last executing test programs:

1m47.380718105s ago: executing program 3 (id=67):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000440), 0xffffffffffffffff)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r3=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="010300000000000000001f00000008000300", @ANYRES32=r3], 0x1c}, 0x1, 0x3000000}, 0x0) (fail_nth: 2)

1m47.240007971s ago: executing program 3 (id=69):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000005c0)=@migrate={0xbc, 0x21, 0x1, 0x0, 0x0, {{@in6=@private2, @in6=@private2, 0x0, 0x0, 0x0, 0x0, 0xa}}, [@migrate={0x50, 0x11, [{@in=@loopback, @in=@private=0xa010100, @in=@private=0xa010100, @in=@rand_addr=0x64010100, 0x3c, 0x0, 0x0, 0x0, 0xa, 0x2}]}, @encap={0x1c, 0x4, {0xfffffffffffffffe, 0x4e24, 0x4e23, @in6=@private1}}]}, 0xbc}}, 0x0)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) (async)
r1 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$UHID_CREATE2(r1, 0x0, 0x138) (async)
write$UHID_CREATE2(r1, 0x0, 0x138)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="7000000002060500000000000000000000000000120003006269746d61703a69702c6d6163000000150004000000000009000200f3797a3000000000240007800c0002800800014000008e020c0001800800014000000000080008400000005cf9ccbc1522457872f71f1005000500020000000500010006"], 0x70}, 0x1, 0x0, 0x0, 0x40041}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[], 0x8c}}, 0x80)
pread64(r1, &(0x7f0000000240)=""/198, 0xc6, 0x1)

1m47.239585748s ago: executing program 3 (id=70):
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd6317ce22000000000000000000000000000000007fffffff0001000000000071273fa79d93014b8e3381b6"], 0xfdef)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000180), 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r0, 0x0)
execve(&(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000001800))
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x3, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1100}, 0x48)

1m47.0718466s ago: executing program 3 (id=75):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=@delpolicy={0x50, 0x27, 0x1, 0x0, 0x0, {{@in=@private=0xa010100, @in6=@remote}, 0x0, 0x2}}, 0x50}}, 0x1000)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=@delpolicy={0x50, 0x27, 0x1, 0x0, 0x0, {{@in=@private=0xa010100, @in6=@remote}, 0x0, 0x2}}, 0x50}}, 0x1000) (async)

1m47.071281712s ago: executing program 3 (id=76):
r0 = add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
setxattr$incfs_id(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), &(0x7f0000000080)={'0000000000000000000000000000000', 0x32}, 0x20, 0x0)
request_key(&(0x7f00000000c0)='dns_resolver\x00', &(0x7f0000000100)={'syz', 0x2}, &(0x7f0000000140)='$$\x00', r0)

1m47.021157356s ago: executing program 3 (id=77):
r0 = socket(0x2, 0x3, 0xb)
sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000480)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000440)={&(0x7f00000002c0)={0x38, 0x0, 0x400, 0x70bd2a, 0x25dfdbfe, {}, [@NL80211_ATTR_REG_RULES={0x10, 0x22, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x3}]}]}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x1}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x3}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000}, 0x200080c1)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0)
openat(r1, &(0x7f0000000280)='./file0\x00', 0x6a1c2, 0xc4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x3) (async)
mount$9p_tcp(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=tcp,port=0x0000000000004e22'])
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r3, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000140)={<r4=>0x0, 0x10, &(0x7f00000000c0)=[@in={0x2, 0x4e21, @private=0xa010100}]}, &(0x7f0000000180)=0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r3, 0x84, 0x85, &(0x7f0000000000)={r4, @in={{0x2, 0x0, @empty}}, 0x0, 0x7ffe}, 0x90)
socket$inet_sctp(0x2, 0x1, 0x84)
syz_emit_ethernet(0x12, &(0x7f0000000000)=ANY=[@ANYBLOB="910418166421b54fa0aaaa050004424203"], 0x0) (async)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000340)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x18, 0x0, 0x8, 0x26, 0x3ff}, 0x9c) (async)
socket$unix(0x1, 0x2, 0x0)
r5 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) (async)
r6 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
r7 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r7, 0xc02064b2, &(0x7f0000000100)={0x6, 0x1f, 0x6})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r6, 0xc02064b2, &(0x7f00000000c0)={0xdb, 0x1ff, 0xb}) (async)
r8 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0) (async)
r9 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r9, 0xc02064b2, &(0x7f0000000340)={0xda2, 0x8169, 0x6, 0x0, <r10=>0x0}) (async)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r8, 0xc02064b2, &(0x7f00000000c0)={0xdb, 0x1ff, 0xb})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r7, 0xc02064b2, &(0x7f00000001c0)={0x15, 0x1, 0x3})
ioctl$DRM_IOCTL_MODE_DESTROY_DUMB(r8, 0xc00464b4, &(0x7f0000000400)={r10}) (async)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r7, 0xc02064b2, &(0x7f0000000380)={0xff, 0x3, 0xd83f}) (async)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r6, 0xc02064b2, &(0x7f0000000140)={0x4, 0xd8, 0x8}) (async)
close_range(r5, 0xffffffffffffffff, 0x0)

1m45.518038757s ago: executing program 0 (id=113):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CAP_HYPERV_SYNIC2(r2, 0x4068aea3, &(0x7f0000000200))
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000000000090000040e784b5597b0f86"])

1m45.281835549s ago: executing program 0 (id=116):
sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYBLOB="800000000b0601020000000000000000030000000900020073797a300000000005000100070000004c0008800c00078007001a00242e0000100000800c0018400000000000000009100007800c001b4000000000000000100c00078008000a400000ffff100007800c00028008000140ac1414aa0c00078008000200000001"], 0x80}}, 0x0)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000010418d3c93f"], 0x1c}}, 0x0)
r0 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r0, 0x50009405, &(0x7f0000000180))
r1 = socket(0x2000000000000021, 0x2, 0x10000000000002)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendmmsg$inet(r2, &(0x7f0000001e40)=[{{&(0x7f0000000000)={0x2, 0x4e24, @remote}, 0x10, &(0x7f0000000140)=[{&(0x7f0000000200)="0b12", 0x2}], 0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000070000004608ead00000008111000000000000000000000001"], 0x30}}], 0x1, 0xc004)
getsockname$packet(r1, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r5 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r5, 0x7a7, &(0x7f0000000040)=0x90000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r5, 0x7a0, &(0x7f0000000000)={@local})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r5, 0x7a8, &(0x7f0000000540)={{@local, 0x2}, @hyper, 0x0, 0x2, 0x20005e, 0x0, 0x9})
r6 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r6, 0x7a7, &(0x7f0000000040)=0x90000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r6, 0x7a0, &(0x7f0000000240)={@hyper})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r6, 0x7a8, &(0x7f0000000540)={{@hyper, 0x2}, @hyper, 0x0, 0x0, 0x20005e})
close_range(r4, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[], 0x528}, 0x1, 0x0, 0x0, 0x48000}, 0xc000)

1m45.281573893s ago: executing program 0 (id=117):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="50000000020605000000000000000000000000004c00078008000640000000000500010006000000050005000200000005000400000000000900020073797a31000000000c000300686173683a697000"], 0x50}}, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r3=>r1}, './file0\x00'})
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000000080)=@x86={0x1, 0x0, 0x7, 0x0, 0xffff, 0x0, 0x9, 0x6, 0x5, 0xc, 0x5, 0x7, 0x0, 0x4, 0x3, 0x7, 0x6, 0xa, 0x8, '\x00', 0x3, 0x6})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000400)=ANY=[@ANYBLOB="300000001a0001002cbd7000fbdbdf251c1480000000fd000001000008000100000031"], 0x30}}, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_CAP_HYPERV_SYNIC2(r5, 0x4068aea3, &(0x7f0000000200))
ioctl$KVM_SET_MSRS(r5, 0x4008ae89, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000000000092000040e784b5597b"])
r6 = openat2(r3, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x0, 0x1a4, 0x6}, 0x18)
setsockopt$IPT_SO_SET_REPLACE(r6, 0x0, 0x40, &(0x7f00000004c0)=@mangle={'mangle\x00', 0x1f, 0x6, 0x448, 0x180, 0x180, 0xc0, 0x2e8, 0x250, 0x3b0, 0x3b0, 0x3b0, 0x3b0, 0x3b0, 0x6, &(0x7f0000000180), {[{{@ip={@private=0xa010100, @rand_addr=0x64010101, 0xff000000, 0xff000000, 'veth1_to_hsr\x00', 'veth1_to_bridge\x00', {}, {}, 0x21, 0x0, 0x9b}, 0x0, 0x98, 0xc0, 0x0, {}, [@inet=@rpfilter={{0x28}, {0xa}}]}, @unspec=@CHECKSUM={0x28}}, {{@ip={@initdev={0xac, 0x1e, 0x1, 0x0}, @private=0xa010102, 0xffffff, 0xff000000, 'macvlan0\x00', 'vlan1\x00', {}, {}, 0x4b, 0x1, 0x5}, 0x0, 0x98, 0xc0, 0x0, {}, [@common=@ttl={{0x28}, {0x2, 0xf}}]}, @ECN={0x28, 'ECN\x00', 0x0, {0x21, 0x2, 0x1}}}, {{@uncond, 0x0, 0xa8, 0xd0, 0x0, {}, [@common=@unspec=@time={{0x38}, {0x8001, 0x10000, 0x2e2a, 0x10318, 0x1, 0x2, 0x1}}]}, @ECN={0x28, 'ECN\x00', 0x0, {0x0, 0x54, 0x1}}}, {{@uncond, 0x0, 0x70, 0x98}, @ECN={0x28, 'ECN\x00', 0x0, {0x10, 0x2}}}, {{@ip={@multicast1, @remote, 0xffffffff, 0xffffffff, 'virt_wifi0\x00', 'wlan1\x00', {}, {}, 0x67, 0x2, 0x64}, 0x0, 0x98, 0xc8, 0x0, {}, [@inet=@rpfilter={{0x28}, {0xc}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x4e23}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x4a8)

1m45.123446129s ago: executing program 0 (id=120):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, 0x0, 0x0)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x8c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x54, 0xe, {{{}, {}, @device_a, @device_a, @from_mac=@device_b}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ibss_ssid}, @val, @void, @void, @void, @void, @void, @void, @val={0x3c, 0x4, {0x1, 0x96, 0xb5, 0x6d}}, @val={0x2d, 0x1a, {0x2, 0x1, 0x4, 0x0, {0x4, 0x8, 0x0, 0x2, 0x0, 0x0, 0x0, 0x3}, 0x1, 0x2, 0x7}}, @void, @void, @void}}, @NL80211_ATTR_FTM_RESPONDER={0x4}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x7965}]}, 0x8c}}, 0x0)

1m45.119384754s ago: executing program 0 (id=121):
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000640)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x8, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
rename(&(0x7f0000000400)='./bus\x00', &(0x7f0000000f00)='./file0\x00')
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000200)=<r0=>0x0)
r1 = syz_clone(0x88200, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = syz_clone3(&(0x7f0000000380)={0x2140000, 0x0, 0x0, 0x0, {0x1a}, 0x0, 0x0, 0x0, &(0x7f0000000340)=[r1], 0x1}, 0x58)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYRES64=r1, @ANYRES64=r2, @ANYBLOB="200001d5", @ANYRES32, @ANYBLOB="00000000ac1414aa00000000000000000000000008"], 0x38}, 0x1, 0x0, 0x0, 0x10}, 0x40084)
r4 = syz_open_procfs(0x0, &(0x7f00000004c0)='syscall\x00')
preadv(r4, &(0x7f00000000c0)=[{&(0x7f0000000580)=""/128, 0x80}], 0x1, 0xb6, 0x0)
r5 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
kcmp$KCMP_EPOLL_TFD(r0, r1, 0x7, r3, &(0x7f0000000280)={r4, r5, 0x3c0})
openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./bus\x00', 0x6000, 0x8)
lsm_list_modules(&(0x7f0000002600)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000000)=0x7b, 0x0)
ptrace$getregset(0x4204, r2, 0x3, &(0x7f00000002c0)={&(0x7f0000000700)=""/143, 0x8f})
readlink(&(0x7f0000000440)='./bus/file0\x00', &(0x7f00000007c0)=""/252, 0xfc)
mount$afs(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0xa00000, 0x0)
r6 = socket(0x10, 0x3, 0x0)
r7 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)=@newqdisc={0x3c, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_ECN_PROB={0x8, 0x9, 0x15}]}}]}, 0x3c}}, 0x0)
ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000040)={'wlan0\x00', {0x2, 0x4e22, @private=0xa011102}})

1m44.921669877s ago: executing program 0 (id=124):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
sched_setscheduler(0x0, 0x2, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
recvmsg(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)=[{0x0}], 0x1}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@deltclass={0x24, 0x29, 0x200, 0x70bd28, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {}, {0x4, 0xfff3}, {0x10, 0xffe0}}}, 0x24}}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=@newqdisc={0x44, 0x24, 0xd0f, 0x70bd2b, 0x25dfdbff, {0x60, 0x0, 0x0, r2, {0x0, 0x8}, {0xffff, 0xffff}, {0x0, 0xc}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x3, 0x7, 0x7f}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x3004c81c)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='veno\x00', 0x5)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @mss={0x2, 0xfff}, @window={0x3, 0x0, 0x401}, @window], 0x20000000000000e4)
setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r3, &(0x7f0000000340)='\x00', 0x1, 0x0, 0x0, 0x0)
sendto$inet(r3, &(0x7f0000000000), 0xffffffffffffff94, 0x12, 0x0, 0x0)
recvfrom$inet(r3, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25)
semctl$SETVAL(0x0, 0x22f6a273abb842f6, 0x10, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)

1m31.940282721s ago: executing program 32 (id=77):
r0 = socket(0x2, 0x3, 0xb)
sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000480)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000440)={&(0x7f00000002c0)={0x38, 0x0, 0x400, 0x70bd2a, 0x25dfdbfe, {}, [@NL80211_ATTR_REG_RULES={0x10, 0x22, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x3}]}]}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x1}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x3}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000}, 0x200080c1)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0)
openat(r1, &(0x7f0000000280)='./file0\x00', 0x6a1c2, 0xc4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x3) (async)
mount$9p_tcp(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=tcp,port=0x0000000000004e22'])
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r3, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000140)={<r4=>0x0, 0x10, &(0x7f00000000c0)=[@in={0x2, 0x4e21, @private=0xa010100}]}, &(0x7f0000000180)=0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r3, 0x84, 0x85, &(0x7f0000000000)={r4, @in={{0x2, 0x0, @empty}}, 0x0, 0x7ffe}, 0x90)
socket$inet_sctp(0x2, 0x1, 0x84)
syz_emit_ethernet(0x12, &(0x7f0000000000)=ANY=[@ANYBLOB="910418166421b54fa0aaaa050004424203"], 0x0) (async)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000340)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x18, 0x0, 0x8, 0x26, 0x3ff}, 0x9c) (async)
socket$unix(0x1, 0x2, 0x0)
r5 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) (async)
r6 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
r7 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r7, 0xc02064b2, &(0x7f0000000100)={0x6, 0x1f, 0x6})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r6, 0xc02064b2, &(0x7f00000000c0)={0xdb, 0x1ff, 0xb}) (async)
r8 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0) (async)
r9 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r9, 0xc02064b2, &(0x7f0000000340)={0xda2, 0x8169, 0x6, 0x0, <r10=>0x0}) (async)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r8, 0xc02064b2, &(0x7f00000000c0)={0xdb, 0x1ff, 0xb})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r7, 0xc02064b2, &(0x7f00000001c0)={0x15, 0x1, 0x3})
ioctl$DRM_IOCTL_MODE_DESTROY_DUMB(r8, 0xc00464b4, &(0x7f0000000400)={r10}) (async)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r7, 0xc02064b2, &(0x7f0000000380)={0xff, 0x3, 0xd83f}) (async)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r6, 0xc02064b2, &(0x7f0000000140)={0x4, 0xd8, 0x8}) (async)
close_range(r5, 0xffffffffffffffff, 0x0)

1m29.958950942s ago: executing program 33 (id=124):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
sched_setscheduler(0x0, 0x2, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
recvmsg(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)=[{0x0}], 0x1}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@deltclass={0x24, 0x29, 0x200, 0x70bd28, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {}, {0x4, 0xfff3}, {0x10, 0xffe0}}}, 0x24}}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=@newqdisc={0x44, 0x24, 0xd0f, 0x70bd2b, 0x25dfdbff, {0x60, 0x0, 0x0, r2, {0x0, 0x8}, {0xffff, 0xffff}, {0x0, 0xc}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x3, 0x7, 0x7f}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x3004c81c)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='veno\x00', 0x5)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @mss={0x2, 0xfff}, @window={0x3, 0x0, 0x401}, @window], 0x20000000000000e4)
setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r3, &(0x7f0000000340)='\x00', 0x1, 0x0, 0x0, 0x0)
sendto$inet(r3, &(0x7f0000000000), 0xffffffffffffff94, 0x12, 0x0, 0x0)
recvfrom$inet(r3, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25)
semctl$SETVAL(0x0, 0x22f6a273abb842f6, 0x10, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)

36.479914007s ago: executing program 5 (id=769):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000080)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r0, 0x3ba0, &(0x7f00000003c0)={0x48, 0x1, r1, 0x0, 0x285})
ioctl$IOMMU_VFIO_IOAS$SET(r0, 0x3b88, &(0x7f00000000c0)={0xc, r1})
ioctl$IOMMU_VFIO_IOMMU_GET_INFO(r0, 0x3b70, &(0x7f0000000240)={0x30})

32.96442385s ago: executing program 1 (id=893):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e22, @local}, 0x10)
sendmmsg$inet_sctp(r0, &(0x7f0000004900)=[{&(0x7f00000000c0)=@in={0x2, 0x4e22, @local}, 0x10, &(0x7f0000000180)=[{&(0x7f0000000100)="f4", 0x34000}], 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="18e00000000000008400000007000000ac1e010100000000180000000000000084000000070000000a0101020000000018000000000000008400000007000000ac1414000000"], 0x48, 0x4}], 0x1, 0x0)

28.930217376s ago: executing program 5 (id=769):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000080)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r0, 0x3ba0, &(0x7f00000003c0)={0x48, 0x1, r1, 0x0, 0x285})
ioctl$IOMMU_VFIO_IOAS$SET(r0, 0x3b88, &(0x7f00000000c0)={0xc, r1})
ioctl$IOMMU_VFIO_IOMMU_GET_INFO(r0, 0x3b70, &(0x7f0000000240)={0x30})

28.025273566s ago: executing program 5 (id=769):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000080)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r0, 0x3ba0, &(0x7f00000003c0)={0x48, 0x1, r1, 0x0, 0x285})
ioctl$IOMMU_VFIO_IOAS$SET(r0, 0x3b88, &(0x7f00000000c0)={0xc, r1})
ioctl$IOMMU_VFIO_IOMMU_GET_INFO(r0, 0x3b70, &(0x7f0000000240)={0x30})

27.098016919s ago: executing program 5 (id=769):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000080)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r0, 0x3ba0, &(0x7f00000003c0)={0x48, 0x1, r1, 0x0, 0x285})
ioctl$IOMMU_VFIO_IOAS$SET(r0, 0x3b88, &(0x7f00000000c0)={0xc, r1})
ioctl$IOMMU_VFIO_IOMMU_GET_INFO(r0, 0x3b70, &(0x7f0000000240)={0x30})

21.180722378s ago: executing program 1 (id=893):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e22, @local}, 0x10)
sendmmsg$inet_sctp(r0, &(0x7f0000004900)=[{&(0x7f00000000c0)=@in={0x2, 0x4e22, @local}, 0x10, &(0x7f0000000180)=[{&(0x7f0000000100)="f4", 0x34000}], 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="18e00000000000008400000007000000ac1e010100000000180000000000000084000000070000000a0101020000000018000000000000008400000007000000ac1414000000"], 0x48, 0x4}], 0x1, 0x0)

20.370225804s ago: executing program 1 (id=893):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e22, @local}, 0x10)
sendmmsg$inet_sctp(r0, &(0x7f0000004900)=[{&(0x7f00000000c0)=@in={0x2, 0x4e22, @local}, 0x10, &(0x7f0000000180)=[{&(0x7f0000000100)="f4", 0x34000}], 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="18e00000000000008400000007000000ac1e010100000000180000000000000084000000070000000a0101020000000018000000000000008400000007000000ac1414000000"], 0x48, 0x4}], 0x1, 0x0)

14.380383611s ago: executing program 5 (id=769):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000080)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r0, 0x3ba0, &(0x7f00000003c0)={0x48, 0x1, r1, 0x0, 0x285})
ioctl$IOMMU_VFIO_IOAS$SET(r0, 0x3b88, &(0x7f00000000c0)={0xc, r1})
ioctl$IOMMU_VFIO_IOMMU_GET_INFO(r0, 0x3b70, &(0x7f0000000240)={0x30})

13.040899824s ago: executing program 1 (id=893):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e22, @local}, 0x10)
sendmmsg$inet_sctp(r0, &(0x7f0000004900)=[{&(0x7f00000000c0)=@in={0x2, 0x4e22, @local}, 0x10, &(0x7f0000000180)=[{&(0x7f0000000100)="f4", 0x34000}], 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="18e00000000000008400000007000000ac1e010100000000180000000000000084000000070000000a0101020000000018000000000000008400000007000000ac1414000000"], 0x48, 0x4}], 0x1, 0x0)

7.982346767s ago: executing program 1 (id=893):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e22, @local}, 0x10)
sendmmsg$inet_sctp(r0, &(0x7f0000004900)=[{&(0x7f00000000c0)=@in={0x2, 0x4e22, @local}, 0x10, &(0x7f0000000180)=[{&(0x7f0000000100)="f4", 0x34000}], 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="18e00000000000008400000007000000ac1e010100000000180000000000000084000000070000000a0101020000000018000000000000008400000007000000ac1414000000"], 0x48, 0x4}], 0x1, 0x0)

6.667747509s ago: executing program 5 (id=769):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000080)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r0, 0x3ba0, &(0x7f00000003c0)={0x48, 0x1, r1, 0x0, 0x285})
ioctl$IOMMU_VFIO_IOAS$SET(r0, 0x3b88, &(0x7f00000000c0)={0xc, r1})
ioctl$IOMMU_VFIO_IOMMU_GET_INFO(r0, 0x3b70, &(0x7f0000000240)={0x30})

