a0
[  424.836239][T13818]  __x64_sys_exit_group+0x3e/0x50
[  424.838543][T13818]  x64_sys_call+0x14a9/0x16a0
[  424.840016][T13818]  do_syscall_64+0xcd/0x250
[  424.843120][T13818] ------------[ cut here ]------------
[  424.844602][T13818] kernel BUG at include/linux/mm.h:1460!
[  424.846097][T13818] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI
[  424.848183][T13818] CPU: 3 UID: 0 PID: 13818 Comm: syz.0.2247 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0
[  424.852632][T13818] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  424.855533][T13818] RIP: 0010:__iov_iter_get_pages_alloc+0x1d1e/0x2240
[  424.857416][T13818] Code: b0 8b 48 89 df e8 82 b1 48 fd 90 0f 0b 49 89 c5 e9 99 f6 ff ff e8 42 30 04 fd 48 c7 c6 00 b7 b0 8b 4c 89 e7 e8 63 b1 48 fd 90 <0f> 0b e8 2b 30 04 fd 4c 8b 64 24 48 49 83 ec 01 e9 94 fd ff ff 4c
[  424.862513][T13818] RSP: 0018:ffffc9000670efc8 EFLAGS: 00010293
[  424.864130][T13818] RAX: 0000000000000000 RBX: 0000000000000011 RCX: 0000000000000000
[  424.866208][T13818] RDX: ffff88804d9d0000 RSI: ffffffff8487a8ad RDI: ffff88804d9d0444
[  424.868249][T13818] RBP: ffffea00013be234 R08: 0000000000000001 R09: fffffbfff2d39b0f
[  424.870286][T13818] R10: ffffffff969cd87f R11: ffff88806a628a40 R12: ffffea00013be200
[  424.872328][T13818] R13: ffff8880636c4c00 R14: 0000000000001000 R15: 0000000000001000
[  424.874434][T13818] FS:  0000555559ee7500(0000) GS:ffff88806a900000(0000) knlGS:0000000000000000
[  424.876707][T13818] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  424.878380][T13818] CR2: 0000001b32104ff8 CR3: 000000005c112000 CR4: 0000000000352ef0
[  424.880752][T13818] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  424.883270][T13818] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  424.885788][T13818] Call Trace:
[  424.886718][T13818]  <TASK>
[  424.887513][T13818]  ? show_regs+0x8c/0xa0
[  424.888677][T13818]  ? die+0x36/0xa0
[  424.889691][T13818]  ? do_trap+0x232/0x430
[  424.890828][T13818]  ? __iov_iter_get_pages_alloc+0x1d1e/0x2240
[  424.892476][T13818]  ? __iov_iter_get_pages_alloc+0x1d1e/0x2240
[  424.894088][T13818]  ? do_error_trap+0xf4/0x230
[  424.895332][T13818]  ? __iov_iter_get_pages_alloc+0x1d1e/0x2240
[  424.897147][T13818]  ? handle_invalid_op+0x34/0x40
[  424.898366][T13818]  ? __iov_iter_get_pages_alloc+0x1d1e/0x2240
[  424.900000][T13818]  ? exc_invalid_op+0x2e/0x50
[  424.901271][T13818]  ? asm_exc_invalid_op+0x1a/0x20
[  424.902635][T13818]  ? __iov_iter_get_pages_alloc+0x1d1d/0x2240
[  424.904275][T13818]  ? __iov_iter_get_pages_alloc+0x1d1e/0x2240
[  424.905891][T13818]  ? __iov_iter_get_pages_alloc+0x1d1d/0x2240
[  424.907519][T13818]  ? __pfx___iov_iter_get_pages_alloc+0x10/0x10
