last executing test programs:

5.116140491s ago: executing program 0 (id=609):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
mount$tmpfs(0x0, &(0x7f0000000540)='./cgroup\x00', &(0x7f0000000180), 0x0, &(0x7f0000000100)={[{@mpol={'mpol', 0x3d, {'bind', '=static', @void}}}]})
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x24004050}, 0x20000044)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
migrate_pages(r1, 0xa94b, &(0x7f0000000b80)=0x4, &(0x7f0000000bc0)=0x27e04076)
r4 = syz_open_dev$sndctrl(&(0x7f0000000300), 0x1, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r4, 0xc2c45512, 0x0)
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000000900)=[{{0x0, 0x0, &(0x7f0000000c80)}}, {{&(0x7f0000000740), 0x6e, &(0x7f0000000980), 0x0, &(0x7f00000009c0)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x10}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x10}}, @cred={{0x1c}}], 0xd8}}], 0x2, 0x0, &(0x7f0000000b40)={0x0, 0x3938700})
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000380)=@raw={'raw\x00', 0x8, 0x3, 0x2a0, 0x0, 0x11, 0x148, 0x0, 0x10, 0x20c, 0x2a8, 0x2a8, 0x20c, 0x2a8, 0xac, 0x0, {[{{@ip={@multicast2, @multicast2, 0x0, 0x0, 'veth1_vlan\x00', 'sit0\x00'}, 0x10, 0xf4, 0x13c, 0x1c, {}, [@common=@unspec=@helper={{0x44}, {0x0, 'irc-20000\x00'}}, @common=@unspec=@connlimit={{0x40}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@local, 'ip6gre0\x00', {0x2}}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@SET={0x60, 'SET\x00', 0x0, {{0xffffffffffffffff, [0x2, 0x0, 0x5, 0x7, 0x6, 0x1], 0x5, 0x3}, {0x3, [0x2, 0x2, 0x3, 0x6, 0x2, 0x3], 0x2, 0x3}}}}], {{'\x00', 0xc8, 0x70, 0x94}, {0x24}}}}, 0x2fc)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x2, 0x4, 0x1, 0xbf27, 0x500}, 0x48)
mmap(&(0x7f0000fa2000/0x3000)=nil, 0x3000, 0x3, 0x13, r5, 0x0)
mremap(&(0x7f0000fa4000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000fa2000/0x1000)=nil)
pwritev(r0, &(0x7f0000000200)=[{&(0x7f0000000300)="d21f1524e07c28720f7de10e7ffcb191a2930d6c30aeabff0acab5cddf1075bbd887bb28d15dc6c3b78040faadbac5250b5589b3badb437427d05989241af04e56de70e3939eedc00e4ab614b8e44cd1b0a54a79daec651ef9f637b528625da1f4f8698df11a356083b8ab53b528894d6b45db86b1f6c2d49f1c3944fb3da08088daadf438ce07377805ecf8f87d3b6f77199eb172dc54bc0f3feb1a2060c5fdb27bc9d014c6024ab4c98e720f5c55a260a876b6da2acf37f8b44f209e4180bdebd6a3519b8c1164a8d7", 0xca}, {&(0x7f0000000180)="bacbbcb110883c28088681bceb1a7addf4ef54", 0x13}, {&(0x7f0000000400)="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", 0x1000}], 0x3, 0x0, 0x1ff)
sendmsg$NFT_MSG_GETSETELEM(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002180)=ANY=[@ANYBLOB="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"], 0x3a5c}}, 0x8000)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_procfs(0x0, &(0x7f0000000000)='ns\x00')

4.160572727s ago: executing program 0 (id=614):
syz_usb_connect(0x0, 0x3d, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000bdce4208110f80106afc0000000109022b00010000000009043700022ee5cd0009058010ff037f790209050e0320000980070705ab0b78"], 0x0)
r0 = syz_open_dev$char_usb(0xc, 0xb4, 0x10000)
writev(r0, &(0x7f00000006c0)=[{&(0x7f00000005c0)="f3", 0x1}, {&(0x7f0000000440)='Y', 0x1}], 0x2)
mount(0x0, &(0x7f0000000240)='./cgroup\x00', &(0x7f0000000100)='debugfs\x00', 0x2008011, &(0x7f0000000280)='gid=0,no9\xe1\x12 \x91\xfdP\x83\x0e\xb9G!8\xb0\x89\x99\x81\x02\x85\x1cE\b\x9f\x0f8-\xf6\xa4 \x99\x8d\x1d\x8a\xc7\xc5\x96\xe8Ee\xd5\xac\x18(\x9d\tIr\xdd\\\x95\x9eu}\x06ib\x88\x8c\x9d\xde\xeaT0;\xb4\x1f\x8cm\x15y\xb4[Gc\xaf\xee#\xcf>Qk\xcf\xfc\x12bY\xfc&\x93\xe0\xcc#\x93w\x84@/VV\xbc\x0eL\xeb~1\x832\xa7\xf7l\x1b\xffh<y\xde\b\xaf\x1a\xf0\xd5M\xc8v\xf7\xab\x17\x19^\x167 !\x14\x05J\xd0>\x96O\x84h\x1b\'\x15\xae\xc8\xfbrK1\x1b\x82\\kU{!\x8fe\xbd\xfa\xf3\xac\xdc\x9a7\xbb\xdf\xdf\n\xc4U\xfa\x15\x03e\xe2[\xa6\xd3\xce%\b#s\x05\x00\x00\xc0\x03\x84\x0e\xc3\x0e\xce\x1e\xe4\xc8\xd4s\xd8\xe4W\x8a\x18j\xc4S\xbf\xc9\xcc1\x87\xa0\f\x91/\x8b\a\xdd\x1bj\xff\xae\xfcJM\x9b\xc3\xe6q\xc1T\x19\xa9,\xef\x8ax\xbb\x18\xe7\x99\xff\x10\x15S\x19\'?\xfbt/\x86\xc6\xd3\xb2c\xc4*\x06\x05NT\xaa_\x97\xda8\xc8\xd0\x8d\x87Yk\xa1\x83\x9f\x86.[\x83\xdf&\x13\xcc\xb9\x01`D7R\xb7o\xa1\x1e\xffD#\t\x18i\xed\xa4<\x9c\x02\x00\x82\xbd\x93\x9e+\x03\xc6w?\x83\x05\x0e\xf3TB]\xc0V\x1b\xf3\xfe\xe1s1r\xcb\xbc9\x19#3k\xd4#r\x9e=C\xd6k\xf89S\xb3\xf4\x84\xd8)\x17L\xeb\xf4\xf3iW\xe6\x9b\x8a\x13\x01\x0ej\x88N\xb5\xf7e;\xdd\xe1\xfc\x9c\x8a\xae>=n\xb3\x12\x7f\x94\x19~\x93\x92xK\x9b\x9e\xa6\x9e\x16v\"e\xe80\xa3%oS\xb4\xad\xb1\xb6\xe0\xef\x1fy\xf2\x1aN\xd7\xee\\*6\xa6\x8e\x84 \xc5\xc0\xd4/\x0eVg\xc1\xd9\xcb\xdc\xc7p)1\x00u\xa5\x8c\n\x91l\xef\x17\xfc\xc2\xef\xb9\x03\b*\x1c\xc6\xe8\x9a\xe0o\xba\x1d {%\x904\xa2\x8f\xed\xca%Z\x1a#\xddA7\x1b\xdf\xd5]\xc6\x0f\x9a\xf5)g\x8c\x98\x9e\xe6\x9b\xbd\x96\xc3\xb6}3\x98r\\.o\xe0\xee\x1d\x80\x0f\x8c\xa0%>]\x9a{=\xdd\x80\x13.\x96\xf9]u\x96P\xdb+A\xaa\xce\x9dP\xde\v\x16\x1d\x05\xbe\xd3\x8c\x99\xb2\x1b\xccX\xfdy\x05\xb0Q]bB')
r1 = gettid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x4008032, 0xffffffffffffffff, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r2=>0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex(&(0x7f0000000180)=0x1, 0x86, 0x2, 0x0, 0x0, 0xfffffffc)
openat$binder_debug(0xffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
timer_getoverrun(r2)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x4e20, @private=0xa010102}]}, &(0x7f00000002c0)=0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x7fff, 0x0, 0x0, 0xfffffffffffffffe}, 0x0)
syz_usb_connect(0x0, 0x5f, 0x0, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_timeval(r6, 0x1, 0x15, &(0x7f0000000040)={0x0, 0xea60}, 0x10)
r7 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r8 = io_uring_setup(0x324d, &(0x7f00000000c0)={0x0, 0x8084b2, 0x1, 0x402, 0x2})
io_uring_enter(r8, 0x0, 0x1, 0xf, 0x0, 0x0)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
ptrace$setsig(0x4203, r7, 0x44, 0x0)
ioctl$KVM_CAP_DIRTY_LOG_RING(r10, 0x4068aea3, &(0x7f0000000000)={0xc0, 0x0, 0x10000})

3.930528482s ago: executing program 2 (id=616):
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x141)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000040)=ANY=[@ANYBLOB="480400002d00090027bd7000000000000400000034001800d4b5d895002bff7f00bf1eb933a800010032f12426b160310ca227257ccecadac32ca399dc611a000000000000000000"], 0x48}}, 0x84)
r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000), 0x8502, 0x0)
write$sndseq(r1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x0, @tick, {0x5}, {}, @addr}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @result}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @control}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time}], 0x68)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616364653d667363616368652c76657273696f6e3d3970323030302e75"])
keyctl$KEYCTL_PKEY_QUERY(0x18, 0x0, 0x0, 0x0, 0x0)
r2 = socket$inet6(0xa, 0x3, 0x6)
setsockopt$inet6_buf(r2, 0x29, 0x57, 0x0, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x80)
mount(&(0x7f0000000080)=@sg0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='ubifs\x00', 0x8000, 0x0)
chdir(&(0x7f0000000300)='./file0\x00')
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x48)
mount_setattr(r3, &(0x7f0000000180)='./file0\x00', 0x8800, &(0x7f0000000200)={0x100070, 0x100070, 0x0, {r1}}, 0x20)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, 0x0, 0x0)
bind$netlink(r6, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
r7 = socket$inet6(0xa, 0x3, 0x6)
ioprio_set$pid(0x5, 0x0, 0x0)
connect$inet6(r7, &(0x7f00000000c0)={0xa, 0x0, 0x7, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r7, 0x29, 0x23, &(0x7f0000000340)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@mcast2, 0x0, 0x0, 0x1, 0x4, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0xbd1, 0x0, 0x3}, {0x81, 0x2}, 0x1fffffc, 0x0, 0x1, 0x0, 0x0, 0x2}, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x8000, 0x2b}, 0x0, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x1, 0x0, 0x0, 0x7, 0x7, 0x0, 0x4}}, 0xe8)
sendmmsg(r7, &(0x7f0000000480), 0x2e9, 0xffe0)
r8 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r8, 0x4138ae84, &(0x7f0000000c40)=@arm64={0x2, 0x40, 0x6, '\x00', 0x4})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)

3.790685695s ago: executing program 2 (id=617):
r0 = socket(0xa, 0x5, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000200)=[@in={0x2, 0x4e24, @empty}], 0x10)
listen(r0, 0x100)
sendmsg$inet_sctp(r0, &(0x7f0000001640)={&(0x7f0000000080)=@in={0x2, 0x4e24, @remote}, 0x10, &(0x7f0000000280)=[{&(0x7f0000000040)=')', 0x1}], 0x1, &(0x7f0000000400)=ANY=[@ANYBLOB="182c0100000000000000000000000000ac14"], 0x18, 0x8000}, 0x20000000)

3.690695317s ago: executing program 2 (id=618):
r0 = openat$vcs(0xffffff9c, &(0x7f0000000000), 0x141180, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="00010000160029b6de12c481ede1bce2df25fe8000000000000000000000000000004e2200"/48, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="7f000001000000000000000000000000000004d233000000ac1414bb00000000000000000000000001040000000000000d000000000000000200000000000000ffff000000000000040000000000000006000000000000000000000000000000faffffffffffffff54450000000000000000000000000000ffffffffffffffff00100000000000000500000008000000030000002abd7000000000000a0003df14000000010000000600000008001f0004000000"], 0x100}}, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f00000008c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000003c0)={&(0x7f0000000500)=@newae={0x3a0, 0x1e, 0x4, 0x70bd2d, 0x25dfdbfd, {{@in6=@rand_addr=' \x01\x00', 0x4d2, 0x2, 0x6c}, @in6=@empty, 0xb1a4, 0x3501}, [@sec_ctx={0xba, 0x8, {0xb6, 0x8, 0x0, 0xfa, 0xae, "d8ae1ba38731670d7a3889d8c59581834d121be09bef6a955aa4363d5e4c195f7ca7cb8827917134a1ef1b91405580d23a4befe32b05e4c1f2fc513d1a7475d5a2ba18d9753a5b1d92cfda7fb9df22fcbab31eddb329557f8667840c0f524f4fe08ee2cb18687f97977cd13e5b68a9d4aceb13b40a77161f8dfbfbf9a6a5a33a822ff5d0362571db554c56176ffffab7d4f333d0a7dfd2352f6e9825a7fab41688f8734b53e634706c29651c671c"}}, @algo_auth={0x77, 0x1, {{'md4-generic\x00'}, 0x178, "7692739a0f2d2676a3ccff8108a4bda3e20745b2fccbb868c5acc0fca651cc981a01e69d0ced402f67cea305b893fc"}}, @migrate={0xe8, 0x11, [{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in=@private=0xa010101, @in6=@private0, @in=@loopback, 0x0, 0x1, 0x0, 0x3500, 0xa, 0x2}, {@in=@multicast2, @in6=@remote, @in=@multicast1, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x33, 0x4, 0x0, 0x3506, 0xa, 0x2}, {@in6=@loopback, @in=@dev={0xac, 0x14, 0x14, 0x1b}, @in6=@mcast1, @in=@remote, 0x33, 0x0, 0x0, 0x3503, 0xa, 0xa}]}, @tmpl={0x144, 0x5, [{{@in6=@empty, 0x4d6, 0x2b}, 0xd6d4625b072fa5bc, @in6=@dev={0xfe, 0x80, '\x00', 0x1c}, 0x3504, 0x3, 0x3, 0x4, 0xd, 0x2, 0x9}, {{@in6=@mcast1, 0x4d2, 0x33}, 0xa, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x3506, 0x1, 0x1, 0x5, 0x6, 0x6ded, 0x1}, {{@in6=@private2, 0x4d6, 0x32}, 0xa, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x3502, 0x3, 0x0, 0xf, 0x37e, 0x1, 0x2}, {{@in=@local, 0x4d2, 0x3c}, 0xa, @in=@local, 0x34ff, 0x1, 0x2, 0x69, 0x8, 0x1, 0x1}, {{@in=@broadcast, 0x4d4, 0x3c}, 0x2, @in=@remote, 0x3502, 0x3, 0x3, 0x80, 0x40, 0x5, 0x400}]}]}, 0x3a0}, 0x1, 0x0, 0x0, 0x40000}, 0x4000)
execveat(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000180), &(0x7f00000002c0)={[&(0x7f0000000340)='={0\xdb\xc8\xee\xdaZ\xd8#+\'[^\xa0\x83\xc2\x03\x00\x00\x00\x00\x00\xda\xb3\xc1\x86:%/\x1c\x8df\xaf\\3\x04\x15\xbcU\x96E:\xd1\xd8uS\xbc\xb0\x1c\xfa\xa9\xea\x81\x8d\xd6\xd9\xd4\xdb\xca%\x1c\xe3\x1f\x1f\xb5\xd7d\x17k\x80\x98\xe6O\b\xe2Fu\x00E\x8a^\xd5\x03\xd9s`\x8fb,\x98\xcb\x00\x00u\xb8\xd5\x13\t\"\x06M\x00l\xfb\\\xe4\x17', &(0x7f00000000c0)='\xb7\xd3\xb2U\xf9\x88/\x1a~O\xe5\xcasH\x15U=&\x1c\x02\x15\xb3v\xbeyN\x81\xcc\xb6\xee\xd1\x1eI\xe8\xed\x8b\x80\x7ff\r[\x90$Y\xb0\xd0.}\xffI#\x06]uN\xc6nQ\xe0\x83~ \xb5\xad\xbb\xcf\x04\xf3\xf2\xf4\xac\xdaB<+\b\xaa\xd5\x9d\xb0\xc7\xa7?\xfb\x9f\xb6\x91\x88O\x98\xd9;\xc9<Tk\xbf;i\xb0\xd8\x165\x04\xe4Bu\v\x96\xbb\f\xf3\xc4Z{\x90\x8a\xe4\x8c\xc4<\xb6z\xccD\x87<\\\xb9\x04M\x89\xd4\xc5\x98\xd7q\xc5q\r\xf5\xfd\x97\xc0y:Q^\xe0\x97+\x10\xd1\xb3\xbd\xd3\b\x18D\x02x\x84r\x98\xbeI\xa2\xa3P*4;(\x1a0MR\xb5\xa8\x86A', &(0x7f0000000240)='\'.!]\\$)-,!\x00', &(0x7f0000000280)='\xdc\x02\x00\x00\x00\xc2\x82x\x91\b}F\x80\x00\xe4\xdd:\x1dW\xa8\x8b\xa1\xd6']}, 0x400)
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd', @ANYBLOB=',cache=loose,trans=f'])
msgrcv(0x0, &(0x7f0000000900)={0x0, ""/14}, 0x12, 0x2, 0x2000)

3.620309827s ago: executing program 2 (id=619):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0xfe000000000000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x57)
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
recvmmsg(r0, &(0x7f0000000b40)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=""/11, 0xb}}], 0x5df, 0x2, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_setup(0x239, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
stat(&(0x7f0000000100)='./file0\x00', 0x0)
stat(&(0x7f0000000200)='./file0\x00', 0x0)
socket$inet_udp(0x2, 0x2, 0x0)

3.333279634s ago: executing program 1 (id=620):
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = epoll_create1(0x80000)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r2, 0x0, 0xd}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8d}, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
r3 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r3, &(0x7f0000000240)={0x2, 0x4e20, @loopback}, 0x10)
sendmsg$nl_xfrm(r3, &(0x7f0000000500)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000900)=ANY=[@ANYBLOB="000100001e0101000000000000000000000000fc0000000000000000000000000000004e240b1a4e23fffd0a000080ff000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0a010101000000000000000000000000000004d2ff000000ff01000000000000000000000000000101000000000000000900000000000000750a000000000000093e00000000000003000000000000000700000000000000010000000000008005000000000000009b010000000000000500000000000000010000000000000008000000000000000300000003000000050000002bbd7000000000000a000056400000008000000008001d00f103000008001f0003000000"], 0x100}, 0x1, 0x0, 0x0, 0x4040014}, 0x40000)
setsockopt$SO_RDS_TRANSPORT(r3, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc)=<r5=>0x0)
timer_settime(r5, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f00006dbffc), 0x4)
bind$inet(r3, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000e80)="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", 0x266}, {&(0x7f0000000580)="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", 0x175}, {&(0x7f0000000740)="266a546475688763b44d30a862bc689d0b1d020dbb8656767fbd1d91637fccf4e308ae461b2548ba45299eb42928ff4ee493318ef9f71739a3f86f5193e556e085fc8c4793ffc8395e70ba93fd9e9d5f5413437784f92bb0128a9756b1c9b87c36cfe56c02568995726f7538f9ed3095531590839a2be05cf75ab02f51372bbc48c81b0283ffac37f28926e0a20a01d3ae06d03acc7095428e97af0141e80215b0823f76efad", 0xa6}], 0x3, 0x0, 0x0, 0x4090}, 0x0)
sendmsg$alg(r3, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x1fffffffffe, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x9}, 0x0, &(0x7f00000002c0)={0x3fb, 0x3, 0x400000000001, 0x9, 0x40000000000000, 0xf, 0x80000002, 0x2}, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000002240)={0x10000000})
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x4}, 0x10)
write$FUSE_NOTIFY_RESEND(r0, &(0x7f00000027c0)={0x14}, 0x14)

