last executing test programs:

3.455148849s ago: executing program 0 (id=1334):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000000)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x4801})
socket$xdp(0x2c, 0x3, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x42b02, 0x0)
r2 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r2, &(0x7f0000000140)={{0x6, @bcast, 0x2}, [@bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @bcast]}, 0x48)
r3 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r0, &(0x7f0000000300)={{0x6, @rose}, [@null, @default, @default, @default, @bcast, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}]}, 0x48)
listen(r2, 0x1ad72f7)
syz_usb_connect(0x0, 0x3f, &(0x7f0000000540)=ANY=[@ANYBLOB="11010000733336088dee1edb2361000000010902"], 0x0)
writev(r3, &(0x7f0000001700)=[{&(0x7f00000001c0)="8a955aac55d4", 0x6}], 0x1)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=@ipv6_newrule={0x30, 0x1a, 0x1, 0x0, 0x0, {0x81}, [@FRA_DST={0x14, 0x1, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}]}, 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x0)
close(r1)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000180))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
r5 = openat$vicodec0(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_G_EXT_CTRLS(r5, 0xc0185648, &(0x7f0000000080)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0x990a61, 0x7, '\x00', @p_u32=&(0x7f0000000100)}})
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r6, &(0x7f0000000080)={0x0, 0x8000000, &(0x7f0000000680)=[{&(0x7f0000000000)="5c00000014006b05c84e21000ab16d6e230675f802000000440002005817d30461bc24eeb556a705251e6182149a36c23d3b48dfd8cdbf9367b098fa51f60a64c9f408000000e786a6d0bdd70000b6c0504bb9189d9193e9bd1c1b78", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)

2.796633956s ago: executing program 2 (id=1340):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f00000000c0)=0xa0000)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
socket$inet6_udp(0xa, 0x2, 0x0)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000011c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY_ROUTE(r4, &(0x7f0000000080)={0x5, 0x10, 0xfa00, {0x0, r5}}, 0x18)
syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
mount(0x0, 0x0, &(0x7f0000000000)='proc\x00', 0x0, 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000140)={0x0, <r6=>0x0})
r7 = syz_open_procfs(r6, &(0x7f0000000600)='fd/4\x00')
open_by_handle_at(r7, 0x0, 0x10000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000040)={@host})
ioctl$IOCTL_VMCI_QUEUEPAIR_DETACH(r0, 0x7b1, &(0x7f0000000000)={{@local}, 0x2})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
set_mempolicy(0x3, 0x0, 0x8)
set_mempolicy(0x5, &(0x7f0000000000)=0x2, 0x8)

2.263049855s ago: executing program 0 (id=1350):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000950000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
r1 = syz_open_dev$evdev(&(0x7f0000000180), 0x4, 0x0)
ioctl$EVIOCSKEYCODE_V2(r1, 0x80104592, &(0x7f0000000040)={0x0, 0x0, 0x0, 0xfffffffe, "00207d2000000000201b14700c1e0ac74f000000001280000000000900"})
ioctl$EVIOCGBITSND(r1, 0x8000451a, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f00000005c0), r3)
getsockopt$bt_hci(0xffffffffffffffff, 0x84, 0x72, 0x0, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000010400000400ec00000000000000", @ANYRES32=r4, @ANYBLOB="00000000000000001c0012000b000100627269646765"], 0x3c}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x1, 0x803, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="3c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140003006272696467655f736c6176655f31000008000a00", @ANYRES32=r7], 0x3c}}, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)=ANY=[@ANYBLOB="4000000010000104000000000000007300000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000140003006272696467655f736c6176655f3100000a000100be"], 0x40}}, 0x0)

2.170778993s ago: executing program 0 (id=1353):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x2000000000000295, &(0x7f0000000180)=ANY=[], &(0x7f0000000080)='GPL\x00', 0xb, 0xab, &(0x7f0000000300)=""/171, 0x41000, 0x48, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5, @void, @value}, 0xbb)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x6)
syz_clone(0x202d800, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x40046207, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000000)={0x8, 0x0, &(0x7f00000003c0)=[@increfs], 0x0, 0x0, 0x0})
dup3(r1, r1, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000180)={0xc, 0x0, &(0x7f0000000400)=[@dead_binder_done={0x400c6314}], 0x0, 0x0, 0x0})
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x80010, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000440))
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/address_bits', 0x0, 0x0)
mknodat$loop(r3, &(0x7f0000000100)='./file0\x00', 0x2000, 0x1)
setsockopt$packet_buf(r3, 0x107, 0x0, &(0x7f0000000280)="6b5706f02a937cc8bbfe5523b28b1f0c3c36d730448a826b4e42584c0b8ba0589d3f91303818d2fb710a9dab434f80b5dc25412dd763ccefe3e12928c112921916663ccdb702514f2ad6095cf469e49eb12b5df093738951c00b5bf3c895e3f5b9919cd30c80db046d486ba6e66dbfb9c416", 0x72)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x6)
r4 = syz_open_dev$MSR(&(0x7f0000000140), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = socket$alg(0x26, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x16, 0x6, &(0x7f0000000000)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x9, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x48, '\x00', 0x0, @fallback=0x25, r3, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/crypto\x00', 0x0, 0x0)
lseek(r6, 0x1000000, 0x0)
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x200000b, 0x8c4b815a5465c2b2, 0xffffffffffffffff, 0x0)
bind$alg(r3, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'sha512-avx\x00'}, 0x58)
r7 = accept4(r5, 0x0, 0x0, 0x0)
sendmsg$kcm(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200), 0x0, 0x0, 0xffffffffffffff93}, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

1.935698892s ago: executing program 2 (id=1360):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000000)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x4801})
socket$xdp(0x2c, 0x3, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x42b02, 0x0)
r2 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r2, &(0x7f0000000140)={{0x6, @bcast, 0x2}, [@bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @bcast]}, 0x48)
r3 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r0, &(0x7f0000000300)={{0x6, @rose}, [@null, @default, @default, @default, @bcast, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}]}, 0x48)
listen(r2, 0x1ad72f7)
syz_usb_connect(0x0, 0x3f, &(0x7f0000000540)=ANY=[@ANYBLOB="11010000733336088dee1edb2361000000010902"], 0x0)
writev(r3, &(0x7f0000001700)=[{&(0x7f00000001c0)="8a955aac55d4", 0x6}], 0x1)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=@ipv6_newrule={0x30, 0x1a, 0x1, 0x0, 0x0, {0x81}, [@FRA_DST={0x14, 0x1, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}]}, 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x0)
close(r1)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000180))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
r5 = openat$vicodec0(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_G_EXT_CTRLS(r5, 0xc0185648, &(0x7f0000000080)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0x990a61, 0x7, '\x00', @p_u32=&(0x7f0000000100)}})
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r6, &(0x7f0000000080)={0x0, 0x8000000, &(0x7f0000000680)=[{&(0x7f0000000000)="5c00000014006b05c84e21000ab16d6e230675f802000000440002005817d30461bc24eeb556a705251e6182149a36c23d3b48dfd8cdbf9367b098fa51f60a64c9f408000000e786a6d0bdd70000b6c0504bb9189d9193e9bd1c1b78", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)

1.603753463s ago: executing program 1 (id=1370):
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000012000000000000000000000000a20000000000a03000000000000fff500010000000900010073797a300000000058000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f0c00098008000140ffffff1f080008400000000108000300"], 0xa0}}, 0x0)

1.50186297s ago: executing program 1 (id=1371):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x1, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000030000000000010000000000034000100000000000000000900000000"], &(0x7f00000002c0)='GPL\x00', 0xf, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x18)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x1000, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
r3 = socket(0x11, 0x3, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r5=>0x0})
bind$packet(r3, &(0x7f0000000180)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @dev}, 0x14)
setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f0000000240)=0xe9, 0x4)
sendmsg$netlink(r3, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000600)=ANY=[@ANYBLOB="10fddbdf25"], 0x10}], 0x1}, 0x20040011)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10)
socket$vsock_stream(0x28, 0x1, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x0)
r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000000)={'bridge_slave_0\x00'})
sendmsg$nl_route(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000100)=ANY=[@ANYBLOB="280022001c000100000000000091f90007000000", @ANYRES16=r7, @ANYBLOB="0300ef000a000200aaaaaaaaaa0c0000"], 0x28}}, 0x0)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r10 = syz_open_dev$I2C(&(0x7f0000000040), 0x0, 0x0)
ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(r0, 0x8008f511, &(0x7f0000000100))
r11 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r11, &(0x7f0000000140)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-aesni\x00'}, 0x58)
ioctl$I2C_SMBUS(r10, 0x720, &(0x7f00000000c0)={0x0, 0x0, 0x5, &(0x7f0000000300)={0x2, "90f541a5e64f61909103f1fbbc2bd3c9f144d76e44c7b2986eb5e52829e7cb8393"}})
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x4)

996.873206ms ago: executing program 1 (id=1372):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000600)=ANY=[@ANYBLOB="780000001100010028bd120ffddbdf2500000000", @ANYRES32, @ANYBLOB="000800000002040008001f000900000008000f0006000000240024002826f7ae0e11027e0350dfd3bd8c2f069a017742aa905c92f6965ea5c691044005002100040000000a000100eb06b2f01ccf000008000d00206ecf260800"], 0x78}, 0x1, 0x0, 0x0, 0x8010}, 0x0)

996.533709ms ago: executing program 1 (id=1373):
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000005840)={0x0, 0x29, &(0x7f0000000180)={&(0x7f0000000240)=@newqdisc={0x3c, 0x24, 0x0, 0x70bd2b, 0x0, {0x0, 0x0, 0x0, 0x0, {0xd}, {}, {0x10}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_FLOW_MODE={0x8}]}}, @TCA_EGRESS_BLOCK={0x0, 0xe, 0x1}, @TCA_EGRESS_BLOCK={0x0, 0xe, 0x5852}, @TCA_EGRESS_BLOCK={0x0, 0xe, 0x4}]}, 0x3c}}, 0x20000000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010001fff752b056800080000faff8141", @ANYRES32=0x0, @ANYBLOB="67a9fde500000000280012800a00010076786c616e"], 0x3}}, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0)

996.315264ms ago: executing program 0 (id=1374):
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r0, &(0x7f0000000080)={0x0, 0x1, 0x3, 0x1}, 0x8)
r1 = syz_open_procfs(0x0, &(0x7f0000002180)='net/mcfilter\x00')
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(r2, 0x5412, &(0x7f00000000c0)=0x13)
write(r2, &(0x7f0000000000)='#', 0x1)
ioctl$TCSETA(r2, 0x5406, &(0x7f0000000340)={0xfe02, 0x4e34, 0x80, 0x5, 0x0, '_\x00'})
r3 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x9}, 0x1c)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYRESDEC=r3], 0xfc}}, 0x48011)
sendmmsg$inet6(r3, &(0x7f0000003cc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4001c00)
ioctl$TIOCL_GETMOUSEREPORTING(r2, 0x5412, &(0x7f00000006c0)=0x5f)
preadv(r1, &(0x7f0000000200)=[{&(0x7f00000008c0)=""/231, 0xe7}, {&(0x7f0000000280)=""/223, 0xdf}, {&(0x7f0000000380)=""/238, 0xee}, {&(0x7f0000000480)=""/238, 0xee}, {&(0x7f00000001c0)=""/47, 0x2f}, {&(0x7f0000000580)=""/87, 0x57}], 0x6, 0x1, 0x3)
ioctl$KDGETMODE(r1, 0x4b3b, &(0x7f0000000000))
r5 = socket$kcm(0x10, 0x2, 0x0)
r6 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r6, 0x107, 0xb, &(0x7f0000000100)=0x40049, 0x4)
recvmmsg(r6, &(0x7f0000000880)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=""/12, 0xc}}], 0x1, 0x10022, 0x0)
openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
acct(&(0x7f0000000040)='\xe9\x1fq\x89Y\x1e\x923aK\x00')
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000140)={'gretap0\x00', &(0x7f00000009c0)={'gretap0\x00', <r8=>0x0, 0x700, 0x8001, 0x1, 0x8, {{0x5, 0x4, 0x2, 0x7, 0x14, 0x66, 0x0, 0xc4, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @initdev={0xac, 0x1e, 0x0, 0x0}}}}})
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000180)={'sit0\x00', &(0x7f0000000b40)={'gretap0\x00', r8, 0x700, 0x8, 0x1, 0x7, {{0x1e, 0x4, 0x0, 0x3, 0x78, 0x64, 0x0, 0xfe, 0x29, 0x0, @multicast1, @rand_addr=0x64010101, {[@timestamp_prespec={0x44, 0xc, 0xeb, 0x3, 0x4, [{@local, 0xfff}]}, @timestamp_addr={0x44, 0x24, 0xad, 0x1, 0xd, [{@local, 0x8}, {@remote, 0x101}, {@empty, 0x8}, {@remote, 0xd}]}, @cipso={0x86, 0x32, 0x3, [{0x0, 0x12, "b11ab8badffdc06fba1e4aeda1001e55"}, {0x5, 0x8, "a3bf96844f56"}, {0x1, 0x10, "6f616a9437eed17b54f2876351d7"}, {0x1, 0x2}]}]}}}}})
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000680)={0x7, [<r9=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f0000000700)=0x20)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r7, 0x84, 0x6d, &(0x7f0000000740)={r9, 0x49, "7db6b07c376ae529d9114e90cf9f705f15fbea31eba2410cec6a8ff3a01401e4d101346da61cb169ba971d98ffbb5bfaf4bc341e8ba34c61e56c68f7de00bafd744caf90dccc25186c"}, &(0x7f00000007c0)=0x51)
openat$binderfs(0xffffff9c, &(0x7f0000000640)='./binderfs2/binder0\x00', 0x802, 0x0)
acct(0x0)
sendmsg$kcm(r5, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)

721.425284ms ago: executing program 3 (id=1375):
r0 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000280)=@newqdisc={0x9c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r1, {0x0, 0x1f}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x6c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [], 0x0, [0x8, 0x4], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0xfffffffd}]}]}]}}]}, 0x9c}}, 0x0)

719.88268ms ago: executing program 3 (id=1383):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x1, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000030000000000010000000000034000100000000000000000900000000"], &(0x7f00000002c0)='GPL\x00', 0xf, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x18)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x1000, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
r3 = socket(0x11, 0x3, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r5=>0x0})
bind$packet(r3, &(0x7f0000000180)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @dev}, 0x14)
setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f0000000240)=0xe9, 0x4)
sendmsg$netlink(r3, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000600)=ANY=[@ANYBLOB="10fddbdf25"], 0x10}], 0x1}, 0x20040011)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10)
socket$vsock_stream(0x28, 0x1, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x0)
r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000000)={'bridge_slave_0\x00'})
sendmsg$nl_route(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000100)=ANY=[@ANYBLOB="280022001c000100000000000091f90007000000", @ANYRES16=r7, @ANYBLOB="0300ef000a000200aaaaaaaaaa0c0000"], 0x28}}, 0x0)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r10 = syz_open_dev$I2C(&(0x7f0000000040), 0x0, 0x0)
ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(r0, 0x8008f511, &(0x7f0000000100))
r11 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r11, &(0x7f0000000140)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-aesni\x00'}, 0x58)
ioctl$I2C_SMBUS(r10, 0x720, &(0x7f00000000c0)={0x0, 0x0, 0x5, &(0x7f0000000300)={0x2, "90f541a5e64f61909103f1fbbc2bd3c9f144d76e44c7b2986eb5e52829e7cb8393"}})
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x4)

653.203739ms ago: executing program 2 (id=1376):
mkdir(&(0x7f0000000300)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x0, 0x0)
mkdir(&(0x7f0000000540)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
rename(&(0x7f0000000400)='./bus\x00', 0x0)
r0 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0)
r1 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000140)='2', 0x1}], 0x1)
renameat2(r0, &(0x7f0000000040)='./file0\x00', r0, &(0x7f0000000200)='./file1\x00', 0x0)

649.301342ms ago: executing program 0 (id=1377):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x24000080, 0x0, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x4, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000008850000007600000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000340)=@newtaction={0x64, 0x30, 0xffffffffffffffff, 0x0, 0x0, {}, [{0x50, 0x1, [@m_bpf={0x4c, 0x1, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_PARMS={0x18, 0x2, {0x1, 0x0, 0x0, 0x7000000}}, @TCA_ACT_BPF_FD={0x8, 0x5, r1}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}}, 0x0)

641.760512ms ago: executing program 2 (id=1378):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000000)={0x38, r1, 0x1, 0x0, 0xfffffffe, {}, [@NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xfae77c07}, @NLBL_CIPSOV4_A_MLSLVLLST={0x10, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x77ce7fa}]}]}]}, 0x38}}, 0x0)

577.922958ms ago: executing program 0 (id=1379):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b40)={0x18, 0x10, &(0x7f00000003c0)=ANY=[@ANYBLOB, @ANYBLOB="da2261875f58323cf5704ca92bdcc7e39a892ad9ce2e9482b397d74faa777043c79850203e844203a9e2442046a6d5429a7a66ed82d75475981032f61c1771fdfdafc95b6573e35300"], &(0x7f0000000080)='syzkaller\x00', 0x8, 0xac, &(0x7f0000000140)=""/172, 0x41000, 0x48, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newqdisc={0x50, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x20, 0x2, {{0x0, 0x200000, 0x0, 0x0, 0xffffffff, 0x8003}, [@TCA_NETEM_LOSS={0x4}]}}}]}, 0x50}}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x6)
r3 = syz_clone(0x800c000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)
kcmp(r3, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
r4 = getpid()
sched_setscheduler(r4, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000740)=0x2)
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
r7 = accept4$unix(r6, &(0x7f0000000300)=@abs, &(0x7f0000000240)=0x6e, 0x0)
sendmmsg$unix(r7, &(0x7f0000000240), 0x0, 0x20040884)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f0000000100)={0x3, 0x40, 0xfa00, {{0x2, 0x4e21, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, {0xa, 0x0, 0x0, @mcast2}}}, 0x48)
r8 = socket(0x1d, 0x2, 0x6)
r9 = socket$netlink(0x10, 0x3, 0x8)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000500)={'tunl0\x00', <r10=>0x0})
bind$can_j1939(r8, &(0x7f0000000000)={0x1d, r10, 0x2}, 0x18)
r11 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r11, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={<r12=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r11, &(0x7f0000000380)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f0000000580)=0x1, r12, 0x0, 0x2, 0x4}}, 0x20)
r13 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x200, 0x0)
ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0)

577.599485ms ago: executing program 2 (id=1380):
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
syz_open_dev$sndctrl(&(0x7f0000000040), 0x4, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x169d02)
r1 = dup(r0)
write$6lowpan_enable(r1, 0x0, 0x0)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000780)={0x0, 0x1ffffe, 0x10100, 0x1, 0x28c, 0x0, r1}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r5, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x1001})
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x48004000, 0x0, 0xfe42, 0x0, 0x0, 0x0)
read$hiddev(r1, &(0x7f0000000640)=""/159, 0x9f)
syz_clone(0x800200, 0x0, 0x0, 0x0, 0x0, 0x0)
r7 = dup3(r6, r5, 0x0)
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f0000000300)={0x4c, 0x0, &(0x7f0000000700)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={@ptr={0x70742a85, 0x1, &(0x7f0000000800)=""/121, 0x0, 0x0, 0x39}, @fd={0x66642a85, 0x0, r5}, @flat=@handle={0x73682a85, 0x100, 0x2}}, &(0x7f0000000340)}, 0x1000}], 0xb0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000480)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, 0x0, &(0x7f0000000240)={0x30, 0x30, 0x30}}, 0x1000}], 0x0, 0x0, 0x0})
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_PRE_FAULT_MEMORY(r8, 0xc040aed5, &(0x7f00000002c0)={0xeeee0000, 0x10b000})
syz_io_uring_setup(0x724b, &(0x7f0000000900)={0x0, 0x8601, 0x400, 0x3, 0xdd, 0x0, r7}, &(0x7f0000000200), &(0x7f0000000380))
io_uring_enter(r2, 0x2ded, 0x4000, 0x1a, 0x0, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000240)=[{0x0}], 0x1)
ioctl$SNAPSHOT_FREE(0xffffffffffffffff, 0x3305)
prctl$PR_GET_KEEPCAPS(0x7)
r9 = syz_open_dev$video4linux(&(0x7f0000000080), 0x0, 0x0)
r10 = socket(0x1e, 0x5, 0x0)
ioctl$AUTOFS_IOC_ASKUMOUNT(r9, 0x80049370, &(0x7f00000000c0))
recvmmsg(r10, &(0x7f0000003c40)=[{{0x0, 0x0, &(0x7f0000001780)=[{&(0x7f0000000540)=""/228, 0xe4}], 0x1}}], 0x1, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)

