last executing test programs:

6.180155229s ago: executing program 1 (id=405):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
getpid()
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r1 = syz_open_pts(r0, 0x101)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0xf)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$TCFLSH(r3, 0x400455c8, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)
bind$bt_hci(r5, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)
r6 = dup3(r1, r0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000040)=0xd)
mkdir(0x0, 0x0)
syz_emit_vhci(&(0x7f0000016f40)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x0, 0x0, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_ecred_reconf_rsp={{0x1a, 0x0, 0x2}, {0x8}}}}, 0xf)
write$UHID_INPUT(r6, &(0x7f00000001c0)={0xa, {"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", 0x1000}}, 0xffffff5c)

4.059688665s ago: executing program 1 (id=415):
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000023c0)=[{{&(0x7f0000000000)={0x2, 0x4e24, @local}, 0x10, &(0x7f0000000380)=[{&(0x7f0000000040)="1246", 0x2}, {0x0}], 0x2}}], 0x1, 0x8810)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r1, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x0, @multicast1}, 0x2, 0x0, 0x0, 0x2000}}, 0x2e)
r2 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB="345033a61d650974a5820000", @ANYRES16=r2, @ANYBLOB="01002cbd70000400000005000000080009000200000008000c00a80a0000060001000500000008000b0004000000"], 0x34}}, 0x3a)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x2000000000000019, &(0x7f00000000c0)=ANY=[], &(0x7f0000000300)='syzkaller\x00', 0x8, 0xb1, &(0x7f0000000140)=""/177, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x34, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
bind$tipc(0xffffffffffffffff, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x40, 0xfffffffc, 0x2}}, 0x10)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$sysctl(r6, &(0x7f0000000000)='4\x00', 0x2)
bind$bt_hci(r7, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r7, &(0x7f0000000000), 0xd)
r8 = syz_open_procfs(0x0, &(0x7f0000000180)='stat\x00')
pread64(r8, &(0x7f0000000240)=""/251, 0xfb, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x104, &(0x7f0000000080)=0x1, 0x0, 0x4)
socket$nl_netfilter(0x10, 0x3, 0xc)

3.299357118s ago: executing program 2 (id=421):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000080)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$FS_IOC_GETVERSION(r1, 0x40015b19, 0x0)

3.120376636s ago: executing program 1 (id=423):
getpid()
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r0 = syz_open_pts(0xffffffffffffffff, 0x101)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf)
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$TCFLSH(r2, 0x400455c8, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)
bind$bt_hci(r4, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)
r5 = dup3(r0, 0xffffffffffffffff, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000040)=0xd)
mkdir(0x0, 0x0)
syz_emit_vhci(&(0x7f0000016f40)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x0, 0x0, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_ecred_reconf_rsp={{0x1a, 0x0, 0x2}, {0x8}}}}, 0xf)
write$UHID_INPUT(r5, &(0x7f00000001c0)={0xa, {"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", 0x1000}}, 0xffffff5c)

2.817878063s ago: executing program 3 (id=434):
r0 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000002d80)=@newqdisc={0x34, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}]}, 0x34}}, 0x0)

2.16141681s ago: executing program 2 (id=427):
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_CLOCK(r4, 0xc048aec8, &(0x7f0000000100)={0xd6, 0x0, 0x1})
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
mlockall(0x7)
openat$pidfd(0xffffffffffffff9c, 0x0, 0x802a80, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, &(0x7f0000000180)={'tunl0\x00', 0x400})
ioctl$NS_GET_USERNS(0xffffffffffffffff, 0xb701, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)=ANY=[@ANYBLOB="00000040ff88beaf96ba515e7cfbb123eec63dba0eec614b2e3e94c1cce2429d", @ANYRES32=0x0, @ANYBLOB="01000000000000002400128009000100626f6e640000000014000280050001000500000005001b"], 0x44}}, 0x0)
futex(0x0, 0x5, 0x0, 0x0, 0x0, 0x35000000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getsockopt$inet_tcp_buf(0xffffffffffffffff, 0x6, 0x1a, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x600000e, 0x50, 0xffffffffffffffff, 0x0)
syz_clone(0x80000480, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x8)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
rename(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000280)='./file0\x00')
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x84000, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)=ANY=[@ANYBLOB="820000000000000022"])

2.161095563s ago: executing program 3 (id=428):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r1)
sendmsg$NFC_CMD_DEP_LINK_UP(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000200)={0x24, r2, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@NFC_ATTR_COMM_MODE={0x5}, @NFC_ATTR_DEVICE_INDEX={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x44000}, 0x40)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={0x0}}, 0x0)
modify_ldt$write(0x1, &(0x7f00000001c0)={0x803, 0x0, 0x2000}, 0x10)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x0, 0x1c, &(0x7f0000000040)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bf0900000000000055090100000000009500000000000000b7020000000000007b88f8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ptrace$getregset(0x4205, r3, 0x1, &(0x7f0000000080)={&(0x7f00000000c0)=""/120, 0x78})
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f00000002c0), r0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000009000000000000000200000d00000000060000000000080000000000000000000000000000002e10"], &(0x7f0000000180)=""/129, 0x3d, 0x81, 0x1, 0x0, 0x0, @void, @value}, 0x28)
r5 = syz_open_procfs(0x0, &(0x7f0000000880)='mountinfo\x00')
r6 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendfile(r6, r5, 0x0, 0x3)
r7 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000240)={'wlan1\x00', <r8=>0x0})
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_FRAME(r10, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="48040000", @ANYRES16=r9, @ANYBLOB="01e5c300000000fb04003b1c210008000300", @ANYRES32=r8, @ANYBLOB="2c0433005000de295b3acba52ee4080211000001505050505050"], 0x448}}, 0x0)
sendmsg$SEG6_CMD_SET_TUNSRC(r0, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x58, r4, 0x10, 0x70bd2b, 0x25dfdbff, {}, [@SEG6_ATTR_HMACKEYID={0x8}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x2}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0xffffffff}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x2}, @SEG6_ATTR_SECRET={0x10, 0x4, [0x8, 0xffffffff, 0x6]}, @SEG6_ATTR_SECRET={0xc, 0x4, [0x4, 0x9]}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x200}]}, 0x58}}, 0x2004c044)
r11 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), r0)
sendmsg$DEVLINK_CMD_SB_POOL_GET(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0xc4, r11, 0x4, 0x70bd28, 0x25dfdbfd, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x3}, {0x6, 0x11, 0x10}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0xd}, {0x6, 0x11, 0x180}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0xc853}, {0x6, 0x11, 0x8}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x2}, {0x6, 0x11, 0x5}}]}, 0xc4}, 0x1, 0x0, 0x0, 0x20008040}, 0x0)
syz_emit_vhci(&(0x7f0000000400)=@HCI_EVENT_PKT={0x4, @hci_ev_pkt_type_change={{0x1d, 0x5}, {0xff, 0xc8, 0xfff}}}, 0x8)

2.069802014s ago: executing program 3 (id=429):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000380)={0x2, 0x4e22, @empty}, 0x10)
listen(r0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f00000002c0)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0200", 0x14, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2, 0x500}}}}}}}, 0x0)

2.069265142s ago: executing program 0 (id=430):
r0 = socket(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00', 0x20, 0x1, 0x990, [0x0, 0x0, 0x300, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"/2448]}, 0x9e0)

2.068793271s ago: executing program 3 (id=431):
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000023c0)=[{{&(0x7f0000000000)={0x2, 0x4e24, @local}, 0x10, &(0x7f0000000380)=[{&(0x7f0000000040)="1246", 0x2}, {0x0}], 0x2}}], 0x1, 0x8810)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r1, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x0, @multicast1}, 0x2, 0x0, 0x0, 0x2000}}, 0x2e)
r2 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB="345033a61d650974a5820000", @ANYRES16=r2, @ANYBLOB="01002cbd70000400000005000000080009000200000008000c00a80a0000060001000500000008000b0004000000"], 0x34}}, 0x3a)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x2000000000000019, &(0x7f00000000c0)=ANY=[], &(0x7f0000000300)='syzkaller\x00', 0x8, 0xb1, &(0x7f0000000140)=""/177, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x34, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
bind$tipc(0xffffffffffffffff, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x40, 0xfffffffc, 0x2}}, 0x10)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$sysctl(r6, &(0x7f0000000000)='4\x00', 0x2)
bind$bt_hci(r7, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r7, &(0x7f0000000000), 0xd)
r8 = syz_open_procfs(0x0, &(0x7f0000000180)='stat\x00')
pread64(r8, &(0x7f0000000240)=""/251, 0xfb, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x104, &(0x7f0000000080)=0x1, 0x0, 0x4)
socket$nl_netfilter(0x10, 0x3, 0xc)

1.970051257s ago: executing program 0 (id=432):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(0xffffffffffffffff, 0xc06864a2, 0x0)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
openat$sequencer2(0xffffffffffffff9c, 0x0, 0x2a8001, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0xb8}}, 0x0)
sendmsg$nl_xfrm(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)=ANY=[@ANYBLOB="b400000013"], 0x188}}, 0x0)
bpf$OBJ_PIN_MAP(0x6, 0x0, 0x0)
socket$l2tp(0x2, 0x2, 0x73)
socket$inet_mptcp(0x2, 0x1, 0x106)
openat$sysfs(0xffffff9c, &(0x7f0000000280)='/sys/power/image_size', 0x40, 0x0)
getdents(r1, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x4010, 0xffffffffffffffff, 0x25549000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)

1.450378959s ago: executing program 0 (id=433):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)={0x44, r1, 0x1, 0x70bd2b, 0x0, {}, [@NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @remote}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @private0={0xfc, 0x0, '\x00', 0x1}}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r2 = syz_open_dev$MSR(&(0x7f0000000000), 0x48, 0x0)
read$msr(r2, &(0x7f0000000040)=""/48, 0x30)
unshare(0x70050680)

1.449999906s ago: executing program 0 (id=435):
r0 = socket$kcm(0x10, 0x2, 0x4)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = memfd_create(&(0x7f0000000240)='+\x8b\x8a\xa9\x16\x11\x91J\xbc+  \x18\x17\xc2:}\xa3\x9bO\xdd\xdf\xdf\x92\xd5\xed\xb4\x17\xe5\xd6\x9a\xb2\xd8\x9ba\xde\xb2.F\xc0\x99}|\xaf\xd3\x1d\x84[*_\x9f\x9d\xb0rYP\x1b\x9f \xe0\x9cgq\x103\x89\x11\x87Rv\x169\xdf\xe3>B\x04\x00\x00\x00W\xd3\xec\xfb\xdf?\xa2\x90+\xa4!\xb2\xf2\xff\x90\a\xc3\x12\xc4;\xffh\xf1x=\xb9c\xce\x03h\xdap\x88U\x1788\x82\xd7\xfd\x83\x00Sx\x91%\x99_\xfe\xd4c\x83\x86\x0f\xa4a-\xaf\x9e\xd9\xef\xe0)]\x00F\xfa\x03\xbc4\xc4\x9a\v\x03\x8b\xa4\xf3\x8f\xf4\"\'\xd3\a9\x05\x00}j&~\xe9\x16\x83o\xbd\xab\xcd[\xbd\xcb\x04\xfc\xe7\xe3\x9e?\x12\xf0\xf4\x83M3\xd88\x92?@\v\xe6\xd1\xd2\xe4\xde\xdaUeJ\x9fR\xd1`\xfa\xc8\v\xed\xfd\x0e\xc8\x89W\x847\x88\x82\x94\x14\xe33\xb7H\xc8b\xd6@3F#\xb7\x04C\x8dm\t\x16a\x0fI\xf4\xfe\xf8\x06j\x19Pz&\xb8\x0f\x98`W\xdb\xc6\"81A\xa4\x8bT\xf1\xcb\xab\xa3\t\xef\xdf&\x0e\xad\x03\x123.\xc2V\xaa\xd5\xf8\xde\x8aV\xa4p{\xcez\xa2\x92\xdb8*wLO\f\x97X\x05\x9a\xc2\xe8\x85\x9d\xcb\xc8\xf0\xc4\x01\x03\xe3?\x9f1\xf4\xfb\xa5y`KB\xdf\xae#\x94C\a\x04\xea\xccG\xf2\b\x8f\xf7\xb1\xe96\x90\xf5P\xa4\'\xce\xe3\xa24\x196\xc5Q\xa1K\x95\xd6\xfal\xe9\xd1\\\r&\xb2c\xb3\x8d\xa7\xb7\xa8\x03S\xbd\xdd\b{\xae\f\x10\xc2\xbb\xd0\xdd*\xa3\xb4\fJ\x00X\xab`N; LF\xa5D\xee\xdf\x7f\x80p\xf6o\x1c\xbdXR\xf2\xa0\x81a\xa1\xe1B\x93Xn\xaf\xfc\x05?\xab\xac\x91x\xa8#\xe1\xbeQ\xd1^\x9b\xb9)\xd3\n\xf7(3!\x18\b\xc0\xaampRl\xfdQ\x03\x8c\xd5\xe4\\\xed\x9a\xd1?\xd21\xc8\x90\x1dl|\xd1\x14\xbc3\xe0\x1e\x0e\xe6\x88Y\x99K\x93\x1c@_P\x8c\xc7\x9eZ\xb74KT:\x8a\xdbJ#w\x18\x14\x00\x93\x86\xa5wo\xf6M\xe7D\xf4*\xe3X\x1d\x19\x83\xa7w\xc7+7\x89s\xed\x8a\xd7O\xdd\rhh`\xc0\xa8$\x06pu\xa0\xd0L\x0ez@I\xb8\x83\xb2f\x93j\a0I\xc8l\xe5\x9b\x06\xb5\xac`d\xa3\xcf/\x14\x10\xab\xab\t\xec\xc1c\fA\xaf\x14\xef\xbap@*7\x86\xdf\',\x03Y\xb1$\xf0\xb5}\xf0\x82%)9`\x8f\x04\x85m\x80\xd2\xcf@\x06}\xea\xe7w`\xa5\x11\x9f\x9b\x9e\x8f\xb7cb\x1a\xe1\xcf\x87\x1c\\\xf5\xc21\xf7\x82C*\xd5;\x00\x00\x00\x00\x03\xba\xe3\xdc\x92\'\x8e\xd5\x7fG\xfd.\x91\x89T\x99t\xd4d,\xd5\x92O\xf1\xafT!Y\x8e\\\xac\xf7\x11R\x05p\x1a\"\r\xe9\xe5\x8b&\x0f\x8c\xfb\xef\xf8\xd5\x18\xde\xeb\xe5\x19\xdd\xebQ8\xc5iS+\x06D\x16\xfe\xf5.\xe5\v\x89\xb0\"\xa3M\xe9\x81\x11P\xdb\xc4\xc2y\x14\x04\x06\xf6\f\xb0\xecz\x8d`\xb5\x9b\xb43\xcc1\xa7\x9e\xa8\xb5\'\xc6MAe\x0f\xd1\xfcG\xc2/\xe8\xe9t\xcaQ\xf1\fI\x1chM\xc1\x92\xe3\xc3\x01M\xc8/\xefJ\xcb\xd0]\f\xff\xf5\x92\xce\x97Z\xea\xe8\x99\xfa\x96\xce\xa7\x02\xad\xa2\xce\x955\xeaNg\x02\xcd\xfd\x1a}.\xd3\"x\x89/8H\xc2\x93B\na)\x86\xa9U\xa0\xb7\x18\xfb\xe9\xd1\x97', 0x3)
write$binfmt_misc(r2, &(0x7f0000000740), 0xff67)
sendfile(r1, r2, &(0x7f0000000000), 0xfffb)
fcntl$addseals(r2, 0x409, 0x8)
lseek(r2, 0x2000001, 0x4)
r3 = socket$kcm(0x2, 0x200000000000001, 0x106)
socket(0x10, 0xa, 0x6)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1000000, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x11, &(0x7f0000000180)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x7}, @snprintf={{}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x5}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r4}, {}, {0x85, 0x0, 0x0, 0xb3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r5}, 0xc)
sendmsg$inet(r3, &(0x7f00000000c0)={&(0x7f0000000040)={0x2, 0x2001, @remote}, 0x10, 0x0}, 0x3000c041)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000280)="89000000120081ae08060cdc030ec0007f03e3f70000000100e2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec08120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_FRAME(r6, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000440)=ANY=[@ANYBLOB='p\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r8, @ANYBLOB="4000330050b0c500080211000001080211000000505050505050480012008040970000000000000000008581000601"], 0x70}}, 0x0)

