last executing test programs:

2m17.713670609s ago: executing program 0 (id=1276):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/key-users\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_SET_CPUID(r3, 0x4008ae8a, &(0x7f0000000240)=ANY=[@ANYBLOB="08000000000000000000000006000000e79d00000800000009000000000000000700000002000000020000000000000001200000000000000f0000000800000001000000080000007cbf0000000000000d000000070000000000000002000000f3150000000000000600000000040000040000000900000009000000000000000d0000000400000001010000050000000100000000000000010000000100000001800000f5ffffff"])
close_range(r0, 0xffffffffffffffff, 0x0)
openat$mixer(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f00000001c0)={{&(0x7f0000ffc000/0x3000)=nil, 0x3000}})
openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/key-users\x00', 0x0, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1) (async)
ioctl$KVM_SET_CPUID(r3, 0x4008ae8a, &(0x7f0000000240)=ANY=[@ANYBLOB="08000000000000000000000006000000e79d00000800000009000000000000000700000002000000020000000000000001200000000000000f0000000800000001000000080000007cbf0000000000000d000000070000000000000002000000f3150000000000000600000000040000040000000900000009000000000000000d0000000400000001010000050000000100000000000000010000000100000001800000f5ffffff"]) (async)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
openat$mixer(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) (async)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f00000001c0)={{&(0x7f0000ffc000/0x3000)=nil, 0x3000}}) (async)

2m17.584009376s ago: executing program 0 (id=1277):
openat$ptp0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f0000000200), 0x1, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f00000002c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r3=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000140)={0x24, r2, 0x1, 0x0, 0x0, {}, [@BATADV_ATTR_GW_MODE={0x5, 0x33, 0x3}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}]}, 0x24}}, 0x0)
creat(0x0, 0x11)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[])
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x2, 0x56d, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000600), &(0x7f0000001f80), 0xfffffffb, r4}, 0x38)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200), &(0x7f00000004c0), 0x1000, r4}, 0x38)
io_submit(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0xa1, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x22, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
getsockopt$sock_buf(r5, 0x1, 0x1c, 0x0, &(0x7f0000000280))
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10)
r7 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
io_setup(0x3fe, &(0x7f0000000100)=<r8=>0x0)
io_getevents(r8, 0x1, 0x800000000000116, &(0x7f0000004600), 0x0)
io_submit(r8, 0x1, &(0x7f0000000000)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, r7, 0x0}])
r9 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r9, 0x5423, &(0x7f00000003c0)=0x14)
ioctl$TIOCVHANGUP(r9, 0x5437, 0x2)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

2m17.173796275s ago: executing program 0 (id=1279):
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x8, 0x4, &(0x7f0000000000)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x8, 0x76}, [@call={0x27}]}, &(0x7f0000000040)='syzkaller\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffed8, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x3f)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001240)=@base={0xf, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x37)
close(r1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0xe, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000004008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000240)={@map=r2, r5, 0x5, 0x0, 0x0, @void, @value}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{r2}, &(0x7f0000000100), &(0x7f0000000140)=r1}, 0x20)
sendmsg(r3, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000001680)=[{&(0x7f0000001400)='H', 0x20001401}], 0x1}, 0x0)

2m16.294053374s ago: executing program 0 (id=1284):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1, 0x3, 0x261, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x18, 0x7, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="00009716aeac924f919200000000000085000000a000000095000a31671697637cb2dd35af2a99be000000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

2m16.293751867s ago: executing program 0 (id=1285):
syz_open_dev$MSR(0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a050000"], 0xfc}}, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
ioctl$FS_IOC_GETFSLABEL(r0, 0x800452d3, &(0x7f0000000100))

2m16.235338667s ago: executing program 0 (id=1286):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000180100002020782500000000f01f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d0000009500"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r0}, 0xc)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000380)='cgroup.procs\x00', 0x2, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
write$cgroup_pid(r2, &(0x7f00000001c0), 0x12)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_ro(r3, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r4, &(0x7f0000000200)=0x1, 0x12)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[], 0x128}, 0x1, 0x0, 0x0, 0x4008000}, 0x4000)
syz_open_procfs(0x0, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
r7 = socket(0x22, 0x80000, 0x0)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000001240)=[{0x0}], 0x1, 0x0, 0x0)
recvmsg$can_bcm(r7, &(0x7f00000003c0)={&(0x7f00000005c0)=@alg, 0x80, &(0x7f0000000780)=[{&(0x7f0000000640)=""/79, 0x4f}, {&(0x7f00000006c0)=""/147, 0x93}, {&(0x7f0000000840)=""/224, 0xe0}, {&(0x7f0000000940)=""/167, 0xa7}, {&(0x7f0000000a00)=""/138, 0x8a}], 0x5}, 0x40000000)
r8 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[], 0x0, 0x34, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000ac0)=ANY=[@ANYBLOB="180000dc168b82588b820de56029887f00000000000015dd32351e5157370a7b2df7f7229d4b687de1c18eb855a9149712338267fe4e2636e5a822a5479516eac69efec737a8140b826c3baa460d5d671ec3f034b252dbd6dcd2dafbe646caa0ee507014bba1eee65fd87e28a94cc3bd2b995ba02b80ee6d3993f0244a9ca79e906d3818b66f0af06b0e26d8df88d5090543f51453302f2ea24a3cba777855944794e259d2d21478ad28e89107b0d01ff929dabe19e6b32396d1794d9e72300a7753dba607913ddfd10e9d051800000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r8, 0x8, &(0x7f00000000c0)={0x0, 0x1}, 0x1, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000500)={r9, 0xe0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYRES32=0xee01, @ANYBLOB], 0xb8}}, 0x0)

