last executing test programs:

2.649802097s ago: executing program 3 (id=323):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000006000000000000008965546a0de8f5f5f9d5750bea6fd71cf8a228a3a4cfb20df7cf23c90d26d064f3f883eb2ae0de4cbad2645e2fe8eb7b1004ad1dc1dce73d55e8a104c5feed3605d5d8c37bc5589969289ed3fb09f0593b90b4ac1204a7c015e2b7c8a2e78922d50120f10019271bd2c491d41043ded75d8edab1b8e0ecce1fbe0ef2fabd2932993f23f8b65f4f78d7018521d17004264b40b691fefe88c66c8c295f9b646abdc93e2c6c2148e8daa2b0bb1ea2a6de22ac7da8ffb1c7bfb1a43542b9e14ae9fce0132bc0bb71593ed305945a4c"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000000100))
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r4 = dup3(r3, r2, 0x0)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r5, 0x0)
r6 = socket(0x10, 0x3, 0x0)
r7 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000004640)={&(0x7f0000000800)=@newqdisc={0x148, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_red={{0x8}, {0x11c, 0x2, [@TCA_RED_PARMS={0x14, 0x1, {0x0, 0x0, 0xfffffeff, 0x0, 0x0, 0x20}}, @TCA_RED_STAB={0x104, 0x2, "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"}]}}]}, 0x148}}, 0x4008010)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r5, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
r9 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r11 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.self_freezing\x00', 0x275a, 0x0)
write$binfmt_script(r11, &(0x7f0000000080), 0x208e24b)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='block_plug\x00', r10}, 0x10)
r12 = syz_open_dev$loop(&(0x7f0000000040), 0x0, 0x0)
ioctl$LOOP_CONFIGURE(r12, 0x4c0a, &(0x7f00000002c0)={r11, 0x0, {0x2a00, 0x80010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c, "1271a2ab78fce00d9683dda1af1ea89d62b7080a01000000000300008a0300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00", [0xfffffffffffffffc]}})
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000580)="b3185d7bb56f70f003360fa8bf71ac3086aedebf6fff904f92849a7a07395ee7f0e4cb1d78001c08a0ab73ffcf5ad07693727980eea946e6cba1723e81bfa5c3688803c8a124dcb27df7938e7ddfdd52"})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000004a40)={0x4c, 0x0, &(0x7f0000000440)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40}], 0x0, 0x0, 0x0})
r13 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000010000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r13}, 0xc)
syz_emit_ethernet(0x5a, &(0x7f00000000c0)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2b}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x4c, 0x4, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010104, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0xe, 0x0, 0x5, 0x0, 0x0, {[@md5sig={0x1d, 0x12, "910000000000006f00"}, @md5sig={0x13, 0x12, "047362d4843af5cce037a189c9077f3f"}]}}}}}}}, 0x0)

2.445776352s ago: executing program 3 (id=326):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0x0, [{}, {}, {}, {0x1}, {}, {0xfffffffa, 0x6}], 0x0, 0x0, 0x0, 0x0, 0x1}}) (async)
ioctl$BTRFS_IOC_RM_DEV(r0, 0x5000940b, &(0x7f0000001280)={{r0}, "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"}) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) (async)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) (async)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) (async)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="18", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x70, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
sched_setscheduler(0x0, 0x0, 0x0) (async)
getpid()
sched_setscheduler(0x0, 0x0, &(0x7f0000000200))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="1800000025000100000000000000000003"], 0x18}], 0x1, 0x0, 0x0, 0x801}, 0x0) (async, rerun: 64)
ioctl$TIOCL_BLANKSCREEN(r3, 0x5609, &(0x7f0000000000)) (async, rerun: 64)
socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r5, 0x11b, 0x3, &(0x7f0000000140)=0x100000, 0x4) (async)
getsockopt$XDP_STATISTICS(r5, 0x11b, 0x8, &(0x7f00000000c0), &(0x7f0000000100)=0x30) (async, rerun: 64)
ioctl$TIOCMBIC(r3, 0x5417, &(0x7f0000000400)=0x3) (async, rerun: 64)
socket$kcm(0x10, 0x2, 0x4) (async)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
sendto$inet(r6, 0x0, 0x0, 0x200007ff, &(0x7f0000000000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x3c}}, 0x10) (async)
sendmsg$inet(r2, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x800)

2.199481137s ago: executing program 0 (id=328):
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x148001, 0x0)
r1 = inotify_init1(0x80000)
fcntl$setown(r1, 0x8, 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
openat$dir(0xffffffffffffff9c, 0x0, 0x8000, 0x4)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x6c9c, &(0x7f0000000300)={0x0, 0xdf5b, 0xf0b649c9ca7d5112, 0x1, 0xfffffffd}, &(0x7f0000000180), 0x0)
mount$fuse(0x0, 0x0, &(0x7f0000002100), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mountinfo\x00')
sendfile(r4, r5, 0x0, 0x100800001)
mount$binder(0x0, &(0x7f0000000080)='./cgroup\x00', &(0x7f0000000100), 0x800, &(0x7f0000000380)=ANY=[@ANYBLOB="6d61783d3030304a303030303038303030303030303030332c73746174733d676c6f62616c2c73746174733d676c6f62616c2c73746174733d676c6f62616c2c73746174733d676c6f62616c2c736d61636b6673726f6f743d2f70726f632f340da034b19177a76e73002c726f6f74636f6e746578743d726f6f742c666f776e65723e", @ANYRESDEC=0xee01, @ANYBLOB=',rootcontext=staff_u,pcr=00000000000000000038,subj_role=,obj_type=,seclabel,dont_measure,dont_measure,\x00'])
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x3, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="180700000000000000000000000007009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x10000, @void, @value}, 0x94)
ioctl$TIOCMBIS(0xffffffffffffffff, 0x541e, &(0x7f0000000040))
bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0)
r6 = socket$kcm(0x2, 0x200000000000001, 0x106)
setsockopt$sock_attach_bpf(r6, 0x1, 0x7, &(0x7f0000000340), 0x4)
sendmsg$inet(r6, &(0x7f0000000080)={&(0x7f0000000000)={0x2, 0x4001, @local}, 0x10, 0x0}, 0x30004001)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0)
r8 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000300)='/proc/sys/vm/compact_memory\x00', 0x1, 0x0)
sendfile(r8, r7, 0x0, 0x23d)
unshare(0x22020600)
openat$sequencer(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
mknod(&(0x7f0000000540)='./file1\x00', 0x40, 0xb)
getsockopt$inet6_tcp_int(r0, 0x6, 0x22, &(0x7f0000000100), &(0x7f0000000280)=0x4)

1.899685899s ago: executing program 1 (id=332):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
keyctl$instantiate(0xc, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$inet6(0xa, 0x3, 0xff)
sendto$l2tp6(r1, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local}, 0x20)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'lo\x00'})
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r3, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local, @local}, 0xc)
syz_emit_ethernet(0x0, 0x0, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000001800)=ANY=[@ANYBLOB="0180c200000050a245d5cde0080045000028000000000002907800002000ffffffff12009078e000000200"/54], 0x0)
gettid()
timer_create(0x0, 0x0, &(0x7f0000bbdffc)=<r4=>0x0)
r5 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
write$UHID_INPUT(r5, &(0x7f0000001140)={0x8, {"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", 0x1000}}, 0x1006)
clock_gettime(0x0, &(0x7f0000000000)={<r6=>0x0, <r7=>0x0})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r8 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_MP_STATE(r8, 0x4004ae99, &(0x7f0000000280)=0x3)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000440)=ANY=[@ANYBLOB="5800000002060102000000000000000006000002050005000200000005000400000000000900020073797a30000000000c000780080012400000000014000300686173683a69702c706f72742c6970000500010600000000"], 0x58}}, 0x8000)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
io_uring_setup(0x5b82, &(0x7f0000000300)={0x0, 0xaa51, 0x4, 0x0, 0x18, 0x0, r5})
timer_settime(r4, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {r6, r7+60000000}}, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
r10 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r10, 0x29, 0x20, &(0x7f0000001380)={@private1, 0x1000000, 0x2, 0x1, 0x9, 0xfffd, 0x1}, 0x20)

1.604392521s ago: executing program 3 (id=333):
openat$autofs(0xffffff9c, &(0x7f0000000000), 0x200142, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
socket$netlink(0x10, 0x3, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000140)={'wlan1\x00'})
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000740)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0500000000000000000044000000080003005135aea60b913c9d1ef638bb795b1403252a7ca92a94c988badb90619bdf7076fc21503941e09f4fda84282fdc67b03af9ddcafee7a8eab1d5983c3e4ea39145a5ca5287c13e777f124a8899145597c12eeda43e45756b410df1df60a387a9dfdcaec9f004288c32f6ebf9e61c82556fb560a5eb44d773b67ebb2ab80c738d6158c96f9bc4358296021b85299d2568d279f5ef556ce0b0e0792c4702de753dbd8853d3e94ea85352b8e8d6f3", @ANYRESOCT=r0], 0x34}}, 0x800)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x14}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x6c, 0x6, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x44, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_LIMIT_RATE={0xc}, @NFTA_LIMIT_UNIT={0xc}]}}}, {0x14, 0x1, 0x0, 0x1, @lookup={{0xb}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xd4}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x4b0}}, 0x0)
r4 = dup(r0)
write$binfmt_misc(r4, 0x0, 0x0)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = socket$inet6(0xa, 0x806, 0x0)
bind$inet6(r5, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c)
listen(r5, 0x3)
r6 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r6, &(0x7f0000772000)={0x2, 0x4e23}, 0x10)
r7 = accept4(r5, 0x0, 0x0, 0x0)
recvmmsg(r6, &(0x7f0000007940), 0x55, 0x0, 0x0)
sendmmsg(r7, &(0x7f0000001500), 0x588, 0x0)
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000840)=ANY=[@ANYBLOB="500000000101010300000000000000000a0000000c001980080002f4c5050000300002802c00018014000300fc010014000400fc0100000000000000000000000000008a62e100fde382613d6076d9bcf075098adbb46e77af4ddc5dd21370a66be0e30118cfe30ab234748d4834e1a57d8cb0bb071600bf37b559ffe89de3396224486f2e37de27866fa61c33aa482b8382a6dc3e4834566f03ba13150197a5f33d224102bf526b77b846af7cccae92c79a0f9ebec5c0b5ea1073c7b789a1ec4153da4336b233fd2a21f51810d2314440f9eba017061a79ba0a6fbf95ec7f77498601685f759e5acf898a106b3f80cda4ac0126e9da3821d45cec2a5164612c7d397fa3e2ef97d5cb2cd82f3b7eebddd76a07b63d907931bde86584a19ace41be5f227bd06744"], 0x50}, 0x1, 0x0, 0x0, 0x800}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000040)=ANY=[@ANYRES8=r4], 0x28}}, 0x24000080)
sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00000000000000000000090000000c000180080001"], 0x20}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x2, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')

1.35891961s ago: executing program 2 (id=335):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01080000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
syz_emit_ethernet(0x86, &(0x7f0000000140)={@random="5b1a033f2511", @remote, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x300, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x64, 0x0, @wg=@response={0x2, 0x0, 0x0, "fdcdae25a7a296872a8a5290e48e30acf8afc7e67d70a62c979cefa10a0028bd", "ae0000000000000000e40000000700", {"35f3c07eeca4a20a9858ac1500", "63081fe8fe001a08ed082ad7121d696f"}}}}}}}, 0x0)

1.279046346s ago: executing program 2 (id=336):
mknodat$null(0xffffffffffffff9c, &(0x7f00000010c0)='./file0\x00', 0x0, 0x103) (async)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x1, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000120000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=r0, @ANYBLOB="2c00e78e4a6c3d26573c9c547e479fe77c1ac12bc8d3c7a09a1f871b91b6e032af4ff66419ca84bea22c2b074db3ab6e0b7b78f477ee5296d3ff2c0bfeb803106b039a145ca5abb0aec3a6ba295c4557f13b63a86edf462d892fdf1860f0394498756c142f6f50978248d944794ae96d7093f8afba1a3048a8ce1a270be972aa0ac002c389f04f8097ac8e83cbe85fd8b099"]) (async)
read$FUSE(r0, &(0x7f0000004400)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000001200)={0x50, 0x0, r1, {0x7, 0x27, 0x0, 0x140022}}, 0x50)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r2, &(0x7f00000023c0)={0x2020}, 0x2020)

1.199810184s ago: executing program 2 (id=337):
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r2, &(0x7f0000000000)=ANY=[@ANYBLOB="7f454c4600000000000000000000000003003e0000000000000000000000000040000000000000b01d5597cfab9c4600000000000000380005", @ANYRES8=r2], 0x40)
close(r2)
vmsplice(r2, &(0x7f00000000c0), 0x0, 0x0)
setsockopt$bt_BT_SECURITY(r2, 0x112, 0x4, &(0x7f00000000c0)={0xc5, 0x8}, 0x2)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="affb282cbeeb", @ANYRESDEC=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r5=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_ATOMIC(r4, 0xc03864bc, &(0x7f0000000540)={0x0, 0x1, &(0x7f0000000440)=[r5], &(0x7f0000000580)=[0xd], &(0x7f0000000580), &(0x7f00000005c0)})
openat(r3, &(0x7f0000000040)='./file0\x00', 0x20000, 0x0)
getdents64(r3, 0x0, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
r8 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x24}}, 0x0)
getsockname$packet(r8, &(0x7f0000000200)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000440)=0x14)
sendmsg$nl_route(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r9, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000007400)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000840)=@newchain={0x24, 0x2e, 0x901, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {}, {0x0, 0xfff1}}}, 0x24}}, 0x0)
ioctl$BTRFS_IOC_SEND(r3, 0x40449426, &(0x7f00000001c0)={{r1}, 0x3, &(0x7f0000000000)=[0x800, 0x1, 0x80000001], 0x7fffffff, 0xc})
vmsplice(r0, &(0x7f0000001500)=[{&(0x7f0000000180)="db", 0x1}], 0x1, 0x0)