2.499265351s ago: executing program 2 (id=1198):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000080)={0x19})
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f00000003c0)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f00000000c0)={0x28, 0x7, r2, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f0000000340)={0x48, 0x5, r2, 0x0, <r3=>0xffffffffffffffff, 0x1})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r0, 0x3ba0, &(0x7f0000001480)={0x48, 0x7, r3, 0x0, 0x10000, 0x0, 0x8, 0x2a7345, 0x21316f})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r0, 0x3ba0, &(0x7f0000000100)={0x48, 0x7, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x334e8b})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r0, 0x3ba0, &(0x7f00000002c0)={0x48, 0x6, r3, 0x0, 0x10001, 0x0, 0x0, 0x0, 0x1000000000, 0xffffffffffffff7b})

2.430684885s ago: executing program 2 (id=1199):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000140)=0x41)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
getpid()
ioctl$EXT4_IOC_MIGRATE(0xffffffffffffffff, 0xff07)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='veno\x00', 0x5)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @mss={0x2, 0xfff}, @window={0x3, 0x0, 0x401}, @window], 0x20000000000000e4)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r0, &(0x7f0000000340)='\x00', 0x1, 0x0, 0x0, 0x0)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x12, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25)
r1 = syz_open_dev$sndctrl(&(0x7f0000000100), 0xb, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r1, 0xc4c85513, &(0x7f0000000740)={{0x1, 0x0, 0x0, 0x0, 'syz1\x00'}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfbfffffffffffffd, 0x5, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000, 0x0, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff8, 0x0, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0xfffffffffffffffe]})
semctl$SETVAL(0x0, 0x22f6a273abb842f6, 0x10, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x4)
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

2.26655393s ago: executing program 2 (id=1200):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)=ANY=[@ANYBLOB="a1b59d0d580100001000010000001000ffdbdf25fe8800000000000000000000000000010000000000000000000000000000000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc0100000000000000000000000000010000000032000000e00000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffffffffffff0000000000000000ffffffffffffff7f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff000000000a000000af000000000000001c00170000000000000000002abd70000000400000000000000000004c001400636d6163286165732900"/272], 0x158}}, 0x0)
r1 = socket$inet(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={'sit0\x00', {0x2, 0x4e26, @rand_addr=0xdffffc13}})
setsockopt$EBT_SO_SET_COUNTERS(0xffffffffffffffff, 0x0, 0x81, &(0x7f0000000240)={'nat\x00', 0x0, 0x0, 0x0, [0x3, 0x6, 0x104, 0x8, 0x7, 0x1ff], 0x0, 0x0}, 0x50)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600002, 0x600002, 0x7, &(0x7f0000a00000/0x600000)=nil)
setsockopt$RDS_CANCEL_SENT_TO(0xffffffffffffffff, 0x114, 0x1, &(0x7f0000000000)={0x2, 0x4e24, @private=0xa010100}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600600, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0xcd, 0x0, &(0x7f0000000100)="b9ff03076844268cb89e14f01be0ffff00fe3a21632f77fbac14141de007031762079f4b4d2f87e5feca6aab845013f2325f1a3901050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014caf28c0adc043084617d7ecf41e9d134589d46e5dfc4ca5780d38cae870b9a1df48b238190da450296b0ac0140000", 0x0, 0x8, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
r2 = syz_open_dev$video4linux(&(0x7f0000001380), 0x5, 0x0)
ioctl$VIDIOC_SUBDEV_G_SELECTION(r2, 0xc040563d, &(0x7f0000000000)={0x0, 0x0, 0x2})
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0xa000, @ipv4={'\x00', '\xff\xff', @local}}], 0x1c)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
bind$bt_l2cap(r3, &(0x7f0000000100)={0x1f, 0x7, @none, 0x73, 0x1}, 0xe)
r4 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
ioctl$vim2m_VIDIOC_ENUM_FMT(r4, 0xc0405602, &(0x7f0000000040)={0x80, 0x1, 0x0, "cb9649f4ad7d527a0e7447de4048315cdd8a771b391c208d2bd399e0a56bade4"})
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_PR_STREAM_STATUS(r5, 0x84, 0x74, &(0x7f00000000c0)=""/47, &(0x7f0000000100)=0x1d)
r6 = openat$vimc0(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r6, 0xc100565c, &(0x7f0000000100)={0x9, 0x802, 0x2, {0x9, @sdr={0x32315659, 0x8}}, 0x40})
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', <r8=>0x0})
sendmsg$nl_route(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="7000000010000100"/20, @ANYRES8=r7, @ANYBLOB="000000002f95abbe480012800e0001006970366772657461700000003400028008000100", @ANYRES32=r8, @ANYBLOB="14000600fe80000000000000000000000000000014000700ff0500000000000000000000000000010800"], 0x70}}, 0x0)

1.387658323s ago: executing program 2 (id=1201):
mkdirat(0xffffffffffffff9c, &(0x7f0000000d40)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
r2 = socket$inet6(0xa, 0x80002, 0x88)
ioctl$AUTOFS_IOC_PROTOVER(r0, 0x80049363, &(0x7f0000000040))
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0x11, &(0x7f0000000280)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x7fff}, {}, {}, [@map_idx={0x18, 0xb, 0x5, 0x0, 0xd}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000140)='GPL\x00', 0x17b, 0x63, &(0x7f0000000400)=""/99, 0x0, 0x5, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000480)={0x9, 0x5}, 0x8, 0x10, &(0x7f00000004c0)={0x2, 0xe, 0x80, 0x8}, 0x10, 0x0, 0x0, 0x2, &(0x7f0000000500)=[0xffffffffffffffff, 0x1, r2, 0x1, 0x1, 0xffffffffffffffff], &(0x7f0000000540)=[{0x0, 0x4, 0xc, 0x4}, {0x1, 0x2, 0xd, 0x1}], 0x10, 0x9, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000100)='gpio_direction\x00', r3, 0x0, 0x4bbe}, 0x18)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, 0x0, 0x0)
setsockopt$inet6_udp_int(r2, 0x11, 0xb, &(0x7f00000000c0)=0xfffffffc, 0x4)
syz_emit_ethernet(0x83, &(0x7f0000000340)=ANY=[@ANYRES64=r1, @ANYBLOB="55fb6a17a0de5e48685ccc0993abda552dba4a604bb05ecbabac4b990988ef740f7a9f56e356963f55484d99841315ecc4c9c8e62d9cb1ba677087390c733a517c74aeb56548cffcd81d38593fc57b2a81b08d71b1fe7fd262f866d89441f12e3ac9502c88286dc15a8bbe2c17ae473cf1166e41a1019467ac3dbc40cdb1bdb05b742e7a69d54034610aa3c498831314fd401d7330b065166e059386109f476d844ae47abbe2bafba45b66b71332301fd33e78dbdf630701"], 0x0)
write$FUSE_INIT(r0, &(0x7f00000005c0)={0x50, 0x0, r1, {0x7, 0x29, 0x8, 0x2000, 0x0, 0x4, 0xfffffffc, 0x0, 0x0, 0x0, 0x8}}, 0x50)
ioctl$AUTOFS_IOC_READY(r3, 0x9360, 0x54)
syz_emit_vhci(&(0x7f0000000a80)=@HCI_EVENT_PKT={0x4, @HCI_EV_VENDOR={{0xff, 0x3}, "87983a"}}, 0x6)
r4 = socket$tipc(0x1e, 0x5, 0x0)
getsockopt$TIPC_SOCK_RECVQ_DEPTH(r4, 0x10f, 0x84, &(0x7f0000000340), &(0x7f0000000c80)=0x4)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0xc, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000007c0)=ANY=[@ANYBLOB="58010000100001000000000000000000fe800000000000000000000000000000ac1e000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x158}}, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000300)='mm_collapse_huge_page_isolate\x00', r7}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
openat(0xffffffffffffff9c, &(0x7f0000000680)='./file0/file0\x00', 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0/file0\x00', 0x0)
syz_fuse_handle_req(r0, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000940)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x90, 0x0, 0x0, {0x0, 0x0, 0x7, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x0, 0x0, 0x0, 0x0, 0x0})

587.825932ms ago: executing program 2 (id=1204):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r1, &(0x7f0000000b40)={&(0x7f0000000280)=@nameseq={0x1e, 0x1, 0x2, {0x1}}, 0x10, &(0x7f0000000a80)=[{&(0x7f00000002c0)="5bdb43db3652f1a10e30702c3cca591d76caf362fa9a965439474e4d9e6a03b037e5c22fc3e6098a139d36a604c462f417cf22402f406c920ce50fba857128e047a2d827306507caa459673c918bb7b49663420a86e923e14e13cd49d0cf2b6e6549f87bc5ae888110a9e60598afe90002d55859c4e6a97bf5479fa3f469255a86a0e3a7296da84aceb8", 0x8a}, {&(0x7f0000000380)="4e2d58a367f1870f9b7f98560435bd275909890df0ff6f2403005d8024381fb8033415a6c50f8e24bb0380da53184a209eb7e0845bc88c4dd0cf25c6fd895dd32561e8706406bd773964deee2a2e54464004676f017640930d97aa264d0bc7c5d3c23f4fc46d8dff2f90a5c9217315f3b0916f3f6f323d65cacefeca445d60a3bf38186a09e34a088d250abe5d18305e61d31bda066026f44ca08226", 0x9c}, {&(0x7f00000009c0)="770d8990dccf9c9050b3068bc552097eb055ef6fa94bae08875a0d321c5986c367da8771949c2d1352ff0677980fa6d900ab96e5aed633cd44e2d8a08c1e3caa5f567d9753427b46e7fefb9ee172ba58ffbc7f8b0cf27a0206dc57bedaf62494d42ec24f5082c005031f7064f94cf9ca11a7fc9dcaa706c02b5c999b2ff2158dbc3c1c4d", 0x84}, {&(0x7f0000000440)}], 0x4, &(0x7f0000000ac0)="062d4b7bda6342c7a9ea004ce96cd986f15f74d159bdd5c688a1a9fcef1b8daec3ee316a40429abf2ee35f1d41efa1d841b044ec1b1fdce6047b9ec8be7bd98aacb59315739231b1a740f532b4b3b745095d193d3c0721b2ab68cc806ee8dc8d", 0x60, 0x4000800}, 0x4080)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'geneve1\x00', <r3=>0x0})
sendto$packet(r2, &(0x7f0000000180)="0b03f6ffe0ff64120200475400f6a13bb1000300080086dd4803", 0x1a, 0x0, &(0x7f0000000140)={0x11, 0x8100, r3, 0x1, 0x0, 0x6, @broadcast}, 0x14)
r4 = syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r4, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1})
ioctl$vim2m_VIDIOC_EXPBUF(r4, 0xc0405610, &(0x7f0000000040)={0x2, 0x0, 0x0, 0x0, <r5=>0xffffffffffffffff})
syz_usb_connect(0x6, 0x4f2, &(0x7f00000004c0)={{0x12, 0x1, 0x250, 0xae, 0x70, 0x71, 0x10, 0x12d1, 0x14f1, 0x53a3, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x4e0, 0x4, 0x1, 0x1, 0xc0, 0x4, [{{0x9, 0x4, 0x0, 0x6, 0x3, 0x3, 0x9e, 0xcf, 0x0, [@uac_control={{0xa, 0x24, 0x1, 0x4, 0x6}, [@processing_unit={0xb, 0x24, 0x7, 0x2, 0x1, 0x5a, "1ddf2463"}]}, @uac_as={[@format_type_ii_discrete={0xc, 0x24, 0x2, 0x2, 0x7fff, 0x1, 0x9, "2d1a70"}, @format_type_ii_discrete={0xc, 0x24, 0x2, 0x2, 0x3b7, 0x44, 0x8, "0e6933"}, @format_type_i_discrete={0xd, 0x24, 0x2, 0x1, 0x7, 0x2, 0xff, 0x4, "281e6b298a"}, @format_type_ii_discrete={0xb, 0x24, 0x2, 0x2, 0x5d, 0xb6, 0x4, "a656"}]}], [{{0x9, 0x5, 0x7, 0x10, 0x400, 0xc, 0x2d, 0xf9}}, {{0x9, 0x5, 0x9, 0x10, 0x20, 0x9, 0x9, 0x1, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0x42, 0x4}]}}, {{0x9, 0x5, 0x2, 0x3, 0x20, 0x2, 0x0, 0x2}}]}}, {{0x9, 0x4, 0xff, 0x6, 0x4, 0x9b, 0x11, 0x57, 0x7c, [], [{{0x9, 0x5, 0xc, 0x8, 0x3ff, 0x6, 0xf9, 0x7}}, {{0x9, 0x5, 0x4, 0x10, 0x400, 0x2, 0x3, 0x3}}, {{0x9, 0x5, 0x9, 0x3, 0x2b2aa75a8538a9fb, 0x7, 0xfb, 0x8, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0xa, 0x2}, @generic={0x75, 0x6, "4511343f50eb70a09072283a194a96cb35b2f77dfa59095b46c9005aa1d05f10144ee0efbbddf3d5c335fc365ad81f18e5784948e893bfea4eb8a11ca85f5a5fdd0c5381976f4ba603592f3358008a6ceb1ab0e936f11246c49d533219f8600c3864939beea40959b19f77ca833fba8221bc7d"}]}}, {{0x9, 0x5, 0x6, 0x8, 0x20, 0x1, 0x5a, 0x6, [@generic={0xc4, 0xe, "6214579c4af23643e56644a59bef2d33cc460a2a50ceecc3f3cabe02bb8a13e0652470019ba1a619bb91b8e0e3bc4e46576dfb8817050760c97c9eea4351b91d111280dc8261551ec1a347957139fcf8bf5af85d26a8a4fac6ec2f786d3521ba35f78913fd8b34d42d7679f6129c80504291a4da9e655430a208acb2aa189ebb019db5f8338c6c65eb4b30d5e2fbf567814c5959c4f56e7a48e80d8451812baa11c671fc18f294e5b2a3d4f750e2838710c7248e948779ca06969bf2b2aae1ef2a39"}]}}]}}, {{0x9, 0x4, 0xff, 0x6, 0x8, 0x54, 0x63, 0x16, 0x5, [], [{{0x9, 0x5, 0xd, 0x4, 0x20, 0x7b, 0x9, 0x7, [@generic={0x3, 0xb, 'S'}, @generic={0x2, 0x22}]}}, {{0x9, 0x5, 0xe, 0x0, 0x200, 0x81, 0xa, 0x4, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0x7f, 0x401}]}}, {{0x9, 0x5, 0x5, 0xc, 0x40, 0x5f, 0x0, 0xfa, [@uac_iso={0x7, 0x25, 0x1, 0x7, 0x1, 0x10}]}}, {{0x9, 0x5, 0x3, 0x1, 0x10, 0x9e, 0x4, 0x9, [@generic={0x100, 0x6, "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"}]}}, {{0x9, 0x5, 0x7, 0xc, 0x5c7, 0x1, 0x1, 0x10, [@generic={0x51, 0x1, "99510e671258ffbe5dc4facaafb905ca97e85158dcb83273d5fc177f30a667c7363e8a3a2c4545d5b48db0af6d5bc0e1c2fc94b24325add9654897d5823527c33077509d4ffed96ebca1a38d7d2d3e"}, @uac_iso={0x7, 0x25, 0x1, 0x81, 0x3, 0x2}]}}, {{0x9, 0x5, 0xa, 0x10, 0x400, 0x7, 0x6, 0x40}}, {{0x9, 0x5, 0xd, 0x4, 0x8, 0x6, 0xb, 0x7, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0x8}]}}, {{0x9, 0x5, 0xd, 0x3, 0x20, 0xa, 0xfe, 0x81, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x7, 0x6}]}}]}}, {{0x9, 0x4, 0x2, 0x7, 0x6, 0xcb, 0x56, 0xa2, 0x8, [@hid_hid={0x9, 0x21, 0x800, 0x4, 0x1, {0x22, 0x309}}], [{{0x9, 0x5, 0xa, 0x0, 0x3ff, 0xff, 0xf, 0x2}}, {{0x9, 0x5, 0x0, 0x10, 0x200, 0x7f, 0x6, 0x3}}, {{0x9, 0x5, 0x7, 0x8, 0x40, 0x2, 0x6d, 0xfc, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0x2, 0x1b}, @generic={0xdb, 0x10, "2c59a1060826629888b0b2a3163a420da5763e6183ff3d0bcbc72a5ac0097628b2a55ed0228287461a0af0c4ea342f9749910a9af69856604d6eb8276466656c3ef366f0eb405cbcc518030f2eb1f09b69a8c8e10de8b773ddc8c4da60fa04d4c5b38141cffe3c9424ae03094e44dc1b6c444b142166df4f4a7463ae3192eb22c53de42c873e9f8038ed2ca828d9378e439bd6486646c08507de39de952513bddb14d48dcd82cfd662b41691a483b94b7b5edfad08062d56d3191c4fe7bf312509c1bd8f9532915205ecd2ef3a36296e1e8d2b97b7ce20ef1f"}]}}, {{0x9, 0x5, 0x4, 0x0, 0x400, 0xd3, 0x1, 0x5, [@uac_iso={0x7, 0x25, 0x1, 0x83, 0x1, 0x7}]}}, {{0x9, 0x5, 0x7, 0x10, 0x20, 0x0, 0x3, 0x9}}, {{0x9, 0x5, 0x6, 0x1, 0x0, 0x3, 0xda, 0x2}}]}}]}}]}}, &(0x7f0000000240)={0xa, &(0x7f0000000000)={0xa, 0x6, 0x110, 0x5, 0x4, 0x40, 0x40, 0xfc}, 0x35, &(0x7f0000000080)={0x5, 0xf, 0x35, 0x3, [@generic={0x10, 0x10, 0xa, "3a32299edcd156c1eccb95a6ff"}, @ssp_cap={0xc, 0x10, 0xa, 0x9, 0x0, 0xa, 0xf000, 0x25f}, @ss_container_id={0x14, 0x10, 0x4, 0x7, "8d113cab76c2f43b19f609f4a4244fe4"}]}, 0x2, [{0x4, &(0x7f00000001c0)=@lang_id={0x4, 0x3, 0xc04}}, {0x4, &(0x7f0000000200)=@lang_id={0x4, 0x3, 0x2801}}]})
ioctl$DMA_BUF_IOCTL_SYNC(r5, 0x40086201, &(0x7f0000000480)=0x5)

490.857077ms ago: executing program 4 (id=1205):
r0 = syz_open_dev$loop(&(0x7f0000000180), 0x7, 0x2480)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
r2 = syz_io_uring_setup(0x24fa, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
fcntl$setstatus(r5, 0x4, 0x42000)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x7ff})
io_uring_enter(r2, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000001a40)=[@in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x12}}, @in={0x2, 0x0, @local}, @in={0x2, 0x0, @multicast1}], 0x30)
ioctl$LOOP_SET_DIRECT_IO(r0, 0x4c08, 0x591)

490.659144ms ago: executing program 4 (id=1206):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0010002200200025bd7000fb05df250a1014061900000800000100cf8a1723c3411d244036ad9268053c45a5eacbd7c611449dfd8f4506cef51c9e70d26ae6495a56e066f2334d27699bd6eed748a999ae6c86a8626240967653ab0b6618dfbb6c1fb6ff6649305ea6b2e86ffa2a845420bf471f93ba0e3c00501a3bf60da0063c7718770d7a0d0a65da333fcab571e63bbe05c4d607c01bad1086ebb49e9679635faf6a"], 0x1c}, 0x1, 0x0, 0x0, 0x4004880}, 0x4894)
r1 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000880)=@newtaction={0x70, 0x30, 0x53b, 0x0, 0x0, {0x9}, [{0x5c, 0x1, [@m_sample={0x58, 0x14, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PSAMPLE_GROUP={0x8}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x0, 0x0, 0x0, 0x2}}, @TCA_SAMPLE_RATE={0x8}]}, {0x4}, {0xc}, {0xc, 0x4}}}]}]}, 0x70}}, 0x850)
munmap(&(0x7f0000002000/0x2000)=nil, 0x2000)
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newtaction={0x6c, 0x30, 0x1, 0x70bd26, 0x1000000, {}, [{0x58, 0x1, [@m_mpls={0x54, 0x1, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_MPLS_PROTO={0x6, 0x4, 0x88e5}, @TCA_MPLS_PARMS={0x1c, 0x2, {{0xe5b7, 0x904, 0x5, 0x5e0, 0x2}, 0x3}}]}, {0x4, 0x4}, {0xc}, {0xc}}}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4000800}, 0xc0)
brk(0x100000000)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000040)={0x50, 0x0, 0x0, {0x7, 0x1f, 0xe0000000, 0x5e490420, 0x2, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}}, 0x50)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="ad43"], 0x14}, 0x1, 0x0, 0x0, 0x20000054}, 0x0)
read$FUSE(r2, &(0x7f0000001d00)={0x2020}, 0x2020)

419.957445ms ago: executing program 4 (id=1207):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000080), 0x47ffffa, 0x122c42)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f0000001ac0)={r0, 0x400, {0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x100, 0x4, "339f020bbe82b39800ca00000000000000000d0ec0c1b4e9b1c4369d00000250ceaac594b1b3d741dd17c1010038ef2a565ef1e83333691c58d66500", "a9103939c787a16c1ca43f80026d1a8554fe581b59ded130e04d528539f3d3289737f0374c72a964a02447a75df8a69ea917deb7ba193b3e7772fd29f35239d2", "24431a1e77a68e174f000000000000000010e200"}})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r2, 0x0, 0x7, &(0x7f0000000180)=0x6, 0x4)
landlock_create_ruleset(0xffffffffffffffff, 0x6c, 0x0)
r3 = dup(r1)
read$FUSE(r3, &(0x7f0000003780)={0x2020}, 0xffffff82)

419.755379ms ago: executing program 4 (id=1208):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x1, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x42280, 0x0)
close(r1)
ioctl$KVM_CHECK_EXTENSION(r2, 0xae01, 0x1)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, 0x0}], 0x1, 0x53, 0x0, 0x0)
ioctl$KVM_SET_MEMORY_ATTRIBUTES(r1, 0x4020aed2, &(0x7f0000000040)={0xeeee0000, 0x399000, 0x8}) (fail_nth: 11)

180.833924ms ago: executing program 4 (id=1209):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x78}}, 0x0)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f0000000000)={0x7, 0x7, {}, {<r1=>0xee01}, 0x3, 0x2})
quotactl_fd$Q_QUOTAON(r0, 0xffffffff80000200, r1, &(0x7f00000000c0)='./file0\x00')