5.012591838s ago: executing program 3 (id=1924):
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='gid_map\x00')
preadv(r0, &(0x7f0000003240)=[{&(0x7f0000002200)=""/4096, 0x1000}], 0x1, 0x8, 0x0)
rseq(0x0, 0x0, 0x0, 0x0)
openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_open_dev$swradio(&(0x7f00000001c0), 0x0, 0x2)
syz_open_dev$swradio(&(0x7f0000000080), 0x0, 0x2)
socket$nl_rdma(0x10, 0x3, 0x14)
socket$alg(0x26, 0x5, 0x0)
r1 = syz_open_dev$swradio(&(0x7f00000000c0), 0x0, 0x2)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000040)={0xf0f041, 0xe7ff})
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)

4.661411453s ago: executing program 1 (id=1926):
syz_open_dev$I2C(&(0x7f0000000000), 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x80)
r1 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r2 = openat$cgroup_int(r1, 0x0, 0x2, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
r4 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
r5 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r5, 0x0, &(0x7f00000000c0)=<r6=>0x0)
r7 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000001ac0)=[{&(0x7f0000000080)=ANY=[@ANYBLOB="140100001f000100000000000000000006"], 0x114}], 0x1}, 0x0)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r8)
write$cgroup_int(r2, &(0x7f0000000240)=0xd6, 0x12)
sendmsg$NFC_CMD_DEV_UP(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r9, @ANYBLOB="010000000000000000400200000008000100", @ANYRES32=r6], 0x1c}}, 0x0)
connect$nfc_llcp(r4, &(0x7f0000000000)={0x27, r6, 0x0, 0x0, 0x0, 0x0, "f235cd041ecfd237d48b9fc39aa09025f026b0634b6f82bded015a1b2cc967eff95fd0b6841d40ae65cd6ddd03de31eba0328a09ff4f717c7b1b1c65e750c8", 0x36}, 0x60)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f0000000140)=<r10=>0x0)
sendmsg$NFC_CMD_DEP_LINK_UP(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="120227bd7000ffdbdf250400000005000a000000000005000a000100000008000100", @ANYRES32=r6, @ANYBLOB="080004000100000008000100", @ANYRES32=r10, @ANYBLOB], 0x3c}, 0x1, 0x0, 0x0, 0x400d1}, 0x1)
fcntl$setlease(r0, 0x8, 0x0)
pipe(&(0x7f0000000300)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
write(r11, &(0x7f00000001c0), 0xfffffef3)
r12 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r12, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r12, 0xc01064bd, &(0x7f0000000280)={&(0x7f00000008c0)="00a1a4f6ab5fa87669f21978401f7811767c2be80c57c5cd3acd2a7ff24aa2ea5ae7a6cafe2c4b44fd282279dec16d2cd2c03a6803a0780af904eae39961426b18b0cc36", 0x44})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r12, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000480)=[<r13=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GET_LEASE(r12, 0xc01064c8, &(0x7f0000000340)={0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_GETPLANE(r12, 0xc02064b6, &(0x7f00000001c0)={r13, <r14=>0x0, <r15=>0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r11, 0xc02064b9, &(0x7f00000002c0)={&(0x7f0000000400)=[0x0, <r16=>0x0], &(0x7f0000000280), 0x2, r15, 0xe0e0e0e0})
ioctl$DRM_IOCTL_MODE_ATOMIC(r12, 0xc03864bc, &(0x7f0000000040)={0x0, 0x1, &(0x7f00000000c0)=[r14], &(0x7f0000000280), &(0x7f0000000300)=[r16], &(0x7f0000000340)})
pipe(&(0x7f0000000100))

4.141387974s ago: executing program 3 (id=1929):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000180)={0x10, 0x4, &(0x7f0000000240)=ANY=[@ANYRESOCT], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xe, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9, @void, @value}, 0x90)
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
arch_prctl$ARCH_SHSTK_ENABLE(0x5001, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
socket$packet(0x11, 0x3, 0x300)
syz_open_procfs(0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGPROP(r3, 0x40047438, &(0x7f0000000180)=""/246)
ioctl$PPPIOCSFLAGS1(r3, 0x40047457, &(0x7f0000000300))
fgetxattr(r1, &(0x7f0000001180)=@known='system.sockprotoname\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r4=>0xffffffffffffffff, {0x0, 0xffffffffffffffff}}, './file0\x00'})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000440)={[0x6, 0x0, 0x3ff, 0x1, 0xe2b, 0xd, 0x5c, 0x1, 0x1c8b, 0x47, 0x1, 0x7, 0x9be7, 0x1, 0x6, 0xffff], 0xf000, 0x40})
sendmsg$TIPC_CMD_DISABLE_BEARER(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYRES16=0x0, @ANYBLOB="000129bd7000fbdbdf25010000000000010002410800000000000000701c73795a3200000000"], 0x2c}, 0x1, 0x0, 0x0, 0x24000410}, 0x845)
r5 = memfd_create(&(0x7f0000000000)='\x107', 0x0)
write$binfmt_elf32(r5, 0x0, 0x58)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4), 0xc)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
keyctl$search(0xa, 0x0, 0x0, 0x0, 0x0)
keyctl$setperm(0x5, 0x0, 0x20000)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
syz_open_dev$MSR(&(0x7f0000000000), 0x0, 0x0)

4.141182509s ago: executing program 3 (id=1930):
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x84, 0x17, &(0x7f0000000000), 0x10)
socket(0x2b, 0x1, 0x0)

4.072831744s ago: executing program 3 (id=1931):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f0000001880)={'wg1\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000fc0), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000001000)=ANY=[@ANYBLOB="d8000000", @ANYRES16=r3, @ANYBLOB="290a00000000000000000100000008000100", @ANYRES32=r2, @ANYBLOB="0800050001000000b4000880"], 0xd8}}, 0x0)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000880)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x2c, r3, 0x1, 0x800, 0x25dfdbfc, {}, [@WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e23}, @WGDEVICE_A_IFINDEX={0x8, 0x1, r2}, @WGDEVICE_A_FWMARK={0x8, 0x7, 0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x4000) (fail_nth: 13)