1.446220944s ago: executing program 2 (id=436):
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000001180)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x54)
openat$tun(0xffffff9c, &(0x7f0000000040), 0x80, 0x0)
r0 = socket$inet_sctp(0x2, 0x800000000000001, 0x84)
sendto$inet(r0, &(0x7f0000a34fff)='H', 0x1, 0x0, &(0x7f0000030ff0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
bpf$BPF_LINK_CREATE(0x8, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff, 0x34, 0x0, @void}, 0x10)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r2 = syz_open_dev$dri(0x0, 0x4, 0x418c02)
fcntl$dupfd(r1, 0x0, r2)
openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x2002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000200)=[{0x0}], 0x1, 0x0, 0x0)
socket$caif_stream(0x25, 0x1, 0x2)
close(0x3)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f0000000400)=@ethtool_flash={0x33, 0x0, '.\x00'}})
sendto$inet(r0, &(0x7f0000000100)='\x00', 0x1, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
shutdown(r0, 0x1)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000004c0)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x34, 0xfffffffe}, 0x9c)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_mptcp_buf(r4, 0x11c, 0x4, 0x0, 0x0)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000040)={0x50, 0x0, 0x0, {0x7, 0x1f}}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0500000002000000020000000400000000000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00!', @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
openat2$dir(0xffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)={0x10400, 0x2, 0xc}, 0x18)

1.170262237s ago: executing program 0 (id=437):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000080)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$FS_IOC_GETVERSION(r1, 0x40015b19, 0x0)

1.169727163s ago: executing program 3 (id=438):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r1)
sendmsg$NFC_CMD_DEP_LINK_UP(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000200)={0x24, r2, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@NFC_ATTR_COMM_MODE={0x5}, @NFC_ATTR_DEVICE_INDEX={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x44000}, 0x40)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={0x0}}, 0x0)
modify_ldt$write(0x1, &(0x7f00000001c0)={0x803, 0x0, 0x2000}, 0x10)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x0, 0x1c, &(0x7f0000000040)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bf0900000000000055090100000000009500000000000000b7020000000000007b88f8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ptrace$getregset(0x4205, r3, 0x1, &(0x7f0000000080)={&(0x7f00000000c0)=""/120, 0x78})
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f00000002c0), r0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000009000000000000000200000d00000000060000000000080000000000000000000000000000002e10"], &(0x7f0000000180)=""/129, 0x3d, 0x81, 0x1, 0x0, 0x0, @void, @value}, 0x28)
r5 = syz_open_procfs(0x0, &(0x7f0000000880)='mountinfo\x00')
r6 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendfile(r6, r5, 0x0, 0x3)
r7 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000240)={'wlan1\x00', <r8=>0x0})
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_FRAME(r10, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="48040000", @ANYRES16=r9, @ANYBLOB="01e5c300000000fb04003b1c210008000300", @ANYRES32=r8, @ANYBLOB="2c0433005000de295b3acba52ee4080211000001505050505050"], 0x448}}, 0x0)
sendmsg$SEG6_CMD_SET_TUNSRC(r0, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x58, r4, 0x10, 0x70bd2b, 0x25dfdbff, {}, [@SEG6_ATTR_HMACKEYID={0x8}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x2}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0xffffffff}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x2}, @SEG6_ATTR_SECRET={0x10, 0x4, [0x8, 0xffffffff, 0x6]}, @SEG6_ATTR_SECRET={0xc, 0x4, [0x4, 0x9]}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x200}]}, 0x58}}, 0x2004c044)
r11 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), r0)
sendmsg$DEVLINK_CMD_SB_POOL_GET(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0xc4, r11, 0x4, 0x70bd28, 0x25dfdbfd, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x3}, {0x6, 0x11, 0x10}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0xd}, {0x6, 0x11, 0x180}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0xc853}, {0x6, 0x11, 0x8}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x2}, {0x6, 0x11, 0x5}}]}, 0xc4}, 0x1, 0x0, 0x0, 0x20008040}, 0x0)
syz_emit_vhci(&(0x7f0000000400)=@HCI_EVENT_PKT={0x4, @hci_ev_pkt_type_change={{0x1d, 0x5}, {0xff, 0xc8, 0xfff}}}, 0x8)

1.079385953s ago: executing program 3 (id=439):
sched_setattr(0x0, &(0x7f0000000140)={0x82}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
openat$fb1(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r3 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x84, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000480)={0x6, <r4=>0x0}, 0x8)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x5, &(0x7f00000004c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0xd70}, [@map_idx_val={0x18, 0x7, 0x6, 0x0, 0xc, 0x0, 0x0, 0x0, 0x101}]}, &(0x7f0000000500)='syzkaller\x00', 0xfffffff8, 0x4c, &(0x7f0000000540)=""/76, 0x40f00, 0x45, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f00000005c0)={0x3, 0x2}, 0x8, 0x10, &(0x7f0000000600)={0x1, 0x6, 0x3350, 0xfffffffe}, 0x10, 0x0, 0x0, 0x5, 0x0, &(0x7f0000000640)=[{0x5, 0x1, 0xf, 0x3}, {0x2, 0x4, 0xd, 0x4}, {0x1, 0x2, 0x7, 0x37c33193f537f891}, {0x0, 0x5, 0x8}, {0x0, 0x2, 0x3}], 0x10, 0x1, @void, @value}, 0x94)
r6 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
ioctl$int_in(r6, 0x40000000af01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r6, 0x4028af11, &(0x7f0000000200)={0x1, 0x1, 0x0, &(0x7f0000000740)=""/51, 0x0})
r7 = socket$packet(0x11, 0x3, 0x300)
ioctl$VHOST_SET_MEM_TABLE(r6, 0x4008af03, &(0x7f0000000b00))
r8 = dup(r7)
r9 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000780)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x9, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x5, 0x0, @void, @value, @void, @value}, 0x50)
r10 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x8, 0xf, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r11 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000800)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x9, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x2, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x2, 0x18, &(0x7f00000001c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x8}, {}, {}, [@kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @printk={@li, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1}}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000280)='syzkaller\x00', 0x0, 0xe7, &(0x7f0000000340)=""/231, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000440)={0x2, 0x6, 0x100, 0x5}, 0x10, r4, r5, 0x6, &(0x7f0000000880)=[r8, r9, r10, r11], &(0x7f00000008c0)=[{0x5, 0x1, 0x1, 0x5}, {0x3, 0x3, 0x1, 0x5}, {0x0, 0x1, 0x6, 0x9}, {0x5, 0x4, 0x6, 0x1}, {0x4, 0x2, 0x1, 0xa}, {0x4, 0x3, 0xb, 0x6}], 0x10, 0x80, @void, @value}, 0x94)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r3, 0x40045542, &(0x7f0000000b00))
syz_open_dev$dmmidi(&(0x7f0000000080), 0x200, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf)
r12 = fcntl$dupfd(r1, 0x0, r1)
ioctl$TCFLSH(r12, 0x400455c8, 0x20000000009)
ioctl$TCGETS2(r12, 0x800455c9, 0x0)
syz_usb_connect(0x3, 0x2d, &(0x7f0000000180)=ANY=[@ANYBLOB="1201fb0019030320d812010079de01ec020109021b0001000003000904000001785ecc000905850200"], 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

1.010262407s ago: executing program 1 (id=440):
r0 = syz_open_dev$cec(&(0x7f0000000200), 0x0, 0x82)
syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x80010, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000340)=[{0x0, 0x5, 0x5, 0x9}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
kcmp(0x0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x13, 0x0, 0x0, 0x2}, 0x10}}, 0x0)
r6 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r6, 0x402c560b, &(0x7f00000000c0)={0x1, @pix_mp={0x0, 0x0, 0x34343459}})
syz_open_dev$vim2m(&(0x7f0000000040), 0x8, 0x2)
close_range(r4, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000100), 0x4000, &(0x7f0000000000)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRES16=r0])

513.182878ms ago: executing program 2 (id=441):
mkdir(&(0x7f0000000080)='./file0\x00', 0x0)
mount(&(0x7f0000000280)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)='hpfs\x00', 0x808001, 0x0) (fail_nth: 16)

430.272851ms ago: executing program 2 (id=442):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(0xffffffffffffffff, 0xc06864a2, 0x0)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
openat$sequencer2(0xffffffffffffff9c, 0x0, 0x2a8001, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[], 0xb8}}, 0x0)
sendmsg$nl_xfrm(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)=ANY=[@ANYBLOB="b400000013"], 0x188}}, 0x0)
bpf$OBJ_PIN_MAP(0x6, 0x0, 0x0)
socket$l2tp(0x2, 0x2, 0x73)
socket$inet_mptcp(0x2, 0x1, 0x106)
openat$sysfs(0xffffff9c, &(0x7f0000000280)='/sys/power/image_size', 0x40, 0x0)
getdents(r1, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x4010, 0xffffffffffffffff, 0x25549000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)

180.184432ms ago: executing program 2 (id=443):
openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x40, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, <r1=>0x0, <r2=>0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x1204020, 0x1, 0x3}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="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", 0x2000, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x24c01, 0x0)
syz_fuse_handle_req(r0, 0x0, 0x0, 0x0)
write$FUSE_ENTRY(r4, &(0x7f0000000340)={0x90, 0x0, r1, {0x2, 0x0, 0xa, 0x0, 0x800, 0x7, {0x5, 0x6, 0x7ff, 0x0, 0x51b5, 0x4, 0x1, 0x7fffffff, 0xf5, 0x6000, 0x9, r2, r3, 0x6, 0x3e}}}, 0x90) (fail_nth: 5)
mkdir(0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[])
umount2(&(0x7f00000001c0)='./file0\x00', 0x1)

120.133978ms ago: executing program 1 (id=444):
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000240)={'ip_vti0\x00', &(0x7f00000001c0)={'sit0\x00', <r0=>0x0, 0x8, 0x1, 0xffffffff, 0x3, {{0x7, 0x4, 0x1, 0x38, 0x1c, 0x68, 0x0, 0x1, 0x4, 0x0, @broadcast, @loopback, {[@cipso={0x86, 0x6, 0xffffffffffffffff}, @noop]}}}}})
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x0, 0x61, 0x10, 0x54}, [@ldst={0x6}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', r0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x8, 0x10, &(0x7f0000000080), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x101000, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0x3)
r2 = socket$nl_audit(0x10, 0x3, 0x9)
ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x8914, &(0x7f0000000200)={'bridge_slave_0\x00', 0x8000})
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000000)=0x1b)

119.749652ms ago: executing program 1 (id=445):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_CLOCK(r1, 0x4188aec6, &(0x7f0000000040)={0x1, 0x8, 0x0, 0x20000000000000})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000024000/0x18000)=nil, &(0x7f0000000680)=[@text16={0x10, &(0x7f0000000280)="66b9800000c00f326635010000000f3064660f38828e4258660f086766c744240012e93bf96766c7442402010000006766c744240600000000670f011c2466b9800000c00f326635002000000f300f01df66b80500000066b900200000a90a000f01c40f019f09000f01c2", 0x6b}], 0x1, 0x7d, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000300)={[0xbb5, 0xffffffffffffffca, 0x100, 0xfffffffffffffff6, 0x6, 0x401, 0x6, 0x2, 0x0, 0x8, 0x100000001, 0xba25, 0x1000, 0x3, 0xfffffffffffffe00, 0x4], 0xeeef0000, 0x40080})
ioctl$KVM_CAP_X86_USER_SPACE_MSR(r1, 0x4068aea3, &(0x7f0000000100)={0xbc, 0x0, 0x4})
ioctl$KVM_RUN(r2, 0xae80, 0xfd7f)