1.072560897s ago: executing program 1 (id=338):
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
renameat2(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, 0x0, 0x0)
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x3, 0x2)
pwrite64(r0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 5)

1.029939132s ago: executing program 0 (id=339):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x17, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x3, 0x3, 0x0, 0x1, 0x30}]}, &(0x7f0000000040)='GPL\x00', 0x3000000, 0x0, 0x0, 0x0, 0x66, '\x00', 0x0, 0x14, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

1.029772986s ago: executing program 1 (id=340):
r0 = syz_open_dev$sndctrl(&(0x7f0000000080), 0x0, 0x0)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
r3 = syz_io_uring_setup(0x5169, &(0x7f0000000200)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000000)=<r4=>0x0)
ioprio_get$pid(0x2, 0xffffffffffffffff)
syz_io_uring_setup(0xa94, &(0x7f0000000300), &(0x7f00000000c0)=<r5=>0x0, &(0x7f00000005c0))
syz_io_uring_submit(r5, r4, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0})
io_uring_enter(r3, 0xb15, 0x0, 0x0, 0x0, 0x0)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x5e)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
readv(r0, &(0x7f0000000040)=[{0x0}], 0x1)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000001980)={{0x2000, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 'syz0\x00', 0x0})

1.029689711s ago: executing program 0 (id=341):
syz_open_dev$mouse(&(0x7f0000000000), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
dup(r0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1f00000000000000000000000010"], 0x50)
socket$vsock_stream(0x28, 0x1, 0x0)
pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x900000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0)

969.666913ms ago: executing program 0 (id=342):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
io_setup(0x0, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000300)=ANY=[@ANYBLOB="1801000000000000000000004b64ffed850000006d000000a50000000500000095", @ANYRES16=r2, @ANYRES32=r1], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r4, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r7 = dup(r6)
pselect6(0x40, &(0x7f00000001c0)={0x8, 0x8000000000008, 0x4, 0x0, 0xfffffffffffffa5a, 0x4000000000000}, 0x0, &(0x7f00000002c0)={0x3ff, 0x4, 0x10000, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0xfff}, 0x0, 0x0)
write$6lowpan_enable(r7, &(0x7f0000000000)='0', 0xfffffd2c)
bind$bt_sco(0xffffffffffffffff, &(0x7f0000000080)={0x1f, @none}, 0x8)
listen(r0, 0x0)
syz_open_dev$dri(&(0x7f0000000240), 0x400, 0x200)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="04040a0000000000005467920034db81e7abdddc259aee6063e57dfee0dab3"], 0xd)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
syz_emit_vhci(0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
read$FUSE(r7, &(0x7f0000001940)={0x2020}, 0x2020)
r9 = dup(r8)
ioctl$TIOCL_SETSEL(r9, 0x541c, &(0x7f0000001900)={0x2, {0xc, 0xa00, 0x0, 0x101, 0x100}})

969.397293ms ago: executing program 1 (id=343):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000280)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x0, &(0x7f0000000200)=0x6)
r1 = eventfd(0x0)
read(r1, &(0x7f0000000040)=""/14, 0xe)
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x0, @tid=r0}, &(0x7f0000000000))
syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r1)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000fef000/0x11000)=nil, 0x11000, 0x7, 0x4000010, r3, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x100, &(0x7f0000000000), 0x0, 0x4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008c}, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x3, &(0x7f0000000080))
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x4)
socket$inet_tcp(0x2, 0x1, 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000240)={0x1, &(0x7f0000001100)=[{0x6, 0x4, 0x0, 0x7ffffcb8}]})
modify_ldt$write(0x1, &(0x7f0000000080)={0x800}, 0x10)
modify_ldt$read(0x0, &(0x7f00000000c0)=""/4122, 0x101a)
move_mount(0xffffffffffffffff, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
pivot_root(&(0x7f0000001140)='./file0/../file0/../file0/../file0\x00', &(0x7f00000003c0)='./file0/../file0/../file0/../file0\x00')
rt_sigprocmask(0x0, &(0x7f0000000180), 0xffffffffffffffff, 0x8)
renameat2(0xffffffffffffffff, &(0x7f00000012c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000001300)='./file0/../file0/../file0/../file0\x00', 0x0)

919.883998ms ago: executing program 3 (id=344):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0xffffff}, 0x10)
write(r0, &(0x7f0000000000)="1c0000001a005f0214f9f407000904001f00f0ff0001000000000000", 0x1c)

819.888637ms ago: executing program 3 (id=345):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@ipv6_newroute={0x30, 0x18, 0xffffffffffffffff, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, 0xfe}, [@RTA_GATEWAY={0x14, 0x5, @private2}]}, 0x30}, 0x1, 0x700}, 0x0)

819.544246ms ago: executing program 3 (id=346):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000180)=@delchain={0x24, 0x5f, 0xf31, 0xffffffff, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0x9}, {0x0, 0xc}}}, 0x24}}, 0x0)
r1 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f0000000040))
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write(r2, &(0x7f0000000680)="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", 0x9c2)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
r4 = syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0xa2c65)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc)
ioctl$SNDRV_PCM_IOCTL_HWSYNC(r4, 0x4122, 0x0)
socket$nl_route(0x10, 0x3, 0x0) (async)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000180)=@delchain={0x24, 0x5f, 0xf31, 0xffffffff, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0x9}, {0x0, 0xc}}}, 0x24}}, 0x0) (async)
syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0) (async)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f0000000040)) (async)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
write(r2, &(0x7f0000000680)="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", 0x9c2) (async)
openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0) (async)
syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0xa2c65) (async)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc) (async)
ioctl$SNDRV_PCM_IOCTL_HWSYNC(r4, 0x4122, 0x0) (async)

299.95684ms ago: executing program 2 (id=347):
r0 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
close(r0)
r1 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000200)={0x0, &(0x7f0000000100)=[<r2=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, &(0x7f0000000740)={0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "65366a50432b7ee2c7feddd91df868e7cfc6fa7272f3bf0a71b5d0c19323a260"}})

299.702251ms ago: executing program 2 (id=348):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'essiv(cbc(aes),sha256)\x00'}, 0x83)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$PPPIOCGL2TPSTATS(r1, 0x80487436, &(0x7f00000001c0)="27fc576fb79bbf7708ae71c4860c3b317a5b245cfa421438604a77c596b0fda2401f7458a139e749c9da13e76338714e5884fa1bed2a0017b4a69ef3ab69c780834988595bfc3372c6fa59a564a2c78b64d1c15febfa0bb6775e6e90e6db7219ebab2b220f6156d9efba1b1665259a1d60778ad014d7d080ffa483837116d952a9774c80303e8fc6c4f45aca3e424cb21a5bb7418ca15d371c96e0bb7f5aefea97fa32e7d6688d6b6bce1ff2d537a5720e933002d08402b4e0c521eb0cffc79d480c8dbc60fd4f5f81c3a99087ee79d85ade5a3b89")
syz_open_dev$vim2m(&(0x7f0000000000), 0x9, 0x2)
r2 = dup(0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}})
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef", 0x11)

229.796353ms ago: executing program 2 (id=349):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00')
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0xc0686611, &(0x7f0000000180)={0x900, 0x0, 0x18, 0x2000, &(0x7f0000ffd000/0x2000)=nil})
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000000900)={'bridge0\x00', @random='\x00\x00\x00 \x00'})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x18, 0x3a, 0x709, 0x0, 0x0, {0x3}, [@typed={0x4}]}, 0x18}}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000900)={'bridge0\x00', @broadcast})
r4 = syz_usb_connect$cdc_ncm(0x5, 0x82, &(0x7f0000000000)={{0x12, 0x1, 0x151, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x70, 0x2, 0x1, 0x9, 0x60, 0x84, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x7, 0x24, 0x6, 0x0, 0x1, "8900"}, {0x5, 0x24, 0x0, 0x5}, {0xd, 0x24, 0xf, 0x1, 0xc27, 0x8000, 0xff, 0x1}, {0x6, 0x24, 0x1a, 0x6, 0x28}, [@country_functional={0xe, 0x24, 0x7, 0x10, 0x8, [0x2, 0x2, 0x7, 0x6]}, @acm={0x4}]}, {{0x9, 0x5, 0x81, 0x3, 0x400, 0x4, 0xff, 0xa7}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x200, 0x1, 0xf, 0x9}}, {{0x9, 0x5, 0x3, 0x2, 0x20, 0x0, 0x2, 0x1}}}}}}}]}}, &(0x7f0000000280)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x200, 0x5, 0x2, 0x4, 0xff, 0x8}, 0x8, &(0x7f0000000140)={0x5, 0xf, 0x8, 0x1, [@ptm_cap={0x3}]}, 0x1, [{0x4, &(0x7f0000000240)=@lang_id={0x4, 0x3, 0x429}}]})
syz_usb_disconnect(r4)

109.500101ms ago: executing program 0 (id=350):
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
dup(r0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1f00000000000000000000000010"], 0x50)
socket$vsock_stream(0x28, 0x1, 0x0)
pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x900000000000000}, 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0)

108.984847ms ago: executing program 1 (id=351):
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000540)=@newqdisc={0x38, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0xa}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_BACKLOG_LIMIT={0x8, 0x1, 0x80000000}]}}]}, 0x38}}, 0x0)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r1, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000300)={&(0x7f0000000600)={0x188, r4, 0x20, 0x70bd27, 0x25dfdbfe, {}, [@TIPC_NLA_MON={0x14, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x7}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8000}]}, @TIPC_NLA_PUBL={0x54, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x1}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x4}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x6}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x1}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xc96a}, @TIPC_NLA_PUBL_TYPE={0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x3}, @TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x6}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x5}]}, @TIPC_NLA_LINK={0x30, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}]}]}, @TIPC_NLA_SOCK={0x30, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}, @TIPC_NLA_CON_FLAG={0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7fff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}]}]}, @TIPC_NLA_BEARER={0xa4, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x8}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e22, 0xa, @remote}}, {0x14, 0x2, @in={0x2, 0x4e21, @private=0xa010101}}}}, @TIPC_NLA_BEARER_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x200}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xf}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x8}]}, @TIPC_NLA_MEDIA={0x4}, @TIPC_NLA_LINK={0x4}]}, 0x188}}, 0x800)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'essiv(cbc(aes),sha256)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r5 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$alg(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000140)="d4acd37aecb8903a6aa32a7f401dfa35", 0x10}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x8090)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
r6 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000000240)={0x0, <r7=>0x0}, &(0x7f0000000280)=0x5)
setuid(r7)
setxattr$system_posix_acl(&(0x7f0000000080)='./bus\x00', &(0x7f00000000c0)='system.posix_acl_access\x00', 0x0, 0x0, 0x1)
lchown(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
recvmsg(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x51}], 0x1}, 0x0)
sendmsg$NL80211_CMD_JOIN_OCB(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x38, 0x0, 0x1, 0x70bd28, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x2, 0x80}}}}, [@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x971}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}]}, 0x38}, 0x1, 0x0, 0x0, 0x24004015}, 0x448d0)

108.666855ms ago: executing program 0 (id=352):
openat$autofs(0xffffff9c, &(0x7f0000000000), 0x200142, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
socket$netlink(0x10, 0x3, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000140)={'wlan1\x00'})
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000740)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0500000000000000000044000000080003005135aea60b913c9d1ef638bb795b1403252a7ca92a94c988badb90619bdf7076fc21503941e09f4fda84282fdc67b03af9ddcafee7a8eab1d5983c3e4ea39145a5ca5287c13e777f124a8899145597c12eeda43e45756b410df1df60a387a9dfdcaec9f004288c32f6ebf9e61c82556fb560a5eb44d773b67ebb2ab80c738d6158c96f9bc4358296021b85299d2568d279f5ef556ce0b0e0792c4702de753dbd8853d3e94ea85352b8e8d6f3", @ANYRESOCT=r0], 0x34}}, 0x800)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x14}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x6c, 0x6, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x44, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_LIMIT_RATE={0xc}, @NFTA_LIMIT_UNIT={0xc}]}}}, {0x14, 0x1, 0x0, 0x1, @lookup={{0xb}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xd4}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000d40000000000000000000000000a20000000000a03000000000000000000010000000900010073797a3000000000bc000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000009000038008000240000000007c00038014000100626f6e64300000000000000000000000140001006970766c616e31000000000000000000140001006970766c616e300000000000000000001400010073697430000000000000fbffffffffffffff0100776c616e300000000000000000000000140001006772653000000000000000000000040008000140000000005c000000180a01010000000000000000010000000900020073797a30000000000900010073797a30"], 0x4b0}}, 0x0)
r4 = dup(r0)
write$binfmt_misc(r4, 0x0, 0x0)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = socket$inet6(0xa, 0x806, 0x0)
bind$inet6(r5, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c)
listen(r5, 0x3)
r6 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r6, &(0x7f0000772000)={0x2, 0x4e23}, 0x10)
r7 = accept4(r5, 0x0, 0x0, 0x0)
recvmmsg(r6, &(0x7f0000007940), 0x55, 0x0, 0x0)
sendmmsg(r7, &(0x7f0000001500), 0x588, 0x0)
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000840)=ANY=[@ANYBLOB="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"], 0x50}, 0x1, 0x0, 0x0, 0x800}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000040)=ANY=[@ANYRES8=r4], 0x28}}, 0x24000080)
sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00000000000000000000090000000c000180080001"], 0x20}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x2, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')