3.741650791s ago: executing program 3 (id=1932):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000440)='veno\x00', 0x5)
r1 = openat$selinux_policy(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x100000a, 0x10, r1, 0x0)
syz_usb_connect(0x0, 0x36, &(0x7f00000002c0)=ANY=[@ANYBLOB="1201000014da2108ab12a390eb1e000000010902240001b30000040904410017ff"], 0x0)
sendto$inet(r0, &(0x7f00000004c0)="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", 0x109e8, 0x805, 0x0, 0x6)

3.652782928s ago: executing program 1 (id=1934):
syz_usb_connect(0x0, 0x3f, &(0x7f0000000080)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
syz_usb_connect$printer(0x6, 0x2d, &(0x7f0000000040)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x10, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x19, 0x0, 0x8, [{{0x9, 0x4, 0x0, 0x1, 0x2, 0x7, 0x1, 0x2, 0x8, "", {{{0x9, 0x5, 0x1, 0x2, 0x20, 0x1, 0x3, 0x3}}}}}]}}]}}, &(0x7f0000000180)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x201, 0x7, 0x5b, 0xe, 0x20, 0x6}, 0x1b, &(0x7f0000000100)={0x5, 0xf, 0x7b, 0x2, [@ss_cap={0xa, 0x10, 0x3, 0x0, 0xc, 0x8, 0x0, 0x5}, @ssp_cap={0xc, 0x10, 0xa, 0x0, 0x0, 0x78c8, 0xff0f, 0x9}]}, 0x1, [{0x4, &(0x7f0000000140)=@lang_id={0x4, 0x3, 0x240c}}]})
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)={0x14}, 0x14}}, 0x0)
r0 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$FS_IOC_GETVERSION(r0, 0x40015b0b, &(0x7f0000000000))

2.561373345s ago: executing program 1 (id=1935):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0xd4, &(0x7f00000000c0)=@nat={'nat\x00', 0x19, 0x1, 0x178, [0x200003c0, 0x0, 0x0, 0x200003f0, 0x20000420], 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="000000000000f8ffffff000000000000000000000000000000000000000000000000000000000000feffffff00000000000000000000000100000000000000f00c0000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff01000000050000000000000008006966623000000000000000000000000064756d6d79300000000000000000000069705f76746930000000000000000000697036746e6c30000000000000000000aaaaaaaaaabb0000000000000182c20000000000000000000000b8000000b8000000e80000006970000000000000000000000000000000000000000000a823c565625b8d720020000000000000007f0000e1ab14140000000000000000000084300400000000000000000000000041554449540000bcb92dfff07fca000000466ef58f5dc8438b000000000000000800"/376]}, 0x1f0)

2.56120376s ago: executing program 1 (id=1936):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=@delsa={0x28, 0x11, 0x1, 0x0, 0x0, {@in6=@remote, 0xa00, 0x0, 0x6c}}, 0x28}}, 0x0)

2.48260622s ago: executing program 1 (id=1937):
r0 = syz_open_dev$rtc(&(0x7f0000000000), 0x6, 0x80000)
ioctl$RTC_IRQP_READ(r0, 0x8008700b, &(0x7f0000000040))
r1 = fcntl$getown(0xffffffffffffffff, 0x9)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x0, &(0x7f0000000080))
write$FUSE_NOTIFY_INVAL_ENTRY(0xffffffffffffffff, &(0x7f00000000c0)={0x2b, 0x3, 0x0, {0x0, 0xa, 0x0, '/dev/rtc#\x00'}}, 0x2b)
io_setup(0xb, &(0x7f0000000100))
sched_setaffinity(r1, 0x8, &(0x7f0000000140)=0x7)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TCSETS(r2, 0x5402, &(0x7f0000000180)={0x4, 0x2, 0xc76b, 0x1, 0x10, "b19cc29ed7e6e7e5531c081ab9f351a726cb44"})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wlan1\x00', <r5=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000280)={0x0, <r6=>0x0})
ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000300)=<r7=>0x0)
r8 = syz_open_procfs$namespace(r1, &(0x7f0000000340)='ns/cgroup\x00')
sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r3, &(0x7f0000000440)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x48005}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x7c, r4, 0x10, 0x70bd2c, 0x25dfdbfe, {{}, {@void, @val={0x8, 0x3, r5}, @val={0xc, 0x99, {0x0, 0x25}}}}, [@NL80211_ATTR_PID={0x8, 0x52, r6}, @NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x80, 0x26}}, @NL80211_ATTR_PID={0x8, 0x52, r7}, @NL80211_ATTR_PID={0x8, 0x52, r1}, @NL80211_ATTR_NETNS_FD={0x8, 0xdb, r8}, @NL80211_ATTR_PID={0x8, 0x52, r1}, @NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x24}, @NL80211_ATTR_NETNS_FD={0x8}]}, 0x7c}, 0x1, 0x0, 0x0, 0x4001000}, 0x20040057)
r9 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000480), 0x488400, 0x0)
ioctl$PPPIOCSFLAGS1(r9, 0x40047459, &(0x7f00000004c0)=0x24)
syz_genetlink_get_family_id$batadv(&(0x7f0000000500), r3)
r10 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x2)
r11 = syz_open_dev$MSR(&(0x7f0000000540), 0x100, 0x0)
read$msr(r11, &(0x7f0000000580)=""/178, 0xb2)
add_key(&(0x7f0000000640)='cifs.idmap\x00', &(0x7f0000000680)={'syz', 0x1}, &(0x7f00000006c0)="a798a0db7c5f3626b89a1bb1e805012e7cd295aaf18f6fd629b2e7b594b43bc2c88ead77eb1080f75c1d080c25c747478b55d4a1356c47487c003ce23b40978abd092bdfad68f4e395001717f91dd0d28a32ea5ce487ae68bc9ed4c7e576da00f0c59d147838465268e38e4a9adfbdaca138a200e918ed5da4fae1515832754f2d1706554fc51cc0c977458d9ba075bfba438a00e4d4c69a72f2678a1d4850b9ef425836805fd80686bc7564f192a824af527b", 0xb3, 0xffffffffffffffff)
ioctl$F2FS_IOC_START_VOLATILE_WRITE(r3, 0xf503, 0x0)
r12 = syz_genetlink_get_family_id$l2tp(&(0x7f00000007c0), r9)
sendmsg$L2TP_CMD_TUNNEL_GET(r3, &(0x7f0000000880)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x2c, r12, 0x4, 0x70bd29, 0x25dfdbfe, {}, [@L2TP_ATTR_DATA_SEQ={0x5, 0x4, 0xdb}, @L2TP_ATTR_LNS_MODE={0x5}, @L2TP_ATTR_MRU={0x6, 0x1d, 0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4040804}, 0x4008000)
mbind(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x9a552e23365e308a, &(0x7f00000008c0)=0x7, 0x3, 0x2)
write(r10, &(0x7f0000000900)="0557dae2e2e27955ec9d4fb51b38deeb33e62f09aea8da7adeba9aec26e504cf75b0a323b37f8eb216c328b54a68", 0x2e)
getsockopt$bt_sco_SCO_OPTIONS(0xffffffffffffffff, 0x11, 0x1, &(0x7f0000000940)=""/194, &(0x7f0000000a40)=0xc2)