3.075740565s ago: executing program 3 (id=623):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
r2 = syz_open_dev$cec(&(0x7f0000000200), 0xffffffffffffffff, 0x4ae60)
ioctl$CEC_ADAP_S_LOG_ADDRS(r2, 0xc05c6104, &(0x7f0000000040)={'\x00\f\x00', 0x0, 0x5, 0x2, 0x0, 0x9, "00000000020000000000002100", "00004702", "0300", "97ad3700", ["fdffffff84a438dfc5d5c010", "d78cb8b0211a83be12ff0bff", "0000efffffffffffbfff00"]})
ioctl$CEC_ADAP_S_LOG_ADDRS(r2, 0xc05c6104, &(0x7f0000000140)={"4497acf4", 0xb, 0x5, 0x0, 0x3, 0x1000006, 'U\x00', "1575a859", "0725eade", '\'q6O', ["aabe8459c62224475793e8a7", "7f9ce2d2c4f439ff80e1d1c8", "fa0700f22b42a3023be516d1"]})
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r3=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r1, 0xc02064b9, &(0x7f0000000dc0)={&(0x7f0000000240)=[0x0, 0x0, 0x0, <r4=>0x0], &(0x7f0000000200), 0x4, r3})
ioctl$DRM_IOCTL_MODE_ATOMIC(r1, 0xc03864bc, &(0x7f0000000500)={0x200, 0x1, &(0x7f0000000180)=[r3], &(0x7f0000000200), &(0x7f0000000580)=[r4], &(0x7f0000000040)})
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r5=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000180)={0x3, 0x40, 0xfa02, {{0x6000000, 0x0, 0x0, @mcast2}, {0xa, 0x4e20, 0x7, @mcast2}, r5}}, 0x48)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000280)={0x3, 0x40, 0xfa00, {{0xa, 0x4e21, 0x9, @private1={0xfc, 0x1, '\x00', 0x1}, 0x5}, {0xa, 0x4e20, 0x6, @mcast1, 0x9}, r5, 0x1}}, 0x48)

2.982298425s ago: executing program 3 (id=624):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {0x0, 0x1}, {0xffff, 0xffff}, {0xffff, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x4000)
sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={0x0, 0xfffc, &(0x7f0000000200)={&(0x7f0000000140)=@newtfilter={0x48, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xe}, {}, {0xf, 0x9}}, [@filter_kind_options=@f_flower={{0xb}, {0x18, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x8035}, @TCA_FLOWER_KEY_ARP_THA={0xa, 0x41, @multicast}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x24000014}, 0x84084)

2.830386776s ago: executing program 3 (id=625):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f0000000300)={0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write(0xffffffffffffffff, &(0x7f0000000340), 0x11000)
mount$9p_fd(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f0000001780), 0x0, &(0x7f0000001c00))
r0 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x9c37611dc13d0d83)
fchown(r0, 0xffffffffffffffff, 0xee01)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)={0x6c, 0x0, 0x1, 0x401, 0x0, 0x1a14, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x2c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x1}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4000080}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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"], 0x38}}, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
openat$kvm(0xffffff9c, &(0x7f0000000140), 0x484482, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, 0x0)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x10000000)
r5 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r5, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
syz_emit_ethernet(0xbe, &(0x7f0000000c40)=ANY=[@ANYBLOB="8caa9ce6aaaa0180c20000000800450000b00000000000119078000000000000000000004e20009c5157907801000000000000007b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af584cbf2649ff7f0000000000008dfa871c51852e4451b57d037ac045942824251d7d17b5191584cdd4fbe40a27424dbcfd56f1173669ca"], 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r7, 0x8933, &(0x7f0000004700)={'team0\x00', <r9=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r7, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f00000047c0)={0x60, r8, 0x405, 0x70bd29, 0x25dfdbfe, {}, [{{0x8, 0x1, r9}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @notify_peers_interval={{}, {}, {0x0, 0x4, 0x1}}}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084)
syz_usb_connect$cdc_ncm(0x1, 0x0, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)

2.437202857s ago: executing program 1 (id=626):
r0 = openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, 0x0)
ioctl$IOMMU_VFIO_IOAS$SET(r0, 0x3b88, &(0x7f0000000100)={0xc})
ioctl$IOMMU_VFIO_IOAS$GET(r0, 0x3b88, &(0x7f0000000080)={0xc})
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r3, 0xaf01, 0x0)
r4 = eventfd(0xc)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r8 = openat$cgroup_int(r7, &(0x7f0000000100)='blkio.reset_stats\x00', 0x2, 0x0)
write$cgroup_int(r8, &(0x7f00000000c0)=0x7, 0x12)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffeffff}, 0x94)
r10 = socket$kcm(0x11, 0x200000000000002, 0x300)
setsockopt$sock_attach_bpf(r10, 0x1, 0x32, &(0x7f0000000040)=r9, 0x4)
syz_emit_ethernet(0x36, &(0x7f0000000380)=ANY=[@ANYBLOB="aaaaaaaaaaaabbbbbbbbbbbb0800450000280000000000059078ac141400e000000100000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="00000000907809f1"], 0x0)
sendto$inet(r6, &(0x7f0000000380)="4a200b5fc7b8660926642334cc3001fcaa2e9c6fd3bc9d58241431e8d034784af1223a35ee4ffae01f0266541640f060b2c04a68af8b5bcd28305acea5387494ea35b289f7836d4be32f335e01d57d9fb188e1dd4fbe084850566365b1a27131ff54149182c1780da4a7a11184c9e6f4338fdc56306b0de748618460b8fe0e64d7b471af1db2395d6bca2a4723e746e24d2564e770cbdf7e922c82820225faeca625a699f18240c51646ba7231100eff646407123487d3d20fe2d1f2b6367b5046d2b737ddfb78ea7be58ad4082b0a1bfac48c79685b57f4828172757e9e8ccf077a015ec9ed8ef7608dc30266dcaf842e84398b6432e61c428a19190b43357282bb662e054722853831d5cf79d2e1e5e116aaf5ad56cb392cfcabf000f93a53eca80cc62d7544f56cca71814cab620488ce5d2d396a2a027314cb2f4bdaf7316bed749e5e21cd76eb02d5b7e978da24b598ce163103abdd3d90c89d64b41d97a9d2e7c66b34dfefff9afe3ad20c6e1c8315725a53c6cbaf6a230e76076663ee8c3f9b8aa45f143adeea17a115dbea2e601245394b23e469b9214ca5750211e8340005c22e66899599cb9589c3635e33eed8ac3b9ecd6f988d0351b51853e09b98495e1dbebb471beb6596229c80c2a555d0cacfe847f969cc4de1ad22e6e0590be612a89470b504f467a6a6950fd4426961dd768ad14b60e724", 0x1fa, 0x20000814, &(0x7f0000000000)={0x2, 0x5e1d, @loopback}, 0x10)
setsockopt$IP_VS_SO_SET_DEL(r6, 0x0, 0x484, &(0x7f0000000280)={0x62, @local, 0x4e20, 0x4, 'lblcr\x00', 0x3a, 0x10000, 0x64}, 0x2c)
r11 = socket$inet6(0x10, 0x3, 0x0)
sendmsg(r11, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000580)="5500000020007fafb72d13b2a4a2719302000000030b43026c26236925000400fe7fce1dca24e3ee4c89a3c728f1c46b7b31afdc1338d509000000000100005ae583de0dd7d83104000000fda542e718f94b929ade", 0x55}], 0x1}, 0x20048000)
write(r11, &(0x7f0000000040)="2400000021002551241c0165ff00fc020200000003100f000ee1000c08000b0000000000", 0x24)
memfd_create(&(0x7f0000000040)='security.selinux\x00\xab', 0x10)
sendmsg$IPCTNL_MSG_CT_GET(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="14000305010007001934c82c6d000000937600ad"], 0x14}, 0x1, 0x0, 0x0, 0x20000050}, 0x800)
ioctl$VHOST_SET_LOG_FD(r3, 0x4004af07, &(0x7f0000000240)=r4)

2.436715223s ago: executing program 2 (id=627):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
syz_emit_ethernet(0x82, &(0x7f0000000080)={@random="0000001e00", @dev, @val={@val={0x88a8, 0x5}, {0x8902, 0x0, 0x0, 0x1}}, {@ipv6={0x86dd, @gre_packet={0x1, 0x6, "17e7f4", 0x44, 0x2f, 0x1, @empty, @loopback, {[], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x3}, {0x1, 0x0, 0x1}, {0x1, 0x0, 0x1}, {0x8, 0x88be, 0x0, {{0x7, 0x1, 0x7, 0x3, 0x1, 0x0, 0x4}, 0x1, {0x81}}}, {0x8, 0x22eb, 0x1, {{0x1, 0x2, 0x2, 0x2, 0x1, 0x3, 0x4}, 0x2, {0x5, 0x1, 0x3, 0x1, 0x1, 0x0, 0x2, 0x1, 0x1}}}, {0x8, 0x6558, 0x4}}}}}}}, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_pressure(r1, &(0x7f0000000040)='io.pressure\x00', 0x2, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0xd, &(0x7f0000000000)=@assoc_value, 0x0)
setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r3, 0x84, 0x10, 0x0, 0x0)
write$cgroup_pressure(r2, &(0x7f0000000340)={'some', 0x20, 0x7, 0x20, 0xff}, 0x2f)
r5 = openat$cgroup_pressure(r1, &(0x7f00000000c0)='io.pressure\x00', 0x2, 0x0)
ppoll(&(0x7f0000000180)=[{r2}], 0x1, 0x0, 0x0, 0x0)
write$cgroup_pressure(r5, &(0x7f0000000340)={'some', 0x20, 0x4, 0x20, 0xffffa}, 0x2f)
bind$inet6(r3, &(0x7f0000000100)={0xa, 0x4e20, 0x6, @ipv4={'\x00', '\xff\xff', @loopback}, 0x9}, 0x1c)
close(r2)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000000000)={0x3, 'veth0_vlan\x00', {0x7}, 0x5})
r6 = add_key$keyring(&(0x7f0000000280), &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
add_key(&(0x7f0000000440)='asymmetric\x00', 0x0, &(0x7f0000000000)="30800201", 0x1001, r6)
close(r5)

2.28997151s ago: executing program 2 (id=628):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000083667d1040206402d14e0102030109021b000100000000090400000190f19c00090584"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
r1 = syz_open_dev$I2C(&(0x7f0000000100), 0x2, 0x1)
ioctl$I2C_RDWR(r1, 0x707, &(0x7f0000000280)={&(0x7f0000000200)=[{0x20, 0x4000, 0x0, 0x0}], 0x1})
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x44, &(0x7f00000003c0)={0x0, 0x12, 0x5, "9b351d0186"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

1.590394003s ago: executing program 3 (id=629):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x5, &(0x7f00000000c0)=[{0x3, 0x8, 0x3, 0x4}, {0x25b6, 0x8, 0x8, 0x400}, {0xe, 0x7b, 0x5, 0x8000}, {0x0, 0x5, 0xfb, 0x80000001}, {0xa000, 0x1, 0x9, 0x1}]})
prctl$PR_SET_NAME(0xf, &(0x7f0000000000)='l%\x86\xce6\xdb\f\xcf\x19|\xc9O\x7f\xce\x8f\x7f\x1c\xeay\x06\x00\x00\x00\a0\r\x13\xaa\x84r\xd7^\xe82\x0f\x1a\xf1\x02\x00\x1e&{\xee2\x95I\xca\xbevl\x12\xb6 \xd4')
socket$nl_generic(0x10, 0x3, 0x10)

1.590153233s ago: executing program 3 (id=630):
futex(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$vim2m(&(0x7f0000000080), 0x9, 0x2)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000000100)={0x0, &(0x7f0000000300)=[0x0], 0x0, 0x0, 0x0, 0x1})
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(des3_ede)\x00'}, 0x58)
accept4(r1, 0x0, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x402, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = syz_io_uring_setup(0x852, &(0x7f00000003c0)={0x0, 0x0, 0x100, 0x0, 0x2f3}, &(0x7f0000000040)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r3, 0x47ba, 0x3e80, 0x0, 0x0, 0x0)

1.530266794s ago: executing program 1 (id=631):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x16, 0x0, 0x4, 0xffff, 0x0, 0x1}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001280)=[r0]}, 0x80)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x4, 0x4, 0x7, 0x0, r0}, 0x50)
r2 = syz_clone(0x0, &(0x7f00000005c0)="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", 0x6c0, 0x0, 0x0, 0x0)
migrate_pages(r2, 0x4, 0x0, &(0x7f0000001780)=0x2)
r3 = syz_open_dev$sg(&(0x7f00000000c0), 0xfffffbff, 0x40600)
ioctl$SG_SET_RESERVED_SIZE(r3, 0x2275, &(0x7f0000000140)=0x9)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x5, r1}, 0x38)
futex(0x0, 0x109, 0x0, &(0x7f0000000200)={0x0, 0x3938700}, 0x0, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=@newsa={0x150, 0x10, 0x413, 0x70bd28, 0x0, {{@in=@multicast1, @in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x0, 0x0, 0x4e24, 0x0, 0x2, 0x20, 0x20}, {@in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x0, 0x32}, @in=@private=0xa010100, {0x4, 0x7, 0x0, 0x40000000000004, 0xffffffffffffffff, 0xfffffffffffffffe, 0x7f}, {0x0, 0x8, 0xcc}, {0xf6}, 0x0, 0x0, 0xa, 0x4, 0xfe, 0x5c}, [@algo_aead={0x5f, 0x12, {{'rfc4309(ccm(aes))\x00'}, 0x98, 0x80, "6fc3070b4f8f7330202b93875f2d67a6a77871"}}]}, 0x150}}, 0x804)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c0000001000010700000000000000000a00000006000100", @ANYBLOB="14ac4f"], 0x1c}}, 0x0)

1.529824918s ago: executing program 1 (id=632):
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f00000004c0), 0x100, 0x0)
close(r4)
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff3, 0xe}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x100, 0x7, 0x6361, 0x5, 0xfffffffd, 0x40000006}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x2000c040}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56f41, 0x1070b923, 0x80000, {0x0, 0x0, 0x0, r7, {0x0, 0xe}, {0x8, 0xb}, {0xd, 0xd}}, [@qdisc_kind_options=@q_blackhole={0xe}]}, 0x34}}, 0x4008000)
ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

1.298189377s ago: executing program 3 (id=633):
r0 = fsopen(&(0x7f0000001340)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x1, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000180)='cgroup.procs\x00', 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setxattr$incfs_metadata(&(0x7f0000000800)='./cgroup\x00', &(0x7f0000000840), &(0x7f0000000880)="22cf", 0x2, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$vimc1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
sendmsg(r4, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0xffffffff, 0x3}, 0x0)
r5 = fsopen(&(0x7f0000000040)='sysfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
unlinkat(0xffffffffffffffff, 0x0, 0x200)
ioctl$EXT4_IOC_GET_ES_CACHE(0xffffffffffffffff, 0x40086602, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
socket(0x400000000010, 0x3, 0x0)
r6 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x205, 0x102)
ioctl$SIOCX25CALLACCPTAPPRV(0xffffffffffffffff, 0x89e8)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r6, 0x0)
syz_clone3(&(0x7f00000002c0)={0x8040000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r7 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000040)={0x0, 0x7, 0xfa00, {0x0, &(0x7f0000000000)={<r8=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r7, &(0x7f0000000280)={0x15, 0x110, 0xfa00, {r8, 0x0, 0x0, 0x30, 0x0, @in6={0x1b, 0x0, 0x7, @empty, 0x3aa7}, @ib={0x1b, 0xffff, 0x0, {'\x00\x00\x00\a\x00'}, 0x0, 0xfffffffffffffffc, 0x6}}}, 0x118)
shutdown(0xffffffffffffffff, 0x3b3ec04e0e1636c)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000040)=[@in={0x2, 0x4e24, @broadcast}]}, &(0x7f0000000080)=0xc)
sendfile(r2, r2, 0x0, 0x3)

1.297521486s ago: executing program 1 (id=634):
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = epoll_create1(0x80000)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r2, 0x0, 0xd}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8d}, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
r3 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r3, &(0x7f0000000240)={0x2, 0x4e20, @loopback}, 0x10)
sendmsg$nl_xfrm(r3, &(0x7f0000000500)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000900)=ANY=[@ANYBLOB="000100001e0101000000000000000000000000fc0000000000000000000000000000004e240b1a4e23fffd0a000080ff000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0a010101000000000000000000000000000004d2ff000000ff01000000000000000000000000000101000000000000000900000000000000750a000000000000093e00000000000003000000000000000700000000000000010000000000008005000000000000009b010000000000000500000000000000010000000000000008000000000000000300000003000000050000002bbd7000000000000a000056400000008000000008001d00f103000008001f0003000000"], 0x100}, 0x1, 0x0, 0x0, 0x4040014}, 0x40000)
setsockopt$SO_RDS_TRANSPORT(r3, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc)=<r5=>0x0)
timer_settime(r5, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f00006dbffc), 0x4)
bind$inet(r3, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000e80)="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", 0x266}, {&(0x7f0000000580)="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", 0x175}, {&(0x7f0000000740)="266a546475688763b44d30a862bc689d0b1d020dbb8656767fbd1d91637fccf4e308ae461b2548ba45299eb42928ff4ee493318ef9f71739a3f86f5193e556e085fc8c4793ffc8395e70ba93fd9e9d5f5413437784f92bb0128a9756b1c9b87c36cfe56c02568995726f7538f9ed3095531590839a2be05cf75ab02f51372bbc48c81b0283ffac37f28926e0a20a01d3ae06d03acc7095428e97af0141e80215b0823f76efad", 0xa6}], 0x3, 0x0, 0x0, 0x4090}, 0x0)
sendmsg$alg(r3, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x1fffffffffe, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x9}, 0x0, &(0x7f00000002c0)={0x3fb, 0x3, 0x400000000001, 0x9, 0x40000000000000, 0xf, 0x80000002, 0x2}, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000002240)={0x10000000})
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x4}, 0x10)
write$FUSE_NOTIFY_RESEND(r0, &(0x7f00000027c0)={0x14}, 0x14)

1.020664133s ago: executing program 0 (id=635):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000380)={0x0, 0x1000000, 0x0, 0x1, 0x0, &(0x7f0000000280)="f8"})
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000300)={@flat=@weak_binder={0x77622a85, 0x100a, 0x8000000000}, @flat=@weak_binder={0x77622a85, 0x1100, 0x3}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0})
mmap$binder(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, 0x11, r0, 0x10000000000)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000004a40)={0x44, 0x0, &(0x7f00000049c0)=[@transaction={0x40406300, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
ioctl$BINDER_THREAD_EXIT(r2, 0x40046208, 0x1000000)

928.07505ms ago: executing program 0 (id=636):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0xfe000000000000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x57)
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
recvmmsg(r0, &(0x7f0000000b40)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=""/11, 0xb}}], 0x5df, 0x2, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_setup(0x239, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
stat(&(0x7f0000000100)='./file0\x00', 0x0)
stat(&(0x7f0000000200)='./file0\x00', 0x0)
socket$inet_udp(0x2, 0x2, 0x0)