0s ago: executing program 1 (id=353):
r0 = syz_open_dev$sndctrl(&(0x7f0000000080), 0x0, 0x0)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
r3 = syz_io_uring_setup(0x5169, &(0x7f0000000200)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000000)=<r4=>0x0)
ioprio_get$pid(0x2, 0xffffffffffffffff)
syz_io_uring_setup(0xa94, &(0x7f0000000300), &(0x7f00000000c0)=<r5=>0x0, &(0x7f00000005c0))
syz_io_uring_submit(r5, r4, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0})
io_uring_enter(r3, 0xb15, 0x0, 0x0, 0x0, 0x0)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x5e)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
readv(r0, &(0x7f0000000040)=[{0x0}], 0x1)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000001980)={{0x2000, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 'syz0\x00', 0x0})

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:56387' (ED25519) to the list of known hosts.
[   34.592933][ T5326] cgroup: Unknown subsys name 'net'
[   34.720480][ T5326] cgroup: Unknown subsys name 'cpuset'
[   34.723477][ T5326] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   35.443739][ T5326] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   38.038818][ T5347] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   38.041221][ T5347] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   38.044806][ T5349] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   38.047257][ T5349] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   38.048080][ T5348] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   38.049842][ T5349] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   38.054578][ T5349] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   38.054719][ T5348] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   38.057218][ T5349] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   38.059585][ T5348] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   38.061126][ T5349] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   38.064069][ T5355] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   38.067494][ T5355] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   38.067606][ T5349] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   38.070854][ T5355] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   38.071968][ T5354] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   38.072316][ T5349] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   38.072491][ T5349] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   38.073885][ T5355] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   38.076376][ T5347] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   38.078844][ T5355] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   38.085662][ T5355] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   38.087407][ T5342] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   38.090364][ T5342] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   38.234044][ T5350] chnl_net:caif_netlink_parms(): no params data found
[   38.271333][ T5339] chnl_net:caif_netlink_parms(): no params data found
[   38.313535][ T5344] chnl_net:caif_netlink_parms(): no params data found
[   38.326660][ T5350] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.329306][ T5350] bridge0: port 1(bridge_slave_0) entered disabled state
[   38.331400][ T5350] bridge_slave_0: entered allmulticast mode
[   38.333766][ T5350] bridge_slave_0: entered promiscuous mode
[   38.392269][ T5350] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.394593][ T5350] bridge0: port 2(bridge_slave_1) entered disabled state
[   38.397972][ T5350] bridge_slave_1: entered allmulticast mode
[   38.400554][ T5350] bridge_slave_1: entered promiscuous mode
[   38.446404][ T5339] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.448441][ T5339] bridge0: port 1(bridge_slave_0) entered disabled state
[   38.450357][ T5339] bridge_slave_0: entered allmulticast mode
[   38.452405][ T5339] bridge_slave_0: entered promiscuous mode
[   38.475558][ T5350] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   38.479145][ T5339] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.481084][ T5339] bridge0: port 2(bridge_slave_1) entered disabled state
[   38.482988][ T5339] bridge_slave_1: entered allmulticast mode
[   38.485008][ T5339] bridge_slave_1: entered promiscuous mode
[   38.487376][ T5343] chnl_net:caif_netlink_parms(): no params data found
[   38.493670][ T5350] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   38.573778][ T5350] team0: Port device team_slave_0 added
[   38.578927][ T5339] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   38.582166][ T5344] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.584704][ T5344] bridge0: port 1(bridge_slave_0) entered disabled state
[   38.588053][ T5344] bridge_slave_0: entered allmulticast mode
[   38.590127][ T5344] bridge_slave_0: entered promiscuous mode
[   38.603268][ T5350] team0: Port device team_slave_1 added
[   38.620303][ T5339] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   38.631257][ T5344] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.633145][ T5344] bridge0: port 2(bridge_slave_1) entered disabled state
[   38.635010][ T5344] bridge_slave_1: entered allmulticast mode
[   38.637293][ T5344] bridge_slave_1: entered promiscuous mode
[   38.689487][ T5339] team0: Port device team_slave_0 added
[   38.699525][ T5350] batman_adv: batadv0: Adding interface: batadv_slave_0
[   38.701377][ T5350] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   38.708634][ T5350] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   38.722096][ T5343] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.724495][ T5343] bridge0: port 1(bridge_slave_0) entered disabled state
[   38.726391][ T5343] bridge_slave_0: entered allmulticast mode
[   38.728439][ T5343] bridge_slave_0: entered promiscuous mode
[   38.731907][ T5339] team0: Port device team_slave_1 added
[   38.734920][ T5344] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   38.740171][ T5344] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   38.752234][ T5350] batman_adv: batadv0: Adding interface: batadv_slave_1
[   38.754062][ T5350] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   38.761288][ T5350] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   38.767933][ T5343] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.769843][ T5343] bridge0: port 2(bridge_slave_1) entered disabled state
[   38.771873][ T5343] bridge_slave_1: entered allmulticast mode
[   38.773897][ T5343] bridge_slave_1: entered promiscuous mode
[   38.834019][ T5339] batman_adv: batadv0: Adding interface: batadv_slave_0
[   38.835935][ T5339] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   38.843347][ T5339] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   38.848926][ T5339] batman_adv: batadv0: Adding interface: batadv_slave_1
[   38.850810][ T5339] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   38.857692][ T5339] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   38.864193][ T5344] team0: Port device team_slave_0 added
[   38.875597][ T5350] hsr_slave_0: entered promiscuous mode
[   38.877854][ T5350] hsr_slave_1: entered promiscuous mode
[   38.881722][ T5343] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   38.887786][ T5343] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   38.890995][ T5344] team0: Port device team_slave_1 added
[   38.914098][ T5344] batman_adv: batadv0: Adding interface: batadv_slave_0
[   38.916000][ T5344] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   38.922699][ T5344] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   38.943051][ T5343] team0: Port device team_slave_0 added
[   38.945703][ T5343] team0: Port device team_slave_1 added
[   38.947694][ T5344] batman_adv: batadv0: Adding interface: batadv_slave_1
[   38.949555][ T5344] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   38.956394][ T5344] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   39.015994][ T5343] batman_adv: batadv0: Adding interface: batadv_slave_0
[   39.018761][ T5343] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   39.027938][ T5343] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   39.033331][ T5343] batman_adv: batadv0: Adding interface: batadv_slave_1
[   39.035936][ T5343] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   39.043561][ T5343] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   39.058282][ T5339] hsr_slave_0: entered promiscuous mode
[   39.060286][ T5339] hsr_slave_1: entered promiscuous mode
[   39.062112][ T5339] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   39.064431][ T5339] Cannot create hsr debugfs directory
[   39.088369][ T5344] hsr_slave_0: entered promiscuous mode
[   39.090288][ T5344] hsr_slave_1: entered promiscuous mode
[   39.092032][ T5344] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   39.093999][ T5344] Cannot create hsr debugfs directory
[   39.172595][ T5343] hsr_slave_0: entered promiscuous mode
[   39.174543][ T5343] hsr_slave_1: entered promiscuous mode
[   39.176404][ T5343] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   39.178828][ T5343] Cannot create hsr debugfs directory
[   39.310559][ T5350] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   39.322094][ T5350] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   39.325835][ T5350] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   39.331967][ T5350] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   39.357689][ T5339] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   39.360902][ T5339] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   39.363768][ T5339] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   39.367550][ T5339] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   39.391307][ T5344] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   39.394751][ T5344] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   39.407777][ T5344] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   39.411040][ T5344] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   39.433072][ T5343] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   39.436676][ T5343] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   39.440848][ T5343] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   39.444672][ T5343] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   39.466867][ T5350] 8021q: adding VLAN 0 to HW filter on device bond0
[   39.489626][ T5350] 8021q: adding VLAN 0 to HW filter on device team0
[   39.501783][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.503632][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   39.513713][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   39.515745][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   39.524591][ T5339] 8021q: adding VLAN 0 to HW filter on device bond0
[   39.544732][ T5343] 8021q: adding VLAN 0 to HW filter on device bond0
[   39.564437][ T5339] 8021q: adding VLAN 0 to HW filter on device team0
[   39.572030][ T5343] 8021q: adding VLAN 0 to HW filter on device team0
[   39.576040][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.578051][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   39.587896][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   39.589798][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   39.593643][ T5344] 8021q: adding VLAN 0 to HW filter on device bond0
[   39.601257][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.603190][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   39.613471][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   39.615370][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   39.624285][ T5344] 8021q: adding VLAN 0 to HW filter on device team0
[   39.635048][ T1105] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.637022][ T1105] bridge0: port 1(bridge_slave_0) entered forwarding state
[   39.643251][   T73] bridge0: port 2(bridge_slave_1) entered blocking state
[   39.645162][   T73] bridge0: port 2(bridge_slave_1) entered forwarding state
[   39.664057][ T5350] 8021q: adding VLAN 0 to HW filter on device batadv0
[   39.703564][ T5350] veth0_vlan: entered promiscuous mode
[   39.712186][ T5350] veth1_vlan: entered promiscuous mode
[   39.718071][ T5339] 8021q: adding VLAN 0 to HW filter on device batadv0
[   39.731998][ T5350] veth0_macvtap: entered promiscuous mode
[   39.739612][ T5339] veth0_vlan: entered promiscuous mode
[   39.743678][ T5339] veth1_vlan: entered promiscuous mode
[   39.749207][ T5350] veth1_macvtap: entered promiscuous mode
[   39.763842][ T5350] batman_adv: batadv0: Interface activated: batadv_slave_0
[   39.769431][ T5350] batman_adv: batadv0: Interface activated: batadv_slave_1
[   39.774376][ T5350] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   39.778045][ T5350] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   39.780227][ T5350] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   39.782549][ T5350] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   39.799335][ T5339] veth0_macvtap: entered promiscuous mode
[   39.802260][ T5343] 8021q: adding VLAN 0 to HW filter on device batadv0
[   39.813966][ T5339] veth1_macvtap: entered promiscuous mode
[   39.819889][ T5344] 8021q: adding VLAN 0 to HW filter on device batadv0
[   39.837137][ T5339] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   39.839873][ T5339] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   39.842905][ T5339] batman_adv: batadv0: Interface activated: batadv_slave_0
[   39.848256][ T5339] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   39.850896][ T5339] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   39.853816][ T5339] batman_adv: batadv0: Interface activated: batadv_slave_1
[   39.856314][   T68] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   39.859351][   T68] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   39.877509][ T5343] veth0_vlan: entered promiscuous mode
[   39.879947][ T5339] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   39.882256][ T5339] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   39.884500][ T5339] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   39.887287][ T5339] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   39.900919][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   39.903983][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   39.907317][ T5343] veth1_vlan: entered promiscuous mode
[   39.918053][ T5344] veth0_vlan: entered promiscuous mode
[   39.929382][   T73] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   39.931480][   T73] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   39.936743][ T5344] veth1_vlan: entered promiscuous mode
[   39.948517][ T5350] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   39.952932][ T5343] veth0_macvtap: entered promiscuous mode
[   39.961497][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   39.963599][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   39.967678][ T5343] veth1_macvtap: entered promiscuous mode
[   39.970664][ T5344] veth0_macvtap: entered promiscuous mode
[   39.975005][ T5344] veth1_macvtap: entered promiscuous mode
[   39.993493][ T5343] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   39.996936][ T5343] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   39.999733][ T5343] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   40.002770][ T5343] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.007327][ T5343] batman_adv: batadv0: Interface activated: batadv_slave_0
[   40.012820][ T5343] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   40.015623][ T5343] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.021160][ T5343] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   40.024003][ T5343] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.027347][ T5343] batman_adv: batadv0: Interface activated: batadv_slave_1
[   40.029967][ T5344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   40.032663][ T5344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.035180][ T5344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   40.038235][ T5344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.040746][ T5344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   40.043496][ T5344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.048318][ T5344] batman_adv: batadv0: Interface activated: batadv_slave_0
[   40.053917][ T5343] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   40.056274][ T5343] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   40.062020][ T5343] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   40.065652][ T5343] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   40.071758][ T5344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   40.072250][ T5404] netlink: 'syz.0.1': attribute type 9 has an invalid length.
[   40.075197][ T5344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.078101][ T5404] netlink: 399 bytes leftover after parsing attributes in process `syz.0.1'.
[   40.081029][ T5344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   40.088328][ T5344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.091736][ T5344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   40.095269][ T5344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.100301][ T5344] batman_adv: batadv0: Interface activated: batadv_slave_1
[   40.103837][ T5344] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   40.106159][ T5344] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   40.108516][ T5347] Bluetooth: hci1: command tx timeout
[   40.108521][   T64] Bluetooth: hci2: command tx timeout
[   40.108741][   T64] Bluetooth: hci0: command tx timeout
[   40.108855][   T64] Bluetooth: hci3: command tx timeout
[   40.109529][ T5344] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   40.119015][ T5344] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   40.160663][ T5411] erspan1: entered promiscuous mode
[   40.162113][ T5411] erspan1: entered allmulticast mode
[   40.171360][ T1105] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   40.173507][ T1105] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   40.178320][ T1105] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   40.182288][ T1105] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   40.208259][ T1105] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   40.209196][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   40.210900][ T1105] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   40.215021][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   40.300080][ T5419] netlink: 24 bytes leftover after parsing attributes in process `syz.0.6'.
[   40.324064][ T5420] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3'.
[   40.648497][ T5430] Illegal XDP return value 4029598963 on prog  (id 4) dev N/A, expect packet loss!
[   41.231867][ T5437] process 'syz.0.9' launched './file1' with NULL argv: empty string added
[   41.502249][ T5440] =======================================================
[   41.502249][ T5440] WARNING: The mand mount option has been deprecated and
[   41.502249][ T5440]          and is ignored by this kernel. Remove the mand
[   41.502249][ T5440]          option from the mount to silence this warning.
[   41.502249][ T5440] =======================================================
[   41.520268][ T5440] ntfs3(sr0): Primary boot signature is not NTFS.
[   41.523003][ T5440] ntfs3(sr0): try to read out of volume at offset 0xf800