2.342567818s ago: executing program 1 (id=1938):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000002004000b7080000000000007b8af8ff00000000b7080000000200007b8af0ff0000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000a50000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x1000008, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x4, 0x0, &(0x7f0000000340)=[{0x0, 0x1, 0xa, 0xb}, {0x2, 0xfffffffe, 0xf, 0x7}, {0x5, 0x2, 0x13, 0x2}, {0x5, 0x5, 0x5, 0x9}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = syz_clone(0x800c000, &(0x7f0000001480)="627807434619734911420e123cb6f44fb54d82f86f3720b1d5ecd9651a9fcb2a1c358b9cd99a9da0b00953486764e0c7d13faa0d43ad3164e14aa9d4eafc2ae39ce2be18d63433b7dfc78608200e69639ab1530087488555d6d92591d54b3a4b2d398d9c826367e94ff87e48b5c84c384e4da2242cd7", 0x76, 0x0, 0x0, 0x0)
kcmp(r0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48)
memfd_create(&(0x7f0000000140)='\xc0\x87:*\x18\xc1k\xa7\x87[\xa0o8\xaaK\xa5\xd3\v\x86\xca<c\xfd6\x8d}\xd8\xf2G\xb8\xeae)\x90\x86\xe3\x96\b\xe0\xfa\xb1\xd8N\xb2W\xcb\x8d}3lm8\xa57\xc9\x00HOA\xc8\x80kR\xfc\xcb%u3\xec\xde\x04\x00\x00\x00\xebD\x82\xba[\xc7%\x88 \xdem\xbe\x7f2\x11)W\x9c\x82\x91\x17\xd8\xda@4\x9f\xc5*T\x1e^\xf7o\xff\xff\xff\xffwI\x02\xf3\xe3\x8d.\xd1=\xcf\xbf\x81\xb5\x8d\xb7\x1a\xf5%K\x1d\xe7_\xde\x87\xdd\xc1\xf0\x91\x1a!\x9c\xd3\v\xc9\x95d\xe3*\xa9\xfa\x99\x9d\xb8\x89>\xc9\xf2/\x13{\x1a\x7f\x00\xea\x8c\x9a\x15\x9c\xf5\xb4O\x17@d\x81+\xf6\xe6+\xed\r\xd2\xb3\xaa\x9b\x7fC\'\xa2\xf6\x12\xa1\x15Punfo\x7f\x92G\x0e.\xce\xd8h\xb9p2\xccC\xbaH\xc4\xdc\xe2\xa1%)\x85\xc7O]\'9\x92\xad\xfbJ\x02\x1d\x91-\xc99\t&\xbdq\x06`T\xc8\x92\xaf\xad\x06\xdd\xaf\x84\xf4\"\x13\xbc\xe5\x93D\xad~F\xe5\x19\xaa\xaa\xb2\xb1\x03m\x82+\x06\x1bF^\xd3n\xc4F\xc1\xc08\x94\xe6\xe5\x1f\xa7\xf6\xcaA\x90T\xf1\x1b\xe6\xb9\xe7\xff\xc5H\x04\x8d\xca\xad\x17UlY\x9a}\r4\xac\x93\xac\v2\xc6\xf9\xbe\xfeI\x8b\xd4/`\xab\x1e\xff\xe9\x7f\xa4.\xaa!\xd6\x02\xe4\xcf\x7f\b\x94 2.{\xc1\xbe\x9bth~\xcb\xb9E\x10W\xed\xed51[\xc5\xeb\xb1ux\x94\x00\x00\x00\x00\x00\x00\x00\x00\x00gO\x8b3\x97\xbd\x00'/407, 0x3)
socket$nl_xfrm(0x10, 0x3, 0x6)
fanotify_init(0x0, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000e5cf01406e0510401c20000000010902"], 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000800006b1132000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_LOOKUP_ELEM(0x5, &(0x7f00000000c0)={r4, &(0x7f0000000000), &(0x7f0000000040)=""/60}, 0x20)

1.742545322s ago: executing program 2 (id=1942):
syz_usb_connect(0x0, 0x3f, &(0x7f0000000080)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
syz_usb_connect$printer(0x6, 0x2d, &(0x7f0000000040)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x10, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x19, 0x0, 0x8, [{{0x9, 0x4, 0x0, 0x1, 0x2, 0x7, 0x1, 0x2, 0x8, "", {{{0x9, 0x5, 0x1, 0x2, 0x20, 0x1, 0x3, 0x3}}}}}]}}]}}, &(0x7f0000000180)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x201, 0x7, 0x5b, 0xe, 0x20, 0x6}, 0x1b, &(0x7f0000000100)={0x5, 0xf, 0x7b, 0x2, [@ss_cap={0xa, 0x10, 0x3, 0x0, 0xc, 0x8, 0x0, 0x5}, @ssp_cap={0xc, 0x10, 0xa, 0x0, 0x0, 0x78c8, 0xff0f, 0x9}]}, 0x1, [{0x4, &(0x7f0000000140)=@lang_id={0x4, 0x3, 0x240c}}]})
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)={0x14}, 0x14}}, 0x0)
r0 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$FS_IOC_GETVERSION(r0, 0x40015b0b, &(0x7f0000000000))