179.354769ms ago: executing program 4 (id=1210):
r0 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r1 = dup(r0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x5, &(0x7f0000002500)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe89, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
socket(0x21, 0x3, 0x6)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000834000/0x2000)=nil, 0x2000, 0x1c, 0x4000010, r1, 0x0)
syz_emit_ethernet(0x7e, &(0x7f0000000240)={@local, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "e90110", 0x48, 0x3a, 0x0, @remote, @mcast2, {[], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, "271e46", 0x0, 0x33, 0x0, @local, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [@routing={0x29, 0x2, 0x0, 0x0, 0x0, [@private2]}]}}}}}}}, 0x0)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r5 = syz_io_uring_setup(0x24fc, &(0x7f0000000400)={0x0, 0x0, 0x10100}, &(0x7f00000003c0)=<r6=>0x0, &(0x7f0000000000)=<r7=>0x0)
socket$kcm(0x29, 0x2, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000180)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r4, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0, 0x40012060})
r8 = syz_io_uring_setup(0x9a6, &(0x7f0000007640)={0x0, 0x17f0, 0x8a, 0x3, 0x343, 0x0, r5}, &(0x7f00000001c0), &(0x7f0000000140))
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r8, 0xa, 0x0, r9)
syz_io_uring_submit(r3, r7, &(0x7f0000000040)=@IORING_OP_CLOSE={0x13, 0x4, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r9}})
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000007, 0x38011, 0xffffffffffffffff, 0x0)
r10 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r11 = dup(r10)
write$UHID_INPUT(r11, &(0x7f0000004000)={0xf, {"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", 0xfffffffffffffe59}}, 0xfa)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1)
r12 = socket(0x1e, 0x1, 0x0)
socket$alg(0x26, 0x5, 0x0)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f0000000100)={0xc})
connect$tipc(r12, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0x3}}, 0x10)
write$binfmt_misc(r12, &(0x7f0000000080), 0x2000011a)

98.556µs ago: executing program 2 (id=1211):
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00') (async)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf) (async)
r2 = fcntl$dupfd(r1, 0x406, r1)
ioctl$TCFLSH(r2, 0x400455c8, 0x2)
close_range(r0, r2, 0x0) (async)
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000001500)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000005000)="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", 0x185}], 0x1}, 0x20042001) (async)
r3 = syz_open_dev$mouse(&(0x7f00000000c0), 0x0, 0x2042)
writev(r3, &(0x7f0000000000)=[{&(0x7f0000000640)="f3", 0xf000}], 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000000c0)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = syz_open_dev$radio(&(0x7f0000002040), 0x3, 0x2)
ioctl$VIDIOC_S_MODULATOR(r4, 0x40445637, &(0x7f0000002080)={0x0, "432e8e0e0ff1fcc4834efc7ee1c3927c3d59655f7878a7f2de909f3ffdfbf739", 0x0, 0x100, 0x0, 0x1}) (async)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r6, 0x8933, &(0x7f0000000600)={'team0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=@newqdisc={0x9c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r7, {0x0, 0x4}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x6c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1], 0x0, [0x8, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100], [0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x4]}}, @TCA_TAPRIO_ATTR_FLAGS={0x8, 0xa, 0x1}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x8, 0xc, 0x0, 0x1, [{0x4}]}]}}]}, 0x9c}}, 0x0)

0s ago: executing program 1 (id=893):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e22, @local}, 0x10)
sendmmsg$inet_sctp(r0, &(0x7f0000004900)=[{&(0x7f00000000c0)=@in={0x2, 0x4e22, @local}, 0x10, &(0x7f0000000180)=[{&(0x7f0000000100)="f4", 0x34000}], 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB="18e00000000000008400000007000000ac1e010100000000180000000000000084000000070000000a0101020000000018000000000000008400000007000000ac1414000000"], 0x48, 0x4}], 0x1, 0x0)

0s ago: executing program 2 (id=1212):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000640)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x700, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="050027bd7000080000002e00000008000300", @ANYRES32=r2, @ANYBLOB="1e009400000406e36c0000000000000300090003000000010004000000025e000a00340002020202020200001e00940002000b00f8ffffffffffff4000070002000000080044070000b70000060098"], 0x7c}, 0x1, 0x0, 0x0, 0x20000040}, 0x48084)

kernel console output (not intermixed with test programs):