473.521343ms ago: executing program 3 (id=1381):
r0 = socket(0x400000000010, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffeaffffffff4a810000", @ANYRES32, @ANYBLOB="0137f2367a0000001c0012000c"], 0x3c}}, 0x0)
sendto$x25(r0, &(0x7f0000000080)="1e71635b354aefb317c02022c8e1d47aca6c41217f2d65b33ba0686b23af614f167d659e1a10852530eada1fbc2b1d1fec3ce6bafb9d96083678830d601e4cbca46f5cf11b11f4fffe84bf15fbc76bc8d8cc5a2c1ccd97becb847a73fed552ebee7340a235ea6f127e451ad5eb0711eecab61c30a1bd166aec71fed332c9b5468b1c7b3a7ad001ab6619c712772a9735f2fa7a3399efedf33d5eb1eb70406e29896997f3", 0xa4, 0x48004, &(0x7f0000000180), 0x12)
write(r0, &(0x7f0000000040)="3a03000018002551075c0165ff0ffc02802000030004000500e1000c0400070080000300", 0x33a)
r1 = getpid()
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f00000001c0)=0x7)

263.948001ms ago: executing program 3 (id=1382):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000600)=ANY=[@ANYBLOB="780000001100010028bd120ffddbdf2500000000", @ANYRES32, @ANYBLOB="000800000002040008001f000900000008000f0006000000240024002826f7ae0e11027e0350dfd3bd8c2f069a017742aa905c92f6965ea5c691044005002100040000000a000100eb06b2f01ccf000008000d00206ecf2608001c"], 0x78}, 0x1, 0x0, 0x0, 0x8010}, 0x0)

263.522398ms ago: executing program 3 (id=1384):
r0 = epoll_create1(0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$ax25_SO_BINDTODEVICE(r1, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0x10)
r2 = syz_open_dev$usbmon(&(0x7f0000000440), 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000040))
syz_open_dev$usbfs(&(0x7f0000000100), 0x75, 0x123b01)

206.911241ms ago: executing program 3 (id=1385):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x42, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
mount$fuse(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f000000c3c0)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f00000000c0)={0x50, 0x0, r2, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000002140)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000180000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f0ffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007ed10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000889049938edebcd600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000004140)="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", 0x2000, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)={0x18, 0xfffffffffffffffe, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x4080, 0x0)
syz_fuse_handle_req(r0, &(0x7f0000006380)="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", 0x2000, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0x800000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
read$FUSE(r3, &(0x7f0000012400)={0x2020}, 0x2020) (fail_nth: 5)
dup3(r1, r0, 0x80000)

149.592142ms ago: executing program 1 (id=1386):
r0 = syz_io_uring_setup(0x10d, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x40000000}, &(0x7f0000000380)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r3 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
r4 = memfd_create(&(0x7f0000000340)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00', 0x3)
ftruncate(r4, 0x2)
fcntl$addseals(r4, 0x409, 0x7)
r5 = ioctl$UDMABUF_CREATE(r3, 0x40187542, &(0x7f0000000100)={r4, 0x0, 0x0, 0x1000})
socket$kcm(0x10, 0x2, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f00000009c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000a00)={'wlan1\x00', <r9=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r7, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a40)={0x1c, r8, 0x801, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x881}, 0x42)
syz_io_uring_complete(r1)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r5, 0x0, 0x0, 0x0, {0x2015}, 0x1})
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x0)
mount$tmpfs(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='uid'])
r10 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r10)
ptrace$getregset(0x4204, r10, 0x201, &(0x7f0000000740)={0x0})
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000100)='autofs\x00', 0x0, &(0x7f0000000400))
io_uring_enter(r0, 0x3f72, 0x74f1, 0x0, 0x0, 0x0)

148.023567ms ago: executing program 2 (id=1387):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="380000004900010000000000000000000a000700", @ANYRES32=0x0, @ANYBLOB="0000000008000200000000001400010000000000000000000000000000800001"], 0x38}}, 0x0)
fsconfig$FSCONFIG_SET_FLAG(0xffffffffffffffff, 0x0, &(0x7f0000000000)='nomand\x00', 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000001740)=ANY=[@ANYBLOB="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"/319], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
pipe(&(0x7f00000003c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000140)="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"/297, 0x3accf8d5)
vmsplice(r4, &(0x7f0000001a40)=[{&(0x7f00000000c0)='7', 0x1}], 0x1, 0x0)
close(r3)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)=ANY=[@ANYRES32, @ANYRES32=r2, @ANYBLOB="26000000000034f316e211d71e9360a5e6691a000000000000", @ANYRES32, @ANYBLOB, @ANYRES64=0x0], 0x10)
request_key(&(0x7f0000000240)='id_legacy\x00', &(0x7f0000000280)={'syz', 0x0}, &(0x7f00000002c0)='GPL\x00', 0xffffffffffffffff)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r5, 0x89f1, &(0x7f0000000900)={'ip6gre0\x00', @random="0600002000"})
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000007c0)=@newlink={0x38, 0x10, 0x421, 0x70bd2a, 0x0, {0x0, 0x0, 0x0, 0x0, 0x88aaffcd}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @wireguard={{0xe}, {0x4}}}]}, 0x38}}, 0x0)

0s ago: executing program 1 (id=1388):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
r0 = epoll_create(0x400)
r1 = eventfd(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000))
pread64(0xffffffffffffffff, &(0x7f0000000300)=""/246, 0xf6, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x3, 0x5, &(0x7f0000000700)=ANY=[@ANYBLOB="18020000800000000000000000000000850000002800000085000000070000009500000000000000e39f790748161e366643c5e0d3d382b7b80c2365e911b6ccf05b1e25fac5bd241e7f39d80ecde6d4c2e1b024b6aa5d3fa776ac09fe956192fa49663939826c4af17725a15f734eb2a4eae9b5b1efc52834a76c98ce512f39dc80d8061a00acd4b1b17c8d7985d9c4a13125aeca6369cf842ab2bd9a5bafe0f655d8e9b2d80a80296fe8cfeff0128e5c32babbf308f13f000000000000000000"], &(0x7f0000000680)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r2, 0x0, 0xe, 0x0, &(0x7f0000000000)="5becbc0e0d7cca6073a4f11d1b00", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x50)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001e00)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000540)={r6, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000380)="b9e403c6630d698cb8a00b04339c", 0x0, 0x7ec, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$NFT_BATCH(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x2ca, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r7, 0x18000000000002a0, 0x2f9, 0xffffca88, &(0x7f0000000040)="b90103600040f000009e0ff008001fffffe100004000638877fb7f0200017f020001be3e7d2a182fff", 0x0, 0x104, 0x6000000000000000, 0x0, 0xfeb9, &(0x7f0000000400)="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"}, 0x28)
keyctl$dh_compute(0x17, &(0x7f0000000200), &(0x7f0000000040)=""/217, 0xd9, &(0x7f00000001c0)={&(0x7f0000000140)={'sha384-avx\x00'}})
openat$vim2m(0xffffff9c, &(0x7f0000000040), 0x2, 0x0)
r8 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r8, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(camellia)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r8, 0x117, 0x1, &(0x7f0000000340)="71e67a15cdf0311cfcf33a52a7d86bd1", 0x20)
openat$sr(0xffffff9c, &(0x7f0000000600), 0x200, 0x0)

kernel console output (not intermixed with test programs):