[   41.975272][ T5457] capability: warning: `syz.3.14' uses deprecated v2 capabilities in a way that may be insecure
[   42.186818][ T4776] Bluetooth: hci3: command tx timeout
[   42.186886][ T5347] Bluetooth: hci0: command tx timeout
[   42.187085][   T64] Bluetooth: hci2: command tx timeout
[   42.196828][ T5347] Bluetooth: hci1: command tx timeout
[   42.311010][ T5460] syz.2.15: attempt to access beyond end of device
[   42.311010][ T5460] nbd2: rw=4096, sector=0, nr_sectors = 1 limit=0
[   42.314270][ T5460] XFS (nbd2): SB validate failed with error -5.
[   42.340954][ T5460] No control pipe specified
[   43.059362][ T5484] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   43.120931][ T5485] 8021q: adding VLAN 0 to HW filter on device bond0
[   43.124785][ T5485] bond0: (slave rose0): Enslaving as an active interface with an up link
[   43.145866][ T5485] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   44.266789][ T5347] Bluetooth: hci2: command tx timeout
[   44.268471][ T5347] Bluetooth: hci3: command tx timeout
[   44.270026][ T5347] Bluetooth: hci1: command tx timeout
[   44.271458][ T5347] Bluetooth: hci0: command tx timeout
[   44.697975][ T5507] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   44.792109][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   44.794275][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   44.796433][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   44.806777][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   44.809170][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   44.826941][    T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!!
[   44.829241][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   44.861847][ T5522] syzkaller0: entered promiscuous mode
[   44.864679][ T5522] syzkaller0: entered allmulticast mode
[   44.894395][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   44.896860][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   44.915721][ T5522] program syz.0.26 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   45.264405][ T5535] netlink: 'syz.1.29': attribute type 10 has an invalid length.
[   45.268686][ T5535] syz_tun: entered promiscuous mode
[   45.280267][ T5535] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[   45.467147][    T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!!
[   46.056370][ T5558] netlink: 'syz.3.32': attribute type 1 has an invalid length.
[   46.060125][ T5558] netlink: 9328 bytes leftover after parsing attributes in process `syz.3.32'.
[   46.062408][ T5558] netlink: 'syz.3.32': attribute type 1 has an invalid length.
[   46.349573][ T4776] Bluetooth: hci0: command tx timeout
[   46.349900][ T5347] Bluetooth: hci1: command tx timeout
[   46.351423][   T64] Bluetooth: hci3: command tx timeout
[   46.351465][ T4776] Bluetooth: hci2: command tx timeout
[   46.638088][   T39] audit: type=1804 audit(1729552367.204:2): pid=5562 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.33" name="/" dev="pidfs" ino=5863 res=1 errno=0
[   46.747220][ T5570] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.35'.
[   46.750865][ T5570] openvswitch: netlink: IP tunnel attribute has 3052 unknown bytes.
[   46.777632][ T5576] netlink: 24 bytes leftover after parsing attributes in process `syz.2.37'.
[   46.792795][ T5576] netlink: 48 bytes leftover after parsing attributes in process `syz.2.37'.
[   46.829673][ T5579] syz.3.38 uses obsolete (PF_INET,SOCK_PACKET)
[   47.074595][ T5588] netlink: 24 bytes leftover after parsing attributes in process `syz.3.40'.
[   47.078758][ T5588] netlink: 48 bytes leftover after parsing attributes in process `syz.3.40'.
[   47.262240][ T5592] netlink: 4 bytes leftover after parsing attributes in process `syz.0.41'.
[   47.523301][ T5607] warning: `syz.3.47' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   47.566193][ T5612] netlink: 4 bytes leftover after parsing attributes in process `syz.3.49'.
[   47.595493][ T5616] FAULT_INJECTION: forcing a failure.
[   47.595493][ T5616] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   47.599355][ T5616] CPU: 2 UID: 0 PID: 5616 Comm: syz.1.50 Not tainted 6.12.0-rc4-syzkaller #0
[   47.602125][ T5616] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   47.605863][ T5616] Call Trace:
[   47.606955][ T5616]  <TASK>
[   47.607916][ T5616]  dump_stack_lvl+0x16c/0x1f0
[   47.609484][ T5616]  should_fail_ex+0x497/0x5b0
[   47.611048][ T5616]  _copy_to_user+0x30/0xc0
[   47.612539][ T5616]  do_pages_stat+0x5c1/0x820
[   47.614076][ T5616]  ? __pfx_do_pages_stat+0x10/0x10
[   47.615799][ T5616]  ? cpuset_mems_allowed+0x1d9/0x480
[   47.617538][ T5616]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   47.619466][ T5616]  ? lockdep_hardirqs_on+0x7c/0x110
[   47.621200][ T5616]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   47.623121][ T5616]  kernel_move_pages+0x10a4/0x15a0
[   47.624815][ T5616]  ? __mutex_unlock_slowpath+0x164/0x650
[   47.626617][ T5616]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   47.628600][ T5616]  ? __pfx_kernel_move_pages+0x10/0x10
[   47.630401][ T5616]  ? __fget_files+0x244/0x3f0
[   47.631973][ T5616]  ? fput+0x30/0x390
[   47.633293][ T5616]  ? ksys_write+0x1ad/0x260
[   47.634804][ T5616]  ? __pfx_ksys_write+0x10/0x10
[   47.636492][ T5616]  __ia32_sys_move_pages+0xdd/0x1b0
[   47.638272][ T5616]  ? lockdep_hardirqs_on+0x7c/0x110
[   47.640069][ T5616]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   47.642208][ T5616]  __do_fast_syscall_32+0x73/0x120
[   47.644031][ T5616]  do_fast_syscall_32+0x32/0x80
[   47.645780][ T5616]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   47.647980][ T5616] RIP: 0023:0xf7f1f579
[   47.649334][ T5616] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   47.655517][ T5616] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 000000000000013d
[   47.658195][ T5616] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000001efe
[   47.660375][ T5621] netlink: 4 bytes leftover after parsing attributes in process `syz.3.52'.
[   47.660662][ T5616] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000020000040
[   47.664078][ T5621] netlink: 12 bytes leftover after parsing attributes in process `syz.3.52'.
[   47.665933][ T5616] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   47.665945][ T5616] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   47.665954][ T5616] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   47.665975][ T5616]  </TASK>
[   47.717643][ T5626] 9pnet_fd: Insufficient options for proto=fd
[   48.426619][   T64] Bluetooth: hci1: command tx timeout
[   48.461343][ T5657] team0: entered promiscuous mode
[   48.462846][ T5657] team_slave_0: entered promiscuous mode
[   48.464579][ T5657] team_slave_1: entered promiscuous mode
[   48.470881][ T5656] team0: left promiscuous mode
[   48.472916][ T5656] team_slave_0: left promiscuous mode
[   48.475564][ T5656] team_slave_1: left promiscuous mode
[   48.799726][ T5680] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[   48.801576][ T5680] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   48.806329][ T5680] vhci_hcd vhci_hcd.0: Device attached
[   48.958144][ T5690] netlink: 'syz.1.73': attribute type 6 has an invalid length.
[   49.030351][ T1284] vhci_hcd: vhci_device speed not set
[   49.102118][ T1284] usb 17-1: new full-speed USB device number 2 using vhci_hcd
[   49.599066][   T35] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   49.690640][ T5682] vhci_hcd: connection reset by peer
[   49.694663][   T12] vhci_hcd: stop threads
[   49.696462][   T12] vhci_hcd: release socket
[   49.698435][   T12] vhci_hcd: disconnect device
[   49.789962][   T35] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   49.792065][ T5723] FAULT_INJECTION: forcing a failure.
[   49.792065][ T5723] name failslab, interval 1, probability 0, space 0, times 1
[   49.792729][   T35] usb 8-1: config 0 has no interfaces?
[   49.792746][   T35] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   49.792757][   T35] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   49.799936][   T35] usb 8-1: config 0 descriptor??
[   49.802836][ T5723] CPU: 0 UID: 0 PID: 5723 Comm: syz.0.83 Not tainted 6.12.0-rc4-syzkaller #0
[   49.809761][ T5723] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   49.812526][ T5723] Call Trace:
[   49.813535][ T5723]  <TASK>
[   49.814418][ T5723]  dump_stack_lvl+0x16c/0x1f0
[   49.815653][ T5723]  should_fail_ex+0x497/0x5b0
[   49.816913][ T5723]  ? fs_reclaim_acquire+0xae/0x150
[   49.819201][ T5723]  should_failslab+0xc2/0x120
[   49.821406][ T5723]  __kmalloc_noprof+0xcb/0x410
[   49.822799][ T5723]  ? find_held_lock+0x2d/0x110
[   49.824049][ T5723]  memcg_list_lru_alloc+0x24d/0xa90
[   49.825418][ T5723]  ? rcu_read_unlock+0x17/0x60
[   49.826685][ T5723]  ? __pfx_memcg_list_lru_alloc+0x10/0x10
[   49.828919][ T5723]  ? get_mem_cgroup_from_objcg+0xd3/0x330
[   49.830413][ T5723]  __memcg_slab_post_alloc_hook+0x12c/0x9b0
[   49.832144][ T5723]  ? kasan_save_track+0x14/0x30
[   49.833436][ T5723]  kmem_cache_alloc_lru_noprof+0x2c8/0x2f0
[   49.834960][ T5723]  ? __d_alloc+0x35/0x8c0
[   49.836279][ T5723]  ? ktime_get_coarse_real_ts64+0x1b7/0x200
[   49.838360][ T5723]  __d_alloc+0x35/0x8c0
[   49.839658][ T5723]  d_alloc_pseudo+0x1c/0xc0
[   49.840870][ T5723]  alloc_file_pseudo+0xd2/0x200
[   49.842140][ T5723]  ? __pfx_alloc_file_pseudo+0x10/0x10
[   49.843773][ T5723]  ? clear_nlink+0x82/0xa0
[   49.844977][ T5723]  hugetlb_file_setup+0x4cd/0x620
[   49.846299][ T5723]  ksys_mmap_pgoff+0x189/0x5c0
[   49.848098][ T5723]  ? __ia32_sys_mmap_pgoff+0x11/0x1b0
[   49.849821][ T5723]  __do_fast_syscall_32+0x73/0x120
[   49.851161][ T5723]  do_fast_syscall_32+0x32/0x80
[   49.852438][ T5723]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   49.854096][ T5723] RIP: 0023:0xf7fbf579
[   49.855163][ T5723] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   49.860182][ T5723] RSP: 002b:00000000f572556c EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[   49.862357][ T5723] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000ff5000
[   49.864412][ T5723] RDX: 0000000001000002 RSI: 000000000005c831 RDI: 00000000ffffffff
[   49.866467][ T5723] RBP: 0000000000002000 R08: 0000000000000000 R09: 0000000000000000
[   49.868538][ T5723] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   49.870631][ T5723] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   49.872723][ T5723]  </TASK>
[   49.910973][ T5723] netlink: 'syz.0.83': attribute type 1 has an invalid length.
[   50.652250][ T5728] hid-generic 0000:0000:0000.0002: unknown main item tag 0x7
[   50.654345][ T5728] hid-generic 0000:0000:0000.0002: ignoring exceeding usage max
[   50.657925][ T5728] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   50.659974][ T5728] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   50.661985][ T5728] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   50.663943][ T5728] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   50.665905][ T5728] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   50.669910][ T5728] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   50.671892][ T5728] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   50.673865][ T5728] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   50.675823][ T5728] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   50.678579][ T5728] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   50.680558][ T5728] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   50.682560][ T5728] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   50.684506][ T5728] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   50.686497][ T5728] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   50.688812][ T5728] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   50.690774][ T5728] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   50.692731][ T5728] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   50.694680][ T5728] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   50.696830][ T5728] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   50.698688][ T5728] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   50.700598][ T5728] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   50.705612][ T5728] hid-generic 0000:0000:0000.0002: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   51.076629][ T5728] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   51.155638][ T5762] netlink: 'syz.0.96': attribute type 10 has an invalid length.
[   51.159389][ T5762] syz_tun: entered promiscuous mode
[   51.167653][ T5762] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[   51.226800][ T5728] usb 7-1: Using ep0 maxpacket: 16
[   51.230017][ T5728] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 38, changing to 9
[   51.233598][ T5728] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   51.235985][ T5728] usb 7-1: New USB device found, idVendor=17ef, idProduct=6009, bcdDevice= 0.00
[   51.243830][ T5728] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   51.249652][ T5728] usb 7-1: config 0 descriptor??
[   51.898439][ T5728] usb 7-1: string descriptor 0 read error: -71
[   51.905002][ T5728] usbhid 7-1:0.0: can't add hid device: -71
[   51.907547][ T5728] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[   51.912671][ T5728] usb 7-1: USB disconnect, device number 2
[   51.958739][ T5779] 9pnet_fd: p9_fd_create_unix (5779): problem connecting socket: ./file1: -111
[   52.035544][   T35] usb 8-1: string descriptor 0 read error: -71
[   52.045788][   T35] usb 8-1: USB disconnect, device number 2
[   52.171884][ T5789] __nla_validate_parse: 4 callbacks suppressed
[   52.171900][ T5789] netlink: 8 bytes leftover after parsing attributes in process `syz.3.106'.
[   52.226783][ T5765] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   52.238572][ T5795] FAULT_INJECTION: forcing a failure.
[   52.238572][ T5795] name failslab, interval 1, probability 0, space 0, times 0
[   52.242583][ T5795] CPU: 1 UID: 0 PID: 5795 Comm: syz.3.109 Not tainted 6.12.0-rc4-syzkaller #0
[   52.244944][ T5795] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   52.248217][ T5795] Call Trace:
[   52.249402][ T5795]  <TASK>
[   52.250449][ T5795]  dump_stack_lvl+0x16c/0x1f0
[   52.252107][ T5795]  should_fail_ex+0x497/0x5b0
[   52.253781][ T5795]  ? fs_reclaim_acquire+0xae/0x150
[   52.255403][ T5795]  should_failslab+0xc2/0x120
[   52.256856][ T5795]  __kmalloc_noprof+0xcb/0x410
[   52.258498][ T5795]  ? __pfx_d_absolute_path+0x10/0x10
[   52.260357][ T5795]  tomoyo_encode2+0x100/0x3e0
[   52.261983][ T5795]  tomoyo_realpath_from_path+0x1a7/0x710
[   52.263547][ T5795]  tomoyo_path_number_perm+0x245/0x5b0
[   52.265056][ T5795]  ? tomoyo_path_number_perm+0x232/0x5b0
[   52.266537][ T5795]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   52.268119][ T5795]  ? trace_lock_acquire+0x14a/0x1d0
[   52.269510][ T5795]  ? lock_acquire+0x2f/0xb0
[   52.270700][ T5795]  ? __fget_files+0x40/0x3f0
[   52.271928][ T5795]  ? __fget_files+0x244/0x3f0
[   52.273188][ T5795]  security_file_ioctl_compat+0x9b/0x240
[   52.274662][ T5795]  __do_compat_sys_ioctl+0x52/0x2b0
[   52.276023][ T5795]  __do_fast_syscall_32+0x73/0x120
[   52.277400][ T5795]  do_fast_syscall_32+0x32/0x80
[   52.278701][ T5795]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   52.280363][ T5795] RIP: 0023:0xf73ee579
[   52.281461][ T5795] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   52.286427][ T5795] RSP: 002b:00000000f56d656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   52.289340][ T5795] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000004b72
[   52.292049][ T5795] RDX: 0000000020000100 RSI: 0000000000000000 RDI: 0000000000000000
[   52.294726][ T5795] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   52.296952][ T5795] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   52.299022][ T5795] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   52.301061][ T5795]  </TASK>
[   52.301940][    C1] vkms_vblank_simulate: vblank timer overrun
[   52.304921][ T5795] ERROR: Out of memory at tomoyo_realpath_from_path.
[   52.389665][ T5765] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   52.393518][ T5765] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[   52.397362][ T5765] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   52.400380][ T5765] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   52.405379][ T5781] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[   52.409423][ T5765] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[   52.519774][ T5808] netlink: 'syz.2.112': attribute type 4 has an invalid length.
[   52.623341][ T5811] netlink: 20 bytes leftover after parsing attributes in process `syz.2.113'.
[   52.628895][ T5812] Zero length message leads to an empty skb
[   52.656103][ T5814] No control pipe specified
[   52.798501][ T5823] netlink: 8 bytes leftover after parsing attributes in process `syz.2.117'.
[   52.809238][ T5781] Process accounting resumed
[   53.206774][ T5800] overlayfs: statfs failed on './file0'
[   53.441578][ T5387] usb 6-1: USB disconnect, device number 2
[   54.266658][ T1284] vhci_hcd: vhci_device speed not set
[   54.444224][   T39] audit: type=1326 audit(1729552375.004:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5863 comm="syz.0.133" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x0
[   54.567842][ T5871] netlink: 8 bytes leftover after parsing attributes in process `syz.2.135'.
[   54.746010][ T5880] mmap: syz.2.135 (5880) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   55.015496][ T5893] FAULT_INJECTION: forcing a failure.
[   55.015496][ T5893] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   55.024047][ T5893] CPU: 3 UID: 0 PID: 5893 Comm: syz.1.140 Not tainted 6.12.0-rc4-syzkaller #0
[   55.027036][ T5893] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   55.030778][ T5893] Call Trace:
[   55.031936][ T5893]  <TASK>
[   55.032698][ T5893]  dump_stack_lvl+0x16c/0x1f0
[   55.033872][ T5893]  should_fail_ex+0x497/0x5b0
[   55.035043][ T5893]  _copy_from_iter+0x29b/0x13e0
[   55.036241][ T5893]  ? __pfx__copy_from_iter+0x10/0x10
[   55.037677][ T5893]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[   55.039184][ T5893]  ? tun_build_skb.constprop.0+0x1b8/0x1120
[   55.040807][ T5893]  ? __pfx_lock_release+0x10/0x10
[   55.042105][ T5893]  ? trace_lock_acquire+0x14a/0x1d0
[   55.043405][ T5893]  copy_page_from_iter+0xa5/0x120
[   55.044813][ T5893]  tun_build_skb.constprop.0+0x294/0x1120
[   55.046231][ T5893]  ? __pfx_tun_build_skb.constprop.0+0x10/0x10
[   55.047762][ T5893]  ? __pfx___lock_acquire+0x10/0x10
[   55.049064][ T5893]  ? __pfx___lock_acquire+0x10/0x10
[   55.050385][ T5893]  ? __pfx___lock_acquire+0x10/0x10
[   55.051682][ T5893]  ? __lock_acquire+0xbdd/0x3ce0
[   55.052939][ T5893]  tun_get_user+0x872/0x3d70
[   55.054093][ T5893]  ? find_held_lock+0x2d/0x110
[   55.055280][ T5893]  ? __pfx_tun_get_user+0x10/0x10
[   55.056575][ T5893]  ? find_held_lock+0x2d/0x110
[   55.057779][ T5893]  ? __pfx_lock_release+0x10/0x10
[   55.059021][ T5893]  tun_chr_write_iter+0xdc/0x210
[   55.060279][ T5893]  vfs_write+0x6b5/0x1140
[   55.061404][ T5893]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   55.062782][ T5893]  ? trace_lock_acquire+0x14a/0x1d0
[   55.064322][ T5893]  ? __pfx_vfs_write+0x10/0x10
[   55.065567][ T5893]  ? __fget_files+0x40/0x3f0