721.978837ms ago: executing program 3 (id=1943):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='loginuid\x00')
r1 = syz_open_dev$cec(&(0x7f0000002340), 0x0, 0x0)
ioctl$CEC_S_MODE(r1, 0x40046109, &(0x7f0000000000)=0x2)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
socket$nl_route(0x10, 0x3, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='net/snmp\x00')
read(r3, &(0x7f0000001a00)=""/177, 0xb1)
open(0x0, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
socket(0xa, 0x1, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0100000000000000000003000000400001802c0004001400010002000000ac1414aa00000000000000001400020002000000e000000200000000000004000d0001007564703a73"], 0x54}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x86)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8b24, &(0x7f0000000000)={'wlan1\x00'})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={0xffffffffffffffff, 0x0, 0x14, 0xe40, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]})
getpid()
write$P9_RWSTAT(r0, 0x0, 0x0)

552.059613ms ago: executing program 2 (id=1944):
r0 = syz_open_dev$sg(&(0x7f0000001940), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) (async)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x8, 0x0, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_int(r4, 0x29, 0x19, &(0x7f0000000140)=0xa7d, 0x4) (async)
sendmmsg$inet6(r4, &(0x7f0000006b80)=[{{&(0x7f0000000040)={0xa, 0x4e24, 0x0, @local}, 0x1c, 0x0}}, {{&(0x7f0000000240)={0xa, 0x4e24, 0x0, @remote}, 0x1c, 0x0}}], 0x2, 0x0)
recvfrom$inet6(r4, 0x0, 0x0, 0x12020, 0x0, 0x0)
listen(0xffffffffffffffff, 0xfffffffd) (async)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x14, 0x98}, [@ldst={0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff) (async)
r5 = syz_open_dev$usbfs(&(0x7f0000000040), 0x12, 0x80801)
ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000000)=@usbdevfs_driver={0x0, 0x80805513, 0x0}) (async)
r6 = socket(0x10, 0x4, 0x7)
socket$inet_udp(0x2, 0x2, 0x0) (async)
r7 = accept$inet(r6, 0x0, &(0x7f0000000100))
setsockopt$inet_MCAST_MSFILTER(r7, 0x0, 0x30, 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f00000000c0)={0x2, 0x0, 0xffffff95})
sendmsg$RDMA_NLDEV_CMD_RES_QP_GET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0x20, 0x140a, 0x100, 0x70bd2c, 0x25dfdbfe, "", [@RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x4}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}]}, 0x20}}, 0x40000)
r8 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r8, 0x4040534e, &(0x7f0000000340)={0x200, @time={0xfffffff7, 0x7}, 0x3, {0xc, 0x1}, 0x6, 0x2, 0x8})

242.077259ms ago: executing program 2 (id=1945):
syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)

241.77391ms ago: executing program 2 (id=1946):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r0, 0xffffffffffffffff, 0x0)
openat$nvram(0xffffffffffffff9c, &(0x7f0000000140), 0x101140, 0x0)
r1 = syz_io_uring_setup(0x748d, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000000)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r1, 0x16, &(0x7f0000000380)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xe, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_io_uring_submit(r2, r3, &(0x7f00000003c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x20, 0x0, @fd_index, 0x0, &(0x7f00000001c0)=[{0x0}], 0x1})
openat$sndseq(0xffffffffffffff9c, &(0x7f0000001000), 0x200)
io_uring_enter(r1, 0x27e2, 0xe4ff, 0x0, 0x0, 0x0)

143.979841ms ago: executing program 2 (id=1947):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000480)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(camellia)\x00'}, 0x58) (async, rerun: 64)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f00000000c0)="8db4c6d3916872c4d26e8e39f30e9ce9ab2f204389cf53c6", 0x18) (async, rerun: 64)
r4 = accept$alg(r3, 0x0, 0x0)
recvmmsg(r4, &(0x7f0000001800)=[{{0x0, 0x0, &(0x7f00000017c0)=[{&(0x7f0000001940)=""/138, 0xfffffdee}, {&(0x7f0000001a00)=""/4112, 0x1010}], 0x2}, 0x1f}, {{&(0x7f0000000100)=@can, 0x0, &(0x7f0000000340)=[{&(0x7f0000000500)=""/4083}, {&(0x7f0000000180)=""/73}, {&(0x7f0000002a40)=""/4096}, {&(0x7f00000016c0)=""/172}, {&(0x7f00000002c0)=""/96}], 0x0, &(0x7f00000003c0)=""/77}, 0xe13e}, {{&(0x7f0000001500), 0x0, &(0x7f0000000000)=[{&(0x7f0000001580)=""/132}, {&(0x7f0000001640)=""/67}, {&(0x7f0000003a40)=""/142}]}, 0x4}], 0x1, 0x0, 0x0) (async)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.self_freezing\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000080), 0x208e24b) (async)
sendfile(r4, r5, 0x0, 0xb3c4) (async)
r6 = eventfd(0x42e7)
ioctl$VHOST_SET_VRING_KICK(r5, 0x4008af20, &(0x7f0000000080)={0x0, r6})
r7 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r8 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC(r8, 0x0, 0xcc, &(0x7f0000000200)={@empty, @dev={0xac, 0x14, 0x14, 0x31}, 0x0, "606b177019716ea6ac38f5bd6e0630e369c7b35d21ff1f4d7ed79c31e2b0f1da", 0x0, 0x0, 0x4, 0xfffefffe}, 0x3c) (async)
setsockopt$inet_mreqsrc(r8, 0x0, 0x27, &(0x7f0000000000)={@rand_addr=0x64010101, @remote, @private=0xa010101}, 0xc) (async)
ioctl$KVM_SET_MSRS(r7, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="010000002200001bb0000040"]) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