[  424.909429][T13818]  ? radix_tree_node_alloc.constprop.0+0x1b8/0x350
[  424.911512][T13818]  ? delete_node+0x207/0x8e0
[  424.912977][T13818]  iov_iter_get_pages_alloc2+0x53/0xf0
[  424.914423][T13818]  p9_get_mapped_pages.part.0.constprop.0+0x4ca/0x7d0
[  424.916187][T13818]  ? __pfx_p9_get_mapped_pages.part.0.constprop.0+0x10/0x10
[  424.918181][T13818]  ? __pfx_p9pdu_vwritef+0x10/0x10
[  424.919754][T13818]  p9_virtio_zc_request+0x1be/0x1390
[  424.921185][T13818]  ? p9pdu_writef+0xc4/0x100
[  424.922409][T13818]  ? __pfx_p9_virtio_zc_request+0x10/0x10
[  424.923932][T13818]  ? __pfx_p9_tag_alloc+0x10/0x10
[  424.925299][T13818]  ? rcu_is_watching+0x12/0xc0
[  424.926641][T13818]  ? trace_9p_protocol_dump+0x192/0x220
[  424.928377][T13818]  ? rcu_is_watching+0x12/0xc0
[  424.929882][T13818]  ? p9_client_prepare_req+0x111/0x4d0
[  424.931549][T13818]  ? __pfx_p9_client_prepare_req+0x10/0x10
[  424.933180][T13818]  p9_client_zc_rpc.constprop.0+0x29a/0x880
[  424.934790][T13818]  ? __pfx_p9_client_zc_rpc.constprop.0+0x10/0x10
[  424.936495][T13818]  ? lockdep_hardirqs_on+0x7c/0x110
[  424.937868][T13818]  ? kmem_cache_free+0x12f/0x3a0
[  424.939195][T13818]  ? p9_req_put+0x1c6/0x250
[  424.940431][T13818]  ? __pfx_p9_virtio_zc_request+0x10/0x10
[  424.941934][T13818]  p9_client_write+0x447/0x680
[  424.943221][T13818]  ? __pfx_p9_client_write+0x10/0x10
[  424.944633][T13818]  v9fs_issue_write+0xe2/0x180
[  424.945914][T13818]  ? __pfx_v9fs_issue_write+0x10/0x10
[  424.947348][T13818]  ? rcu_is_watching+0x12/0xc0
[  424.948628][T13818]  ? trace_netfs_sreq+0x193/0x220
[  424.949978][T13818]  netfs_do_issue_write+0x92/0x110
[  424.951340][T13818]  netfs_advance_write+0x384/0xbd0
[  424.952717][T13818]  ? netfs_buffer_append_folio+0x569/0x750
[  424.954256][T13818]  netfs_write_folio+0xc44/0x18f0
[  424.955602][T13818]  netfs_writepages+0x2ba/0xb90
[  424.956899][T13818]  ? __pfx_netfs_writepages+0x10/0x10
[  424.958323][T13818]  ? __pfx___lock_acquire+0x10/0x10
[  424.959722][T13818]  ? __module_address+0x55/0x3c0
[  424.961068][T13818]  ? __pfx_netfs_writepages+0x10/0x10
[  424.962487][T13818]  do_writepages+0x1a3/0x7f0
[  424.963723][T13818]  ? __pfx_do_writepages+0x10/0x10
[  424.965083][T13818]  ? __pfx_lock_acquire+0x10/0x10
[  424.966414][T13818]  ? do_raw_spin_lock+0x12d/0x2c0
[  424.967731][T13818]  ? do_raw_spin_unlock+0x172/0x230
[  424.969138][T13818]  ? _raw_spin_unlock+0x28/0x50
[  424.970421][T13818]  ? wbc_attach_and_unlock_inode+0x597/0x940
[  424.972038][T13818]  filemap_fdatawrite_wbc+0x148/0x1c0
[  424.973464][T13818]  __filemap_fdatawrite_range+0xba/0x100
[  424.974939][T13818]  ? __pfx___filemap_fdatawrite_range+0x10/0x10
[  424.976608][T13818]  ? __pfx___lock_acquire+0x10/0x10
[  424.977977][T13818]  v9fs_dir_release+0x429/0x590