0s ago: executing program 0 (id=446):
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000023c0)=[{{&(0x7f0000000000)={0x2, 0x4e24, @local}, 0x10, &(0x7f0000000380)=[{&(0x7f0000000040)="1246", 0x2}, {0x0}], 0x2}}], 0x1, 0x8810)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r1, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x0, @multicast1}, 0x2, 0x0, 0x0, 0x2000}}, 0x2e)
r2 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB="345033a61d650974a5820000", @ANYRES16=r2, @ANYBLOB="01002cbd70000400000005000000080009000200000008000c00a80a0000060001000500000008000b0004000000"], 0x34}}, 0x3a)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x2000000000000019, &(0x7f00000000c0)=ANY=[], &(0x7f0000000300)='syzkaller\x00', 0x8, 0xb1, &(0x7f0000000140)=""/177, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x34, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
bind$tipc(0xffffffffffffffff, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x40, 0xfffffffc, 0x2}}, 0x10)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$sysctl(r6, &(0x7f0000000000)='4\x00', 0x2)
bind$bt_hci(r7, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r7, &(0x7f0000000000), 0xd)
r8 = syz_open_procfs(0x0, &(0x7f0000000180)='stat\x00')
pread64(r8, &(0x7f0000000240)=""/251, 0xfb, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x104, &(0x7f0000000080)=0x1, 0x0, 0x4)
socket$nl_netfilter(0x10, 0x3, 0xc)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:22935' (ED25519) to the list of known hosts.
[   34.447911][ T5858] cgroup: Unknown subsys name 'net'
[   34.627476][ T5858] cgroup: Unknown subsys name 'cpuset'
[   34.631372][ T5858] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   35.576524][ T5858] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   38.892316][ T5298] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   38.897960][ T5298] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   38.901091][ T5298] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   38.904654][ T5298] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   38.908581][ T5298] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   38.911653][ T5298] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   38.921835][ T5945] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   38.924997][ T5945] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   38.925463][ T5944] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   38.927581][ T5945] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   38.933329][   T66] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   38.937467][   T66] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   38.940979][   T66] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   38.943339][   T66] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   38.945738][   T66] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   38.950272][ T5945] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   38.953834][ T5945] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   38.956468][ T5945] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   38.958768][ T5945] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   38.960287][ T5298] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   38.964365][ T5298] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   38.969610][ T5945] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   38.972462][ T5945] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   38.974682][ T5945] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   39.190867][ T5946] chnl_net:caif_netlink_parms(): no params data found
[   39.222027][ T5950] chnl_net:caif_netlink_parms(): no params data found
[   39.230083][ T5938] chnl_net:caif_netlink_parms(): no params data found
[   39.317358][ T5942] chnl_net:caif_netlink_parms(): no params data found
[   39.389546][ T5946] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.391534][ T5946] bridge0: port 1(bridge_slave_0) entered disabled state
[   39.394478][ T5946] bridge_slave_0: entered allmulticast mode
[   39.398213][ T5946] bridge_slave_0: entered promiscuous mode
[   39.403887][ T5946] bridge0: port 2(bridge_slave_1) entered blocking state
[   39.406174][ T5946] bridge0: port 2(bridge_slave_1) entered disabled state
[   39.408232][ T5946] bridge_slave_1: entered allmulticast mode
[   39.410611][ T5946] bridge_slave_1: entered promiscuous mode
[   39.485663][ T5950] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.488247][ T5950] bridge0: port 1(bridge_slave_0) entered disabled state
[   39.490269][ T5950] bridge_slave_0: entered allmulticast mode
[   39.492794][ T5950] bridge_slave_0: entered promiscuous mode
[   39.495457][ T5938] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.497824][ T5938] bridge0: port 1(bridge_slave_0) entered disabled state
[   39.500292][ T5938] bridge_slave_0: entered allmulticast mode
[   39.502445][ T5938] bridge_slave_0: entered promiscuous mode
[   39.526995][ T5950] bridge0: port 2(bridge_slave_1) entered blocking state
[   39.529289][ T5950] bridge0: port 2(bridge_slave_1) entered disabled state
[   39.531395][ T5950] bridge_slave_1: entered allmulticast mode
[   39.533463][ T5950] bridge_slave_1: entered promiscuous mode
[   39.536218][ T5938] bridge0: port 2(bridge_slave_1) entered blocking state
[   39.538152][ T5938] bridge0: port 2(bridge_slave_1) entered disabled state
[   39.540068][ T5938] bridge_slave_1: entered allmulticast mode
[   39.542120][ T5938] bridge_slave_1: entered promiscuous mode
[   39.553139][ T5946] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   39.556867][ T5946] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   39.578783][ T5942] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.580782][ T5942] bridge0: port 1(bridge_slave_0) entered disabled state
[   39.583009][ T5942] bridge_slave_0: entered allmulticast mode
[   39.585902][ T5942] bridge_slave_0: entered promiscuous mode
[   39.623550][ T5946] team0: Port device team_slave_0 added
[   39.625911][ T5942] bridge0: port 2(bridge_slave_1) entered blocking state
[   39.628328][ T5942] bridge0: port 2(bridge_slave_1) entered disabled state
[   39.630923][ T5942] bridge_slave_1: entered allmulticast mode
[   39.633828][ T5942] bridge_slave_1: entered promiscuous mode
[   39.647342][ T5938] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   39.650872][ T5938] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   39.656040][ T5946] team0: Port device team_slave_1 added
[   39.682944][ T5950] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   39.708363][ T5942] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   39.714404][ T5950] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   39.741948][ T5942] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   39.761774][ T5938] team0: Port device team_slave_0 added
[   39.765433][ T5946] batman_adv: batadv0: Adding interface: batadv_slave_0
[   39.767558][ T5946] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   39.777185][ T5946] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   39.807430][ T5938] team0: Port device team_slave_1 added
[   39.810080][ T5946] batman_adv: batadv0: Adding interface: batadv_slave_1
[   39.812312][ T5946] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   39.820202][ T5946] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   39.845552][ T5950] team0: Port device team_slave_0 added
[   39.881218][ T5938] batman_adv: batadv0: Adding interface: batadv_slave_0
[   39.883668][ T5938] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   39.892955][ T5938] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   39.900402][ T5942] team0: Port device team_slave_0 added
[   39.903997][ T5950] team0: Port device team_slave_1 added
[   39.922056][ T5938] batman_adv: batadv0: Adding interface: batadv_slave_1
[   39.924035][ T5938] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   39.930952][ T5938] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   39.935288][ T5942] team0: Port device team_slave_1 added
[   39.962900][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_0
[   39.966810][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   39.977166][ T5950] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   40.018962][ T5946] hsr_slave_0: entered promiscuous mode
[   40.022153][ T5946] hsr_slave_1: entered promiscuous mode
[   40.027301][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_1
[   40.029813][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   40.038989][ T5950] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   40.043678][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_0
[   40.046437][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   40.053121][ T5942] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   40.057467][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_1
[   40.059578][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   40.066195][ T5942] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   40.108069][ T5938] hsr_slave_0: entered promiscuous mode
[   40.110186][ T5938] hsr_slave_1: entered promiscuous mode
[   40.112022][ T5938] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   40.114573][ T5938] Cannot create hsr debugfs directory
[   40.192122][ T5950] hsr_slave_0: entered promiscuous mode
[   40.195455][ T5950] hsr_slave_1: entered promiscuous mode
[   40.198576][ T5950] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   40.201326][ T5950] Cannot create hsr debugfs directory
[   40.228906][ T5942] hsr_slave_0: entered promiscuous mode
[   40.231137][ T5942] hsr_slave_1: entered promiscuous mode
[   40.233513][ T5942] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   40.236878][ T5942] Cannot create hsr debugfs directory
[   40.449989][ T5946] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   40.456006][ T5946] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   40.459670][ T5946] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   40.467512][ T5946] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   40.482424][ T5942] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   40.488149][ T5942] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   40.493186][ T5942] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   40.501010][ T5942] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   40.526466][ T5938] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   40.531370][ T5938] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   40.538507][ T5938] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   40.543780][ T5938] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   40.568218][ T5950] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   40.572332][ T5950] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   40.578631][ T5950] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   40.584112][ T5950] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   40.623637][ T5946] 8021q: adding VLAN 0 to HW filter on device bond0
[   40.633702][ T5946] 8021q: adding VLAN 0 to HW filter on device team0
[   40.645928][ T1168] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.648116][ T1168] bridge0: port 1(bridge_slave_0) entered forwarding state
[   40.663364][ T1168] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.665508][ T1168] bridge0: port 2(bridge_slave_1) entered forwarding state
[   40.672139][ T5942] 8021q: adding VLAN 0 to HW filter on device bond0
[   40.707875][ T5942] 8021q: adding VLAN 0 to HW filter on device team0
[   40.729159][  T102] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.731036][  T102] bridge0: port 1(bridge_slave_0) entered forwarding state
[   40.733747][  T102] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.735824][  T102] bridge0: port 2(bridge_slave_1) entered forwarding state
[   40.740883][ T5938] 8021q: adding VLAN 0 to HW filter on device bond0
[   40.760168][ T5950] 8021q: adding VLAN 0 to HW filter on device bond0
[   40.783300][ T5950] 8021q: adding VLAN 0 to HW filter on device team0
[   40.789270][ T5938] 8021q: adding VLAN 0 to HW filter on device team0
[   40.797843][ T1168] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.799804][ T1168] bridge0: port 1(bridge_slave_0) entered forwarding state
[   40.803555][ T1168] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.805861][ T1168] bridge0: port 1(bridge_slave_0) entered forwarding state
[   40.812993][ T1168] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.815358][ T1168] bridge0: port 2(bridge_slave_1) entered forwarding state
[   40.827896][ T1168] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.830427][ T1168] bridge0: port 2(bridge_slave_1) entered forwarding state
[   40.879474][ T5946] 8021q: adding VLAN 0 to HW filter on device batadv0
[   40.904495][ T5946] veth0_vlan: entered promiscuous mode
[   40.911838][ T5946] veth1_vlan: entered promiscuous mode
[   40.917421][ T5942] 8021q: adding VLAN 0 to HW filter on device batadv0
[   40.935468][ T5946] veth0_macvtap: entered promiscuous mode
[   40.938977][ T5946] veth1_macvtap: entered promiscuous mode
[   40.951596][ T5946] batman_adv: batadv0: Interface activated: batadv_slave_0
[   40.955501][ T5945] Bluetooth: hci0: command tx timeout
[   40.957232][ T5946] batman_adv: batadv0: Interface activated: batadv_slave_1
[   40.964665][ T5942] veth0_vlan: entered promiscuous mode
[   40.971146][ T5946] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   40.973764][ T5946] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   40.976784][ T5946] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   40.979045][ T5946] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   40.983749][ T5938] 8021q: adding VLAN 0 to HW filter on device batadv0
[   40.986906][ T5942] veth1_vlan: entered promiscuous mode
[   40.994690][ T5950] 8021q: adding VLAN 0 to HW filter on device batadv0
[   41.032219][ T5942] veth0_macvtap: entered promiscuous mode
[   41.043982][ T5950] veth0_vlan: entered promiscuous mode
[   41.045803][ T5948] Bluetooth: hci2: command tx timeout
[   41.046017][ T5945] Bluetooth: hci3: command tx timeout
[   41.048906][ T5948] Bluetooth: hci1: command tx timeout
[   41.053401][ T5938] veth0_vlan: entered promiscuous mode
[   41.060096][ T5950] veth1_vlan: entered promiscuous mode
[   41.062619][ T5942] veth1_macvtap: entered promiscuous mode
[   41.071501][ T5938] veth1_vlan: entered promiscuous mode
[   41.072038][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   41.076896][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   41.089288][ T5942] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   41.092102][ T5942] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.096002][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_0
[   41.111308][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   41.113141][ T5942] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   41.114919][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   41.118012][ T5942] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.122882][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_1
[   41.138441][ T5942] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   41.141632][ T5942] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   41.145068][ T5942] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   41.148182][ T5942] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   41.152869][ T5938] veth0_macvtap: entered promiscuous mode
[   41.159566][ T5950] veth0_macvtap: entered promiscuous mode
[   41.161853][ T5946] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   41.168498][ T5950] veth1_macvtap: entered promiscuous mode
[   41.172448][ T5938] veth1_macvtap: entered promiscuous mode
[   41.200018][ T5938] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   41.203146][ T5938] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.206221][ T5938] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   41.208967][ T5938] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.212168][ T5938] batman_adv: batadv0: Interface activated: batadv_slave_0
[   41.215813][ T5938] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   41.218747][ T5938] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.221715][ T5938] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   41.225885][ T5938] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.230050][ T5938] batman_adv: batadv0: Interface activated: batadv_slave_1
[   41.241750][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   41.247139][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.250662][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   41.254437][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.257999][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   41.261144][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.265314][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_0
[   41.268464][ T5938] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   41.271056][ T5938] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   41.274091][ T5938] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   41.276811][ T5938] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   41.289540][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   41.291163][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   41.292330][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.295580][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   41.298038][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   41.298052][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.306950][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   41.309707][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   41.312822][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_1
[   41.333863][ T6003] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4'.
[   41.356646][ T5950] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   41.359996][ T5950] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   41.363083][ T5950] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   41.366382][ T5950] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   41.372064][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   41.375906][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   41.423985][   T76] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   41.427437][   T76] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   41.440855][  T102] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   41.443604][  T102] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   41.460059][   T64] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   41.462372][   T64] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   41.486328][   T64] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   41.489236][   T64] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   41.518835][ T6011] warning: `syz.2.3' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   41.562915][ T6013] fuse: Bad value for 'fd'
[   41.575083][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   41.577883][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   41.639833][ T6021] IPv6: Can't replace route, no match found
[   41.646733][ T6023] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6'.
[   41.724003][ T6030] netlink: 12 bytes leftover after parsing attributes in process `syz.0.8'.
[   42.160983][ T6036] fuse: Bad value for 'fd'
[   42.666660][ T6031] syz.1.9 (6031) used greatest stack depth: 20384 bytes left
[   42.706755][  T102] Bluetooth: hci4: Frame reassembly failed (-84)
[   42.766971][ T6057] Cache volume key already in use (9p,syz,)
[   43.046090][ T5948] Bluetooth: hci0: command tx timeout
[   43.112139][ T6075] Bluetooth: MGMT ver 1.23
[   43.124949][ T5948] Bluetooth: hci3: command tx timeout
[   43.126956][ T5948] Bluetooth: hci1: command tx timeout
[   43.128858][ T5298] Bluetooth: hci2: command tx timeout
[   43.424998][    T8] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   43.595943][    T8] usb 8-1: Using ep0 maxpacket: 32
[   43.602467][    T8] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[   43.606299][    T8] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[   43.612597][    T8] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[   43.616053][    T8] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[   43.619058][    T8] usb 8-1: Product: syz
[   43.620704][    T8] usb 8-1: Manufacturer: syz
[   43.622382][    T8] usb 8-1: SerialNumber: syz
[   43.628446][    T8] usb 8-1: config 0 descriptor??
[   43.743996][ T6081] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[   43.746622][ T6081] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[   43.749371][ T6081] netdevsim netdevsim0: Falling back to sysfs fallback for: .
[   43.753530][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   43.757913][    T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!!
[   43.845077][ T6006] usb 8-1: USB disconnect, device number 2
[   43.877461][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   43.884975][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   44.172045][ T6090] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   44.411632][ T6094] netlink: 8 bytes leftover after parsing attributes in process `syz.1.20'.
[   44.414699][ T6094] netlink: 12 bytes leftover after parsing attributes in process `syz.1.20'.
[   44.419376][ T6094] netlink: 24 bytes leftover after parsing attributes in process `syz.1.20'.
[   44.464869][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   44.465061][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   44.467074][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   44.473017][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   44.473218][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   44.694942][ T5982] usb 8-1: new low-speed USB device number 3 using dummy_hcd