[  133.762866][ T9138] netlink: 12 bytes leftover after parsing attributes in process `syz.1.857'.
[  133.770474][ T9138] bridge1: port 1(bridge_slave_1) entered blocking state
[  133.772528][ T9138] bridge1: port 1(bridge_slave_1) entered disabled state
[  133.774092][ T9140] netlink: 'syz.3.858': attribute type 1 has an invalid length.
[  133.775282][ T9138] bridge_slave_1: entered allmulticast mode
[  133.779566][ T9138] bridge_slave_1: entered promiscuous mode
[  133.797181][ T9140] 8021q: adding VLAN 0 to HW filter on device bond2
[  133.832266][ T9140] bond2: (slave ip6gretap2): making interface the new active one
[  133.835861][ T9140] bond2: (slave ip6gretap2): Enslaving as an active interface with an up link
[  133.858361][ T9140] bond2: entered allmulticast mode
[  133.860200][ T9140] ip6gretap2: entered allmulticast mode
[  133.914182][ T9157] xt_ecn: cannot match TCP bits for non-tcp packets
[  133.936803][ T9159] FAULT_INJECTION: forcing a failure.
[  133.936803][ T9159] name failslab, interval 1, probability 0, space 0, times 0
[  133.940188][ T9159] CPU: 0 UID: 0 PID: 9159 Comm: syz.2.863 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0
[  133.942785][ T9159] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  133.945577][ T9159] Call Trace:
[  133.946467][ T9159]  <TASK>
[  133.947253][ T9159]  dump_stack_lvl+0x16c/0x1f0
[  133.948496][ T9159]  should_fail_ex+0x497/0x5b0
[  133.949740][ T9159]  ? fs_reclaim_acquire+0xae/0x150
[  133.951089][ T9159]  should_failslab+0xc2/0x120
[  133.952341][ T9159]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  133.953776][ T9159]  ? security_file_alloc+0x34/0x2b0
[  133.955135][ T9159]  security_file_alloc+0x34/0x2b0
[  133.956447][ T9159]  init_file+0x93/0x480
[  133.957558][ T9159]  alloc_empty_file+0x91/0x1e0
[  133.958815][ T9159]  path_openat+0xe1/0x2d60
[  133.960003][ T9159]  ? hlock_class+0x4e/0x130
[  133.961207][ T9159]  ? __lock_acquire+0x15a9/0x3c40
[  133.962531][ T9159]  ? __pfx_path_openat+0x10/0x10
[  133.963827][ T9159]  ? __pfx___lock_acquire+0x10/0x10
[  133.965150][ T9159]  ? lock_acquire.part.0+0x11b/0x380
[  133.966570][ T9159]  ? find_held_lock+0x2d/0x110
[  133.967835][ T9159]  do_filp_open+0x20c/0x470
[  133.969040][ T9159]  ? __pfx_do_filp_open+0x10/0x10
[  133.970366][ T9159]  ? find_held_lock+0x2d/0x110
[  133.971627][ T9159]  ? _raw_spin_unlock+0x28/0x50
[  133.972906][ T9159]  ? alloc_fd+0x41f/0x760
[  133.974051][ T9159]  do_sys_openat2+0x17a/0x1e0
[  133.975293][ T9159]  ? __pfx_do_sys_openat2+0x10/0x10
[  133.976660][ T9159]  ? __fget_files+0x206/0x3a0
[  133.977903][ T9159]  __ia32_sys_creat+0xcc/0x120
[  133.979156][ T9159]  ? __pfx___ia32_sys_creat+0x10/0x10
[  133.980562][ T9159]  ? __pfx_ksys_write+0x10/0x10
[  133.981850][ T9159]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  133.983549][ T9159]  ? lockdep_hardirqs_on+0x7c/0x110
[  133.984906][ T9159]  __do_fast_syscall_32+0x73/0x120
[  133.986251][ T9159]  do_fast_syscall_32+0x32/0x80
[  133.987521][ T9159]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  133.989161][ T9159] RIP: 0023:0xf7fb1579
[  133.990231][ T9159] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  133.995202][ T9159] RSP: 002b:00000000f511557c EFLAGS: 00000292 ORIG_RAX: 0000000000000008
[  133.997353][ T9159] RAX: ffffffffffffffda RBX: 00000000200001c0 RCX: 0000000000000000
[  133.999409][ T9159] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  134.001467][ T9159] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  134.003507][ T9159] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  134.005549][ T9159] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  134.007594][ T9159]  </TASK>
[  134.759055][ T9174] netlink: 56 bytes leftover after parsing attributes in process `syz.1.867'.
[  134.761584][ T9174] netlink: 'syz.1.867': attribute type 5 has an invalid length.
[  134.763608][ T9174] netlink: 44 bytes leftover after parsing attributes in process `syz.1.867'.
[  134.936736][ T9188] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.055815][ T9188] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.109978][ T9188] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.190407][ T9188] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.413184][ T9188] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  135.430207][ T9188] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  135.442299][ T9188] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  135.449793][ T9188] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  135.847647][ T9214] overlay: ./file0 is not a directory
[  135.852436][ T9216] netlink: 4 bytes leftover after parsing attributes in process `syz.1.879'.
[  136.133395][ T9242] FAULT_INJECTION: forcing a failure.
[  136.133395][ T9242] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  136.136976][ T9242] CPU: 1 UID: 0 PID: 9242 Comm: syz.0.888 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0
[  136.139651][ T9242] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  136.142468][ T9242] Call Trace:
[  136.143346][ T9242]  <TASK>
[  136.144126][ T9242]  dump_stack_lvl+0x16c/0x1f0
[  136.145372][ T9242]  should_fail_ex+0x497/0x5b0
[  136.146645][ T9242]  strncpy_from_user+0x3b/0x2d0
[  136.147928][ T9242]  bpf_prog_load+0x1c3f/0x2670
[  136.149199][ T9242]  ? __pfx_bpf_prog_load+0x10/0x10
[  136.150554][ T9242]  ? find_held_lock+0x2d/0x110
[  136.151824][ T9242]  ? __might_fault+0x13b/0x190
[  136.153096][ T9242]  ? __might_fault+0xe3/0x190
[  136.154341][ T9242]  __sys_bpf+0x5677/0x57a0
[  136.155518][ T9242]  ? __pfx_lock_release+0x10/0x10
[  136.156850][ T9242]  ? __pfx___sys_bpf+0x10/0x10
[  136.158122][ T9242]  ? vfs_write+0x306/0x1150
[  136.159325][ T9242]  ? __mutex_unlock_slowpath+0x164/0x690
[  136.160804][ T9242]  ? fput+0x67/0x440
[  136.161835][ T9242]  ? ksys_write+0x1ba/0x250
[  136.163026][ T9242]  ? __pfx_ksys_write+0x10/0x10
[  136.164313][ T9242]  __ia32_sys_bpf+0x76/0xe0
[  136.165588][ T9242]  __do_fast_syscall_32+0x73/0x120
[  136.166941][ T9242]  do_fast_syscall_32+0x32/0x80
[  136.168226][ T9242]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  136.169896][ T9242] RIP: 0023:0xf7f2f579
[  136.170970][ T9242] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  136.175953][ T9242] RSP: 002b:00000000f50b657c EFLAGS: 00000292 ORIG_RAX: 0000000000000165
[  136.178136][ T9242] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000440
[  136.180207][ T9242] RDX: 0000000000000090 RSI: 0000000000000000 RDI: 0000000000000000
[  136.182284][ T9242] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  136.184447][ T9242] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  136.186515][ T9242] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  136.188912][ T9242]  </TASK>
[  136.441491][   T58] usb 5-1: new low-speed USB device number 13 using dummy_hcd
[  136.467997][ T9248] FAULT_INJECTION: forcing a failure.
[  136.467997][ T9248] name failslab, interval 1, probability 0, space 0, times 0
[  136.472965][ T9248] CPU: 1 UID: 0 PID: 9248 Comm: syz.1.890 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0
[  136.475786][ T9248] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  136.478624][ T9248] Call Trace:
[  136.479514][ T9248]  <TASK>
[  136.480319][ T9248]  dump_stack_lvl+0x16c/0x1f0
[  136.481590][ T9248]  should_fail_ex+0x497/0x5b0
[  136.482844][ T9248]  ? fs_reclaim_acquire+0xae/0x150
[  136.484203][ T9248]  should_failslab+0xc2/0x120
[  136.485479][ T9248]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  136.486896][ T9248]  ? capable_wrt_inode_uidgid+0xeb/0x190
[  136.488380][ T9248]  ? alloc_empty_file+0x73/0x1e0
[  136.489712][ T9248]  alloc_empty_file+0x73/0x1e0
[  136.490985][ T9248]  dentry_open+0x59/0x470
[  136.492154][ T9248]  ovl_path_open+0x198/0x1f0
[  136.493387][ T9248]  ovl_check_d_type_supported+0x9c/0x220
[  136.494873][ T9248]  ? __pfx_ovl_check_d_type_supported+0x10/0x10
[  136.496520][ T9248]  ? __pfx_ovl_check_d_type+0x10/0x10
[  136.497946][ T9248]  ? do_raw_spin_unlock+0x172/0x230
[  136.499326][ T9248]  ? _raw_spin_unlock+0x28/0x50
[  136.500634][ T9248]  ovl_fill_super+0xf24/0x6970
[  136.501916][ T9248]  ? mark_lock+0xb5/0xc60
[  136.503068][ T9248]  ? __pfx_lock_release+0x10/0x10
[  136.504390][ T9248]  ? rcu_is_watching+0x12/0xc0
[  136.505645][ T9248]  ? find_held_lock+0x2d/0x110
[  136.506856][ T9248]  ? __pfx_ovl_fill_super+0x10/0x10
[  136.508044][ T9248]  ? mark_held_locks+0x9f/0xe0
[  136.509176][ T9248]  ? irqentry_exit+0x3b/0x90
[  136.510452][ T9248]  ? lockdep_hardirqs_on+0x7c/0x110
[  136.511844][ T9248]  ? __pfx_ovl_fill_super+0x10/0x10
[  136.513226][ T9248]  ? get_tree_nodev+0x3a/0x190
[  136.514509][ T9248]  ? __pfx_ovl_fill_super+0x10/0x10
[  136.515883][ T9248]  ? get_tree_nodev+0xda/0x190
[  136.517150][ T9248]  get_tree_nodev+0xda/0x190
[  136.518395][ T9248]  vfs_get_tree+0x8f/0x380
[  136.519590][ T9248]  path_mount+0x6e1/0x1f10
[  136.520813][ T9248]  ? kmem_cache_free+0x152/0x4c0
[  136.522144][ T9248]  ? __pfx_path_mount+0x10/0x10
[  136.523443][ T9248]  ? putname+0x13c/0x180
[  136.524577][ T9248]  __ia32_sys_mount+0x292/0x310
[  136.525885][ T9248]  ? __pfx___ia32_sys_mount+0x10/0x10
[  136.527346][ T9248]  __do_fast_syscall_32+0x73/0x120
[  136.528712][ T9248]  do_fast_syscall_32+0x32/0x80
[  136.530011][ T9248]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  136.531681][ T9248] RIP: 0023:0xf7f6f579
[  136.532766][ T9248] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  136.537794][ T9248] RSP: 002b:00000000f50f657c EFLAGS: 00000292 ORIG_RAX: 0000000000000015
[  136.540343][ T9248] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200000c0
[  136.542433][ T9248] RDX: 0000000020000340 RSI: 0000000000000000 RDI: 0000000020000080
[  136.544511][ T9248] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  136.546599][ T9248] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  136.548676][ T9248] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  136.550849][ T9248]  </TASK>
[  136.554803][ T9249] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.596931][ T9249] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.602987][   T58] usb 5-1: device descriptor read/64, error -71
[  136.636822][ T9249] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.711561][ T9249] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.810363][ T9251] syz.3.891: attempt to access beyond end of device
[  136.810363][ T9251] nbd3: rw=2048, sector=0, nr_sectors = 8 limit=0
[  136.814220][ T9251] SQUASHFS error: Failed to read block 0x0: -5
[  136.815848][ T9251] unable to read squashfs_super_block
[  136.831665][   T58] usb 5-1: new low-speed USB device number 14 using dummy_hcd
[  136.947586][ T9257] FAULT_INJECTION: forcing a failure.
[  136.947586][ T9257] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  136.950817][ T9257] CPU: 0 UID: 0 PID: 9257 Comm: syz.3.892 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0
[  136.953286][ T9257] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  136.955875][   T58] usb 5-1: device descriptor read/64, error -71
[  136.956022][ T9257] Call Trace:
[  136.956030][ T9257]  <TASK>
[  136.959235][ T9257]  dump_stack_lvl+0x16c/0x1f0
[  136.960408][ T9257]  should_fail_ex+0x497/0x5b0
[  136.961568][ T9257]  _copy_from_user+0x2e/0xd0
[  136.962778][ T9257]  do_ipv6_setsockopt+0x99f/0x4660
[  136.964053][ T9257]  ? __pfx_do_ipv6_setsockopt+0x10/0x10
[  136.965433][ T9257]  ? __lock_acquire+0xcc5/0x3c40
[  136.966697][ T9257]  ? hlock_class+0x4e/0x130
[  136.967857][ T9257]  ? mark_lock+0xb5/0xc60
[  136.968946][ T9257]  ? aa_label_sk_perm+0x19d/0x5a0
[  136.970242][ T9257]  ? __pfx_mark_lock+0x10/0x10
[  136.971437][ T9257]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  136.972782][ T9257]  ? find_held_lock+0x2d/0x110
[  136.973986][ T9257]  ? ipv6_setsockopt+0xcb/0x170
[  136.975167][ T9257]  ipv6_setsockopt+0xcb/0x170
[  136.976339][ T9257]  rawv6_setsockopt+0xdc/0x700
[  136.977558][ T9257]  ? __pfx_rawv6_setsockopt+0x10/0x10
[  136.978841][ T9257]  ? sock_common_setsockopt+0x2e/0xf0
[  136.980158][ T9257]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  136.981641][ T9257]  do_sock_setsockopt+0x222/0x480
[  136.982909][ T9257]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  136.984236][ T9257]  ? lock_acquire+0x2f/0xb0
[  136.985375][ T9257]  __sys_setsockopt+0x1a0/0x230
[  136.986613][ T9257]  __ia32_sys_setsockopt+0xbc/0x160
[  136.987862][ T9257]  ? lockdep_hardirqs_on+0x7c/0x110
[  136.989134][ T9257]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  136.990724][ T9257]  __do_fast_syscall_32+0x73/0x120
[  136.991971][ T9257]  do_fast_syscall_32+0x32/0x80
[  136.993169][ T9257]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  136.994725][ T9257] RIP: 0023:0xf745e579
[  136.995720][ T9257] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  137.000408][ T9257] RSP: 002b:00000000f510457c EFLAGS: 00000292 ORIG_RAX: 000000000000016e
[  137.002449][ T9257] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 0000000000000029
[  137.004393][ T9257] RDX: 0000000000000040 RSI: 0000000020000b80 RDI: 0000000000000490
[  137.006301][ T9257] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  137.008232][ T9257] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  137.010219][ T9257] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  137.012169][ T9257]  </TASK>
[  137.063921][   T58] usb usb5-port1: attempt power cycle
[  137.216775][ T9262] xt_CT: No such helper "pptp"
[  137.472862][   T58] usb 5-1: new low-speed USB device number 15 using dummy_hcd
[  137.547059][   T58] usb 5-1: device descriptor read/8, error -71
[  137.652935][ T9267] overlayfs: failed to resolve './file0': -2
[  137.658927][ T9267] syz.3.896 (9267): drop_caches: 2
[  137.726869][ T9269] netlink: 4 bytes leftover after parsing attributes in process `syz.3.897'.
[  137.784079][   T58] usb 5-1: new low-speed USB device number 16 using dummy_hcd
[  137.798478][ T9275] xt_NFQUEUE: number of total queues is 0
[  137.805787][   T58] usb 5-1: device descriptor read/8, error -71
[  137.908549][   T58] usb usb5-port1: unable to enumerate USB device
[  137.940011][ T9279] FAULT_INJECTION: forcing a failure.
[  137.940011][ T9279] name failslab, interval 1, probability 0, space 0, times 0
[  137.940030][ T9279] CPU: 2 UID: 0 PID: 9279 Comm: syz.2.899 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0
[  137.940043][ T9279] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  137.940049][ T9279] Call Trace:
[  137.940053][ T9279]  <TASK>
[  137.940057][ T9279]  dump_stack_lvl+0x16c/0x1f0
[  137.940076][ T9279]  should_fail_ex+0x497/0x5b0
[  137.940091][ T9279]  ? fs_reclaim_acquire+0xae/0x150
[  137.940105][ T9279]  should_failslab+0xc2/0x120
[  137.940121][ T9279]  __kmalloc_cache_noprof+0x68/0x420
[  137.940137][ T9279]  nfnl_err_add+0x4e/0x2d0
[  137.940152][ T9279]  nfnetlink_rcv_batch+0xe42/0x24e0
[  137.940172][ T9279]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[  137.940185][ T9279]  ? __pfx_lock_release+0x10/0x10
[  137.940199][ T9279]  ? __local_bh_enable_ip+0xa4/0x120
[  137.940217][ T9279]  ? lockdep_hardirqs_on+0x7c/0x110
[  137.940237][ T9279]  ? __pfx___dev_queue_xmit+0x10/0x10
[  137.940263][ T9279]  ? __nla_parse+0x40/0x60
[  137.940276][ T9279]  nfnetlink_rcv+0x3c3/0x430
[  137.940289][ T9279]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  137.940306][ T9279]  netlink_unicast+0x53c/0x7f0
[  137.940321][ T9279]  ? __pfx_netlink_unicast+0x10/0x10
[  137.940335][ T9279]  ? __phys_addr_symbol+0x30/0x80
[  137.940348][ T9279]  ? __check_object_size+0x488/0x710
[  137.940365][ T9279]  netlink_sendmsg+0x8b8/0xd70
[  137.940381][ T9279]  ? __pfx_netlink_sendmsg+0x10/0x10
[  137.940399][ T9279]  ____sys_sendmsg+0x9ae/0xb40
[  137.940413][ T9279]  ? __pfx_____sys_sendmsg+0x10/0x10
[  137.940426][ T9279]  ? get_compat_msghdr+0x11b/0x170
[  137.940444][ T9279]  ___sys_sendmsg+0x135/0x1e0
[  137.940456][ T9279]  ? __pfx____sys_sendmsg+0x10/0x10
[  137.940472][ T9279]  ? __pfx_lock_release+0x10/0x10
[  137.940482][ T9279]  ? trace_lock_acquire+0x146/0x1e0
[  137.940500][ T9279]  ? __fget_files+0x206/0x3a0
[  137.940516][ T9279]  __sys_sendmsg+0x16e/0x220
[  137.940527][ T9279]  ? __pfx___sys_sendmsg+0x10/0x10
[  137.940545][ T9279]  __do_fast_syscall_32+0x73/0x120
[  137.940561][ T9279]  do_fast_syscall_32+0x32/0x80
[  137.940576][ T9279]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  137.940593][ T9279] RIP: 0023:0xf7fb1579
[  137.940601][ T9279] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  137.940611][ T9279] RSP: 002b:00000000f513657c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  137.940623][ T9279] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[  137.940630][ T9279] RDX: 0000000020050800 RSI: 0000000000000000 RDI: 0000000000000000
[  137.940636][ T9279] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  137.940643][ T9279] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  137.940649][ T9279] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  137.940661][ T9279]  </TASK>
[  138.077080][ T9283] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  138.113486][ T9283] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  138.170516][ T9283] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  138.253087][ T9283] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  138.300343][ T9283] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  138.304647][ T9283] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  138.311634][ T9283] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  138.315896][ T9283] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  138.510721][ T9287] hsr0: entered promiscuous mode
[  138.721920][ T9297] trusted_key: syz.3.905 sent an empty control message without MSG_MORE.
[  139.192487][ T9307] netlink: 40 bytes leftover after parsing attributes in process `syz.0.909'.
[  139.412292][ T9249] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  139.417033][ T9249] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  139.421192][ T9249] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  139.425452][ T9249] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  139.736799][ T6010] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  139.880101][ T6010] usb 8-1: Using ep0 maxpacket: 32
[  139.882693][ T6010] usb 8-1: config index 0 descriptor too short (expected 156, got 27)
[  139.884866][ T6010] usb 8-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  139.887741][ T6010] usb 8-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  139.890756][ T6010] usb 8-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  139.894159][ T6010] usb 8-1: config 0 interface 0 has no altsetting 0
[  139.897349][ T6010] usb 8-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  139.900021][ T6010] usb 8-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  139.902446][ T6010] usb 8-1: Product: syz
[  139.903899][ T6010] usb 8-1: Manufacturer: syz
[  139.905441][ T6010] usb 8-1: SerialNumber: syz
[  139.908178][ T6010] usb 8-1: config 0 descriptor??
[  139.913151][ T6010] ldusb 8-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  139.916331][ T6010] ldusb 8-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  140.261267][ T9344] ldusb 8-1:0.0: Write buffer overflow, 1 bytes dropped
[  140.275922][ T9348] netlink: 44 bytes leftover after parsing attributes in process `syz.1.920'.
[  140.310918][ T8917] usb 8-1: USB disconnect, device number 11
[  140.311418][    C2] ldusb 8-1:0.0: usb_submit_urb failed (-19)
[  140.312917][ T9344] ldusb 8-1:0.0: Couldn't submit HID_REQ_SET_REPORT -71
[  140.320423][ T8917] ldusb 8-1:0.0: LD USB Device #0 now disconnected
[  140.466434][ T9355] tmpfs: Unknown parameter 'usrquota1 hash'
[  140.485846][ T9353] netlink: 4 bytes leftover after parsing attributes in process `syz.1.922'.
[  140.488169][ T9353] unsupported nlmsg_type 40
[  140.557211][ T9364] overlayfs: workdir and upperdir must be separate subtrees
[  140.565306][ T9366] netlink: 52 bytes leftover after parsing attributes in process `syz.0.926'.
[  140.848790][ T9381] xt_CT: No such helper "pptp"
[  140.851482][  T832] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  141.013294][  T832] usb 5-1: Using ep0 maxpacket: 8
[  141.017643][  T832] usb 5-1: config 0 has no interfaces?
[  141.019942][  T832] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  141.023331][  T832] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  141.030396][  T832] usb 5-1: config 0 descriptor??
[  141.257491][ T9370] netlink: 'syz.0.928': attribute type 2 has an invalid length.
[  141.263301][ T6010] usb 5-1: USB disconnect, device number 17
[  141.388959][ T9392] 9pnet: p9_errstr2errno: server reported unknown error ����
[  141.511780][ T6033] IPVS: starting estimator thread 0...
[  141.515861][ T9394] netlink: 32 bytes leftover after parsing attributes in process `syz.2.935'.
[  141.613474][ T9395] IPVS: using max 18 ests per chain, 43200 per kthread
[  141.618812][ T9399] netlink: 'syz.2.935': attribute type 1 has an invalid length.
[  141.620826][ T9399] netlink: 244 bytes leftover after parsing attributes in process `syz.2.935'.
[  141.772398][ T9402] netlink: 'syz.0.936': attribute type 21 has an invalid length.
[  141.774453][ T9402] netlink: 156 bytes leftover after parsing attributes in process `syz.0.936'.
[  142.305287][   T39] audit: type=1326 audit(1732743132.883:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9393 comm="syz.2.935" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x7fc00000
[  142.418513][ T9416] netlink: 'syz.2.939': attribute type 10 has an invalid length.
[  142.420626][ T9416] netlink: 40 bytes leftover after parsing attributes in process `syz.2.939'.
[  142.478525][ T9421] overlayfs: missing 'lowerdir'
[  142.726227][ T9432] netlink: 8 bytes leftover after parsing attributes in process `syz.3.941'.
[  142.744763][ T9434] netlink: 12 bytes leftover after parsing attributes in process `syz.2.944'.
[  142.786517][ T9432] netlink: 4 bytes leftover after parsing attributes in process `syz.3.941'.
[  142.788891][ T9432] netlink: 'syz.3.941': attribute type 1 has an invalid length.
[  142.791316][ T9432] nbd: error processing sock list
[  143.280533][   T64] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  143.416175][ T9442] FAULT_INJECTION: forcing a failure.
[  143.416175][ T9442] name failslab, interval 1, probability 0, space 0, times 0
[  143.419765][ T9442] CPU: 3 UID: 0 PID: 9442 Comm: syz.3.947 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0
[  143.422449][ T9442] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  143.425274][ T9442] Call Trace:
[  143.426187][ T9442]  <TASK>
[  143.426979][ T9442]  dump_stack_lvl+0x16c/0x1f0
[  143.428254][ T9442]  should_fail_ex+0x497/0x5b0
[  143.429515][ T9442]  ? fs_reclaim_acquire+0xae/0x150
[  143.430885][ T9442]  should_failslab+0xc2/0x120
[  143.432147][ T9442]  __kmalloc_cache_noprof+0x68/0x420
[  143.433556][ T9442]  ? __genradix_ptr_alloc+0x32e/0x5d0
[  143.434975][ T9442]  sctp_auth_shkey_create+0x87/0x1f0
[  143.436376][ T9442]  sctp_auth_asoc_copy_shkeys+0x1f4/0x360
[  143.437885][ T9442]  sctp_association_new+0x1978/0x28b0
[  143.439313][ T9442]  sctp_connect_new_asoc+0x1b7/0x790
[  143.440766][ T9442]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  143.442371][ T9442]  ? lock_acquire+0x2f/0xb0
[  143.443228][   T64] usb 7-1: Using ep0 maxpacket: 8
[  143.443666][ T9442]  ? sctp_endpoint_lookup_assoc+0xac/0x2a0
[  143.443723][ T9442]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  143.443742][ T9442]  sctp_sendmsg+0x162a/0x1f10
[  143.443758][ T9442]  ? __pfx___lock_acquire+0x10/0x10
[  143.443771][ T9442]  ? __pfx_sctp_sendmsg+0x10/0x10
[  143.443794][ T9442]  ? __pfx_aa_sk_perm+0x10/0x10
[  143.443808][ T9442]  ? __pfx_sctp_sendmsg+0x10/0x10
[  143.443825][ T9442]  inet_sendmsg+0x119/0x140
[  143.443839][ T9442]  __sys_sendto+0x42a/0x4f0
[  143.443856][ T9442]  ? __pfx___sys_sendto+0x10/0x10
[  143.443881][ T9442]  ? ksys_write+0x1ba/0x250
[  143.443894][ T9442]  ? __pfx_ksys_write+0x10/0x10
[  143.443908][ T9442]  __ia32_sys_sendto+0xdd/0x1b0
[  143.443924][ T9442]  ? lockdep_hardirqs_on+0x7c/0x110
[  143.443939][ T9442]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  143.443953][ T9442]  __do_fast_syscall_32+0x73/0x120
[  143.443969][ T9442]  do_fast_syscall_32+0x32/0x80
[  143.443984][ T9442]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  143.444002][ T9442] RIP: 0023:0xf745e579
[  143.444012][ T9442] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  143.444022][ T9442] RSP: 002b:00000000f514657c EFLAGS: 00000292 ORIG_RAX: 0000000000000171