[   55.066704][ T5893]  ksys_write+0x12f/0x260
[   55.067784][ T5893]  ? __pfx_ksys_write+0x10/0x10
[   55.069007][ T5893]  __do_fast_syscall_32+0x73/0x120
[   55.070277][ T5893]  do_fast_syscall_32+0x32/0x80
[   55.071499][ T5893]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   55.073033][ T5893] RIP: 0023:0xf7f1f579
[   55.074053][ T5893] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   55.078669][ T5893] RSP: 002b:00000000f56a6530 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[   55.080907][ T5893] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000020000540
[   55.082882][ T5893] RDX: 0000000000000046 RSI: 00000000f73abff4 RDI: 0000000000000000
[   55.084846][ T5893] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   55.086808][ T5893] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   55.088749][ T5893] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   55.090710][ T5893]  </TASK>
[   55.163468][ T5895] netlink: 16178 bytes leftover after parsing attributes in process `syz.0.141'.
[   55.287729][ T5903] vlan2: entered promiscuous mode
[   55.289682][ T5903] team_slave_0: entered promiscuous mode
[   55.291241][ T5903] team_slave_1: entered promiscuous mode
[   55.292669][ T5903] team0: entered promiscuous mode
[   55.295207][ T5903] bond0: (slave vlan2): Enslaving as an active interface with an up link
[   55.407168][ T5905] netlink: 'syz.0.146': attribute type 75 has an invalid length.
[   55.768030][ T5934] netlink: 4 bytes leftover after parsing attributes in process `syz.2.155'.
[   55.884242][ T5944] netlink: 44 bytes leftover after parsing attributes in process `syz.2.156'.
[   56.138980][ T5961] FAULT_INJECTION: forcing a failure.
[   56.138980][ T5961] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   56.142331][ T5961] CPU: 2 UID: 0 PID: 5961 Comm: syz.3.163 Not tainted 6.12.0-rc4-syzkaller #0
[   56.144476][ T5961] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   56.147544][ T5961] Call Trace:
[   56.148733][ T5961]  <TASK>
[   56.149636][ T5961]  dump_stack_lvl+0x16c/0x1f0
[   56.150866][ T5961]  should_fail_ex+0x497/0x5b0
[   56.152020][ T5961]  _copy_to_user+0x30/0xc0
[   56.153142][ T5961]  simple_read_from_buffer+0xd0/0x160
[   56.154459][ T5961]  proc_fail_nth_read+0x198/0x270
[   56.155741][ T5961]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   56.157189][ T5961]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   56.158567][ T5961]  vfs_read+0x1ce/0xbd0
[   56.159603][ T5961]  ? __fget_files+0x23a/0x3f0
[   56.160811][ T5961]  ? fdget_pos+0x24c/0x360
[   56.161934][ T5961]  ? __pfx_lock_release+0x10/0x10
[   56.163300][ T5961]  ? trace_lock_acquire+0x14a/0x1d0
[   56.164677][ T5961]  ? __pfx_vfs_read+0x10/0x10
[   56.165877][ T5961]  ? __pfx___mutex_lock+0x10/0x10
[   56.167310][ T5961]  ? __fget_files+0x244/0x3f0
[   56.168544][ T5961]  ksys_read+0x12f/0x260
[   56.169620][ T5961]  ? __pfx_ksys_read+0x10/0x10
[   56.170840][ T5961]  __do_fast_syscall_32+0x73/0x120
[   56.172164][ T5961]  do_fast_syscall_32+0x32/0x80
[   56.173418][ T5961]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   56.175009][ T5961] RIP: 0023:0xf73ee579
[   56.176045][ T5961] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   56.181591][ T5961] RSP: 002b:00000000f56d65a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[   56.183655][ T5961] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f56d6620
[   56.185640][ T5961] RDX: 000000000000000f RSI: 00000000f73dbff4 RDI: 0000000000000000
[   56.187607][ T5961] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[   56.189595][ T5961] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   56.191526][ T5961] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   56.193689][ T5961]  </TASK>
[   56.201831][ T5964] netlink: 8 bytes leftover after parsing attributes in process `syz.1.164'.
[   56.205216][ T5964] netlink: 40 bytes leftover after parsing attributes in process `syz.1.164'.
[   56.250742][ T5964] IPVS: length: 24 != 1190616
[   56.273781][ T5968] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.285403][ T5968] 9pnet_fd: Insufficient options for proto=fd
[   56.491818][ T5976] netlink: 16 bytes leftover after parsing attributes in process `syz.0.168'.
[   57.066345][ T5999] netlink: 'syz.1.177': attribute type 25 has an invalid length.
[   57.074168][ T6002] netlink: 'syz.0.176': attribute type 9 has an invalid length.
[   57.112385][ T6004] FAULT_INJECTION: forcing a failure.
[   57.112385][ T6004] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   57.115634][ T6004] CPU: 0 UID: 0 PID: 6004 Comm: syz.0.178 Not tainted 6.12.0-rc4-syzkaller #0
[   57.118007][ T6004] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   57.120717][ T6004] Call Trace:
[   57.121734][ T6004]  <TASK>
[   57.122471][ T6004]  dump_stack_lvl+0x16c/0x1f0
[   57.123642][ T6004]  should_fail_ex+0x497/0x5b0
[   57.124872][ T6004]  _copy_to_user+0x30/0xc0
[   57.125953][ T6004]  do_pages_stat+0x5c1/0x820
[   57.127320][ T6004]  ? __pfx_do_pages_stat+0x10/0x10
[   57.129094][ T6004]  ? cpuset_mems_allowed+0x1d9/0x480
[   57.130792][ T6004]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   57.132260][ T6004]  ? lockdep_hardirqs_on+0x7c/0x110
[   57.133614][ T6004]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   57.135147][ T6004]  kernel_move_pages+0x10a4/0x15a0
[   57.136482][ T6004]  ? __mutex_unlock_slowpath+0x164/0x650
[   57.137962][ T6004]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   57.139836][ T6004]  ? __pfx_kernel_move_pages+0x10/0x10
[   57.141423][ T6004]  ? __fget_files+0x244/0x3f0
[   57.142636][ T6004]  ? fput+0x30/0x390
[   57.143871][ T6004]  ? ksys_write+0x1ad/0x260
[   57.145312][ T6004]  ? __pfx_ksys_write+0x10/0x10
[   57.146904][ T6004]  __ia32_sys_move_pages+0xdd/0x1b0
[   57.148263][ T6004]  ? lockdep_hardirqs_on+0x7c/0x110
[   57.149611][ T6004]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   57.151331][ T6004]  __do_fast_syscall_32+0x73/0x120
[   57.153121][ T6004]  do_fast_syscall_32+0x32/0x80
[   57.154863][ T6004]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   57.157078][ T6004] RIP: 0023:0xf7fbf579
[   57.158511][ T6004] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   57.165279][ T6004] RSP: 002b:00000000f574656c EFLAGS: 00000296 ORIG_RAX: 000000000000013d
[   57.168209][ T6004] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000001efe
[   57.171026][ T6004] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000020000040
[   57.173735][ T6004] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   57.176584][ T6004] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   57.178754][ T6004] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   57.180816][ T6004]  </TASK>
[   57.259189][ T6005] kernel profiling enabled (shift: 0)
[   57.346069][ T6015] __nla_validate_parse: 2 callbacks suppressed
[   57.346079][ T6015] netlink: 4 bytes leftover after parsing attributes in process `syz.0.181'.
[   57.355539][ T6015] netlink: 28 bytes leftover after parsing attributes in process `syz.0.181'.
[   57.811218][ T6024] netlink: 24 bytes leftover after parsing attributes in process `syz.2.184'.
[   57.965544][   T64] Bluetooth: hci2: SCO packet for unknown connection handle 0
[   57.965724][   T64] Bluetooth: hci2: SCO packet for unknown connection handle 0
[   57.968310][   T64] Bluetooth: hci2: SCO packet for unknown connection handle 1039
[   58.213005][ T6005] syz.1.177: vmalloc error: size 687865856, failed to allocated page array size 1343488, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[   58.221378][ T6005] CPU: 0 UID: 0 PID: 6005 Comm: syz.1.177 Not tainted 6.12.0-rc4-syzkaller #0
[   58.223823][ T6005] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   58.226900][ T6005] Call Trace:
[   58.227880][ T6005]  <TASK>
[   58.228762][ T6005]  dump_stack_lvl+0x16c/0x1f0
[   58.230052][ T6005]  warn_alloc+0x24d/0x3a0
[   58.231216][ T6005]  ? __pfx_warn_alloc+0x10/0x10
[   58.232521][ T6005]  ? __get_vm_area_node+0x190/0x2d0
[   58.233897][ T6005]  ? __get_vm_area_node+0x1bc/0x2d0
[   58.235205][ T6005]  __vmalloc_node_range_noprof+0x114a/0x15a0
[   58.236703][ T6005]  ? __pfx_profiling_store+0x10/0x10
[   58.238053][ T6005]  ? profile_init+0xd5/0x130
[   58.239215][ T6005]  ? policy_nodemask+0xea/0x4e0
[   58.240468][ T6005]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   58.242141][ T6005]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[   58.243719][ T6005]  ? trace_kmalloc+0x2d/0xe0
[   58.244941][ T6005]  ? profile_init+0xd5/0x130
[   58.246126][ T6005]  ? __pfx_profiling_store+0x10/0x10
[   58.247432][ T6005]  vzalloc_noprof+0x6b/0x90
[   58.248552][ T6005]  ? profile_init+0xd5/0x130
[   58.249680][ T6005]  profile_init+0xd5/0x130
[   58.250795][ T6005]  profiling_store+0x73/0xf0
[   58.251953][ T6005]  kobj_attr_store+0x55/0x80
[   58.253135][ T6005]  ? __pfx_kobj_attr_store+0x10/0x10
[   58.254478][ T6005]  sysfs_kf_write+0x117/0x170
[   58.255655][ T6005]  kernfs_fop_write_iter+0x33d/0x500
[   58.257024][ T6005]  ? __pfx_sysfs_kf_write+0x10/0x10
[   58.258385][ T6005]  vfs_write+0x6b5/0x1140
[   58.259533][ T6005]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[   58.261065][ T6005]  ? trace_lock_acquire+0x14a/0x1d0
[   58.262426][ T6005]  ? __pfx_vfs_write+0x10/0x10
[   58.263684][ T6005]  ? __pfx___mutex_lock+0x10/0x10
[   58.265055][ T6005]  ksys_write+0x12f/0x260
[   58.266200][ T6005]  ? __pfx_ksys_write+0x10/0x10
[   58.267482][ T6005]  __do_fast_syscall_32+0x73/0x120
[   58.268842][ T6005]  do_fast_syscall_32+0x32/0x80
[   58.270192][ T6005]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   58.272084][ T6005] RIP: 0023:0xf7f1f579
[   58.273361][ T6005] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   58.278499][ T6005] RSP: 002b:00000000f568556c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[   58.280755][ T6005] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000280
[   58.282788][ T6005] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[   58.284926][ T6005] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   58.287168][ T6005] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   58.289411][ T6005] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   58.291525][ T6005]  </TASK>
[   58.293478][ T6005] Mem-Info:
[   58.294308][ T6005] active_anon:4644 inactive_anon:500 isolated_anon:0
[   58.294308][ T6005]  active_file:15082 inactive_file:32686 isolated_file:0
[   58.294308][ T6005]  unevictable:768 dirty:140 writeback:0
[   58.294308][ T6005]  slab_reclaimable:5555 slab_unreclaimable:50747
[   58.294308][ T6005]  mapped:17855 shmem:1301 pagetables:724
[   58.294308][ T6005]  sec_pagetables:305 bounce:0
[   58.294308][ T6005]  kernel_misc_reclaimable:0
[   58.294308][ T6005]  free:65764 free_pcp:5471 free_cma:0
[   58.306480][ T6005] Node 0 active_anon:6032kB inactive_anon:2000kB active_file:14256kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:7060kB dirty:12kB writeback:0kB shmem:3148kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9544kB pagetables:1252kB sec_pagetables:1188kB all_unreclaimable? yes
[   58.315170][ T6005] Node 1 active_anon:12544kB inactive_anon:0kB active_file:46072kB inactive_file:130744kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:64360kB dirty:548kB writeback:0kB shmem:2064kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:1816kB pagetables:1644kB sec_pagetables:32kB all_unreclaimable? no
[   58.325328][ T6005] Node 0 DMA free:2968kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:1828kB inactive_anon:268kB active_file:768kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:472kB local_pcp:108kB free_cma:0kB
[   58.333156][ T6005] lowmem_reserve[]: 0 273 0 0 0
[   58.334558][ T6005] Node 0 DMA32 free:25408kB boost:4096kB min:18000kB low:21476kB high:24952kB reserved_highatomic:4096KB active_anon:4204kB inactive_anon:1732kB active_file:13488kB inactive_file:0kB unevictable:1536kB writepending:12kB present:1032196kB managed:306288kB mlocked:0kB bounce:0kB free_pcp:1188kB local_pcp:280kB free_cma:0kB
[   58.343952][ T6005] lowmem_reserve[]: 0 0 0 0 0
[   58.345339][ T6005] Node 1 DMA32 free:234360kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB active_anon:12544kB inactive_anon:0kB active_file:46072kB inactive_file:130744kB unevictable:1536kB writepending:548kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:20144kB local_pcp:1860kB free_cma:0kB
[   58.354628][ T6005] lowmem_reserve[]: 0 0 0 0 0
[   58.355979][ T6005] Node 0 DMA: 2*4kB (U) 6*8kB (U) 118*16kB (U) 32*32kB (U) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2968kB
[   58.360295][ T6005] Node 0 DMA32: 24*4kB (EH) 202*8kB (UMEH) 81*16kB (UMEH) 272*32kB (UMEH) 100*64kB (UMEH) 25*128kB (UME) 8*256kB (UME) 4*512kB (UM) 0*1024kB 0*2048kB 0*4096kB = 25408kB
[   58.365313][ T6005] Node 1 DMA32: 42*4kB (UME) 530*8kB (ME) 269*16kB (UME) 396*32kB (UME) 367*64kB (UME) 33*128kB (UME) 9*256kB (UM) 7*512kB (UM) 4*1024kB (UM) 1*2048kB (M) 46*4096kB (UM) = 249544kB
[   58.370375][ T6005] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   58.372818][ T6005] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[   58.375562][ T6005] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   58.379002][ T6005] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   58.381755][ T6005] 49072 total pagecache pages
[   58.382927][ T6005] 0 pages in swap cache
[   58.384140][ T6005] Free swap  = 124436kB
[   58.385294][ T6005] Total swap = 124996kB
[   58.386596][ T6005] 524155 pages RAM
[   58.387615][ T6005] 0 pages HighMem/MovableOnly
[   58.388868][ T6005] 206680 pages reserved
[   58.389978][ T6005] 0 pages cma reserved
[   58.634846][ T6032] netlink: 28 bytes leftover after parsing attributes in process `syz.1.187'.
[   58.676909][ T6035] raw_sendmsg: syz.1.188 forgot to set AF_INET. Fix it!
[   58.951264][ T6053] EXT4-fs (sda1): resizing filesystem from 262144 to 262144 blocks
[   59.057259][ T6058] netlink: 24 bytes leftover after parsing attributes in process `syz.0.198'.
[   59.308476][ T5387] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   59.458185][ T5387] usb 7-1: config 0 has no interfaces?
[   59.460329][ T5387] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   59.463636][ T5387] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   59.469775][ T5387] usb 7-1: config 0 descriptor??
[   59.501790][ T6076] FAULT_INJECTION: forcing a failure.
[   59.501790][ T6076] name failslab, interval 1, probability 0, space 0, times 0
[   59.506428][ T6076] CPU: 2 UID: 0 PID: 6076 Comm: syz.1.205 Not tainted 6.12.0-rc4-syzkaller #0
[   59.509362][ T6076] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   59.512322][ T6076] Call Trace:
[   59.513539][ T6076]  <TASK>
[   59.514526][ T6076]  dump_stack_lvl+0x16c/0x1f0
[   59.516198][ T6076]  should_fail_ex+0x497/0x5b0
[   59.517901][ T6076]  ? fs_reclaim_acquire+0xae/0x150
[   59.519765][ T6076]  should_failslab+0xc2/0x120
[   59.521512][ T6076]  __kmalloc_cache_noprof+0x6b/0x310
[   59.523433][ T6076]  ? garp_init_applicant+0x38d/0x500
[   59.525290][ T6076]  garp_init_applicant+0x38d/0x500
[   59.527124][ T6076]  register_vlan_dev+0x197/0x940
[   59.528396][ T6076]  ? vlan_changelink+0x2c3/0x5e0
[   59.529975][ T6076]  vlan_newlink+0x40e/0x6a0
[   59.531638][ T6076]  ? __pfx_vlan_newlink+0x10/0x10
[   59.533400][ T6076]  __rtnl_newlink+0x119c/0x1920
[   59.535140][ T6076]  ? __pfx___rtnl_newlink+0x10/0x10
[   59.537035][ T6076]  rtnl_newlink+0x67/0xa0
[   59.538607][ T6076]  ? __pfx_rtnl_newlink+0x10/0x10
[   59.540439][ T6076]  rtnetlink_rcv_msg+0x3c7/0xea0
[   59.542098][ T6076]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   59.544058][ T6076]  ? __pfx___dev_queue_xmit+0x10/0x10
[   59.546018][ T6076]  netlink_rcv_skb+0x165/0x410
[   59.547849][ T6076]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   59.549876][ T6076]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   59.551909][ T6076]  ? netlink_deliver_tap+0x1ae/0xcf0
[   59.553833][ T6076]  netlink_unicast+0x53c/0x7f0
[   59.555503][ T6076]  ? __pfx_netlink_unicast+0x10/0x10
[   59.557394][ T6076]  ? __phys_addr_symbol+0x30/0x80
[   59.559235][ T6076]  ? __check_object_size+0x488/0x710
[   59.561160][ T6076]  netlink_sendmsg+0x8b8/0xd70
[   59.562889][ T6076]  ? __pfx_netlink_sendmsg+0x10/0x10
[   59.564784][ T6076]  ? lock_acquire+0x2f/0xb0
[   59.566418][ T6076]  ____sys_sendmsg+0x9ae/0xb40
[   59.568059][ T6076]  ? __pfx_____sys_sendmsg+0x10/0x10
[   59.570164][ T6076]  ? get_compat_msghdr+0x11b/0x170
[   59.572042][ T6076]  ? __pfx___lock_acquire+0x10/0x10
[   59.573934][ T6076]  ___sys_sendmsg+0x135/0x1e0
[   59.575660][ T6076]  ? __pfx____sys_sendmsg+0x10/0x10
[   59.577528][ T6076]  ? lock_acquire+0x2f/0xb0
[   59.579143][ T6076]  ? __fget_files+0x40/0x3f0
[   59.580832][ T6076]  ? fdget+0x176/0x210
[   59.582338][ T6076]  __sys_sendmsg+0x117/0x1f0
[   59.584006][ T6076]  ? __pfx___sys_sendmsg+0x10/0x10
[   59.585810][ T6076]  ? __fget_files+0x244/0x3f0
[   59.587522][ T6076]  __do_fast_syscall_32+0x73/0x120
[   59.589357][ T6076]  do_fast_syscall_32+0x32/0x80
[   59.591128][ T6076]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   59.593409][ T6076] RIP: 0023:0xf7f1f579
[   59.594984][ T6076] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   59.601647][ T6076] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   59.604577][ T6076] RAX: ffffffffffffffda RBX: 000000000000000d RCX: 00000000200002c0
[   59.606722][ T6076] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   59.608766][ T6076] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   59.610812][ T6076] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   59.613053][ T6076] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   59.615055][ T6076]  </TASK>
[   59.616894][   T64] Bluetooth: hci1: command tx timeout
[   59.787267][ T6080] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   59.849144][ T5728] usb 7-1: USB disconnect, device number 3
[   59.884318][ T6081] mkiss: ax0: crc mode is auto.
[   60.480738][ T6098] capability: warning: `syz.0.212' uses 32-bit capabilities (legacy support in use)
[   60.525158][ T6100] netlink: 24 bytes leftover after parsing attributes in process `syz.2.213'.
[   60.533039][ T6100] netlink: 48 bytes leftover after parsing attributes in process `syz.2.213'.
[   60.570420][ T6105] netlink: 24 bytes leftover after parsing attributes in process `syz.0.215'.
[   60.628374][ T6109] program syz.1.217 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   60.637475][ T6100] netlink: 5304 bytes leftover after parsing attributes in process `syz.2.213'.
[   60.907857][   T64] Bluetooth: hci0: command tx timeout
[   61.486247][   T39] audit: type=1326 audit(1729552382.044:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="syz.0.223" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x0
[   61.696216][ T6132] No control pipe specified
[   61.844822][ T6149] netlink: 24 bytes leftover after parsing attributes in process `syz.1.228'.
[   62.106992][   T64] Bluetooth: hci3: command tx timeout
[   62.365951][ T6170] __nla_validate_parse: 3 callbacks suppressed
[   62.365961][ T6170] netlink: 28 bytes leftover after parsing attributes in process `syz.1.235'.
[   62.574075][ T6174] 9pnet_fd: Insufficient options for proto=fd
[   62.576748][ T6174] vivid-002: disconnect
[   62.744480][ T6173] vivid-002: reconnect
[   62.923361][ T6181] netlink: 8 bytes leftover after parsing attributes in process `syz.1.239'.