358.671198ms ago: executing program 1 (id=637):
syz_open_dev$vim2m(&(0x7f0000000080), 0x9, 0x2)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_io_uring_setup(0x890, &(0x7f0000000140)={0x0, 0xaee2, 0xf500, 0x1, 0xbfdffffc}, 0x0, &(0x7f0000000040)=<r3=>0x0)
syz_emit_vhci(&(0x7f0000000300)=ANY=[], 0xb)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x2, &(0x7f0000006680))
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r4 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r4, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
r5 = socket$netlink(0x10, 0x3, 0x0)
writev(r5, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
r6 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r6, 0x0, 0x23, &(0x7f0000000080)={@multicast2, @loopback}, 0xc)
setsockopt$inet_msfilter(r6, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027f"], 0x57)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r7 = gettid()
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x21, 0x800000000004, @tid=r7}, &(0x7f0000bbdffc)=<r8=>0x0)
timer_settime(r8, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r9 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100), 0x40200, 0x0)
preadv2(r9, &(0x7f0000000180)=[{&(0x7f0000000000)=""/167, 0xa7}], 0x1, 0x0, 0x4, 0x1)
syz_io_uring_submit(0x0, r3, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x85c3}})
io_uring_enter(r2, 0x7323, 0x0, 0x5, 0x0, 0x0)

333.143µs ago: executing program 0 (id=638):
r0 = fsopen(&(0x7f0000000000)='cifs\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000040)='source', &(0x7f0000005fc0)='//\xf2/\x06\b/\xdf/o\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcf\xcb\x92\xf1\x83\x1a1\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000080)='source', &(0x7f0000000240)='//\xf2/\x06\b\xa30\\o\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1\\_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas\x9d\x14\xe3\v\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7Gl\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o', 0x0)

0s ago: executing program 0 (id=639):
capset(&(0x7f0000000100)={0x20080522}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x81, 0xfffffffb})
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r1, &(0x7f0000000580)=ANY=[@ANYBLOB="7f454c4600040000ff7f00000000000003003e00ecfffbff94020000000000004000000000000000e503000000000000000000002c8f380049"], 0x178)
r2 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000080), 0x3001, 0x0)
ioctl$FBIOPUT_CON2FBMAP(r2, 0x4610, &(0x7f0000000180)={0x1})
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000004"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_SYS_SET(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000480)=ANY=[@ANYBLOB="1800000007140100000032c83a110000050042"], 0x18}}, 0x0)
close(r1)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000100))
sendmsg$BATADV_CMD_SET_MESH(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x24, r6, 0x2, 0x3ffc, 0x25dfdbfd, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x5fb2}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x80000000}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000840}, 0x4000)
sendmsg$BATADV_CMD_GET_GATEWAYS(r3, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x1c, r6, 0x400, 0x70bd26, 0x25dfdbfb, {}, [@BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x9}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8891}, 0xed83a786238f6804)
ioctl$TIOCL_SETSEL(r0, 0x541c, 0x0)

kernel console output (not intermixed with test programs):