[  143.444034][ T9442] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  143.444041][ T9442] RDX: 0000000000000001 RSI: 00000000a154b0c0 RDI: 0000000020000000
[  143.444047][ T9442] RBP: 0000000000000010 R08: 0000000000000000 R09: 0000000000000000
[  143.444054][ T9442] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  143.444060][ T9442] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  143.444073][ T9442]  </TASK>
[  143.502668][   T64] usb 7-1: config 0 has no interfaces?
[  143.504176][   T64] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  143.506615][   T64] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.515790][   T64] usb 7-1: config 0 descriptor??
[  143.644954][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.648018][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.650045][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.652175][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.654149][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.656044][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.657946][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.659861][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.662064][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.663985][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.665913][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.667837][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.669769][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.671840][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.673786][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.675711][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.677632][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.679539][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.681574][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.683492][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.685404][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.687308][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.689216][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.691233][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.693147][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.695080][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.696978][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.698877][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.700894][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.702809][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.704719][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.706633][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.708532][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.710574][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.712512][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.714449][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.716392][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.718318][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.720330][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.722257][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.724172][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.726088][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.727998][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.730026][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.731949][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.733941][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.737399][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.739780][ T9438] netlink: 'syz.2.945': attribute type 2 has an invalid length.
[  143.740008][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.744238][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.744868][ T6076] usb 7-1: USB disconnect, device number 7
[  143.746405][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.746419][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.746431][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.753907][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.757631][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.759603][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.761566][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.763523][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.765473][ T8917] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  143.770568][ T8917] hid-generic 0000:0000:0000.0003: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  143.951585][ T9472] netlink: 76 bytes leftover after parsing attributes in process `syz.3.956'.
[  143.955052][ T9472] netlink: 76 bytes leftover after parsing attributes in process `syz.3.956'.
[  144.104557][ T9479] syz.3.958: attempt to access beyond end of device
[  144.104557][ T9479] loop3: rw=0, sector=1, nr_sectors = 1 limit=0
[  144.108252][ T9479] VFS: unable to read V7 FS superblock on device loop3.
[  144.110198][ T9479] VFS: could not find a valid V7 on loop3.
[  144.294197][    C3] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  144.377619][ T9485] netlink: 4 bytes leftover after parsing attributes in process `syz.2.961'.
[  144.396635][   T39] audit: type=1326 audit(1732743135.087:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9489 comm="syz.3.963" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000
[  144.435816][   T39] audit: type=1326 audit(1732743135.087:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9489 comm="syz.3.963" exe="/syz-executor" sig=0 arch=40000003 syscall=266 compat=1 ip=0xf745e579 code=0x7ffc0000
[  144.442150][   T39] audit: type=1326 audit(1732743135.087:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9489 comm="syz.3.963" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000
[  144.448267][   T39] audit: type=1326 audit(1732743135.087:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9489 comm="syz.3.963" exe="/syz-executor" sig=0 arch=40000003 syscall=366 compat=1 ip=0xf745e579 code=0x7ffc0000
[  144.454022][   T39] audit: type=1326 audit(1732743135.087:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9489 comm="syz.3.963" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000
[  144.459891][   T39] audit: type=1326 audit(1732743135.087:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9489 comm="syz.3.963" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf745e579 code=0x7ffc0000
[  144.467490][   T39] audit: type=1326 audit(1732743135.087:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9489 comm="syz.3.963" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000
[  144.475567][   T39] audit: type=1326 audit(1732743135.087:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9489 comm="syz.3.963" exe="/syz-executor" sig=0 arch=40000003 syscall=362 compat=1 ip=0xf745e579 code=0x7ffc0000
[  144.484842][   T39] audit: type=1326 audit(1732743135.087:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9489 comm="syz.3.963" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000
[  144.534936][ T9507] netlink: 'syz.0.966': attribute type 33 has an invalid length.
[  144.537005][ T9507] netlink: 152 bytes leftover after parsing attributes in process `syz.0.966'.
[  144.543551][ T1136] bridge0: port 3(team0) entered disabled state
[  144.842899][ T6010] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  144.985859][ T6010] usb 8-1: Using ep0 maxpacket: 8
[  144.991168][ T6010] usb 8-1: config 0 has no interfaces?
[  144.992618][ T6010] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  144.995183][ T6010] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  144.998481][ T6010] usb 8-1: config 0 descriptor??
[  145.228301][ T9514] netlink: 'syz.3.970': attribute type 2 has an invalid length.
[  145.231930][  T832] usb 8-1: USB disconnect, device number 12
[  145.643870][ T9542] could not allocate digest TFM handle sha3-384-ce
[  145.960483][ T9547] [U] 
[  146.013919][ T9561] FAULT_INJECTION: forcing a failure.
[  146.013919][ T9561] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  146.017653][ T9561] CPU: 1 UID: 0 PID: 9561 Comm: syz.3.979 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0
[  146.020286][ T9561] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  146.023032][ T9561] Call Trace:
[  146.023894][ T9561]  <TASK>
[  146.024650][ T9561]  dump_stack_lvl+0x16c/0x1f0
[  146.025878][ T9561]  should_fail_ex+0x497/0x5b0
[  146.027090][ T9561]  _copy_to_user+0x32/0xd0
[  146.028218][ T9561]  mptcp_put_subflow_data+0xc1/0x110
[  146.029601][ T9561]  mptcp_getsockopt_tcpinfo+0x289/0x360
[  146.031006][ T9561]  ? __pfx_mptcp_getsockopt_tcpinfo+0x10/0x10
[  146.032572][ T9561]  ? release_sock+0x21/0x220
[  146.033791][ T9561]  ? reacquire_held_locks+0x20b/0x4c0
[  146.035169][ T9561]  ? release_sock+0x21/0x220
[  146.036362][ T9561]  ? find_held_lock+0x59/0x110
[  146.037590][ T9561]  ? find_held_lock+0x2d/0x110
[  146.038822][ T9561]  ? mptcp_getsockopt+0x16b/0xba0
[  146.040155][ T9561]  ? __pfx_lock_release+0x10/0x10
[  146.041474][ T9561]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  146.042874][ T9561]  ? lock_acquire+0x2f/0xb0
[  146.044064][ T9561]  ? __local_bh_enable_ip+0xa4/0x120
[  146.045440][ T9561]  mptcp_getsockopt+0x20a/0xba0
[  146.046679][ T9561]  ? __pfx_mptcp_getsockopt+0x10/0x10
[  146.048042][ T9561]  ? ksys_write+0x191/0x250
[  146.049197][ T9561]  ? __pfx_aa_sk_perm+0x10/0x10
[  146.050453][ T9561]  ? find_held_lock+0x2d/0x110
[  146.051770][ T9561]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  146.053276][ T9561]  do_sock_getsockopt+0x3fe/0x870
[  146.054558][ T9561]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  146.056001][ T9561]  ? lock_acquire+0x2f/0xb0
[  146.057188][ T9561]  ? __fget_files+0x40/0x3a0
[  146.058376][ T9561]  ? __fget_files+0x206/0x3a0
[  146.059613][ T9561]  __sys_getsockopt+0x12f/0x260
[  146.061035][ T9561]  __ia32_sys_getsockopt+0xbc/0x160
[  146.062563][ T9561]  ? lockdep_hardirqs_on+0x7c/0x110
[  146.064000][ T9561]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  146.065698][ T9561]  __do_fast_syscall_32+0x73/0x120
[  146.067059][ T9561]  do_fast_syscall_32+0x32/0x80
[  146.068300][ T9561]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  146.069902][ T9561] RIP: 0023:0xf745e579
[  146.070943][ T9561] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  146.075741][ T9561] RSP: 002b:00000000f514657c EFLAGS: 00000292 ORIG_RAX: 000000000000016d
[  146.077916][ T9561] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000011c
[  146.079971][ T9561] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000020000100
[  146.082047][ T9561] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  146.083901][ T9561] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  146.085937][ T9561] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  146.087983][ T9561]  </TASK>
[  146.242870][ T9569] NILFS (nullb0): couldn't find nilfs on the device
[  146.359853][ T9573] IPVS: set_ctl: invalid protocol: 47 172.20.20.170:20003
[  146.389017][  T832] libceph: connect (1)[c::]:6789 error -101
[  146.390803][  T832] libceph: mon0 (1)[c::]:6789 connect error
[  146.396400][  T832] libceph: connect (1)[c::]:6789 error -101
[  146.398368][  T832] libceph: mon0 (1)[c::]:6789 connect error
[  146.567190][ T8917] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  146.655072][  T832] libceph: connect (1)[c::]:6789 error -101
[  146.657630][  T832] libceph: mon0 (1)[c::]:6789 connect error
[  146.738379][ T8917] usb 5-1: Using ep0 maxpacket: 32
[  146.741946][ T8917] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  146.752303][ T8917] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  146.754735][ T8917] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  146.757441][ T8917] usb 5-1: Product: syz
[  146.758668][ T8917] usb 5-1: Manufacturer: syz
[  146.759889][ T8917] usb 5-1: SerialNumber: syz
[  146.764778][ T8917] usb 5-1: config 0 descriptor??
[  146.767385][ T9572] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  147.040796][ T9573] ceph: No mds server is up or the cluster is laggy
[  147.054502][ T9587] netlink: 'syz.3.986': attribute type 2 has an invalid length.
[  147.076011][ T9572] overlay: filesystem on ./file0 not supported as upperdir
[  147.079422][ T6076] usb 5-1: USB disconnect, device number 18
[  147.120420][ T9588] netlink: 4 bytes leftover after parsing attributes in process `syz.3.986'.
[  147.632443][ T9598] netlink: 4 bytes leftover after parsing attributes in process `syz.1.990'.
[  147.705818][ T9598] bridge0: port 3(team0) entered disabled state
[  147.710910][ T9598] bridge0: port 1(bridge_slave_0) entered disabled state
[  147.855165][ T9604] syz.1.992 (9604): drop_caches: 2
[  148.054178][ T9608] syz.3.993 (9608): drop_caches: 2
[  148.391986][ T9622] netlink: 'syz.3.997': attribute type 1 has an invalid length.
[  148.864797][ T9636] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  148.923614][ T9643] syz.2.1002 (9643): drop_caches: 2
[  149.126335][ T9651] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1005'.
[  149.682589][ T9674] syz.2.1011 (9674): drop_caches: 2
[  149.758748][ T9685] FAULT_INJECTION: forcing a failure.
[  149.758748][ T9685] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  149.762114][ T9685] CPU: 1 UID: 0 PID: 9685 Comm: syz.3.1015 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0
[  149.764760][ T9685] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  149.767522][ T9685] Call Trace:
[  149.768543][ T9685]  <TASK>
[  149.769357][ T9685]  dump_stack_lvl+0x16c/0x1f0
[  149.770608][ T9685]  should_fail_ex+0x497/0x5b0
[  149.771858][ T9685]  _copy_to_user+0x32/0xd0
[  149.773039][ T9685]  simple_read_from_buffer+0xd0/0x160
[  149.774407][ T9685]  proc_fail_nth_read+0x198/0x270
[  149.775682][ T9685]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  149.777214][ T9685]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  149.778768][ T9685]  vfs_read+0x1df/0xbe0
[  149.779880][ T9685]  ? __fget_files+0x1fc/0x3a0
[  149.781119][ T9685]  ? __pfx___mutex_lock+0x10/0x10
[  149.782448][ T9685]  ? __pfx_vfs_read+0x10/0x10
[  149.783695][ T9685]  ? __fget_files+0x206/0x3a0
[  149.784935][ T9685]  ksys_read+0x12b/0x250
[  149.786050][ T9685]  ? __pfx_ksys_read+0x10/0x10
[  149.787303][ T9685]  __do_fast_syscall_32+0x73/0x120
[  149.788638][ T9685]  do_fast_syscall_32+0x32/0x80
[  149.789930][ T9685]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  149.791579][ T9685] RIP: 0023:0xf745e579
[  149.792651][ T9685] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  149.797660][ T9685] RSP: 002b:00000000f51465b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  149.799835][ T9685] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5146620
[  149.801893][ T9685] RDX: 000000000000000f RSI: 00000000f7450ff4 RDI: 0000000000000000
[  149.803936][ T9685] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  149.805993][ T9685] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  149.808050][ T9685] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  149.810117][ T9685]  </TASK>
[  149.812573][ T9672] FAULT_INJECTION: forcing a failure.
[  149.812573][ T9672] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  149.816286][ T9672] CPU: 2 UID: 0 PID: 9672 Comm: syz.1.1012 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0
[  149.818980][ T9672] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  149.821755][ T9672] Call Trace:
[  149.822633][ T9672]  <TASK>
[  149.823410][ T9672]  dump_stack_lvl+0x16c/0x1f0
[  149.824641][ T9672]  should_fail_ex+0x497/0x5b0
[  149.825895][ T9672]  _copy_to_user+0x32/0xd0
[  149.827078][ T9672]  simple_read_from_buffer+0xd0/0x160
[  149.828469][ T9672]  proc_fail_nth_read+0x198/0x270
[  149.829822][ T9672]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  149.831268][ T9672]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  149.832711][ T9672]  vfs_read+0x1df/0xbe0
[  149.833814][ T9672]  ? __fget_files+0x1fc/0x3a0
[  149.835053][ T9672]  ? __pfx___mutex_lock+0x10/0x10
[  149.836368][ T9672]  ? __pfx_vfs_read+0x10/0x10
[  149.837607][ T9672]  ? __fget_files+0x206/0x3a0
[  149.838840][ T9672]  ksys_read+0x12b/0x250
[  149.839968][ T9672]  ? __pfx_ksys_read+0x10/0x10
[  149.841234][ T9672]  __do_fast_syscall_32+0x73/0x120
[  149.842592][ T9672]  do_fast_syscall_32+0x32/0x80
[  149.843870][ T9672]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  149.845523][ T9672] RIP: 0023:0xf7f6f579
[  149.846596][ T9672] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  149.851567][ T9672] RSP: 002b:00000000f50f65b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  149.853919][ T9672] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f50f6620
[  149.855962][ T9672] RDX: 000000000000000f RSI: 00000000f7400ff4 RDI: 0000000000000000
[  149.858032][ T9672] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  149.860058][ T9672] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  149.862118][ T9672] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  149.864166][ T9672]  </TASK>
[  149.909865][ T9698] FAULT_INJECTION: forcing a failure.
[  149.909865][ T9698] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  149.913757][ T9698] CPU: 0 UID: 0 PID: 9698 Comm: syz.2.1019 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0
[  149.916443][ T9698] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  149.919209][ T9698] Call Trace:
[  149.920101][ T9698]  <TASK>
[  149.920883][ T9698]  dump_stack_lvl+0x16c/0x1f0
[  149.922227][ T9698]  should_fail_ex+0x497/0x5b0
[  149.923454][ T9698]  _copy_to_user+0x32/0xd0
[  149.924670][ T9698]  bpf_test_finish.isra.0+0x4a1/0x680
[  149.926272][ T9698]  ? find_held_lock+0x2d/0x110
[  149.927525][ T9698]  ? __pfx_bpf_test_finish.isra.0+0x10/0x10
[  149.929090][ T9698]  ? bpf_test_timer_leave+0xb3/0x170
[  149.930564][ T9698]  ? read_tsc+0x9/0x20
[  149.931845][ T9698]  bpf_prog_test_run_sk_lookup+0xa9e/0xcf0
[  149.933387][ T9698]  ? __pfx_bpf_prog_test_run_sk_lookup+0x10/0x10
[  149.935041][ T9698]  ? lock_acquire+0x2f/0xb0
[  149.936241][ T9698]  ? __fget_files+0x206/0x3a0
[  149.937480][ T9698]  ? fput+0x67/0x440
[  149.938518][ T9698]  ? __bpf_prog_get+0xa0/0x290
[  149.939815][ T9698]  ? __pfx_bpf_prog_test_run_sk_lookup+0x10/0x10
[  149.941471][ T9698]  __sys_bpf+0x1921/0x57a0
[  149.942639][ T9698]  ? __pfx_lock_release+0x10/0x10
[  149.943956][ T9698]  ? __pfx___sys_bpf+0x10/0x10
[  149.945195][ T9698]  ? vfs_write+0x306/0x1150
[  149.946243][ T9698]  ? __mutex_unlock_slowpath+0x164/0x690
[  149.947869][ T9698]  ? fput+0x67/0x440
[  149.948932][ T9698]  ? ksys_write+0x1ba/0x250
[  149.950282][ T9698]  ? __pfx_ksys_write+0x10/0x10
[  149.951588][ T9698]  __ia32_sys_bpf+0x76/0xe0
[  149.952817][ T9698]  __do_fast_syscall_32+0x73/0x120
[  149.954179][ T9698]  do_fast_syscall_32+0x32/0x80
[  149.955491][ T9698]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  149.957136][ T9698] RIP: 0023:0xf7fb1579
[  149.958212][ T9698] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  149.963202][ T9698] RSP: 002b:00000000f513657c EFLAGS: 00000292 ORIG_RAX: 0000000000000165
[  149.965360][ T9698] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000440
[  149.967403][ T9698] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  149.969489][ T9698] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  149.971521][ T9698] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  149.973554][ T9698] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  149.975583][ T9698]  </TASK>
[  149.976438][    C0] vkms_vblank_simulate: vblank timer overrun
[  150.001478][ T9706] syz.3.1022 (9706): drop_caches: 2
[  150.008914][ T9712] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1024'.
[  150.024997][   T39] kauditd_printk_skb: 28 callbacks suppressed
[  150.025009][   T39] audit: type=1326 audit(1732743140.987:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9713 comm="syz.2.1025" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x0
[  150.076398][   T39] audit: type=1326 audit(1732743141.050:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9722 comm="syz.0.1029" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f2f579 code=0x0
[  150.096420][ T9729] Process accounting resumed
[  150.198524][ T9739] usb 2-1: USB disconnect, device number 2
[  150.276618][ T9745] hub 2-0:1.0: USB hub found
[  150.278119][ T9745] hub 2-0:1.0: 6 ports detected
[  150.333807][ T9748] netlink: 'syz.0.1029': attribute type 10 has an invalid length.
[  150.355861][ T9748] geneve1: entered promiscuous mode
[  150.357484][ T9748] geneve1: entered allmulticast mode
[  150.360721][ T9748] team0: Port device geneve1 added
[  150.443835][ T6028] usb 2-1: new high-speed USB device number 3 using ehci-pci
[  150.640627][ T6028] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[  150.643749][ T6028] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[  150.646326][ T6028] usb 2-1: Product: QEMU USB Tablet
[  150.648208][ T6028] usb 2-1: Manufacturer: QEMU
[  150.649904][ T6028] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[  150.685673][ T6028] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0004/input/input15
[  150.767254][ T6028] hid-generic 0003:0627:0001.0004: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[  150.904529][ T9751] FAULT_INJECTION: forcing a failure.
[  150.904529][ T9751] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  150.907908][ T9751] CPU: 2 UID: 0 PID: 9751 Comm: syz.0.1034 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0
[  150.910578][ T9751] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  150.913753][ T9751] Call Trace:
[  150.914624][ T9751]  <TASK>
[  150.915403][ T9751]  dump_stack_lvl+0x16c/0x1f0
[  150.916646][ T9751]  should_fail_ex+0x497/0x5b0
[  150.917892][ T9751]  _copy_from_user+0x2e/0xd0
[  150.919117][ T9751]  memdup_user_nul+0x72/0x110
[  150.920361][ T9751]  drm_set_client_name+0x96/0x290
[  150.922134][ T9751]  drm_ioctl_kernel+0x1e6/0x3d0
[  150.924126][ T9751]  ? __pfx_drm_set_client_name+0x10/0x10
[  150.925940][ T9751]  ? __might_fault+0xe3/0x190
[  150.927169][ T9751]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  150.928585][ T9751]  ? __might_fault+0xe3/0x190
[  150.929828][ T9751]  ? __pfx_drm_set_client_name+0x10/0x10
[  150.931273][ T9751]  drm_ioctl+0x57e/0xba0
[  150.932381][ T9751]  ? __pfx_drm_ioctl+0x10/0x10
[  150.933643][ T9751]  drm_compat_ioctl+0x327/0x460
[  150.935136][ T9751]  ? __pfx_drm_compat_ioctl+0x10/0x10
[  150.936528][ T9751]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  150.937910][ T9751]  __do_fast_syscall_32+0x73/0x120
[  150.939243][ T9751]  do_fast_syscall_32+0x32/0x80
[  150.940522][ T9751]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  150.942175][ T9751] RIP: 0023:0xf7f2f579
[  150.943237][ T9751] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  150.948183][ T9751] RSP: 002b:00000000f50b657c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  150.950480][ T9751] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c01064d1
[  150.952498][ T9751] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000000000000
[  150.954590][ T9751] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  150.956938][ T9751] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  150.959025][ T9751] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  150.961099][ T9751]  </TASK>
[  150.978229][ T9753] syz.1.1035 (9753): drop_caches: 2
[  150.995644][ T9756] FAULT_INJECTION: forcing a failure.
[  150.995644][ T9756] name failslab, interval 1, probability 0, space 0, times 0
[  150.999043][ T9756] CPU: 2 UID: 0 PID: 9756 Comm: syz.0.1036 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0
[  151.001735][ T9756] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  151.004985][ T9756] Call Trace:
[  151.005897][ T9756]  <TASK>
[  151.006678][ T9756]  dump_stack_lvl+0x16c/0x1f0
[  151.007930][ T9756]  should_fail_ex+0x497/0x5b0
[  151.009161][ T9756]  ? fs_reclaim_acquire+0xae/0x150
[  151.010513][ T9756]  should_failslab+0xc2/0x120
[  151.011754][ T9756]  __kmalloc_noprof+0xce/0x4f0
[  151.013020][ T9756]  ? __pfx___mutex_trylock_common+0x10/0x10
[  151.014567][ T9756]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  151.016675][ T9756]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  151.018538][ T9756]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  151.019977][ T9756]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  151.021576][ T9756]  ? genl_get_cmd+0x195/0x580