[   44.714959][ T5945] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   44.715005][ T5939] Bluetooth: hci4: command 0x1003 tx timeout
[   44.826342][ T5982] usb 8-1: device descriptor read/64, error -71
[   45.094913][ T5982] usb 8-1: new low-speed USB device number 4 using dummy_hcd
[   45.121433][ T5945] Bluetooth: hci0: command tx timeout
[   45.195903][ T5945] Bluetooth: hci2: command tx timeout
[   45.204571][ T5945] Bluetooth: hci1: command tx timeout
[   45.206383][ T5945] Bluetooth: hci3: command tx timeout
[   45.244882][ T5982] usb 8-1: device descriptor read/64, error -71
[   45.293981][ T6109] 9pnet_virtio: no channels available for device syz
[   45.302540][ T6109] netlink: 'syz.1.24': attribute type 4 has an invalid length.
[   45.331571][ T6109] syz.1.24 uses obsolete (PF_INET,SOCK_PACKET)
[   45.358535][ T5982] usb usb8-port1: attempt power cycle
[   45.426785][ T6108] afs: Unknown parameter 'dynAflock'
[   45.704878][ T5982] usb 8-1: new low-speed USB device number 5 using dummy_hcd
[   45.728064][ T5982] usb 8-1: device descriptor read/8, error -71
[   45.984856][ T5982] usb 8-1: new low-speed USB device number 6 using dummy_hcd
[   46.000014][ T6121] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[   46.002503][ T6121] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[   46.005285][ T6121] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[   46.006849][ T5982] usb 8-1: device descriptor read/8, error -71
[   46.125910][ T5982] usb usb8-port1: unable to enumerate USB device
[   46.884088][ T6127] fuse: Bad value for 'fd'
[   47.038654][ T6143] netlink: 4 bytes leftover after parsing attributes in process `syz.2.30'.
[   47.047549][   T76] Bluetooth: hci4: Frame reassembly failed (-84)
[   47.194895][ T5945] Bluetooth: hci0: command tx timeout
[   47.275019][ T5945] Bluetooth: hci3: command tx timeout
[   47.275160][ T5298] Bluetooth: hci1: command tx timeout
[   47.275990][ T5948] Bluetooth: hci2: command tx timeout
[   47.650554][ T6155] team0 (unregistering): Port device team_slave_0 removed
[   47.671776][ T6155] team0 (unregistering): Port device team_slave_1 removed
[   47.944113][   T76] Bluetooth: hci5: Frame reassembly failed (-84)
[   48.184932][    T9] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   48.334855][    T9] usb 7-1: Using ep0 maxpacket: 32
[   48.337919][    T9] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[   48.432991][    T9] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[   48.446336][    T9] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[   48.448802][    T9] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[   48.450909][    T9] usb 7-1: Product: syz
[   48.452017][    T9] usb 7-1: Manufacturer: syz
[   48.453255][    T9] usb 7-1: SerialNumber: syz
[   48.460107][    T9] usb 7-1: config 0 descriptor??
[   48.668161][   T25] usb 7-1: USB disconnect, device number 2
[   49.114861][ T5939] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   49.345727][ T6195] 9pnet_virtio: no channels available for device syz
[   49.512881][ T6199] netlink: 4 bytes leftover after parsing attributes in process `syz.3.40'.
[   49.691960][   T64] Bluetooth: hci4: Frame reassembly failed (-84)
[   49.945034][ T6209] block nbd3: Device being setup by another task
[   49.994870][ T5939] Bluetooth: hci5: command 0xfc11 tx timeout
[   49.994902][ T5298] Bluetooth: hci5: Entering manufacturer mode failed (-110)
[   50.199420][ T6206] block nbd3: shutting down sockets
[   50.637920][   T76] Bluetooth: hci5: Frame reassembly failed (-84)
[   50.884894][ T5982] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   51.034856][ T5982] usb 7-1: Using ep0 maxpacket: 32
[   51.037941][ T5982] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[   51.041711][ T5982] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[   51.047561][ T5982] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[   51.049992][ T5982] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[   51.052151][ T5982] usb 7-1: Product: syz
[   51.053301][ T5982] usb 7-1: Manufacturer: syz
[   51.055407][ T5982] usb 7-1: SerialNumber: syz
[   51.059732][ T5982] usb 7-1: config 0 descriptor??
[   51.202544][ T6236] fuse: Bad value for 'fd'
[   51.268897][ T5982] usb 7-1: USB disconnect, device number 3
[   51.765253][ T5939] Bluetooth: hci4: command 0x1003 tx timeout
[   51.769173][ T5945] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   51.996318][ T6263] netlink: 4 bytes leftover after parsing attributes in process `syz.3.53'.
[   52.645047][ T5298] Bluetooth: hci5: Entering manufacturer mode failed (-110)
[   52.751887][ T6275] netlink: 4 bytes leftover after parsing attributes in process `syz.0.57'.
[   52.886935][ T6277] 9pnet_virtio: no channels available for device syz
[   53.275815][ T6288] netlink: 68 bytes leftover after parsing attributes in process `syz.0.60'.
[   53.278346][ T6288] netlink: 12 bytes leftover after parsing attributes in process `syz.0.60'.
[   53.282445][ T6288] netlink: 20 bytes leftover after parsing attributes in process `syz.0.60'.
[   53.297952][ T6288] netlink: 48 bytes leftover after parsing attributes in process `syz.0.60'.
[   53.317286][ T6287] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[   53.320371][ T6287] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[   53.323255][ T6287] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[   53.437423][ T6291] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   53.754886][   T56] usb 7-1: new low-speed USB device number 4 using dummy_hcd
[   53.894868][   T56] usb 7-1: device descriptor read/64, error -71
[   54.144813][   T56] usb 7-1: new low-speed USB device number 5 using dummy_hcd
[   54.274867][   T56] usb 7-1: device descriptor read/64, error -71
[   54.385530][   T56] usb usb7-port1: attempt power cycle
[   54.746349][   T56] usb 7-1: new low-speed USB device number 6 using dummy_hcd
[   54.768325][   T56] usb 7-1: device descriptor read/8, error -71
[   54.780061][ T6310] fuse: Bad value for 'fd'
[   55.005786][ T6328] netlink: 4 bytes leftover after parsing attributes in process `syz.0.68'.
[   55.012223][ T6328] netlink: 12 bytes leftover after parsing attributes in process `syz.0.68'.
[   55.031454][   T56] usb 7-1: new low-speed USB device number 7 using dummy_hcd
[   55.056155][   T56] usb 7-1: device descriptor read/8, error -71
[   55.151841][ T6334] netlink: 4 bytes leftover after parsing attributes in process `syz.3.69'.
[   55.174984][   T56] usb usb7-port1: unable to enumerate USB device
[   55.602859][ T6339] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[   55.605799][ T6339] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[   55.607789][ T6339] netdevsim netdevsim0: Falling back to sysfs fallback for: .
[   55.703668][ T6343] netlink: 8 bytes leftover after parsing attributes in process `syz.3.73'.
[   56.433061][  T102] Bluetooth: hci4: Frame reassembly failed (-84)
[   56.545096][   T39] audit: type=1326 audit(1733167437.491:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6366 comm="syz.2.76" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000
[   56.551080][   T39] audit: type=1326 audit(1733167437.501:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6366 comm="syz.2.76" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000
[   56.559081][   T39] audit: type=1326 audit(1733167437.501:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6366 comm="syz.2.76" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf7f57579 code=0x7ffc0000
[   56.564609][   T39] audit: type=1326 audit(1733167437.501:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6366 comm="syz.2.76" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000
[   56.570445][   T39] audit: type=1326 audit(1733167437.501:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6366 comm="syz.2.76" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000
[   56.577977][   T39] audit: type=1326 audit(1733167437.501:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6366 comm="syz.2.76" exe="/syz-executor" sig=0 arch=40000003 syscall=349 compat=1 ip=0xf7f57579 code=0x7ffc0000
[   56.583511][   T39] audit: type=1326 audit(1733167437.501:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6366 comm="syz.2.76" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000
[   56.589141][   T39] audit: type=1326 audit(1733167437.501:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6366 comm="syz.2.76" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000
[   56.594597][   T39] audit: type=1326 audit(1733167437.501:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6366 comm="syz.2.76" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f57579 code=0x7ffc0000
[   56.601645][   T39] audit: type=1326 audit(1733167437.501:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6366 comm="syz.2.76" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000
[   56.886439][ T6376] netlink: 4 bytes leftover after parsing attributes in process `syz.1.78'.
[   57.296839][ T5945] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[   57.300528][ T5945] CPU: 2 UID: 0 PID: 5945 Comm: kworker/u33:4 Not tainted 6.13.0-rc1-syzkaller-00001-ge70140ba0d2b #0
[   57.304456][ T5945] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   57.307888][ T5945] Workqueue: hci3 hci_rx_work
[   57.309492][ T5945] Call Trace:
[   57.310640][ T5945]  <TASK>
[   57.311636][ T5945]  dump_stack_lvl+0x16c/0x1f0
[   57.313239][ T5945]  sysfs_warn_dup+0x7f/0xa0
[   57.314766][ T5945]  sysfs_create_dir_ns+0x24d/0x2b0
[   57.316500][ T5945]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[   57.318556][ T5945]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   57.320535][ T5945]  ? kobject_add_internal+0x12d/0x990
[   57.322511][ T5945]  ? do_raw_spin_unlock+0x172/0x230
[   57.324310][ T5945]  kobject_add_internal+0x2c8/0x990
[   57.326221][ T5945]  kobject_add+0x16f/0x240
[   57.327733][ T5945]  ? __pfx_kobject_add+0x10/0x10
[   57.329417][ T5945]  ? class_to_subsys+0x3e/0x160
[   57.330842][ T5945]  ? do_raw_spin_unlock+0x172/0x230
[   57.332228][ T5945]  ? kobject_put+0xab/0x5a0
[   57.333452][ T5945]  device_add+0x289/0x1a70
[   57.334619][ T5945]  ? __pfx_dev_set_name+0x10/0x10
[   57.335936][ T5945]  ? __pfx_device_add+0x10/0x10
[   57.337237][ T5945]  ? mgmt_send_event_skb+0x2f2/0x460
[   57.338616][ T5945]  hci_conn_add_sysfs+0x17e/0x230
[   57.339953][ T5945]  le_conn_complete_evt+0xfc6/0x1cd0
[   57.341395][ T5945]  ? __pfx_le_conn_complete_evt+0x10/0x10
[   57.342911][ T5945]  ? __mutex_lock+0x1cc/0xa60
[   57.344262][ T5945]  hci_le_enh_conn_complete_evt+0x23d/0x380
[   57.345965][ T5945]  ? skb_pull_data+0x166/0x210
[   57.347396][ T5945]  hci_le_meta_evt+0x2e2/0x5d0
[   57.348768][ T5945]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[   57.348818][ T5945]  hci_event_packet+0x666/0x1190
[   57.348835][ T5945]  ? __pfx_hci_le_meta_evt+0x10/0x10
[   57.348850][ T5945]  ? __pfx_hci_event_packet+0x10/0x10
[   57.354693][ T5945]  ? mark_held_locks+0x9f/0xe0
[   57.355976][ T5945]  ? kcov_remote_start+0x3cf/0x6e0
[   57.357325][ T5945]  ? lockdep_hardirqs_on+0x7c/0x110
[   57.358692][ T5945]  hci_rx_work+0x2c5/0x16b0
[   57.359909][ T5945]  ? process_one_work+0x8bb/0x1b30
[   57.361473][ T5945]  process_one_work+0x958/0x1b30
[   57.363178][ T5945]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   57.365132][ T5945]  ? __pfx_process_one_work+0x10/0x10
[   57.367012][ T5945]  ? rcu_is_watching+0x12/0xc0
[   57.368664][ T5945]  ? assign_work+0x1a0/0x250
[   57.370260][ T5945]  worker_thread+0x6c8/0xf00
[   57.371810][ T5945]  ? __kthread_parkme+0x148/0x220
[   57.373543][ T5945]  ? __pfx_worker_thread+0x10/0x10
[   57.375282][ T5945]  kthread+0x2c1/0x3a0
[   57.376721][ T5945]  ? _raw_spin_unlock_irq+0x23/0x50
[   57.378543][ T5945]  ? __pfx_kthread+0x10/0x10
[   57.380311][ T5945]  ret_from_fork+0x45/0x80
[   57.382067][ T5945]  ? __pfx_kthread+0x10/0x10
[   57.384017][ T5945]  ret_from_fork_asm+0x1a/0x30
[   57.386108][ T5945]  </TASK>
[   57.388529][ T5945] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[   57.393924][ T5945] Bluetooth: hci3: failed to register connection device
[   57.544889][    T9] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   57.706585][    T9] usb 6-1: config index 0 descriptor too short (expected 23569, got 27)
[   57.709029][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   57.712685][    T9] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[   57.715827][    T9] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[   57.724676][    T9] usb 6-1: Manufacturer: syz
[   57.727097][  T833] usb 8-1: new low-speed USB device number 7 using dummy_hcd
[   57.739050][    T9] usb 6-1: config 0 descriptor??
[   57.789693][ T6387] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[   57.792679][ T6387] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[   57.795428][ T6387] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[   57.825057][    T9] rc_core: IR keymap rc-hauppauge not found
[   57.827360][    T9] Registered IR keymap rc-empty
[   57.836023][    T9] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0
[   57.844652][    T9] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0/input5
[   57.864994][  T833] usb 8-1: device descriptor read/64, error -71
[   58.115260][  T833] usb 8-1: new low-speed USB device number 8 using dummy_hcd
[   58.244875][  T833] usb 8-1: device descriptor read/64, error -71
[   58.356079][  T833] usb usb8-port1: attempt power cycle
[   58.474933][ T5298] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   58.505492][   T56] usb 6-1: USB disconnect, device number 2
[   58.655106][ T6399] netlink: 4 bytes leftover after parsing attributes in process `syz.2.84'.
[   58.657771][ T6399] netlink: 4 bytes leftover after parsing attributes in process `syz.2.84'.
[   58.666744][ T6399] netlink: 256 bytes leftover after parsing attributes in process `syz.2.84'.
[   58.704975][  T833] usb 8-1: new low-speed USB device number 9 using dummy_hcd
[   58.728533][  T833] usb 8-1: device descriptor read/8, error -71
[   58.896654][ T1328] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   58.964904][  T833] usb 8-1: new low-speed USB device number 10 using dummy_hcd
[   58.985328][  T833] usb 8-1: device descriptor read/8, error -71
[   59.067833][ T6419] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[   59.070017][ T6419] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[   59.072203][ T6419] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[   59.125639][  T833] usb usb8-port1: unable to enumerate USB device
[   59.144971][ T1328] usb 5-1: Using ep0 maxpacket: 32
[   59.147570][ T1328] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[   59.150641][ T1328] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[   59.156117][ T1328] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[   59.158870][ T1328] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[   59.161003][ T1328] usb 5-1: Product: syz
[   59.162114][ T1328] usb 5-1: Manufacturer: syz
[   59.163347][ T1328] usb 5-1: SerialNumber: syz
[   59.178733][ T1328] usb 5-1: config 0 descriptor??
[   59.389618][  T833] usb 5-1: USB disconnect, device number 2
[   59.435195][ T5298] Bluetooth: hci3: command tx timeout
[   59.806298][ T6428] syz.1.87 (6428): drop_caches: 2
[   60.160470][ T6439] e1000e 0000:00:02.0 eth1: NIC Link is Down
[   60.278087][ T6451] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[   60.280662][ T6451] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[   60.282911][ T6451] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[   60.885596][ T6473] netlink: 4 bytes leftover after parsing attributes in process `syz.3.93'.
[   61.745548][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[   61.865609][ T6515] netlink: 12 bytes leftover after parsing attributes in process `syz.1.99'.
[   61.969001][ T6514] 9pnet_virtio: no channels available for device syz
[   62.252876][ T6526] netlink: 4 bytes leftover after parsing attributes in process `syz.0.102'.
[   62.319663][ T6528] netlink: 'syz.1.103': attribute type 12 has an invalid length.
[   62.728264][  T102] Bluetooth: hci5: Frame reassembly failed (-84)
[   62.965045][  T832] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   63.114896][  T832] usb 5-1: Using ep0 maxpacket: 32
[   63.120412][  T832] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[   63.123275][  T832] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[   63.128517][  T832] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[   63.131794][  T832] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[   63.134409][  T832] usb 5-1: Product: syz
[   63.135865][  T832] usb 5-1: Manufacturer: syz
[   63.137564][  T832] usb 5-1: SerialNumber: syz
[   63.140572][  T832] usb 5-1: config 0 descriptor??
[   63.256161][ T6541] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[   63.258592][ T6541] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[   63.261027][ T6541] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[   63.272366][   T12] Bluetooth: hci6: Frame reassembly failed (-84)
[   63.275775][   T12] Bluetooth: hci6: Frame reassembly failed (-84)
[   63.353856][    T9] usb 5-1: USB disconnect, device number 3
[   63.516586][   T56] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   63.694905][   T56] usb 6-1: Using ep0 maxpacket: 32
[   63.698300][   T56] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[   63.701868][   T56] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[   63.707425][   T56] usb 6-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[   63.710752][   T56] usb 6-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[   63.713726][   T56] usb 6-1: Product: syz
[   63.715596][   T56] usb 6-1: Manufacturer: syz
[   63.717445][   T56] usb 6-1: SerialNumber: syz
[   63.720694][   T56] usb 6-1: config 0 descriptor??
[   63.764881][ T5948] Bluetooth: hci4: command 0x1003 tx timeout
[   63.764914][ T5298] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   63.931493][ T1328] usb 6-1: USB disconnect, device number 3
[   64.239785][   T76] Bluetooth: hci4: Frame reassembly failed (-84)
[   64.794869][  T832] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[   64.794891][ T5948] Bluetooth: hci5: command 0xfc11 tx timeout
[   64.794949][ T5945] Bluetooth: hci5: Entering manufacturer mode failed (-110)
[   64.945021][  T832] usb 7-1: Using ep0 maxpacket: 32
[   64.947836][  T832] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[   64.950449][  T832] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[   64.955117][  T832] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[   64.957721][  T832] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[   64.959908][  T832] usb 7-1: Product: syz
[   64.961056][  T832] usb 7-1: Manufacturer: syz
[   64.962393][  T832] usb 7-1: SerialNumber: syz
[   64.966016][  T832] usb 7-1: config 0 descriptor??
[   65.173134][  T832] usb 7-1: USB disconnect, device number 8
[   65.274913][ T5945] Bluetooth: hci6: command 0xfc11 tx timeout
[   65.274960][ T5939] Bluetooth: hci6: Entering manufacturer mode failed (-110)
[   65.526878][ T6573] netlink: 12 bytes leftover after parsing attributes in process `syz.0.112'.
[   65.704672][ T6579] capability: warning: `syz.0.113' uses deprecated v2 capabilities in a way that may be insecure
[   65.768818][ T6584] netlink: 12 bytes leftover after parsing attributes in process `syz.0.113'.
[   65.891429][ T6589] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[   65.893815][ T6589] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[   65.896556][ T6589] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[   65.905860][ T6590] netlink: 8 bytes leftover after parsing attributes in process `syz.1.116'.
[   66.316227][ T5298] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   66.567082][ T6599] 9pnet_fd: Insufficient options for proto=fd
[   66.744999][ T6578] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   66.929160][ T6604] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[   66.931762][ T6604] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[   66.934946][ T6604] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[   67.872159][ T6627] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[   67.874506][ T6627] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[   67.877522][ T6627] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[   68.923986][ T6646] netlink: 4 bytes leftover after parsing attributes in process `syz.2.127'.
[   68.935727][ T5980] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[   69.085000][ T5980] usb 6-1: Using ep0 maxpacket: 32
[   69.089045][ T5980] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[   69.091616][ T5980] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[   69.097873][ T5980] usb 6-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[   69.101007][ T5980] usb 6-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[   69.103247][ T5980] usb 6-1: Product: syz
[   69.104416][ T5980] usb 6-1: Manufacturer: syz
[   69.105976][ T5980] usb 6-1: SerialNumber: syz
[   69.115144][ T5980] usb 6-1: config 0 descriptor??
[   69.306646][ T6651] ieee802154 phy0 wpan0: encryption failed: -22
[   69.328759][ T5980] usb 6-1: USB disconnect, device number 4
[   70.448559][ T6678] ieee802154 phy0 wpan0: encryption failed: -22
[   70.807348][ T1413] ieee802154 phy0 wpan0: encryption failed: -22
[   70.824839][  T832] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[   70.843311][ T6688] netlink: 4 bytes leftover after parsing attributes in process `syz.0.137'.