0) speed(1) speed_str(low-speed)
[   66.568111][ T6538] vhci_hcd vhci_hcd.0: Device attached
[   66.804300][ T6045] usb 43-1: new low-speed USB device number 2 using vhci_hcd
[   67.022459][ T6550] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[   67.024596][ T6550] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   67.027237][ T6550] vhci_hcd vhci_hcd.0: Device attached
[   67.254433][ T6556] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[   67.256527][ T6556] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   67.259461][ T6556] vhci_hcd vhci_hcd.0: Device attached
[   67.491584][ T6563] FAULT_INJECTION: forcing a failure.
[   67.491584][ T6563] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   67.499140][ T6563] CPU: 2 UID: 0 PID: 6563 Comm: syz.1.75 Not tainted syzkaller #0 PREEMPT(full) 
[   67.499156][ T6563] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   67.499164][ T6563] Call Trace:
[   67.499181][ T6563]  <TASK>
[   67.499186][ T6563]  dump_stack_lvl+0x16c/0x1f0
[   67.499206][ T6563]  should_fail_ex+0x512/0x640
[   67.499226][ T6563]  _copy_from_iter+0x29f/0x1720
[   67.499239][ T6563]  ? __lock_acquire+0x62e/0x1ce0
[   67.499255][ T6563]  ? __pfx__copy_from_iter+0x10/0x10
[   67.499265][ T6563]  ? __lock_acquire+0xb97/0x1ce0
[   67.499278][ T6563]  ? _parse_integer_limit+0x17f/0x1d0
[   67.499299][ T6563]  tun_get_user+0x26d/0x3ce0
[   67.499318][ T6563]  ? __pfx_tun_get_user+0x10/0x10
[   67.499332][ T6563]  ? __pfx_ref_tracker_alloc+0x10/0x10
[   67.499347][ T6563]  ? find_held_lock+0x2b/0x80
[   67.499358][ T6563]  ? tun_get+0x191/0x370
[   67.499372][ T6563]  tun_chr_write_iter+0xdc/0x210
[   67.499386][ T6563]  vfs_write+0x7d0/0x11d0
[   67.499399][ T6563]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   67.499418][ T6563]  ? __pfx_vfs_write+0x10/0x10
[   67.499434][ T6563]  ? find_held_lock+0x2b/0x80
[   67.499466][ T6563]  ksys_write+0x12a/0x250
[   67.499488][ T6563]  ? __pfx_ksys_write+0x10/0x10
[   67.499510][ T6563]  ? rcu_is_watching+0x12/0xc0
[   67.499553][ T6563]  __do_fast_syscall_32+0x7c/0x3a0
[   67.499578][ T6563]  do_fast_syscall_32+0x32/0x80
[   67.499595][ T6563]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   67.499608][ T6563] RIP: 0023:0xf7f61579
[   67.499617][ T6563] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   67.499627][ T6563] RSP: 002b:00000000f547655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[   67.499637][ T6563] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800001c0
[   67.499644][ T6563] RDX: 0000000000000052 RSI: 0000000000000000 RDI: 0000000000000000
[   67.499650][ T6563] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   67.499656][ T6563] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   67.499662][ T6563] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   67.499675][ T6563]  </TASK>
[   67.584402][ T6543] vhci_hcd: connection reset by peer
[   67.589713][ T1171] vhci_hcd: stop threads
[   67.591287][ T1171] vhci_hcd: release socket
[   67.593428][ T1171] vhci_hcd: disconnect device
[   67.635332][  T843] usb 42-1: SetAddress Request (2) to port 0
[   67.637569][  T843] usb 42-1: new SuperSpeed USB device number 2 using vhci_hcd
[   67.644538][    T9] usb 38-1: SetAddress Request (2) to port 0
[   67.647155][    T9] usb 38-1: new SuperSpeed USB device number 2 using vhci_hcd
[   67.674356][ T6551] vhci_hcd: connection reset by peer
[   67.711890][   T91] vhci_hcd: stop threads
[   67.713215][   T91] vhci_hcd: release socket
[   67.714746][   T91] vhci_hcd: disconnect device
[   67.919370][ T6557] vhci_hcd: connection reset by peer
[   67.921782][   T13] vhci_hcd: stop threads
[   67.923143][   T13] vhci_hcd: release socket
[   67.925030][   T13] vhci_hcd: disconnect device
[   68.667224][ T5988] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[   68.670727][ T5988] CPU: 3 UID: 0 PID: 5988 Comm: kworker/u33:6 Not tainted syzkaller #0 PREEMPT(full) 
[   68.670754][ T5988] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.670768][ T5988] Workqueue: hci3 hci_rx_work
[   68.670797][ T5988] Call Trace:
[   68.670804][ T5988]  <TASK>
[   68.670812][ T5988]  dump_stack_lvl+0x16c/0x1f0
[   68.670841][ T5988]  sysfs_warn_dup+0x7f/0xa0
[   68.670864][ T5988]  sysfs_create_dir_ns+0x24b/0x2b0
[   68.670884][ T5988]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[   68.670905][ T5988]  ? find_held_lock+0x2b/0x80
[   68.670927][ T5988]  ? do_raw_spin_unlock+0x172/0x230
[   68.670957][ T5988]  kobject_add_internal+0x2c4/0x9b0
[   68.670979][ T5988]  kobject_add+0x16e/0x240
[   68.670995][ T5988]  ? __pfx_kobject_add+0x10/0x10
[   68.671015][ T5988]  ? do_raw_spin_unlock+0x172/0x230
[   68.671043][ T5988]  ? kobject_put+0xab/0x5a0
[   68.671065][ T5988]  device_add+0x288/0x1aa0
[   68.671087][ T5988]  ? __pfx_dev_set_name+0x10/0x10
[   68.671110][ T5988]  ? __pfx_device_add+0x10/0x10
[   68.671129][ T5988]  ? mgmt_send_event_skb+0x2fb/0x460
[   68.671167][ T5988]  hci_conn_add_sysfs+0x17e/0x230
[   68.671197][ T5988]  le_conn_complete_evt+0x1075/0x1d70
[   68.671222][ T5988]  ? preempt_count_sub+0x130/0x160
[   68.671249][ T5988]  ? __pfx_le_conn_complete_evt+0x10/0x10
[   68.671272][ T5988]  ? hci_event_packet+0x459/0x11c0
[   68.671301][ T5988]  hci_le_conn_complete_evt+0x23c/0x370
[   68.671330][ T5988]  hci_le_meta_evt+0x357/0x5e0
[   68.671355][ T5988]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[   68.671382][ T5988]  hci_event_packet+0x685/0x11c0
[   68.671405][ T5988]  ? __pfx_hci_le_meta_evt+0x10/0x10
[   68.671430][ T5988]  ? __pfx_hci_event_packet+0x10/0x10
[   68.671456][ T5988]  ? kcov_remote_start+0x3c9/0x6d0
[   68.671483][ T5988]  ? lockdep_hardirqs_on+0x7c/0x110
[   68.671538][ T5988]  hci_rx_work+0x2c5/0x16b0
[   68.671568][ T5988]  ? rcu_is_watching+0x12/0xc0
[   68.671593][ T5988]  process_one_work+0x9cf/0x1b70
[   68.671631][ T5988]  ? __pfx_process_one_work+0x10/0x10
[   68.671669][ T5988]  ? assign_work+0x1a0/0x250
[   68.671697][ T5988]  worker_thread+0x6c8/0xf10
[   68.671726][ T5988]  ? __pfx_worker_thread+0x10/0x10
[   68.671743][ T5988]  kthread+0x3c5/0x780
[   68.671771][ T5988]  ? __pfx_kthread+0x10/0x10
[   68.671798][ T5988]  ? rcu_is_watching+0x12/0xc0
[   68.671817][ T5988]  ? __pfx_kthread+0x10/0x10
[   68.671844][ T5988]  ret_from_fork+0x5d7/0x6f0
[   68.671871][ T5988]  ? __pfx_kthread+0x10/0x10
[   68.671897][ T5988]  ret_from_fork_asm+0x1a/0x30
[   68.671926][ T5988]  </TASK>
[   68.671948][ T5988] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[   68.777846][ T5988] Bluetooth: hci3: failed to register connection device
[   69.260100][ T6612] debugfs: 'ttyS3' already exists in 'caif_serial'
[   70.252582][ T6641] FAULT_INJECTION: forcing a failure.
[   70.252582][ T6641] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   70.257408][ T6641] CPU: 2 UID: 0 PID: 6641 Comm: syz.3.86 Not tainted syzkaller #0 PREEMPT(full) 
[   70.257424][ T6641] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   70.257430][ T6641] Call Trace:
[   70.257434][ T6641]  <TASK>
[   70.257439][ T6641]  dump_stack_lvl+0x16c/0x1f0
[   70.257459][ T6641]  should_fail_ex+0x512/0x640
[   70.257479][ T6641]  _copy_to_user+0x32/0xd0
[   70.257492][ T6641]  simple_read_from_buffer+0xcb/0x170
[   70.257505][ T6641]  proc_fail_nth_read+0x197/0x240
[   70.257518][ T6641]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   70.257530][ T6641]  ? rw_verify_area+0xcf/0x6c0
[   70.257541][ T6641]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   70.257552][ T6641]  vfs_read+0x1e4/0xcf0
[   70.257567][ T6641]  ? __pfx_vfs_read+0x10/0x10
[   70.257578][ T6641]  ? find_held_lock+0x2b/0x80
[   70.257598][ T6641]  ? __fget_files+0x20e/0x3c0
[   70.257614][ T6641]  ksys_read+0x12a/0x250
[   70.257625][ T6641]  ? __pfx_ksys_read+0x10/0x10
[   70.257639][ T6641]  ? rcu_is_watching+0x12/0xc0
[   70.257652][ T6641]  __do_fast_syscall_32+0x7c/0x3a0
[   70.257670][ T6641]  do_fast_syscall_32+0x32/0x80
[   70.257686][ T6641]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   70.257700][ T6641] RIP: 0023:0xf70ae579
[   70.257709][ T6641] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   70.257719][ T6641] RSP: 002b:00000000f549e590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[   70.257729][ T6641] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000f549e620
[   70.257735][ T6641] RDX: 000000000000000f RSI: 00000000f7424ff4 RDI: 0000000000000000
[   70.257741][ T6641] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[   70.257747][ T6641] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   70.257753][ T6641] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   70.257766][ T6641]  </TASK>
[   70.782978][ T6659] netlink: 28 bytes leftover after parsing attributes in process `syz.2.91'.
[   70.928554][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[   70.931166][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[   70.972994][ T6670] loop6: detected capacity change from 0 to 524287999
[   70.984920][  T842] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   71.081351][   T40] kauditd_printk_skb: 59 callbacks suppressed
[   71.081419][   T40] audit: type=1326 audit(1757389900.117:846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6672 comm="syz.2.92" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[   71.120794][   T40] audit: type=1326 audit(1757389900.127:847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6672 comm="syz.2.92" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[   71.130010][   T40] audit: type=1326 audit(1757389900.127:848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6672 comm="syz.2.92" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf702e579 code=0x7ffc0000
[   71.137130][   T40] audit: type=1326 audit(1757389900.127:849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6672 comm="syz.2.92" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[   71.144279][   T40] audit: type=1326 audit(1757389900.127:850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6672 comm="syz.2.92" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[   71.150820][   T40] audit: type=1326 audit(1757389900.127:851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6672 comm="syz.2.92" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf702e579 code=0x7ffc0000
[   71.159000][  T842] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   71.162766][  T842] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   71.167353][  T842] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   71.171194][  T842] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   71.178676][  T842] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   71.182281][  T842] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   71.237629][   T40] audit: type=1326 audit(1757389900.127:852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6672 comm="syz.2.92" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[   71.244646][   T40] audit: type=1326 audit(1757389900.127:853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6672 comm="syz.2.92" exe="/syz-executor" sig=0 arch=40000003 syscall=63 compat=1 ip=0xf702e579 code=0x7ffc0000
[   71.251798][   T40] audit: type=1326 audit(1757389900.127:854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6672 comm="syz.2.92" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[   71.258785][   T40] audit: type=1326 audit(1757389900.127:855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6672 comm="syz.2.92" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf702e579 code=0x7ffc0000
[   71.290298][  T842] usb 8-1: config 0 descriptor??
[   71.724883][  T842] plantronics 0003:047F:FFFF.0002: ignoring exceeding usage max
[   71.738051][  T842] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[   71.954820][ T6045] vhci_hcd: vhci_device speed not set
[   72.446791][ T6705] netlink: 'syz.1.99': attribute type 11 has an invalid length.
[   72.486519][ T6707] FAULT_INJECTION: forcing a failure.
[   72.486519][ T6707] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   72.492300][ T6707] CPU: 1 UID: 0 PID: 6707 Comm: syz.1.100 Not tainted syzkaller #0 PREEMPT(full) 
[   72.492323][ T6707] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   72.492334][ T6707] Call Trace:
[   72.492340][ T6707]  <TASK>
[   72.492347][ T6707]  dump_stack_lvl+0x16c/0x1f0
[   72.492379][ T6707]  should_fail_ex+0x512/0x640
[   72.492410][ T6707]  _copy_to_user+0x32/0xd0
[   72.492431][ T6707]  simple_read_from_buffer+0xcb/0x170
[   72.492452][ T6707]  proc_fail_nth_read+0x197/0x240
[   72.492474][ T6707]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   72.492492][ T6707]  ? rw_verify_area+0xcf/0x6c0
[   72.492508][ T6707]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   72.492525][ T6707]  vfs_read+0x1e4/0xcf0
[   72.492548][ T6707]  ? __pfx_vfs_read+0x10/0x10
[   72.492564][ T6707]  ? find_held_lock+0x2b/0x80
[   72.492588][ T6707]  ? __fget_files+0x20e/0x3c0
[   72.492614][ T6707]  ksys_read+0x12a/0x250
[   72.492633][ T6707]  ? __pfx_ksys_read+0x10/0x10
[   72.492655][ T6707]  ? rcu_is_watching+0x12/0xc0
[   72.492676][ T6707]  __do_fast_syscall_32+0x7c/0x3a0
[   72.492705][ T6707]  do_fast_syscall_32+0x32/0x80
[   72.492732][ T6707]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   72.492753][ T6707] RIP: 0023:0xf7f61579
[   72.492766][ T6707] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   72.492781][ T6707] RSP: 002b:00000000f5476590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[   72.492797][ T6707] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5476620
[   72.492807][ T6707] RDX: 000000000000000f RSI: 00000000f73f4ff4 RDI: 0000000000000000
[   72.492817][ T6707] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[   72.492827][ T6707] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   72.492837][ T6707] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   72.492860][ T6707]  </TASK>
[   72.629186][ T6711] netlink: 'syz.1.102': attribute type 11 has an invalid length.
[   72.684332][  T843] usb 42-1: device descriptor read/8, error -110
[   72.684356][    T9] usb 38-1: device descriptor read/8, error -110
[   73.075020][  T843] usb usb42-port1: attempt power cycle
[   73.085139][    T9] usb usb38-port1: attempt power cycle
[   73.157408][ T6720] netlink: 8 bytes leftover after parsing attributes in process `syz.0.104'.
[   73.259555][ T6722] bridge0: port 1(bridge_slave_0) entered disabled state
[   73.266643][ T6722] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.287085][ T6019] lo speed is unknown, defaulting to 1000
[   73.540642][ T6730] warning: `syz.0.107' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   73.586983][ T6730] netlink: 'syz.0.107': attribute type 10 has an invalid length.
[   73.619272][ T6730] bond0: (slave bridge0): Enslaving as an active interface with an up link
[   73.628153][ T6730] netlink: 4 bytes leftover after parsing attributes in process `syz.0.107'.
[   73.631149][ T6730] bridge_slave_1: left allmulticast mode
[   73.633207][ T6730] bridge_slave_1: left promiscuous mode
[   73.655314][ T6730] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.655420][  T843] usb usb42-port1: unable to enumerate USB device
[   73.660686][ T6732] Illegal XDP return value 4294967294 on prog  (id 12) dev N/A, expect packet loss!
[   73.675042][    T9] usb usb38-port1: unable to enumerate USB device
[   73.735139][ T6730] bridge_slave_0: left allmulticast mode
[   73.737784][ T6730] bridge_slave_0: left promiscuous mode
[   73.740206][ T6730] bridge0: port 1(bridge_slave_0) entered disabled state
[   73.786385][ T6737] netlink: 4 bytes leftover after parsing attributes in process `syz.3.109'.
[   73.794023][ T6730] bond0: (slave bridge0): Releasing backup interface
[   73.817485][ T6063] usb 8-1: USB disconnect, device number 2
[   73.873010][ T6739] tipc: Started in network mode
[   73.875006][ T6739] tipc: Node identity 8ed60f2f4c2d, cluster identity 4711
[   73.878127][ T6739] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   73.880751][ T6739] syzkaller0: entered promiscuous mode
[   73.883061][ T6739] syzkaller0: entered allmulticast mode
[   73.897033][ T6739] tipc: Resetting bearer <eth:syzkaller0>
[   73.902597][ T6738] tipc: Resetting bearer <eth:syzkaller0>
[   73.911990][ T6738] tipc: Disabling bearer <eth:syzkaller0>
[   73.978060][ T6744] Invalid logical block size (1048576)
[   74.429298][ T6757] netlink: 64 bytes leftover after parsing attributes in process `syz.0.114'.
[   74.486677][ T6761] netlink: 8 bytes leftover after parsing attributes in process `syz.2.115'.
[   74.984664][ T6019] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   75.164337][ T6019] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   75.180515][ T6019] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   75.197084][ T6019] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   75.211277][ T6019] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   75.228636][ T6019] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   75.235364][ T6019] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   75.258198][ T6019] usb 6-1: config 0 descriptor??
[   75.672392][ T6019] plantronics 0003:047F:FFFF.0003: ignoring exceeding usage max
[   75.682198][ T6019] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[   75.727345][ T6795] CIFS: iocharset name too long
[   75.934038][ T6802] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   76.231164][  T842] usb 6-1: USB disconnect, device number 2
[   76.246147][ T6804] cgroup: fork rejected by pids controller in /syz3
[   76.819473][ T6849] FAULT_INJECTION: forcing a failure.
[   76.819473][ T6849] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   76.825138][ T6849] CPU: 3 UID: 0 PID: 6849 Comm: syz.2.128 Not tainted syzkaller #0 PREEMPT(full) 
[   76.825159][ T6849] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   76.825168][ T6849] Call Trace:
[   76.825173][ T6849]  <TASK>
[   76.825179][ T6849]  dump_stack_lvl+0x16c/0x1f0
[   76.825207][ T6849]  should_fail_ex+0x512/0x640
[   76.825238][ T6849]  _copy_from_user+0x2e/0xd0
[   76.825260][ T6849]  move_addr_to_kernel+0x65/0x170
[   76.825283][ T6849]  __sys_bind+0x11b/0x260
[   76.825305][ T6849]  ? __pfx___sys_bind+0x10/0x10
[   76.825322][ T6849]  ? __fget_files+0x20e/0x3c0
[   76.825347][ T6849]  ? __pfx_ksys_write+0x10/0x10
[   76.825371][ T6849]  __ia32_sys_bind+0x71/0xb0
[   76.825390][ T6849]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   76.825420][ T6849]  __do_fast_syscall_32+0x7c/0x3a0
[   76.825448][ T6849]  do_fast_syscall_32+0x32/0x80
[   76.825474][ T6849]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   76.825493][ T6849] RIP: 0023:0xf702e579
[   76.825505][ T6849] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   76.825520][ T6849] RSP: 002b:00000000f53fd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000169
[   76.825535][ T6849] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000180
[   76.825547][ T6849] RDX: 000000000000006e RSI: 0000000000000000 RDI: 0000000000000000
[   76.825556][ T6849] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   76.825567][ T6849] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   76.825579][ T6849] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   76.825599][ T6849]  </TASK>
[   77.022332][   T13] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.150452][   T63] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   77.153774][   T63] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   77.159678][   T63] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   77.167276][   T63] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   77.171460][   T63] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   77.181809][   T13] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.204641][ T6853] lo speed is unknown, defaulting to 1000
[   77.239724][   T13] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.350564][   T13] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.372684][ T6853] chnl_net:caif_netlink_parms(): no params data found
[   77.388345][ T6859] netlink: 8 bytes leftover after parsing attributes in process `syz.0.131'.
[   77.392408][ T6859] openvswitch: netlink: nsh attribute has 2338 unknown bytes.
[   77.395103][ T6859] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   77.489539][   T46] Bluetooth: hci4: Frame reassembly failed (-84)
[   77.559481][ T6853] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.562522][ T6853] bridge0: port 1(bridge_slave_0) entered disabled state
[   77.565792][ T6853] bridge_slave_0: entered allmulticast mode
[   77.569615][ T6853] bridge_slave_0: entered promiscuous mode
[   77.574624][ T6853] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.577626][ T6853] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.580655][ T6853] bridge_slave_1: entered allmulticast mode
[   77.584729][ T6853] bridge_slave_1: entered promiscuous mode
[   77.643837][   T40] kauditd_printk_skb: 59 callbacks suppressed
[   77.643853][   T40] audit: type=1326 audit(1757389906.677:915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6847 comm="syz.1.129" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x7fc00000
[   77.685600][ T6853] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   77.693012][ T6853] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   77.747092][ T6853] team0: Port device team_slave_0 added
[   77.754254][ T6853] team0: Port device team_slave_1 added
[   77.819544][   T40] audit: type=1326 audit(1757389906.857:916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6865 comm="syz.2.132" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[   77.827777][   T40] audit: type=1326 audit(1757389906.857:917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6865 comm="syz.2.132" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[   77.834468][   T40] audit: type=1326 audit(1757389906.857:918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6865 comm="syz.2.132" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf702e579 code=0x7ffc0000
[   77.841691][   T40] audit: type=1326 audit(1757389906.857:919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6865 comm="syz.2.132" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[   77.848535][   T40] audit: type=1326 audit(1757389906.857:920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6865 comm="syz.2.132" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf702e579 code=0x7ffc0000
[   77.855873][   T40] audit: type=1326 audit(1757389906.857:921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6865 comm="syz.2.132" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[   77.863319][   T40] audit: type=1326 audit(1757389906.857:922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6865 comm="syz.2.132" exe="/syz-executor" sig=0 arch=40000003 syscall=63 compat=1 ip=0xf702e579 code=0x7ffc0000
[   77.863457][   T13] bridge_slave_1: left allmulticast mode
[   77.870315][   T40] audit: type=1326 audit(1757389906.857:923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6865 comm="syz.2.132" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[   77.871952][   T13] bridge_slave_1: left promiscuous mode
[   77.878662][   T40] audit: type=1326 audit(1757389906.857:924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6865 comm="syz.2.132" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf702e579 code=0x7ffc0000
[   77.881989][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.926396][   T13] bridge_slave_0: left allmulticast mode
[   77.928735][   T13] bridge_slave_0: left promiscuous mode
[   77.938813][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   78.335558][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   78.340984][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   78.346138][   T13] bond0 (unregistering): Released all slaves
[   78.352603][ T6853] batman_adv: batadv0: Adding interface: batadv_slave_0
[   78.354927][ T6853] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   78.364129][ T6853] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   78.379310][ T6853] batman_adv: batadv0: Adding interface: batadv_slave_1
[   78.381869][ T6871] debugfs: 'ttyS3' already exists in 'caif_serial'
[   78.383992][ T6853] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   78.392827][ T6853] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   78.422087][   T13] tipc: Left network mode
[   78.473444][ T6853] hsr_slave_0: entered promiscuous mode
[   78.475979][ T6853] hsr_slave_1: entered promiscuous mode
[   78.478119][ T6853] debugfs: 'hsr0' already exists in 'hsr'
[   78.480146][ T6853] Cannot create hsr debugfs directory
[   78.963193][ T6905] netlink: 20 bytes leftover after parsing attributes in process `syz.2.135'.
[   79.174912][   T13] hsr_slave_0: left promiscuous mode
[   79.177388][   T13] hsr_slave_1: left promiscuous mode
[   79.179512][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   79.182192][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[   79.186945][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   79.189394][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[   79.209000][   T13] veth1_macvtap: left promiscuous mode
[   79.211012][   T13] veth0_macvtap: left promiscuous mode
[   79.212962][   T13] veth1_vlan: left promiscuous mode
[   79.215023][   T13] veth0_vlan: left promiscuous mode
[   79.245106][ T5988] Bluetooth: hci1: command tx timeout
[   79.485533][ T5988] Bluetooth: hci4: command 0x1003 tx timeout
[   79.488763][   T63] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   79.906783][   T13] team0 (unregistering): Port device team_slave_1 removed
[   79.956913][   T13] team0 (unregistering): Port device team_slave_0 removed
[   80.134482][    T9] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   80.306504][    T9] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   80.313071][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   80.315693][ T6922] block device autoloading is deprecated and will be removed.
[   80.317513][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   80.317532][    T9] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   80.317562][    T9] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   80.317579][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   80.324457][    T9] usb 5-1: config 0 descriptor??
[   80.623681][ T6853] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   80.638457][ T6853] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   80.648045][ T6853] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   80.656775][ T6853] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   80.739235][    T9] plantronics 0003:047F:FFFF.0004: ignoring exceeding usage max
[   80.753567][ T6853] 8021q: adding VLAN 0 to HW filter on device bond0
[   80.760468][    T9] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[   80.770714][ T6853] 8021q: adding VLAN 0 to HW filter on device team0
[   80.847508][ T1142] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.849832][ T1142] bridge0: port 1(bridge_slave_0) entered forwarding state
[   80.853835][ T1142] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.856142][ T1142] bridge0: port 2(bridge_slave_1) entered forwarding state
[   80.919317][ T6853] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   80.952278][ T6955] mmap: syz.2.140 (6955) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   81.040913][ T6853] 8021q: adding VLAN 0 to HW filter on device batadv0
[   81.082638][ T6853] veth0_vlan: entered promiscuous mode
[   81.095503][ T6853] veth1_vlan: entered promiscuous mode
[   81.110581][ T6853] veth0_macvtap: entered promiscuous mode
[   81.115167][ T6853] veth1_macvtap: entered promiscuous mode
[   81.129636][ T6853] batman_adv: batadv0: Interface activated: batadv_slave_0
[   81.147384][ T6853] batman_adv: batadv0: Interface activated: batadv_slave_1
[   81.153604][ T1171] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   81.161748][ T1171] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   81.167518][ T1142] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   81.172241][ T1142] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   81.174047][   T59] cfg80211: failed to load regulatory.db
[   81.272126][ T1142] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.276388][ T1142] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.289464][   T91] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.292659][   T91] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.324349][   T63] Bluetooth: hci1: command tx timeout
[   82.518680][ T7010] netlink: 4 bytes leftover after parsing attributes in process `syz.1.145'.
[   82.524132][ T7010] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   82.688806][ T7017] A link change request failed with some changes committed already. Interface tunl0 may have been left with an inconsistent configuration, please check.
[   82.888765][ T7027] wireguard0: entered promiscuous mode
[   82.891143][ T7027] wireguard0: entered allmulticast mode
[   83.225418][ T6045] usb 5-1: USB disconnect, device number 2
[   83.404440][   T63] Bluetooth: hci1: command tx timeout
[   84.814261][ T6045] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   84.978921][ T6045] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   84.982699][ T6045] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   84.986656][ T6045] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   84.994084][ T6045] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   85.001907][ T6045] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   85.006202][ T6045] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   85.018817][ T6045] usb 5-1: config 0 descriptor??
[   85.486333][   T63] Bluetooth: hci1: command tx timeout
[   85.514102][ T6045] plantronics 0003:047F:FFFF.0005: ignoring exceeding usage max
[   85.521825][ T6045] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[   85.744324][ T6723] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   85.894337][ T6723] usb 6-1: Using ep0 maxpacket: 8
[   85.899192][ T6723] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   85.902784][ T6723] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   85.906424][ T6723] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   85.909879][ T6723] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   85.914622][ T6723] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   85.917348][ T6723] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   86.069564][ T7117] FAULT_INJECTION: forcing a failure.
[   86.069564][ T7117] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   86.073633][ T7117] CPU: 3 UID: 0 PID: 7117 Comm: syz.2.159 Not tainted syzkaller #0 PREEMPT(full) 
[   86.073648][ T7117] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   86.073655][ T7117] Call Trace:
[   86.073659][ T7117]  <TASK>
[   86.073665][ T7117]  dump_stack_lvl+0x16c/0x1f0
[   86.073684][ T7117]  should_fail_ex+0x512/0x640
[   86.073704][ T7117]  _copy_to_user+0x32/0xd0
[   86.073717][ T7117]  do_pagemap_scan+0xb81/0xcf0
[   86.073733][ T7117]  ? __pfx_do_pagemap_scan+0x10/0x10
[   86.073757][ T7117]  ? do_vfs_ioctl+0x128/0x14f0
[   86.073789][ T7117]  ? __fget_files+0x20e/0x3c0
[   86.073803][ T7117]  do_pagemap_cmd+0x58/0x80
[   86.073815][ T7117]  ? __pfx_do_pagemap_cmd+0x10/0x10
[   86.073826][ T7117]  __ia32_compat_sys_ioctl+0x23f/0x370
[   86.073845][ T7117]  __do_fast_syscall_32+0x7c/0x3a0
[   86.073864][ T7117]  do_fast_syscall_32+0x32/0x80
[   86.073880][ T7117]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   86.073894][ T7117] RIP: 0023:0xf702e579
[   86.073903][ T7117] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   86.073913][ T7117] RSP: 002b:00000000f541e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   86.073923][ T7117] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000c0606610
[   86.073930][ T7117] RDX: 0000000080000140 RSI: 0000000000000000 RDI: 0000000000000000
[   86.073936][ T7117] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   86.073941][ T7117] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   86.073947][ T7117] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   86.073960][ T7117]  </TASK>
[   86.130074][ T6723] usb 6-1: GET_CAPABILITIES returned 0
[   86.131924][ T6723] usbtmc 6-1:16.0: can't read capabilities
[   86.683880][ T7129] debugfs: 'ttyS3' already exists in 'caif_serial'
[   86.912585][  T840] usb 6-1: USB disconnect, device number 3
[   87.380474][   T40] kauditd_printk_skb: 51 callbacks suppressed
[   87.380488][   T40] audit: type=1326 audit(1757389916.417:976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7148 comm="syz.0.164" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[   87.394264][   T40] audit: type=1326 audit(1757389916.417:977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7148 comm="syz.0.164" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7f93579 code=0x7ffc0000
[   87.406426][   T40] audit: type=1326 audit(1757389916.417:978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7148 comm="syz.0.164" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[   87.415367][   T40] audit: type=1326 audit(1757389916.417:979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7148 comm="syz.0.164" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[   87.425004][   T40] audit: type=1326 audit(1757389916.417:980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7148 comm="syz.0.164" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f93579 code=0x7ffc0000
[   87.445665][   T40] audit: type=1326 audit(1757389916.417:981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7148 comm="syz.0.164" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[   87.464375][   T40] audit: type=1326 audit(1757389916.417:982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7148 comm="syz.0.164" exe="/syz-executor" sig=0 arch=40000003 syscall=63 compat=1 ip=0xf7f93579 code=0x7ffc0000
[   87.474357][   T40] audit: type=1326 audit(1757389916.417:983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7148 comm="syz.0.164" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[   87.483424][   T40] audit: type=1326 audit(1757389916.417:984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7148 comm="syz.0.164" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f93579 code=0x7ffc0000
[   87.492272][   T40] audit: type=1326 audit(1757389916.417:985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7148 comm="syz.0.164" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[   87.570914][    T9] usb 5-1: USB disconnect, device number 3
[   88.588904][ T7186] netlink: 8 bytes leftover after parsing attributes in process `syz.2.171'.
[   88.591752][ T7186] openvswitch: netlink: nsh attribute has 2338 unknown bytes.
[   88.594146][ T7186] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   88.692739][ T7198] input: syz1 as /devices/virtual/input/input9
[   88.706299][ T7197] overlayfs: workdir and upperdir must be separate subtrees
[   88.808221][ T7202] FAULT_INJECTION: forcing a failure.
[   88.808221][ T7202] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   88.812665][ T7202] CPU: 2 UID: 0 PID: 7202 Comm: syz.1.176 Not tainted syzkaller #0 PREEMPT(full) 
[   88.812687][ T7202] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   88.812696][ T7202] Call Trace:
[   88.812702][ T7202]  <TASK>
[   88.812708][ T7202]  dump_stack_lvl+0x16c/0x1f0
[   88.812746][ T7202]  should_fail_ex+0x512/0x640
[   88.812776][ T7202]  _copy_from_user+0x2e/0xd0
[   88.812795][ T7202]  get_compat_msghdr+0xa7/0x170
[   88.812820][ T7202]  ? __pfx_get_compat_msghdr+0x10/0x10
[   88.812853][ T7202]  ___sys_sendmsg+0x1ae/0x1d0
[   88.812881][ T7202]  ? __pfx____sys_sendmsg+0x10/0x10
[   88.812919][ T7202]  ? find_held_lock+0x2b/0x80
[   88.812951][ T7202]  __sys_sendmsg+0x16d/0x220
[   88.812977][ T7202]  ? __pfx___sys_sendmsg+0x10/0x10
[   88.813010][ T7202]  ? rcu_is_watching+0x12/0xc0
[   88.813031][ T7202]  __do_fast_syscall_32+0x7c/0x3a0
[   88.813059][ T7202]  do_fast_syscall_32+0x32/0x80
[   88.813085][ T7202]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   88.813106][ T7202] RIP: 0023:0xf7f61579
[   88.813119][ T7202] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   88.813135][ T7202] RSP: 002b:00000000f547655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   88.813151][ T7202] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000280
[   88.813163][ T7202] RDX: 000000002000c094 RSI: 0000000000000000 RDI: 0000000000000000
[   88.813171][ T7202] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   88.813180][ T7202] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   88.813190][ T7202] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   88.813210][ T7202]  </TASK>
[   90.148556][ T7234] netlink: 4 bytes leftover after parsing attributes in process `syz.0.186'.
[   90.684433][ T5988] Bluetooth: hci4: command 0x1003 tx timeout
[   90.688101][   T63] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   91.504314][  T840] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   91.725047][  T840] usb 5-1: Using ep0 maxpacket: 8
[   91.733163][  T840] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   91.737759][  T840] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[   91.742673][  T840] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[   91.747868][  T840] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[   91.752308][  T840] usb 5-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[   91.757204][  T840] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   91.776963][  T840] hub 5-1:1.0: bad descriptor, ignoring hub
[   91.780572][  T840] hub 5-1:1.0: probe with driver hub failed with error -5
[   91.788519][  T840] cdc_wdm 5-1:1.0: skipping garbage
[   91.790764][  T840] cdc_wdm 5-1:1.0: skipping garbage
[   91.803014][  T840] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[   91.807579][  T840] cdc_wdm 5-1:1.0: Unknown control protocol
[   92.349295][ T7271] netlink: 8 bytes leftover after parsing attributes in process `syz.1.196'.
[   92.352179][ T7271] openvswitch: netlink: nsh attribute has 2338 unknown bytes.
[   92.354918][ T7271] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   92.704330][ T7253] usb 5-1: reset high-speed USB device number 4 using dummy_hcd
[   93.554344][  T841] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   93.706945][  T841] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   93.711670][  T841] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   93.716306][  T841] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   93.720418][  T841] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   93.725912][  T841] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   93.729715][  T841] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   93.737469][  T841] usb 7-1: config 0 descriptor??
[   94.146900][  T841] plantronics 0003:047F:FFFF.0006: ignoring exceeding usage max
[   94.158421][  T841] plantronics 0003:047F:FFFF.0006: hiddev1,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[   94.196037][  T843] usb 5-1: USB disconnect, device number 4
[   94.346535][ T6723] usb 7-1: USB disconnect, device number 2
[   94.444545][ T5988] Bluetooth: hci4: command 0x1003 tx timeout
[   94.444981][   T63] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   94.563515][ T7304] netlink: 4 bytes leftover after parsing attributes in process `syz.0.203'.
[   94.566514][ T7304] netlink: 4 bytes leftover after parsing attributes in process `syz.0.203'.
[   94.675666][   T40] kauditd_printk_skb: 57 callbacks suppressed
[   94.675687][   T40] audit: type=1326 audit(1757389923.717:1043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7306 comm="syz.1.204" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x7ffc0000
[   94.685652][   T40] audit: type=1326 audit(1757389923.717:1044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7306 comm="syz.1.204" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7f61579 code=0x7ffc0000
[   94.692784][   T40] audit: type=1326 audit(1757389923.717:1045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7306 comm="syz.1.204" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x7ffc0000
[   94.715974][   T40] audit: type=1326 audit(1757389923.717:1046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7306 comm="syz.1.204" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x7ffc0000
[   94.722728][   T40] audit: type=1326 audit(1757389923.717:1047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7306 comm="syz.1.204" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f61579 code=0x7ffc0000
[   94.729660][   T40] audit: type=1326 audit(1757389923.717:1048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7306 comm="syz.1.204" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x7ffc0000
[   94.737788][   T40] audit: type=1326 audit(1757389923.727:1049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7306 comm="syz.1.204" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x7ffc0000
[   94.745032][   T40] audit: type=1326 audit(1757389923.727:1050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7306 comm="syz.1.204" exe="/syz-executor" sig=0 arch=40000003 syscall=63 compat=1 ip=0xf7f61579 code=0x7ffc0000
[   94.751624][   T40] audit: type=1326 audit(1757389923.727:1051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7306 comm="syz.1.204" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x7ffc0000
[   94.758818][   T40] audit: type=1326 audit(1757389923.727:1052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7306 comm="syz.1.204" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x7ffc0000
[   95.715196][ T7334] mkiss: ax0: crc mode is auto.
[   95.723705][ T7334] autofs: Bad value for 'uid'
[   95.726169][ T7334] autofs: Bad value for 'uid'
[   95.729197][ T7334] syz.1.210 (7334): /proc/7333/oom_adj is deprecated, please use /proc/7333/oom_score_adj instead.
[   95.837182][ T7336] kAFS: No cell specified
[   95.893212][ T7338] netlink: 8 bytes leftover after parsing attributes in process `syz.1.212'.
[   95.897254][ T7338] openvswitch: netlink: nsh attribute has 2338 unknown bytes.
[   95.899608][ T7338] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   96.495707][ T7355] tipc: Started in network mode
[   96.497612][ T7355] tipc: Node identity 42964d9804fe, cluster identity 4711
[   96.500100][ T7355] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   96.504832][ T7355] syzkaller0: entered promiscuous mode
[   96.507106][ T7355] syzkaller0: entered allmulticast mode
[   96.527596][ T7355] tipc: Resetting bearer <eth:syzkaller0>
[   96.535819][ T7354] tipc: Resetting bearer <eth:syzkaller0>
[   96.555327][ T7354] tipc: Disabling bearer <eth:syzkaller0>
[   97.431895][ T7372] tipc: Started in network mode
[   97.433585][ T7372] tipc: Node identity 9e772a33e3a5, cluster identity 4711
[   97.437359][ T7372] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   97.441026][ T7372] syzkaller0: entered promiscuous mode
[   97.443441][ T7372] syzkaller0: entered allmulticast mode
[   97.454164][ T7372] tipc: Resetting bearer <eth:syzkaller0>
[   97.457558][ T7371] tipc: Resetting bearer <eth:syzkaller0>
[   97.467202][ T7371] tipc: Disabling bearer <eth:syzkaller0>
[   97.964318][   T63] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   99.682929][ T7414] debugfs: 'ttyS3' already exists in 'caif_serial'
[   99.689888][ T7424] netlink: 8 bytes leftover after parsing attributes in process `syz.2.234'.
[   99.692739][ T7424] openvswitch: netlink: nsh attribute has 2338 unknown bytes.
[   99.695288][ T7424] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   99.770690][   T60] Bluetooth: hci4: Frame reassembly failed (-84)
[  100.386723][   T40] kauditd_printk_skb: 13 callbacks suppressed
[  100.386739][   T40] audit: type=1326 audit(1757389929.427:1066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7458 comm="syz.1.238" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x7ffc0000
[  100.395849][   T40] audit: type=1326 audit(1757389929.427:1067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7458 comm="syz.1.238" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x7ffc0000
[  100.402557][   T40] audit: type=1326 audit(1757389929.427:1068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7458 comm="syz.1.238" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7f61579 code=0x7ffc0000
[  100.411684][   T40] audit: type=1326 audit(1757389929.427:1069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7458 comm="syz.1.238" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x7ffc0000
[  100.422407][   T40] audit: type=1326 audit(1757389929.427:1070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7458 comm="syz.1.238" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x7ffc0000
[  100.431267][   T40] audit: type=1326 audit(1757389929.427:1071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7458 comm="syz.1.238" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f61579 code=0x7ffc0000
[  100.438134][   T40] audit: type=1326 audit(1757389929.427:1072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7458 comm="syz.1.238" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x7ffc0000
[  100.445055][   T40] audit: type=1326 audit(1757389929.427:1073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7458 comm="syz.1.238" exe="/syz-executor" sig=0 arch=40000003 syscall=63 compat=1 ip=0xf7f61579 code=0x7ffc0000
[  100.451990][   T40] audit: type=1326 audit(1757389929.427:1074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7458 comm="syz.1.238" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x7ffc0000
[  100.460515][   T40] audit: type=1326 audit(1757389929.427:1075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7458 comm="syz.1.238" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f61579 code=0x7ffc0000
[  101.163745][ T7452] FAULT_INJECTION: forcing a failure.
[  101.163745][ T7452] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  101.168045][ T7452] CPU: 2 UID: 0 PID: 7452 Comm: syz.0.237 Not tainted syzkaller #0 PREEMPT(full) 
[  101.168059][ T7452] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  101.168066][ T7452] Call Trace:
[  101.168069][ T7452]  <TASK>
[  101.168073][ T7452]  dump_stack_lvl+0x16c/0x1f0
[  101.168093][ T7452]  should_fail_ex+0x512/0x640
[  101.168112][ T7452]  _copy_to_user+0x32/0xd0
[  101.168125][ T7452]  simple_read_from_buffer+0xcb/0x170
[  101.168138][ T7452]  proc_fail_nth_read+0x197/0x240
[  101.168150][ T7452]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  101.168162][ T7452]  ? rw_verify_area+0xcf/0x6c0
[  101.168173][ T7452]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  101.168184][ T7452]  vfs_read+0x1e4/0xcf0
[  101.168199][ T7452]  ? __pfx_vfs_read+0x10/0x10
[  101.168209][ T7452]  ? find_held_lock+0x2b/0x80
[  101.168224][ T7452]  ? __fget_files+0x20e/0x3c0
[  101.168240][ T7452]  ksys_read+0x12a/0x250
[  101.168252][ T7452]  ? __pfx_ksys_read+0x10/0x10
[  101.168265][ T7452]  ? rcu_is_watching+0x12/0xc0
[  101.168278][ T7452]  __do_fast_syscall_32+0x7c/0x3a0
[  101.168296][ T7452]  do_fast_syscall_32+0x32/0x80
[  101.168313][ T7452]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  101.168326][ T7452] RIP: 0023:0xf7f93579
[  101.168334][ T7452] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  101.168345][ T7452] RSP: 002b:00000000f54a6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  101.168355][ T7452] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f54a6620
[  101.168362][ T7452] RDX: 000000000000000f RSI: 00000000f7424ff4 RDI: 0000000000000000
[  101.168368][ T7452] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  101.168373][ T7452] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  101.168379][ T7452] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  101.168392][ T7452]  </TASK>
[  101.804521][ T5988] Bluetooth: hci4: command 0x1003 tx timeout
[  101.807330][   T63] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  102.555896][ T7511] bridge0: port 3(syz_tun) entered blocking state
[  102.558316][ T7511] bridge0: port 3(syz_tun) entered disabled state
[  102.560676][ T7511] syz_tun: entered allmulticast mode
[  102.563373][ T7511] syz_tun: entered promiscuous mode
[  102.566535][ T7511] bridge0: port 3(syz_tun) entered blocking state
[  102.568970][ T7511] bridge0: port 3(syz_tun) entered forwarding state
[  102.576933][ T7511] netlink: 'syz.2.248': attribute type 10 has an invalid length.
[  102.580531][ T7511] bridge0: port 3(syz_tun) entered disabled state
[  102.582813][ T7511] bridge0: port 2(bridge_slave_1) entered disabled state
[  102.585929][ T7511] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.594502][ T7511] bridge0: port 3(syz_tun) entered blocking state
[  102.597418][ T7511] bridge0: port 3(syz_tun) entered forwarding state
[  102.601219][ T7511] bridge0: port 2(bridge_slave_1) entered blocking state
[  102.604384][ T7511] bridge0: port 2(bridge_slave_1) entered forwarding state
[  102.607626][ T7511] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.610707][ T7511] bridge0: port 1(bridge_slave_0) entered forwarding state
[  102.617244][ T7511] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  102.634014][ T7511] __ib_cache_gid_add: unable to add gid fe80:0000:0000:0000:a8aa:aaff:feaa:aa17 error=-28
[  102.826823][ T7511] infiniband syz1: set active
[  102.829140][ T7511] infiniband syz1: added syz_tun
[  102.849345][ T7511] RDS/IB: syz1: added
[  102.852480][ T7511] smc: adding ib device syz1 with port count 1
[  102.854718][ T7511] smc:    ib device syz1 port 1 has pnetid 
[  102.890491][ T7518] netlink: 'syz.3.249': attribute type 4 has an invalid length.
[  103.922609][ T7535] netlink: 8 bytes leftover after parsing attributes in process `syz.3.253'.
[  103.925586][ T7535] openvswitch: netlink: nsh attribute has 2338 unknown bytes.
[  103.928120][ T7535] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  104.969805][ T7556] tipc: Cannot configure node identity twice
[  105.435924][ T7563] netlink: 'syz.2.259': attribute type 12 has an invalid length.
[  105.438468][ T7563] netlink: 'syz.2.259': attribute type 29 has an invalid length.
[  105.440981][ T7563] netlink: 148 bytes leftover after parsing attributes in process `syz.2.259'.
[  106.044345][ T5988] Bluetooth: hci4: command 0x1003 tx timeout
[  106.047798][   T63] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  106.392018][ T7582] autofs: Unknown parameter 'ZùqDõâÚCé7Dì�Û&C$§”뙾‡4ã_É4DY!˜Iè�u•²�&¢}Æ‹žm{DL•"fa&Ñ]‘»¢J‡¨A'
[  106.518264][ T7582] Bluetooth: MGMT ver 1.23
[  107.640967][   T40] kauditd_printk_skb: 69 callbacks suppressed
[  107.640977][   T40] audit: type=1326 audit(1757389936.677:1145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7607 comm="syz.0.271" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  107.649635][   T40] audit: type=1326 audit(1757389936.677:1146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7607 comm="syz.0.271" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  107.657013][   T40] audit: type=1326 audit(1757389936.687:1147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7607 comm="syz.0.271" exe="/syz-executor" sig=0 arch=40000003 syscall=14 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  107.665444][   T40] audit: type=1326 audit(1757389936.687:1148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7607 comm="syz.0.271" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  107.674335][   T40] audit: type=1326 audit(1757389936.687:1149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7607 comm="syz.0.271" exe="/syz-executor" sig=0 arch=40000003 syscall=5 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  107.681105][   T40] audit: type=1326 audit(1757389936.687:1150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7607 comm="syz.0.271" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  107.690104][   T40] audit: type=1326 audit(1757389936.687:1151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7607 comm="syz.0.271" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  107.697169][   T40] audit: type=1326 audit(1757389936.687:1152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7607 comm="syz.0.271" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  107.757734][   T40] audit: type=1326 audit(1757389936.797:1153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7607 comm="syz.0.271" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  107.766168][   T40] audit: type=1326 audit(1757389936.797:1154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7607 comm="syz.0.271" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  108.932226][ T7627] netlink: 36 bytes leftover after parsing attributes in process `syz.0.276'.
[  108.938132][ T7627] overlayfs: failed to create directory ./bus/work (errno: 1); mounting read-only
[  108.941321][ T7627] overlayfs: NFS export requires an index dir, falling back to nfs_export=off.
[  108.990208][ T7629] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  108.993844][ T7629] syzkaller0: entered promiscuous mode
[  108.996145][ T7629] syzkaller0: entered allmulticast mode
[  109.003419][ T7629] tipc: Resetting bearer <eth:syzkaller0>
[  109.007415][ T7628] tipc: Resetting bearer <eth:syzkaller0>
[  109.015968][ T7628] tipc: Disabling bearer <eth:syzkaller0>
[  109.269754][ T7634] syz.1.279 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  109.298145][ T7640] netlink: 4 bytes leftover after parsing attributes in process `syz.0.281'.
[  109.584611][ T6044] usb 8-1: new low-speed USB device number 3 using dummy_hcd
[  109.714366][ T6044] usb 8-1: device descriptor read/64, error -71
[  109.954334][ T6044] usb 8-1: new low-speed USB device number 4 using dummy_hcd
[  110.084490][ T6044] usb 8-1: device descriptor read/64, error -71
[  110.194981][ T6044] usb usb8-port1: attempt power cycle
[  110.554404][ T6044] usb 8-1: new low-speed USB device number 5 using dummy_hcd
[  110.577204][ T6044] usb 8-1: device descriptor read/8, error -71
[  110.834299][ T6044] usb 8-1: new low-speed USB device number 6 using dummy_hcd
[  110.865184][ T6044] usb 8-1: device descriptor read/8, error -71
[  110.984990][ T6044] usb usb8-port1: unable to enumerate USB device
[  111.527850][ T7690] lo speed is unknown, defaulting to 1000
[  112.206293][ T7696] netlink: 4 bytes leftover after parsing attributes in process `syz.0.294'.
[  112.271364][ T7696] netlink: 24 bytes leftover after parsing attributes in process `syz.0.294'.
[  112.896237][ T7710] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  112.901103][ T7710] syzkaller0: entered promiscuous mode
[  112.903027][ T7710] syzkaller0: entered allmulticast mode
[  112.910692][ T7710] tipc: Resetting bearer <eth:syzkaller0>
[  112.914254][ T7709] tipc: Resetting bearer <eth:syzkaller0>
[  112.922559][ T7709] tipc: Disabling bearer <eth:syzkaller0>
[  113.474284][ T6044] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  113.634267][ T6044] usb 6-1: Using ep0 maxpacket: 8
[  115.776793][ T7769] block nbd3: Attempted send on invalid socket
[  115.784399][ T7769] I/O error, dev nbd3, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  115.788146][ T7769] vxfs: unable to read disk superblock at 1
[  115.793132][ T7769] block nbd3: Attempted send on invalid socket
[  115.795347][ T7769] I/O error, dev nbd3, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  115.798504][ T7769] vxfs: unable to read disk superblock at 8
[  115.800392][ T7769] vxfs: can't find superblock.
[  115.839827][ T7769] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  116.059923][ T6044] usb 6-1: unable to get BOS descriptor or descriptor too short
[  116.070205][ T6044] usb 6-1: unable to read config index 0 descriptor/start: -71
[  116.072675][ T6044] usb 6-1: can't read configurations, error -71
[  116.307929][ T7787] evm: overlay not supported
[  116.322061][ T7787] netlink: 4 bytes leftover after parsing attributes in process `syz.2.318'.
[  116.341610][ T7786] capability: warning: `syz.2.318' uses deprecated v2 capabilities in a way that may be insecure
[  117.074337][ T6019] usb 5-1: new full-speed USB device number 5 using dummy_hcd
[  117.092974][ T7806] tipc: Can't bind to reserved service type 1
[  117.148585][ T7808] netlink: 8 bytes leftover after parsing attributes in process `syz.2.328'.
[  117.151361][ T7808] openvswitch: netlink: nsh attribute has 2338 unknown bytes.
[  117.153720][ T7808] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  117.237242][   T46] Bluetooth: hci4: Frame reassembly failed (-84)
[  117.277828][ T6019] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  117.280574][ T6019] usb 5-1: config 1 has an invalid descriptor of length 48, skipping remainder of the config
[  117.285243][ T6019] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  117.288861][ T6019] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 12336, setting to 64
[  117.299440][ T6019] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  117.303089][ T6019] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  117.306820][ T6019] usb 5-1: Product: syz
[  117.308572][ T6019] usb 5-1: Manufacturer: syz
[  117.313556][ T7811] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  117.316864][ T6019] cdc_wdm 5-1:1.0: skipping garbage
[  117.317220][ T6019] cdc_wdm 5-1:1.0: skipping garbage
[  117.322790][ T6019] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  117.324979][ T6019] cdc_wdm 5-1:1.0: Unknown control protocol
[  117.557252][ T6019] usb 5-1: USB disconnect, device number 5
[  118.926696][    C2] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  118.930122][    C2] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  119.005572][    C0] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  119.164775][    C2] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  119.244452][ T5988] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  119.258622][    C2] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  119.405492][    C2] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  119.409929][    C2] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  119.414279][    C2] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  119.484991][    C2] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  119.693815][ T7851] netlink: 8 bytes leftover after parsing attributes in process `syz.3.340'.
[  119.697624][ T7851] openvswitch: netlink: nsh attribute has 2338 unknown bytes.
[  119.700571][ T7851] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  119.857795][ T7850] netlink: 8 bytes leftover after parsing attributes in process `syz.3.340'.
[  120.333909][ T7866] Invalid source name
[  120.375273][ T7866] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  120.997126][ T7878] binder: 7877:7878 ioctl c0306201 800003c0 returned -14
[  121.012433][ T6063] hid-generic 0005:0007:5505.0007: unknown main item tag 0x0
[  121.017687][ T6063] hid-generic 0005:0007:5505.0007: hidraw1: BLUETOOTH HID v0.08 Device [syz0] on aa:aa:aa:aa:aa:aa
[  121.043343][ T7880] fido_id[7880]: Failed to open report descriptor at '/sys/devices/virtual/bluetooth/hci1/hci1:200/report_descriptor': No such file or directory
[  121.174103][   T40] kauditd_printk_skb: 100 callbacks suppressed
[  121.174115][   T40] audit: type=1326 audit(1757389950.207:1255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7881 comm="syz.0.350" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  121.184644][   T40] audit: type=1326 audit(1757389950.207:1256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7881 comm="syz.0.350" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  121.191358][   T40] audit: type=1326 audit(1757389950.217:1257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7881 comm="syz.0.350" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  121.199526][   T40] audit: type=1326 audit(1757389950.217:1258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7881 comm="syz.0.350" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  121.206658][   T40] audit: type=1326 audit(1757389950.217:1259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7881 comm="syz.0.350" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  121.213635][   T40] audit: type=1326 audit(1757389950.217:1260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7881 comm="syz.0.350" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  121.221426][   T40] audit: type=1326 audit(1757389950.217:1261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7881 comm="syz.0.350" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  121.229812][   T40] audit: type=1326 audit(1757389950.217:1262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7881 comm="syz.0.350" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  121.238594][   T40] audit: type=1326 audit(1757389950.217:1263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7881 comm="syz.0.350" exe="/syz-executor" sig=0 arch=40000003 syscall=63 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  121.247431][   T40] audit: type=1326 audit(1757389950.217:1264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7881 comm="syz.0.350" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  121.314417][    T9] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  121.474257][    T9] usb 7-1: Using ep0 maxpacket: 8
[  121.478289][    T9] usb 7-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 16
[  121.481533][    T9] usb 7-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 64
[  121.484768][    T9] usb 7-1: config 1 interface 0 has no altsetting 0