[  151.022820][ T9756]  ? bpf_lsm_capable+0x9/0x10
[  151.024055][ T9756]  ? security_capable+0x7e/0x260
[  151.025377][ T9756]  genl_rcv_msg+0x565/0x800
[  151.026579][ T9756]  ? __pfx_genl_rcv_msg+0x10/0x10
[  151.027908][ T9756]  ? __pfx_netlbl_mgmt_adddef+0x10/0x10
[  151.029718][ T9756]  ? __pfx___lock_acquire+0x10/0x10
[  151.031082][ T9756]  netlink_rcv_skb+0x165/0x410
[  151.032346][ T9756]  ? __pfx_genl_rcv_msg+0x10/0x10
[  151.033688][ T9756]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  151.035083][ T9756]  ? down_read+0xc9/0x330
[  151.036221][ T9756]  ? __pfx_down_read+0x10/0x10
[  151.037483][ T9756]  ? netlink_deliver_tap+0x1ae/0xca0
[  151.038867][ T9756]  genl_rcv+0x28/0x40
[  151.039932][ T9756]  netlink_unicast+0x53c/0x7f0
[  151.041198][ T9756]  ? __pfx_netlink_unicast+0x10/0x10
[  151.042578][ T9756]  ? __phys_addr_symbol+0x30/0x80
[  151.043898][ T9756]  ? __check_object_size+0x488/0x710
[  151.045298][ T9756]  netlink_sendmsg+0x8b8/0xd70
[  151.046567][ T9756]  ? __pfx_netlink_sendmsg+0x10/0x10
[  151.047982][ T9756]  ____sys_sendmsg+0x9ae/0xb40
[  151.049243][ T9756]  ? __pfx_____sys_sendmsg+0x10/0x10
[  151.050625][ T9756]  ? get_compat_msghdr+0x11b/0x170
[  151.051967][ T9756]  ___sys_sendmsg+0x135/0x1e0
[  151.053197][ T9756]  ? __pfx____sys_sendmsg+0x10/0x10
[  151.054762][ T9756]  ? __pfx_lock_release+0x10/0x10
[  151.056078][ T9756]  ? trace_lock_acquire+0x146/0x1e0
[  151.057446][ T9756]  ? __fget_files+0x206/0x3a0
[  151.058683][ T9756]  __sys_sendmsg+0x16e/0x220
[  151.059875][ T9756]  ? __pfx___sys_sendmsg+0x10/0x10
[  151.061223][ T9756]  __do_fast_syscall_32+0x73/0x120
[  151.062578][ T9756]  do_fast_syscall_32+0x32/0x80
[  151.063864][ T9756]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  151.065536][ T9756] RIP: 0023:0xf7f2f579
[  151.066632][ T9756] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  151.071592][ T9756] RSP: 002b:00000000f50b657c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  151.073768][ T9756] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000480
[  151.075816][ T9756] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  151.077863][ T9756] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  151.079906][ T9756] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  151.082228][ T9756] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  151.084296][ T9756]  </TASK>
[  151.167314][ T9767] FAULT_INJECTION: forcing a failure.
[  151.167314][ T9767] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  151.171411][ T9767] CPU: 0 UID: 0 PID: 9767 Comm: syz.3.1040 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0
[  151.174141][ T9767] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  151.176733][ T9767] Call Trace:
[  151.177611][ T9767]  <TASK>
[  151.178381][ T9767]  dump_stack_lvl+0x16c/0x1f0
[  151.179588][ T9767]  should_fail_ex+0x497/0x5b0
[  151.180781][ T9767]  _copy_from_iter+0x29b/0x1400
[  151.182021][ T9767]  ? trace_lock_acquire+0x146/0x1e0
[  151.183332][ T9767]  ? __alloc_skb+0x200/0x380
[  151.184511][ T9767]  ? __pfx__copy_from_iter+0x10/0x10
[  151.185907][ T9767]  ? __virt_addr_valid+0x1a4/0x590
[  151.187253][ T9767]  ? __virt_addr_valid+0x5e/0x590
[  151.188570][ T9767]  ? __phys_addr_symbol+0x30/0x80
[  151.189881][ T9767]  ? __check_object_size+0x488/0x710
[  151.191250][ T9767]  netlink_sendmsg+0x813/0xd70
[  151.192504][ T9767]  ? __pfx_netlink_sendmsg+0x10/0x10
[  151.193886][ T9767]  ____sys_sendmsg+0x9ae/0xb40
[  151.195139][ T9767]  ? __pfx_____sys_sendmsg+0x10/0x10
[  151.196541][ T9767]  ? get_compat_msghdr+0x11b/0x170
[  151.197893][ T9767]  ___sys_sendmsg+0x135/0x1e0
[  151.199131][ T9767]  ? __pfx____sys_sendmsg+0x10/0x10
[  151.200513][ T9767]  ? __pfx_lock_release+0x10/0x10
[  151.201837][ T9767]  ? trace_lock_acquire+0x146/0x1e0
[  151.203213][ T9767]  ? __fget_files+0x206/0x3a0
[  151.204451][ T9767]  __sys_sendmsg+0x16e/0x220
[  151.205675][ T9767]  ? __pfx___sys_sendmsg+0x10/0x10
[  151.207009][ T9767]  __do_fast_syscall_32+0x73/0x120
[  151.208353][ T9767]  do_fast_syscall_32+0x32/0x80
[  151.209597][ T9767]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  151.211162][ T9767] RIP: 0023:0xf745e579
[  151.212268][ T9767] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  151.217226][ T9767] RSP: 002b:00000000f514657c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  151.219386][ T9767] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000380
[  151.221440][ T9767] RDX: 0000000004000000 RSI: 0000000000000000 RDI: 0000000000000000
[  151.223494][ T9767] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  151.225562][ T9767] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  151.227599][ T9767] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  151.229670][ T9767]  </TASK>
[  151.230556][    C0] vkms_vblank_simulate: vblank timer overrun
[  151.310958][ T9772] input: syz0 as /devices/virtual/input/input16
[  151.579493][ T9788] syz.3.1046 (9788): drop_caches: 2
[  151.641796][ T9794] tipc: Failed to obtain node identity
[  151.643604][ T9794] tipc: Enabling of bearer <ib:veth1_to_hsr> rejected, failed to enable media
[  151.736926][ T9799] No source specified
[  152.621759][ T9821] syz.0.1056 (9821): drop_caches: 2
[  152.699513][ T9823] block device autoloading is deprecated and will be removed.
[  152.880102][ T9836] netlink: 'syz.3.1061': attribute type 10 has an invalid length.
[  152.882111][ T9836] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1061'.
[  152.885019][ T9836] team0: entered promiscuous mode
[  152.886377][ T9836] team_slave_0: entered promiscuous mode
[  152.887824][ T9836] team_slave_1: entered promiscuous mode
[  152.889323][ T9836] team0: entered allmulticast mode
[  152.890595][ T9836] team_slave_0: entered allmulticast mode
[  152.892168][ T9836] team_slave_1: entered allmulticast mode
[  152.893852][ T9836] 8021q: adding VLAN 0 to HW filter on device team0
[  152.895561][ T9836] bridge0: port 3(team0) entered blocking state
[  152.897132][ T9836] bridge0: port 3(team0) entered disabled state
[  152.952616][ T9839] overlayfs: missing 'workdir'
[  153.082893][   T64] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  153.128103][ T9848] syz.3.1065 (9848): drop_caches: 2
[  153.163079][ T9850] FAULT_INJECTION: forcing a failure.
[  153.163079][ T9850] name failslab, interval 1, probability 0, space 0, times 0
[  153.166384][ T9850] CPU: 0 UID: 0 PID: 9850 Comm: syz.3.1066 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0
[  153.169109][ T9850] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  153.171953][ T9850] Call Trace:
[  153.172833][ T9850]  <TASK>
[  153.173625][ T9850]  dump_stack_lvl+0x16c/0x1f0
[  153.174880][ T9850]  should_fail_ex+0x497/0x5b0
[  153.176127][ T9850]  ? fs_reclaim_acquire+0xae/0x150
[  153.177491][ T9850]  should_failslab+0xc2/0x120
[  153.178763][ T9850]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  153.180161][ T9850]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  153.181767][ T9850]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  153.183288][ T9850]  ? vmx_set_apic_access_page_addr+0x6a4/0x900
[  153.184878][ T9850]  mmu_topup_memory_caches+0x22/0xd0
[  153.186291][ T9850]  kvm_mmu_load+0xda/0x21f0
[  153.187502][ T9850]  ? do_raw_read_unlock+0x44/0xe0
[  153.188917][ T9850]  ? vmx_get_rflags+0x100/0x420
[  153.190219][ T9850]  ? kvm_apic_accept_pic_intr+0xe8/0x1a0
[  153.191700][ T9850]  ? __pfx_kvm_mmu_load+0x10/0x10
[  153.193039][ T9850]  ? vmx_enable_irq_window+0xa9/0x190
[  153.194465][ T9850]  ? kvm_check_and_inject_events+0x725/0x12e0
[  153.196072][ T9850]  vcpu_run+0x2e2e/0x4c00
[  153.197179][ T9850]  ? __pfx_vmx_vcpu_load_vmcs+0x10/0x10
[  153.198754][ T9850]  ? __pfx_vcpu_run+0x10/0x10
[  153.200021][ T9850]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  153.201497][ T9850]  ? rcu_is_watching+0x12/0xc0
[  153.202762][ T9850]  ? trace_lock_acquire+0x146/0x1e0
[  153.204131][ T9850]  ? __local_bh_enable_ip+0xa4/0x120
[  153.205532][ T9850]  ? lockdep_hardirqs_on+0x7c/0x110
[  153.206901][ T9850]  ? kvm_arch_vcpu_ioctl_run+0x150/0x1740
[  153.208560][ T9850]  ? lock_acquire+0x2f/0xb0
[  153.209772][ T9850]  ? kvm_arch_vcpu_ioctl_run+0x44a/0x1740
[  153.211305][ T9850]  kvm_arch_vcpu_ioctl_run+0x44a/0x1740
[  153.212892][ T9850]  kvm_vcpu_ioctl+0x6c7/0x1520
[  153.214541][ T9850]  ? tomoyo_path_number_perm+0x46d/0x5b0
[  153.216395][ T9850]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  153.217804][ T9850]  ? tomoyo_path_number_perm+0x190/0x5b0
[  153.219275][ T9850]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  153.220870][ T9850]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  153.222453][ T9850]  ? do_vfs_ioctl+0x513/0x1950
[  153.223720][ T9850]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  153.225062][ T9850]  ? __pfx_lock_release+0x10/0x10
[  153.226475][ T9850]  ? trace_lock_acquire+0x146/0x1e0
[  153.227839][ T9850]  kvm_vcpu_compat_ioctl+0x210/0x3f0
[  153.229227][ T9850]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  153.230754][ T9850]  ? __fget_files+0x206/0x3a0
[  153.232009][ T9850]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  153.233553][ T9850]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  153.234950][ T9850]  __do_fast_syscall_32+0x73/0x120
[  153.235001][   T64] usb 7-1: Using ep0 maxpacket: 32
[  153.236325][ T9850]  do_fast_syscall_32+0x32/0x80
[  153.238974][ T9850]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  153.239017][   T64] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  153.240676][ T9850] RIP: 0023:0xf745e579
[  153.244543][ T9850] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  153.245866][   T64] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  153.249546][ T9850] RSP: 002b:00000000f514657c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  153.249562][ T9850] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae80
[  153.249569][ T9850] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  153.249575][ T9850] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  153.251985][   T64] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  153.254064][ T9850] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  153.254073][ T9850] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  153.254087][ T9850]  </TASK>
[  153.254199][    C0] vkms_vblank_simulate: vblank timer overrun
[  153.256319][   T64] usb 7-1: Product: syz
[  153.272725][   T64] usb 7-1: Manufacturer: syz
[  153.274134][   T64] usb 7-1: SerialNumber: syz
[  153.281051][   T64] usb 7-1: config 0 descriptor??
[  153.284139][ T9834] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  153.451798][ T9861] FAULT_INJECTION: forcing a failure.
[  153.451798][ T9861] name failslab, interval 1, probability 0, space 0, times 0
[  153.456287][ T9861] CPU: 0 UID: 0 PID: 9861 Comm: syz.0.1069 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0
[  153.458955][ T9861] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  153.461727][ T9861] Call Trace:
[  153.462600][ T9861]  <TASK>
[  153.463376][ T9861]  dump_stack_lvl+0x16c/0x1f0
[  153.464612][ T9861]  should_fail_ex+0x497/0x5b0
[  153.465853][ T9861]  ? fs_reclaim_acquire+0xae/0x150
[  153.467200][ T9861]  should_failslab+0xc2/0x120
[  153.468432][ T9861]  __kmalloc_noprof+0xce/0x4f0
[  153.469694][ T9861]  ? d_absolute_path+0x137/0x1b0
[  153.470993][ T9861]  ? tomoyo_encode2+0x100/0x3e0
[  153.472272][ T9861]  tomoyo_encode2+0x100/0x3e0
[  153.473530][ T9861]  tomoyo_realpath_from_path+0x1a7/0x710
[  153.475014][ T9861]  tomoyo_path_number_perm+0x248/0x5b0
[  153.476439][ T9861]  ? tomoyo_path_number_perm+0x235/0x5b0
[  153.477922][ T9861]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  153.479487][ T9861]  ? find_held_lock+0x2d/0x110
[  153.480773][ T9861]  ? do_raw_spin_unlock+0x172/0x230
[  153.482137][ T9861]  ? _raw_spin_unlock+0x28/0x50
[  153.483409][ T9861]  ? d_add+0x43c/0x730
[  153.484478][ T9861]  ? do_raw_spin_unlock+0x172/0x230
[  153.485853][ T9861]  ? simple_lookup+0x12c/0x180
[  153.487107][ T9861]  tomoyo_path_mknod+0x10d/0x190
[  153.488401][ T9861]  ? __pfx_tomoyo_path_mknod+0x10/0x10
[  153.489830][ T9861]  ? get_current_fs_domain+0x184/0x1f0
[  153.491255][ T9861]  security_path_mknod+0x161/0x310
[  153.492589][ T9861]  do_mknodat+0x23d/0x5d0
[  153.493724][ T9861]  ? __pfx_do_mknodat+0x10/0x10
[  153.494930][ T9861]  ? getname_flags.part.0+0x1c5/0x550
[  153.496337][ T9861]  __ia32_sys_mknod+0x85/0xb0
[  153.497595][ T9861]  __do_fast_syscall_32+0x73/0x120
[  153.498947][ T9861]  do_fast_syscall_32+0x32/0x80
[  153.500251][ T9861]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  153.502138][ T9861] RIP: 0023:0xf7f2f579
[  153.503229][ T9861] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  153.508277][ T9861] RSP: 002b:00000000f50b657c EFLAGS: 00000292 ORIG_RAX: 000000000000000e
[  153.510478][ T9861] RAX: ffffffffffffffda RBX: 0000000020000140 RCX: 0000000000001fff
[  153.512525][ T9861] RDX: 0000000000000700 RSI: 0000000000000000 RDI: 0000000000000000
[  153.514607][ T9861] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  153.516724][ T9861] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  153.518802][ T9861] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  153.521032][ T9861]  </TASK>
[  153.522033][    C0] vkms_vblank_simulate: vblank timer overrun
[  153.524991][ T9865] FAULT_INJECTION: forcing a failure.
[  153.524991][ T9865] name failslab, interval 1, probability 0, space 0, times 0
[  153.528594][ T9865] CPU: 3 UID: 0 PID: 9865 Comm: syz.3.1071 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0
[  153.530131][ T9861] ERROR: Out of memory at tomoyo_realpath_from_path.
[  153.531438][ T9865] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  153.531453][ T9865] Call Trace:
[  153.531459][ T9865]  <TASK>
[  153.531467][ T9865]  dump_stack_lvl+0x16c/0x1f0
[  153.539070][ T9865]  should_fail_ex+0x497/0x5b0
[  153.540382][ T9865]  ? fs_reclaim_acquire+0xae/0x150
[  153.541800][ T9865]  should_failslab+0xc2/0x120
[  153.543026][ T9865]  __kmalloc_cache_noprof+0x68/0x420
[  153.544482][ T9865]  nd_ioctl+0x66f/0x18c0
[  153.545606][ T9865]  ? __pfx_nd_ioctl+0x10/0x10
[  153.546834][ T9865]  ? trace_lock_acquire+0x146/0x1e0
[  153.548181][ T9865]  ? __fget_files+0x206/0x3a0
[  153.549440][ T9865]  ? __pfx_bus_ioctl+0x10/0x10
[  153.550811][ T9865]  compat_ptr_ioctl+0x6b/0xa0
[  153.552046][ T9865]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[  153.553439][ T9865]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  153.554800][ T9865]  __do_fast_syscall_32+0x73/0x120
[  153.556125][ T9865]  do_fast_syscall_32+0x32/0x80
[  153.557392][ T9865]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  153.559011][ T9865] RIP: 0023:0xf745e579
[  153.560220][ T9865] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  153.565125][ T9865] RSP: 002b:00000000f514657c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  153.567266][ T9865] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c008640a
[  153.569427][ T9865] RDX: 0000000020000140 RSI: 0000000000000000 RDI: 0000000000000000
[  153.571463][ T9865] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  153.573498][ T9865] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  153.575522][ T9865] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  153.577563][ T9865]  </TASK>
[  153.810505][ T9875] netlink: 'syz.3.1073': attribute type 10 has an invalid length.
[  153.813214][ T9875] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1073'.
[  153.885845][ T9878] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  154.248332][ T9887] bridge4: entered promiscuous mode
[  154.256335][ T9887] overlay: ./file1 is not a directory
[  154.345563][ T9889] 9pnet_fd: Insufficient options for proto=fd
[  154.459194][  T832] usb 7-1: USB disconnect, device number 8
[  154.626642][ T9898] syz.3.1081 (9898): drop_caches: 2
[  154.689735][ T9902] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1083'.
[  154.695397][ T9902] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1083'.
[  155.250243][ T9916] netlink: 'syz.1.1087': attribute type 10 has an invalid length.
[  155.252508][ T9916] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1087'.
[  155.310188][ T9921] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  155.385582][ T9924] No such timeout policy "syz0"
[  155.516490][ T9929] syz.1.1091 (9929): drop_caches: 2
[  155.701310][ T9947] FAULT_INJECTION: forcing a failure.
[  155.701310][ T9947] name failslab, interval 1, probability 0, space 0, times 0
[  155.714982][ T9947] CPU: 0 UID: 0 PID: 9947 Comm: syz.3.1095 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0
[  155.717667][ T9947] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  155.720491][ T9947] Call Trace:
[  155.721583][ T9947]  <TASK>
[  155.722368][ T9947]  dump_stack_lvl+0x16c/0x1f0
[  155.723606][ T9947]  should_fail_ex+0x497/0x5b0
[  155.724963][ T9947]  ? fs_reclaim_acquire+0xae/0x150
[  155.726344][ T9947]  should_failslab+0xc2/0x120
[  155.727586][ T9947]  __kmalloc_noprof+0xce/0x4f0
[  155.728847][ T9947]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  155.730318][ T9947]  ? tomoyo_realpath_from_path+0xbf/0x710
[  155.732109][ T9947]  ? rcu_is_watching+0x12/0xc0
[  155.733659][ T9947]  tomoyo_realpath_from_path+0xbf/0x710
[  155.735077][ T9947]  tomoyo_check_open_permission+0x2ad/0x3c0
[  155.736858][ T9947]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  155.738600][ T9947]  ? __pfx_hook_file_open+0x10/0x10
[  155.740227][ T9947]  ? lock_acquire+0x2f/0xb0
[  155.741786][ T9947]  ? mnt_get_write_access+0x6a/0x300
[  155.743585][ T9947]  tomoyo_file_open+0x6b/0x90
[  155.745177][ T9947]  security_file_open+0x84/0x1e0
[  155.746878][ T9947]  do_dentry_open+0x57e/0x1ea0
[  155.748508][ T9947]  ? inode_permission+0xdd/0x5f0
[  155.750193][ T9947]  vfs_open+0x82/0x3f0
[  155.751572][ T9947]  ? may_open+0x1f2/0x400
[  155.752796][ T9947]  path_openat+0x1e6a/0x2d60
[  155.754028][ T9947]  ? __pfx_path_openat+0x10/0x10
[  155.755324][ T9947]  ? __pfx___lock_acquire+0x10/0x10
[  155.756680][ T9947]  ? lock_acquire.part.0+0x11b/0x380
[  155.758060][ T9947]  ? find_held_lock+0x2d/0x110
[  155.759308][ T9947]  do_filp_open+0x20c/0x470
[  155.760472][ T9947]  ? __pfx_do_filp_open+0x10/0x10
[  155.761737][ T9947]  ? find_held_lock+0x2d/0x110
[  155.762945][ T9947]  ? _raw_spin_unlock+0x28/0x50
[  155.764157][ T9947]  ? alloc_fd+0x41f/0x760
[  155.765263][ T9947]  do_sys_openat2+0x17a/0x1e0
[  155.766432][ T9947]  ? __pfx_do_sys_openat2+0x10/0x10
[  155.767725][ T9947]  ? __might_fault+0x13b/0x190
[  155.768939][ T9947]  ? __pfx_lock_release+0x10/0x10
[  155.770202][ T9947]  ? trace_lock_acquire+0x146/0x1e0
[  155.771511][ T9947]  __ia32_sys_creat+0xcc/0x120
[  155.772722][ T9947]  ? __pfx___ia32_sys_creat+0x10/0x10
[  155.774075][ T9947]  ? rcu_is_watching+0x12/0xc0
[  155.775277][ T9947]  ? syscall_trace_enter+0x24c/0x2c0
[  155.776596][ T9947]  __do_fast_syscall_32+0x73/0x120
[  155.777901][ T9947]  do_fast_syscall_32+0x32/0x80
[  155.779106][ T9947]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  155.780949][ T9947] RIP: 0023:0xf745e579
[  155.782031][ T9947] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  155.786672][ T9947] RSP: 002b:00000000f512557c EFLAGS: 00000292 ORIG_RAX: 0000000000000008
[  155.788796][ T9947] RAX: ffffffffffffffda RBX: 00000000200001c0 RCX: 0000000000000000
[  155.790775][ T9947] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  155.792789][ T9947] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  155.794774][ T9947] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  155.796813][ T9947] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  155.798805][ T9947]  </TASK>
[  155.807993][ T9947] ERROR: Out of memory at tomoyo_realpath_from_path.
[  155.812204][   T39] audit: type=1804 audit(1732743147.066:97): pid=9947 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.1095" name="/newroot/312/file0" dev="fuse" ino=1 res=1 errno=0
[  155.913147][ T9948] netlink: 64 bytes leftover after parsing attributes in process `syz.1.1098'.
[  156.149478][ T9955] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1100'.
[  156.901814][ T9961] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.938285][ T9987] netlink: 'syz.1.1108': attribute type 1 has an invalid length.
[  156.982618][ T9989] FAULT_INJECTION: forcing a failure.
[  156.982618][ T9989] name failslab, interval 1, probability 0, space 0, times 0
[  156.986270][ T9989] CPU: 2 UID: 0 PID: 9989 Comm: syz.1.1109 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0
[  156.988937][ T9989] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  156.991725][ T9989] Call Trace:
[  156.992607][ T9989]  <TASK>
[  156.993398][ T9989]  dump_stack_lvl+0x16c/0x1f0
[  156.994642][ T9989]  should_fail_ex+0x497/0x5b0
[  156.995887][ T9989]  ? fs_reclaim_acquire+0xae/0x150
[  156.997225][ T9989]  should_failslab+0xc2/0x120
[  156.998488][ T9989]  __kmalloc_noprof+0xce/0x4f0
[  156.999770][ T9989]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  157.001240][ T9989]  ? tomoyo_realpath_from_path+0xbf/0x710
[  157.002728][ T9989]  ? rcu_is_watching+0x12/0xc0
[  157.003982][ T9989]  tomoyo_realpath_from_path+0xbf/0x710
[  157.005440][ T9989]  tomoyo_check_open_permission+0x2ad/0x3c0
[  157.006978][ T9989]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  157.008808][ T9989]  ? __pfx___lock_acquire+0x10/0x10
[  157.010195][ T9989]  ? __pfx_hook_file_open+0x10/0x10
[  157.011552][ T9989]  ? lock_acquire+0x2f/0xb0
[  157.012743][ T9989]  tomoyo_file_open+0x6b/0x90
[  157.013987][ T9989]  security_file_open+0x84/0x1e0
[  157.015269][ T9989]  do_dentry_open+0x57e/0x1ea0
[  157.016535][ T9989]  ? inode_permission+0xdd/0x5f0
[  157.017848][ T9989]  vfs_open+0x82/0x3f0
[  157.018931][ T9989]  ? may_open+0x1f2/0x400
[  157.020093][ T9989]  path_openat+0x1e6a/0x2d60
[  157.021322][ T9989]  ? __pfx_path_openat+0x10/0x10
[  157.022624][ T9989]  ? __pfx___lock_acquire+0x10/0x10
[  157.023968][ T9989]  ? lock_acquire.part.0+0x11b/0x380
[  157.025354][ T9989]  ? find_held_lock+0x2d/0x110
[  157.026609][ T9989]  do_filp_open+0x20c/0x470
[  157.027806][ T9989]  ? __pfx_do_filp_open+0x10/0x10
[  157.029122][ T9989]  ? find_held_lock+0x2d/0x110
[  157.030386][ T9989]  ? _raw_spin_unlock+0x28/0x50
[  157.031661][ T9989]  ? alloc_fd+0x41f/0x760
[  157.032803][ T9989]  do_sys_openat2+0x17a/0x1e0
[  157.034046][ T9989]  ? __pfx_do_sys_openat2+0x10/0x10
[  157.035417][ T9989]  ? __fget_files+0x206/0x3a0
[  157.036592][ T9989]  __ia32_compat_sys_open+0x147/0x1e0
[  157.037994][ T9989]  ? __pfx___ia32_compat_sys_open+0x10/0x10
[  157.039526][ T9989]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  157.041271][ T9989]  __do_fast_syscall_32+0x73/0x120
[  157.042614][ T9989]  do_fast_syscall_32+0x32/0x80
[  157.043900][ T9989]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  157.045551][ T9989] RIP: 0023:0xf7f6f579
[  157.046614][ T9989] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  157.051499][ T9989] RSP: 002b:00000000f50f657c EFLAGS: 00000292 ORIG_RAX: 0000000000000005
[  157.053558][ T9989] RAX: ffffffffffffffda RBX: 00000000200000c0 RCX: 000000000000003f
[  157.055491][ T9989] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  157.057450][ T9989] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  157.059386][ T9989] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  157.061355][ T9989] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  157.063395][ T9989]  </TASK>
[  157.073829][ T9989] ERROR: Out of memory at tomoyo_realpath_from_path.
[  157.118693][ T9992] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1110'.
[  157.156783][ T9995] pim6reg1: entered promiscuous mode
[  157.158175][ T9995] pim6reg1: entered allmulticast mode
[  157.174429][ T9999] syz.2.1112 (9999): drop_caches: 2
[  157.207338][   T64] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  157.227990][T10002] netlink: 'syz.2.1113': attribute type 2 has an invalid length.
[  157.230763][T10002] netlink: 'syz.2.1113': attribute type 9 has an invalid length.
[  157.233567][T10002] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.1113'.
[  157.378480][   T64] usb 8-1: Using ep0 maxpacket: 16
[  157.381075][   T64] usb 8-1: config 0 has no interfaces?
[  157.383906][   T64] usb 8-1: New USB device found, idVendor=0b05, idProduct=1807, bcdDevice= 0.40
[  157.386359][   T64] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  157.388781][   T64] usb 8-1: Product: syz
[  157.389860][   T64] usb 8-1: Manufacturer: syz
[  157.391066][   T64] usb 8-1: SerialNumber: syz