0s ago: executing program 2 (id=1948):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000480)={0x0, 0x0, 0x0}, &(0x7f00000004c0)=0x10)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0xc, 0x0, 0xff, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff})
r3 = socket(0x10, 0x3, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000008680)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x10)
r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r4, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r5=>0x0})
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r4, 0x3ba0, &(0x7f0000000300)={0x48, 0x1, r5, 0x0, 0x3834, 0xfffffffffffffffc})
ioctl$IOMMU_IOAS_MAP$PAGES(r4, 0x3b85, &(0x7f0000000140)={0x28, 0x2, r5, 0x0, &(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x8003})
ioctl$KVM_GET_LAPIC(r2, 0x8400ae8e, &(0x7f0000000500)={"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"})

0s ago: executing program 2 (id=1949):
r0 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, 0x0, 0x0)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x842, 0x0)
writev(r1, &(0x7f0000000a40)=[{&(0x7f00000003c0)="ff071d6ce89d96666b08e828be032f55097076e40148c200000000fb00000200"/50, 0x32}, {&(0x7f0000000bc0)="d18a876f8f46c153dde8db040cc7e763ba2fab29aca1a1a2e0ab17dfd1fbfa6955b751ed697ff263589987f3de711efae8e2342b2846c1c9d8febaecb3aef2d7650869408a287d92d06f5d660a68f3f0a39e926d8dbd6f8d9de335fe4c520feaffc62c3435ab43a2f77234987d3b1130d31bd78fb28883050a1b8dd4ea2cdc62703eb86600dba7da620ad621c21b75893f334cfc82a3931e8cf3dfa12d31fa32797f5a940475fd8947bde48c8126a44eb9d229126e34e0d8aace15047ccd5bd0932270c88dac48e0bbb2af55a35efca697fe5435b19f827cf2d9337109", 0xdd}, {&(0x7f0000000000)="a9e47d4ed965685b48214fff756364b93155b267f07697b50eede6ed45f973d3da857dba0deed519dc9a7267b99f19a1b405e7d2", 0x34}, {&(0x7f00000000c0)='z', 0x1}], 0x4)
write$FUSE_NOTIFY_DELETE(r1, &(0x7f0000000540)=ANY=[@ANYBLOB="410900000000000000687523f0000006000000000000000000000003000000000000000500000000f30000180000006681f63dc47b09d3c767efd642a24e0a6900"/76], 0x41)
socket$netlink(0x10, 0x3, 0x10)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000000), 0x4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r2)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r3, 0x4)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000007940)={0x0, 0x0, &(0x7f0000007900)={&(0x7f0000000800)=@gettclass={0x24, 0x2a, 0x8, 0x70bd28, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x4, 0xf}, {0x0, 0x8}, {0xffe0, 0x6}}, ["", "", "", ""]}, 0x24}}, 0x0)
ioperm(0x0, 0xab4b, 0x21000000007)
fanotify_mark(0xffffffffffffffff, 0x1, 0x4800003e, 0xffffffffffffffff, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x2, &(0x7f00000000c0)={<r7=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r6, &(0x7f0000000140)={0x4, 0x8, 0xfa00, {r7, 0x8}}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
writev(r4, &(0x7f0000000340)=[{&(0x7f0000000200)="4b064fb072d1de20", 0x8}], 0x1)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r1, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000380)={&(0x7f0000001180)=ANY=[@ANYBLOB="b0040000", @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000300000000004000018008000100", @ANYRES32=0x0, @ANYBLOB="080003000200000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="0800030001000000140002006e696376663000000000000000000000c0000280a400050054173c6210102e5a18ee457c55d31d938a32b20d2582e2343bcf14b087c912d7620ac1e437b921cad17e0fe3aaa97765d9b9e5dd1d466ff612f9ce13815db3042c27125a392ef22134f6949c157a4b443772b19a60c539d6a55ac064dc90cef8999a0ca5fbd9b32673592a323ae7db3ad770dfd3eb87cbfd345b635f0ceeb6b375132b75415c063039ed1be98d718befe9a0ff74335082fe151dcdfc5f2038e30800020004000000100005000ec732d84d163b14a8de9b59"], 0x4b0}}, 0x40094)
syz_genetlink_get_family_id$mptcp(&(0x7f0000004d80), 0xffffffffffffffff)
r8 = socket$inet6(0xa, 0xa, 0x6)
getsockname$inet6(r8, &(0x7f0000000240)={0xa, 0x0, 0x0, @private2}, &(0x7f0000000280)=0x1c)

kernel console output (not intermixed with test programs):