[  121.489295][    T9] usb 7-1: New USB device found, idVendor=03f0, idProduct=0004, bcdDevice= 0.40
[  121.492209][    T9] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  121.494829][    T9] usb 7-1: Product: syz
[  121.496295][    T9] usb 7-1: Manufacturer: �蹃晡ᘌ疈澢ᢹλ樵ݡᙚ꽂�韙䛒﷭⃃�覯뿄ų쎯褈⤗䜚툖�殯Ȝꃈ㹡䒔肃僂ͣ๾憱롢嬭땶�艱㒷唞鋫ॉ�峻哹ཧꛋᢌ낎ͳ섪뵞謟孌쨳뒮଄ꅵ迲龈汗令뢄䒎�襎ﾈ㬡쟰糇�拓ᡫ懤ㄕ⌔䫋ꤣጺዴ�殺
[  121.505001][    T9] usb 7-1: SerialNumber: syz
[  121.509635][ T7883] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  121.512208][ T7883] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  121.804298][ T5988] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  121.804311][   T63] Bluetooth: hci4: command 0x1003 tx timeout
[  121.935960][    T9] usblp0: Disabling reads from problematic bidirectional printer
[  121.944531][    T9] usblp 7-1:1.0: usblp0: USB Unidirectional printer dev 3 if 0 alt 8 proto 3 vid 0x03F0 pid 0x0004
[  121.954432][    T9] usb 7-1: USB disconnect, device number 3
[  121.971149][    T9] usblp0: removed
[  122.200133][ T7895] netlink: 4 bytes leftover after parsing attributes in process `syz.1.354'.
[  122.204717][ T7895] netlink: 292 bytes leftover after parsing attributes in process `syz.1.354'.
[  122.207589][ T7895] netlink: 292 bytes leftover after parsing attributes in process `syz.1.354'.
[  122.254304][ T6019] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  122.426057][ T6019] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  122.430550][ T6019] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  122.434995][ T6019] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  122.438784][ T6019] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  122.446588][ T7892] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  122.453589][ T6019] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  122.660017][ T7892] netlink: 'syz.0.353': attribute type 1 has an invalid length.
[  122.662659][ T7892] netlink: 244 bytes leftover after parsing attributes in process `syz.0.353'.
[  122.666849][ T6019] usb 5-1: USB disconnect, device number 6
[  122.710904][ T7911] netlink: 4 bytes leftover after parsing attributes in process `syz.2.359'.
[  124.766961][ T7922] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  124.769679][ T7922] syzkaller0: entered promiscuous mode
[  124.771307][ T7922] syzkaller0: entered allmulticast mode
[  124.779571][ T7921] tipc: Resetting bearer <eth:syzkaller0>
[  124.791487][ T7921] tipc: Disabling bearer <eth:syzkaller0>
[  126.221705][ T7970] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  126.224955][ T7970] syzkaller0: entered promiscuous mode
[  126.227677][ T7970] syzkaller0: entered allmulticast mode
[  126.242564][ T7969] tipc: Resetting bearer <eth:syzkaller0>
[  126.258348][ T7969] tipc: Disabling bearer <eth:syzkaller0>
[  126.358108][ T7972] netlink: 4 bytes leftover after parsing attributes in process `syz.1.378'.
[  126.377269][ T7972] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode
[  126.400699][ T7972] bridge_slave_0: left allmulticast mode
[  126.402507][ T7972] bridge_slave_0: left promiscuous mode
[  126.404657][ T7972] bridge0: port 1(bridge_slave_0) entered disabled state
[  126.409073][ T7972] bridge_slave_1: left allmulticast mode
[  126.410957][ T7972] bridge_slave_1: left promiscuous mode
[  126.412903][ T7972] bridge0: port 2(bridge_slave_1) entered disabled state
[  126.418720][ T7972] bond0: (slave bond_slave_0): Releasing backup interface
[  126.423967][ T7972] bond0: (slave bond_slave_1): Releasing backup interface
[  126.431198][ T7972] team0: Port device team_slave_0 removed
[  126.435985][ T7972] team0: Port device team_slave_1 removed
[  126.438690][ T7972] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  126.441206][ T7972] batman_adv: batadv0: Removing interface: batadv_slave_0
[  126.444622][ T7972] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  126.447063][ T7972] batman_adv: batadv0: Removing interface: batadv_slave_1
[  126.448385][ T7973] netlink: 'syz.1.378': attribute type 10 has an invalid length.
[  126.471893][ T7973] mac80211_hwsim hwsim3 wlan1: left allmulticast mode
[  126.481743][ T7973] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  126.523855][    C2] Unknown status report in ack skb
[  126.894054][   T40] kauditd_printk_skb: 17 callbacks suppressed
[  126.897756][   T40] audit: type=1326 audit(1757389955.927:1282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7983 comm="syz.3.383" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701e579 code=0x7ffc0000
[  126.904634][   T40] audit: type=1326 audit(1757389955.927:1283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7983 comm="syz.3.383" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701e579 code=0x7ffc0000
[  126.965542][ T7994] netlink: 4 bytes leftover after parsing attributes in process `syz.1.382'.
[  127.188446][   T40] audit: type=1326 audit(1757389956.227:1284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7983 comm="syz.3.383" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf701e579 code=0x7ffc0000
[  127.196194][   T40] audit: type=1326 audit(1757389956.237:1285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7983 comm="syz.3.383" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701e579 code=0x7ffc0000
[  127.205258][   T40] audit: type=1326 audit(1757389956.237:1286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7983 comm="syz.3.383" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701e579 code=0x7ffc0000
[  127.212571][   T40] audit: type=1326 audit(1757389956.247:1287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7983 comm="syz.3.383" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf701e579 code=0x7ffc0000
[  127.225975][   T40] audit: type=1326 audit(1757389956.257:1288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7983 comm="syz.3.383" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701e579 code=0x7ffc0000
[  127.232872][   T40] audit: type=1326 audit(1757389956.257:1289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7983 comm="syz.3.383" exe="/syz-executor" sig=0 arch=40000003 syscall=63 compat=1 ip=0xf701e579 code=0x7ffc0000
[  127.314459][   T40] audit: type=1326 audit(1757389956.257:1290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7983 comm="syz.3.383" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701e579 code=0x7ffc0000
[  127.324790][   T40] audit: type=1326 audit(1757389956.257:1291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7983 comm="syz.3.383" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf701e579 code=0x7ffc0000
[  128.099353][ T8016] block nbd0: Attempted send on invalid socket
[  128.102154][ T8016] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[  129.080155][ T8035] syz_tun: entered promiscuous mode
[  129.082446][ T8035] batadv_slave_0: entered promiscuous mode
[  129.686407][ T8040] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  129.773497][ T8044] tipc: Started in network mode
[  129.775294][ T8044] tipc: Node identity 0e3a3874ff1e, cluster identity 4711
[  129.777621][ T8044] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  129.782922][ T8044] tipc: Resetting bearer <eth:syzkaller0>
[  129.837282][ T8043] tipc: Disabling bearer <eth:syzkaller0>
[  130.636127][ T8079] comedi comedi0: Minor 3 specified more than once!
[  131.534022][ T8113] lo speed is unknown, defaulting to 1000
[  132.291643][   T40] kauditd_printk_skb: 100 callbacks suppressed
[  132.291661][   T40] audit: type=1326 audit(1757389961.327:1392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8144 comm="syz.0.425" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  132.319641][   T40] audit: type=1326 audit(1757389961.327:1393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8144 comm="syz.0.425" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  132.377348][   T40] audit: type=1326 audit(1757389961.337:1394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8144 comm="syz.0.425" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  132.386456][   T40] audit: type=1326 audit(1757389961.337:1395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8144 comm="syz.0.425" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  132.406621][   T40] audit: type=1326 audit(1757389961.337:1396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8144 comm="syz.0.425" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  132.419524][   T40] audit: type=1326 audit(1757389961.337:1397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8144 comm="syz.0.425" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  132.428799][   T40] audit: type=1326 audit(1757389961.337:1398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8144 comm="syz.0.425" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  132.447604][   T40] audit: type=1326 audit(1757389961.357:1399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8144 comm="syz.0.425" exe="/syz-executor" sig=0 arch=40000003 syscall=63 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  132.455295][   T40] audit: type=1326 audit(1757389961.357:1400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8144 comm="syz.0.425" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  132.466298][   T40] audit: type=1326 audit(1757389961.357:1401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8144 comm="syz.0.425" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  132.474866][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[  132.477074][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[  132.794098][ T8157] sit0: entered allmulticast mode
[  132.822726][ T8157] capability: warning: `syz.2.427' uses 32-bit capabilities (legacy support in use)
[  133.309665][ T8140] syz.3.422 (8140): drop_caches: 2
[  134.191515][ T8182] netlink: 8 bytes leftover after parsing attributes in process `syz.2.434'.
[  134.194541][ T8182] openvswitch: netlink: nsh attribute has 2338 unknown bytes.
[  134.197355][ T8182] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  134.341013][ T1142] Bluetooth: hci4: Frame reassembly failed (-84)
[  134.402420][ T8187] netlink: 8 bytes leftover after parsing attributes in process `syz.2.434'.
[  134.508055][ T6063] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  134.548288][   T61] libceph: connect (1)[c::]:6789 error -101
[  134.552153][   T61] libceph: mon0 (1)[c::]:6789 connect error
[  134.666559][ T6063] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  134.670871][ T6063] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  134.674659][ T6063] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  134.677902][ T6063] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  134.683534][ T6063] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  134.687126][ T6063] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  134.698194][ T6063] usb 6-1: config 0 descriptor??
[  134.708354][ T8192] ceph: No mds server is up or the cluster is laggy
[  135.117388][ T6063] plantronics 0003:047F:FFFF.0008: ignoring exceeding usage max
[  135.128353][ T6063] plantronics 0003:047F:FFFF.0008: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  135.277382][ T8200] mac80211_hwsim hwsim11 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  136.364367][ T5342] Bluetooth: hci4: command 0x1003 tx timeout
[  136.364523][ T5988] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  136.829932][ T8231] netlink: 8 bytes leftover after parsing attributes in process `syz.2.448'.
[  136.832613][ T8231] openvswitch: netlink: nsh attribute has 2338 unknown bytes.
[  136.835131][ T8231] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  136.904370][   T46] Bluetooth: hci4: Frame reassembly failed (-84)
[  136.980749][ T8231] netlink: 8 bytes leftover after parsing attributes in process `syz.2.448'.
[  137.191134][ T8238] binder: 8237:8238 unknown command 0
[  137.193429][ T8238] binder: 8237:8238 ioctl c0306201 80000080 returned -22
[  137.227149][    T9] usb 6-1: USB disconnect, device number 6
[  137.336680][   T46] wlan1: Trigger new scan to find an IBSS to join
[  137.404834][ T5342] Bluetooth: hci1: command 0x0405 tx timeout
[  137.423853][   T40] kauditd_printk_skb: 50 callbacks suppressed
[  137.423869][   T40] audit: type=1326 audit(1757389966.457:1452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.0.452" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  137.445459][   T40] audit: type=1326 audit(1757389966.477:1453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.0.452" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  137.453050][   T40] audit: type=1326 audit(1757389966.477:1454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.0.452" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  137.472199][   T40] audit: type=1326 audit(1757389966.477:1455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.0.452" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  137.483301][   T40] audit: type=1326 audit(1757389966.477:1456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.0.452" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  137.499390][   T40] audit: type=1326 audit(1757389966.477:1457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.0.452" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  137.508116][   T40] audit: type=1326 audit(1757389966.477:1458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.0.452" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  137.517559][   T40] audit: type=1326 audit(1757389966.477:1459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.0.452" exe="/syz-executor" sig=0 arch=40000003 syscall=63 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  137.526533][   T40] audit: type=1326 audit(1757389966.477:1460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.0.452" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  137.554374][   T40] audit: type=1326 audit(1757389966.477:1461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.0.452" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  138.298520][ T8256] netlink: 4 bytes leftover after parsing attributes in process `syz.3.457'.
[  138.301510][ T8256] netlink: 'syz.3.457': attribute type 3 has an invalid length.
[  138.924369][ T5988] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  138.925555][   T63] Bluetooth: hci4: command 0x1003 tx timeout
[  139.295573][ T8274] syzkaller0: entered promiscuous mode
[  139.297772][ T8274] syzkaller0: entered allmulticast mode
[  139.664369][  T840] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  139.835631][  T840] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  139.838175][  T840] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  139.841339][  T840] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  139.844320][  T840] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  139.847631][  T840] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  139.852021][  T840] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  139.854915][  T840] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  139.857400][  T840] usb 6-1: Product: syz
[  139.858696][  T840] usb 6-1: Manufacturer: syz
[  139.863054][  T840] cdc_wdm 6-1:1.0: skipping garbage
[  139.865159][  T840] cdc_wdm 6-1:1.0: skipping garbage
[  139.869016][  T840] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  139.874291][  T840] cdc_wdm 6-1:1.0: Unknown control protocol
[  140.444479][   T46] wlan1: Trigger new scan to find an IBSS to join
[  140.568971][   T59] usb 6-1: USB disconnect, device number 7
[  140.632057][ T8297] netlink: 12 bytes leftover after parsing attributes in process `syz.0.470'.
[  140.635758][ T8297] netlink: 12 bytes leftover after parsing attributes in process `syz.0.470'.
[  140.745091][ T8305] syzkaller0: entered promiscuous mode
[  140.747448][ T8305] syzkaller0: entered allmulticast mode
[  140.992924][ T8312] netlink: 8 bytes leftover after parsing attributes in process `syz.0.475'.
[  140.997864][ T8312] openvswitch: netlink: nsh attribute has 263 unknown bytes.
[  141.002813][ T8312] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  141.165222][ T8312] netlink: 8 bytes leftover after parsing attributes in process `syz.0.475'.
[  141.675822][ T8323] overlayfs: maximum fs stacking depth exceeded
[  142.057953][ T8330] overlayfs: unescaped trailing colons in lowerdir mount option.
[  142.552869][ T8340] netlink: 4 bytes leftover after parsing attributes in process `syz.1.485'.
[  142.684663][ T8346] binder: 8345:8346 ioctl c0046209 0 returned -22
[  143.164413][ T5988] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  143.492540][   T40] kauditd_printk_skb: 34 callbacks suppressed
[  143.492551][   T40] audit: type=1326 audit(1757389972.527:1496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8358 comm="syz.0.490" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  143.501914][   T40] audit: type=1326 audit(1757389972.527:1497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8358 comm="syz.0.490" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  143.510497][   T40] audit: type=1326 audit(1757389972.537:1498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8358 comm="syz.0.490" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  143.517751][   T40] audit: type=1326 audit(1757389972.537:1499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8358 comm="syz.0.490" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  143.525275][   T40] audit: type=1326 audit(1757389972.537:1500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8358 comm="syz.0.490" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  143.532144][   T40] audit: type=1326 audit(1757389972.537:1501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8358 comm="syz.0.490" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  143.546341][   T40] audit: type=1326 audit(1757389972.537:1502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8358 comm="syz.0.490" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  143.557464][   T40] audit: type=1326 audit(1757389972.537:1503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8358 comm="syz.0.490" exe="/syz-executor" sig=0 arch=40000003 syscall=63 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  143.567090][   T40] audit: type=1326 audit(1757389972.537:1504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8358 comm="syz.0.490" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  143.573930][   T40] audit: type=1326 audit(1757389972.537:1505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8358 comm="syz.0.490" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  144.444488][   T13] wlan1: Trigger new scan to find an IBSS to join
[  144.808364][ T8377] openvswitch: netlink: Missing valid actions attribute.
[  144.811492][ T8377] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  144.977658][   T13] Bluetooth: Error in BCSP hdr checksum
[  145.171170][ T8387] netlink: 8 bytes leftover after parsing attributes in process `syz.2.498'.
[  145.174324][ T8387] openvswitch: netlink: nsh attribute has 263 unknown bytes.
[  145.176989][ T8387] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  145.247217][ T1142] Bluetooth: hci5: Frame reassembly failed (-84)
[  145.264815][ T1142] Bluetooth: Error in BCSP hdr checksum
[  145.310651][ T8387] netlink: 8 bytes leftover after parsing attributes in process `syz.2.498'.
[  145.351055][ T1142] wlan1: Creating new IBSS network, BSSID 3a:54:e1:35:4a:12
[  146.604470][ T5342] Bluetooth: hci4: command 0x1003 tx timeout
[  146.604503][ T5988] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  147.324404][   T63] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  147.324464][ T5988] Bluetooth: hci5: command 0x1003 tx timeout
[  147.470446][ T8391] veth0: entered promiscuous mode
[  147.477991][ T8391] veth0: left promiscuous mode
[  147.528554][ T8392] netlink: 4 bytes leftover after parsing attributes in process `syz.2.499'.
[  147.842743][   T63] Bluetooth: hci1: unexpected event for opcode 0x0c23
[  148.247407][ T8425] netlink: 8 bytes leftover after parsing attributes in process `syz.2.507'.
[  148.250440][ T8425] openvswitch: netlink: nsh attribute has 263 unknown bytes.
[  148.252845][ T8425] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  148.256309][   T53] usb 6-1: new full-speed USB device number 8 using dummy_hcd
[  148.349704][ T5988] Bluetooth: hci4: sending frame failed (-49)
[  148.352686][   T63] Bluetooth: hci4: Opcode 0x1003 failed: -49
[  148.389626][ T8425] netlink: 8 bytes leftover after parsing attributes in process `syz.2.507'.
[  148.407059][   T53] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  148.409892][   T53] usb 6-1: config 1 has an invalid descriptor of length 48, skipping remainder of the config
[  148.414060][   T53] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  148.417457][   T53] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 12336, setting to 64
[  148.427517][   T53] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  148.430610][   T53] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  148.433829][   T53] usb 6-1: Product: syz
[  148.444359][   T53] usb 6-1: Manufacturer: syz
[  148.458729][   T53] cdc_wdm 6-1:1.0: skipping garbage
[  148.460973][   T53] cdc_wdm 6-1:1.0: skipping garbage
[  148.469556][   T53] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  148.472080][   T53] cdc_wdm 6-1:1.0: Unknown control protocol
[  148.701327][ T6019] usb 6-1: USB disconnect, device number 8
[  148.999312][ T8435] overlayfs: failed to resolve './file1': -2
[  149.013348][ T8436] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(12)
[  149.015980][ T8436] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  149.019449][ T8436] vhci_hcd vhci_hcd.0: Device attached
[  149.146842][ T8436] Device name cannot be null; rc = [-22]
[  149.384298][  T843] usb 37-1: new low-speed USB device number 2 using vhci_hcd
[  149.513077][ T8455] netlink: 8 bytes leftover after parsing attributes in process `syz.2.515'.
[  149.516250][ T8455] openvswitch: netlink: nsh attribute has 2338 unknown bytes.
[  149.518627][ T8455] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  149.579833][ T8438] vhci_hcd: connection reset by peer
[  149.581834][ T1142] vhci_hcd: stop threads
[  149.583245][ T1142] vhci_hcd: release socket
[  149.591195][ T1142] vhci_hcd: disconnect device
[  149.609169][ T1142] Bluetooth: hci4: Frame reassembly failed (-84)
[  149.714549][ T8455] netlink: 8 bytes leftover after parsing attributes in process `syz.2.515'.
[  150.161614][   T40] kauditd_printk_skb: 12 callbacks suppressed
[  150.161629][   T40] audit: type=1326 audit(1757389979.197:1518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8459 comm="syz.0.516" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f93579 code=0x0
[  150.309726][ T8466] kvm: pic: non byte read
[  150.576894][ T8469] netlink: 8 bytes leftover after parsing attributes in process `syz.3.519'.
[  150.580405][ T8469] openvswitch: netlink: nsh attribute has 263 unknown bytes.
[  150.582832][ T8469] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  150.677938][   T91] Bluetooth: hci5: Frame reassembly failed (-84)
[  150.680047][   T91] Bluetooth: hci5: Frame reassembly failed (-84)
[  150.742577][ T8469] netlink: 8 bytes leftover after parsing attributes in process `syz.3.519'.
[  151.021397][ T8475] netlink: 'syz.0.521': attribute type 2 has an invalid length.
[  151.644396][   T63] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  151.644598][ T5342] Bluetooth: hci4: command 0x1003 tx timeout
[  152.033019][ T8490] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  152.038839][ T8490] tipc: Resetting bearer <eth:syzkaller0>
[  152.047342][ T8489] tipc: Disabling bearer <eth:syzkaller0>
[  152.184321][    T9] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  152.313931][   T40] audit: type=1326 audit(1757389981.347:1519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8493 comm="syz.1.528" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x7ffc0000
[  152.324488][   T40] audit: type=1326 audit(1757389981.347:1520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8493 comm="syz.1.528" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x7ffc0000
[  152.331331][   T40] audit: type=1326 audit(1757389981.357:1521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8493 comm="syz.1.528" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7f61579 code=0x7ffc0000
[  152.334434][    T9] usb 7-1: Using ep0 maxpacket: 8
[  152.339651][   T40] audit: type=1326 audit(1757389981.357:1522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8493 comm="syz.1.528" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x7ffc0000
[  152.343846][    T9] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  152.350363][   T40] audit: type=1326 audit(1757389981.357:1523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8493 comm="syz.1.528" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x7ffc0000
[  152.354034][    T9] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  152.362541][   T40] audit: type=1326 audit(1757389981.357:1524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8493 comm="syz.1.528" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f61579 code=0x7ffc0000
[  152.366193][    T9] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  152.366218][    T9] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  152.366257][    T9] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  152.377046][   T40] audit: type=1326 audit(1757389981.357:1525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8493 comm="syz.1.528" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x7ffc0000
[  152.378562][    T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  152.384579][   T40] audit: type=1326 audit(1757389981.357:1526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8493 comm="syz.1.528" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x7ffc0000
[  152.407959][   T40] audit: type=1326 audit(1757389981.357:1527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8493 comm="syz.1.528" exe="/syz-executor" sig=0 arch=40000003 syscall=63 compat=1 ip=0xf7f61579 code=0x7ffc0000
[  152.592263][    T9] usb 7-1: usb_control_msg returned -71
[  152.594099][    T9] usbtmc 7-1:16.0: can't read capabilities
[  152.600931][    T9] usb 7-1: USB disconnect, device number 4
[  152.684309][   T63] Bluetooth: hci5: command 0x1003 tx timeout
[  152.686525][ T5988] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  153.016186][ T8501] netlink: 8 bytes leftover after parsing attributes in process `syz.3.529'.
[  153.070165][ T8501] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  153.358516][ T8509] pim6reg: entered allmulticast mode
[  153.673549][ T8515] bond0: (slave wlan1): Releasing backup interface
[  153.823154][ T8517] af_packet: tpacket_rcv: packet too big, clamped from 32 to 4294967272. macoff=96
[  153.885428][ T8517] netlink: 4 bytes leftover after parsing attributes in process `syz.3.534'.
[  153.923001][ T8520] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  153.928726][ T8520] tipc: Resetting bearer <eth:syzkaller0>
[  153.938410][ T8519] tipc: Disabling bearer <eth:syzkaller0>
[  154.033524][ T8525] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  154.040637][ T8525] CIFS: Unable to determine destination address
[  154.047210][ T8503] pim6reg: left allmulticast mode
[  154.061510][ T8526] netlink: 4 bytes leftover after parsing attributes in process `syz.1.536'.
[  154.294474][ T6063] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  154.445292][ T6063] usb 8-1: Using ep0 maxpacket: 8
[  154.473031][ T6063] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  154.482104][ T6063] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  154.493072][ T6063] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  154.519607][  T843] vhci_hcd: vhci_device speed not set
[  154.532062][ T6063] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  154.552466][ T6063] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  154.560257][ T6063] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  154.784325][   T24] usb 6-1: new full-speed USB device number 9 using dummy_hcd
[  154.824057][ T6063] usb 8-1: GET_CAPABILITIES returned 0
[  154.826062][ T6063] usbtmc 8-1:16.0: can't read capabilities
[  154.946124][   T24] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  154.949508][   T24] usb 6-1: config 1 has an invalid descriptor of length 48, skipping remainder of the config
[  154.953202][   T24] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  154.956638][   T24] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 12336, setting to 64
[  154.975710][   T24] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  154.978423][   T24] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  154.980770][   T24] usb 6-1: Product: syz
[  154.984331][   T24] usb 6-1: Manufacturer: syz
[  154.995540][   T24] cdc_wdm 6-1:1.0: skipping garbage
[  155.002439][   T24] cdc_wdm 6-1:1.0: skipping garbage
[  155.013373][   T24] cdc_wdm 6-1:1.0: cdc-wdm1: USB WDM device
[  155.015785][   T24] cdc_wdm 6-1:1.0: Unknown control protocol
[  155.182728][ T8550] netlink: 8 bytes leftover after parsing attributes in process `syz.0.542'.
[  155.187030][ T8550] openvswitch: netlink: nsh attribute has 263 unknown bytes.
[  155.189565][ T8550] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  155.267363][ T6728] usb 6-1: USB disconnect, device number 9
[  155.405877][ T8550] netlink: 8 bytes leftover after parsing attributes in process `syz.0.542'.
[  155.484988][ T8554] usbtmc 8-1:16.0: send_request_dev_dep_msg_in returned -90
[  155.824395][  T843] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  155.984261][  T843] usb 5-1: Using ep0 maxpacket: 8
[  155.988320][  T843] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  155.991137][  T843] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  155.994551][  T843] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  155.997568][  T843] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  156.000547][  T843] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  156.004806][  T843] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  156.007635][  T843] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  156.304996][    T9] IPVS: starting estimator thread 0...
[  156.394380][ T8564] IPVS: using max 44 ests per chain, 105600 per kthread
[  157.048800][   T24] usb 8-1: USB disconnect, device number 7
[  157.139219][ T8573] netlink: 4 bytes leftover after parsing attributes in process `syz.3.548'.
[  157.400521][ T8585] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  157.405970][ T8585] tipc: Resetting bearer <eth:syzkaller0>
[  157.816893][ T8584] tipc: Disabling bearer <eth:syzkaller0>
[  158.307748][ T8592] Invalid source name