[   62.925849][ T6181] nbd: must specify a size in bytes for the device
[   62.998402][   T64] Bluetooth: hci0: command tx timeout
[   63.012776][ T6197] netlink: 24 bytes leftover after parsing attributes in process `syz.1.243'.
[   63.015945][ T6197] netlink: 48 bytes leftover after parsing attributes in process `syz.1.243'.
[   63.196629][ T6203] netlink: 5304 bytes leftover after parsing attributes in process `syz.1.243'.
[   63.676223][ T6210] netlink: 24 bytes leftover after parsing attributes in process `syz.1.248'.
[   63.772733][ T6201] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   64.276856][   T64] Bluetooth: hci3: command tx timeout
[   64.406035][ T6228] netlink: 24 bytes leftover after parsing attributes in process `syz.0.255'.
[   64.409610][ T6228] netlink: 48 bytes leftover after parsing attributes in process `syz.0.255'.
[   64.543608][ T6235] netlink: 8 bytes leftover after parsing attributes in process `syz.1.257'.
[   64.550007][ T6235] wireguard0: entered promiscuous mode
[   64.551860][ T6235] wireguard0: entered allmulticast mode
[   64.581765][ T6230] netlink: 5304 bytes leftover after parsing attributes in process `syz.0.255'.
[   64.815726][  T980] hid-generic 0000:0000:0000.0003: unknown main item tag 0x7
[   64.817972][  T980] hid-generic 0000:0000:0000.0003: ignoring exceeding usage max
[   64.820601][  T980] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.822551][  T980] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.824444][  T980] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.827423][  T980] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.829359][  T980] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.830462][ T6250] [U] 
[   64.831329][  T980] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.832374][ T6250] [U] uV�u�U�l�,�{�gRu
�
[   64.834281][  T980] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.840467][  T980] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.842460][  T980] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.842702][ T6248] [U] .�y����Y��m`��r�9�����bV��0���3u�g6��r�c7?���̾��.��:m
[   64.844352][  T980] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.848967][  T980] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.850922][  T980] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.852902][  T980] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.854851][  T980] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.857676][  T980] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.859597][  T980] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.861509][  T980] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.863617][  T980] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.865533][  T980] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.867519][  T980] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.869852][  T980] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.874470][  T980] hid-generic 0000:0000:0000.0003: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   65.623882][ T6270] netlink: 'syz.1.269': attribute type 5 has an invalid length.
[   66.386431][ T6264] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   66.506638][   T64] Bluetooth: hci2: command tx timeout
[   67.163068][ T6322] syz.1.289[6322] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   67.163117][ T6322] syz.1.289[6322] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   67.469265][ T6347] __nla_validate_parse: 15 callbacks suppressed
[   67.469276][ T6347] netlink: 24 bytes leftover after parsing attributes in process `syz.1.296'.
[   67.562644][ T6351] ubi0: attaching mtd0
[   67.564658][ T6351] ubi0: scanning is finished
[   67.565847][ T6351] ubi0: empty MTD device detected
[   67.604293][ T6355] netlink: 4 bytes leftover after parsing attributes in process `syz.2.300'.
[   67.607274][ T6355] netlink: 4 bytes leftover after parsing attributes in process `syz.2.300'.
[   67.643538][ T6351] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB)
[   67.645487][ T6351] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[   67.648088][ T6351] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1
[   67.649868][ T6351] ubi0: VID header offset: 64 (aligned 64), data offset: 128
[   67.651828][ T6351] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[   67.653508][ T6351] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23
[   67.655470][ T6351] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 1655423719
[   67.660422][ T6351] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[   67.664203][ T6357] ubi0: background thread "ubi_bgt0d" started, PID 6357
[   67.703409][ T6364] befs: Unrecognized mount option "�]<���s_�
�4���r��3wS1y���Cl*���]������b"�e�#(r��" or missing value
[   67.706463][ T6364] befs: (nullb0): cannot parse mount options
[   67.777411][ T6367] autofs: Bad value for 'fd'
[   67.866649][   T64] Bluetooth: hci0: command tx timeout
[   68.204433][ T6383] netlink: 24 bytes leftover after parsing attributes in process `syz.2.309'.
[   68.208404][ T6383] netlink: 48 bytes leftover after parsing attributes in process `syz.2.309'.
[   68.281071][ T6386] netlink: 5304 bytes leftover after parsing attributes in process `syz.2.309'.
[   68.347195][ T6388] netlink: 4 bytes leftover after parsing attributes in process `syz.1.310'.
[   68.467276][ T6392] netlink: 20 bytes leftover after parsing attributes in process `syz.2.311'.
[   68.665511][ T6412] netlink: 12 bytes leftover after parsing attributes in process `syz.2.317'.
[   68.674826][ T6411] netlink: 24 bytes leftover after parsing attributes in process `syz.1.318'.
[   69.054130][ T6428] loop0: detected capacity change from 0 to 13104
[   69.147834][   T64] Bluetooth: hci2: command tx timeout
[   69.148912][   T39] audit: type=1326 audit(1729552389.714:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6429 comm="syz.0.325" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000
[   69.156163][   T39] audit: type=1326 audit(1729552389.714:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6429 comm="syz.0.325" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000
[   69.164048][   T39] audit: type=1326 audit(1729552389.714:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6429 comm="syz.0.325" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7fbf579 code=0x7ffc0000
[   69.169941][   T39] audit: type=1326 audit(1729552389.714:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6429 comm="syz.0.325" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000
[   69.179299][   T39] audit: type=1326 audit(1729552389.714:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6429 comm="syz.0.325" exe="/syz-executor" sig=0 arch=40000003 syscall=449 compat=1 ip=0xf7fbf579 code=0x7ffc0000
[   69.202165][   T39] audit: type=1326 audit(1729552389.764:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6429 comm="syz.0.325" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000
[   69.207782][   T39] audit: type=1326 audit(1729552389.764:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6429 comm="syz.0.325" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000
[   69.213098][   T39] audit: type=1326 audit(1729552389.764:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6429 comm="syz.0.325" exe="/syz-executor" sig=0 arch=40000003 syscall=296 compat=1 ip=0xf7fbf579 code=0x7ffc0000
[   69.219894][   T39] audit: type=1326 audit(1729552389.764:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6429 comm="syz.0.325" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000
[   69.225181][   T39] audit: type=1326 audit(1729552389.764:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6429 comm="syz.0.325" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000
[   70.109055][   T64] Bluetooth: hci3: command tx timeout
[   70.514110][ T6470] FAULT_INJECTION: forcing a failure.
[   70.514110][ T6470] name failslab, interval 1, probability 0, space 0, times 0
[   70.517707][ T6470] CPU: 1 UID: 0 PID: 6470 Comm: syz.1.338 Not tainted 6.12.0-rc4-syzkaller #0
[   70.520580][ T6470] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   70.524031][ T6470] Call Trace:
[   70.525118][ T6470]  <TASK>
[   70.526105][ T6470]  dump_stack_lvl+0x16c/0x1f0
[   70.527707][ T6470]  should_fail_ex+0x497/0x5b0
[   70.528940][ T6470]  ? fs_reclaim_acquire+0xae/0x150
[   70.530594][ T6470]  should_failslab+0xc2/0x120
[   70.532033][ T6470]  __kmalloc_cache_noprof+0x6b/0x310
[   70.533399][ T6470]  ? vb2_vmalloc_alloc+0xe2/0x3d0
[   70.534674][ T6470]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[   70.536069][ T6470]  vb2_vmalloc_alloc+0xe2/0x3d0
[   70.537380][ T6470]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[   70.538956][ T6470]  __vb2_queue_alloc+0x896/0x1230
[   70.540668][ T6470]  ? vbi_out_queue_setup+0x1e3/0x2b0
[   70.542185][ T6470]  vb2_core_reqbufs+0xa73/0xfb0
[   70.543606][ T6470]  ? __pfx_vb2_core_reqbufs+0x10/0x10
[   70.545225][ T6470]  __vb2_init_fileio+0x3f3/0x1110
[   70.546928][ T6470]  ? trace_contention_end+0xea/0x140
[   70.548661][ T6470]  ? __mutex_lock+0x1a6/0x9c0
[   70.550238][ T6470]  __vb2_perform_fileio+0x9de/0x1620
[   70.551801][ T6470]  ? __lock_acquire+0xbdd/0x3ce0
[   70.553083][ T6470]  ? __pfx___vb2_perform_fileio+0x10/0x10
[   70.554550][ T6470]  vb2_fop_write+0x202/0x3e0
[   70.555766][ T6470]  v4l2_write+0x226/0x360
[   70.557170][ T6470]  ? __pfx_v4l2_write+0x10/0x10
[   70.558674][ T6470]  vfs_write+0x28e/0x1140
[   70.559920][ T6470]  ? __fget_files+0x23a/0x3f0
[   70.561391][ T6470]  ? __pfx_lock_release+0x10/0x10
[   70.563036][ T6470]  ? trace_lock_acquire+0x14a/0x1d0
[   70.564609][ T6470]  ? __pfx_vfs_write+0x10/0x10
[   70.566072][ T6470]  ? lock_acquire+0x2f/0xb0
[   70.567588][ T6470]  ? __fget_files+0x40/0x3f0
[   70.568963][ T6470]  ? __fget_files+0x244/0x3f0
[   70.570376][ T6470]  ksys_pwrite64+0x178/0x1b0
[   70.571932][ T6470]  ? __pfx_ksys_pwrite64+0x10/0x10
[   70.573353][ T6470]  __do_fast_syscall_32+0x73/0x120
[   70.574844][ T6470]  do_fast_syscall_32+0x32/0x80
[   70.576496][ T6470]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   70.578599][ T6470] RIP: 0023:0xf7f1f579
[   70.579988][ T6470] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   70.586466][ T6470] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 00000000000000b5
[   70.589304][ T6470] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000040
[   70.591979][ T6470] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   70.594610][ T6470] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   70.597050][ T6470] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   70.599669][ T6470] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   70.601904][ T6470]  </TASK>
[   70.670932][ T1376] ieee802154 phy0 wpan0: encryption failed: -22
[   70.673723][ T1376] ieee802154 phy1 wpan1: encryption failed: -22
[   71.226870][   T64] Bluetooth: hci2: command tx timeout
[   71.373065][ T6498] 9pnet_fd: Insufficient options for proto=fd
[   71.386687][   T64] Bluetooth: hci1: command tx timeout
[   71.403353][ T6500] bridge0: port 2(bridge_slave_1) entered disabled state
[   71.405364][ T6500] bridge0: port 1(bridge_slave_0) entered disabled state
[   71.416212][ T6500] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.418152][ T6500] bridge0: port 2(bridge_slave_1) entered forwarding state
[   71.420588][ T6500] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.422439][ T6500] bridge0: port 1(bridge_slave_0) entered forwarding state
[   71.424716][ T6500] bridge0: entered promiscuous mode
[   71.426164][ T6500] bridge0: entered allmulticast mode
[   71.676817][ T2787] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[   71.717686][ T6507] ------------[ cut here ]------------
[   71.719337][ T6507] kmem_cache of name '9p-fcall-cache-syz' already exists
[   71.721339][ T6507] WARNING: CPU: 3 PID: 6507 at mm/slab_common.c:107 __kmem_cache_create_args+0xb0/0x3c0
[   71.723940][ T6507] Modules linked in:
[   71.725149][ T6507] CPU: 3 UID: 0 PID: 6507 Comm: syz.0.352 Not tainted 6.12.0-rc4-syzkaller #0
[   71.728634][ T6507] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   71.731412][ T6507] RIP: 0010:__kmem_cache_create_args+0xb0/0x3c0
[   71.732977][ T6507] Code: 98 48 3d d0 bb f1 8d 74 25 48 8b 7b 60 48 89 ee e8 65 ee 34 09 85 c0 75 e0 90 48 c7 c7 10 33 58 8d 48 89 ee e8 41 a6 7e ff 90 <0f> 0b 90 90 be 20 00 00 00 48 89 ef e8 ef ef 34 09 48 85 c0 0f 85
[   71.738790][ T6507] RSP: 0018:ffffc9000e24f8f0 EFLAGS: 00010286
[   71.740840][ T6507] RAX: 0000000000000000 RBX: ffff888025636c80 RCX: ffffc90007a21000
[   71.743504][ T6507] RDX: 0000000000040000 RSI: ffffffff814e38c6 RDI: 0000000000000001
[   71.746160][ T6507] RBP: ffff888060296c00 R08: 0000000000000001 R09: 0000000000000000
[   71.748910][ T6507] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000
[   71.751544][ T6507] R13: 0000000000020018 R14: ffffc9000e24f9e0 R15: 0000000000020018
[   71.754200][ T6507] FS:  0000000000000000(0000) GS:ffff88802b700000(0063) knlGS:00000000f5725b40
[   71.757985][ T6507] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[   71.760203][ T6507] CR2: 00000000f740bad8 CR3: 0000000013138000 CR4: 0000000000352ef0
[   71.762887][ T6507] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   71.765541][ T6507] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   71.768293][ T6507] Call Trace:
[   71.769438][ T6507]  <TASK>
[   71.770445][ T6507]  ? __warn+0xea/0x3d0
[   71.771839][ T6507]  ? __kmem_cache_create_args+0xb0/0x3c0
[   71.773742][ T6507]  ? report_bug+0x3c0/0x580
[   71.775292][ T6507]  ? handle_bug+0x54/0xa0
[   71.776847][ T6507]  ? exc_invalid_op+0x17/0x50
[   71.778427][ T6507]  ? asm_exc_invalid_op+0x1a/0x20
[   71.780141][ T6507]  ? __warn_printk+0x1a6/0x350
[   71.781766][ T6507]  ? __kmem_cache_create_args+0xb0/0x3c0
[   71.783660][ T6507]  p9_client_create+0xe27/0x1190
[   71.785339][ T6507]  ? __pfx_p9_client_create+0x10/0x10
[   71.787231][ T6507]  ? __raw_spin_lock_init+0x3a/0x110
[   71.789041][ T6507]  v9fs_session_init+0x1f8/0x1a80
[   71.790757][ T6507]  ? __pfx_v9fs_session_init+0x10/0x10
[   71.792627][ T6507]  ? kasan_save_track+0x14/0x30
[   71.794296][ T6507]  v9fs_mount+0xc6/0xa50
[   71.795729][ T6507]  ? __pfx_v9fs_mount+0x10/0x10
[   71.797464][ T6507]  ? __pfx_v9fs_mount+0x10/0x10
[   71.799099][ T6507]  legacy_get_tree+0x109/0x220
[   71.800730][ T6507]  vfs_get_tree+0x8f/0x380
[   71.802230][ T6507]  path_mount+0x6e1/0x1f10
[   71.803753][ T6507]  ? kmem_cache_free+0x152/0x4b0
[   71.805429][ T6507]  ? __pfx_path_mount+0x10/0x10
[   71.807151][ T6507]  ? putname+0x12e/0x170
[   71.808610][ T6507]  __ia32_sys_mount+0x292/0x310
[   71.810263][ T6507]  ? __pfx___ia32_sys_mount+0x10/0x10
[   71.812078][ T6507]  __do_fast_syscall_32+0x73/0x120
[   71.813827][ T6507]  do_fast_syscall_32+0x32/0x80
[   71.815486][ T6507]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   71.817712][ T6507] RIP: 0023:0xf7fbf579
[   71.819099][ T6507] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   71.825626][ T6507] RSP: 002b:00000000f572556c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[   71.826595][ T2787] usb 7-1: Using ep0 maxpacket: 32
[   71.828457][ T6507] RAX: ffffffffffffffda RBX: 00000000200001c0 RCX: 0000000020000480
[   71.831047][ T2787] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 32
[   71.832452][ T6507] RDX: 00000000200004c0 RSI: 0000000000000002 RDI: 0000000000000000
[   71.832468][ T6507] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   71.832480][ T6507] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   71.836632][ T2787] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   71.837775][ T6507] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   71.839734][ T2787] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   71.842398][ T6507]  </TASK>
[   71.844724][ T2787] usb 7-1: Product: syz
[   71.847476][ T6507] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   71.847488][ T6507] CPU: 3 UID: 0 PID: 6507 Comm: syz.0.352 Not tainted 6.12.0-rc4-syzkaller #0
[   71.847506][ T6507] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   71.847515][ T6507] Call Trace:
[   71.847525][ T6507]  <TASK>
[   71.847532][ T6507]  dump_stack_lvl+0x3d/0x1f0
[   71.847563][ T6507]  panic+0x71d/0x800
[   71.847586][ T6507]  ? __pfx_panic+0x10/0x10
[   71.847611][ T6507]  ? show_trace_log_lvl+0x29d/0x3d0
[   71.847638][ T6507]  ? __kmem_cache_create_args+0xb0/0x3c0
[   71.847656][ T6507]  check_panic_on_warn+0xab/0xb0
[   71.847679][ T6507]  __warn+0xf6/0x3d0
[   71.847700][ T6507]  ? __kmem_cache_create_args+0xb0/0x3c0
[   71.847718][ T6507]  report_bug+0x3c0/0x580
[   71.847743][ T6507]  handle_bug+0x54/0xa0
[   71.847758][ T6507]  exc_invalid_op+0x17/0x50
[   71.847773][ T6507]  asm_exc_invalid_op+0x1a/0x20
[   71.847794][ T6507] RIP: 0010:__kmem_cache_create_args+0xb0/0x3c0
[   71.847811][ T6507] Code: 98 48 3d d0 bb f1 8d 74 25 48 8b 7b 60 48 89 ee e8 65 ee 34 09 85 c0 75 e0 90 48 c7 c7 10 33 58 8d 48 89 ee e8 41 a6 7e ff 90 <0f> 0b 90 90 be 20 00 00 00 48 89 ef e8 ef ef 34 09 48 85 c0 0f 85
[   71.847827][ T6507] RSP: 0018:ffffc9000e24f8f0 EFLAGS: 00010286
[   71.847842][ T6507] RAX: 0000000000000000 RBX: ffff888025636c80 RCX: ffffc90007a21000
[   71.847853][ T6507] RDX: 0000000000040000 RSI: ffffffff814e38c6 RDI: 0000000000000001
[   71.847864][ T6507] RBP: ffff888060296c00 R08: 0000000000000001 R09: 0000000000000000
[   71.847874][ T6507] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000
[   71.847884][ T6507] R13: 0000000000020018 R14: ffffc9000e24f9e0 R15: 0000000000020018
[   71.847902][ T6507]  ? __warn_printk+0x1a6/0x350
[   71.847922][ T6507]  p9_client_create+0xe27/0x1190
[   71.847936][ T6507]  ? __pfx_p9_client_create+0x10/0x10
[   71.847952][ T6507]  ? __raw_spin_lock_init+0x3a/0x110
[   71.847965][ T6507]  v9fs_session_init+0x1f8/0x1a80
[   71.847986][ T6507]  ? __pfx_v9fs_session_init+0x10/0x10
[   71.848019][ T6507]  ? kasan_save_track+0x14/0x30
[   71.848042][ T6507]  v9fs_mount+0xc6/0xa50
[   71.848056][ T6507]  ? __pfx_v9fs_mount+0x10/0x10
[   71.848068][ T6507]  ? __pfx_v9fs_mount+0x10/0x10
[   71.848076][ T6507]  legacy_get_tree+0x109/0x220
[   71.848091][ T6507]  vfs_get_tree+0x8f/0x380
[   71.848102][ T6507]  path_mount+0x6e1/0x1f10
[   71.848113][ T6507]  ? kmem_cache_free+0x152/0x4b0
[   71.848126][ T6507]  ? __pfx_path_mount+0x10/0x10
[   71.848137][ T6507]  ? putname+0x12e/0x170
[   71.848151][ T6507]  __ia32_sys_mount+0x292/0x310
[   71.848162][ T6507]  ? __pfx___ia32_sys_mount+0x10/0x10
[   71.848175][ T6507]  __do_fast_syscall_32+0x73/0x120
[   71.848189][ T6507]  do_fast_syscall_32+0x32/0x80
[   71.848202][ T6507]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   71.848216][ T6507] RIP: 0023:0xf7fbf579
[   71.848223][ T6507] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   71.848232][ T6507] RSP: 002b:00000000f572556c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[   71.848243][ T6507] RAX: ffffffffffffffda RBX: 00000000200001c0 RCX: 0000000020000480
[   71.848254][ T6507] RDX: 00000000200004c0 RSI: 0000000000000002 RDI: 0000000000000000
[   71.848262][ T6507] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   71.848268][ T6507] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   71.848275][ T6507] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   71.848287][ T6507]  </TASK>
[   71.849774][ T6507] Kernel Offset: disabled