[  424.979270][T13818]  ? __pfx_v9fs_dir_release+0x10/0x10
[  424.980727][T13818]  ? __pfx_v9fs_dir_release+0x10/0x10
[  424.982141][T13818]  __fput+0x3f6/0xb60
[  424.983217][T13818]  ? _raw_spin_unlock_irq+0x23/0x50
[  424.984603][T13818]  task_work_run+0x14e/0x250
[  424.985839][T13818]  ? __pfx_task_work_run+0x10/0x10
[  424.987186][T13818]  ? __pkru_allows_pkey+0x21/0xb0
[  424.988543][T13818]  syscall_exit_to_user_mode+0x27b/0x2a0
[  424.990039][T13818]  do_syscall_64+0xda/0x250
[  424.991246][T13818]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  424.992836][T13818] RIP: 0033:0x7fdb3517def9
[  424.994015][T13818] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  424.999038][T13818] RSP: 002b:00007fff19d7cf68 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  425.001234][T13818] RAX: 0000000000000000 RBX: 00007fdb35337a80 RCX: 00007fdb3517def9
[  425.003318][T13818] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  425.005415][T13818] RBP: 00007fdb35337a80 R08: 00007fdb35322000 R09: 00007fff19d7d25f
[  425.007511][T13818] R10: 00000000005d49ac R11: 0000000000000246 R12: 0000000000067c37
[  425.009621][T13818] R13: 00007fff19d7d070 R14: 0000000000000032 R15: ffffffffffffffff
[  425.011713][T13818]  </TASK>
[  425.012565][T13818] Modules linked in:
[  425.014747][T13818] ---[ end trace 0000000000000000 ]---
[  425.016240][T13818] RIP: 0010:__iov_iter_get_pages_alloc+0x1d1e/0x2240
[  425.018348][T13818] Code: b0 8b 48 89 df e8 82 b1 48 fd 90 0f 0b 49 89 c5 e9 99 f6 ff ff e8 42 30 04 fd 48 c7 c6 00 b7 b0 8b 4c 89 e7 e8 63 b1 48 fd 90 <0f> 0b e8 2b 30 04 fd 4c 8b 64 24 48 49 83 ec 01 e9 94 fd ff ff 4c
[  425.023367][T13818] RSP: 0018:ffffc9000670efc8 EFLAGS: 00010293
[  425.027608][T13818] RAX: 0000000000000000 RBX: 0000000000000011 RCX: 0000000000000000
[  425.029794][T13818] RDX: ffff88804d9d0000 RSI: ffffffff8487a8ad RDI: ffff88804d9d0444
[  425.032287][T13818] RBP: ffffea00013be234 R08: 0000000000000001 R09: fffffbfff2d39b0f
[  425.035048][T13818] R10: ffffffff969cd87f R11: ffff88806a628a40 R12: ffffea00013be200
[  425.037466][T13818] R13: ffff8880636c4c00 R14: 0000000000001000 R15: 0000000000001000
[  425.039789][T13818] FS:  0000555559ee7500(0000) GS:ffff88806a900000(0000) knlGS:0000000000000000
[  425.042311][T13818] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  425.044106][T13818] CR2: 00007fba4cd08178 CR3: 000000005c112000 CR4: 0000000000352ef0
[  425.046233][T13818] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  425.048531][T13818] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  425.050680][T13818] Kernel panic - not syncing: Fatal exception
[  425.052866][T13818] Kernel Offset: disabled
[  425.054120][T13818] Rebooting in 86400 seconds..