[  158.476086][ T8597] netlink: 4 bytes leftover after parsing attributes in process `syz.1.557'.
[  158.490463][   T40] kauditd_printk_skb: 25 callbacks suppressed
[  158.490474][   T40] audit: type=1326 audit(1757389987.527:1553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8582 comm="syz.2.552" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  158.504111][   T40] audit: type=1326 audit(1757389987.537:1554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8582 comm="syz.2.552" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf702e579 code=0x7ffc0000
[  158.511049][   T40] audit: type=1326 audit(1757389987.537:1555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8582 comm="syz.2.552" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  158.517710][   T40] audit: type=1326 audit(1757389987.537:1556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8582 comm="syz.2.552" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  158.524348][   T40] audit: type=1326 audit(1757389987.537:1557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8582 comm="syz.2.552" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf702e579 code=0x7ffc0000
[  158.530949][   T40] audit: type=1326 audit(1757389987.537:1558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8582 comm="syz.2.552" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  158.552046][  T843] usb 5-1: usb_control_msg returned -71
[  158.553812][  T843] usbtmc 5-1:16.0: can't read capabilities
[  158.570887][   T40] audit: type=1326 audit(1757389987.537:1559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8582 comm="syz.2.552" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  158.582125][   T40] audit: type=1326 audit(1757389987.537:1560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8582 comm="syz.2.552" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf702e579 code=0x7ffc0000
[  158.589846][   T40] audit: type=1326 audit(1757389987.537:1561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8582 comm="syz.2.552" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  158.602527][   T40] audit: type=1326 audit(1757389987.537:1562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8582 comm="syz.2.552" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf702e579 code=0x7ffc0000
[  158.644621][ T8610] netlink: 8 bytes leftover after parsing attributes in process `syz.3.556'.
[  158.648768][ T8610] openvswitch: netlink: nsh attribute has 2338 unknown bytes.
[  158.651302][ T8610] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  158.659918][ T8611] FAULT_INJECTION: forcing a failure.
[  158.659918][ T8611] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  158.664830][ T8611] CPU: 1 UID: 0 PID: 8611 Comm: syz.0.559 Not tainted syzkaller #0 PREEMPT(full) 
[  158.664861][ T8611] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  158.664868][ T8611] Call Trace:
[  158.664872][ T8611]  <TASK>
[  158.664876][ T8611]  dump_stack_lvl+0x16c/0x1f0
[  158.664896][ T8611]  should_fail_ex+0x512/0x640
[  158.664918][ T8611]  _copy_from_user+0x2e/0xd0
[  158.664936][ T8611]  get_compat_msghdr+0xa7/0x170
[  158.664959][ T8611]  ? __pfx_get_compat_msghdr+0x10/0x10
[  158.664980][ T8611]  ? __lock_acquire+0xb97/0x1ce0
[  158.665000][ T8611]  ? rcu_is_watching+0x12/0xc0
[  158.665017][ T8611]  ___sys_sendmsg+0x1ae/0x1d0
[  158.665043][ T8611]  ? __pfx____sys_sendmsg+0x10/0x10
[  158.665082][ T8611]  ? find_held_lock+0x2b/0x80
[  158.665113][ T8611]  __sys_sendmsg+0x16d/0x220
[  158.665138][ T8611]  ? __pfx___sys_sendmsg+0x10/0x10
[  158.665172][ T8611]  ? rcu_is_watching+0x12/0xc0
[  158.665190][ T8611]  __do_fast_syscall_32+0x7c/0x3a0
[  158.665217][ T8611]  do_fast_syscall_32+0x32/0x80
[  158.665242][ T8611]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  158.665262][ T8611] RIP: 0023:0xf7f93579
[  158.665275][ T8611] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  158.665290][ T8611] RSP: 002b:00000000f548555c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  158.665306][ T8611] RAX: ffffffffffffffda RBX: 000000000000000d RCX: 0000000080000040
[  158.665316][ T8611] RDX: 000000000000c010 RSI: 0000000000000000 RDI: 0000000000000000
[  158.665325][ T8611] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  158.665334][ T8611] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  158.665344][ T8611] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  158.665364][ T8611]  </TASK>
[  158.881852][   T63] Bluetooth: hci5: sending frame failed (-49)
[  158.885985][ T5988] Bluetooth: hci5: Opcode 0x1003 failed: -49
[  158.894771][  T843] usb 5-1: USB disconnect, device number 7
[  159.141362][ T8621] netlink: 8 bytes leftover after parsing attributes in process `syz.1.561'.
[  159.144679][ T8621] openvswitch: netlink: nsh attribute has 2338 unknown bytes.
[  159.147263][ T8621] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  159.684061][ T8625] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  160.406526][ T8632] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  160.784159][ T8628] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  160.787753][ T8628] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  160.795502][ T8628] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  160.799575][ T8628] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  160.801606][ T8628] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  160.805172][ T8628] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  160.807858][ T8628] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  160.809900][ T8628] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  160.812858][ T8628] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  160.816771][ T8628] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  160.819205][ T8628] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  160.821110][ T8628] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  160.823504][ T8628] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  160.896775][ T8640] netlink: 4 bytes leftover after parsing attributes in process `syz.3.566'.
[  161.014924][ T5988] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  161.244412][ T5342] Bluetooth: hci5: command 0x1003 tx timeout
[  161.244617][   T63] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  161.336951][ T8651] netlink: 'syz.0.570': attribute type 5 has an invalid length.
[  161.339459][ T8651] netlink: 20 bytes leftover after parsing attributes in process `syz.0.570'.
[  161.406253][ T8657] netlink: 12 bytes leftover after parsing attributes in process `syz.0.572'.
[  162.016041][ T8668] netlink: 4 bytes leftover after parsing attributes in process `syz.3.575'.
[  162.030674][ T8671] netlink: 56 bytes leftover after parsing attributes in process `syz.2.576'.
[  162.044308][ T5342] Bluetooth: hci0: command 0x0c1a tx timeout
[  162.062739][ T8675] netlink: 12 bytes leftover after parsing attributes in process `syz.2.578'.
[  162.661187][ T8686] netlink: 8 bytes leftover after parsing attributes in process `syz.1.580'.
[  162.854391][ T5342] Bluetooth: hci1: command 0x0405 tx timeout
[  162.854463][ T5988] Bluetooth: hci3: command 0x0c1a tx timeout
[  162.854479][ T5980] Bluetooth: hci2: command 0x0c1a tx timeout
[  163.022328][ T8689] FAULT_INJECTION: forcing a failure.
[  163.022328][ T8689] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  163.027858][ T8689] CPU: 3 UID: 0 PID: 8689 Comm: syz.3.581 Not tainted syzkaller #0 PREEMPT(full) 
[  163.027883][ T8689] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  163.027894][ T8689] Call Trace:
[  163.027901][ T8689]  <TASK>
[  163.027908][ T8689]  dump_stack_lvl+0x16c/0x1f0
[  163.027938][ T8689]  should_fail_ex+0x512/0x640
[  163.027969][ T8689]  copy_fpstate_to_sigframe+0x854/0xaf0
[  163.027995][ T8689]  ? do_raw_spin_lock+0x12c/0x2b0
[  163.028025][ T8689]  ? __pfx_copy_fpstate_to_sigframe+0x10/0x10
[  163.028062][ T8689]  ? x86_task_fpu+0x5f/0x90
[  163.028086][ T8689]  get_sigframe+0x4a8/0x9c0
[  163.028112][ T8689]  ? __pfx_get_sigframe+0x10/0x10
[  163.028132][ T8689]  ? trace_irq_enable.constprop.0+0x2f/0x120
[  163.028161][ T8689]  ? _raw_spin_unlock_irq+0x29/0x50
[  163.028183][ T8689]  ? siginfo_layout+0x177/0x290
[  163.028206][ T8689]  ia32_setup_frame+0xe2/0xa50
[  163.028239][ T8689]  ? __pfx_ia32_setup_frame+0x10/0x10
[  163.028273][ T8689]  arch_do_signal_or_restart+0x59c/0x790
[  163.028295][ T8689]  ? __fget_files+0x20e/0x3c0
[  163.028313][ T8689]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  163.028342][ T8689]  ? ksys_write+0x1ac/0x250
[  163.028362][ T8689]  ? __pfx_ksys_write+0x10/0x10
[  163.028386][ T8689]  exit_to_user_mode_loop+0x84/0x110
[  163.028413][ T8689]  __do_fast_syscall_32+0x2ac/0x3a0
[  163.028442][ T8689]  do_fast_syscall_32+0x32/0x80
[  163.028467][ T8689]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  163.028487][ T8689] RIP: 0023:0xf701e579
[  163.028500][ T8689] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  163.028517][ T8689] RSP: 002b:00000000f540e590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  163.028534][ T8689] RAX: 0000000000000001 RBX: 0000000000000003 RCX: 00000000f540e610
[  163.028544][ T8689] RDX: 0000000000000001 RSI: 00000000f7394ff4 RDI: 0000000000000000
[  163.028554][ T8689] RBP: 00000000f73c4f80 R08: 0000000000000000 R09: 0000000000000000
[  163.028564][ T8689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  163.028574][ T8689] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  163.028595][ T8689]  </TASK>
[  163.219783][ T8692] IPVS: set_ctl: invalid protocol: 50 255.255.255.255:20002
[  163.547399][ T8705] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  163.550122][ T8705] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  163.553609][ T8705] vhci_hcd vhci_hcd.0: Device attached
[  163.626609][ T8706] vhci_hcd: connection closed
[  163.627069][   T13] vhci_hcd: stop threads
[  163.630038][   T13] vhci_hcd: release socket
[  163.631567][   T13] vhci_hcd: disconnect device
[  163.744309][  T843] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  163.898868][  T843] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  163.903702][  T843] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  163.908742][  T843] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  163.912726][  T843] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  163.918603][  T843] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  163.922348][  T843] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  163.928643][  T843] usb 5-1: config 0 descriptor??
[  164.124384][   T63] Bluetooth: hci0: command 0x0c1a tx timeout
[  164.208389][ T8710] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1946294017 (31140704272 ns) > initial count (4518400576 ns). Using initial count to start timer.
[  164.336360][  T843] plantronics 0003:047F:FFFF.0009: ignoring exceeding usage max
[  164.346042][  T843] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  164.454529][    T9] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  164.604380][    T9] usb 8-1: Using ep0 maxpacket: 32
[  164.610018][    T9] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[  164.613463][    T9] usb 8-1: config 0 has no interface number 0
[  164.621249][    T9] usb 8-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[  164.627395][    T9] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  164.630926][    T9] usb 8-1: Product: syz
[  164.632785][    T9] usb 8-1: Manufacturer: syz
[  164.640005][    T9] usb 8-1: SerialNumber: syz
[  164.652268][    T9] usb 8-1: config 0 descriptor??
[  164.665668][    T9] usb 8-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[  164.668511][    T9] usb 8-1: selecting invalid altsetting 1
[  164.670357][    T9] usb 8-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[  164.686741][    T9] usb 8-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  164.690155][    T9] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[  164.694167][    T9] usb 8-1: media controller created
[  164.709924][    T9] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  164.924322][   T63] Bluetooth: hci1: command 0x0405 tx timeout
[  164.924382][ T5988] Bluetooth: hci2: command 0x0c1a tx timeout
[  164.934322][ T5988] Bluetooth: hci3: command 0x0c1a tx timeout
[  165.689810][ T8722] Invalid source name
[  165.804495][    T9] usb 8-1: dvb_usb_ce6230: usb_control_msg() failed=-110
[  165.808692][    T9] zl10353_read_register: readreg error (reg=127, ret==-110)
[  165.825501][ T8710] usb 8-1: dvb_usb_ce6230: usb_control_msg() failed=-32
[  165.833096][    T9] usb 8-1: USB disconnect, device number 8
[  165.984801][ T8731] __nla_validate_parse: 1 callbacks suppressed
[  165.984818][ T8731] netlink: 4 bytes leftover after parsing attributes in process `syz.2.595'.
[  166.050459][ T8737] netlink: 36 bytes leftover after parsing attributes in process `syz.1.594'.
[  166.204495][ T5988] Bluetooth: hci0: command 0x0c1a tx timeout
[  166.451805][ T8744] netlink: 8 bytes leftover after parsing attributes in process `syz.0.598'.
[  166.455710][ T8744] openvswitch: netlink: nsh attribute has 263 unknown bytes.
[  166.458073][ T8744] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  166.493540][ T6019] usb 5-1: USB disconnect, device number 8
[  166.548444][ T8747] macvlan2: entered allmulticast mode
[  166.550591][ T8747] veth1_vlan: entered allmulticast mode
[  166.564016][ T8747] veth1_vlan: left allmulticast mode
[  166.612588][   T13] Bluetooth: hci4: Frame reassembly failed (-84)
[  166.758181][ T8744] netlink: 8 bytes leftover after parsing attributes in process `syz.0.598'.
[  167.004514][ T5342] Bluetooth: hci3: command 0x0c1a tx timeout
[  167.005220][   T63] Bluetooth: hci1: command 0x0405 tx timeout
[  167.006936][ T5342] Bluetooth: hci2: command 0x0c1a tx timeout
[  167.046147][   T40] kauditd_printk_skb: 116 callbacks suppressed
[  167.046163][   T40] audit: type=1326 audit(1757389996.087:1679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8761 comm="syz.2.603" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  167.061149][   T40] audit: type=1326 audit(1757389996.097:1680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8761 comm="syz.2.603" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  167.068430][   T40] audit: type=1326 audit(1757389996.097:1681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8761 comm="syz.2.603" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf702e579 code=0x7ffc0000
[  167.075740][   T40] audit: type=1326 audit(1757389996.097:1682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8761 comm="syz.2.603" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  167.090768][   T40] audit: type=1326 audit(1757389996.097:1683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8761 comm="syz.2.603" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  167.098081][   T40] audit: type=1326 audit(1757389996.097:1684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8761 comm="syz.2.603" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf702e579 code=0x7ffc0000
[  167.105312][   T40] audit: type=1326 audit(1757389996.097:1685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8761 comm="syz.2.603" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  167.112084][   T40] audit: type=1326 audit(1757389996.097:1686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8761 comm="syz.2.603" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf702e579 code=0x7ffc0000
[  167.118950][   T40] audit: type=1326 audit(1757389996.097:1687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8761 comm="syz.2.603" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  167.125790][   T40] audit: type=1326 audit(1757389996.097:1688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8761 comm="syz.2.603" exe="/syz-executor" sig=0 arch=40000003 syscall=228 compat=1 ip=0xf702e579 code=0x7ffc0000
[  167.174277][ T8763] pim6reg: entered allmulticast mode
[  167.465726][ T8767] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  167.467818][ T8767] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  167.470831][ T8767] vhci_hcd vhci_hcd.0: Device attached
[  167.756539][  T843] usb 44-1: SetAddress Request (2) to port 0
[  167.759210][  T843] usb 44-1: new SuperSpeed USB device number 2 using vhci_hcd
[  167.822687][ T8761] pim6reg: left allmulticast mode
[  168.039690][ T8768] vhci_hcd: connection reset by peer
[  168.041642][ T1233] vhci_hcd: stop threads
[  168.043074][ T1233] vhci_hcd: release socket
[  168.044861][ T1233] vhci_hcd: disconnect device
[  168.614279][ T5988] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  168.670970][ T8781] netlink: 4 bytes leftover after parsing attributes in process `syz.3.608'.
[  168.721975][ T8784] tmpfs: Bad value for 'mpol'
[  168.822681][ T8789] binder: 8788:8789 ioctl c0306201 80000080 returned -14
[  168.939069][ T8796] netlink: 10104 bytes leftover after parsing attributes in process `syz.0.609'.
[  169.084330][ T5988] Bluetooth: hci1: command 0x0405 tx timeout
[  169.084345][ T5342] Bluetooth: hci3: command 0x0c1a tx timeout
[  169.535161][ T8803] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  169.537162][ T8803] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  169.546755][ T8803] vhci_hcd vhci_hcd.0: Device attached
[  169.836565][ T8804] vhci_hcd: connection closed
[  169.837091][   T46] vhci_hcd: stop threads
[  169.840064][   T46] vhci_hcd: release socket
[  169.841504][   T46] vhci_hcd: disconnect device
[  169.854393][ T6728] usb 40-1: enqueue for inactive port 0
[  169.884297][   T53] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  169.906978][ T8812] Invalid source name
[  170.054396][   T53] usb 5-1: Using ep0 maxpacket: 8
[  170.058233][   T53] usb 5-1: config 0 has an invalid interface number: 55 but max is 0
[  170.062029][   T53] usb 5-1: config 0 has no interface number 0
[  170.064941][   T53] usb 5-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  170.069408][   T53] usb 5-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  170.074269][   T53] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  170.077880][   T53] usb 5-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  170.082431][   T53] usb 5-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  170.086350][   T53] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  170.091251][   T53] usb 5-1: config 0 descriptor??
[  170.097298][   T53] ldusb 5-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  170.110061][ T8816] netlink: 12 bytes leftover after parsing attributes in process `syz.2.618'.
[  170.133323][ T8816] 9pnet: Could not find request transport: f
[  170.385234][ T6728] usb usb40-port1: attempt power cycle
[  170.657414][ T8832] netlink: 4 bytes leftover after parsing attributes in process `syz.3.621'.
[  170.964486][ T6728] usb usb40-port1: unable to enumerate USB device
[  170.986704][ T8842] netlink: 36 bytes leftover after parsing attributes in process `syz.3.625'.
[  171.116718][ T8845] bridge_slave_0: left allmulticast mode
[  171.118649][ T8845] bridge_slave_0: left promiscuous mode
[  171.120686][ T8845] bridge0: port 1(bridge_slave_0) entered disabled state
[  171.130097][ T8845] bridge_slave_1: left allmulticast mode
[  171.132225][ T8845] bridge_slave_1: left promiscuous mode
[  171.137029][ T8845] bridge0: port 2(bridge_slave_1) entered disabled state
[  171.216797][ T8843] netlink: 60 bytes leftover after parsing attributes in process `syz.3.625'.
[  171.220759][ T8845] bond0: (slave bond_slave_0): Releasing backup interface
[  171.251230][ T8845] bond0: (slave bond_slave_1): Releasing backup interface
[  171.288313][ T8845] team0: Port device team_slave_0 removed
[  171.308632][ T8845] team0: Port device team_slave_1 removed
[  171.313491][ T8845] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  171.317370][ T8845] batman_adv: batadv0: Removing interface: batadv_slave_0
[  171.334791][ T8845] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  171.337840][ T8845] batman_adv: batadv0: Removing interface: batadv_slave_1
[  171.383256][ T8843] netlink: 60 bytes leftover after parsing attributes in process `syz.3.625'.
[  171.461201][ T8854] PKCS8: Unsupported PKCS#8 version
[  171.502614][ T8855] blkio.reset_stats is deprecated
[  171.506620][ T8855] IPVS: set_ctl: invalid protocol: 98 172.20.20.170:20000
[  171.509276][ T8855] netlink: 'syz.1.626': attribute type 4 has an invalid length.
[  171.511678][ T8855] netlink: 17 bytes leftover after parsing attributes in process `syz.1.626'.
[  171.736433][ T6728] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  171.894341][ T6728] usb 7-1: Using ep0 maxpacket: 16
[  171.897497][ T6728] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  171.903332][ T6728] usb 7-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  171.906306][ T6728] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  171.908982][ T6728] usb 7-1: Product: syz
[  171.910293][ T6728] usb 7-1: Manufacturer: syz
[  171.911841][ T6728] usb 7-1: SerialNumber: syz
[  171.915732][ T6728] usb 7-1: config 0 descriptor??
[  171.919426][ T6728] em28xx 7-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  171.922371][ T6728] em28xx 7-1:0.0: DVB interface 0 found: bulk
[  172.271240][ T8864] netlink: 4 bytes leftover after parsing attributes in process `syz.1.631'.
[  172.309189][ T8867] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  172.528479][ T6728] em28xx 7-1:0.0: unknown em28xx chip ID (0)
[  172.758716][    T9] usb 5-1: USB disconnect, device number 9
[  172.772927][    T9] ldusb 5-1:0.55: LD USB Device #0 now disconnected
[  172.854573][  T843] usb 44-1: device descriptor read/8, error -110
[  172.939832][ T6728] em28xx 7-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  172.948755][ T6728] em28xx 7-1:0.0: board has no eeprom
[  173.245929][  T843] usb usb44-port1: attempt power cycle
[  173.531632][ T8896] netlink: 'syz.1.637': attribute type 4 has an invalid length.
[  173.814967][  T843] usb usb44-port1: unable to enumerate USB device
[  173.838045][ T8901] ==================================================================
[  173.838057][ T8901] BUG: KASAN: vmalloc-out-of-bounds in sys_imageblit+0x1a6f/0x1e60
[  173.838084][ T8901] Write of size 8 at addr ffffc90004bb9000 by task syz.0.639/8901
[  173.838099][ T8901] 
[  173.838107][ T8901] CPU: 3 UID: 0 PID: 8901 Comm: syz.0.639 Not tainted syzkaller #0 PREEMPT(full) 
[  173.838127][ T8901] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  173.838139][ T8901] Call Trace:
[  173.838144][ T8901]  <TASK>
[  173.838151][ T8901]  dump_stack_lvl+0x116/0x1f0
[  173.838178][ T8901]  print_report+0xcd/0x630
[  173.838201][ T8901]  ? __virt_addr_valid+0x81/0x610
[  173.838224][ T8901]  ? sys_imageblit+0x1a6f/0x1e60
[  173.838243][ T8901]  kasan_report+0xe0/0x110
[  173.838264][ T8901]  ? sys_imageblit+0x1a6f/0x1e60
[  173.838287][ T8901]  sys_imageblit+0x1a6f/0x1e60
[  173.838309][ T8901]  ? __pfx_sys_imageblit+0x10/0x10
[  173.838329][ T8901]  ? do_raw_spin_lock+0x12c/0x2b0
[  173.838356][ T8901]  ? find_held_lock+0x2b/0x80
[  173.838375][ T8901]  ? queue_work_on+0x12a/0x1f0
[  173.838389][ T8901]  ? lockdep_hardirqs_on+0x7c/0x110
[  173.838413][ T8901]  ? queue_work_on+0x8b/0x1f0
[  173.838428][ T8901]  drm_fbdev_shmem_defio_imageblit+0x20/0x130
[  173.838455][ T8901]  bit_putcs+0x90f/0xde0
[  173.838487][ T8901]  ? __pfx_bit_putcs+0x10/0x10
[  173.838511][ T8901]  ? __vmap_pages_range_noflush+0x1d0/0x230
[  173.838563][ T8901]  ? fb_get_color_depth+0x120/0x250
[  173.838588][ T8901]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  173.838617][ T8901]  ? __pfx_bit_putcs+0x10/0x10
[  173.838642][ T8901]  fbcon_putcs+0x384/0x4a0
[  173.838665][ T8901]  do_update_region+0x2e6/0x3f0
[  173.838686][ T8901]  invert_screen+0x1e4/0x590
[  173.838710][ T8901]  ? __pfx_invert_screen+0x10/0x10
[  173.838733][ T8901]  ? __pfx_complement_pos+0x10/0x10
[  173.838757][ T8901]  ? vc_do_resize+0x24d/0x10e0
[  173.838779][ T8901]  ? __vmalloc_node_noprof+0xad/0xf0
[  173.838795][ T8901]  clear_selection+0x59/0x70
[  173.838816][ T8901]  vc_do_resize+0xd9b/0x10e0
[  173.838843][ T8901]  ? __pfx_vc_do_resize+0x10/0x10
[  173.838870][ T8901]  fbcon_set_disp+0x7ad/0xe50
[  173.838894][ T8901]  set_con2fb_map+0x703/0x1080
[  173.838925][ T8901]  fbcon_set_con2fb_map_ioctl+0x16c/0x220
[  173.838951][ T8901]  ? __pfx_fbcon_set_con2fb_map_ioctl+0x10/0x10
[  173.838981][ T8901]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  173.839007][ T8901]  do_fb_ioctl+0x328/0x7e0
[  173.839023][ T8901]  ? __pfx_do_fb_ioctl+0x10/0x10
[  173.839039][ T8901]  ? lockdep_hardirqs_on+0x7c/0x110
[  173.839065][ T8901]  ? find_held_lock+0x2b/0x80
[  173.839093][ T8901]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  173.839126][ T8901]  fb_compat_ioctl+0x55e/0x670
[  173.839145][ T8901]  ? __pfx_fb_compat_ioctl+0x10/0x10
[  173.839162][ T8901]  ? hook_file_ioctl_common+0x145/0x410
[  173.839192][ T8901]  ? __fget_files+0x20e/0x3c0
[  173.839211][ T8901]  ? __ia32_compat_sys_openat+0xf0/0x210
[  173.839233][ T8901]  ? __pfx_fb_compat_ioctl+0x10/0x10
[  173.839252][ T8901]  __ia32_compat_sys_ioctl+0x23f/0x370
[  173.839284][ T8901]  __do_fast_syscall_32+0x7c/0x3a0
[  173.839308][ T8901]  do_fast_syscall_32+0x32/0x80
[  173.839332][ T8901]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  173.839354][ T8901] RIP: 0023:0xf7f93579
[  173.839366][ T8901] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  173.839383][ T8901] RSP: 002b:00000000f54a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  173.839401][ T8901] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000004610
[  173.839411][ T8901] RDX: 0000000080000180 RSI: 0000000000000000 RDI: 0000000000000000
[  173.839418][ T8901] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  173.839428][ T8901] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  173.839437][ T8901] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  173.839452][ T8901]  </TASK>
[  173.839457][ T8901] 
[  173.839461][ T8901] The buggy address belongs to a 0-page vmalloc region starting at 0xffffc900048b9000 allocated at drm_gem_shmem_vmap_locked+0x561/0x7e0
[  173.839496][ T8901] Memory state around the buggy address:
[  173.839505][ T8901]  ffffc90004bb8f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  173.839515][ T8901]  ffffc90004bb8f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  173.839526][ T8901] >ffffc90004bb9000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  173.839534][ T8901]                    ^
[  173.839543][ T8901]  ffffc90004bb9080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  173.839553][ T8901]  ffffc90004bb9100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  173.839561][ T8901] ==================================================================
[  173.839570][ T8901] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  173.839580][ T8901] CPU: 3 UID: 0 PID: 8901 Comm: syz.0.639 Not tainted syzkaller #0 PREEMPT(full) 
[  173.839598][ T8901] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  173.839607][ T8901] Call Trace:
[  173.839613][ T8901]  <TASK>
[  173.839619][ T8901]  dump_stack_lvl+0x3d/0x1f0
[  173.839645][ T8901]  vpanic+0x6e8/0x7a0
[  173.839665][ T8901]  ? __pfx_vpanic+0x10/0x10
[  173.839684][ T8901]  ? __pfx_vprintk_emit+0x10/0x10
[  173.839703][ T8901]  ? sys_imageblit+0x1a6f/0x1e60
[  173.839722][ T8901]  panic+0xca/0xd0
[  173.839745][ T8901]  ? __pfx_panic+0x10/0x10
[  173.839771][ T8901]  check_panic_on_warn+0xab/0xb0
[  173.839793][ T8901]  end_report+0x107/0x170
[  173.839812][ T8901]  kasan_report+0xee/0x110
[  173.839831][ T8901]  ? sys_imageblit+0x1a6f/0x1e60
[  173.839844][ T8901]  sys_imageblit+0x1a6f/0x1e60
[  173.839859][ T8901]  ? __pfx_sys_imageblit+0x10/0x10
[  173.839871][ T8901]  ? do_raw_spin_lock+0x12c/0x2b0
[  173.839888][ T8901]  ? find_held_lock+0x2b/0x80
[  173.839900][ T8901]  ? queue_work_on+0x12a/0x1f0
[  173.839916][ T8901]  ? lockdep_hardirqs_on+0x7c/0x110
[  173.839933][ T8901]  ? queue_work_on+0x8b/0x1f0
[  173.839944][ T8901]  drm_fbdev_shmem_defio_imageblit+0x20/0x130
[  173.839962][ T8901]  bit_putcs+0x90f/0xde0
[  173.839982][ T8901]  ? __pfx_bit_putcs+0x10/0x10
[  173.839999][ T8901]  ? __vmap_pages_range_noflush+0x1d0/0x230
[  173.840017][ T8901]  ? fb_get_color_depth+0x120/0x250
[  173.840032][ T8901]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  173.840050][ T8901]  ? __pfx_bit_putcs+0x10/0x10
[  173.840065][ T8901]  fbcon_putcs+0x384/0x4a0
[  173.840081][ T8901]  do_update_region+0x2e6/0x3f0
[  173.840094][ T8901]  invert_screen+0x1e4/0x590
[  173.840109][ T8901]  ? __pfx_invert_screen+0x10/0x10
[  173.840124][ T8901]  ? __pfx_complement_pos+0x10/0x10
[  173.840140][ T8901]  ? vc_do_resize+0x24d/0x10e0
[  173.840154][ T8901]  ? __vmalloc_node_noprof+0xad/0xf0
[  173.840168][ T8901]  clear_selection+0x59/0x70
[  173.840181][ T8901]  vc_do_resize+0xd9b/0x10e0
[  173.840199][ T8901]  ? __pfx_vc_do_resize+0x10/0x10
[  173.840216][ T8901]  fbcon_set_disp+0x7ad/0xe50
[  173.840231][ T8901]  set_con2fb_map+0x703/0x1080
[  173.840248][ T8901]  fbcon_set_con2fb_map_ioctl+0x16c/0x220
[  173.840265][ T8901]  ? __pfx_fbcon_set_con2fb_map_ioctl+0x10/0x10
[  173.840283][ T8901]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  173.840299][ T8901]  do_fb_ioctl+0x328/0x7e0
[  173.840310][ T8901]  ? __pfx_do_fb_ioctl+0x10/0x10
[  173.840320][ T8901]  ? lockdep_hardirqs_on+0x7c/0x110
[  173.840336][ T8901]  ? find_held_lock+0x2b/0x80
[  173.840353][ T8901]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  173.840372][ T8901]  fb_compat_ioctl+0x55e/0x670
[  173.840383][ T8901]  ? __pfx_fb_compat_ioctl+0x10/0x10
[  173.840393][ T8901]  ? hook_file_ioctl_common+0x145/0x410
[  173.840410][ T8901]  ? __fget_files+0x20e/0x3c0
[  173.840421][ T8901]  ? __ia32_compat_sys_openat+0xf0/0x210
[  173.840433][ T8901]  ? __pfx_fb_compat_ioctl+0x10/0x10
[  173.840444][ T8901]  __ia32_compat_sys_ioctl+0x23f/0x370
[  173.840462][ T8901]  __do_fast_syscall_32+0x7c/0x3a0
[  173.840480][ T8901]  do_fast_syscall_32+0x32/0x80
[  173.840496][ T8901]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  173.840510][ T8901] RIP: 0023:0xf7f93579
[  173.840518][ T8901] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  173.840529][ T8901] RSP: 002b:00000000f54a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  173.840544][ T8901] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000004610
[  173.840553][ T8901] RDX: 0000000080000180 RSI: 0000000000000000 RDI: 0000000000000000
[  173.840563][ T8901] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  173.840573][ T8901] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  173.840580][ T8901] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  173.840590][ T8901]  </TASK>
[  173.841282][ T8901] Kernel Offset: disabled