[   70.995064][  T832] usb 7-1: Using ep0 maxpacket: 32
[   71.010975][  T832] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[   71.014670][  T832] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[   71.024446][  T832] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[   71.031365][  T832] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[   71.036368][  T832] usb 7-1: Product: syz
[   71.038111][  T832] usb 7-1: Manufacturer: syz
[   71.044882][  T832] usb 7-1: SerialNumber: syz
[   71.051515][  T832] usb 7-1: config 0 descriptor??
[   71.068920][ T6691] ieee802154 phy0 wpan0: encryption failed: -22
[   71.266195][    T9] usb 7-1: USB disconnect, device number 9
[   71.294868][ T6698] netlink: 12 bytes leftover after parsing attributes in process `syz.1.140'.
[   71.320992][ T6701] ieee802154 phy0 wpan0: encryption failed: -22
[   71.467878][ T6709] netlink: 4 bytes leftover after parsing attributes in process `syz.0.142'.
[   71.882044][ T6724] netlink: 4 bytes leftover after parsing attributes in process `syz.2.146'.
[   71.890972][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[   71.936811][ T6725] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[   71.939233][ T6725] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[   71.941702][ T6725] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[   72.398694][ T6733] ieee802154 phy0 wpan0: encryption failed: -22
[   72.803928][ T5945] Bluetooth: hci5: sending frame failed (-49)
[   72.806541][ T5298] Bluetooth: hci5: Entering manufacturer mode failed (-49)
[   72.972947][ T6754] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[   72.975197][ T6754] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[   72.977407][ T6754] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[   73.065844][ T1328] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[   73.234850][ T1328] usb 7-1: Using ep0 maxpacket: 32
[   73.248296][ T1328] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[   73.250938][ T1328] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[   73.256813][ T1328] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[   73.259251][ T1328] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[   73.261454][ T1328] usb 7-1: Product: syz
[   73.262641][ T1328] usb 7-1: Manufacturer: syz
[   73.263874][ T1328] usb 7-1: SerialNumber: syz
[   73.272126][ T1328] usb 7-1: config 0 descriptor??
[   73.490850][ T1328] usb 7-1: USB disconnect, device number 10
[   73.817917][ T6760] netlink: 4 bytes leftover after parsing attributes in process `syz.3.152'.
[   73.914958][ T5939] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   73.915082][ T5945] Bluetooth: hci4: command 0x1003 tx timeout
[   73.959737][ T6763] tmpfs: Unknown parameter '��������'
[   74.687997][ T6773] syzkaller0: entered promiscuous mode
[   74.689614][ T6773] syzkaller0: entered allmulticast mode
[   74.693242][  T102] syzkaller0: tun_net_xmit 48
[   74.761274][ T6774] syzkaller0: tun_chr_ioctl cmd 1074025677
[   74.770312][ T6774] syzkaller0: Linktype set failed because interface is up
[   75.048103][ T5982] IPVS: starting estimator thread 0...
[   75.055009][ T6773] netlink: 8 bytes leftover after parsing attributes in process `syz.3.156'.
[   75.057794][ T6773] netlink: 8 bytes leftover after parsing attributes in process `syz.3.156'.
[   75.154423][ T6777] IPVS: using max 37 ests per chain, 88800 per kthread
[   75.174239][   T11] Bluetooth: hci4: Frame reassembly failed (-84)
[   76.294911][ T1328] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   76.316549][ T5298] Bluetooth: hci3: command 0x0405 tx timeout
[   76.457334][ T1328] usb 5-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[   76.460972][ T1328] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   76.464062][ T1328] usb 5-1: Product: syz
[   76.469502][ T1328] usb 5-1: Manufacturer: syz
[   76.471446][ T1328] usb 5-1: SerialNumber: syz
[   76.475387][ T1328] usb 5-1: config 0 descriptor??
[   76.645978][ T6795] tun0: tun_chr_ioctl cmd 1074025675
[   76.648007][ T6795] tun0: persist disabled
[   76.746464][ T6800] FAULT_INJECTION: forcing a failure.
[   76.746464][ T6800] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   76.751000][ T6800] CPU: 1 UID: 0 PID: 6800 Comm: syz.3.164 Not tainted 6.13.0-rc1-syzkaller-00001-ge70140ba0d2b #0
[   76.753847][ T6800] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   76.757972][ T6800] Call Trace:
[   76.759022][ T6800]  <TASK>
[   76.759982][ T6800]  dump_stack_lvl+0x16c/0x1f0
[   76.761342][ T6800]  should_fail_ex+0x497/0x5b0
[   76.762585][ T6800]  _copy_to_user+0x32/0xd0
[   76.763796][ T6800]  simple_read_from_buffer+0xd0/0x160
[   76.765415][ T6800]  proc_fail_nth_read+0x198/0x270
[   76.766851][ T6800]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   76.768337][ T6800]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   76.769819][ T6800]  vfs_read+0x1df/0xbe0
[   76.771185][ T6800]  ? __fget_files+0x1fc/0x3a0
[   76.772468][ T6800]  ? __pfx___mutex_lock+0x10/0x10
[   76.773806][ T6800]  ? __pfx_vfs_read+0x10/0x10
[   76.775819][ T6800]  ? __fget_files+0x206/0x3a0
[   76.777608][ T6800]  ksys_read+0x12b/0x250
[   76.779002][ T6800]  ? __pfx_ksys_read+0x10/0x10
[   76.780653][ T6800]  __do_fast_syscall_32+0x73/0x120
[   76.782348][ T6800]  do_fast_syscall_32+0x32/0x80
[   76.783926][ T6800]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   76.786135][ T6800] RIP: 0023:0xf7fe1579
[   76.787476][ T6800] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   76.793645][ T6800] RSP: 002b:00000000f51665b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[   76.796454][ T6800] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f5166620
[   76.798664][ T6800] RDX: 000000000000000f RSI: 00000000f746fff4 RDI: 0000000000000000
[   76.801010][ T6800] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[   76.803836][ T6800] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[   76.806762][ T6800] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   76.808821][ T6800]  </TASK>
[   76.824849][ T6803] Zero length message leads to an empty skb
[   76.919493][ T6806] pimreg: entered allmulticast mode
[   76.959680][ T1328] usb 5-1: USB disconnect, device number 4
[   77.194861][ T5939] Bluetooth: hci4: command 0x1003 tx timeout
[   77.195032][ T5945] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   77.453998][ T6825] tmpfs: Bad value for 'mpol'
[   77.529530][ T6827] syzkaller1: entered promiscuous mode
[   77.531160][ T6827] syzkaller1: entered allmulticast mode
[   78.764437][ T6854] netlink: 12 bytes leftover after parsing attributes in process `syz.1.176'.
[   79.445078][ T6862] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[   79.742864][ T6871] netlink: 4 bytes leftover after parsing attributes in process `syz.1.180'.
[   79.752156][ T6872] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[   79.756092][ T6872] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[   79.758843][ T6872] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[   80.823115][ T6913] netlink: 12 bytes leftover after parsing attributes in process `syz.1.188'.
[   81.037169][   T57] cfg80211: failed to load regulatory.db
[   81.394921][ T6928] IPv6: syztnl0: Disabled Multicast RS
[   81.586789][ T1168] Bluetooth: hci4: Frame reassembly failed (-84)
[   81.794636][ T6948] dvmrp0: entered allmulticast mode
[   81.814921][    T9] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[   81.974917][    T9] usb 8-1: Using ep0 maxpacket: 32
[   81.995217][    T9] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[   82.004868][    T9] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[   82.017427][    T9] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[   82.022940][    T9] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[   82.025890][    T9] usb 8-1: Product: syz
[   82.027843][    T9] usb 8-1: Manufacturer: syz
[   82.029695][    T9] usb 8-1: SerialNumber: syz
[   82.052912][    T9] usb 8-1: config 0 descriptor??
[   82.264565][   T57] usb 8-1: USB disconnect, device number 11
[   82.636499][ T6965] sctp: [Deprecated]: syz.2.201 (pid 6965) Use of struct sctp_assoc_value in delayed_ack socket option.
[   82.636499][ T6965] Use struct sctp_sack_info instead
[   83.110430][ T6975] netlink: 12 bytes leftover after parsing attributes in process `syz.1.206'.
[   83.594831][ T5298] Bluetooth: hci4: command 0xfc11 tx timeout
[   83.594900][ T5945] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[   83.632355][ T6991] overlayfs: upper fs does not support RENAME_WHITEOUT.
[   83.634387][ T6991] overlayfs: failed to set xattr on upper
[   83.635955][ T6991] overlayfs: ...falling back to redirect_dir=nofollow.
[   83.637793][ T6991] overlayfs: ...falling back to index=off.
[   83.639376][ T6991] overlayfs: ...falling back to uuid=null.
[   84.037078][ T7005] =======================================================
[   84.037078][ T7005] WARNING: The mand mount option has been deprecated and
[   84.037078][ T7005]          and is ignored by this kernel. Remove the mand
[   84.037078][ T7005]          option from the mount to silence this warning.
[   84.037078][ T7005] =======================================================
[   84.085164][   T25] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[   84.236149][   T25] usb 6-1: Using ep0 maxpacket: 8
[   84.249182][   T25] usb 6-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[   84.251955][   T25] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   84.254450][   T25] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   84.254926][ T7009] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[   84.257038][   T25] usb 6-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[   84.265495][   T25] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   84.268146][   T25] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   84.289830][   T25] usbtmc 6-1:16.0: bulk endpoints not found
[   84.300456][ T7007] overlay: ./file0 is not a directory
[   84.602685][ T7016] netlink: 4 bytes leftover after parsing attributes in process `syz.2.218'.
[   84.695666][ T7020] FAULT_INJECTION: forcing a failure.
[   84.695666][ T7020] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   84.699221][ T7020] CPU: 2 UID: 0 PID: 7020 Comm: syz.2.219 Not tainted 6.13.0-rc1-syzkaller-00001-ge70140ba0d2b #0
[   84.702741][ T7020] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   84.706491][ T7020] Call Trace:
[   84.707823][ T7020]  <TASK>
[   84.708956][ T7020]  dump_stack_lvl+0x16c/0x1f0
[   84.710626][ T7020]  should_fail_ex+0x497/0x5b0
[   84.712331][ T7020]  copy_fpstate_to_sigframe+0x858/0xaf0
[   84.714324][ T7020]  ? __pfx_copy_fpstate_to_sigframe+0x10/0x10
[   84.714999][ T5945] Bluetooth: hci0: command 0x0c1a tx timeout
[   84.716623][ T7020]  ? lock_acquire+0x2f/0xb0
[   84.720008][ T5939] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[   84.720058][ T7020]  ? posixtimer_deliver_signal+0x1ad/0x650
[   84.723924][ T7020]  ? posixtimer_deliver_signal+0x1ad/0x650
[   84.726823][ T7020]  ? find_held_lock+0x2d/0x110
[   84.728967][ T7020]  get_sigframe+0x4aa/0x9c0
[   84.730888][ T7020]  ? __pfx_get_sigframe+0x10/0x10
[   84.732940][ T7020]  ? _raw_spin_unlock_irq+0x23/0x50
[   84.735511][ T7020]  ? siginfo_layout+0x177/0x290
[   84.737338][ T7020]  ia32_setup_rt_frame+0xe4/0xb30
[   84.739223][ T7020]  ? __pfx_ia32_setup_rt_frame+0x10/0x10
[   84.741290][ T7020]  arch_do_signal_or_restart+0x47b/0x7e0
[   84.743299][ T7020]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[   84.745587][ T7020]  ? __pfx_do_readv+0x10/0x10
[   84.747183][ T7020]  syscall_exit_to_user_mode+0x150/0x2a0
[   84.749213][ T7020]  do_int80_emulation+0x111/0x200
[   84.750996][ T7020]  asm_int80_emulation+0x1a/0x20
[   84.752814][ T7020] RIP: 0023:0xf7f57577
[   84.754471][ T7020] Code: 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 <cd> 80 5d 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00
[   84.761375][ T7020] RSP: 002b:00000000f50d657c EFLAGS: 00000292 ORIG_RAX: 0000000000000091
[   84.764040][ T7020] RAX: 0000000000000091 RBX: 0000000000000003 RCX: 0000000020000180
[   84.766994][ T7020] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[   84.769825][ T7020] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   84.772847][ T7020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   84.775736][ T7020] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   84.778281][ T7020]  </TASK>
[   84.964802][   T35] usb 8-1: new low-speed USB device number 12 using dummy_hcd
[   85.114895][   T35] usb 8-1: device descriptor read/64, error -71
[   85.154218][ T7045] xt_CT: No such helper "pptp"
[   85.354953][   T35] usb 8-1: new low-speed USB device number 13 using dummy_hcd
[   85.484881][   T35] usb 8-1: device descriptor read/64, error -71
[   85.595472][   T35] usb usb8-port1: attempt power cycle
[   85.934832][   T35] usb 8-1: new low-speed USB device number 14 using dummy_hcd
[   85.965597][   T35] usb 8-1: device descriptor read/8, error -71
[   86.114414][ T7053] xt_time: invalid argument - start or stop time greater than 23:59:59
[   86.204992][   T35] usb 8-1: new low-speed USB device number 15 using dummy_hcd
[   86.225519][   T35] usb 8-1: device descriptor read/8, error -71
[   86.345018][   T35] usb usb8-port1: unable to enumerate USB device
[   86.865152][   T35] usb 6-1: USB disconnect, device number 5
[   86.943942][ T7057] netlink: 4 bytes leftover after parsing attributes in process `syz.1.227'.
[   86.983529][ T7061] FAULT_INJECTION: forcing a failure.
[   86.983529][ T7061] name failslab, interval 1, probability 0, space 0, times 1
[   86.987104][ T7061] CPU: 0 UID: 0 PID: 7061 Comm: syz.1.228 Not tainted 6.13.0-rc1-syzkaller-00001-ge70140ba0d2b #0
[   86.989897][ T7061] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   86.992696][ T7061] Call Trace:
[   86.993586][ T7061]  <TASK>
[   86.994489][ T7061]  dump_stack_lvl+0x16c/0x1f0
[   86.995804][ T7061]  should_fail_ex+0x497/0x5b0
[   86.997091][ T7061]  ? fs_reclaim_acquire+0xae/0x150
[   86.998456][ T7061]  should_failslab+0xc2/0x120
[   86.999715][ T7061]  kmem_cache_alloc_noprof+0x6e/0x3b0
[   87.001134][ T7061]  ? alloc_empty_file+0x73/0x1e0
[   87.002438][ T7061]  alloc_empty_file+0x73/0x1e0
[   87.003679][ T7061]  path_openat+0xe1/0x2d60
[   87.004990][ T7061]  ? hlock_class+0x4e/0x130
[   87.006227][ T7061]  ? __lock_acquire+0x15a9/0x3c40
[   87.007570][ T7061]  ? __pfx_path_openat+0x10/0x10
[   87.008918][ T7061]  ? __pfx___lock_acquire+0x10/0x10
[   87.010264][ T7061]  ? lock_acquire.part.0+0x11b/0x380
[   87.011612][ T7061]  ? find_held_lock+0x2d/0x110
[   87.012881][ T7061]  do_filp_open+0x20c/0x470
[   87.014115][ T7061]  ? __pfx_do_filp_open+0x10/0x10
[   87.015815][ T7061]  ? find_held_lock+0x2d/0x110
[   87.017174][ T7061]  ? alloc_fd+0x41f/0x760
[   87.018385][ T7061]  do_sys_openat2+0x17a/0x1e0
[   87.019736][ T7061]  ? __pfx_do_sys_openat2+0x10/0x10
[   87.021459][ T7061]  ? __fget_files+0x206/0x3a0
[   87.022824][ T7061]  __ia32_compat_sys_openat+0x16e/0x210
[   87.024342][ T7061]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[   87.026100][ T7061]  ? ksys_write+0x1ba/0x250
[   87.027301][ T7061]  __do_fast_syscall_32+0x73/0x120
[   87.028668][ T7061]  do_fast_syscall_32+0x32/0x80
[   87.029952][ T7061]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   87.031596][ T7061] RIP: 0023:0xf7f93579
[   87.032670][ T7061] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   87.038068][ T7061] RSP: 002b:00000000f51164b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000127
[   87.040256][ T7061] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000f5116500
[   87.042327][ T7061] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000f741fff4
[   87.044391][ T7061] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   87.046489][ T7061] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   87.048764][ T7061] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   87.050920][ T7061]  </TASK>
[   87.109094][ T7062] 9pnet_fd: Insufficient options for proto=fd
[   87.756652][ T7073] netlink: 28 bytes leftover after parsing attributes in process `syz.3.231'.
[   87.759315][ T7073] netlink: 8 bytes leftover after parsing attributes in process `syz.3.231'.
[   87.990444][ T7080] tmpfs: Unknown parameter '��������'
[   88.806864][ T7083] syzkaller0: entered promiscuous mode
[   88.808829][ T7083] syzkaller0: entered allmulticast mode
[   88.938405][   T64] Bluetooth: hci4: Frame reassembly failed (-84)
[   89.006576][ T7094] netlink: 4 bytes leftover after parsing attributes in process `syz.1.236'.
[   89.174857][ T5981] usb 8-1: new high-speed USB device number 16 using dummy_hcd
[   89.254847][   T56] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[   89.324814][ T5981] usb 8-1: Using ep0 maxpacket: 32
[   89.330142][ T5981] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[   89.334877][ T5981] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[   89.341052][ T5981] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[   89.343497][ T5981] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[   89.346383][ T5981] usb 8-1: Product: syz
[   89.347703][ T5981] usb 8-1: Manufacturer: syz
[   89.349563][ T5981] usb 8-1: SerialNumber: syz
[   89.351711][ T5981] usb 8-1: config 0 descriptor??
[   89.414908][   T56] usb 5-1: Using ep0 maxpacket: 8
[   89.418055][   T56] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[   89.422473][   T56] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   89.425820][   T56] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   89.428330][   T56] usb 5-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[   89.431926][   T56] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   89.434446][   T56] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   89.441519][   T56] usbtmc 5-1:16.0: bulk endpoints not found
[   89.563728][ T5981] usb 8-1: USB disconnect, device number 16
[   90.322502][ T7103] netlink: 12 bytes leftover after parsing attributes in process `syz.1.240'.
[   90.954983][ T5945] Bluetooth: hci4: command 0xfc11 tx timeout
[   90.956967][ T5939] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[   91.408208][ T7114] devpts: called with bogus options
[   91.410449][ T7114] proc: Unknown parameter 'devpts'
[   91.494334][ T7118] FAULT_INJECTION: forcing a failure.
[   91.494334][ T7118] name failslab, interval 1, probability 0, space 0, times 0
[   91.504893][ T7118] CPU: 0 UID: 0 PID: 7118 Comm: syz.3.245 Not tainted 6.13.0-rc1-syzkaller-00001-ge70140ba0d2b #0
[   91.506931][ T7119] netlink: 4 bytes leftover after parsing attributes in process `syz.1.244'.
[   91.508374][ T7118] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   91.508388][ T7118] Call Trace:
[   91.508395][ T7118]  <TASK>
[   91.514434][ T7119] netlink: 212 bytes leftover after parsing attributes in process `syz.1.244'.
[   91.514611][ T7118]  dump_stack_lvl+0x16c/0x1f0
[   91.520624][ T7118]  should_fail_ex+0x497/0x5b0
[   91.521914][ T7118]  ? fs_reclaim_acquire+0xae/0x150
[   91.523270][ T7118]  should_failslab+0xc2/0x120
[   91.524580][ T7118]  kmem_cache_alloc_lru_noprof+0x73/0x3b0
[   91.526491][ T7118]  ? __d_alloc+0x35/0x8c0
[   91.527702][ T7118]  __d_alloc+0x35/0x8c0
[   91.528859][ T7118]  d_alloc_pseudo+0x1c/0xc0
[   91.530092][ T7118]  alloc_file_pseudo+0xd2/0x200
[   91.531385][ T7118]  ? __pfx_alloc_file_pseudo+0x10/0x10
[   91.532875][ T7118]  ? hugetlbfs_get_inode+0x323/0x740
[   91.534323][ T7118]  hugetlb_file_setup+0x4cd/0x620
[   91.535746][ T7118]  ksys_mmap_pgoff+0x189/0x5c0
[   91.537066][ T7118]  ? __ia32_sys_mmap_pgoff+0x11/0x1b0
[   91.538494][ T7118]  __do_fast_syscall_32+0x73/0x120
[   91.539915][ T7118]  do_fast_syscall_32+0x32/0x80
[   91.541299][ T7118]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   91.543015][ T7118] RIP: 0023:0xf7fe1579
[   91.544146][ T7118] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   91.549622][ T7118] RSP: 002b:00000000f516657c EFLAGS: 00000292 ORIG_RAX: 00000000000000c0
[   91.551905][ T7118] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000ff5000
[   91.554088][ T7118] RDX: 0000000000000000 RSI: 000000000005c832 RDI: 00000000ffffffff
[   91.556744][ T7118] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   91.559635][ T7118] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   91.562514][ T7118] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   91.564766][ T7118]  </TASK>
[   92.003575][ T7139] netlink: 12 bytes leftover after parsing attributes in process `syz.1.249'.
[   92.013112][   T57] usb 5-1: USB disconnect, device number 5
[   92.264489][ T7153] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   92.598903][ T7160] sp0: Synchronizing with TNC
[   92.680987][ T7162] 
: renamed from bond0 (while UP)
[   93.181240][ T7178] netlink: 12 bytes leftover after parsing attributes in process `syz.2.260'.
[   93.254835][   T56] usb 8-1: new high-speed USB device number 17 using dummy_hcd
[   93.474904][   T56] usb 8-1: Using ep0 maxpacket: 8
[   93.478156][   T56] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   93.481447][   T56] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   93.484156][   T56] usb 8-1: config 16 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[   93.487196][   T56] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   93.490980][   T56] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   93.494017][   T56] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   93.500146][   T56] usbtmc 8-1:16.0: bulk endpoints not found
[   94.006256][ T7195] netlink: 4 bytes leftover after parsing attributes in process `syz.2.264'.
[   94.761550][ T7208] ieee802154 phy0 wpan0: encryption failed: -22