 type 2 family 0 port 6081 - 0
[  115.799061][ T9114] FAULT_INJECTION: forcing a failure.
[  115.799061][ T9114] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  115.802715][ T9114] CPU: 2 UID: 0 PID: 9114 Comm: syz.4.913 Not tainted 6.14.0-rc5-syzkaller-00137-g00a7d39898c8 #0
[  115.802729][ T9114] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  115.802736][ T9114] Call Trace:
[  115.802740][ T9114]  <TASK>
[  115.802744][ T9114]  dump_stack_lvl+0x16c/0x1f0
[  115.802761][ T9114]  should_fail_ex+0x50a/0x650
[  115.802780][ T9114]  _copy_to_user+0x32/0xd0
[  115.802802][ T9114]  simple_read_from_buffer+0xd0/0x160
[  115.802822][ T9114]  proc_fail_nth_read+0x198/0x270
[  115.802837][ T9114]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  115.802852][ T5714] usb 7-1: device descriptor read/64, error -71
[  115.802853][ T9114]  ? rw_verify_area+0xcf/0x680
[  115.802868][ T9114]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  115.802882][ T9114]  vfs_read+0x1df/0xbf0
[  115.802898][ T9114]  ? __fget_files+0x1fc/0x3a0
[  115.802909][ T9114]  ? __pfx___mutex_lock+0x10/0x10
[  115.802941][ T9114]  ? __pfx_vfs_read+0x10/0x10
[  115.802961][ T9114]  ? __fget_files+0x206/0x3a0
[  115.802975][ T9114]  ksys_read+0x12b/0x250
[  115.802990][ T9114]  ? __pfx_ksys_read+0x10/0x10
[  115.803010][ T9114]  do_syscall_64+0xcd/0x250
[  115.803024][ T9114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.803039][ T9114] RIP: 0033:0x7f017ef8bb7c
[  115.803048][ T9114] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  115.803059][ T9114] RSP: 002b:00007f017fdb9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  115.803069][ T9114] RAX: ffffffffffffffda RBX: 00007f017f1a5fa0 RCX: 00007f017ef8bb7c
[  115.803075][ T9114] RDX: 000000000000000f RSI: 00007f017fdb90a0 RDI: 0000000000000004
[  115.803081][ T9114] RBP: 00007f017fdb9090 R08: 0000000000000000 R09: 0000000000000000
[  115.803087][ T9114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.803093][ T9114] R13: 0000000000000000 R14: 00007f017f1a5fa0 R15: 00007ffc683f0728
[  115.803105][ T9114]  </TASK>
[  115.837120][   T39] audit: type=1400 audit(1741360637.858:530): avc:  denied  { setopt } for  pid=9116 comm="syz.4.914" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  115.893870][ T9096] chnl_net:caif_netlink_parms(): no params data found
[  115.932042][ T9126] dlm: non-version read from control device 0
[  115.962133][ T1148] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  115.980016][ T9096] bridge0: port 1(bridge_slave_0) entered blocking state
[  115.982052][ T9096] bridge0: port 1(bridge_slave_0) entered disabled state
[  115.984764][ T9096] bridge_slave_0: entered allmulticast mode
[  115.986776][ T9096] bridge_slave_0: entered promiscuous mode
[  115.989228][ T9096] bridge0: port 2(bridge_slave_1) entered blocking state
[  115.991228][ T9096] bridge0: port 2(bridge_slave_1) entered disabled state
[  115.993194][ T9096] bridge_slave_1: entered allmulticast mode
[  115.995214][ T9096] bridge_slave_1: entered promiscuous mode
[  116.012816][ T9096] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  116.016435][ T9096] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  116.040084][ T9096] team0: Port device team_slave_0 added
[  116.043764][ T9096] team0: Port device team_slave_1 added
[  116.077168][ T1148] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.081856][ T9096] batman_adv: batadv0: Adding interface: batadv_slave_0
[  116.085990][ T9096] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  116.093253][ T9096] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  116.093594][ T5714] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  116.096808][ T9096] batman_adv: batadv0: Adding interface: batadv_slave_1
[  116.099838][ T9096] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  116.107056][ T9096] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  116.129935][ T9096] hsr_slave_0: entered promiscuous mode
[  116.131873][ T9096] hsr_slave_1: entered promiscuous mode
[  116.134424][ T9096] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  116.136775][ T9096] Cannot create hsr debugfs directory
[  116.197298][ T1148] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.223076][ T5714] usb 7-1: device descriptor read/64, error -71
[  116.304771][ T1148] bridge_slave_1: left allmulticast mode
[  116.306387][ T1148] bridge_slave_1: left promiscuous mode
[  116.308017][ T1148] bridge0: port 2(bridge_slave_1) entered disabled state
[  116.312018][ T1148] bridge_slave_0: left allmulticast mode
[  116.314694][ T1148] bridge_slave_0: left promiscuous mode
[  116.316335][ T1148] bridge0: port 1(bridge_slave_0) entered disabled state
[  116.343128][ T5714] usb usb7-port1: attempt power cycle
[  116.404143][ T5979] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  116.562770][ T5979] usb 9-1: Using ep0 maxpacket: 16
[  116.565474][ T5979] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  116.568419][ T5979] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  116.571175][ T5979] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  116.574657][ T5979] usb 9-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  116.577519][ T5979] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  116.580823][ T5979] usb 9-1: config 0 descriptor??
[  116.608637][ T1148] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  116.612596][ T1148] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  116.619820][ T1148] bond0 (unregistering): Released all slaves
[  116.705133][ T5714] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  116.736885][ T5714] usb 7-1: device descriptor read/8, error -71
[  116.865624][ T5949] Bluetooth: hci0: command tx timeout
[  116.975277][ T1148] hsr_slave_0: left promiscuous mode
[  116.977161][ T1148] hsr_slave_1: left promiscuous mode
[  116.979036][ T1148] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  116.981128][ T1148] batman_adv: batadv0: Removing interface: batadv_slave_0
[  116.986691][ T1148] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  116.988821][ T1148] batman_adv: batadv0: Removing interface: batadv_slave_1
[  116.993556][ T5979] shield 0003:0955:7214.0006: unknown main item tag 0x0
[  116.995764][ T5979] shield 0003:0955:7214.0006: unknown main item tag 0x0
[  116.997675][ T5979] shield 0003:0955:7214.0006: unknown main item tag 0x0
[  116.999593][ T5979] shield 0003:0955:7214.0006: unknown main item tag 0x0
[  117.001492][ T5979] shield 0003:0955:7214.0006: unknown main item tag 0x0
[  117.003900][ T5714] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  117.007226][ T5979] input: HID 0955:7214 Haptics as /devices/virtual/input/input13
[  117.015146][ T1148] veth1_macvtap: left promiscuous mode
[  117.017055][ T1148] veth0_macvtap: left promiscuous mode
[  117.018603][ T1148] veth1_vlan: left promiscuous mode
[  117.020116][ T1148] veth0_vlan: left promiscuous mode
[  117.027672][ T5714] usb 7-1: device descriptor read/8, error -71
[  117.033377][ T5979] shield 0003:0955:7214.0006: Registered Thunderstrike controller
[  117.035663][ T5979] shield 0003:0955:7214.0006: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.4-1/input0
[  117.133142][ T5714] usb usb7-port1: unable to enumerate USB device
[  117.193001][ T9133] netlink: 256 bytes leftover after parsing attributes in process `syz.4.916'.
[  117.645721][ T1148] team0 (unregistering): Port device team_slave_1 removed
[  117.717124][ T1148] team0 (unregistering): Port device team_slave_0 removed
[  118.059918][ T6107] shield 0003:0955:7214.0006: Failed to output Thunderstrike HOSTCMD request HID report due to -ESHUTDOWN
[  118.079462][ T6107] shield 0003:0955:7214.0006: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[  118.089438][ T6107] shield 0003:0955:7214.0006: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[  118.096613][ T6107] shield 0003:0955:7214.0006: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[  118.213235][ T5714] usb 9-1: reset high-speed USB device number 4 using dummy_hcd
[  118.253834][ T9160] No such timeout policy "syz1"
[  118.281156][   T39] audit: type=1400 audit(1741360640.298:531): avc:  denied  { read } for  pid=9163 comm="syz.2.918" name="usbmon0" dev="devtmpfs" ino=737 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  118.288814][   T39] audit: type=1400 audit(1741360640.298:532): avc:  denied  { open } for  pid=9163 comm="syz.2.918" path="/dev/usbmon0" dev="devtmpfs" ino=737 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  118.288947][ T9096] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  118.295815][   T39] audit: type=1400 audit(1741360640.308:533): avc:  denied  { map } for  pid=9163 comm="syz.2.918" path="/dev/usbmon0" dev="devtmpfs" ino=737 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  118.305199][ T9096] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  118.308313][ T9096] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  118.311309][ T9096] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  118.342772][ T5714] usb 9-1: device descriptor read/64, error -32
[  118.363035][ T9096] 8021q: adding VLAN 0 to HW filter on device bond0
[  118.371047][ T9096] 8021q: adding VLAN 0 to HW filter on device team0
[  118.375765][   T77] bridge0: port 1(bridge_slave_0) entered blocking state
[  118.377744][   T77] bridge0: port 1(bridge_slave_0) entered forwarding state
[  118.382357][  T219] bridge0: port 2(bridge_slave_1) entered blocking state
[  118.384447][  T219] bridge0: port 2(bridge_slave_1) entered forwarding state
[  118.446803][ T9184] FAULT_INJECTION: forcing a failure.
[  118.446803][ T9184] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  118.456276][ T9184] CPU: 0 UID: 0 PID: 9184 Comm: syz.2.921 Not tainted 6.14.0-rc5-syzkaller-00137-g00a7d39898c8 #0
[  118.456292][ T9184] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  118.456299][ T9184] Call Trace:
[  118.456302][ T9184]  <TASK>
[  118.456306][ T9184]  dump_stack_lvl+0x16c/0x1f0
[  118.456324][ T9184]  should_fail_ex+0x50a/0x650
[  118.456343][ T9184]  _copy_to_user+0x32/0xd0
[  118.456354][ T9184]  simple_read_from_buffer+0xd0/0x160
[  118.456371][ T9184]  proc_fail_nth_read+0x198/0x270
[  118.456387][ T9184]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  118.456402][ T9184]  ? rw_verify_area+0xcf/0x680
[  118.456417][ T9184]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  118.456432][ T9184]  vfs_read+0x1df/0xbf0
[  118.456448][ T9184]  ? __fget_files+0x1fc/0x3a0
[  118.456458][ T9184]  ? __pfx___mutex_lock+0x10/0x10
[  118.456472][ T9184]  ? __pfx_vfs_read+0x10/0x10
[  118.456492][ T9184]  ? __fget_files+0x206/0x3a0
[  118.456505][ T9184]  ksys_read+0x12b/0x250
[  118.456521][ T9184]  ? __pfx_ksys_read+0x10/0x10
[  118.456541][ T9184]  do_syscall_64+0xcd/0x250
[  118.456555][ T9184]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.456570][ T9184] RIP: 0033:0x7f76aad8bb7c
[  118.456579][ T9184] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  118.456590][ T9184] RSP: 002b:00007f76a8bf6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  118.456600][ T9184] RAX: ffffffffffffffda RBX: 00007f76aafa5fa0 RCX: 00007f76aad8bb7c
[  118.456607][ T9184] RDX: 000000000000000f RSI: 00007f76a8bf60a0 RDI: 0000000000000004
[  118.456613][ T9184] RBP: 00007f76a8bf6090 R08: 0000000000000000 R09: 0000000000000000
[  118.456619][ T9184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  118.456625][ T9184] R13: 0000000000000000 R14: 00007f76aafa5fa0 R15: 00007ffee63e2728
[  118.456637][ T9184]  </TASK>
[  118.475010][ T9096] 8021q: adding VLAN 0 to HW filter on device batadv0
[  118.551219][   T39] audit: type=1400 audit(1741360640.568:534): avc:  denied  { map } for  pid=9186 comm="syz.2.922" path="/dev/nvram" dev="devtmpfs" ino=631 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  118.613886][ T9096] veth0_vlan: entered promiscuous mode
[  118.618062][ T9096] veth1_vlan: entered promiscuous mode
[  118.629453][ T9096] veth0_macvtap: entered promiscuous mode
[  118.632460][ T9096] veth1_macvtap: entered promiscuous mode
[  118.637905][ T9096] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  118.640780][ T9096] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.643583][ T9096] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  118.646425][ T9096] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.649111][ T9096] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  118.651938][ T9096] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.655370][ T9096] batman_adv: batadv0: Interface activated: batadv_slave_0
[  118.659943][ T9096] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  118.664181][ T9096] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.668135][ T9096] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  118.671114][ T9096] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.673870][ T9096] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  118.676645][ T9096] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.679895][ T9096] batman_adv: batadv0: Interface activated: batadv_slave_1
[  118.687300][ T9096] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  118.690652][ T9096] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  118.693994][ T9096] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  118.697085][ T9096] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  118.722448][ T1141] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.727568][ T1141] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.737913][ T1229] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.740210][ T1229] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.811194][ T1148] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.919331][   T65] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  118.923433][   T65] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  118.926825][   T65] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  118.930659][   T65] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  118.932871][   T35] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  118.934164][   T65] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  118.938184][   T65] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  119.009171][ T1148] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.029888][ T9206] chnl_net:caif_netlink_parms(): no params data found
[  119.056263][   T39] audit: type=1400 audit(1741360641.078:535): avc:  denied  { execute } for  pid=9204 comm="syz.4.926" path="/dev/video8" dev="devtmpfs" ino=976 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  119.082698][   T35] usb 7-1: Using ep0 maxpacket: 16
[  119.085346][   T35] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  119.088293][   T35] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  119.090910][   T35] usb 7-1: New USB device found, idVendor=05ac, idProduct=8241, bcdDevice= 0.00
[  119.093520][   T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  119.097132][   T35] usb 7-1: config 0 descriptor??
[  119.114353][ T1148] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.119604][ T9206] bridge0: port 1(bridge_slave_0) entered blocking state
[  119.121654][ T9206] bridge0: port 1(bridge_slave_0) entered disabled state
[  119.123951][ T9206] bridge_slave_0: entered allmulticast mode
[  119.126218][ T9206] bridge_slave_0: entered promiscuous mode
[  119.130807][ T9206] bridge0: port 2(bridge_slave_1) entered blocking state
[  119.132766][ T9206] bridge0: port 2(bridge_slave_1) entered disabled state
[  119.134780][ T9206] bridge_slave_1: entered allmulticast mode
[  119.137014][ T9206] bridge_slave_1: entered promiscuous mode
[  119.163972][ T9206] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  119.168420][ T9206] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  119.202413][ T1148] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.210000][ T9206] team0: Port device team_slave_0 added
[  119.213822][ T9206] team0: Port device team_slave_1 added
[  119.225563][ T6107] usb 9-1: USB disconnect, device number 4
[  119.248455][ T9206] batman_adv: batadv0: Adding interface: batadv_slave_0
[  119.250329][ T9206] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  119.257798][ T9206] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  119.261766][ T9206] batman_adv: batadv0: Adding interface: batadv_slave_1
[  119.264033][ T9206] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  119.270999][ T9206] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  119.306402][ T9206] hsr_slave_0: entered promiscuous mode
[  119.308928][ T9206] hsr_slave_1: entered promiscuous mode
[  119.310937][ T9206] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  119.313161][ T9206] Cannot create hsr debugfs directory
[  119.367139][ T1148] bridge_slave_1: left allmulticast mode
[  119.368666][ T1148] bridge_slave_1: left promiscuous mode
[  119.370199][ T1148] bridge0: port 2(bridge_slave_1) entered disabled state
[  119.373258][ T1148] bridge_slave_0: left allmulticast mode
[  119.374753][ T1148] bridge_slave_0: left promiscuous mode
[  119.376296][ T1148] bridge0: port 1(bridge_slave_0) entered disabled state
[  119.503886][ T9198] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  119.506356][ T9198] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  119.511541][   T35] appleir 0003:05AC:8241.0007: unknown main item tag 0x0
[  119.513976][   T35] appleir 0003:05AC:8241.0007: unknown main item tag 0x0
[  119.516002][   T35] appleir 0003:05AC:8241.0007: unknown main item tag 0x0
[  119.517961][   T35] appleir 0003:05AC:8241.0007: unknown main item tag 0x0
[  119.519957][   T35] appleir 0003:05AC:8241.0007: unknown main item tag 0x0
[  119.522193][   T35] appleir 0003:05AC:8241.0007: No inputs registered, leaving
[  119.527887][   T35] appleir 0003:05AC:8241.0007: hiddev0,hidraw1: USB HID v0.00 Device [HID 05ac:8241] on usb-dummy_hcd.2-1/input0
[  119.658871][ T1148] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  119.662444][ T1148] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  119.665724][ T1148] bond0 (unregistering): Released all slaves
[  119.767517][   T39] audit: type=1326 audit(1741360641.788:536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9220 comm="syz.4.927" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f017ef8d169 code=0x0
[  119.781311][ T9198] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  119.785816][ T9198] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  119.789790][ T9199] usb 7-1: USB disconnect, device number 14
[  119.857113][   T39] audit: type=1400 audit(1741360641.878:537): avc:  denied  { execute } for  pid=9225 comm="syz.4.928" name="file0" dev="ramfs" ino=36274 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=file permissive=1
[  119.871646][   T39] audit: type=1400 audit(1741360641.878:538): avc:  denied  { execute_no_trans } for  pid=9225 comm="syz.4.928" path="/file0" dev="ramfs" ino=36274 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=file permissive=1
[  119.999580][ T9235] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  120.000245][ T9226] IPVS: stopping master sync thread 9235 ...
[  120.074040][ T1148] hsr_slave_0: left promiscuous mode
[  120.079625][ T1148] hsr_slave_1: left promiscuous mode
[  120.081346][ T1148] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  120.083714][ T1148] batman_adv: batadv0: Removing interface: batadv_slave_0
[  120.086144][ T1148] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  120.088278][ T1148] batman_adv: batadv0: Removing interface: batadv_slave_1
[  120.108434][ T1148] veth1_macvtap: left promiscuous mode
[  120.110107][ T1148] veth0_macvtap: left promiscuous mode
[  120.112953][ T1148] veth1_vlan: left promiscuous mode
[  120.114466][ T1148] veth0_vlan: left promiscuous mode
[  120.339614][   T39] audit: type=1400 audit(1741360642.358:539): avc:  denied  { map } for  pid=9243 comm="syz.2.930" path="/dev/tty25" dev="devtmpfs" ino=44 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tty_device_t tclass=chr_file permissive=1
[  120.777431][ T1148] team0 (unregistering): Port device team_slave_1 removed
[  120.857213][ T1148] team0 (unregistering): Port device team_slave_0 removed
[  121.035677][   T65] Bluetooth: hci0: command tx timeout
[  121.405237][ T9242] FAULT_INJECTION: forcing a failure.
[  121.405237][ T9242] name failslab, interval 1, probability 0, space 0, times 0
[  121.408711][ T9242] CPU: 0 UID: 0 PID: 9242 Comm: syz.4.929 Not tainted 6.14.0-rc5-syzkaller-00137-g00a7d39898c8 #0
[  121.408725][ T9242] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  121.408732][ T9242] Call Trace:
[  121.408736][ T9242]  <TASK>
[  121.408741][ T9242]  dump_stack_lvl+0x16c/0x1f0
[  121.408759][ T9242]  should_fail_ex+0x50a/0x650
[  121.408777][ T9242]  ? nfc_genl_rcv_nl_event+0xc1/0x2e0
[  121.408792][ T9242]  should_failslab+0xc2/0x120
[  121.408805][ T9242]  __kmalloc_cache_noprof+0x68/0x410
[  121.408822][ T9242]  ? lock_acquire+0x2f/0xb0
[  121.408837][ T9242]  ? blocking_notifier_call_chain+0x53/0xa0
[  121.408853][ T9242]  nfc_genl_rcv_nl_event+0xc1/0x2e0
[  121.408868][ T9242]  notifier_call_chain+0xb7/0x410
[  121.408879][ T9242]  ? __pfx_nfc_genl_rcv_nl_event+0x10/0x10
[  121.408896][ T9242]  blocking_notifier_call_chain+0x69/0xa0
[  121.408913][ T9242]  netlink_release+0x1838/0x1fe0
[  121.408930][ T9242]  ? netlink_release+0x1df/0x1fe0
[  121.408945][ T9242]  ? __pfx_netlink_release+0x10/0x10
[  121.408960][ T9242]  ? __pfx_locks_remove_file+0x10/0x10
[  121.408977][ T9242]  __sock_release+0xb0/0x270
[  121.408994][ T9242]  ? __pfx_sock_close+0x10/0x10
[  121.409009][ T9242]  sock_close+0x1c/0x30
[  121.409023][ T9242]  __fput+0x3ff/0xb70
[  121.409036][ T9242]  ? _raw_spin_unlock_irq+0x23/0x50
[  121.409049][ T9242]  task_work_run+0x14e/0x250
[  121.409064][ T9242]  ? __pfx_task_work_run+0x10/0x10
[  121.409082][ T9242]  get_signal+0x1d3/0x26c0
[  121.409098][ T9242]  ? kick_process+0xf6/0x1b0
[  121.409114][ T9242]  ? task_work_add+0x1d6/0x370
[  121.409128][ T9242]  ? __pfx_task_work_add+0x10/0x10
[  121.409141][ T9242]  ? __pfx___file_ref_put+0x10/0x10
[  121.409158][ T9242]  ? __pfx_get_signal+0x10/0x10
[  121.409178][ T9242]  arch_do_signal_or_restart+0x90/0x7e0
[  121.409192][ T9242]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  121.409212][ T9242]  syscall_exit_to_user_mode+0x150/0x2a0
[  121.409226][ T9242]  do_syscall_64+0xda/0x250
[  121.409240][ T9242]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.409255][ T9242] RIP: 0033:0x7f017ef8d169
[  121.409264][ T9242] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.409274][ T9242] RSP: 002b:00007f017fdb9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  121.409284][ T9242] RAX: 000000000000008c RBX: 00007f017f1a5fa0 RCX: 00007f017ef8d169
[  121.409291][ T9242] RDX: 0000000000000000 RSI: 0000400000000000 RDI: 0000000000000003
[  121.409297][ T9242] RBP: 00007f017fdb9090 R08: 0000000000000000 R09: 0000000000000000
[  121.409303][ T9242] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  121.409309][ T9242] R13: 0000000000000000 R14: 00007f017f1a5fa0 R15: 00007ffc683f0728
[  121.409322][ T9242]  </TASK>
[  121.453230][ T9206] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  121.463425][ T9257] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  121.504014][ T9206] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  121.518849][ T9206] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  121.529484][ T9206] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  121.582427][ T9206] 8021q: adding VLAN 0 to HW filter on device bond0
[  121.591027][ T9206] 8021q: adding VLAN 0 to HW filter on device team0
[  121.597898][   T69] bridge0: port 1(bridge_slave_0) entered blocking state
[  121.600178][   T69] bridge0: port 1(bridge_slave_0) entered forwarding state
[  121.608989][   T69] bridge0: port 2(bridge_slave_1) entered blocking state
[  121.611004][   T69] bridge0: port 2(bridge_slave_1) entered forwarding state
[  121.706796][ T9206] 8021q: adding VLAN 0 to HW filter on device batadv0
[  121.725188][ T9206] veth0_vlan: entered promiscuous mode
[  121.729239][ T9206] veth1_vlan: entered promiscuous mode
[  121.740274][ T9206] veth0_macvtap: entered promiscuous mode
[  121.744393][ T9206] veth1_macvtap: entered promiscuous mode
[  121.749837][ T9206] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  121.752566][ T9206] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.758908][ T9206] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  121.762838][ T9206] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.765393][ T9206] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  121.768206][ T9206] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.771267][ T9206] batman_adv: batadv0: Interface activated: batadv_slave_0
[  121.775313][ T9206] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  121.778039][ T9206] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.780550][ T9206] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  121.783648][ T9206] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.786168][ T9206] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  121.788856][ T9206] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  121.791836][ T9206] batman_adv: batadv0: Interface activated: batadv_slave_1
[  121.799928][ T9206] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  121.806283][ T9206] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  121.812556][ T9206] wireguard: wg0: Could not create IPv4 socket
[  121.815996][ T9206] wireguard: wg1: Could not create IPv4 socket
[  121.818904][ T9206] wireguard: wg2: Could not create IPv4 socket
[  121.925420][ T1229] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.460686][ T5949] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  122.466021][ T5949] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  122.467770][ T9277] netlink: 28 bytes leftover after parsing attributes in process `syz.4.935'.
[  122.468841][ T5949] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  122.475066][ T5949] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  122.477640][ T5949] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  122.480041][ T5949] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  122.503843][ T9274] Failed to initialize the IGMP autojoin socket (err -2)
[  122.505501][ T9281] netlink: 36 bytes leftover after parsing attributes in process `syz.4.937'.
[  122.509471][ T5355] Dev loop6: unable to read RDB block 6
[  122.510179][ T9281] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  122.510982][ T5355]  loop6: unable to read partition table
[  122.517168][ T5355] loop6: partition table beyond EOD, truncated
[  122.634223][ T9274] chnl_net:caif_netlink_parms(): no params data found
[  122.716880][ T1229] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.767034][ T9274] bridge0: port 1(bridge_slave_0) entered blocking state
[  122.772295][ T9274] bridge0: port 1(bridge_slave_0) entered disabled state
[  122.777714][ T9274] bridge_slave_0: entered allmulticast mode
[  122.783882][ T9274] bridge_slave_0: entered promiscuous mode
[  122.796645][ T1229] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.801899][ T9274] bridge0: port 2(bridge_slave_1) entered blocking state
[  122.806953][ T9274] bridge0: port 2(bridge_slave_1) entered disabled state
[  122.809056][ T9274] bridge_slave_1: entered allmulticast mode
[  122.811679][ T9274] bridge_slave_1: entered promiscuous mode
[  122.857088][ T9274] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  122.872448][ T1229] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.883972][ T9274] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  122.959139][ T9274] team0: Port device team_slave_0 added
[  122.967334][ T9274] team0: Port device team_slave_1 added
[  123.003441][ T9274] batman_adv: batadv0: Adding interface: batadv_slave_0
[  123.006702][ T9274] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  123.015045][ T9274] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  123.018827][ T9274] batman_adv: batadv0: Adding interface: batadv_slave_1
[  123.020721][ T9274] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  123.027855][ T9274] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  123.091692][ T9274] hsr_slave_0: entered promiscuous mode
[  123.094422][ T9274] hsr_slave_1: entered promiscuous mode
[  123.096508][ T9274] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  123.098626][ T9274] Cannot create hsr debugfs directory
[  123.198076][ T1229] bridge_slave_1: left allmulticast mode
[  123.199718][ T1229] bridge_slave_1: left promiscuous mode
[  123.202060][ T1229] bridge0: port 2(bridge_slave_1) entered disabled state
[  123.207596][ T1229] bridge_slave_0: left allmulticast mode
[  123.209439][ T1229] bridge_slave_0: left promiscuous mode
[  123.211062][ T1229] bridge0: port 1(bridge_slave_0) entered disabled state
[  123.417248][ T1229] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  123.427404][ T1229] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  123.437230][ T1229] bond0 (unregistering): Released all slaves
[  123.586149][ T9316] Bluetooth: MGMT ver 1.23
[  123.655342][ T9322] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=12 sclass=netlink_route_socket pid=9322 comm=syz.2.946
[  123.682004][ T9324] ubi31: attaching mtd0
[  123.684819][ T9324] ubi31: scanning is finished
[  123.686149][ T9324] ubi31: empty MTD device detected
[  123.809544][ T1229] hsr_slave_0: left promiscuous mode
[  123.811575][ T1229] hsr_slave_1: left promiscuous mode
[  123.813478][ T1229] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  123.815650][ T1229] batman_adv: batadv0: Removing interface: batadv_slave_0
[  123.821213][ T1229] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  123.821219][ T9324] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[  123.823493][ T1229] batman_adv: batadv0: Removing interface: batadv_slave_1
[  123.825966][ T9324] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  123.830554][ T9324] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[  123.832477][ T9324] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[  123.836948][ T9324] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  123.838881][ T9324] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[  123.841036][ T9324] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 2456279608
[  123.843807][ T9324] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  123.846556][ T9328] ubi31: background thread "ubi_bgt31d" started, PID 9328
[  123.857260][ T1229] veth1_macvtap: left promiscuous mode
[  123.858762][ T1229] veth0_macvtap: left promiscuous mode
[  123.860273][ T1229] veth1_vlan: left promiscuous mode
[  123.861745][ T1229] veth0_vlan: left promiscuous mode
[  123.903221][ T9331] FAULT_INJECTION: forcing a failure.
[  123.903221][ T9331] name failslab, interval 1, probability 0, space 0, times 0
[  123.906603][ T9331] CPU: 1 UID: 0 PID: 9331 Comm: syz.4.948 Not tainted 6.14.0-rc5-syzkaller-00137-g00a7d39898c8 #0
[  123.906618][ T9331] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  123.906625][ T9331] Call Trace:
[  123.906629][ T9331]  <TASK>
[  123.906633][ T9331]  dump_stack_lvl+0x16c/0x1f0
[  123.906650][ T9331]  should_fail_ex+0x50a/0x650
[  123.906666][ T9331]  ? fs_reclaim_acquire+0xae/0x150
[  123.906683][ T9331]  should_failslab+0xc2/0x120