VM DIAGNOSIS:
13:26:11  Registers:
info registers vcpu 0

CPU#0
RAX=dffffc0000000000 RBX=ffffc90000007990 RCX=ffffffff813d013d RDX=0000000000000000
RSI=ffffffff813d014b RDI=ffffffff917586c0 RBP=0000000000000002 RSP=ffffc90000007910
R8 =0000000000000004 R9 =00000000000380d7 R10=00000000000a4000 R11=ffffffff8b4bf240
R12=ffffffff8480d7ef R13=00000000000380d7 R14=00000000000380d7 R15=ffffc900000079c5
RIP=ffffffff813d016b RFL=00000a06 [-O---P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000207c7000 CR3=000000006094e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001030001 Opmask01=0000000000000000 Opmask02=0000000000000fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff813082df ffffffff8100a0d8
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 ffffffff8132f38a
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f501f9f199a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f501f9f19a7
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f501f9f19a1
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f501f9f19b5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f501f9f1a3b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f501f9f1b19
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 9500000005000000 670000006d000000 85ecff644b000000 0000000000000001
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e776f6e6b6e7500 6f6c6c3332302500 657a697300040008 0000000f0010000c
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4b524a4b4e4b5000 4a49491617150000 405f4c560551464a 5751560541444700
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000003 0000000000000000 0000000000000000 00000000000000f0
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=00000000013452f4 RBX=0000000000000001 RCX=ffffffff8b181979 RDX=ffffed100d4e6fda
RSI=ffffffff8bb11820 RDI=ffffffff8163c41c RBP=ffffed1003ad8910 RSP=ffffc90000187e08
R8 =0000000000000000 R9 =ffffed100d4e6fd9 R10=ffff88806a737ecb R11=0000000000000001
R12=0000000000000001 R13=ffff88801d6c4880 R14=ffffffff901d9998 R15=0000000000000000
RIP=ffffffff8b182d5f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055f13a2268e8 CR3=000000003513e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000400 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c0fffc00 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000015 000000000001df8a
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555560e9d9f0
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555560e2b4a8
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555560e9e253 0000555560e9da00
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555560ea12a4 0000555560ea12a0
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000035323335 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000206a408100003 8004018080808080 80808408000c0800 0100000008060a01
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 030070756f726763 01ffffffffffffff fff1000800000000 00080007000c0008
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0dd0030010000dc0 030210000db00368 1000049003040400 4ce4030804004ce0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0610002010000606 4baa0010000d8004 0108000601448800 08000de003001000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0100100008808080 80808082be10000b 8004010000060806 080135a800080006
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 100020100006064b aa0010000d800401 0800060144880008 000de0030010000d
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 d0030010000dc003 0210000db0036810 000490030404004c e4030804004ce003
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0070756f72676301 ffffffffffffffff f1084cd003020400 4ccc031604004cc8
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000da1294 RBX=0000000000000002 RCX=ffffffff8b181979 RDX=ffffed100d506fda
RSI=ffffffff8bb11820 RDI=ffffffff8163c41c RBP=ffffed1003adb000 RSP=ffffc90000197e08
R8 =0000000000000000 R9 =ffffed100d506fd9 R10=ffff88806a837ecb R11=0000000000000001
R12=0000000000000002 R13=ffff88801d6d8000 R14=ffffffff901d9998 R15=0000000000000000
RIP=ffffffff8b182d5f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a800000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000001b320f4ff8 CR3=0000000059cc2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001000000 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff9b930980 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f501f9f199a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f501f9f19a7
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f501f9f19a1
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f501f9f19b5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f501f9f1a3b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f501f9f1b19
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000003 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000f0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000003 0000000000000000 0000000000000000 00000000000000f0
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000073 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8503b9e5 RDI=ffffffff9a687d80 RBP=ffffffff9a687d40 RSP=ffffc9000670e958
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=552033203a555043
R12=0000000000000000 R13=0000000000000073 R14=ffffffff8503b980 R15=0000000000000000
RIP=ffffffff8503ba0f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000555559ee7500 ffffffff 00c00000
GS =0000 ffff88806a900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000001b32104ff8 CR3=000000005c112000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000020000 Opmask01=0000000000000000 Opmask02=00000000fffffffe Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd924a9bc0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fba4cbf199a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fba4cbf19a7
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fba4cbf19a1
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fba4cbf19b5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fba4cbf1a3b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fba4cbf1b19
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000