[   94.825366][ T7215] syz.1.269[7215] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   94.825450][ T7215] syz.1.269[7215] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   94.828300][ T7215] syz.1.269[7215] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   94.989965][ T7222] xt_TCPMSS: Only works on TCP SYN packets
[   95.004425][ T7223] netlink: 48 bytes leftover after parsing attributes in process `syz.2.271'.
[   95.696801][ T7234] 9pnet_fd: Insufficient options for proto=fd
[   95.938655][ T7238] 9pnet_fd: Insufficient options for proto=fd
[   95.941296][    T9] usb 8-1: USB disconnect, device number 17
[   96.160989][ T7244] sg_write: data in/out 1717986882/251 bytes for SCSI command 0x0-- guessing data in;
[   96.160989][ T7244]    program syz.3.275 not setting count and/or reply_len properly
[   96.194362][ T7246] ieee802154 phy0 wpan0: encryption failed: -22
[   96.441492][ T7257] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[   96.444656][ T7257] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[   96.448703][ T7257] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[   97.417222][ T1168] Bluetooth: hci4: Frame reassembly failed (-84)
[   97.594922][ T5982] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[   97.614871][  T833] usb 8-1: new full-speed USB device number 18 using dummy_hcd
[   97.654861][    T9] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[   97.754812][ T5982] usb 5-1: Using ep0 maxpacket: 8
[   97.757395][ T5982] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   97.759924][ T5982] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   97.762480][ T5982] usb 5-1: config 16 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[   97.765631][ T5982] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   97.766506][  T833] usb 8-1: config index 0 descriptor too short (expected 156, got 27)
[   97.768993][ T5982] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   97.771098][  T833] usb 8-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[   97.773409][ T5982] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   97.775789][ T5982] usbtmc 5-1:16.0: bulk endpoints not found
[   97.776330][  T833] usb 8-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 10
[   97.783280][  T833] usb 8-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid maxpacket 255, setting to 64
[   97.786130][  T833] usb 8-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[   97.789468][  T833] usb 8-1: config 0 interface 0 has no altsetting 0
[   97.792672][  T833] usb 8-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[   97.795246][  T833] usb 8-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[   97.797492][  T833] usb 8-1: Product: syz
[   97.798601][  T833] usb 8-1: Manufacturer: syz
[   97.799816][  T833] usb 8-1: SerialNumber: syz
[   97.802214][  T833] usb 8-1: config 0 descriptor??
[   97.803987][ T7279] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[   97.807511][  T833] ldusb 8-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[   97.813045][  T833] ldusb 8-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[   97.815304][    T9] usb 7-1: Using ep0 maxpacket: 32
[   97.818717][    T9] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[   97.821503][    T9] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[   97.826000][    T9] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[   97.828574][    T9] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[   97.830833][    T9] usb 7-1: Product: syz
[   97.831999][    T9] usb 7-1: Manufacturer: syz
[   97.833303][    T9] usb 7-1: SerialNumber: syz
[   97.835721][    T9] usb 7-1: config 0 descriptor??
[   98.040382][    T9] usb 7-1: USB disconnect, device number 11
[   98.109611][ T7283] ieee802154 phy0 wpan0: encryption failed: -22
[   98.398505][ T7292] Bluetooth: hci5: Frame reassembly failed (-84)
[   98.421056][ T1160] Bluetooth: hci5: Frame reassembly failed (-84)
[   99.434940][ T5939] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[   99.434952][ T5298] Bluetooth: hci4: command 0xfc11 tx timeout
[  100.237058][ T7296] 9pnet_fd: Insufficient options for proto=fd
[  100.366600][   T57] usb 5-1: USB disconnect, device number 6
[  100.438254][    T9] usb 8-1: USB disconnect, device number 18
[  100.448811][    T9] ldusb 8-1:0.0: LD USB Device #0 now disconnected
[  100.474833][ T5945] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  100.477959][ T5939] Bluetooth: hci5: command 0x1003 tx timeout
[  100.986166][ T7319] FAULT_INJECTION: forcing a failure.
[  100.986166][ T7319] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  100.989758][ T7319] CPU: 1 UID: 0 PID: 7319 Comm: syz.3.295 Not tainted 6.13.0-rc1-syzkaller-00001-ge70140ba0d2b #0
[  100.992924][ T7319] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  100.996278][ T7319] Call Trace:
[  100.997172][ T7319]  <TASK>
[  100.997941][ T7319]  dump_stack_lvl+0x16c/0x1f0
[  100.999155][ T7319]  should_fail_ex+0x497/0x5b0
[  101.000369][ T7319]  ? page_copy_sane+0xcd/0x2d0
[  101.001644][ T7319]  copy_page_from_iter_atomic+0x399/0x1810
[  101.003265][ T7319]  ? __pfx_copy_page_from_iter_atomic+0x10/0x10
[  101.004910][ T7319]  ? fault_in_readable+0x1a7/0x200
[  101.006260][ T7319]  ? __pfx_fault_in_readable+0x10/0x10
[  101.007687][ T7319]  ? I_BDEV+0xd/0x20
[  101.008713][ T7319]  ? inode_to_bdi+0x9e/0x160
[  101.009924][ T7319]  iomap_file_buffered_write+0x633/0xc70
[  101.011375][ T7319]  ? __pfx_iomap_file_buffered_write+0x10/0x10
[  101.013498][ T7319]  ? find_held_lock+0x2d/0x110
[  101.015105][ T7319]  ? __pfx_inode_set_ctime_current+0x10/0x10
[  101.016697][ T7319]  ? preempt_count_add+0x76/0x150
[  101.018071][ T7319]  ? mnt_put_write_access_file+0xc1/0xf0
[  101.019577][ T7319]  blkdev_write_iter+0x574/0xd40
[  101.020958][ T7319]  vfs_write+0x5ae/0x1150
[  101.022210][ T7319]  ? __pfx_blkdev_write_iter+0x10/0x10
[  101.023679][ T7319]  ? __pfx_vfs_write+0x10/0x10
[  101.025092][ T7319]  ? __fget_files+0x40/0x3a0
[  101.026339][ T7319]  ksys_write+0x12b/0x250
[  101.027545][ T7319]  ? __pfx_ksys_write+0x10/0x10
[  101.028852][ T7319]  __do_fast_syscall_32+0x73/0x120
[  101.030217][ T7319]  do_fast_syscall_32+0x32/0x80
[  101.031513][ T7319]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  101.033842][ T7319] RIP: 0023:0xf7fe1579
[  101.035130][ T7319] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  101.040185][ T7319] RSP: 002b:00000000f516657c EFLAGS: 00000292 ORIG_RAX: 0000000000000004
[  101.042544][ T7319] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000100
[  101.044623][ T7319] RDX: 00000000fffffff0 RSI: 0000000000000000 RDI: 0000000000000000
[  101.046668][ T7319] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  101.048772][ T7319] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  101.050844][ T7319] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  101.053466][ T7319]  </TASK>
[  101.175018][ T1160] Bluetooth: hci4: Frame reassembly failed (-84)
[  101.404904][  T833] usb 8-1: new high-speed USB device number 19 using dummy_hcd
[  101.554987][    T9] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  101.557070][  T833] usb 8-1: Using ep0 maxpacket: 32
[  101.560270][  T833] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[  101.562574][  T833] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[  101.566606][  T833] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  101.568926][  T833] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  101.570909][  T833] usb 8-1: Product: syz
[  101.571971][  T833] usb 8-1: Manufacturer: syz
[  101.573157][  T833] usb 8-1: SerialNumber: syz
[  101.575537][  T833] usb 8-1: config 0 descriptor??
[  101.724933][    T9] usb 5-1: Using ep0 maxpacket: 8
[  101.729038][    T9] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  101.731288][    T9] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  101.733891][    T9] usb 5-1: config 16 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  101.737802][    T9] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  101.738066][ T7331] netlink: 4 bytes leftover after parsing attributes in process `syz.1.299'.
[  101.741907][    T9] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  101.741936][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  101.753695][    T9] usbtmc 5-1:16.0: bulk endpoints not found
[  101.784049][    T9] usb 8-1: USB disconnect, device number 19
[  102.583830][ T7349] netlink: 'syz.2.304': attribute type 10 has an invalid length.
[  102.585929][ T7349] netlink: 40 bytes leftover after parsing attributes in process `syz.2.304'.
[  102.766585][ T7360] 9pnet_fd: Insufficient options for proto=fd
[  103.194903][ T5939] Bluetooth: hci4: command 0xfc11 tx timeout
[  103.194908][ T5945] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  103.872877][ T7371] netlink: 4 bytes leftover after parsing attributes in process `syz.3.310'.
[  104.350051][   T57] usb 5-1: USB disconnect, device number 7
[  104.552932][ T7397] 9pnet_fd: Insufficient options for proto=fd
[  104.587945][   T45] Bluetooth: hci4: Frame reassembly failed (-84)
[  104.594293][   T45] Bluetooth: hci4: Frame reassembly failed (-84)
[  105.391696][ T7409] syzkaller0: entered promiscuous mode
[  105.393184][ T7409] syzkaller0: entered allmulticast mode
[  106.234710][ T7427] ieee802154 phy0 wpan0: encryption failed: -22
[  106.645193][ T5939] Bluetooth: hci4: command 0xfc11 tx timeout
[  106.647182][ T5945] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  106.819884][ T7437] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  106.822941][ T7437] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  106.825425][ T7437] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  107.010777][  T833] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  107.154916][  T833] usb 7-1: Using ep0 maxpacket: 8
[  107.157531][  T833] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  107.159919][  T833] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  107.162490][  T833] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  107.165688][  T833] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0
[  107.168849][  T833] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  107.172088][  T833] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  107.174586][  T833] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  107.180634][  T833] usbtmc 7-1:16.0: probe with driver usbtmc failed with error -22
[  108.194455][ T7461] netlink: 'syz.3.332': attribute type 23 has an invalid length.
[  108.383726][ T7475] netlink: 12 bytes leftover after parsing attributes in process `syz.0.335'.
[  108.422309][ T7481] netlink: 44 bytes leftover after parsing attributes in process `syz.0.337'.
[  108.438866][ T1168] Bluetooth: hci4: Frame reassembly failed (-84)
[  108.493895][ T7482] 9pnet_virtio: no channels available for device 127.0.0.1
[  108.658652][ T7484] IPv6: NLM_F_CREATE should be specified when creating new route
[  108.674930][  T833] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  108.825180][  T833] usb 6-1: Using ep0 maxpacket: 32
[  108.829212][  T833] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[  108.831861][  T833] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[  108.836390][  T833] usb 6-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  108.839815][  T833] usb 6-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  108.842469][  T833] usb 6-1: Product: syz
[  108.843590][  T833] usb 6-1: Manufacturer: syz
[  108.845026][  T833] usb 6-1: SerialNumber: syz
[  108.847576][  T833] usb 6-1: config 0 descriptor??
[  108.938447][ T7489] 9pnet_fd: Insufficient options for proto=fd
[  109.054363][   T35] usb 6-1: USB disconnect, device number 6
[  109.556046][ T7513] netlink: 12 bytes leftover after parsing attributes in process `syz.0.345'.
[  109.754490][ T6006] usb 7-1: USB disconnect, device number 12
[  109.831577][ T7528] ieee802154 phy0 wpan0: encryption failed: -22
[  110.247341][ T7555] netlink: 12 bytes leftover after parsing attributes in process `syz.2.354'.
[  110.443999][ T7564] 9pnet_fd: Insufficient options for proto=fd
[  110.495155][ T7566] FAULT_INJECTION: forcing a failure.
[  110.495155][ T7566] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  110.499126][ T7566] CPU: 1 UID: 0 PID: 7566 Comm: syz.2.356 Not tainted 6.13.0-rc1-syzkaller-00001-ge70140ba0d2b #0
[  110.501935][ T7566] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  110.504664][ T7566] Call Trace:
[  110.505557][ T7566]  <TASK>
[  110.506434][ T7566]  dump_stack_lvl+0x16c/0x1f0
[  110.507651][ T7566]  should_fail_ex+0x497/0x5b0
[  110.508886][ T7566]  _copy_from_iter+0x29b/0x1400
[  110.510142][ T7566]  ? trace_lock_acquire+0x14e/0x1f0
[  110.511493][ T7566]  ? __pfx__copy_from_iter+0x10/0x10
[  110.512873][ T7566]  ? __virt_addr_valid+0x1a4/0x590
[  110.514358][ T7566]  ? __virt_addr_valid+0x5e/0x590
[  110.515649][ T7566]  ? __phys_addr_symbol+0x30/0x80
[  110.516970][ T7566]  ? __check_object_size+0x488/0x710
[  110.518323][ T7566]  file_tty_write.constprop.0+0x48d/0x9a0
[  110.519800][ T7566]  vfs_write+0x5ae/0x1150
[  110.520957][ T7566]  ? __pfx_tty_write+0x10/0x10
[  110.522177][ T7566]  ? __pfx_vfs_write+0x10/0x10
[  110.523373][ T7566]  ? __fget_files+0x40/0x3a0
[  110.524591][ T7566]  ksys_write+0x12b/0x250
[  110.525700][ T7566]  ? __pfx_ksys_write+0x10/0x10
[  110.526961][ T7566]  __do_fast_syscall_32+0x73/0x120
[  110.528270][ T7566]  do_fast_syscall_32+0x32/0x80
[  110.529519][ T7566]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  110.531120][ T7566] RIP: 0023:0xf7f57579
[  110.532178][ T7566] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  110.536947][ T7566] RSP: 002b:00000000f509457c EFLAGS: 00000292 ORIG_RAX: 0000000000000004
[  110.539049][ T7566] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000020001040
[  110.541313][ T7566] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000000
[  110.543391][ T7566] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  110.545580][ T7566] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  110.547947][ T7566] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  110.550857][ T7566]  </TASK>
[  110.574924][ T5945] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  111.182181][ T7570] ieee802154 phy0 wpan0: encryption failed: -22
[  111.330852][ T7578] netlink: 188 bytes leftover after parsing attributes in process `syz.2.359'.
[  111.334835][ T7578] netlink: 'syz.2.359': attribute type 1 has an invalid length.
[  111.354826][ T5982] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  111.515634][ T5982] usb 6-1: Using ep0 maxpacket: 8
[  111.518342][ T5982] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  111.525144][ T5982] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  111.527883][ T5982] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  111.530693][ T5982] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0
[  111.533392][ T5982] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  111.537773][ T5982] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  111.540635][ T5982] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  111.548326][ T5982] usbtmc 6-1:16.0: probe with driver usbtmc failed with error -22
[  111.599292][ T7607] netlink: 12 bytes leftover after parsing attributes in process `syz.2.364'.
[  111.869212][ T1160] Bluetooth: hci4: Frame reassembly failed (-84)
[  111.984981][  T833] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  112.105007][ T5983] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  112.134891][  T833] usb 7-1: Using ep0 maxpacket: 8
[  112.138254][  T833] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  112.141031][  T833] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  112.144979][  T833] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  112.148919][  T833] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  112.152221][  T833] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  112.156737][  T833] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  112.158731][  T833] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  112.161697][  T833] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  112.164688][  T833] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  112.167735][  T833] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  112.171507][  T833] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  112.173500][  T833] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  112.176450][  T833] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  112.179464][  T833] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  112.182294][  T833] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  112.187485][  T833] usb 7-1: string descriptor 0 read error: -22
[  112.189190][  T833] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  112.191534][  T833] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  112.199552][  T833] adutux 7-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  112.265002][ T5983] usb 5-1: Using ep0 maxpacket: 32
[  112.268163][ T5983] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[  112.271893][ T5983] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[  112.276900][ T5983] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  112.279854][ T5983] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  112.282523][ T5983] usb 5-1: Product: syz
[  112.283839][ T5983] usb 5-1: Manufacturer: syz
[  112.285608][ T5983] usb 5-1: SerialNumber: syz
[  112.288578][ T5983] usb 5-1: config 0 descriptor??
[  112.493851][ T5983] usb 5-1: USB disconnect, device number 8
[  112.560711][ T5982] usb 7-1: USB disconnect, device number 13
[  112.962354][ T7622] 9pnet_fd: Insufficient options for proto=fd
[  113.318958][ T7624] ieee802154 phy0 wpan0: encryption failed: -22
[  113.915022][ T5945] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  113.918183][ T5939] Bluetooth: hci4: command 0xfc11 tx timeout
[  114.246962][   T25] usb 6-1: USB disconnect, device number 7
[  114.501992][ T7666] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  114.504986][ T7666] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  114.508449][ T7666] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  114.641284][ T7670] ieee802154 phy0 wpan0: encryption failed: -22
[  114.927601][ T7684] syz.2.378: attempt to access beyond end of device
[  114.927601][ T7684] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  114.931221][ T7684] (syz.2.378,7684,3):ocfs2_get_sector:1769 ERROR: status = -5
[  114.933381][ T7684] (syz.2.378,7684,3):ocfs2_sb_probe:749 ERROR: status = -5
[  114.935726][ T7684] (syz.2.378,7684,3):ocfs2_fill_super:990 ERROR: superblock probe failed!
[  114.938132][ T7684] (syz.2.378,7684,3):ocfs2_fill_super:1178 ERROR: status = -5
[  115.545648][ T7708] netlink: 4 bytes leftover after parsing attributes in process `syz.1.382'.
[  115.944806][ T5982] usb 8-1: new high-speed USB device number 21 using dummy_hcd
[  116.094795][ T5982] usb 8-1: Using ep0 maxpacket: 8
[  116.097646][ T5982] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  116.100331][ T5982] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  116.102841][ T5982] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  116.111315][ T5982] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0
[  116.119795][ T5982] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  116.132310][ T5982] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  116.140492][ T5982] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  116.147886][ T5982] usbtmc 8-1:16.0: probe with driver usbtmc failed with error -22
[  116.525683][ T7753] FAULT_INJECTION: forcing a failure.
[  116.525683][ T7753] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  116.529110][ T7753] CPU: 0 UID: 0 PID: 7753 Comm: syz.0.389 Not tainted 6.13.0-rc1-syzkaller-00001-ge70140ba0d2b #0
[  116.531855][ T7753] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  116.534872][ T7753] Call Trace:
[  116.535808][ T7753]  <TASK>
[  116.536643][ T7753]  dump_stack_lvl+0x16c/0x1f0
[  116.537895][ T7753]  should_fail_ex+0x497/0x5b0
[  116.539184][ T7753]  _copy_from_user+0x2e/0xd0
[  116.540442][ T7753]  get_compat_msghdr+0xa8/0x170
[  116.541723][ T7753]  ? __pfx_get_compat_msghdr+0x10/0x10
[  116.543150][ T7753]  ___sys_recvmsg+0x193/0x1a0
[  116.544399][ T7753]  ? __pfx____sys_recvmsg+0x10/0x10
[  116.546197][ T7753]  ? __fget_files+0x1fc/0x3a0
[  116.548101][ T7753]  ? trace_lock_acquire+0x14e/0x1f0
[  116.550178][ T7753]  ? __fget_files+0x206/0x3a0
[  116.551944][ T7753]  ? __pfx___might_resched+0x10/0x10
[  116.553793][ T7753]  do_recvmmsg+0x55d/0x740
[  116.555045][ T7753]  ? __pfx_do_recvmmsg+0x10/0x10
[  116.556305][ T7753]  ? vfs_write+0x306/0x1150
[  116.557475][ T7753]  ? __fget_files+0x206/0x3a0
[  116.558669][ T7753]  __sys_recvmmsg+0x21e/0x280
[  116.559881][ T7753]  ? __pfx___sys_recvmmsg+0x10/0x10
[  116.561201][ T7753]  ? __pfx_ksys_write+0x10/0x10
[  116.562422][ T7753]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  116.564209][ T7753]  ? lockdep_hardirqs_on+0x7c/0x110
[  116.565811][ T7753]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  116.567458][ T7753]  __do_fast_syscall_32+0x73/0x120
[  116.568739][ T7753]  do_fast_syscall_32+0x32/0x80
[  116.569978][ T7753]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  116.571563][ T7753] RIP: 0023:0xf7f2f579
[  116.572618][ T7753] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  116.577710][ T7753] RSP: 002b:00000000f509557c EFLAGS: 00000292 ORIG_RAX: 0000000000000151