[  123.906696][ T9331]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  123.906708][ T9331]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  123.906725][ T9331]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  123.906744][ T9331]  mmu_topup_memory_caches+0x25/0x170
[  123.906758][ T9331]  kvm_mmu_load+0xda/0x22a0
[  123.906771][ T9331]  ? kvm_apic_has_interrupt+0xb6/0x190
[  123.906788][ T9331]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  123.906804][ T9331]  ? kvm_guest_time_update+0x71e/0xeb0
[  123.906817][ T9331]  ? __pfx_kvm_mmu_load+0x10/0x10
[  123.906830][ T9331]  ? kvm_cpu_has_injectable_intr+0x9b/0x1a0
[  123.906862][ T9331]  ? kvm_check_and_inject_events+0x725/0x12e0
[  123.906875][ T9331]  ? record_steal_time+0x61/0xbe0
[  123.906888][ T9331]  vcpu_run+0x338e/0x4f50
[  123.906900][ T9331]  ? __pfx_vmx_vcpu_load_vmcs+0x10/0x10
[  123.906921][ T9331]  ? __pfx_vcpu_run+0x10/0x10
[  123.906931][ T9331]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  123.906947][ T9331]  ? rcu_is_watching+0x12/0xc0
[  123.906958][ T9331]  ? trace_lock_acquire+0x14e/0x1f0
[  123.906970][ T9331]  ? __local_bh_enable_ip+0xa4/0x120
[  123.906985][ T9331]  ? lockdep_hardirqs_on+0x7c/0x110
[  123.906997][ T9331]  ? kvm_arch_vcpu_ioctl_run+0x1a8/0x17f0
[  123.907013][ T9331]  ? kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[  123.907025][ T9331]  kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[  123.907041][ T9331]  kvm_vcpu_ioctl+0x5ea/0x16b0
[  123.907055][ T9331]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  123.907071][ T9331]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[  123.907090][ T9331]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  123.907109][ T9331]  ? __pfx_lock_release+0x10/0x10
[  123.907129][ T9331]  ? selinux_file_ioctl+0x180/0x270
[  123.907144][ T9331]  ? selinux_file_ioctl+0xb4/0x270
[  123.907161][ T9331]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  123.907174][ T9331]  __x64_sys_ioctl+0x190/0x200
[  123.907190][ T9331]  do_syscall_64+0xcd/0x250
[  123.907204][ T9331]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.907218][ T9331] RIP: 0033:0x7f017ef8d169
[  123.907227][ T9331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.907237][ T9331] RSP: 002b:00007f017fd98038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  123.907247][ T9331] RAX: ffffffffffffffda RBX: 00007f017f1a6080 RCX: 00007f017ef8d169
[  123.907254][ T9331] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  123.907260][ T9331] RBP: 00007f017fd98090 R08: 0000000000000000 R09: 0000000000000000
[  123.907266][ T9331] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  123.907272][ T9331] R13: 0000000000000001 R14: 00007f017f1a6080 R15: 00007ffc683f0728
[  123.907285][ T9331]  </TASK>
[  124.209098][   T39] audit: type=1400 audit(1741360646.228:540): avc:  denied  { map } for  pid=9344 comm="syz.4.953" path="/dev/bus/usb/006/001" dev="devtmpfs" ino=758 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  124.556070][   T65] Bluetooth: hci0: command tx timeout
[  124.586066][ T5953] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  124.602593][ T5953] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  124.607966][ T5953] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  124.617443][ T5953] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  124.624360][ T5953] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  124.626488][ T5953] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  124.673745][ T1229] team0 (unregistering): Port device team_slave_1 removed
[  124.747289][ T1229] team0 (unregistering): Port device team_slave_0 removed
[  125.270913][ T9353] Failed to initialize the IGMP autojoin socket (err -2)
[  125.322112][   T39] audit: type=1400 audit(1741360647.338:541): avc:  denied  { create } for  pid=9357 comm="syz.4.958" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  125.332584][   T39] audit: type=1400 audit(1741360647.348:542): avc:  denied  { connect } for  pid=9357 comm="syz.4.958" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  125.373430][   T39] audit: type=1400 audit(1741360647.398:543): avc:  denied  { write } for  pid=9357 comm="syz.4.958" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  125.442125][ T9274] netdevsim netdevsim5 netdevsim0: renamed from eth6
[  125.448724][ T9274] netdevsim netdevsim5 netdevsim1: renamed from eth7
[  125.479470][ T9274] netdevsim netdevsim5 netdevsim2: renamed from eth8
[  125.492511][ T9274] netdevsim netdevsim5 netdevsim3: renamed from eth9
[  125.597866][ T9274] 8021q: adding VLAN 0 to HW filter on device team0
[  125.609927][   T69] bridge0: port 1(bridge_slave_0) entered blocking state
[  125.611946][   T69] bridge0: port 1(bridge_slave_0) entered forwarding state
[  125.621094][ T1148] bridge0: port 2(bridge_slave_1) entered blocking state
[  125.623682][ T1148] bridge0: port 2(bridge_slave_1) entered forwarding state
[  125.662783][ T5949] Bluetooth: hci0: Opcode 0x0401 failed: -110
[  125.742239][ T9274] 8021q: adding VLAN 0 to HW filter on device batadv0
[  125.859878][ T9274] veth0_vlan: entered promiscuous mode
[  125.865060][ T9274] veth1_vlan: entered promiscuous mode
[  125.893362][ T9274] veth0_macvtap: entered promiscuous mode
[  125.901457][ T9274] veth1_macvtap: entered promiscuous mode
[  125.925552][ T9274] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  125.931644][ T9274] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  125.935020][ T9274] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  125.937987][ T9274] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  125.941023][ T9274] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  125.944264][ T9274] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  125.949803][ T9274] batman_adv: batadv0: Interface activated: batadv_slave_0
[  125.950007][ T5355] Dev loop6: unable to read RDB block 6
[  125.953180][ T9274] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  125.956299][ T9274] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  125.959117][ T9274] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  125.959585][ T5355]  loop6: unable to read partition table
[  125.962166][ T9274] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  125.964007][ T5355] loop6: partition table beyond EOD, truncated
[  125.966554][ T9274] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  125.970909][ T9274] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  125.977474][ T9274] batman_adv: batadv0: Interface activated: batadv_slave_1
[  125.997383][ T9274] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  126.012949][ T9274] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  126.023722][ T9274] wireguard: wg0: Could not create IPv4 socket
[  126.026498][ T9274] wireguard: wg1: Could not create IPv4 socket
[  126.033848][ T9274] wireguard: wg2: Could not create IPv4 socket
[  126.058808][   T65] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  126.064023][   T65] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  126.066740][   T65] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  126.069181][   T65] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  126.071451][   T65] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  126.073962][   T65] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  126.082068][ T9393] Failed to initialize the IGMP autojoin socket (err -2)
[  126.176955][   T39] audit: type=1400 audit(1741360648.198:544): avc:  denied  { append } for  pid=9405 comm="syz.4.964" name="001" dev="devtmpfs" ino=767 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  126.223673][ T5949] Bluetooth: hci4: ACL packet for unknown connection handle 200
[  126.465545][ T1229] bridge_slave_1: left allmulticast mode
[  126.468607][ T1229] bridge_slave_1: left promiscuous mode
[  126.470385][ T1229] bridge0: port 2(bridge_slave_1) entered disabled state
[  126.477746][ T1229] bridge_slave_0: left allmulticast mode
[  126.480412][ T1229] bridge_slave_0: left promiscuous mode
[  126.493320][ T1229] bridge0: port 1(bridge_slave_0) entered disabled state
[  126.830712][ T1229] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  126.838612][ T1229] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  126.842181][ T1229] bond0 (unregistering): Released all slaves
[  126.861414][ T9452] netlink: 12 bytes leftover after parsing attributes in process `syz.2.968'.
[  127.011342][ T9474] netlink: 12 bytes leftover after parsing attributes in process `syz.2.973'.
[  127.023831][   T39] audit: type=1400 audit(1741360649.048:545): avc:  denied  { ioctl } for  pid=9473 comm="syz.2.973" path="socket:[41244]" dev="sockfs" ino=41244 ioctlcmd=0xf517 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  127.065311][ T1229] hsr_slave_0: left promiscuous mode
[  127.067380][ T1229] hsr_slave_1: left promiscuous mode
[  127.069397][ T1229] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  127.071555][ T1229] batman_adv: batadv0: Removing interface: batadv_slave_0
[  127.074992][ T1229] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  127.077099][ T1229] batman_adv: batadv0: Removing interface: batadv_slave_1
[  127.100142][ T1229] veth1_macvtap: left promiscuous mode
[  127.101718][ T1229] veth0_macvtap: left promiscuous mode
[  127.103562][ T1229] veth1_vlan: left promiscuous mode
[  127.105119][ T1229] veth0_vlan: left promiscuous mode
[  127.741671][ T1229] team0 (unregistering): Port device team_slave_1 removed
[  127.818940][ T1229] team0 (unregistering): Port device team_slave_0 removed
[  128.143329][ T5949] Bluetooth: hci1: command tx timeout
[  128.397132][   T39] audit: type=1400 audit(1741360650.408:546): avc:  denied  { connect } for  pid=9574 comm="syz.2.980" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  128.459196][   T39] audit: type=1400 audit(1741360650.478:547): avc:  denied  { load_policy } for  pid=9574 comm="syz.2.980" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  128.463466][ T9581] SELinux: failed to load policy
[  128.559701][ T9592] netlink: 'syz.4.983': attribute type 2 has an invalid length.
[  128.561818][ T9592] netlink: 244 bytes leftover after parsing attributes in process `syz.4.983'.
[  129.312606][   T39] audit: type=1400 audit(1741360651.328:548): avc:  denied  { ioctl } for  pid=9650 comm="syz.2.988" path="socket:[41335]" dev="sockfs" ino=41335 ioctlcmd=0x8b36 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  129.313747][ T9656] netlink: 'syz.2.988': attribute type 1 has an invalid length.
[  129.339675][ T9656] netlink: 8 bytes leftover after parsing attributes in process `syz.2.988'.
[  129.347255][ T9656] 8021q: adding VLAN 0 to HW filter on device batadv1
[  129.350679][ T9656] bond2: (slave batadv1): Enslaving as a backup interface with an up link
[  130.120238][ T9714] FAULT_INJECTION: forcing a failure.
[  130.120238][ T9714] name failslab, interval 1, probability 0, space 0, times 0
[  130.124259][ T9714] CPU: 3 UID: 0 PID: 9714 Comm: syz.2.990 Not tainted 6.14.0-rc5-syzkaller-00137-g00a7d39898c8 #0
[  130.124274][ T9714] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  130.124281][ T9714] Call Trace:
[  130.124284][ T9714]  <TASK>
[  130.124289][ T9714]  dump_stack_lvl+0x16c/0x1f0
[  130.124306][ T9714]  should_fail_ex+0x50a/0x650
[  130.124323][ T9714]  ? fs_reclaim_acquire+0xae/0x150
[  130.124340][ T9714]  ? ieee80211_assign_beacon+0x383/0x1bc0
[  130.124351][ T9714]  should_failslab+0xc2/0x120
[  130.124363][ T9714]  __kmalloc_noprof+0xcb/0x510
[  130.124378][ T9714]  ieee80211_assign_beacon+0x383/0x1bc0
[  130.124395][ T9714]  ieee80211_start_ap+0x1e84/0x3130
[  130.124411][ T9714]  ? __pfx_ieee80211_start_ap+0x10/0x10
[  130.124428][ T9714]  ? cfg80211_find_elem_match+0x18e/0x1d0
[  130.124448][ T9714]  nl80211_start_ap+0x2b0d/0x4700
[  130.124465][ T9714]  ? __pfx_nl80211_start_ap+0x10/0x10
[  130.124478][ T9714]  ? __pfx_netdev_run_todo+0x10/0x10
[  130.124494][ T9714]  ? __pfx___mutex_lock+0x10/0x10
[  130.124512][ T9714]  ? __nla_parse+0x40/0x60
[  130.124525][ T9714]  ? nl80211_pre_doit+0x1b0/0xb10
[  130.124539][ T9714]  genl_family_rcv_msg_doit+0x202/0x2f0
[  130.124556][ T9714]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  130.124576][ T9714]  ? bpf_lsm_capable+0x9/0x10
[  130.124590][ T9714]  ? security_capable+0x7e/0x260
[  130.124603][ T9714]  ? ns_capable+0xd7/0x110
[  130.124619][ T9714]  genl_rcv_msg+0x565/0x800
[  130.124641][ T9714]  ? __pfx_genl_rcv_msg+0x10/0x10
[  130.124657][ T9714]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  130.124668][ T9714]  ? __pfx_nl80211_start_ap+0x10/0x10
[  130.124679][ T9714]  ? __pfx_nl80211_post_doit+0x10/0x10
[  130.124698][ T9714]  netlink_rcv_skb+0x16b/0x440
[  130.124712][ T9714]  ? __pfx_genl_rcv_msg+0x10/0x10
[  130.124729][ T9714]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  130.124748][ T9714]  ? down_read+0xc9/0x330
[  130.124761][ T9714]  ? __pfx_down_read+0x10/0x10
[  130.124776][ T9714]  ? netlink_deliver_tap+0x1ae/0xd30
[  130.124791][ T9714]  genl_rcv+0x28/0x40
[  130.124805][ T9714]  netlink_unicast+0x53c/0x7f0
[  130.124820][ T9714]  ? __pfx_netlink_unicast+0x10/0x10
[  130.124837][ T9714]  netlink_sendmsg+0x8b8/0xd70
[  130.124853][ T9714]  ? __pfx_netlink_sendmsg+0x10/0x10
[  130.124872][ T9714]  ____sys_sendmsg+0xaaf/0xc90
[  130.124884][ T9714]  ? copy_msghdr_from_user+0x10b/0x160
[  130.124898][ T9714]  ? __pfx_____sys_sendmsg+0x10/0x10
[  130.124916][ T9714]  ___sys_sendmsg+0x135/0x1e0
[  130.124931][ T9714]  ? __pfx____sys_sendmsg+0x10/0x10
[  130.124951][ T9714]  ? __pfx_lock_release+0x10/0x10
[  130.124966][ T9714]  ? trace_lock_acquire+0x14e/0x1f0
[  130.124982][ T9714]  ? __fget_files+0x206/0x3a0
[  130.124996][ T9714]  __sys_sendmsg+0x16e/0x220
[  130.125011][ T9714]  ? __pfx___sys_sendmsg+0x10/0x10
[  130.125034][ T9714]  do_syscall_64+0xcd/0x250
[  130.125048][ T9714]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.125063][ T9714] RIP: 0033:0x7f76aad8d169
[  130.125072][ T9714] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.125082][ T9714] RSP: 002b:00007f76a8bf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  130.125092][ T9714] RAX: ffffffffffffffda RBX: 00007f76aafa5fa0 RCX: 00007f76aad8d169
[  130.125098][ T9714] RDX: 0000000000000000 RSI: 0000400000000000 RDI: 0000000000000003
[  130.125105][ T9714] RBP: 00007f76a8bf6090 R08: 0000000000000000 R09: 0000000000000000
[  130.125111][ T9714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  130.125117][ T9714] R13: 0000000000000000 R14: 00007f76aafa5fa0 R15: 00007ffee63e2728
[  130.125130][ T9714]  </TASK>
[  130.193166][   T65] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  130.222820][ T5953] Bluetooth: hci1: command tx timeout
[  130.236036][   T65] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  130.240436][   T65] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  130.243835][   T65] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  130.246289][   T65] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  130.248373][   T65] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  130.257198][ T9716] Failed to initialize the IGMP autojoin socket (err -2)
[  130.297487][ T9733] kvm: emulating exchange as write
[  130.306697][ T9733] hfs: can't find a HFS filesystem on dev sr0
[  130.361342][   T39] audit: type=1400 audit(1741360652.378:549): avc:  denied  { mount } for  pid=9737 comm="syz.4.995" name="/" dev="autofs" ino=39630 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[  130.374990][   T39] audit: type=1400 audit(1741360652.398:550): avc:  denied  { unmount } for  pid=6879 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[  131.030596][ T9790] netlink: 24 bytes leftover after parsing attributes in process `syz.2.996'.
[  131.036011][ T9788] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  131.040423][ T9788] loop8: detected capacity change from 0 to 7
[  131.042437][ T9788] Dev loop8: unable to read RDB block 7
[  131.048030][ T9788]  loop8: unable to read partition table
[  131.050239][ T9788] loop8: partition table beyond EOD, truncated
[  131.052548][ T9788] loop_reread_partitions: partition scan of loop8 (þ被xüŸÑø éÚ¬§½dƤ´à–ƒÝ¡¯¨�â·û
[  131.052548][ T9788] 
) failed (rc=-5)
[  131.134189][ T5949] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  131.135034][ T9802] Invalid logical block size (1536)
[  131.139147][ T5949] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  131.146738][ T5949] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  131.155413][ T5949] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  131.155960][ T9808] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1000'.
[  131.157777][ T5949] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  131.159934][ T9808] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1000'.
[  131.162416][ T5949] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  131.165688][ T9808] tc_dump_action: action bad kind
[  131.177735][ T9798] Failed to initialize the IGMP autojoin socket (err -2)
[  131.210182][ T9393] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  131.213891][ T9393] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.217240][ T9393] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  131.221166][ T9393] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.230415][ T9393] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  131.233891][ T9817] netlink: 104 bytes leftover after parsing attributes in process `syz.4.1003'.
[  131.235359][ T9393] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.239607][ T9393] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  131.242789][ T9393] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.247813][ T9393] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  131.254275][   T39] audit: type=1400 audit(1741360653.278:551): avc:  denied  { write } for  pid=9814 comm="syz.2.1002" dev="sockfs" ino=42412 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  131.260275][ T9393] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  131.267408][ T9393] wireguard: wg0: Could not create IPv4 socket
[  131.269393][   T39] audit: type=1400 audit(1741360653.278:552): avc:  denied  { setattr } for  pid=9814 comm="syz.2.1002" name="KCM" dev="sockfs" ino=42412 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  131.270720][ T9393] wireguard: wg1: Could not create IPv4 socket
[  131.278240][ T9393] wireguard: wg2: Could not create IPv4 socket
[  132.176876][ T5949] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  132.180225][ T5949] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  132.183039][ T5949] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  132.185778][ T5949] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  132.188473][ T5949] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  132.188750][ T9842] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1009'.
[  132.191008][ T5949] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  132.206816][ T9838] Failed to initialize the IGMP autojoin socket (err -2)
[  132.546303][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  132.548325][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  132.603674][ T9843] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1009'.
[  132.641778][ T9867] Invalid logical block size (768)
[  132.691240][   T39] audit: type=1400 audit(1741360654.708:553): avc:  denied  { create } for  pid=9868 comm="syz.2.1011" name="file6" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[  132.888489][ T9889] netlink: 'syz.2.1015': attribute type 1 has an invalid length.
[  132.890892][ T9889] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1015'.
[  132.935992][   T39] audit: type=1400 audit(1741360654.958:554): avc:  denied  { write } for  pid=9891 comm="syz.2.1016" path="socket:[42508]" dev="sockfs" ino=42508 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  133.167160][   T39] audit: type=1400 audit(1741360655.188:555): avc:  denied  { getopt } for  pid=9910 comm="syz.2.1021" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  133.174197][ T9915] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=63 sclass=netlink_route_socket pid=9915 comm=syz.2.1021
[  133.177601][ T9915] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=63 sclass=netlink_route_socket pid=9915 comm=syz.2.1021
[  133.186393][   T35] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  133.343209][   T35] usb 9-1: Using ep0 maxpacket: 8
[  133.365589][   T35] usb 9-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2e.04
[  133.368086][   T35] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  133.370260][   T35] usb 9-1: Product: syz
[  133.371579][   T35] usb 9-1: Manufacturer: syz
[  133.374132][   T35] usb 9-1: SerialNumber: syz
[  133.382742][   T35] usb 9-1: config 0 descriptor??
[  133.596958][   T35] usb 9-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  133.599937][   T35] dvb_usb_rtl28xxu 9-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  133.604401][   T35] usb 9-1: USB disconnect, device number 5
[  134.075727][   T39] audit: type=1400 audit(1741360656.098:556): avc:  denied  { create } for  pid=9980 comm="syz.2.1024" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[  134.081802][   T39] audit: type=1400 audit(1741360656.098:557): avc:  denied  { write } for  pid=9980 comm="syz.2.1024" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[  134.124383][ T9988] FAULT_INJECTION: forcing a failure.
[  134.124383][ T9988] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  134.127994][ T9988] CPU: 3 UID: 0 PID: 9988 Comm: syz.2.1025 Not tainted 6.14.0-rc5-syzkaller-00137-g00a7d39898c8 #0
[  134.128007][ T9988] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  134.128014][ T9988] Call Trace:
[  134.128018][ T9988]  <TASK>
[  134.128022][ T9988]  dump_stack_lvl+0x16c/0x1f0
[  134.128039][ T9988]  should_fail_ex+0x50a/0x650
[  134.128058][ T9988]  _copy_from_user+0x2e/0xd0
[  134.128069][ T9988]  snd_seq_oss_write+0x398/0x7b0
[  134.128084][ T9988]  ? __pfx_snd_seq_oss_write+0x10/0x10
[  134.128096][ T9988]  ? inode_security+0x101/0x130
[  134.128115][ T9988]  ? bpf_lsm_file_permission+0x9/0x10
[  134.128128][ T9988]  ? __pfx_odev_write+0x10/0x10
[  134.128137][ T9988]  odev_write+0x51/0xa0
[  134.128147][ T9988]  vfs_write+0x24c/0x1150
[  134.128164][ T9988]  ? __fget_files+0x1fc/0x3a0
[  134.128174][ T9988]  ? __pfx_lock_release+0x10/0x10
[  134.128190][ T9988]  ? __pfx_vfs_write+0x10/0x10
[  134.128207][ T9988]  ? lock_acquire+0x2f/0xb0
[  134.128220][ T9988]  ? __fget_files+0x40/0x3a0
[  134.128231][ T9988]  ? __fget_files+0x206/0x3a0
[  134.128244][ T9988]  ksys_write+0x12b/0x250
[  134.128253][ T9988]  ? __pfx_ksys_write+0x10/0x10
[  134.128266][ T9988]  do_syscall_64+0xcd/0x250
[  134.128281][ T9988]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.128295][ T9988] RIP: 0033:0x7f76aad8d169
[  134.128304][ T9988] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.128314][ T9988] RSP: 002b:00007f76a8bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  134.128324][ T9988] RAX: ffffffffffffffda RBX: 00007f76aafa5fa0 RCX: 00007f76aad8d169
[  134.128331][ T9988] RDX: 000000000000021e RSI: 0000400000000580 RDI: 0000000000000003
[  134.128338][ T9988] RBP: 00007f76a8bf6090 R08: 0000000000000000 R09: 0000000000000000
[  134.128344][ T9988] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  134.128350][ T9988] R13: 0000000000000000 R14: 00007f76aafa5fa0 R15: 00007ffee63e2728
[  134.128362][ T9988]  </TASK>
[  134.223787][   T65] Bluetooth: hci0: command tx timeout
[  134.345336][T10020] netlink: 'syz.2.1033': attribute type 64 has an invalid length.
[  134.347558][T10020] netlink: 'syz.2.1033': attribute type 4 has an invalid length.
[  134.349690][T10020] netlink: 152 bytes leftover after parsing attributes in process `syz.2.1033'.
[  134.356055][T10022] netlink: 'syz.2.1033': attribute type 64 has an invalid length.
[  134.358506][T10022] netlink: 'syz.2.1033': attribute type 4 has an invalid length.
[  134.360690][T10022] netlink: 152 bytes leftover after parsing attributes in process `syz.2.1033'.
[  134.553500][ T9199] usb 9-1: new full-speed USB device number 6 using dummy_hcd
[  134.709415][ T9199] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  134.713607][ T9199] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1024, setting to 64
[  134.717566][ T9199] usb 9-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  134.722276][ T9199] usb 9-1: New USB device found, idVendor=03fc, idProduct=05d8, bcdDevice= 0.00
[  134.726026][ T9199] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  134.730368][ T9199] usb 9-1: config 0 descriptor??
[  134.736690][T10015] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  134.828675][   T39] audit: type=1400 audit(1741360656.848:558): avc:  denied  { write } for  pid=10036 comm="syz.2.1036" name="card2" dev="devtmpfs" ino=639 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  135.143726][ T9199] usb 9-1: string descriptor 0 read error: -71
[  135.149681][ T9199] usbhid 9-1:0.0: can't add hid device: -71
[  135.152073][ T9199] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[  135.155945][ T9199] usb 9-1: USB disconnect, device number 6
[  135.365109][T10082] loop6: detected capacity change from 0 to 524287999
[  135.367872][T10082] FAULT_INJECTION: forcing a failure.
[  135.367872][T10082] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  135.371488][T10082] CPU: 3 UID: 0 PID: 10082 Comm: syz.2.1037 Not tainted 6.14.0-rc5-syzkaller-00137-g00a7d39898c8 #0
[  135.371502][T10082] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  135.371509][T10082] Call Trace:
[  135.371513][T10082]  <TASK>
[  135.371531][T10082]  dump_stack_lvl+0x16c/0x1f0
[  135.371549][T10082]  should_fail_ex+0x50a/0x650
[  135.371569][T10082]  _copy_to_user+0x32/0xd0
[  135.371581][T10082]  loop_get_status_old+0x252/0x290
[  135.371595][T10082]  ? __pfx_loop_get_status_old+0x10/0x10
[  135.371614][T10082]  ? trace_lock_acquire+0x14e/0x1f0
[  135.371627][T10082]  ? __pfx_mark_lock+0x10/0x10
[  135.371641][T10082]  ? lock_acquire+0x2f/0xb0
[  135.371662][T10082]  ? __lock_acquire+0xcc5/0x3c40
[  135.371681][T10082]  lo_ioctl+0x433/0x1e20
[  135.371695][T10082]  ? __pfx___lock_acquire+0x10/0x10
[  135.371711][T10082]  ? kasan_save_stack+0x42/0x60
[  135.371721][T10082]  ? kasan_save_stack+0x33/0x60
[  135.371733][T10082]  ? find_held_lock+0x2d/0x110
[  135.371746][T10082]  ? avc_has_extended_perms+0x33f/0x1580
[  135.371759][T10082]  ? __pfx_lo_ioctl+0x10/0x10
[  135.371773][T10082]  ? __pfx_mark_lock+0x10/0x10
[  135.371787][T10082]  ? lock_acquire+0x2f/0xb0
[  135.371801][T10082]  ? avc_has_extended_perms+0x210/0x1580
[  135.371813][T10082]  ? avc_has_extended_perms+0x481/0x1580
[  135.371827][T10082]  ? __pfx_avc_has_extended_perms+0x10/0x10
[  135.371839][T10082]  ? tomoyo_path_number_perm+0x298/0x590
[  135.371859][T10082]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  135.371877][T10082]  ? blkdev_common_ioctl+0x1d0/0x2210
[  135.371888][T10082]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  135.371905][T10082]  ? __pfx_blkdev_common_ioctl+0x10/0x10
[  135.371915][T10082]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  135.371933][T10082]  ? ioctl_has_perm.constprop.0.isra.0+0x2f2/0x450
[  135.371951][T10082]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[  135.371969][T10082]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  135.371988][T10082]  ? __pfx_lock_release+0x10/0x10
[  135.372004][T10082]  ? __pfx_lo_ioctl+0x10/0x10
[  135.372019][T10082]  blkdev_ioctl+0x276/0x6d0
[  135.372028][T10082]  ? __pfx_blkdev_ioctl+0x10/0x10
[  135.372037][T10082]  ? selinux_file_ioctl+0x180/0x270
[  135.372053][T10082]  ? selinux_file_ioctl+0xb4/0x270
[  135.372069][T10082]  ? __pfx_blkdev_ioctl+0x10/0x10
[  135.372080][T10082]  __x64_sys_ioctl+0x190/0x200
[  135.372095][T10082]  do_syscall_64+0xcd/0x250
[  135.372110][T10082]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.372125][T10082] RIP: 0033:0x7f76aad8d169
[  135.372134][T10082] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  135.372145][T10082] RSP: 002b:00007f76a8bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  135.372155][T10082] RAX: ffffffffffffffda RBX: 00007f76aafa5fa0 RCX: 00007f76aad8d169
[  135.372162][T10082] RDX: 00004000000000c0 RSI: 0000000000004c03 RDI: 0000000000000004
[  135.372168][T10082] RBP: 00007f76a8bf6090 R08: 0000000000000000 R09: 0000000000000000
[  135.372174][T10082] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  135.372181][T10082] R13: 0000000000000000 R14: 00007f76aafa5fa0 R15: 00007ffee63e2728
[  135.372193][T10082]  </TASK>
[  135.678375][T10103] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  135.920473][T10136] FAULT_INJECTION: forcing a failure.
[  135.920473][T10136] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  135.926139][T10136] CPU: 3 UID: 0 PID: 10136 Comm: syz.2.1049 Not tainted 6.14.0-rc5-syzkaller-00137-g00a7d39898c8 #0
[  135.926153][T10136] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  135.926160][T10136] Call Trace:
[  135.926164][T10136]  <TASK>
[  135.926168][T10136]  dump_stack_lvl+0x16c/0x1f0
[  135.926186][T10136]  should_fail_ex+0x50a/0x650
[  135.926204][T10136]  _copy_to_user+0x32/0xd0
[  135.926216][T10136]  simple_read_from_buffer+0xd0/0x160
[  135.926234][T10136]  proc_fail_nth_read+0x198/0x270
[  135.926249][T10136]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  135.926265][T10136]  ? rw_verify_area+0xcf/0x680
[  135.926280][T10136]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  135.926294][T10136]  vfs_read+0x1df/0xbf0
[  135.926311][T10136]  ? __fget_files+0x1fc/0x3a0
[  135.926322][T10136]  ? __pfx___mutex_lock+0x10/0x10
[  135.926335][T10136]  ? __pfx_vfs_read+0x10/0x10
[  135.926355][T10136]  ? __fget_files+0x206/0x3a0
[  135.926368][T10136]  ksys_read+0x12b/0x250
[  135.926384][T10136]  ? __pfx_ksys_read+0x10/0x10
[  135.926404][T10136]  do_syscall_64+0xcd/0x250
[  135.926418][T10136]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.926434][T10136] RIP: 0033:0x7f76aad8bb7c
[  135.926442][T10136] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  135.926452][T10136] RSP: 002b:00007f76a8bf6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  135.926462][T10136] RAX: ffffffffffffffda RBX: 00007f76aafa5fa0 RCX: 00007f76aad8bb7c
[  135.926469][T10136] RDX: 000000000000000f RSI: 00007f76a8bf60a0 RDI: 0000000000000005
[  135.926475][T10136] RBP: 00007f76a8bf6090 R08: 0000000000000000 R09: 0000000000000000
[  135.926481][T10136] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  135.926487][T10136] R13: 0000000000000000 R14: 00007f76aafa5fa0 R15: 00007ffee63e2728
[  135.926500][T10136]  </TASK>
[  136.018327][T10143] FAULT_INJECTION: forcing a failure.
[  136.018327][T10143] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  136.021837][T10143] CPU: 3 UID: 0 PID: 10143 Comm: syz.2.1050 Not tainted 6.14.0-rc5-syzkaller-00137-g00a7d39898c8 #0
[  136.021852][T10143] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  136.021859][T10143] Call Trace:
[  136.021863][T10143]  <TASK>
[  136.021867][T10143]  dump_stack_lvl+0x16c/0x1f0
[  136.021886][T10143]  should_fail_ex+0x50a/0x650
[  136.021902][T10143]  ? __pfx___might_resched+0x10/0x10
[  136.021922][T10143]  should_fail_alloc_page+0xe7/0x130
[  136.021936][T10143]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  136.021956][T10143]  __alloc_frozen_pages_noprof+0x18e/0x2470
[  136.021969][T10143]  ? hlock_class+0x4e/0x130
[  136.021980][T10143]  ? mark_lock+0xb5/0xc60
[  136.021997][T10143]  ? __pfx_mark_lock+0x10/0x10