307.280833][   T30] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  307.356449][ T5396] usb 6-1: Using ep0 maxpacket: 8
[  307.359103][ T5396] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  307.361546][ T5396] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  307.363909][ T5396] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  307.366270][ T5396] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  307.369713][ T5396] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  307.371983][ T5396] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  307.496520][ T5349] Bluetooth: hci1: command tx timeout
[  307.580455][ T5396] usb 6-1: GET_CAPABILITIES returned 0
[  307.581963][ T5396] usbtmc 6-1:16.0: can't read capabilities
[  307.792235][ T5396] usb 6-1: USB disconnect, device number 38
[  308.338367][T11532] hfs: can't find a HFS filesystem on dev nullb0
[  308.844317][  T983] usb 7-1: string descriptor 0 read error: -71
[  308.876922][  T983] usb 7-1: USB disconnect, device number 33
[  309.161100][T11531] ALSA: mixer_oss: invalid OSS volume '�'
[  309.413633][T11542] FAULT_INJECTION: forcing a failure.
[  309.413633][T11542] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  309.417144][T11542] CPU: 1 UID: 0 PID: 11542 Comm: syz.1.1666 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  309.419913][T11542] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  309.422665][T11542] Call Trace:
[  309.423550][T11542]  <TASK>
[  309.424330][T11542]  dump_stack_lvl+0x16c/0x1f0
[  309.425570][T11542]  should_fail_ex+0x497/0x5b0
[  309.426847][T11542]  _copy_from_user+0x30/0xf0
[  309.428083][T11542]  copy_msghdr_from_user+0x99/0x160
[  309.429438][T11542]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  309.430963][T11542]  ? __pfx___lock_acquire+0x10/0x10
[  309.432326][T11542]  ___sys_sendmsg+0xff/0x1e0
[  309.433534][T11542]  ? __pfx____sys_sendmsg+0x10/0x10
[  309.434892][T11542]  ? lock_acquire+0x2f/0xb0
[  309.436087][T11542]  ? __fget_files+0x40/0x3f0
[  309.437435][T11542]  ? fdget+0x176/0x210
[  309.438509][T11542]  __sys_sendmsg+0x117/0x1f0
[  309.439728][T11542]  ? __pfx___sys_sendmsg+0x10/0x10
[  309.441069][T11542]  do_syscall_64+0xcd/0x250
[  309.442291][T11542]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.443830][T11542] RIP: 0033:0x7f05fc77dff9
[  309.444994][T11542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  309.449995][T11542] RSP: 002b:00007f05fd4a8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  309.452159][T11542] RAX: ffffffffffffffda RBX: 00007f05fc936130 RCX: 00007f05fc77dff9
[  309.454211][T11542] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 000000000000000a
[  309.456261][T11542] RBP: 00007f05fd4a8090 R08: 0000000000000000 R09: 0000000000000000
[  309.458312][T11542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  309.460355][T11542] R13: 0000000000000000 R14: 00007f05fc936130 R15: 00007ffe3312d198
[  309.462401][T11542]  </TASK>
[  309.616421][ T5349] Bluetooth: hci1: command tx timeout
[  309.637256][   T30] usb 8-1: string descriptor 0 read error: -71
[  309.660665][   T30] usb 8-1: USB disconnect, device number 42
[  309.797245][T11548] binder_alloc: 11547: binder_alloc_buf, no vma
[  309.831641][   T39] audit: type=1400 audit(1729675060.272:1187): avc:  denied  { write } for  pid=11550 comm="syz.2.1669" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  310.073877][   T39] audit: type=1326 audit(1729675060.512:1188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11553 comm="syz.1.1670" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f05fc77dff9 code=0x0
[  310.451258][T11559] netfs: Couldn't get user pages (rc=-14)
[  310.462053][T11559] netfs: Couldn't get user pages (rc=-14)
[  311.186655][    T9] usb 6-1: new high-speed USB device number 39 using dummy_hcd
[  311.192542][T11583] netlink: 'syz.2.1680': attribute type 4 has an invalid length.
[  311.336582][    T9] usb 6-1: Using ep0 maxpacket: 8
[  311.339918][    T9] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  311.343407][    T9] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  311.347156][    T9] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  311.350694][    T9] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  311.356449][    T9] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  311.359789][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  311.575069][    T9] usb 6-1: GET_CAPABILITIES returned 0
[  311.577010][    T9] usbtmc 6-1:16.0: can't read capabilities
[  311.658813][ T5349] Bluetooth: hci1: command tx timeout
[  311.780978][ T5395] usb 6-1: USB disconnect, device number 39
[  311.826557][   T25] usb 7-1: new high-speed USB device number 34 using dummy_hcd
[  311.990066][   T25] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  311.994093][   T25] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  312.001286][   T25] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  312.004443][   T25] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  312.008993][T11598] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  312.015090][   T25] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  312.295140][ T5377] usb 7-1: USB disconnect, device number 34
[  312.311060][T11607] FAULT_INJECTION: forcing a failure.
[  312.311060][T11607] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  312.315601][T11607] CPU: 2 UID: 0 PID: 11607 Comm: syz.2.1686 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  312.318899][T11607] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  312.322586][T11607] Call Trace:
[  312.323655][T11607]  <TASK>
[  312.324441][T11607]  dump_stack_lvl+0x16c/0x1f0
[  312.325679][T11607]  should_fail_ex+0x497/0x5b0
[  312.326926][T11607]  _copy_to_user+0x30/0xc0
[  312.328122][T11607]  simple_read_from_buffer+0xd0/0x160
[  312.329518][T11607]  proc_fail_nth_read+0x198/0x270
[  312.330844][T11607]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  312.332288][T11607]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  312.333716][T11607]  vfs_read+0x1ce/0xbd0
[  312.334804][T11607]  ? __fget_files+0x23a/0x3f0
[  312.336058][T11607]  ? fdget_pos+0x24c/0x360
[  312.337416][T11607]  ? __pfx_lock_release+0x10/0x10
[  312.338865][T11607]  ? trace_lock_acquire+0x14a/0x1d0
[  312.340253][T11607]  ? __pfx_vfs_read+0x10/0x10
[  312.341502][T11607]  ? __pfx___mutex_lock+0x10/0x10
[  312.342834][T11607]  ? __fget_files+0x244/0x3f0
[  312.344095][T11607]  ksys_read+0x12f/0x260
[  312.345216][T11607]  ? __pfx_ksys_read+0x10/0x10