[  116.579789][ T7753] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[  116.581886][ T7753] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[  116.584752][ T7753] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  116.587234][ T7753] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  116.589446][ T7753] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  116.591475][ T7753]  </TASK>
[  116.591944][ T1168] Bluetooth: hci4: Frame reassembly failed (-84)
[  116.661627][ T7764] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  116.663880][ T7764] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  116.666326][ T7764] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  118.436321][ T7784] 9pnet_fd: Insufficient options for proto=fd
[  118.497761][ T7786] netlink: 168 bytes leftover after parsing attributes in process `syz.1.396'.
[  118.506555][ T7786] loop9: detected capacity change from 0 to 6
[  118.511125][ T7786] Dev loop9: unable to read RDB block 6
[  118.512780][ T7786]  loop9: unable to read partition table
[  118.514422][ T7786] loop9: partition table beyond EOD, truncated
[  118.516193][ T7786] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  118.516193][ T7786] 
) failed (rc=-5)
[  118.634902][ T5939] Bluetooth: hci4: command 0x1003 tx timeout
[  118.636684][ T5945] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  118.672747][ T7790] netlink: 8 bytes leftover after parsing attributes in process `syz.2.397'.
[  118.688542][   T25] usb 8-1: USB disconnect, device number 21
[  118.776481][ T7728] Bluetooth: hci4: Frame reassembly failed (-84)
[  119.028704][ T7802] ieee802154 phy0 wpan0: encryption failed: -22
[  119.149013][ T7809] FAULT_INJECTION: forcing a failure.
[  119.149013][ T7809] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  119.152392][ T7809] CPU: 0 UID: 0 PID: 7809 Comm: syz.0.402 Not tainted 6.13.0-rc1-syzkaller-00001-ge70140ba0d2b #0
[  119.155150][ T7809] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  119.158570][ T7809] Call Trace:
[  119.159758][ T7809]  <TASK>
[  119.160815][ T7809]  dump_stack_lvl+0x16c/0x1f0
[  119.162470][ T7809]  should_fail_ex+0x497/0x5b0
[  119.164169][ T7809]  ? fs_reclaim_acquire+0xae/0x150
[  119.165977][ T7809]  should_fail_alloc_page+0xe7/0x130
[  119.167827][ T7809]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  119.169808][ T7809]  __alloc_pages_noprof+0x190/0x25b0
[  119.171528][ T7809]  ? stack_depot_save_flags+0x31b/0x900
[  119.173125][ T7809]  ? __pfx_lock_release+0x10/0x10
[  119.174440][ T7809]  ? hlock_class+0x4e/0x130
[  119.175754][ T7809]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  119.177426][ T7809]  ? __pfx___lock_acquire+0x10/0x10
[  119.178783][ T7809]  ? kasan_save_stack+0x42/0x60
[  119.180447][ T7809]  ? kasan_save_stack+0x33/0x60
[  119.181987][ T7809]  ? kasan_save_track+0x14/0x30
[  119.183536][ T7809]  ? __kasan_slab_alloc+0x89/0x90
[  119.185186][ T7809]  ? kmem_cache_alloc_node_noprof+0x1ca/0x3b0
[  119.187035][ T7809]  ? alloc_vmap_area+0x636/0x2a70
[  119.188611][ T7809]  ? __get_vm_area_node+0x19e/0x2f0
[  119.190212][ T7809]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  119.192027][ T7809]  ? policy_nodemask+0xea/0x4e0
[  119.193495][ T7809]  alloc_pages_mpol_noprof+0x2c9/0x610
[  119.195149][ T7809]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  119.197173][ T7809]  ? do_raw_spin_lock+0x12d/0x2c0
[  119.198751][ T7809]  ? lock_acquire+0x2f/0xb0
[  119.200173][ T7809]  ? kasan_populate_vmalloc_pte+0xfb/0x160
[  119.201966][ T7809]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  119.203896][ T7809]  get_free_pages_noprof+0xc/0x40
[  119.205458][ T7809]  kasan_populate_vmalloc_pte+0x2d/0x160
[  119.207183][ T7809]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  119.209204][ T7809]  __apply_to_page_range+0x5fd/0xd30
[  119.210871][ T7809]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  119.212810][ T7809]  ? __pfx___apply_to_page_range+0x10/0x10
[  119.214575][ T7809]  ? insert_vmap_area+0x2ef/0x4d0
[  119.216108][ T7809]  alloc_vmap_area+0x93e/0x2a70
[  119.217605][ T7809]  ? __pfx_alloc_vmap_area+0x10/0x10
[  119.219258][ T7809]  __get_vm_area_node+0x19e/0x2f0
[  119.220858][ T7809]  __vmalloc_node_range_noprof+0x26a/0x1530
[  119.222739][ T7809]  ? sock_hash_alloc+0x336/0x510
[  119.223203][ T7813] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  119.224278][ T7809]  ? sock_hash_alloc+0x336/0x510
[  119.227039][ T7813] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  119.228468][ T7809]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  119.230715][ T7813] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[  119.232646][ T7809]  ? rcu_is_watching+0x12/0xc0
[  119.232669][ T7809]  ? trace_kmalloc+0x2d/0xd0
[  119.232683][ T7809]  ? __kmalloc_node_noprof+0x23d/0x520
[  119.239321][ T7809]  ? sock_hash_alloc+0x336/0x510
[  119.240854][ T7809]  __bpf_map_area_alloc+0xea/0x190
[  119.242424][ T7809]  ? sock_hash_alloc+0x336/0x510
[  119.243966][ T7809]  sock_hash_alloc+0x336/0x510
[  119.245479][ T7809]  map_create+0x5c5/0x1f20
[  119.246865][ T7809]  ? __pfx_lock_release+0x10/0x10
[  119.248432][ T7809]  ? trace_lock_acquire+0x14e/0x1f0
[  119.250046][ T7809]  ? __pfx_map_create+0x10/0x10
[  119.251563][ T7809]  ? lock_acquire+0x2f/0xb0
[  119.252969][ T7809]  ? __might_fault+0xe3/0x190
[  119.254448][ T7809]  ? __might_fault+0xe3/0x190
[  119.255915][ T7809]  __sys_bpf+0x4f58/0x57a0
[  119.257301][ T7809]  ? __pfx_lock_release+0x10/0x10
[  119.258888][ T7809]  ? __pfx___sys_bpf+0x10/0x10
[  119.260387][ T7809]  ? vfs_write+0x306/0x1150
[  119.261804][ T7809]  ? __mutex_unlock_slowpath+0x164/0x690
[  119.263561][ T7809]  ? fput+0x67/0x440
[  119.264802][ T7809]  ? ksys_write+0x1ba/0x250
[  119.266240][ T7809]  ? __pfx_ksys_write+0x10/0x10
[  119.267776][ T7809]  __ia32_sys_bpf+0x76/0xe0
[  119.269183][ T7809]  __do_fast_syscall_32+0x73/0x120
[  119.270738][ T7809]  do_fast_syscall_32+0x32/0x80
[  119.272178][ T7809]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  119.274151][ T7809] RIP: 0023:0xf7f2f579
[  119.275431][ T7809] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  119.281390][ T7809] RSP: 002b:00000000f50b657c EFLAGS: 00000292 ORIG_RAX: 0000000000000165
[  119.283937][ T7809] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000020000600
[  119.286344][ T7809] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  119.288808][ T7809] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  119.291240][ T7809] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  119.294024][ T7809] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  119.296800][ T7809]  </TASK>
[  119.694533][   T76] Bluetooth: hci5: Frame reassembly failed (-84)
[  120.234921][ T5982] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  120.394915][ T5982] usb 7-1: Using ep0 maxpacket: 8
[  120.397933][ T5982] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  120.400409][ T5982] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  120.402801][ T5982] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  120.405338][ T5982] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  120.408563][ T5982] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  120.410784][ T5982] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  120.618670][ T5982] usb 7-1: usb_control_msg returned -32
[  120.620103][ T5982] usbtmc 7-1:16.0: can't read capabilities
[  120.624908][ T5982] usb 7-1: USB disconnect, device number 14
[  120.794891][ T5298] Bluetooth: hci4: command 0x1003 tx timeout
[  120.796877][ T5945] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  121.167335][ T7835] ieee802154 phy0 wpan0: encryption failed: -22
[  121.338454][ T7844] 9pnet_fd: Insufficient options for proto=fd
[  121.494790][ T5982] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  121.644863][ T5982] usb 5-1: Using ep0 maxpacket: 8
[  121.647393][ T5982] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  121.649840][ T5982] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  121.652280][ T5982] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  121.655055][ T5982] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  121.658604][ T5982] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  121.660998][ T5982] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  121.754933][ T5939] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  121.755229][ T5945] Bluetooth: hci5: command 0x1003 tx timeout
[  121.871876][ T5982] usb 5-1: GET_CAPABILITIES returned 0
[  121.873680][ T5982] usbtmc 5-1:16.0: can't read capabilities
[  122.080427][ T5982] usb 5-1: USB disconnect, device number 9
[  122.748484][ T7732] Bluetooth: hci4: Frame reassembly failed (-84)
[  122.751326][ T7732] Bluetooth: hci4: Frame reassembly failed (-84)
[  122.814833][ T5981] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  122.965009][ T5981] usb 7-1: Using ep0 maxpacket: 8
[  122.968686][ T5981] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  122.971102][ T5981] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  122.973553][ T5981] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  122.976848][ T5981] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  122.980193][ T5981] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  122.982501][ T5981] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  123.138148][ T7894] 9pnet_fd: Insufficient options for proto=fd
[  123.195922][ T5981] usb 7-1: usb_control_msg returned -32
[  123.197436][ T5981] usbtmc 7-1:16.0: can't read capabilities
[  123.207811][ T5981] usb 7-1: USB disconnect, device number 15
[  124.521973][ T7921] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  124.524207][ T7921] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  124.526437][ T7921] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[  124.546000][ T7922] netlink: 20 bytes leftover after parsing attributes in process `syz.0.435'.
[  124.795516][ T5939] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  124.856138][ T1168] Bluetooth: hci4: Frame reassembly failed (-84)
[  124.904909][ T5982] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  125.066616][ T7937] 9pnet_fd: Insufficient options for proto=fd
[  125.069831][ T5982] usb 5-1: Using ep0 maxpacket: 8
[  125.076198][ T5982] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  125.079139][ T5982] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  125.081833][ T5982] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  125.086586][ T5982] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  125.089929][ T5982] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  125.092306][ T5982] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  125.104908][ T7850] usb 8-1: new high-speed USB device number 22 using dummy_hcd
[  125.254830][ T7850] usb 8-1: Using ep0 maxpacket: 32
[  125.257573][ T7850] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[  125.260434][ T7850] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[  125.266131][ T7850] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  125.268644][ T7850] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  125.271204][ T7850] usb 8-1: Product: syz
[  125.272786][ T7850] usb 8-1: Manufacturer: syz
[  125.274658][ T7850] usb 8-1: SerialNumber: syz
[  125.280738][ T7850] usb 8-1: config 0 descriptor??
[  125.313914][ T5982] usb 5-1: usb_control_msg returned -32
[  125.315600][ T5982] usbtmc 5-1:16.0: can't read capabilities
[  125.323100][ T5982] usb 5-1: USB disconnect, device number 10
[  125.324448][ T7939] FAULT_INJECTION: forcing a failure.
[  125.324448][ T7939] name failslab, interval 1, probability 0, space 0, times 0
[  125.328175][ T7939] CPU: 0 UID: 0 PID: 7939 Comm: syz.2.441 Not tainted 6.13.0-rc1-syzkaller-00001-ge70140ba0d2b #0
[  125.330976][ T7939] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  125.333815][ T7939] Call Trace:
[  125.334697][ T7939]  <TASK>
[  125.335480][ T7939]  dump_stack_lvl+0x16c/0x1f0
[  125.336742][ T7939]  should_fail_ex+0x497/0x5b0
[  125.337985][ T7939]  ? fs_reclaim_acquire+0xae/0x150
[  125.339357][ T7939]  should_failslab+0xc2/0x120
[  125.340612][ T7939]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  125.342083][ T7939]  ? getname_kernel+0x52/0x370
[  125.343513][ T7939]  getname_kernel+0x52/0x370
[  125.344756][ T7939]  kern_path+0x1d/0x50
[  125.346016][ T7939]  lookup_bdev+0xd9/0x280
[  125.347139][ T7939]  ? __pfx_lookup_bdev+0x10/0x10
[  125.348503][ T7939]  ? aa_get_newest_label+0x376/0x680
[  125.349860][ T7939]  ? kfree+0x274/0x4b0
[  125.351090][ T7939]  get_tree_bdev_flags+0xbf/0x620
[  125.352604][ T7939]  ? __pfx_hpfs_fill_super+0x10/0x10
[  125.353985][ T7939]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  125.355455][ T7939]  ? apparmor_capable+0x114/0x1d0
[  125.356798][ T7939]  ? bpf_lsm_capable+0x9/0x10
[  125.358057][ T7939]  vfs_get_tree+0x8f/0x380
[  125.359388][ T7939]  path_mount+0x6e1/0x1f10
[  125.360591][ T7939]  ? kmem_cache_free+0x152/0x4c0
[  125.361933][ T7939]  ? __pfx_path_mount+0x10/0x10
[  125.363426][ T7939]  ? putname+0x13c/0x180
[  125.364557][ T7939]  __ia32_sys_mount+0x292/0x310
[  125.365840][ T7939]  ? __pfx___ia32_sys_mount+0x10/0x10
[  125.367252][ T7939]  __do_fast_syscall_32+0x73/0x120
[  125.368638][ T7939]  do_fast_syscall_32+0x32/0x80
[  125.369910][ T7939]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  125.371549][ T7939] RIP: 0023:0xf7f57579
[  125.372660][ T7939] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  125.377611][ T7939] RSP: 002b:00000000f50d657c EFLAGS: 00000292 ORIG_RAX: 0000000000000015
[  125.379788][ T7939] RAX: ffffffffffffffda RBX: 0000000020000280 RCX: 00000000200001c0
[  125.382010][ T7939] RDX: 0000000020000240 RSI: 0000000000808001 RDI: 0000000000000000
[  125.384034][ T7939] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  125.386072][ T7939] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  125.388280][ T7939] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  125.390344][ T7939]  </TASK>
[  125.391908][ T7939] /dev/nbd2: Can't lookup blockdev
[  125.491815][ T7850] usb 8-1: USB disconnect, device number 22
[  125.734359][ T7947] bridge0: port 1(bridge_slave_0) entered disabled state
[  125.819697][ T7944] FAULT_INJECTION: forcing a failure.
[  125.819697][ T7944] name failslab, interval 1, probability 0, space 0, times 0
[  125.824620][ T7944] CPU: 3 UID: 0 PID: 7944 Comm: syz.2.443 Not tainted 6.13.0-rc1-syzkaller-00001-ge70140ba0d2b #0
[  125.828317][ T7944] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  125.831577][ T7944] Call Trace:
[  125.832861][ T7944]  <TASK>
[  125.833654][ T7944]  dump_stack_lvl+0x16c/0x1f0
[  125.834913][ T7944]  should_fail_ex+0x497/0x5b0
[  125.836614][ T7944]  ? fs_reclaim_acquire+0xae/0x150
[  125.838239][ T7944]  should_failslab+0xc2/0x120
[  125.839490][ T7944]  __kmalloc_noprof+0xce/0x4f0
[  125.840890][ T7944]  ? fuse_direct_io+0x5b3/0x2580
[  125.842233][ T7944]  fuse_direct_io+0x5b3/0x2580
[  125.843520][ T7944]  ? __pfx_fuse_direct_io+0x10/0x10
[  125.845041][ T7944]  ? lockdep_init_map_type+0x16d/0x7d0
[  125.846511][ T7944]  fuse_direct_IO+0x620/0xf20
[  125.847750][ T7944]  ? __pfx_fuse_direct_IO+0x10/0x10
[  125.849097][ T7944]  generic_file_direct_write+0x197/0x410
[  125.850518][ T7944]  ? kiocb_modified+0x134/0x2c0
[  125.851748][ T7944]  fuse_file_write_iter+0x6d5/0x8c0
[  125.853081][ T7944]  vfs_write+0x5ae/0x1150
[  125.854181][ T7944]  ? __pfx_fuse_file_write_iter+0x10/0x10
[  125.855775][ T7944]  ? __pfx___mutex_lock+0x10/0x10
[  125.857299][ T7944]  ? __pfx_vfs_write+0x10/0x10
[  125.858569][ T7944]  ksys_write+0x12b/0x250
[  125.859749][ T7944]  ? __pfx_ksys_write+0x10/0x10
[  125.861014][ T7944]  __do_fast_syscall_32+0x73/0x120
[  125.862469][ T7944]  do_fast_syscall_32+0x32/0x80
[  125.863800][ T7944]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  125.865414][ T7944] RIP: 0023:0xf7f57579
[  125.866516][ T7944] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  125.871369][ T7944] RSP: 002b:00000000f50d657c EFLAGS: 00000292 ORIG_RAX: 0000000000000004
[  125.873426][ T7944] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000340
[  125.875555][ T7944] RDX: 0000000000000090 RSI: 0000000000000000 RDI: 0000000000000000
[  125.877962][ T7944] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  125.880024][ T7944] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  125.881976][ T7944] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  125.884068][ T7944]  </TASK>
[  125.892687][ T7944] ------------[ cut here ]------------
[  125.894707][ T7944] kernel BUG at lib/iov_iter.c:626!
[  125.896906][ T7944] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI
[  125.898844][ T7944] CPU: 3 UID: 0 PID: 7944 Comm: syz.2.443 Not tainted 6.13.0-rc1-syzkaller-00001-ge70140ba0d2b #0
[  125.902996][ T7944] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  125.905806][ T7944] RIP: 0010:iov_iter_revert+0x533/0x5a0
[  125.907207][ T7944] Code: 89 e6 48 c7 c7 00 18 90 8e e8 69 da 31 00 e9 b1 fd ff ff e8 8f 6f 64 fd eb 95 e8 b8 6f 64 fd e9 46 fb ff ff e8 6e ba 01 fd 90 <0f> 0b 48 8b 3c 24 e8 a2 6f 64 fd e9 97 fb ff ff 48 8b 7c 24 08 e8
[  125.911985][ T7944] RSP: 0018:ffffc900036bf8c0 EFLAGS: 00010293
[  125.913590][ T7944] RAX: 0000000000000000 RBX: 0000000000000090 RCX: ffffffff84978200
[  125.916226][ T7944] RDX: ffff88806bbd8000 RSI: ffffffff84978612 RDI: 0000000000000001
[  125.918411][ T7944] RBP: ffffc900036bfd88 R08: 0000000000000001 R09: 0000000000000000
[  125.920366][ T7944] R10: 0000000000000000 R11: 0000000000000003 R12: 0000000000000000
[  125.922355][ T7944] R13: 0000000000000000 R14: dffffc0000000000 R15: ffff888011c9d200
[  125.924456][ T7944] FS:  0000000000000000(0000) GS:ffff88802b700000(0063) knlGS:00000000f50d6b40
[  125.927095][ T7944] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  125.928777][ T7944] CR2: 00000000f5094da4 CR3: 0000000023736000 CR4: 0000000000352ef0
[  125.930737][ T7944] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  125.932655][ T7944] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  125.934656][ T7944] Call Trace:
[  125.935522][ T7944]  <TASK>
[  125.936322][ T7944]  ? die+0x31/0x80
[  125.937310][ T7944]  ? do_trap+0x232/0x430
[  125.938552][ T7944]  ? iov_iter_revert+0x533/0x5a0
[  125.940001][ T7944]  ? iov_iter_revert+0x533/0x5a0
[  125.941314][ T7944]  ? do_error_trap+0xf4/0x230
[  125.942591][ T7944]  ? iov_iter_revert+0x533/0x5a0
[  125.944027][ T7944]  ? handle_invalid_op+0x34/0x40
[  125.945355][ T7944]  ? iov_iter_revert+0x533/0x5a0
[  125.947027][ T7944]  ? exc_invalid_op+0x2e/0x50
[  125.948687][ T7944]  ? asm_exc_invalid_op+0x1a/0x20
[  125.950334][ T7944]  ? iov_iter_revert+0x120/0x5a0
[  125.952030][ T7944]  ? iov_iter_revert+0x532/0x5a0
[  125.953725][ T7944]  ? iov_iter_revert+0x533/0x5a0
[  125.955470][ T7944]  fuse_direct_io+0xf0e/0x2580
[  125.957203][ T7944]  ? __pfx_fuse_direct_io+0x10/0x10
[  125.959124][ T7944]  ? lockdep_init_map_type+0x16d/0x7d0
[  125.961224][ T7944]  fuse_direct_IO+0x620/0xf20
[  125.962975][ T7944]  ? __pfx_fuse_direct_IO+0x10/0x10
[  125.965009][ T7944]  generic_file_direct_write+0x197/0x410
[  125.967093][ T7944]  ? kiocb_modified+0x134/0x2c0
[  125.968876][ T7944]  fuse_file_write_iter+0x6d5/0x8c0
[  125.970286][ T7944]  vfs_write+0x5ae/0x1150
[  125.971410][ T7944]  ? __pfx_fuse_file_write_iter+0x10/0x10
[  125.972949][ T7944]  ? __pfx___mutex_lock+0x10/0x10
[  125.974272][ T7944]  ? __pfx_vfs_write+0x10/0x10
[  125.975532][ T7944]  ksys_write+0x12b/0x250
[  125.976747][ T7944]  ? __pfx_ksys_write+0x10/0x10
[  125.978139][ T7944]  __do_fast_syscall_32+0x73/0x120
[  125.979526][ T7944]  do_fast_syscall_32+0x32/0x80
[  125.981138][ T7944]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  125.983130][ T7944] RIP: 0023:0xf7f57579
[  125.984540][ T7944] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  125.990420][ T7944] RSP: 002b:00000000f50d657c EFLAGS: 00000292 ORIG_RAX: 0000000000000004
[  125.993058][ T7944] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000340
[  125.996219][ T7944] RDX: 0000000000000090 RSI: 0000000000000000 RDI: 0000000000000000
[  125.999228][ T7944] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  126.002265][ T7944] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  126.005314][ T7944] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  126.008121][ T7944]  </TASK>
[  126.009064][ T7944] Modules linked in:
[  126.010321][ T7944] ---[ end trace 0000000000000000 ]---
[  126.013553][ T7944] RIP: 0010:iov_iter_revert+0x533/0x5a0
[  126.015206][ T7944] Code: 89 e6 48 c7 c7 00 18 90 8e e8 69 da 31 00 e9 b1 fd ff ff e8 8f 6f 64 fd eb 95 e8 b8 6f 64 fd e9 46 fb ff ff e8 6e ba 01 fd 90 <0f> 0b 48 8b 3c 24 e8 a2 6f 64 fd e9 97 fb ff ff 48 8b 7c 24 08 e8
[  126.021266][ T7944] RSP: 0018:ffffc900036bf8c0 EFLAGS: 00010293
[  126.022877][ T7944] RAX: 0000000000000000 RBX: 0000000000000090 RCX: ffffffff84978200
[  126.026558][ T7944] RDX: ffff88806bbd8000 RSI: ffffffff84978612 RDI: 0000000000000001
[  126.029492][ T7944] RBP: ffffc900036bfd88 R08: 0000000000000001 R09: 0000000000000000
[  126.032283][ T7944] R10: 0000000000000000 R11: 0000000000000003 R12: 0000000000000000
[  126.035744][ T7944] R13: 0000000000000000 R14: dffffc0000000000 R15: ffff888011c9d200
[  126.039056][ T7944] FS:  0000000000000000(0000) GS:ffff88802b700000(0063) knlGS:00000000f50d6b40
[  126.042191][ T7944] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  126.044661][ T7944] CR2: 00000000f5094da4 CR3: 0000000023736000 CR4: 0000000000352ef0
[  126.048634][ T7944] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  126.051538][ T7944] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  126.054240][ T7944] Kernel panic - not syncing: Fatal exception
[  126.057267][ T7944] Kernel Offset: disabled
[  126.058427][ T7944] Rebooting in 86400 seconds..