[  136.022012][T10143]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  136.022025][T10143]  ? mark_lock+0xb5/0xc60
[  136.022040][T10143]  ? hlock_class+0x4e/0x130
[  136.022054][T10143]  ? hlock_class+0x4e/0x130
[  136.022064][T10143]  ? __lock_acquire+0xcc5/0x3c40
[  136.022079][T10143]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  136.022097][T10143]  ? policy_nodemask+0xea/0x4e0
[  136.022111][T10143]  alloc_pages_mpol+0x1fc/0x540
[  136.022123][T10143]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  136.022135][T10143]  ? __lock_acquire+0x15a9/0x3c40
[  136.022153][T10143]  folio_alloc_mpol_noprof+0x36/0x2f0
[  136.022168][T10143]  vma_alloc_folio_noprof+0xee/0x1b0
[  136.022181][T10143]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  136.022195][T10143]  ? find_held_lock+0x2d/0x110
[  136.022210][T10143]  do_pte_missing+0x202f/0x3e10
[  136.022226][T10143]  __handle_mm_fault+0x1166/0x2c60
[  136.022241][T10143]  ? __pfx___handle_mm_fault+0x10/0x10
[  136.022251][T10143]  ? follow_page_pte+0x3ac/0x1490
[  136.022261][T10143]  ? __pfx_lock_release+0x10/0x10
[  136.022286][T10143]  handle_mm_fault+0x3fa/0xaa0
[  136.022299][T10143]  __get_user_pages+0x773/0x36f0
[  136.022315][T10143]  ? __pfx___get_user_pages+0x10/0x10
[  136.022324][T10143]  ? down_read_killable+0xcc/0x380
[  136.022339][T10143]  ? __pfx_down_read_killable+0x10/0x10
[  136.022355][T10143]  ? mark_lock+0xb5/0xc60
[  136.022368][T10143]  ? __pfx___lock_acquire+0x10/0x10
[  136.022384][T10143]  __gup_longterm_locked+0x5fb/0x1870
[  136.022400][T10143]  ? __pfx___gup_longterm_locked+0x10/0x10
[  136.022410][T10143]  ? gup_fast_fallback+0x84c/0x2690
[  136.022420][T10143]  ? __pfx_lock_release+0x10/0x10
[  136.022436][T10143]  ? sanity_check_pinned_pages+0x23/0x11e0
[  136.022456][T10143]  gup_fast_fallback+0x1802/0x2690
[  136.022475][T10143]  ? __pfx_gup_fast_fallback+0x10/0x10
[  136.022492][T10143]  pin_user_pages_fast+0xa8/0x100
[  136.022502][T10143]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  136.022513][T10143]  ? __xas_next+0x38d/0x710
[  136.022529][T10143]  pfn_reader_user_pin+0xccf/0x10c0
[  136.022547][T10143]  ? __pfx_iopt_pages_fill_from_xarray+0x10/0x10
[  136.022559][T10143]  ? interval_tree_span_iter_next+0x315/0x4d0
[  136.022571][T10143]  ? __pfx_pfn_reader_user_pin+0x10/0x10
[  136.022586][T10143]  ? interval_tree_span_iter_advance+0x16e/0x1e0
[  136.022597][T10143]  ? interval_tree_double_span_iter_update+0x1fa/0x390
[  136.022627][T10143]  iopt_pages_fill_xarray+0x392/0x980
[  136.022639][T10143]  ? iopt_area_add_access+0x1b0/0x380
[  136.022654][T10143]  ? __pfx_iopt_pages_fill_xarray+0x10/0x10
[  136.022682][T10143]  iopt_area_add_access+0x1d3/0x380
[  136.022694][T10143]  iommufd_access_pin_pages+0x634/0xa10
[  136.022716][T10143]  ? __pfx_iommufd_access_pin_pages+0x10/0x10
[  136.022750][T10143]  ? __kvmalloc_node_noprof+0x6f/0x1a0
[  136.022772][T10143]  iommufd_test+0x3187/0x44b0
[  136.022792][T10143]  ? __pfx_iommufd_test+0x10/0x10
[  136.022804][T10143]  ? __pfx_lock_release+0x10/0x10
[  136.022818][T10143]  ? trace_lock_acquire+0x14e/0x1f0
[  136.022830][T10143]  ? __pfx_lock_release+0x10/0x10
[  136.022845][T10143]  ? lock_acquire+0x2f/0xb0
[  136.022858][T10143]  ? __might_fault+0xe3/0x190
[  136.022871][T10143]  ? __might_fault+0xe3/0x190
[  136.022888][T10143]  iommufd_fops_ioctl+0x359/0x4f0
[  136.022903][T10143]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  136.022917][T10143]  ? __pfx_lock_release+0x10/0x10
[  136.022937][T10143]  ? selinux_file_ioctl+0x180/0x270
[  136.022953][T10143]  ? selinux_file_ioctl+0xb4/0x270
[  136.022970][T10143]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  136.022986][T10143]  __x64_sys_ioctl+0x190/0x200
[  136.023001][T10143]  do_syscall_64+0xcd/0x250
[  136.023015][T10143]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.023030][T10143] RIP: 0033:0x7f76aad8d169
[  136.023039][T10143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.023049][T10143] RSP: 002b:00007f76a8bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  136.023059][T10143] RAX: ffffffffffffffda RBX: 00007f76aafa5fa0 RCX: 00007f76aad8d169
[  136.023065][T10143] RDX: 0000400000000100 RSI: 0000000000003ba0 RDI: 0000000000000003
[  136.023072][T10143] RBP: 00007f76a8bf6090 R08: 0000000000000000 R09: 0000000000000000
[  136.023078][T10143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  136.023084][T10143] R13: 0000000000000000 R14: 00007f76aafa5fa0 R15: 00007ffee63e2728
[  136.023097][T10143]  </TASK>
[  136.185934][T10156] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1052'.
[  136.189164][T10156] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1052'.
[  136.192364][T10156] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1052'.
[  136.197292][T10156] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1052'.
[  136.237080][   T39] audit: type=1400 audit(1741360658.258:559): avc:  denied  { connect } for  pid=10163 comm="syz.4.1054" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  136.297703][   T39] audit: type=1400 audit(1741360658.318:560): avc:  denied  { nlmsg_read } for  pid=10166 comm="syz.2.1056" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  136.302289][T10167] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1056'.
[  136.312836][   T65] Bluetooth: hci0: command tx timeout
[  136.577864][   T39] audit: type=1400 audit(1741360658.598:561): avc:  denied  { write } for  pid=10203 comm="syz.2.1062" path="socket:[40934]" dev="sockfs" ino=40934 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  136.586007][   T39] audit: type=1400 audit(1741360658.598:562): avc:  denied  { nlmsg_read } for  pid=10203 comm="syz.2.1062" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  137.165868][   T39] audit: type=1400 audit(1741360659.188:563): avc:  denied  { read } for  pid=10240 comm="syz.2.1065" name="loop-control" dev="devtmpfs" ino=657 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  137.175894][   T39] audit: type=1400 audit(1741360659.188:564): avc:  denied  { open } for  pid=10240 comm="syz.2.1065" path="/dev/loop-control" dev="devtmpfs" ino=657 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  137.828256][ T5949] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  137.833797][ T5949] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  137.836397][ T5949] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  137.839253][ T5949] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  137.841461][ T5949] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  137.844371][ T5949] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  137.859013][T10291] Failed to initialize the IGMP autojoin socket (err -2)
[  137.860165][ T9838] netdevsim netdevsim5 netdevsim0: renamed from eth10
[  137.888506][ T9838] netdevsim netdevsim5 netdevsim1: renamed from eth11
[  137.898680][ T9838] netdevsim netdevsim5 netdevsim2: renamed from eth12
[  137.911766][ T9838] netdevsim netdevsim5 netdevsim3: renamed from eth13
[  137.977843][ T5949] Bluetooth: hci4: ACL packet for unknown connection handle 200
[  138.178623][ T9838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  138.181517][ T9838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.185767][ T9838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  138.188618][ T9838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.192317][ T9838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  138.197144][ T9838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.199899][ T9838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  138.203467][ T9838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.207385][ T9838] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  138.213056][ T9838] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  138.218116][ T9838] wireguard: wg0: Could not create IPv4 socket
[  138.220681][ T9838] wireguard: wg1: Could not create IPv4 socket
[  138.223691][ T9838] wireguard: wg2: Could not create IPv4 socket
[  138.750661][T10368] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1077'.
[  138.754134][T10368] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1077'.
[  138.809085][   T65] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  138.813719][   T65] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  138.816158][T10377] FAULT_INJECTION: forcing a failure.
[  138.816158][T10377] name failslab, interval 1, probability 0, space 0, times 0
[  138.817098][   T65] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  138.819780][T10377] CPU: 0 UID: 0 PID: 10377 Comm: syz.4.1076 Not tainted 6.14.0-rc5-syzkaller-00137-g00a7d39898c8 #0
[  138.819794][T10377] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  138.819801][T10377] Call Trace:
[  138.819805][T10377]  <TASK>
[  138.819809][T10377]  dump_stack_lvl+0x16c/0x1f0
[  138.819828][T10377]  should_fail_ex+0x50a/0x650
[  138.819844][T10377]  ? fs_reclaim_acquire+0xae/0x150
[  138.819862][T10377]  should_failslab+0xc2/0x120
[  138.819875][T10377]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  138.819886][T10377]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  138.819904][T10377]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  138.819922][T10377]  mmu_topup_memory_caches+0x25/0x170
[  138.819935][T10377]  kvm_mmu_load+0xda/0x22a0
[  138.819948][T10377]  ? kvm_apic_has_interrupt+0xb6/0x190
[  138.819965][T10377]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  138.819982][T10377]  ? kvm_guest_time_update+0x71e/0xeb0
[  138.819995][T10377]  ? __pfx_kvm_mmu_load+0x10/0x10
[  138.820008][T10377]  ? kvm_cpu_has_injectable_intr+0x9b/0x1a0
[  138.820024][T10377]  ? kvm_check_and_inject_events+0x725/0x12e0
[  138.820037][T10377]  ? record_steal_time+0x61/0xbe0
[  138.820050][T10377]  vcpu_run+0x338e/0x4f50
[  138.820062][T10377]  ? __pfx_vmx_vcpu_load_vmcs+0x10/0x10
[  138.820078][T10377]  ? __pfx_vcpu_run+0x10/0x10
[  138.820089][T10377]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  138.820105][T10377]  ? rcu_is_watching+0x12/0xc0
[  138.820116][T10377]  ? trace_lock_acquire+0x14e/0x1f0
[  138.820128][T10377]  ? __local_bh_enable_ip+0xa4/0x120
[  138.820144][T10377]  ? lockdep_hardirqs_on+0x7c/0x110
[  138.820157][T10377]  ? kvm_arch_vcpu_ioctl_run+0x1a8/0x17f0
[  138.820172][T10377]  ? kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[  138.820184][T10377]  kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[  138.820200][T10377]  kvm_vcpu_ioctl+0x5ea/0x16b0
[  138.820214][T10377]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  138.820231][T10377]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[  138.820250][T10377]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  138.820269][T10377]  ? __pfx_lock_release+0x10/0x10
[  138.820289][T10377]  ? selinux_file_ioctl+0x180/0x270
[  138.820304][T10377]  ? selinux_file_ioctl+0xb4/0x270
[  138.820321][T10377]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  138.820334][T10377]  __x64_sys_ioctl+0x190/0x200
[  138.820350][T10377]  do_syscall_64+0xcd/0x250
[  138.820365][T10377]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.820380][T10377] RIP: 0033:0x7f017ef8d169
[  138.820389][T10377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.820400][T10377] RSP: 002b:00007f017fd98038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  138.820410][T10377] RAX: ffffffffffffffda RBX: 00007f017f1a6080 RCX: 00007f017ef8d169
[  138.820417][T10377] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  138.820423][T10377] RBP: 00007f017fd98090 R08: 0000000000000000 R09: 0000000000000000
[  138.820429][T10377] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  138.820435][T10377] R13: 0000000000000001 R14: 00007f017f1a6080 R15: 00007ffc683f0728
[  138.820448][T10377]  </TASK>
[  138.918887][   T65] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  138.921962][   T65] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  138.924798][   T65] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  138.941594][T10375] Failed to initialize the IGMP autojoin socket (err -2)
[  139.020443][T10426] openvswitch: netlink: IP tunnel TTL not specified.
[  139.171660][T10444] syz.2.1080: attempt to access beyond end of device
[  139.171660][T10444] nbd2: rw=0, sector=64, nr_sectors = 1 limit=0
[  139.176078][T10444] syz.2.1080: attempt to access beyond end of device
[  139.176078][T10444] nbd2: rw=0, sector=256, nr_sectors = 1 limit=0
[  139.179629][T10444] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  139.182453][T10444] syz.2.1080: attempt to access beyond end of device
[  139.182453][T10444] nbd2: rw=0, sector=512, nr_sectors = 1 limit=0
[  139.186793][T10444] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  139.190219][T10444] syz.2.1080: attempt to access beyond end of device
[  139.190219][T10444] nbd2: rw=0, sector=64, nr_sectors = 2 limit=0
[  139.194253][T10444] syz.2.1080: attempt to access beyond end of device
[  139.194253][T10444] nbd2: rw=0, sector=512, nr_sectors = 2 limit=0
[  139.198810][T10444] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  139.201527][T10444] syz.2.1080: attempt to access beyond end of device
[  139.201527][T10444] nbd2: rw=0, sector=1024, nr_sectors = 2 limit=0
[  139.208110][T10444] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  139.210973][T10444] syz.2.1080: attempt to access beyond end of device
[  139.210973][T10444] nbd2: rw=0, sector=64, nr_sectors = 4 limit=0
[  139.214812][T10444] syz.2.1080: attempt to access beyond end of device
[  139.214812][T10444] nbd2: rw=0, sector=1024, nr_sectors = 4 limit=0
[  139.218366][T10444] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  139.221209][T10444] syz.2.1080: attempt to access beyond end of device
[  139.221209][T10444] nbd2: rw=0, sector=2048, nr_sectors = 4 limit=0
[  139.221515][   T39] audit: type=1400 audit(1741360661.238:565): avc:  denied  { getopt } for  pid=10443 comm="syz.2.1080" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  139.225358][T10444] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  139.230553][   T39] audit: type=1400 audit(1741360661.248:566): avc:  denied  { getopt } for  pid=10443 comm="syz.2.1080" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  139.233461][T10444] syz.2.1080: attempt to access beyond end of device
[  139.233461][T10444] nbd2: rw=0, sector=64, nr_sectors = 8 limit=0
[  139.243037][T10444] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  139.245838][T10444] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  139.248404][T10444] UDF-fs: warning (device nbd2): udf_fill_super: No partition found (1)
[  139.539795][T10375] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  139.542891][T10375] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.545557][T10375] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  139.548402][T10375] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.552785][T10375] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  139.555637][T10375] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.558281][T10375] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  139.561128][T10375] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.567358][T10375] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  139.572952][T10375] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  139.578967][T10375] wireguard: wg0: Could not create IPv4 socket
[  139.582380][T10375] wireguard: wg1: Could not create IPv4 socket
[  139.586612][T10375] wireguard: wg2: Could not create IPv4 socket
[  140.207983][T10471] fuse: Unknown parameter 'ä©‚ÜÁר~'
[  140.234103][T10474] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1085'.
[  140.330567][T10488] loop6: detected capacity change from 0 to 524287999
[  140.338954][    C0] blk_print_req_error: 11 callbacks suppressed
[  140.338969][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x84700 phys_seg 128 prio class 0
[  140.340031][    C2] I/O error, dev loop6, sector 1024 op 0x0:(READ) flags 0x80700 phys_seg 127 prio class 0
[  140.348262][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  140.350905][    C3] buffer_io_error: 8 callbacks suppressed
[  140.350913][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  140.436443][T10493] caif0: Master is either lo or non-ether device
[  141.149702][T10538] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1097'.
[  141.484324][T10564] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1102'.
[  141.489023][T10564] vlan2: entered allmulticast mode
[  141.490475][T10564] batadv0: entered allmulticast mode
[  141.610415][   T39] audit: type=1400 audit(1741360663.628:567): avc:  denied  { write } for  pid=10574 comm="syz.4.1104" name="usbmon0" dev="devtmpfs" ino=737 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  141.616824][   T39] audit: type=1400 audit(1741360663.628:568): avc:  denied  { watch watch_reads } for  pid=10574 comm="syz.4.1104" path="/proc/805" dev="proc" ino=43650 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  141.623930][   T39] audit: type=1400 audit(1741360663.628:569): avc:  denied  { ioctl } for  pid=10574 comm="syz.4.1104" path="/dev/usbmon0" dev="devtmpfs" ino=737 ioctlcmd=0x9207 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  141.734602][T10579] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1106'.
[  142.478305][   T39] audit: type=1400 audit(1741360664.498:570): avc:  denied  { append } for  pid=10582 comm="syz.4.1107" name="sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  142.667541][T10596] libceph: resolve '4' (ret=-3): failed
[  142.932780][    T9] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  143.082736][    T9] usb 9-1: Using ep0 maxpacket: 32
[  143.085781][    T9] usb 9-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  143.089827][    T9] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  143.093825][    T9] usb 9-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  143.098771][    T9] usb 9-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22
[  143.101281][    T9] usb 9-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131
[  143.103713][    T9] usb 9-1: Product: syz
[  143.104889][    T9] usb 9-1: Manufacturer: syz
[  143.106189][    T9] usb 9-1: SerialNumber: syz
[  143.117414][    T9] input: appletouch as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:1.0/input/input15
[  143.142969][    C1] appletouch 9-1:1.0: atp_complete: usb_submit_urb failed with result -1
[  143.369613][   T39] audit: type=1326 audit(1741360665.388:571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10597 comm="syz.4.1112" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f017ef8d169 code=0x0
[  143.420127][T10598] netlink: 200 bytes leftover after parsing attributes in process `syz.4.1112'.
[  143.427680][    C1] appletouch 9-1:1.0: atp_complete: usb_submit_urb failed with result -1
[  143.433951][    T9] usb 9-1: USB disconnect, device number 7
[  143.442210][    T9] appletouch 9-1:1.0: input: appletouch disconnected
[  144.037729][T10664] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  144.935585][   T65] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  144.939394][   T65] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  144.945010][   T65] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  144.948348][   T65] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  144.951274][   T65] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  144.957255][   T65] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  144.975980][T10697] Failed to initialize the IGMP autojoin socket (err -2)
[  145.033088][   T39] audit: type=1400 audit(1741360667.058:572): avc:  denied  { listen } for  pid=10699 comm="syz.4.1118" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  145.051712][T10700] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1118'.
[  145.054449][T10700] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1118'.
[  145.061348][   T39] audit: type=1400 audit(1741360667.078:573): avc:  denied  { accept } for  pid=10699 comm="syz.4.1118" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  145.744227][T10697] netdevsim netdevsim5 netdevsim0: renamed from eth10
[  145.756355][T10697] netdevsim netdevsim5 netdevsim1: renamed from eth11
[  145.772440][T10697] netdevsim netdevsim5 netdevsim2: renamed from eth12
[  145.787998][T10697] netdevsim netdevsim5 netdevsim3: renamed from eth13
[  145.989903][T10697] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  145.994995][T10697] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.997687][T10697] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  146.000562][T10697] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  146.005603][T10697] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  146.008488][T10697] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  146.011179][T10697] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  146.015408][T10697] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  146.019427][T10697] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  146.025429][T10697] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  146.030585][T10697] wireguard: wg0: Could not create IPv4 socket
[  146.033744][T10697] wireguard: wg1: Could not create IPv4 socket
[  146.036257][T10697] wireguard: wg2: Could not create IPv4 socket
[  146.196598][T10747] bio_check_eod: 2 callbacks suppressed
[  146.196608][T10747] syz.4.1121: attempt to access beyond end of device
[  146.196608][T10747] nbd4: rw=0, sector=0, nr_sectors = 1 limit=0
[  146.197097][   T65] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  146.198365][T10747] FAT-fs (nbd4): unable to read boot sector
[  146.212821][   T65] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  146.216268][   T65] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  146.220052][   T65] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  146.222332][   T65] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  146.225713][   T65] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  146.229934][   T39] audit: type=1400 audit(1741360668.248:574): avc:  denied  { read } for  pid=10745 comm="syz.4.1121" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  146.260968][T10750] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  146.292387][T10752] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  146.341617][T10756] ufs: You didn't specify the type of your ufs filesystem
[  146.341617][T10756] 
[  146.341617][T10756] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  146.341617][T10756] 
[  146.341617][T10756] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  146.350565][T10756] ufs: ufstype=old is supported read-only
[  146.353674][T10756] syz.2.1125: attempt to access beyond end of device
[  146.353674][T10756] nbd2: rw=0, sector=16, nr_sectors = 2 limit=0
[  146.365001][T10757] ufs: You didn't specify the type of your ufs filesystem
[  146.365001][T10757] 
[  146.365001][T10757] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  146.365001][T10757] 
[  146.365001][T10757] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  146.374286][T10757] ufs: ufstype=old is supported read-only
[  146.376122][T10757] syz.2.1125: attempt to access beyond end of device
[  146.376122][T10757] nbd2: rw=0, sector=16, nr_sectors = 2 limit=0
[  146.390906][T10759] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1126'.
[  146.394123][T10759] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1126'.
[  146.396644][T10759] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1126'.
[  146.402808][T10759] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1126'.
[  146.426618][T10761] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1127'.
[  146.557395][   T39] audit: type=1400 audit(1741360668.578:575): avc:  denied  { listen } for  pid=10766 comm="syz.2.1129" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  146.693561][T10769] loop8: detected capacity change from 0 to 32773
[  146.734243][T10777] Invalid logical block size (1792)
[  146.782777][T10783] netlink: 124 bytes leftover after parsing attributes in process `syz.4.1134'.
[  146.785315][T10783] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1134'.
[  146.819979][T10784] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1134'.
[  146.824046][T10784] netlink: 'syz.4.1134': attribute type 22 has an invalid length.
[  146.826223][T10784] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1134'.
[  146.830807][T10784] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1134'.
[  146.834298][T10784] netlink: 'syz.4.1134': attribute type 22 has an invalid length.
[  146.836665][T10784] netlink: 'syz.4.1134': attribute type 22 has an invalid length.
[  146.839082][T10784] netlink: 'syz.4.1134': attribute type 22 has an invalid length.
[  146.841361][T10784] netlink: 'syz.4.1134': attribute type 22 has an invalid length.
[  146.844064][T10784] netlink: 'syz.4.1134': attribute type 22 has an invalid length.
[  146.846360][T10784] netlink: 'syz.4.1134': attribute type 22 has an invalid length.
[  146.848562][T10784] netlink: 'syz.4.1134': attribute type 22 has an invalid length.
[  146.850931][T10784] netlink: 'syz.4.1134': attribute type 22 has an invalid length.
[  146.853958][T10784] netlink: 'syz.4.1134': attribute type 22 has an invalid length.
[  146.871392][T10783] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  147.222941][ T6061] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  147.393025][ T6061] usb 7-1: Using ep0 maxpacket: 8
[  147.397860][ T6061] usb 7-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2e.04
[  147.401310][ T6061] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  147.404432][ T6061] usb 7-1: Product: syz
[  147.405994][ T6061] usb 7-1: Manufacturer: syz
[  147.407615][ T6061] usb 7-1: SerialNumber: syz
[  147.411819][ T6061] usb 7-1: config 0 descriptor??
[  147.616105][T10786] FAULT_INJECTION: forcing a failure.
[  147.616105][T10786] name failslab, interval 1, probability 0, space 0, times 0
[  147.619647][ T6061] usb 7-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  147.620412][T10786] CPU: 1 UID: 0 PID: 10786 Comm: syz.2.1135 Not tainted 6.14.0-rc5-syzkaller-00137-g00a7d39898c8 #0
[  147.620429][T10786] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  147.620435][T10786] Call Trace:
[  147.620439][T10786]  <TASK>
[  147.620443][T10786]  dump_stack_lvl+0x16c/0x1f0
[  147.620471][T10786]  should_fail_ex+0x50a/0x650
[  147.620491][T10786]  ? fs_reclaim_acquire+0xae/0x150
[  147.620507][T10786]  ? raw_alloc_io_data+0x14d/0x1c0
[  147.620523][T10786]  should_failslab+0xc2/0x120
[  147.620535][T10786]  __kmalloc_noprof+0xcb/0x510
[  147.620549][T10786]  raw_alloc_io_data+0x14d/0x1c0
[  147.620565][T10786]  raw_ioctl+0x1300/0x2b90
[  147.620583][T10786]  ? __pfx_raw_ioctl+0x10/0x10
[  147.620599][T10786]  ? selinux_file_ioctl+0xb4/0x270
[  147.620616][T10786]  ? __pfx_raw_ioctl+0x10/0x10
[  147.620632][T10786]  __x64_sys_ioctl+0x190/0x200
[  147.620648][T10786]  do_syscall_64+0xcd/0x250
[  147.620663][T10786]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.620678][T10786] RIP: 0033:0x7f76aad8cd6b
[  147.620688][T10786] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[  147.620698][T10786] RSP: 002b:00007f76a8bf3f60 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  147.620713][T10786] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f76aad8cd6b
[  147.620719][T10786] RDX: 00007f76a8bf3fe0 RSI: 00000000c0085504 RDI: 0000000000000003
[  147.620726][T10786] RBP: 00007f76a8bf6090 R08: 0000000000001000 R09: 0000000000000601
[  147.620732][T10786] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f76a8bf3fe8
[  147.620738][T10786] R13: 0000000000000000 R14: 00007f76aafa5fa0 R15: 00007ffee63e2728
[  147.620750][T10786]  </TASK>
[  147.672020][ T6061] dvb_usb_rtl28xxu 7-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  147.675741][ T6061] usb 7-1: USB disconnect, device number 15
[  147.789381][   T39] audit: type=1400 audit(1741360669.808:576): avc:  denied  { listen } for  pid=10848 comm="syz.4.1137" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  147.802710][   T39] audit: type=1400 audit(1741360669.818:577): avc:  denied  { shutdown } for  pid=10848 comm="syz.4.1137" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  147.808194][   T39] audit: type=1400 audit(1741360669.828:578): avc:  denied  { accept } for  pid=10848 comm="syz.4.1137" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  147.859524][   T39] audit: type=1400 audit(1741360669.878:579): avc:  denied  { execmod } for  pid=10848 comm="syz.4.1137" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=47289 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  148.156047][T10870] geneve2: entered promiscuous mode
[  148.157839][T10870] geneve2: entered allmulticast mode
[  148.302750][ T5949] Bluetooth: hci0: command 0x0c1a tx timeout
[  148.302770][T10746] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  148.374763][T10899] can0: slcan on ttyS3.
[  148.462991][T10899] can0 (unregistered): slcan off ttyS3.
[  148.711460][T10937] FAULT_INJECTION: forcing a failure.
[  148.711460][T10937] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  148.717006][T10937] CPU: 1 UID: 0 PID: 10937 Comm: syz.2.1151 Not tainted 6.14.0-rc5-syzkaller-00137-g00a7d39898c8 #0
[  148.717022][T10937] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  148.717029][T10937] Call Trace:
[  148.717033][T10937]  <TASK>
[  148.717037][T10937]  dump_stack_lvl+0x16c/0x1f0
[  148.717055][T10937]  should_fail_ex+0x50a/0x650
[  148.717074][T10937]  _copy_from_user+0x2e/0xd0
[  148.717085][T10937]  snd_seq_oss_write+0x4fc/0x7b0
[  148.717100][T10937]  ? __pfx_snd_seq_oss_write+0x10/0x10
[  148.717112][T10937]  ? inode_security+0x101/0x130
[  148.717131][T10937]  ? bpf_lsm_file_permission+0x9/0x10
[  148.717144][T10937]  ? __pfx_odev_write+0x10/0x10
[  148.717153][T10937]  odev_write+0x51/0xa0
[  148.717163][T10937]  vfs_write+0x24c/0x1150
[  148.717180][T10937]  ? __fget_files+0x1fc/0x3a0
[  148.717190][T10937]  ? __pfx_lock_release+0x10/0x10
[  148.717205][T10937]  ? __pfx_vfs_write+0x10/0x10
[  148.717222][T10937]  ? lock_acquire+0x2f/0xb0
[  148.717236][T10937]  ? __fget_files+0x40/0x3a0
[  148.717247][T10937]  ? __fget_files+0x206/0x3a0
[  148.717260][T10937]  ksys_write+0x12b/0x250
[  148.717269][T10937]  ? __pfx_ksys_write+0x10/0x10
[  148.717282][T10937]  do_syscall_64+0xcd/0x250
[  148.717297][T10937]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  148.717312][T10937] RIP: 0033:0x7f76aad8d169
[  148.717320][T10937] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  148.717331][T10937] RSP: 002b:00007f76a8bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  148.717341][T10937] RAX: ffffffffffffffda RBX: 00007f76aafa5fa0 RCX: 00007f76aad8d169
[  148.717348][T10937] RDX: 000000000000021e RSI: 0000400000000580 RDI: 0000000000000003
[  148.717354][T10937] RBP: 00007f76a8bf6090 R08: 0000000000000000 R09: 0000000000000000
[  148.717360][T10937] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  148.717366][T10937] R13: 0000000000000000 R14: 00007f76aafa5fa0 R15: 00007ffee63e2728
[  148.717379][T10937]  </TASK>
[  149.114629][ T9199] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  149.262760][    T9] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  149.267923][ T9199] usb 9-1: Using ep0 maxpacket: 8
[  149.271894][ T9199] usb 9-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2e.04
[  149.274640][ T9199] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  149.276844][ T9199] usb 9-1: Product: syz