[  157.393633][   T64] usb 8-1: config 0 descriptor??
[  157.722336][T10019] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1119'.
[  157.728000][ T6076] usb 8-1: USB disconnect, device number 13
[  158.371033][T10033] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1123'.
[  158.400468][T10038] netlink: 'syz.0.1124': attribute type 10 has an invalid length.
[  158.403462][T10038] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1124'.
[  158.463841][T10041] overlayfs: missing 'lowerdir'
[  158.831752][T10049] overlayfs: missing 'lowerdir'
[  158.851303][T10049] syz.1.1129 (10049): drop_caches: 2
[  159.490688][T10067] netlink: 'syz.2.1136': attribute type 10 has an invalid length.
[  159.492796][T10067] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1136'.
[  159.583027][T10070] overlayfs: missing 'lowerdir'
[  159.681669][T10077] overlay: filesystem on ./bus not supported as upperdir
[  160.026363][T10090] FAULT_INJECTION: forcing a failure.
[  160.026363][T10090] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  160.029840][T10090] CPU: 3 UID: 0 PID: 10090 Comm: syz.3.1143 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0
[  160.032517][T10090] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  160.035347][T10090] Call Trace:
[  160.036284][T10090]  <TASK>
[  160.037111][T10090]  dump_stack_lvl+0x16c/0x1f0
[  160.038388][T10090]  should_fail_ex+0x497/0x5b0
[  160.039659][T10090]  _copy_from_user+0x2e/0xd0
[  160.040868][T10090]  kstrtouint_from_user+0xd7/0x1c0
[  160.042219][T10090]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  160.043704][T10090]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  160.045164][T10090]  proc_fail_nth_write+0x84/0x250
[  160.046887][T10090]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  160.048587][T10090]  ? ksys_write+0x12b/0x250
[  160.049824][T10090]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  160.051294][T10090]  vfs_write+0x24c/0x1150
[  160.052448][T10090]  ? __fget_files+0x1fc/0x3a0
[  160.053749][T10090]  ? __pfx___mutex_lock+0x10/0x10
[  160.055122][T10090]  ? __pfx_vfs_write+0x10/0x10
[  160.056382][T10090]  ? __fget_files+0x206/0x3a0
[  160.057643][T10090]  ksys_write+0x12b/0x250
[  160.058789][T10090]  ? __pfx_ksys_write+0x10/0x10
[  160.060114][T10090]  __do_fast_syscall_32+0x73/0x120
[  160.061579][T10090]  do_fast_syscall_32+0x32/0x80
[  160.063131][T10090]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  160.064782][T10090] RIP: 0023:0xf745e579
[  160.065898][T10090] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  160.070783][T10090] RSP: 002b:00000000f51465b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  160.072882][T10090] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5146620
[  160.074844][T10090] RDX: 0000000000000001 RSI: 00000000f7450ff4 RDI: 0000000000000000
[  160.076876][T10090] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  160.079269][T10090] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  160.081314][T10090] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  160.083462][T10090]  </TASK>
[  160.084296][    C3] vkms_vblank_simulate: vblank timer overrun
[  161.120438][T10104] xt_CT: No such helper "pptp"
[  161.336159][T10114] netlink: 'syz.2.1150': attribute type 10 has an invalid length.
[  161.338996][T10114] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1150'.
[  161.401087][T10117] overlayfs: missing 'lowerdir'
[  161.428167][T10119] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1151'.
[  161.434173][T10119] veth1_macvtap: entered promiscuous mode
[  161.505968][T10121] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1148'.
[  161.811481][T10136] FAULT_INJECTION: forcing a failure.
[  161.811481][T10136] name failslab, interval 1, probability 0, space 0, times 0
[  161.815117][T10136] CPU: 3 UID: 0 PID: 10136 Comm: syz.2.1156 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0
[  161.818143][T10136] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  161.821069][T10136] Call Trace:
[  161.821949][T10136]  <TASK>
[  161.822720][T10136]  dump_stack_lvl+0x16c/0x1f0
[  161.823897][T10136]  should_fail_ex+0x497/0x5b0
[  161.825076][T10136]  ? fs_reclaim_acquire+0xae/0x150
[  161.826377][T10136]  should_failslab+0xc2/0x120
[  161.827646][T10136]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  161.828994][T10136]  ? security_file_alloc+0x34/0x2b0
[  161.830337][T10136]  security_file_alloc+0x34/0x2b0
[  161.831589][T10136]  init_file+0x93/0x480
[  161.832664][T10136]  alloc_empty_file+0x91/0x1e0
[  161.833894][T10136]  dentry_open+0x59/0x470
[  161.835032][T10136]  ovl_path_open+0x198/0x1f0
[  161.836340][T10136]  ovl_check_d_type_supported+0x9c/0x220
[  161.837848][T10136]  ? __pfx_ovl_check_d_type_supported+0x10/0x10
[  161.839398][T10136]  ? __pfx_ovl_check_d_type+0x10/0x10
[  161.840760][T10136]  ? do_raw_spin_unlock+0x172/0x230
[  161.842197][T10136]  ? _raw_spin_unlock+0x28/0x50
[  161.843475][T10136]  ovl_fill_super+0xf24/0x6970
[  161.844694][T10136]  ? shrinker_register+0x154/0x260
[  161.846044][T10136]  ? __pfx_lock_release+0x10/0x10
[  161.847349][T10136]  ? rcu_is_watching+0x12/0xc0
[  161.848539][T10136]  ? find_held_lock+0x2d/0x110
[  161.849850][T10136]  ? __pfx_ovl_fill_super+0x10/0x10
[  161.851207][T10136]  ? lockdep_init_map_type+0x16d/0x7d0
[  161.852618][T10136]  ? lockdep_init_map_type+0x16d/0x7d0
[  161.854033][T10136]  ? __init_swait_queue_head+0xca/0x150
[  161.855586][T10136]  ? shrinker_register+0x1a8/0x260
[  161.856990][T10136]  ? sget_fc+0x488/0xb90
[  161.858171][T10136]  ? __pfx_ovl_fill_super+0x10/0x10
[  161.859594][T10136]  ? get_tree_nodev+0xda/0x190
[  161.860807][T10136]  get_tree_nodev+0xda/0x190
[  161.861985][T10136]  vfs_get_tree+0x8f/0x380
[  161.863180][T10136]  path_mount+0x6e1/0x1f10
[  161.864373][T10136]  ? kmem_cache_free+0x152/0x4c0
[  161.865810][T10136]  ? __pfx_path_mount+0x10/0x10
[  161.867174][T10136]  ? putname+0x13c/0x180
[  161.868299][T10136]  __ia32_sys_mount+0x292/0x310
[  161.869579][T10136]  ? __pfx___ia32_sys_mount+0x10/0x10
[  161.870953][T10136]  __do_fast_syscall_32+0x73/0x120
[  161.872357][T10136]  do_fast_syscall_32+0x32/0x80
[  161.873769][T10136]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  161.875540][T10136] RIP: 0023:0xf7fb1579
[  161.877039][T10136] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  161.882119][T10136] RSP: 002b:00000000f513657c EFLAGS: 00000292 ORIG_RAX: 0000000000000015
[  161.884278][T10136] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200000c0
[  161.886511][T10136] RDX: 0000000020000340 RSI: 0000000000000000 RDI: 0000000020000080
[  161.888478][T10136] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  161.890518][T10136] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  161.892559][T10136] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  161.894749][T10136]  </TASK>
[  161.895689][    C3] vkms_vblank_simulate: vblank timer overrun
[  161.900079][T10137] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.981039][T10137] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.023140][T10137] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.077997][T10137] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.119967][T10137] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  162.126095][T10137] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  162.130551][T10137] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  162.134908][T10137] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  162.231312][T10152] afs: Unknown parameter '�؆*�+����t	������R���<6_�V�bg#b�/�_:N��)K'
[  162.900389][T10166] overlayfs: missing 'lowerdir'
[  162.912821][T10166] syz.1.1164 (10166): drop_caches: 2
[  163.275567][T10184] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1172'.
[  163.565575][T10197] netlink: 256 bytes leftover after parsing attributes in process `syz.3.1176'.
[  163.627636][   T35] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  163.789459][   T35] usb 5-1: Using ep0 maxpacket: 8
[  163.793073][   T35] usb 5-1: config 0 has no interfaces?
[  163.794495][   T35] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  163.796691][   T35] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  163.799849][   T35] usb 5-1: config 0 descriptor??
[  163.827131][ T1017] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  163.827293][T10205] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  163.981382][ T1017] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  163.983620][ T1017] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  163.986119][ T1017] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  163.988331][ T1017] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  163.991261][ T1017] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  163.994495][T10191] netlink: 'syz.0.1173': attribute type 2 has an invalid length.
[  163.996987][ T1017] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  163.997670][ T6016] usb 5-1: USB disconnect, device number 19
[  163.999224][ T1017] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  163.999237][ T1017] usb 7-1: Product: syz
[  163.999245][ T1017] usb 7-1: Manufacturer: syz
[  164.014019][ T1017] cdc_wdm 7-1:1.0: skipping garbage
[  164.015441][ T1017] cdc_wdm 7-1:1.0: skipping garbage
[  164.018831][ T1017] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  164.020501][ T1017] cdc_wdm 7-1:1.0: Unknown control protocol
[  164.134735][T10208] overlayfs: workdir and upperdir must be separate subtrees
[  165.036861][ T6016] usb 7-1: USB disconnect, device number 9
[  165.037335][    T9] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[  165.227441][    T9] usb 8-1: Using ep0 maxpacket: 32
[  165.376088][    T9] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  165.384393][    T9] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  165.387669][    T9] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  165.392970][    T9] usb 8-1: Product: syz
[  165.394049][    T9] usb 8-1: Manufacturer: syz
[  165.396258][    T9] usb 8-1: SerialNumber: syz
[  165.398342][    T9] usb 8-1: config 0 descriptor??
[  165.401214][T10231] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  165.437001][T10242] xt_CT: No such helper "pptp"
[  165.748870][T10259] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1190'.
[  165.773515][   T35] usb 8-1: USB disconnect, device number 14
[  166.028308][T10261] fuse: Bad value for 'fd'
[  166.997466][T10293] netlink: 'syz.0.1201': attribute type 10 has an invalid length.
[  166.999573][T10293] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1201'.
[  167.062166][T10294] overlayfs: missing 'workdir'
[  167.316993][T10304] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1206'.
[  167.457215][ T6028] usb 7-1: new full-speed USB device number 10 using dummy_hcd
[  167.475548][T10317] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1205'.
[  167.602358][ T6028] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  167.604943][ T6028] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 2
[  167.607242][ T6028] usb 7-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  167.609713][ T6028] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  167.614501][ T6028] usb 7-1: config 0 descriptor??
[  167.620594][ T6028] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  167.622923][ T6028] dvb-usb: bulk message failed: -22 (3/0)
[  167.638570][ T6028] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  167.641648][ T6028] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  167.644330][ T6028] usb 7-1: media controller created
[  167.650920][ T6028] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  167.666611][ T6028] dvb-usb: bulk message failed: -22 (6/0)
[  167.669564][ T6028] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  167.674334][ T6028] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb7/7-1/input/input17
[  167.681612][ T6028] dvb-usb: schedule remote query interval to 150 msecs.
[  167.684701][ T6028] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  167.815449][T10298] dvb-usb: bulk message failed: -22 (4/0)
[  167.819713][ T6028] usb 7-1: USB disconnect, device number 10
[  167.832740][ T6028] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  168.230628][T10331] netlink: 'syz.1.1215': attribute type 10 has an invalid length.
[  168.231721][   T39] audit: type=1326 audit(1732743160.104:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10332 comm="syz.0.1216" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f2f579 code=0x7ffc0000
[  168.232850][T10331] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1215'.
[  168.239048][   T39] audit: type=1326 audit(1732743160.104:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10332 comm="syz.0.1216" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f2f579 code=0x7ffc0000
[  168.247274][   T39] audit: type=1326 audit(1732743160.104:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10332 comm="syz.0.1216" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7f2f579 code=0x7ffc0000
[  168.253312][   T39] audit: type=1326 audit(1732743160.104:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10332 comm="syz.0.1216" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f2f579 code=0x7ffc0000
[  168.259197][   T39] audit: type=1326 audit(1732743160.104:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10332 comm="syz.0.1216" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf7f2f579 code=0x7ffc0000
[  168.264370][   T39] audit: type=1326 audit(1732743160.104:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10332 comm="syz.0.1216" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f2f579 code=0x7ffc0000
[  168.269817][   T39] audit: type=1326 audit(1732743160.104:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10332 comm="syz.0.1216" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f2f5a7 code=0x7ffc0000
[  168.275027][   T39] audit: type=1326 audit(1732743160.104:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10332 comm="syz.0.1216" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f2f579 code=0x7ffc0000
[  168.280507][   T39] audit: type=1326 audit(1732743160.104:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10332 comm="syz.0.1216" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f2f5a7 code=0x7ffc0000
[  168.286028][   T39] audit: type=1326 audit(1732743160.104:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10332 comm="syz.0.1216" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f2f579 code=0x7ffc0000
[  168.352860][T10336] overlayfs: missing 'workdir'
[  168.769199][T10341] FAULT_INJECTION: forcing a failure.
[  168.769199][T10341] name failslab, interval 1, probability 0, space 0, times 0
[  168.783107][T10341] CPU: 0 UID: 0 PID: 10341 Comm: syz.0.1218 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0
[  168.785720][T10341] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  168.789947][T10341] Call Trace:
[  168.790791][T10341]  <TASK>
[  168.791605][T10341]  dump_stack_lvl+0x16c/0x1f0
[  168.792784][T10341]  should_fail_ex+0x497/0x5b0
[  168.794004][T10341]  should_failslab+0xc2/0x120
[  168.795183][T10341]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  168.796561][T10341]  ? skb_clone+0x190/0x3f0
[  168.797707][T10341]  skb_clone+0x190/0x3f0
[  168.798834][T10341]  netlink_deliver_tap+0xafd/0xca0
[  168.800098][T10341]  netlink_unicast+0x5e1/0x7f0
[  168.801280][T10341]  ? __pfx_netlink_unicast+0x10/0x10
[  168.802591][T10341]  ? __phys_addr_symbol+0x30/0x80
[  168.803876][T10341]  ? __check_object_size+0x488/0x710
[  168.805187][T10341]  netlink_sendmsg+0x8b8/0xd70
[  168.806351][T10341]  ? __pfx_netlink_sendmsg+0x10/0x10
[  168.807676][T10341]  ____sys_sendmsg+0x9ae/0xb40
[  168.808859][T10341]  ? __pfx_____sys_sendmsg+0x10/0x10
[  168.810153][T10341]  ? get_compat_msghdr+0x11b/0x170
[  168.811428][T10341]  ___sys_sendmsg+0x135/0x1e0
[  168.812589][T10341]  ? __pfx____sys_sendmsg+0x10/0x10
[  168.813936][T10341]  ? __pfx_lock_release+0x10/0x10
[  168.815466][T10341]  ? trace_lock_acquire+0x146/0x1e0
[  168.817208][T10341]  ? __fget_files+0x206/0x3a0
[  168.818396][T10341]  __sys_sendmsg+0x16e/0x220
[  168.819613][T10341]  ? __pfx___sys_sendmsg+0x10/0x10
[  168.820931][T10341]  __do_fast_syscall_32+0x73/0x120
[  168.822250][T10341]  do_fast_syscall_32+0x32/0x80
[  168.823475][T10341]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  168.825062][T10341] RIP: 0023:0xf7f2f579
[  168.826131][T10341] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  168.831204][T10341] RSP: 002b:00000000f50b657c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  168.833239][T10341] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000780
[  168.835163][T10341] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  168.837200][T10341] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  168.839142][T10341] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  168.841095][T10341] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  168.843049][T10341]  </TASK>
[  169.304386][T10361] block nbd0: shutting down sockets
[  170.354695][T10376] netlink: 'syz.0.1230': attribute type 33 has an invalid length.
[  170.356833][T10376] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1230'.
[  171.782979][   T35] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[  171.934602][   T35] usb 8-1: Using ep0 maxpacket: 8
[  171.937411][   T35] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  171.940182][   T35] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  171.942760][   T35] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  171.945822][   T35] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  171.949420][   T35] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  171.951993][   T35] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  172.149390][   T35] usb 8-1: GET_CAPABILITIES returned 0
[  172.152596][   T35] usbtmc 8-1:16.0: can't read capabilities
[  172.343514][    C3] usbtmc 8-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71
[  172.389926][T10413] overlay: Unknown parameter '//file0'
[  172.394486][   T64] usb 8-1: USB disconnect, device number 15
[  172.600786][ T6016] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  172.748112][ T6016] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  172.750477][ T6016] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  172.752496][ T6016] usb 7-1: Product: syz
[  172.753780][ T6016] usb 7-1: Manufacturer: syz
[  172.754942][ T6016] usb 7-1: SerialNumber: syz
[  172.759764][ T6016] usb 7-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  172.788088][ T6016] usb 7-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  172.962781][    T9] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  173.105568][    T9] usb 6-1: Using ep0 maxpacket: 8
[  173.108744][    T9] usb 6-1: config index 0 descriptor too short (expected 5924, got 36)
[  173.111285][    T9] usb 6-1: config 250 has an invalid interface number: 228 but max is -1
[  173.113862][    T9] usb 6-1: config 250 has 1 interface, different from the descriptor's value: 0
[  173.116803][    T9] usb 6-1: config 250 has no interface number 0
[  173.118800][    T9] usb 6-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  173.122404][    T9] usb 6-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  173.125659][    T9] usb 6-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  173.128827][    T9] usb 6-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[  173.131970][    T9] usb 6-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  173.136104][    T9] usb 6-1: config 250 interface 228 has no altsetting 0
[  173.139465][    T9] usb 6-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  173.142224][    T9] usb 6-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  173.144853][    T9] usb 6-1: Product: syz
[  173.146201][    T9] usb 6-1: SerialNumber: syz
[  173.150157][    T9] hub 6-1:250.228: bad descriptor, ignoring hub
[  173.152188][    T9] hub 6-1:250.228: probe with driver hub failed with error -5
[  173.191125][   T35] usb 8-1: new high-speed USB device number 16 using dummy_hcd
[  173.248197][   T58] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  173.343444][   T35] usb 8-1: Using ep0 maxpacket: 8
[  173.345871][    T9] usblp 6-1:250.228: usblp0: USB Bidirectional printer dev 6 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  173.345987][   T35] usb 8-1: config 0 has no interfaces?
[  173.350565][   T35] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  173.352858][   T35] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  173.356070][   T35] usb 8-1: config 0 descriptor??
[  173.391608][   T58] usb 5-1: Using ep0 maxpacket: 8
[  173.394603][   T58] usb 5-1: config 0 has no interfaces?
[  173.396346][   T58] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  173.399271][   T58] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  173.403253][   T58] usb 5-1: config 0 descriptor??
[  173.511448][T10469] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  173.514076][T10469] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  173.583086][T10466] netlink: 'syz.3.1255': attribute type 2 has an invalid length.
[  173.585969][   T58] usb 8-1: USB disconnect, device number 16
[  173.634819][T10468] netlink: 'syz.0.1256': attribute type 2 has an invalid length.
[  173.638567][    T9] usb 5-1: USB disconnect, device number 20
[  173.804149][ T6016] ath9k_htc 7-1:1.0: ath9k_htc: Target is unresponsive
[  173.806446][ T6016] ath9k_htc: Failed to initialize the device
[  173.828707][ T6016] usb 7-1: ath9k_htc: USB layer deinitialized
[  173.838224][ T6016] usb 7-1: USB disconnect, device number 11
[  174.113813][T10477] overlayfs: missing 'workdir'
[  174.122678][T10477] syz.3.1257 (10477): drop_caches: 2
[  174.165643][T10479] overlayfs: conflicting options: userxattr,verity=require
[  174.394361][T10492] FAULT_INJECTION: forcing a failure.
[  174.394361][T10492] name failslab, interval 1, probability 0, space 0, times 0
[  174.398439][T10492] CPU: 0 UID: 0 PID: 10492 Comm: syz.2.1263 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0
[  174.401616][T10492] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  174.404852][T10492] Call Trace:
[  174.405872][T10492]  <TASK>
[  174.406777][T10492]  dump_stack_lvl+0x16c/0x1f0
[  174.408188][T10492]  should_fail_ex+0x497/0x5b0
[  174.409923][T10492]  ? fs_reclaim_acquire+0xae/0x150
[  174.411573][T10492]  should_failslab+0xc2/0x120
[  174.413132][T10492]  __kmalloc_noprof+0xce/0x4f0
[  174.414614][T10492]  ? kernfs_fop_write_iter+0x223/0x500
[  174.416232][T10492]  kernfs_fop_write_iter+0x223/0x500
[  174.417870][T10492]  iter_file_splice_write+0x90f/0x10b0
[  174.419566][T10492]  ? __pfx_iter_file_splice_write+0x10/0x10
[  174.421355][T10492]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  174.423071][T10492]  ? splice_direct_to_actor+0x346/0xa40
[  174.424765][T10492]  ? __pfx_iter_file_splice_write+0x10/0x10
[  174.426423][T10492]  direct_splice_actor+0x18f/0x6c0
[  174.427768][T10492]  splice_direct_to_actor+0x346/0xa40
[  174.429187][T10492]  ? __pfx_direct_splice_actor+0x10/0x10
[  174.430852][T10492]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  174.432372][T10492]  ? __fget_files+0x1fc/0x3a0
[  174.433612][T10492]  do_splice_direct+0x178/0x250
[  174.434887][T10492]  ? __pfx_do_splice_direct+0x10/0x10
[  174.436285][T10492]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  174.437836][T10492]  do_sendfile+0xaed/0xe30
[  174.439010][T10492]  ? __pfx_do_sendfile+0x10/0x10
[  174.440606][T10492]  ? __fget_files+0x206/0x3a0
[  174.441857][T10492]  __ia32_compat_sys_sendfile+0x1e7/0x230
[  174.443333][T10492]  ? ksys_write+0x1ba/0x250
[  174.444533][T10492]  ? __pfx___ia32_compat_sys_sendfile+0x10/0x10
[  174.446183][T10492]  __do_fast_syscall_32+0x73/0x120
[  174.447534][T10492]  do_fast_syscall_32+0x32/0x80
[  174.448817][T10492]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  174.450578][T10492] RIP: 0023:0xf7fb1579
[  174.451662][T10492] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  174.456633][T10492] RSP: 002b:00000000f513657c EFLAGS: 00000292 ORIG_RAX: 00000000000000bb
[  174.458805][T10492] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000000005
[  174.461183][T10492] RDX: 0000000000000000 RSI: 00000000001000a3 RDI: 0000000000000000
[  174.463243][T10492] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  174.465312][T10492] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  174.467351][T10492] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  174.469437][T10492]  </TASK>