VM DIAGNOSIS:
19:25:06  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffff88802b744b80 RCX=ffffffff818d43fc RDX=ffff888022f78000
RSI=0000000000000000 RDI=0000000000000005 RBP=0000000000000003 RSP=ffffc900031afae8
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000004
R12=ffffed10056e8971 R13=0000000000000001 R14=ffff88802b744b88 R15=ffff88802b43ff80
RIP=ffffffff81994142 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000000000c3cbdcc CR3=0000000025002000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000300000000 RBX=fffff52000713dba RCX=000000000000000c RDX=ffff8880212a0000
RSI=ffffc9000389edf0 RDI=ffffffff81851ec0 RBP=ffffc9000389edc0 RSP=ffffc9000389eda0
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=dffffc0000000000
R12=ffffc9000389ee80 R13=ffffc9000389edf0 R14=0000000000000000 R15=ffff8880212a0000
RIP=ffffffff814019ee RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f50b5548 CR3=000000002b0f0000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a000000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=0000000000000000 RCX=ffffffff81d4ded1 RDX=ffff888020768000
RSI=ffffffff81d4dee6 RDI=0000000000000007 RBP=ffffea0000bb0800 RSP=ffffc9000102f2e0
R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000000 R11=ffffffff81922265
R12=0000000000000000 R13=0000000000000001 R14=ffffea0000bb0808 R15=dffffc0000000000
RIP=ffffffff819940c1 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000562a0c3508e8 CR3=000000004ec1a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 005858585858582e 7a7973d0000000e4
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000585858585858
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ff0f0e0d0c0b0a09
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000031 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff851531d5 RDI=ffffffff9a6682c0 RBP=ffffffff9a668280 RSP=ffffc900036bf1e0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=552033203a555043
R12=0000000000000000 R13=0000000000000031 R14=ffffffff85153170 R15=0000000000000000
RIP=ffffffff851531ff RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b700000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00000000f5094da4 CR3=0000000023736000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000