[  149.278014][ T9199] usb 9-1: Manufacturer: syz
[  149.279322][ T9199] usb 9-1: SerialNumber: syz
[  149.283349][ T9199] usb 9-1: config 0 descriptor??
[  149.415922][    T9] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  149.418485][    T9] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  149.420919][    T9] usb 7-1: Product: syz
[  149.422120][    T9] usb 7-1: Manufacturer: syz
[  149.423607][    T9] usb 7-1: SerialNumber: syz
[  149.429148][    T9] usb 7-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  149.457455][ T5980] usb 7-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  149.488162][ T9199] usb 9-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  149.490838][    C0] raw-gadget.0 gadget.4: ignoring, device is not running
[  149.494449][ T9199] dvb_usb_rtl28xxu 9-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  149.504433][ T9199] usb 9-1: USB disconnect, device number 8
[  149.673757][ T9199] usb 7-1: USB disconnect, device number 16
[  150.253686][    T8] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  150.382784][ T5949] Bluetooth: hci0: command 0x0c1a tx timeout
[  150.405463][    T8] usb 9-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  150.408032][    T8] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  150.410342][    T8] usb 9-1: Product: syz
[  150.417112][    T8] usb 9-1: Manufacturer: syz
[  150.418469][    T8] usb 9-1: SerialNumber: syz
[  150.420790][    T8] usb 9-1: config 0 descriptor??
[  150.542772][ T5980] ath9k_htc 7-1:1.0: ath9k_htc: Target is unresponsive
[  150.545451][ T5980] ath9k_htc: Failed to initialize the device
[  150.550457][ T9199] usb 7-1: ath9k_htc: USB layer deinitialized
[  150.628327][    T8] usb 9-1: USB disconnect, device number 9
[  151.320145][T11097] loop6: detected capacity change from 0 to 524287999
[  151.322996][T11097] FAULT_INJECTION: forcing a failure.
[  151.322996][T11097] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  151.326537][T11097] CPU: 3 UID: 0 PID: 11097 Comm: syz.4.1161 Not tainted 6.14.0-rc5-syzkaller-00137-g00a7d39898c8 #0
[  151.326551][T11097] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  151.326559][T11097] Call Trace:
[  151.326562][T11097]  <TASK>
[  151.326567][T11097]  dump_stack_lvl+0x16c/0x1f0
[  151.326599][T11097]  should_fail_ex+0x50a/0x650
[  151.326620][T11097]  _copy_to_user+0x32/0xd0
[  151.326633][T11097]  simple_read_from_buffer+0xd0/0x160
[  151.326650][T11097]  proc_fail_nth_read+0x198/0x270
[  151.326665][T11097]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  151.326681][T11097]  ? rw_verify_area+0xcf/0x680
[  151.326695][T11097]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  151.326710][T11097]  vfs_read+0x1df/0xbf0
[  151.326726][T11097]  ? __fget_files+0x1fc/0x3a0
[  151.326736][T11097]  ? __pfx___mutex_lock+0x10/0x10
[  151.326750][T11097]  ? __pfx_vfs_read+0x10/0x10
[  151.326770][T11097]  ? __fget_files+0x206/0x3a0
[  151.326783][T11097]  ksys_read+0x12b/0x250
[  151.326799][T11097]  ? __pfx_ksys_read+0x10/0x10
[  151.326818][T11097]  do_syscall_64+0xcd/0x250
[  151.326833][T11097]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.326848][T11097] RIP: 0033:0x7f017ef8bb7c
[  151.326856][T11097] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  151.326867][T11097] RSP: 002b:00007f017fdb9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  151.326877][T11097] RAX: ffffffffffffffda RBX: 00007f017f1a5fa0 RCX: 00007f017ef8bb7c
[  151.326884][T11097] RDX: 000000000000000f RSI: 00007f017fdb90a0 RDI: 0000000000000005
[  151.326890][T11097] RBP: 00007f017fdb9090 R08: 0000000000000000 R09: 0000000000000000
[  151.326896][T11097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  151.326902][T11097] R13: 0000000000000000 R14: 00007f017f1a5fa0 R15: 00007ffc683f0728
[  151.326915][T11097]  </TASK>
[  151.398451][ T5949] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  151.402270][ T5949] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  151.415796][ T5949] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  151.422385][ T5949] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  151.425071][ T5949] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  151.429078][ T5949] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  151.438735][T11103] Failed to initialize the IGMP autojoin socket (err -2)
[  151.579841][T11115] __nla_validate_parse: 64 callbacks suppressed
[  151.579852][T11115] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1166'.
[  151.588496][T11115] loop8: detected capacity change from 0 to 7
[  151.591470][T11115] Dev loop8: unable to read RDB block 7
[  151.594085][T11115]  loop8: AHDI p1 p3 p4
[  151.595598][T11115] loop8: partition table partially beyond EOD, truncated
[  151.598909][T11115] loop8: p1 start 975770946 is beyond EOD, truncated
[  151.600777][T11115] loop8: p3 start 6514546 is beyond EOD, truncated
[  151.662752][ T6152] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[  151.667048][   T39] audit: type=1400 audit(1741360673.688:580): avc:  denied  { setopt } for  pid=11121 comm="syz.2.1168" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  151.812717][ T6152] usb 9-1: Using ep0 maxpacket: 16
[  151.815577][ T6152] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  151.818407][ T6152] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  151.820968][ T6152] usb 9-1: New USB device found, idVendor=05ac, idProduct=8241, bcdDevice= 0.00
[  151.823996][ T6152] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  151.827156][ T6152] usb 9-1: config 0 descriptor??
[  151.988396][T11103] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  151.991502][T11103] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  151.994225][T11103] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  151.997080][T11103] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  152.001917][T11103] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  152.005195][T11103] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  152.007865][T11103] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  152.010903][T11103] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  152.017896][T11103] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  152.025016][T11103] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  152.030187][T11103] wireguard: wg0: Could not create IPv4 socket
[  152.032775][T11103] wireguard: wg1: Could not create IPv4 socket
[  152.035291][T11103] wireguard: wg2: Could not create IPv4 socket
[  152.046888][T11108] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1164'.
[  152.306701][   T39] audit: type=1400 audit(1741360674.328:581): avc:  denied  { read } for  pid=11107 comm="syz.4.1164" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  152.307754][ T6152] usbhid 9-1:0.0: can't add hid device: -71
[  152.314346][ T6152] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[  152.317822][ T6152] usb 9-1: USB disconnect, device number 10
[  152.769461][ T5949] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  152.773413][ T5949] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  152.776509][ T5949] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  152.780267][ T5949] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  152.784279][ T5949] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  152.787979][ T5949] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  152.798531][T11149] Failed to initialize the IGMP autojoin socket (err -2)
[  152.838887][T11157] FAULT_INJECTION: forcing a failure.
[  152.838887][T11157] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  152.842503][T11157] CPU: 1 UID: 0 PID: 11157 Comm: syz.4.1171 Not tainted 6.14.0-rc5-syzkaller-00137-g00a7d39898c8 #0
[  152.842517][T11157] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  152.842524][T11157] Call Trace:
[  152.842528][T11157]  <TASK>
[  152.842532][T11157]  dump_stack_lvl+0x16c/0x1f0
[  152.842550][T11157]  should_fail_ex+0x50a/0x650
[  152.842566][T11157]  ? __pfx___might_resched+0x10/0x10
[  152.842602][T11157]  should_fail_alloc_page+0xe7/0x130
[  152.842626][T11157]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  152.842648][T11157]  __alloc_frozen_pages_noprof+0x18e/0x2470
[  152.842661][T11157]  ? hlock_class+0x4e/0x130
[  152.842672][T11157]  ? mark_lock+0xb5/0xc60
[  152.842688][T11157]  ? __pfx_mark_lock+0x10/0x10
[  152.842704][T11157]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  152.842716][T11157]  ? mark_lock+0xb5/0xc60
[  152.842730][T11157]  ? hlock_class+0x4e/0x130
[  152.842753][T11157]  ? hlock_class+0x4e/0x130
[  152.842766][T11157]  ? __lock_acquire+0xcc5/0x3c40
[  152.842781][T11157]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  152.842799][T11157]  ? policy_nodemask+0xea/0x4e0
[  152.842813][T11157]  alloc_pages_mpol+0x1fc/0x540
[  152.842826][T11157]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  152.842838][T11157]  ? __lock_acquire+0x15a9/0x3c40
[  152.842855][T11157]  folio_alloc_mpol_noprof+0x36/0x2f0
[  152.842870][T11157]  vma_alloc_folio_noprof+0xee/0x1b0
[  152.842884][T11157]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  152.842898][T11157]  ? find_held_lock+0x2d/0x110
[  152.842913][T11157]  do_pte_missing+0x202f/0x3e10
[  152.842929][T11157]  __handle_mm_fault+0x1166/0x2c60
[  152.842943][T11157]  ? __pfx___handle_mm_fault+0x10/0x10
[  152.842954][T11157]  ? follow_page_pte+0x3ac/0x1490
[  152.842964][T11157]  ? __pfx_lock_release+0x10/0x10
[  152.842989][T11157]  handle_mm_fault+0x3fa/0xaa0
[  152.843002][T11157]  __get_user_pages+0x773/0x36f0
[  152.843017][T11157]  ? __pfx___get_user_pages+0x10/0x10
[  152.843026][T11157]  ? down_read_killable+0xcc/0x380
[  152.843042][T11157]  ? __pfx_down_read_killable+0x10/0x10
[  152.843057][T11157]  ? mark_lock+0xb5/0xc60
[  152.843071][T11157]  ? __pfx___lock_acquire+0x10/0x10
[  152.843087][T11157]  __gup_longterm_locked+0x5fb/0x1870
[  152.843102][T11157]  ? __pfx___gup_longterm_locked+0x10/0x10
[  152.843112][T11157]  ? gup_fast_fallback+0x84c/0x2690
[  152.843122][T11157]  ? __pfx_lock_release+0x10/0x10
[  152.843138][T11157]  ? sanity_check_pinned_pages+0x23/0x11e0
[  152.843158][T11157]  gup_fast_fallback+0x1802/0x2690
[  152.843176][T11157]  ? __pfx_gup_fast_fallback+0x10/0x10
[  152.843194][T11157]  pin_user_pages_fast+0xa8/0x100
[  152.843204][T11157]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  152.843215][T11157]  ? __xas_next+0x38d/0x710
[  152.843231][T11157]  pfn_reader_user_pin+0xccf/0x10c0
[  152.843249][T11157]  ? __pfx_iopt_pages_fill_from_xarray+0x10/0x10
[  152.843261][T11157]  ? interval_tree_span_iter_next+0x315/0x4d0
[  152.843275][T11157]  ? __pfx_pfn_reader_user_pin+0x10/0x10
[  152.843290][T11157]  ? interval_tree_span_iter_advance+0x16e/0x1e0
[  152.843301][T11157]  ? interval_tree_double_span_iter_update+0x1fa/0x390
[  152.843321][T11157]  iopt_pages_fill_xarray+0x392/0x980
[  152.843331][T11157]  ? iopt_area_add_access+0x1b0/0x380
[  152.843345][T11157]  ? __pfx_iopt_pages_fill_xarray+0x10/0x10
[  152.843373][T11157]  iopt_area_add_access+0x1d3/0x380
[  152.843385][T11157]  iommufd_access_pin_pages+0x634/0xa10
[  152.843406][T11157]  ? __pfx_iommufd_access_pin_pages+0x10/0x10
[  152.843426][T11157]  ? __kvmalloc_node_noprof+0x6f/0x1a0
[  152.843447][T11157]  iommufd_test+0x3187/0x44b0
[  152.843463][T11157]  ? __pfx_iommufd_test+0x10/0x10
[  152.843475][T11157]  ? __pfx_lock_release+0x10/0x10
[  152.843489][T11157]  ? trace_lock_acquire+0x14e/0x1f0
[  152.843501][T11157]  ? __pfx_lock_release+0x10/0x10
[  152.843516][T11157]  ? lock_acquire+0x2f/0xb0
[  152.843530][T11157]  ? __might_fault+0xe3/0x190
[  152.843542][T11157]  ? __might_fault+0xe3/0x190
[  152.843558][T11157]  iommufd_fops_ioctl+0x359/0x4f0
[  152.843573][T11157]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  152.843587][T11157]  ? __pfx_lock_release+0x10/0x10
[  152.843607][T11157]  ? selinux_file_ioctl+0x180/0x270
[  152.843624][T11157]  ? selinux_file_ioctl+0xb4/0x270
[  152.843641][T11157]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  152.843656][T11157]  __x64_sys_ioctl+0x190/0x200
[  152.843672][T11157]  do_syscall_64+0xcd/0x250
[  152.843687][T11157]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.843701][T11157] RIP: 0033:0x7f017ef8d169
[  152.843710][T11157] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.843721][T11157] RSP: 002b:00007f017fdb9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  152.843731][T11157] RAX: ffffffffffffffda RBX: 00007f017f1a5fa0 RCX: 00007f017ef8d169
[  152.843738][T11157] RDX: 0000400000000100 RSI: 0000000000003ba0 RDI: 0000000000000003
[  152.843744][T11157] RBP: 00007f017fdb9090 R08: 0000000000000000 R09: 0000000000000000
[  152.843750][T11157] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  152.843756][T11157] R13: 0000000000000000 R14: 00007f017f1a5fa0 R15: 00007ffc683f0728
[  152.843770][T11157]  </TASK>
[  153.118401][T11178] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1173'.
[  153.120801][T11178] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1173'.
[  153.125307][T11178] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1173'.
[  153.128034][T11178] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1173'.
[  153.235902][T11191] 8021q: VLANs not supported on sit0
[  153.239345][T11191] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1175'.
[  153.293876][T11198] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1177'.
[  153.349922][   T39] audit: type=1400 audit(1741360675.368:582): avc:  denied  { setattr } for  pid=11196 comm="syz.4.1177" name="video0" dev="devtmpfs" ino=955 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  153.697504][T11233] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  153.701316][   T39] audit: type=1400 audit(1741360675.718:583): avc:  denied  { bind } for  pid=11232 comm="syz.2.1179" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  153.707698][   T39] audit: type=1400 audit(1741360675.718:584): avc:  denied  { listen } for  pid=11232 comm="syz.2.1179" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  153.714125][   T39] audit: type=1400 audit(1741360675.728:585): avc:  denied  { accept } for  pid=11232 comm="syz.2.1179" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  153.927329][T11251] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  153.992526][T11260] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1181'.
[  153.997163][T11260] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1181'.
[  154.205241][T11284] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  154.209448][   T39] audit: type=1400 audit(1741360676.228:586): avc:  denied  { create } for  pid=11283 comm="syz.4.1186" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=key permissive=1
[  154.335353][T11293] virtio-fs: tag <(null)> not found
[  154.752834][ T5980] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[  154.872768][ T5949] Bluetooth: hci0: command tx timeout
[  154.882960][ T5980] usb 9-1: device descriptor read/64, error -71
[  155.123000][ T5980] usb 9-1: new high-speed USB device number 12 using dummy_hcd
[  155.190898][T11358] FAULT_INJECTION: forcing a failure.
[  155.190898][T11358] name failslab, interval 1, probability 0, space 0, times 0
[  155.197925][T11358] CPU: 2 UID: 0 PID: 11358 Comm: syz.2.1193 Not tainted 6.14.0-rc5-syzkaller-00137-g00a7d39898c8 #0
[  155.197944][T11358] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  155.197951][T11358] Call Trace:
[  155.197954][T11358]  <TASK>
[  155.197959][T11358]  dump_stack_lvl+0x16c/0x1f0
[  155.197978][T11358]  should_fail_ex+0x50a/0x650
[  155.197994][T11358]  ? fs_reclaim_acquire+0xae/0x150
[  155.198011][T11358]  should_failslab+0xc2/0x120
[  155.198024][T11358]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  155.198035][T11358]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  155.198053][T11358]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  155.198071][T11358]  mmu_topup_memory_caches+0x25/0x170
[  155.198085][T11358]  kvm_mmu_load+0xda/0x22a0
[  155.198098][T11358]  ? kvm_apic_has_interrupt+0xb6/0x190
[  155.198115][T11358]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  155.198131][T11358]  ? kvm_guest_time_update+0x71e/0xeb0
[  155.198145][T11358]  ? __pfx_kvm_mmu_load+0x10/0x10
[  155.198157][T11358]  ? kvm_cpu_has_injectable_intr+0x9b/0x1a0
[  155.198173][T11358]  ? kvm_check_and_inject_events+0x725/0x12e0
[  155.198185][T11358]  ? record_steal_time+0x61/0xbe0
[  155.198198][T11358]  vcpu_run+0x338e/0x4f50
[  155.198209][T11358]  ? __pfx_vmx_vcpu_load_vmcs+0x10/0x10
[  155.198225][T11358]  ? __pfx_vcpu_run+0x10/0x10
[  155.198236][T11358]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  155.198252][T11358]  ? rcu_is_watching+0x12/0xc0
[  155.198264][T11358]  ? trace_lock_acquire+0x14e/0x1f0
[  155.198275][T11358]  ? __local_bh_enable_ip+0xa4/0x120
[  155.198301][T11358]  ? lockdep_hardirqs_on+0x7c/0x110
[  155.198313][T11358]  ? kvm_arch_vcpu_ioctl_run+0x1a8/0x17f0
[  155.198328][T11358]  ? kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[  155.198340][T11358]  kvm_arch_vcpu_ioctl_run+0x865/0x17f0
[  155.198356][T11358]  kvm_vcpu_ioctl+0x5ea/0x16b0
[  155.198369][T11358]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  155.198385][T11358]  ? ioctl_has_perm.constprop.0.isra.0+0x2fc/0x450
[  155.198404][T11358]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  155.198423][T11358]  ? __pfx_lock_release+0x10/0x10
[  155.198443][T11358]  ? selinux_file_ioctl+0x180/0x270
[  155.198458][T11358]  ? selinux_file_ioctl+0xb4/0x270
[  155.198475][T11358]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  155.198488][T11358]  __x64_sys_ioctl+0x190/0x200
[  155.198504][T11358]  do_syscall_64+0xcd/0x250
[  155.198519][T11358]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.198533][T11358] RIP: 0033:0x7f76aad8d169
[  155.198544][T11358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.198577][T11358] RSP: 002b:00007f76a8bd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  155.198592][T11358] RAX: ffffffffffffffda RBX: 00007f76aafa6080 RCX: 00007f76aad8d169
[  155.198600][T11358] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  155.198606][T11358] RBP: 00007f76a8bd5090 R08: 0000000000000000 R09: 0000000000000000
[  155.198612][T11358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  155.198618][T11358] R13: 0000000000000001 R14: 00007f76aafa6080 R15: 00007ffee63e2728
[  155.198632][T11358]  </TASK>
[  155.252811][ T5980] usb 9-1: device descriptor read/64, error -71
[  155.413126][ T5980] usb usb9-port1: attempt power cycle
[  155.762878][ T5980] usb 9-1: new high-speed USB device number 13 using dummy_hcd
[  155.793287][ T5980] usb 9-1: device descriptor read/8, error -71
[  156.033404][ T5980] usb 9-1: new high-speed USB device number 14 using dummy_hcd
[  156.063611][ T5980] usb 9-1: device descriptor read/8, error -71
[  156.172905][ T5980] usb usb9-port1: unable to enumerate USB device
[  156.943107][ T5949] Bluetooth: hci0: command tx timeout
[  156.949951][   T39] audit: type=1400 audit(1741360678.968:587): avc:  denied  { ioctl } for  pid=11479 comm="syz.2.1201" path="/dev/fuse" dev="devtmpfs" ino=105 ioctlcmd=0x9363 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  157.638524][T11524] validate_nla: 23 callbacks suppressed
[  157.638572][T11524] netlink: 'syz.4.1202': attribute type 3 has an invalid length.
[  157.642482][T11524] netlink: 'syz.4.1202': attribute type 3 has an invalid length.
[  158.257045][T11555] netlink: 'syz.4.1210': attribute type 10 has an invalid length.
[  158.272572][T11555] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  158.283855][   T39] audit: type=1400 audit(1741360680.308:588): avc:  denied  { execute } for  pid=11553 comm="syz.4.1210" path="/dev/snd/midiC2D0" dev="devtmpfs" ino=1324 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sound_device_t tclass=chr_file permissive=1
[  159.022887][ T5949] Bluetooth: hci0: command tx timeout
[  159.367346][T11609] __nla_validate_parse: 1 callbacks suppressed
[  159.367357][T11609] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1212'.
[  159.372189][T11609] ------------[ cut here ]------------
[  159.373919][T11609] WARNING: CPU: 1 PID: 11609 at net/mac80211/driver-ops.c:468 drv_link_info_changed+0x117/0x870
[  159.376790][T11609] Modules linked in:
[  159.378500][T11609] CPU: 1 UID: 0 PID: 11609 Comm: syz.2.1212 Not tainted 6.14.0-rc5-syzkaller-00137-g00a7d39898c8 #0
[  159.382968][T11609] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  159.385930][T11609] RIP: 0010:drv_link_info_changed+0x117/0x870
[  159.387682][T11609] Code: ef b5 f1 f6 44 89 ff 48 c7 c6 c0 e0 c1 8c e8 40 b1 f1 f6 41 83 ff 0b 77 0b b8 82 08 00 00 4c 0f a3 f8 72 0e e8 ca b5 f1 f6 90 <0f> 0b 90 e9 61 03 00 00 e8 bc b5 f1 f6 41 8d 47 f6 31 ff 83 e0 fd
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  159.393774][T11609] RSP: 0018:ffffc90004bbeec0 EFLAGS: 00010287
[  159.395514][T11609] RAX: 0000000000001e2d RBX: ffff88802d37cd80 RCX: ffffc900079e3000
[  159.397713][T11609] RDX: 0000000000080000 RSI: ffffffff8ac83c26 RDI: 0000000000000005
[  159.399941][T11609] RBP: ffff888051160e40 R08: 0000000000000005 R09: 000000000000000b
[  159.403016][T11609] R10: 0000000000000002 R11: 0000000000000002 R12: 0000000000000200
[  159.405837][T11609] R13: 0000000000000200 R14: ffff88802d37e9d0 R15: 0000000000000002
[  159.408412][T11609] FS:  00007f76a8bf66c0(0000) GS:ffff88806a700000(0000) knlGS:0000000000000000
[  159.411243][T11609] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  159.413691][T11609] CR2: 000000110c3a3ece CR3: 00000000283f4000 CR4: 0000000000352ef0
[  159.415965][T11609] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  159.418143][T11609] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  159.420337][T11609] Call Trace:
[  159.421287][T11609]  <TASK>
[  159.422232][T11609]  ? __warn+0xea/0x3c0
[  159.423565][T11609]  ? drv_link_info_changed+0x117/0x870
[  159.424665][T11149] netdevsim netdevsim5 netdevsim0: renamed from eth10
[  159.425096][T11609]  ? report_bug+0x3c0/0x580
[  159.428329][T11609]  ? handle_bug+0x54/0xa0
[  159.429579][T11609]  ? exc_invalid_op+0x17/0x50
[  159.430933][T11609]  ? asm_exc_invalid_op+0x1a/0x20
[  159.432350][T11609]  ? drv_link_info_changed+0x116/0x870
[  159.434038][T11609]  ? drv_link_info_changed+0x117/0x870
[  159.435582][T11609]  ? __pfx_mac80211_hwsim_flush+0x10/0x10
[  159.437165][T11609]  ieee80211_link_info_change_notify+0x2c1/0x350
[  159.438942][T11609]  ieee80211_offchannel_stop_vifs+0x328/0x5b0
[  159.440650][T11609]  __ieee80211_start_scan+0x13c2/0x1d80
[  159.442201][T11609]  ? __pfx___ieee80211_start_scan+0x10/0x10
[  159.443983][T11609]  ieee80211_scan+0x1da/0x330
[  159.445317][T11609]  cfg80211_scan+0x4be/0x730
[  159.446646][T11609]  cfg80211_conn_scan+0x6a4/0xec0
[  159.448061][T11609]  cfg80211_connect+0x19be/0x2140
[  159.449498][T11609]  ? __pfx_cfg80211_connect+0x10/0x10
[  159.451036][T11609]  ? __asan_memset+0x23/0x50
[  159.452349][T11609]  ? nl80211_crypto_settings+0xce6/0x1120
[  159.454068][T11609]  ? __pfx_vprintk_emit+0x10/0x10
[  159.455512][T11609]  nl80211_connect+0x1568/0x2140
[  159.456980][T11609]  ? __pfx_nl80211_connect+0x10/0x10
[  159.458507][T11609]  ? __mutex_trylock_common+0xea/0x250
[  159.460074][T11609]  ? __pfx___mutex_trylock_common+0x10/0x10
[  159.461757][T11609]  ? nl80211_pre_doit+0x1b0/0xb10
[  159.463471][T11609]  genl_family_rcv_msg_doit+0x202/0x2f0
[  159.465037][T11609]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  159.466795][T11609]  ? bpf_lsm_capable+0x9/0x10
[  159.468135][T11609]  ? security_capable+0x7e/0x260
[  159.469536][T11609]  ? ns_capable+0xd7/0x110
[  159.470826][T11609]  genl_rcv_msg+0x565/0x800
[  159.472114][T11609]  ? __pfx_genl_rcv_msg+0x10/0x10
[  159.473705][T11609]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  159.475238][T11609]  ? __pfx_nl80211_connect+0x10/0x10
[  159.476717][T11609]  ? __pfx_nl80211_post_doit+0x10/0x10
[  159.478256][T11609]  netlink_rcv_skb+0x16b/0x440
[  159.479631][T11609]  ? __pfx_genl_rcv_msg+0x10/0x10
[  159.481119][T11609]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  159.482906][T11609]  ? down_read+0xc9/0x330
[  159.484141][T11609]  ? __pfx_down_read+0x10/0x10
[  159.485477][T11609]  ? netlink_deliver_tap+0x1ae/0xd30
[  159.486973][T11609]  genl_rcv+0x28/0x40
[  159.488114][T11609]  netlink_unicast+0x53c/0x7f0
[  159.489493][T11609]  ? __pfx_netlink_unicast+0x10/0x10
[  159.491017][T11609]  netlink_sendmsg+0x8b8/0xd70
[  159.492375][T11609]  ? __pfx_netlink_sendmsg+0x10/0x10
[  159.494220][T11609]  ____sys_sendmsg+0xaaf/0xc90
[  159.495603][T11609]  ? copy_msghdr_from_user+0x10b/0x160
[  159.497222][T11609]  ? __pfx_____sys_sendmsg+0x10/0x10
[  159.498737][T11609]  ___sys_sendmsg+0x135/0x1e0
[  159.500741][T11609]  ? __pfx____sys_sendmsg+0x10/0x10
[  159.502211][T11609]  ? __pfx_lock_release+0x10/0x10
[  159.504228][T11609]  ? trace_lock_acquire+0x14e/0x1f0
[  159.505701][T11609]  ? __fget_files+0x206/0x3a0
[  159.507074][T11609]  __sys_sendmsg+0x16e/0x220
[  159.508402][T11609]  ? __pfx___sys_sendmsg+0x10/0x10
[  159.509867][T11609]  ? __x64_sys_futex+0x1e1/0x4c0
[  159.511298][T11609]  do_syscall_64+0xcd/0x250
[  159.512603][T11609]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.514821][T11609] RIP: 0033:0x7f76aad8d169
[  159.516085][T11609] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.521859][T11609] RSP: 002b:00007f76a8bf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  159.524443][T11609] RAX: ffffffffffffffda RBX: 00007f76aafa5fa0 RCX: 00007f76aad8d169
[  159.527023][T11609] RDX: 0000000000048084 RSI: 00004000000001c0 RDI: 0000000000000003
[  159.529452][T11609] RBP: 00007f76aae0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  159.532439][T11609] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  159.535642][T11609] R13: 0000000000000000 R14: 00007f76aafa5fa0 R15: 00007ffee63e2728
[  159.538680][T11609]  </TASK>
[  159.539888][T11609] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  159.542652][T11609] CPU: 1 UID: 0 PID: 11609 Comm: syz.2.1212 Not tainted 6.14.0-rc5-syzkaller-00137-g00a7d39898c8 #0
[  159.546666][T11609] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  159.550765][T11609] Call Trace:
[  159.551711][T11609]  <TASK>
[  159.552548][T11609]  dump_stack_lvl+0x3d/0x1f0
[  159.553894][T11609]  panic+0x71d/0x800
[  159.555016][T11609]  ? __pfx_panic+0x10/0x10
[  159.556273][T11609]  ? show_trace_log_lvl+0x29d/0x3d0
[  159.557738][T11609]  ? drv_link_info_changed+0x117/0x870
[  159.559284][T11609]  check_panic_on_warn+0xab/0xb0
[  159.560672][T11609]  __warn+0xf6/0x3c0
[  159.561778][T11609]  ? drv_link_info_changed+0x117/0x870
[  159.563308][T11609]  report_bug+0x3c0/0x580
[  159.564516][T11609]  handle_bug+0x54/0xa0
[  159.565692][T11609]  exc_invalid_op+0x17/0x50
[  159.567010][T11609]  asm_exc_invalid_op+0x1a/0x20
[  159.568378][T11609] RIP: 0010:drv_link_info_changed+0x117/0x870
[  159.570097][T11609] Code: ef b5 f1 f6 44 89 ff 48 c7 c6 c0 e0 c1 8c e8 40 b1 f1 f6 41 83 ff 0b 77 0b b8 82 08 00 00 4c 0f a3 f8 72 0e e8 ca b5 f1 f6 90 <0f> 0b 90 e9 61 03 00 00 e8 bc b5 f1 f6 41 8d 47 f6 31 ff 83 e0 fd
[  159.575379][T11609] RSP: 0018:ffffc90004bbeec0 EFLAGS: 00010287
[  159.577070][T11609] RAX: 0000000000001e2d RBX: ffff88802d37cd80 RCX: ffffc900079e3000
[  159.579297][T11609] RDX: 0000000000080000 RSI: ffffffff8ac83c26 RDI: 0000000000000005
[  159.581482][T11609] RBP: ffff888051160e40 R08: 0000000000000005 R09: 000000000000000b
[  159.583675][T11609] R10: 0000000000000002 R11: 0000000000000002 R12: 0000000000000200
[  159.585855][T11609] R13: 0000000000000200 R14: ffff88802d37e9d0 R15: 0000000000000002
[  159.588061][T11609]  ? drv_link_info_changed+0x116/0x870
[  159.589607][T11609]  ? __pfx_mac80211_hwsim_flush+0x10/0x10
[  159.591480][T11609]  ieee80211_link_info_change_notify+0x2c1/0x350
[  159.593698][T11609]  ieee80211_offchannel_stop_vifs+0x328/0x5b0
[  159.595879][T11609]  __ieee80211_start_scan+0x13c2/0x1d80
[  159.597902][T11609]  ? __pfx___ieee80211_start_scan+0x10/0x10
[  159.600042][T11609]  ieee80211_scan+0x1da/0x330
[  159.601750][T11609]  cfg80211_scan+0x4be/0x730
[  159.603423][T11609]  cfg80211_conn_scan+0x6a4/0xec0
[  159.605225][T11609]  cfg80211_connect+0x19be/0x2140
[  159.607051][T11609]  ? __pfx_cfg80211_connect+0x10/0x10
[  159.608978][T11609]  ? __asan_memset+0x23/0x50
[  159.610651][T11609]  ? nl80211_crypto_settings+0xce6/0x1120
[  159.612709][T11609]  ? __pfx_vprintk_emit+0x10/0x10
[  159.614552][T11609]  nl80211_connect+0x1568/0x2140
[  159.616408][T11609]  ? __pfx_nl80211_connect+0x10/0x10
[  159.618378][T11609]  ? __mutex_trylock_common+0xea/0x250
[  159.620409][T11609]  ? __pfx___mutex_trylock_common+0x10/0x10
[  159.622653][T11609]  ? nl80211_pre_doit+0x1b0/0xb10
[  159.624541][T11609]  genl_family_rcv_msg_doit+0x202/0x2f0
[  159.626606][T11609]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  159.628853][T11609]  ? bpf_lsm_capable+0x9/0x10
[  159.630605][T11609]  ? security_capable+0x7e/0x260
[  159.632447][T11609]  ? ns_capable+0xd7/0x110
[  159.634120][T11609]  genl_rcv_msg+0x565/0x800
[  159.635869][T11609]  ? __pfx_genl_rcv_msg+0x10/0x10
[  159.637770][T11609]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  159.639820][T11609]  ? __pfx_nl80211_connect+0x10/0x10
[  159.641806][T11609]  ? __pfx_nl80211_post_doit+0x10/0x10
[  159.643799][T11609]  netlink_rcv_skb+0x16b/0x440
[  159.645515][T11609]  ? __pfx_genl_rcv_msg+0x10/0x10
[  159.647389][T11609]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  159.649232][T11609]  ? down_read+0xc9/0x330
[  159.650822][T11609]  ? __pfx_down_read+0x10/0x10
[  159.652530][T11609]  ? netlink_deliver_tap+0x1ae/0xd30
[  159.654469][T11609]  genl_rcv+0x28/0x40
[  159.655937][T11609]  netlink_unicast+0x53c/0x7f0
[  159.657652][T11609]  ? __pfx_netlink_unicast+0x10/0x10
[  159.659636][T11609]  netlink_sendmsg+0x8b8/0xd70
[  159.661298][T11609]  ? __pfx_netlink_sendmsg+0x10/0x10
[  159.662941][T11609]  ____sys_sendmsg+0xaaf/0xc90
[  159.664287][T11609]  ? copy_msghdr_from_user+0x10b/0x160
[  159.665803][T11609]  ? __pfx_____sys_sendmsg+0x10/0x10
[  159.667292][T11609]  ___sys_sendmsg+0x135/0x1e0
[  159.668624][T11609]  ? __pfx____sys_sendmsg+0x10/0x10
[  159.670075][T11609]  ? __pfx_lock_release+0x10/0x10
[  159.671444][T11609]  ? trace_lock_acquire+0x14e/0x1f0
[  159.672830][T11609]  ? __fget_files+0x206/0x3a0
[  159.674145][T11609]  __sys_sendmsg+0x16e/0x220
[  159.675471][T11609]  ? __pfx___sys_sendmsg+0x10/0x10
[  159.676908][T11609]  ? __x64_sys_futex+0x1e1/0x4c0
[  159.678301][T11609]  do_syscall_64+0xcd/0x250
[  159.679631][T11609]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.681283][T11609] RIP: 0033:0x7f76aad8d169
[  159.682536][T11609] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.687798][T11609] RSP: 002b:00007f76a8bf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  159.690116][T11609] RAX: ffffffffffffffda RBX: 00007f76aafa5fa0 RCX: 00007f76aad8d169
[  159.692310][T11609] RDX: 0000000000048084 RSI: 00004000000001c0 RDI: 0000000000000003
[  159.694489][T11609] RBP: 00007f76aae0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  159.696585][T11609] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  159.698803][T11609] R13: 0000000000000000 R14: 00007f76aafa5fa0 R15: 00007ffee63e2728
[  159.700981][T11609]  </TASK>
[  159.702310][T11609] Kernel Offset: disabled
[  159.703589][T11609] Rebooting in 86400 seconds..