VM DIAGNOSIS:
03:53:23  Registers:
info registers vcpu 0

CPU#0
RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff81605750 RDX=ffffffff8e2977c0
RSI=ffffffff81605798 RDI=ffffffff93db4fe0 RBP=0000000000000000 RSP=ffffc90000007fd0
R8 =0000000000000001 R9 =fffffbfff27b69fc R10=ffffffff93db4fe7 R11=0000000000000000
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81605799 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880974bd000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c3a7749 CR3=0000000060bf9000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff81605750 RDX=ffff88801dea2440
RSI=ffffffff81605798 RDI=ffffffff93db4fe0 RBP=0000000000000001 RSP=ffffc90000590fd0
R8 =0000000000000001 R9 =fffffbfff27b69fc R10=ffffffff93db4fe7 R11=0000000000000000
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81605799 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880975bd000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f54a5ffc CR3=0000000060bf9000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff81605750 RDX=ffff88801dea4880
RSI=ffffffff81605798 RDI=ffffffff93db4fe0 RBP=0000000000000002 RSP=ffffc90000538fd0
R8 =0000000000000001 R9 =fffffbfff27b69fc R10=ffffffff93db4fe7 R11=0000000000000000
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81605799 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880976bd000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000005820f4c0 CR3=0000000069aab000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fefff800 Opmask01=000000000000007f Opmask02=00000000fffeff7f Opmask03=0000000000000000
Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055aaec838e70 000055aaec838e70
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055aaec817b08
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff01bff1b20
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff01bff1b20
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ffffffff ffffff00ffffff00
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 49074c440a48495e 175349432a5e444f
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5c4f5f0504040519 694645585e444549
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f4a414d003d454d 414e564544003d58 45444e494649003d 4550595456454400
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f4a414d0018454d 414e564544001858 45444e4946490018 4550595456454400
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7361647c2a737369 63637c2a65686361 63627c2a6476787c 2a64767c2a64737c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055aaec8168e0 000055aaec7f9a70 000055aaec8038d0 000055aaec808f60
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055aaec800aa0 000055aaec8150c0 000055aaec815040 000055aaec8087f0
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055aaec816a00 000055aaec816980 000055aaec800c20 000055aaec802040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055aaec811c20 000055aaec811ba0 000055aaec8009c0 000055aaec8121e0
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7265747369676572 6e755f7665647465 6e2e65726f632e74 656e2e6c74637379
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8561a2b5 RDI=ffffffff9b0ff700 RBP=ffffffff9b0ff6c0 RSP=ffffc90004d76e30
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000030393854
R12=0000000000000000 R13=0000000000000030 R14=ffffffff9b0ff6c0 R15=ffffffff8561a250
RIP=ffffffff8561a2df RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880977bd000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c47cf0c CR3=0000000020b3e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000