[  174.470368][    C0] vkms_vblank_simulate: vblank timer overrun
[  174.703930][   T58] libceph: connect (1)[c::]:6789 error -101
[  174.706632][   T58] libceph: mon0 (1)[c::]:6789 connect error
[  174.753087][    T9] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  174.915202][    T9] usb 7-1: Using ep0 maxpacket: 8
[  174.918513][    T9] usb 7-1: config 0 has no interfaces?
[  174.920035][    T9] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  174.922323][    T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  174.925792][    T9] usb 7-1: config 0 descriptor??
[  174.963078][ T8917] libceph: connect (1)[c::]:6789 error -101
[  174.965390][ T8917] libceph: mon0 (1)[c::]:6789 connect error
[  175.156707][T10496] netlink: 'syz.2.1265': attribute type 2 has an invalid length.
[  175.160363][ T8917] usb 7-1: USB disconnect, device number 12
[  175.459888][ T8917] libceph: connect (1)[c::]:6789 error -101
[  175.461534][ T8917] libceph: mon0 (1)[c::]:6789 connect error
[  175.490750][T10499] ceph: No mds server is up or the cluster is laggy
[  175.753749][T10525] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1271'.
[  176.839675][   T64] usb 6-1: USB disconnect, device number 6
[  176.842173][   T64] usblp0: removed
[  177.085646][T10551] FAULT_INJECTION: forcing a failure.
[  177.085646][T10551] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  177.089105][T10551] CPU: 3 UID: 0 PID: 10551 Comm: syz.1.1279 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0
[  177.092194][T10551] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  177.094944][T10551] Call Trace:
[  177.095812][T10551]  <TASK>
[  177.096577][T10551]  dump_stack_lvl+0x16c/0x1f0
[  177.097818][T10551]  should_fail_ex+0x497/0x5b0
[  177.099035][T10551]  _copy_to_user+0x32/0xd0
[  177.100250][T10551]  bpf_test_finish.isra.0+0x55f/0x680
[  177.101644][T10551]  ? lock_acquire+0x2f/0xb0
[  177.102831][T10551]  ? __pfx_bpf_test_finish.isra.0+0x10/0x10
[  177.104355][T10551]  ? _copy_from_user+0x59/0xd0
[  177.105609][T10551]  bpf_prog_test_run_xdp+0xa13/0x1580
[  177.106989][T10551]  ? lock_acquire+0x2f/0xb0
[  177.108158][T10551]  ? __fget_files+0x40/0x3a0
[  177.109382][T10551]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  177.111301][T10551]  ? __fget_files+0x206/0x3a0
[  177.112522][T10551]  ? fput+0x67/0x440
[  177.113562][T10551]  ? __bpf_prog_get+0xa0/0x290
[  177.114843][T10551]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  177.116342][T10551]  __sys_bpf+0x1921/0x57a0
[  177.117509][T10551]  ? __pfx_lock_release+0x10/0x10
[  177.118809][T10551]  ? __pfx___sys_bpf+0x10/0x10
[  177.120060][T10551]  ? vfs_write+0x306/0x1150
[  177.121262][T10551]  ? __mutex_unlock_slowpath+0x164/0x690
[  177.122726][T10551]  ? fput+0x67/0x440
[  177.123751][T10551]  ? ksys_write+0x1ba/0x250
[  177.124941][T10551]  ? __pfx_ksys_write+0x10/0x10
[  177.126225][T10551]  __ia32_sys_bpf+0x76/0xe0
[  177.127407][T10551]  __do_fast_syscall_32+0x73/0x120
[  177.128744][T10551]  do_fast_syscall_32+0x32/0x80
[  177.130263][T10551]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  177.131982][T10551] RIP: 0023:0xf7f6f579
[  177.133035][T10551] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  177.138098][T10551] RSP: 002b:00000000f50f657c EFLAGS: 00000292 ORIG_RAX: 0000000000000165
[  177.140284][T10551] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000600
[  177.142587][T10551] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[  177.144893][T10551] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  177.147506][T10551] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  177.150211][T10551] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  177.152960][T10551]  </TASK>
[  177.154003][    C3] vkms_vblank_simulate: vblank timer overrun
[  177.530103][T10563] ata1.00: invalid command format 189
[  177.648863][   T35] usb 8-1: new high-speed USB device number 17 using dummy_hcd
[  177.792319][   T35] usb 8-1: Using ep0 maxpacket: 8
[  177.795095][   T35] usb 8-1: config 0 has no interfaces?
[  177.796800][   T35] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  177.799356][   T35] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  177.803714][   T35] usb 8-1: config 0 descriptor??
[  178.043082][T10553] netlink: 'syz.3.1280': attribute type 2 has an invalid length.
[  178.051550][   T35] usb 8-1: USB disconnect, device number 17
[  178.392418][   T64] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  178.534940][   T64] usb 5-1: Using ep0 maxpacket: 8
[  178.540746][   T64] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  178.543800][   T64] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  178.547169][   T64] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  178.549309][T10577] qnx4: no qnx4 filesystem (no root dir).
[  178.549848][   T64] usb 5-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  178.555343][   T64] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  178.558618][   T64] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  178.564267][   T64] usbtmc 5-1:16.0: bulk endpoints not found
[  178.789548][T10583] binder: 10582:10583 ioctl c0306201 20000280 returned -14
[  178.847116][T10586] overlayfs: missing 'lowerdir'
[  178.923732][T10588] netlink: 'syz.2.1290': attribute type 1 has an invalid length.
[  178.935993][T10588] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1290'.
[  178.941944][T10588] 8021q: adding VLAN 0 to HW filter on device batadv1
[  178.952766][T10588] bond2: (slave batadv1): Enslaving as a backup interface with an up link
[  178.959726][T10588] bond2 (unregistering): (slave batadv1): Releasing backup interface
[  178.963455][T10588] bond2 (unregistering): Released all slaves
[  179.334653][   T64] usb 5-1: USB disconnect, device number 21
[  180.030671][ T6028] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  180.192208][ T6028] usb 6-1: Using ep0 maxpacket: 8
[  180.196863][ T6028] usb 6-1: config 0 has no interfaces?
[  180.198375][ T6028] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  180.200779][ T6028] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  180.206311][ T6028] usb 6-1: config 0 descriptor??
[  180.384284][T10622] netlink: 'syz.2.1301': attribute type 10 has an invalid length.
[  180.386367][T10622] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1301'.
[  180.439636][T10610] netlink: 'syz.1.1296': attribute type 2 has an invalid length.
[  180.442573][   T58] usb 6-1: USB disconnect, device number 7
[  180.450407][T10631] overlayfs: missing 'workdir'
[  180.565344][T10635] netlink: 'syz.3.1304': attribute type 1 has an invalid length.
[  180.665485][T10638] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1302'.
[  181.817238][T10666] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1312'.
[  182.221661][   T64] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  182.308594][T10681] binder: 10680:10681 ioctl c0306201 20000180 returned -14
[  182.364832][   T64] usb 7-1: Using ep0 maxpacket: 8
[  182.368569][   T64] usb 7-1: config 0 has no interfaces?
[  182.370211][   T64] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  182.372535][   T64] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  182.376014][   T64] usb 7-1: config 0 descriptor??
[  182.607451][T10671] netlink: 'syz.2.1314': attribute type 2 has an invalid length.
[  182.619149][    T9] usb 7-1: USB disconnect, device number 13
[  182.642511][T10691] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1321'.
[  183.216673][T10714] xt_CT: You must specify a L4 protocol and not use inversions on it
[  183.503395][T10732] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  183.580765][T10732] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  183.636700][T10732] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  183.723460][T10732] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  183.809398][T10732] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  183.815676][T10732] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  183.820146][T10732] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  183.825983][T10732] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  184.126887][T10756] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1335'.
[  184.164815][ T1017] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  184.317279][ T1017] usb 5-1: Using ep0 maxpacket: 8
[  184.320215][ T1017] usb 5-1: config 0 has no interfaces?
[  184.322020][ T1017] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  184.324216][ T1017] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  184.330713][ T1017] usb 5-1: config 0 descriptor??
[  184.561480][T10749] netlink: 'syz.0.1334': attribute type 2 has an invalid length.
[  184.564285][ T1017] usb 5-1: USB disconnect, device number 22
[  184.603447][T10775] 9pnet_fd: Insufficient options for proto=fd
[  184.733540][T10786] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  184.746009][T10786] syz.3.1343 (10786): drop_caches: 2
[  185.032703][T10797] pim6reg: left allmulticast mode
[  185.085398][T10802] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1350'.
[  185.091938][T10802] bridge_slave_1: left allmulticast mode
[  185.093617][T10802] bridge_slave_1: left promiscuous mode
[  185.095421][T10802] bridge0: port 2(bridge_slave_1) entered disabled state
[  185.101704][T10802] bridge6: port 1(bridge_slave_1) entered blocking state
[  185.103612][T10802] bridge6: port 1(bridge_slave_1) entered disabled state
[  185.105554][T10802] bridge_slave_1: entered allmulticast mode
[  185.108025][T10802] bridge_slave_1: entered promiscuous mode
[  185.136460][   T39] kauditd_printk_skb: 933 callbacks suppressed
[  185.136472][   T39] audit: type=1326 audit(1732743177.856:1041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10806 comm="syz.3.1352" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000
[  185.144460][   T39] audit: type=1326 audit(1732743177.856:1042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10806 comm="syz.3.1352" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000
[  185.151921][   T39] audit: type=1326 audit(1732743177.856:1043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10806 comm="syz.3.1352" exe="/syz-executor" sig=0 arch=40000003 syscall=328 compat=1 ip=0xf745e579 code=0x7ffc0000
[  185.153775][T10809] binder: 10807:10809 ioctl c0306201 20000180 returned -22
[  185.159014][   T39] audit: type=1326 audit(1732743177.856:1044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10806 comm="syz.3.1352" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000
[  185.159036][   T39] audit: type=1326 audit(1732743177.856:1045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10806 comm="syz.3.1352" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000
[  185.159052][   T39] audit: type=1326 audit(1732743177.856:1046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10806 comm="syz.3.1352" exe="/syz-executor" sig=0 arch=40000003 syscall=248 compat=1 ip=0xf745e579 code=0x7ffc0000
[  185.159068][   T39] audit: type=1326 audit(1732743177.856:1047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10806 comm="syz.3.1352" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000
[  185.159084][   T39] audit: type=1326 audit(1732743177.856:1048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10806 comm="syz.3.1352" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000
[  185.159100][   T39] audit: type=1326 audit(1732743177.856:1049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10806 comm="syz.3.1352" exe="/syz-executor" sig=0 arch=40000003 syscall=437 compat=1 ip=0xf745e579 code=0x7ffc0000
[  185.159116][   T39] audit: type=1326 audit(1732743177.856:1050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10806 comm="syz.3.1352" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000
[  185.234879][T10818] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  185.250351][T10818] syz.1.1357 (10818): drop_caches: 2
[  185.361089][T10826] FAULT_INJECTION: forcing a failure.
[  185.361089][T10826] name failslab, interval 1, probability 0, space 0, times 0
[  185.364240][T10826] CPU: 1 UID: 0 PID: 10826 Comm: syz.1.1359 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0
[  185.366751][T10826] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  185.369381][T10826] Call Trace:
[  185.370212][T10826]  <TASK>
[  185.370942][T10826]  dump_stack_lvl+0x16c/0x1f0
[  185.372080][T10826]  should_fail_ex+0x497/0x5b0
[  185.373261][T10826]  ? fs_reclaim_acquire+0xae/0x150
[  185.374506][T10826]  should_failslab+0xc2/0x120
[  185.375638][T10826]  __kmalloc_noprof+0xce/0x4f0
[  185.376849][T10826]  ? rcu_is_watching+0x12/0xc0
[  185.378052][T10826]  ? tomoyo_encode2+0x100/0x3e0
[  185.379270][T10826]  tomoyo_encode2+0x100/0x3e0
[  185.380470][T10826]  tomoyo_realpath_from_path+0x1a7/0x710
[  185.381873][T10826]  tomoyo_check_open_permission+0x2ad/0x3c0
[  185.383285][T10826]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  185.384806][T10826]  ? __pfx___lock_acquire+0x10/0x10
[  185.386095][T10826]  ? __pfx_hook_file_open+0x10/0x10
[  185.387370][T10826]  ? lock_acquire+0x2f/0xb0
[  185.388491][T10826]  tomoyo_file_open+0x6b/0x90
[  185.389666][T10826]  security_file_open+0x84/0x1e0
[  185.390902][T10826]  do_dentry_open+0x57e/0x1ea0
[  185.392111][T10826]  ? inode_permission+0xdd/0x5f0
[  185.393375][T10826]  vfs_open+0x82/0x3f0
[  185.394409][T10826]  ? may_open+0x1f2/0x400
[  185.395463][T10826]  path_openat+0x1e6a/0x2d60
[  185.396596][T10826]  ? __pfx_path_openat+0x10/0x10
[  185.397792][T10826]  ? __pfx___lock_acquire+0x10/0x10
[  185.399042][T10826]  ? lock_acquire.part.0+0x11b/0x380
[  185.400307][T10826]  ? find_held_lock+0x2d/0x110
[  185.401498][T10826]  do_filp_open+0x20c/0x470
[  185.402586][T10826]  ? __pfx_do_filp_open+0x10/0x10
[  185.403785][T10826]  ? find_held_lock+0x2d/0x110
[  185.404999][T10826]  ? _raw_spin_unlock+0x28/0x50
[  185.406212][T10826]  ? alloc_fd+0x41f/0x760
[  185.407296][T10826]  do_sys_openat2+0x17a/0x1e0
[  185.408456][T10826]  ? __pfx_do_sys_openat2+0x10/0x10
[  185.409750][T10826]  ? __fget_files+0x206/0x3a0
[  185.410940][T10826]  __ia32_compat_sys_open+0x147/0x1e0
[  185.412298][T10826]  ? __pfx___ia32_compat_sys_open+0x10/0x10
[  185.413817][T10826]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  185.415446][T10826]  __do_fast_syscall_32+0x73/0x120
[  185.416738][T10826]  do_fast_syscall_32+0x32/0x80
[  185.418195][T10826]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  185.419781][T10826] RIP: 0023:0xf7f6f579
[  185.420780][T10826] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  185.425409][T10826] RSP: 002b:00000000f50f657c EFLAGS: 00000292 ORIG_RAX: 0000000000000005
[  185.427460][T10826] RAX: ffffffffffffffda RBX: 00000000200000c0 RCX: 000000000000003f
[  185.429401][T10826] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  185.431248][T10826] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  185.433188][T10826] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  185.435052][T10826] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  185.436935][T10826]  </TASK>
[  185.443541][T10826] ERROR: Out of memory at tomoyo_realpath_from_path.
[  185.525429][T10833] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1362'.
[  185.620266][T10842] netlink: 'syz.3.1365': attribute type 2 has an invalid length.
[  185.623257][T10842] netlink: 'syz.3.1365': attribute type 9 has an invalid length.
[  185.625887][T10842] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.1365'.
[  185.667500][T10845] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  185.745903][ T1017] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  185.897999][ T1017] usb 7-1: Using ep0 maxpacket: 8
[  185.903471][ T1017] usb 7-1: config 0 has no interfaces?
[  185.904886][ T1017] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  185.907077][ T1017] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  185.918226][ T1017] usb 7-1: config 0 descriptor??
[  186.152579][T10830] netlink: 'syz.2.1360': attribute type 2 has an invalid length.
[  186.157112][ T6016] usb 7-1: USB disconnect, device number 14
[  186.408444][T10869] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1373'.
[  186.471408][T10870] Process accounting resumed
[  186.678510][T10876] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  186.686662][ T1414] ieee802154 phy0 wpan0: encryption failed: -22
[  186.689545][ T1414] ieee802154 phy1 wpan1: encryption failed: -22
[  186.691733][T10876] syz.2.1376 (10876): drop_caches: 2
[  186.873310][T10890] netlink: 'syz.3.1381': attribute type 3 has an invalid length.
[  186.875350][T10890] netlink: 666 bytes leftover after parsing attributes in process `syz.3.1381'.
[  186.918002][T10888] binder: 10885:10888 ioctl c0306201 20000300 returned -14
[  186.920343][T10888] binder: 10885:10888 ioctl ae41 0 returned -22
[  187.219039][T10904] autofs: Unknown parameter 'uid���re�6���$�J�dD�_U`ji{���;l��8U���j����-g����w\�ΰj�'���Hٽٯ$�%�'
[  187.299977][T10902] FAULT_INJECTION: forcing a failure.
[  187.299977][T10902] name failslab, interval 1, probability 0, space 0, times 0
[  187.303259][T10902] CPU: 0 UID: 0 PID: 10902 Comm: syz.3.1385 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0
[  187.306088][T10902] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  187.308888][T10902] Call Trace:
[  187.309776][T10902]  <TASK>
[  187.310747][T10902]  dump_stack_lvl+0x16c/0x1f0
[  187.312367][T10902]  should_fail_ex+0x497/0x5b0
[  187.313981][T10902]  ? fs_reclaim_acquire+0xae/0x150
[  187.315720][T10902]  should_failslab+0xc2/0x120
[  187.317342][T10902]  __kmalloc_noprof+0xce/0x4f0
[  187.318968][T10902]  ? kasan_save_track+0x14/0x30
[  187.320623][T10902]  ? fuse_direct_io+0x5b3/0x2580
[  187.322321][T10902]  fuse_direct_io+0x5b3/0x2580
[  187.323975][T10902]  ? __pfx_fuse_direct_io+0x10/0x10
[  187.325693][T10902]  ? lockdep_init_map_type+0x16d/0x7d0
[  187.327122][T10902]  fuse_direct_IO+0x9a4/0xf20
[  187.328369][T10902]  ? __pfx_fuse_direct_IO+0x10/0x10
[  187.329783][T10902]  ? filemap_check_errors+0xa9/0x160
[  187.331169][T10902]  generic_file_read_iter+0x1d4/0x450
[  187.332588][T10902]  fuse_file_read_iter+0x35f/0x470
[  187.333950][T10902]  vfs_read+0x87f/0xbe0
[  187.335052][T10902]  ? __pfx_vfs_read+0x10/0x10
[  187.336314][T10902]  ksys_read+0x12b/0x250
[  187.337441][T10902]  ? __pfx_ksys_read+0x10/0x10
[  187.338706][T10902]  __do_fast_syscall_32+0x73/0x120
[  187.340071][T10902]  do_fast_syscall_32+0x32/0x80
[  187.341361][T10902]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  187.343015][T10902] RIP: 0023:0xf745e579
[  187.344123][T10902] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  187.349367][T10902] RSP: 002b:00000000f512557c EFLAGS: 00000292 ORIG_RAX: 0000000000000003
[  187.351543][T10902] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020012400
[  187.353750][T10902] RDX: 0000000000002020 RSI: 0000000000000000 RDI: 0000000000000000
[  187.355901][T10902] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  187.357972][T10902] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  187.360042][T10902] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  187.362118][T10902]  </TASK>
[  187.364881][T10902] ------------[ cut here ]------------
[  187.366467][T10902] kernel BUG at lib/iov_iter.c:626!
[  187.367866][T10902] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI
[  187.369902][T10902] CPU: 0 UID: 0 PID: 10902 Comm: syz.3.1385 Not tainted 6.12.0-syzkaller-10296-gaaf20f870da0 #0
[  187.373621][T10902] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  187.376615][T10902] RIP: 0010:iov_iter_revert+0x533/0x5a0
[  187.378060][T10902] Code: 89 e6 48 c7 c7 e0 44 b0 8e e8 89 da 31 00 e9 b1 fd ff ff e8 1f 7f 64 fd eb 95 e8 48 7f 64 fd e9 46 fb ff ff e8 ce ca 01 fd 90 <0f> 0b 48 8b 3c 24 e8 32 7f 64 fd e9 97 fb ff ff 48 8b 7c 24 08 e8
[  187.383160][T10902] RSP: 0018:ffffc90002da78e8 EFLAGS: 00010293
[  187.384884][T10902] RAX: 0000000000000000 RBX: 0000000000002020 RCX: ffffffff848c2b20
[  187.386973][T10902] RDX: ffff8880211f4880 RSI: ffffffff848c2f32 RDI: 0000000000000001
[  187.389008][T10902] RBP: ffffc90002da7d88 R08: 0000000000000001 R09: 0000000000000000
[  187.391040][T10902] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
[  187.393077][T10902] R13: 0000000000000000 R14: dffffc0000000000 R15: ffff88806881a000
[  187.395222][T10902] FS:  0000000000000000(0000) GS:ffff88802b400000(0063) knlGS:00000000f5125b40
[  187.397531][T10902] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  187.399243][T10902] CR2: 00000000f5124fcc CR3: 0000000078aec000 CR4: 0000000000352ef0
[  187.401352][T10902] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  187.403398][T10902] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  187.405505][T10902] Call Trace:
[  187.406379][T10902]  <TASK>
[  187.407153][T10902]  ? die+0x31/0x80
[  187.408143][T10902]  ? do_trap+0x232/0x430
[  187.409258][T10902]  ? iov_iter_revert+0x533/0x5a0
[  187.410551][T10902]  ? iov_iter_revert+0x533/0x5a0
[  187.411843][T10902]  ? do_error_trap+0xf4/0x230
[  187.413328][T10902]  ? iov_iter_revert+0x533/0x5a0
[  187.415039][T10902]  ? handle_invalid_op+0x34/0x40
[  187.416734][T10902]  ? iov_iter_revert+0x533/0x5a0
[  187.418429][T10902]  ? exc_invalid_op+0x2e/0x50
[  187.420068][T10902]  ? asm_exc_invalid_op+0x1a/0x20
[  187.421436][T10902]  ? iov_iter_revert+0x120/0x5a0
[  187.422740][T10902]  ? iov_iter_revert+0x532/0x5a0
[  187.424044][T10902]  ? iov_iter_revert+0x533/0x5a0
[  187.425362][T10902]  ? iov_iter_revert+0x532/0x5a0
[  187.426682][T10902]  fuse_direct_io+0xf0e/0x2580
[  187.427994][T10902]  ? __pfx_fuse_direct_io+0x10/0x10
[  187.429757][T10902]  ? lockdep_init_map_type+0x16d/0x7d0
[  187.431579][T10902]  fuse_direct_IO+0x9a4/0xf20
[  187.433182][T10902]  ? __pfx_fuse_direct_IO+0x10/0x10
[  187.434949][T10902]  ? filemap_check_errors+0xa9/0x160
[  187.436735][T10902]  generic_file_read_iter+0x1d4/0x450
[  187.438558][T10902]  fuse_file_read_iter+0x35f/0x470
[  187.440314][T10902]  vfs_read+0x87f/0xbe0
[  187.441784][T10902]  ? __pfx_vfs_read+0x10/0x10
[  187.443395][T10902]  ksys_read+0x12b/0x250
[  187.444845][T10902]  ? __pfx_ksys_read+0x10/0x10
[  187.446499][T10902]  __do_fast_syscall_32+0x73/0x120
[  187.448257][T10902]  do_fast_syscall_32+0x32/0x80
[  187.449946][T10902]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  187.452100][T10902] RIP: 0023:0xf745e579
[  187.453504][T10902] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  187.460125][T10902] RSP: 002b:00000000f512557c EFLAGS: 00000292 ORIG_RAX: 0000000000000003
[  187.462943][T10902] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020012400
[  187.465617][T10902] RDX: 0000000000002020 RSI: 0000000000000000 RDI: 0000000000000000
[  187.466456][T10914] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1388'.
[  187.468276][T10902] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  187.473601][T10902] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  187.476257][T10902] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  187.478921][T10902]  </TASK>
[  187.479994][T10902] Modules linked in:
[  187.481555][T10902] ---[ end trace 0000000000000000 ]---
[  187.483525][T10902] RIP: 0010:iov_iter_revert+0x533/0x5a0
[  187.485462][T10902] Code: 89 e6 48 c7 c7 e0 44 b0 8e e8 89 da 31 00 e9 b1 fd ff ff e8 1f 7f 64 fd eb 95 e8 48 7f 64 fd e9 46 fb ff ff e8 ce ca 01 fd 90 <0f> 0b 48 8b 3c 24 e8 32 7f 64 fd e9 97 fb ff ff 48 8b 7c 24 08 e8
[  187.490519][T10902] RSP: 0018:ffffc90002da78e8 EFLAGS: 00010293
[  187.492118][T10902] RAX: 0000000000000000 RBX: 0000000000002020 RCX: ffffffff848c2b20
[  187.494206][T10902] RDX: ffff8880211f4880 RSI: ffffffff848c2f32 RDI: 0000000000000001
[  187.496323][T10902] RBP: ffffc90002da7d88 R08: 0000000000000001 R09: 0000000000000000
[  187.499101][T10902] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
[  187.501307][T10902] R13: 0000000000000000 R14: dffffc0000000000 R15: ffff88806881a000
[  187.503358][T10902] FS:  0000000000000000(0000) GS:ffff88802b400000(0063) knlGS:00000000f5125b40
[  187.505674][T10902] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  187.507391][T10902] CR2: 00000000f5124fcc CR3: 0000000078aec000 CR4: 0000000000352ef0
[  187.509500][T10902] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  187.511554][T10902] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  187.513606][T10902] Kernel panic - not syncing: Fatal exception
[  187.515789][T10902] Kernel Offset: disabled
[  187.516919][T10902] Rebooting in 86400 seconds..