VM DIAGNOSIS:
15:18:01  Registers:
info registers vcpu 0

CPU#0
RAX=1ffffd40002d29f9 RBX=ffff88802896d000 RCX=ffffffff8203ccde RDX=ffff888030bf4880
RSI=ffffffff8203e5f1 RDI=ffffea0001694fc8 RBP=0000000000000867 RSP=ffffc900038d7848
R8 =0000000000000006 R9 =0000000000013808 R10=000000000005a53f R11=0000000000000003
R12=000000000000009f R13=ffff8880605ebb08 R14=0000000000000001 R15=dffffc0000000000
RIP=ffffffff8203e606 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fcf8fad7d60 CR3=0000000034640000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002020004 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fcf8ef7c6a3 00007fcf8ef7c6a3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcdf4e19d0 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555558b0ef7b 0000555558b0ef30
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555558b0c4a0
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555558b81735 0000555558b815c0
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 10000010001fffff ffffffff04010000 0208060c0153a000 10000a1000061000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0101000000080602 0103a20100000008 061fffffffffffff 0404016ff4081000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1080041a08000c08 000100000008060a 0169920067646301 ffffffffffffffff
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 f708108003001000 1fffffffffffff04 08808880a2100000 10001fffffffffff
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff04010000020806 0c0153a00010000a 1000061000060270 8038100007800404
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000000002e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85409af5 RDI=ffffffff9ab83780 RBP=ffffffff9ab83740 RSP=ffffc90004bbe848
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000006
R12=0000000000000000 R13=000000000000002e R14=ffffffff9ab83740 R15=0000000000000000
RIP=ffffffff85409b1f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f76a8bf66c0 ffffffff 00c00000
GS =0000 ffff88806a700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c3a3ece CR3=00000000283f4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000023003 Opmask01=0000000001c00000 Opmask02=00000000edfdfdff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000093aac39 000000000000009f
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff20e5c420 0000003000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff20e4ba30 0000003000000010
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e6970726100656c 69666f7270000920
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000c0fe
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 8e6a97ff01000000 00000000000002ff
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 8e6a97ff01000000 00000000000002ff
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355544154535449 584557203a732520 3a73250064697074 696177203a732500
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355544154535449 584557051f560005 1f560000414c5551 4c4452051f560000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000000000747369 6c5f747365757165
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000000065676173 73656d5f70636864
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000000065676173 73656d5f70636864
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 725f726574656d61 7261707f7a6b7b7f 6567617377777fff 7f7f7d7f75777965
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000000000000031 0000726565666965
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000000000000031 00006d5f65636864
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbf2b313423342c
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 262821df2e2e33df 3228df3232202b22 df312e232d2435bf 2324353124322431
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
info registers vcpu 2

CPU#2
RAX=dffffc0000000000 RBX=0000000000000001 RCX=ffffc90005cc8000 RDX=1ffff92000b98eb4
RSI=ffffc90005cc7870 RDI=ffffc90005cc75a8 RBP=0000000000044c40 RSP=ffffc90005cc74f8
R8 =ffffc90005cc759c R9 =ffffffff9102e236 R10=ffffc90005cc7568 R11=0000000000010fd0
R12=ffffc90005cc75b8 R13=ffffc90005cc7568 R14=ffffc90005cc78a0 R15=ffffc90005cc7898
RIP=ffffffff8169470a RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000555582f9a500 ffffffff 00c00000
GS =0000 ffff88806a800000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f017fdb8f98 CR3=0000000028d52000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fffc0000 Opmask01=000000000000000f Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 20303d766765735f 656c646e61683d53 4e4f4954504f5f4e 4153410063657865
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3c872dd100 00007f3c8677c440 00007f3c8677c458 00007f3c8677c4a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3d534e4f4954504f 5f4e415341006365 786500726f747563 6578652d7a79732f
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=0000000000001000 RCX=0000000000000037 RDX=0000000000001000
RSI=0000000000000000 RDI=ffff88805bf8a200 RBP=ffffc90003a77a90 RSP=ffffc90003a77a28
R8 =0000000000000001 R9 =0000000000000000 R10=ffff88805bf8a000 R11=0000000000000003
R12=ffff88801b043040 R13=0000000000000c40 R14=0000000000001000 R15=ffffffff8485b419
RIP=ffffffff8b5777ca RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000555569a4e500 ffffffff 00c00000
GS =0000 ffff88806a900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000555569a695c8 CR3=0000000051a78000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000020081 Opmask01=000000000300000f Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc683ef9c0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f017f00f282
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f017f00f28f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f017f00f289
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f017f00f29d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f017f00f323
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f017f00f401
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 47414c46585f5346 2074657365720064 656c696166202973 2528746174736c00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 47414c46585f5346 0551405640570041 40494c4443050c56 000d514451564900
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000412 0000000000000000 0000000000000000 0000000001014350
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000