VM DIAGNOSIS:
23:13:12  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000244aa9 RBX=0000000000000000 RCX=ffffffff8b139ef9 RDX=0000000000000000
RSI=ffffffff8b4cc940 RDI=ffffffff8bb12d60 RBP=fffffbfff1b52af8 RSP=ffffffff8da07e20
R8 =0000000000000001 R9 =ffffed1005687025 R10=ffff88802b43812b R11=0000000000000000
R12=0000000000000000 R13=ffffffff8da957c0 R14=ffffffff901ce5c8 R15=0000000000000000
RIP=ffffffff8b13b2df RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055dbc50c2000 CR3=00000000292ca000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=7a4ac3a67a4ac3a6 7a4ac3a67a4ac3a6 7a4ac3a67a4ac3a6 7a4ac3a67a4ac3a6 7a4ac3a67a4ac3a6 7a4ac3a67a4ac3a6 7a4ac3a67a4ac3a6 7a4ac3a67a4ac3a6
ZMM22=c13e0d29c13e0d29 c13e0d29c13e0d29 c13e0d29c13e0d29 c13e0d29c13e0d29 c13e0d29c13e0d29 c13e0d29c13e0d29 c13e0d29c13e0d29 c13e0d29c13e0d29
ZMM23=412fa5a2412fa5a2 412fa5a2412fa5a2 412fa5a2412fa5a2 412fa5a2412fa5a2 412fa5a2412fa5a2 412fa5a2412fa5a2 412fa5a2412fa5a2 412fa5a2412fa5a2
ZMM24=86bc1ea386bc1ea3 86bc1ea386bc1ea3 86bc1ea386bc1ea3 86bc1ea386bc1ea3 86bc1ea386bc1ea3 86bc1ea386bc1ea3 86bc1ea386bc1ea3 86bc1ea386bc1ea3
ZMM25=a6022192a6022192 a6022192a6022192 a6022192a6022192 a6022192a6022192 a6022192a6022192 a6022192a6022192 a6022192a6022192 a6022192a6022192
ZMM26=6166bd6e6166bd6e 6166bd6e6166bd6e 6166bd6e6166bd6e 6166bd6e6166bd6e 6166bd6e6166bd6e 6166bd6e6166bd6e 6166bd6e6166bd6e 6166bd6e6166bd6e
ZMM27=473d9255473d9255 473d9255473d9255 473d9255473d9255 473d9255473d9255 473d9255473d9255 473d9255473d9255 473d9255473d9255 473d9255473d9255
ZMM28=000000100000000f 0000000e0000000d 0000000c0000000b 0000000a00000009 0000000800000007 0000000600000005 0000000400000003 0000000200000001
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=6e0300006e030000 6e0300006e030000 6e0300006e030000 6e0300006e030000 6e0300006e030000 6e0300006e030000 6e0300006e030000 6e0300006e030000
info registers vcpu 1