VM DIAGNOSIS:
21:32:53  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8509bf05 RDI=ffffffff9a8a1240 RBP=ffffffff9a8a1200 RSP=ffffc90002da7200
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=552030203a555043
R12=0000000000000000 R13=0000000000000020 R14=ffffffff8509bea0 R15=0000000000000000
RIP=ffffffff8509bf2f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f5124fcc CR3=0000000078aec000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=1ffff920005f6f19 RCX=ffffffff822d35b7 RDX=0000000000000000
RSI=00000000000005f3 RDI=ffff88804a30ccc4 RBP=0000000000000000 RSP=ffffc90002fb78b0
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=00000000000a4001
R12=ffffffff8b6ccd20 R13=00000000000005f3 R14=0000000000000000 R15=ffff88804a30c880
RIP=ffffffff815c7b42 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f827c4ec280 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c26a1f1 CR3=00000000213fa000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000004080 Opmask01=00000000100001ff Opmask02=00000000ffffffff Opmask03=8200002022100080
Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000565472cd24e0 0000565472ccef70
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd895714b0 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd89570ad0 0000003000000010
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff000000ff000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ff000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000ff0000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffff00 ffffffffffffffff
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 8480407c3ade6141 7373252264f84c16
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 73737373737373e2 7373737373737373
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f716d2f32706f6f 6c2f6b636f6c622f 6c6175747269762f 736563697665642f
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f646e756f732f00 682e6c6974752f64 65726168732f6372 732f2e2e2f2e2e00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f716d2f32706f6f 6c2f6b636f6c622f 6c6175747269762f 736563697665642f
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000061 0000000000000000 0000000000003375 70632f302f716d2f
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000565472cd32e0 0000565472cc54d0 0000000000000031 0000000000000032
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 370a007d6c796667 6b78264b483b2649 333b263d333b263f 333b2639333b2638
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a263e393a3a263b 393a3a263a393a3a 264c383a3a264f38 3a3a264e383a3a26
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692054524f50202c 2064696c61696d20 0070253a20252054 524f504d49005452
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692020520050202c 2025204f504d4900 0061253a20252000 2527204d49005452
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000729227d2e8 RBX=ffff88802b628400 RCX=00000000000006e0 RDX=0000000000000072
RSI=ffff88802b628400 RDI=0000000000053350 RBP=0000000000053350 RSP=ffffc90007dc7b10
R8 =0000000000000005 R9 =000000000000003f R10=0000000000000019 R11=0000000000000000
R12=0000000000000001 R13=0000000000000019 R14=0000000000000001 R15=ffff88802b62ca00
RIP=ffffffff813b2865 RFL=00000007 [-----PC] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7441230 CR3=000000006940c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=00000000003e2fa9 RBX=0000000000000003 RCX=ffffffff8b207c99 RDX=0000000000000000
RSI=ffffffff8b6cd780 RDI=ffffffff8bd16560 RBP=ffffed1003a50488 RSP=ffffc9000049fe08
R8 =0000000000000001 R9 =ffffed10056e6fed R10=ffff88802b737f6b R11=0000000000000000
R12=0000000000000003 R13=ffff88801d282440 R14=ffffffff903e5a90 R15=0000000000000000
RIP=ffffffff8b20907f RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c357fdf CR3=000000006492e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000