CPU#1
RAX=000000000028d715 RBX=0000000000000001 RCX=ffffffff8b139ef9 RDX=0000000000000000
RSI=ffffffff8b4cc940 RDI=ffffffff8bb12d60 RBP=ffffed10036e9910 RSP=ffffc90000477e08
R8 =0000000000000001 R9 =ffffed10056a7025 R10=ffff88802b53812b R11=0000000000000000
R12=0000000000000001 R13=ffff88801b74c880 R14=ffffffff901ce5c8 R15=0000000000000000
RIP=ffffffff8b13b2df RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020414000 CR3=000000002aba4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000001 Opmask01=0000000000400000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcf00e7200 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6565656565656565 6565656565656565
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffff0000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f70203a30656764 697262205d303035 3654205b5d323531 3831342e31372000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6570203030656764 6372622057303035 3654205157323531 3231342431372000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4130303030303020 3039323030302030 203a522041303734 2054203536363634
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3630202e30202020 2030302030002030 2020302020302020 2020203020203020
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e322a3a3a2a3a3a 2a3a3a2a3a3a2a3c 382a3e682a6e322a 3a332a3a332a3a33
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6c3a3a3a3a3a3a3a 3a3068383a3a2a30 5a59582a573a3d3e 3c5e2a51573c3c3e
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=dffffc0000000000 RBX=0000000000038128 RCX=ffffffff816a3409 RDX=1ffffffff1b03772
RSI=ffffffff8bb12ce0 RDI=ffffffff8d81bb90 RBP=0000000000000002 RSP=ffffc900006ffbf0
R8 =0000000000000000 R9 =fffffbfff2039cb9 R10=ffffffff901ce5cf R11=0000000000000000
R12=ffffc900006ffd80 R13=ffff88802b63e1c8 R14=000000000003dbcc R15=ffffc900006ffd80
RIP=ffffffff81730871 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000000020e40000 CR3=0000000013138000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000000002e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8503ecf5 RDI=ffffffff9a640260 RBP=ffffffff9a640220 RSP=ffffc9000e24f258
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=000000000000002e R14=ffffffff8503ec90 R15=0000000000000000
RIP=ffffffff8503ed1f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b700000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00000000f740bad8 CR3=0000000013138000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000