[  312.346477][T11607]  do_syscall_64+0xcd/0x250
[  312.347707][T11607]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  312.349254][T11607] RIP: 0033:0x7f266a17ca3c
[  312.350432][T11607] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  312.355434][T11607] RSP: 002b:00007f266af7e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  312.357590][T11607] RAX: ffffffffffffffda RBX: 00007f266a335f80 RCX: 00007f266a17ca3c
[  312.359651][T11607] RDX: 000000000000000f RSI: 00007f266af7e0a0 RDI: 0000000000000005
[  312.361698][T11607] RBP: 00007f266af7e090 R08: 0000000000000000 R09: 0000000000000000
[  312.363766][T11607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  312.365822][T11607] R13: 0000000000000000 R14: 00007f266a335f80 R15: 00007ffc489ba298
[  312.367935][T11607]  </TASK>
[  312.368825][    C2] vkms_vblank_simulate: vblank timer overrun
[  312.621838][T11630] serio: Serial port ptm0
[  312.795903][T11633] 9pnet_fd: Insufficient options for proto=fd
[  312.799343][T11633] xt_time: unknown flags 0xc
[  312.833958][T11636] FAULT_INJECTION: forcing a failure.
[  312.833958][T11636] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  312.837473][T11636] CPU: 3 UID: 0 PID: 11636 Comm: syz.3.1694 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  312.840251][T11636] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  312.842925][T11636] Call Trace:
[  312.844251][T11636]  <TASK>
[  312.845312][T11636]  dump_stack_lvl+0x16c/0x1f0
[  312.847027][T11636]  should_fail_ex+0x497/0x5b0
[  312.848521][T11636]  _copy_from_iter+0x2a1/0x1540
[  312.849742][T11636]  ? __pfx__copy_from_iter+0x10/0x10
[  312.851121][T11636]  ? __virt_addr_valid+0x1a4/0x590
[  312.852530][T11636]  ? __virt_addr_valid+0x5e/0x590
[  312.853869][T11636]  ? __phys_addr_symbol+0x30/0x80
[  312.855192][T11636]  ? __check_object_size+0x488/0x710
[  312.856683][T11636]  netlink_sendmsg+0x813/0xd70
[  312.858018][T11636]  ? __pfx_netlink_sendmsg+0x10/0x10
[  312.859403][T11636]  ? __import_iovec+0x1fd/0x6e0
[  312.860680][T11636]  ____sys_sendmsg+0xaaf/0xc90
[  312.861999][T11636]  ? copy_msghdr_from_user+0x10b/0x160
[  312.863433][T11636]  ? __pfx_____sys_sendmsg+0x10/0x10
[  312.864882][T11636]  ? __pfx___lock_acquire+0x10/0x10
[  312.866264][T11636]  ___sys_sendmsg+0x135/0x1e0
[  312.867783][T11636]  ? __pfx____sys_sendmsg+0x10/0x10
[  312.869168][T11636]  ? lock_acquire+0x2f/0xb0
[  312.870343][T11636]  ? __fget_files+0x40/0x3f0
[  312.871566][T11636]  ? fdget+0x176/0x210
[  312.872666][T11636]  __sys_sendmsg+0x117/0x1f0
[  312.874040][T11636]  ? __pfx___sys_sendmsg+0x10/0x10
[  312.875382][T11636]  ? __fget_files+0x244/0x3f0
[  312.876700][T11636]  do_syscall_64+0xcd/0x250
[  312.878008][T11636]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  312.879713][T11636] RIP: 0033:0x7fd2b4b7dff9
[  312.880869][T11636] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  312.885758][T11636] RSP: 002b:00007fd2b59de038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  312.887892][T11636] RAX: ffffffffffffffda RBX: 00007fd2b4d35f80 RCX: 00007fd2b4b7dff9
[  312.889905][T11636] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000004
[  312.891848][T11636] RBP: 00007fd2b59de090 R08: 0000000000000000 R09: 0000000000000000
[  312.893818][T11636] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  312.895711][T11636] R13: 0000000000000000 R14: 00007fd2b4d35f80 R15: 00007fff682a5ec8
[  312.897589][T11636]  </TASK>
[  313.015184][   T39] audit: type=1400 audit(1729675063.452:1189): avc:  denied  { mount } for  pid=11639 comm="syz.2.1696" name="/" dev="configfs" ino=2172 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  313.022864][   T39] audit: type=1400 audit(1729675063.452:1190): avc:  denied  { mounton } for  pid=11639 comm="syz.2.1696" path="/473/file0" dev="configfs" ino=2172 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  313.030288][   T39] audit: type=1400 audit(1729675063.472:1191): avc:  denied  { search } for  pid=11639 comm="syz.2.1696" name="/" dev="configfs" ino=2172 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  313.156543][    T9] usb 8-1: new high-speed USB device number 43 using dummy_hcd
[  313.306503][    T9] usb 8-1: Using ep0 maxpacket: 8
[  313.309389][    T9] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  313.311974][    T9] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  313.315744][    T9] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  313.319643][    T9] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  313.323669][    T9] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  313.327387][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  313.374633][   T39] audit: type=1400 audit(1729675063.812:1192): avc:  denied  { append } for  pid=11643 comm="syz.1.1697" name="nbd1" dev="devtmpfs" ino=675 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  313.380926][   T39] audit: type=1400 audit(1729675063.822:1193): avc:  denied  { relabelfrom } for  pid=11643 comm="syz.1.1697" name="" dev="pipefs" ino=43572 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  313.536190][    T9] usb 8-1: GET_CAPABILITIES returned 0
[  313.537757][    T9] usbtmc 8-1:16.0: can't read capabilities
[  313.583180][T11640] unsupported nlmsg_type 40
[  313.742315][    T9] usb 8-1: USB disconnect, device number 43
[  313.775706][T11650] sg_write: data in/out 11/14 bytes for SCSI command 0x0-- guessing data in;
[  313.775706][T11650]    program syz.1.1699 not setting count and/or reply_len properly
[  314.166761][   T39] audit: type=1400 audit(1729675064.612:1194): avc:  denied  { unmount } for  pid=5335 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  314.516566][T11664] netlink: 'syz.3.1703': attribute type 10 has an invalid length.
[  314.523718][T11664] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  314.564423][T11666] netlink: 'syz.3.1704': attribute type 3 has an invalid length.
[  314.566600][T11666] netlink: 130984 bytes leftover after parsing attributes in process `syz.3.1704'.
[  315.159018][    T9] usb 8-1: new high-speed USB device number 44 using dummy_hcd
[  315.316443][    T9] usb 8-1: Using ep0 maxpacket: 8
[  315.323044][    T9] usb 8-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  315.326563][    T9] usb 8-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 64
[  315.331948][    T9] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  315.334214][    T9] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  315.336279][    T9] usb 8-1: Product: 쌦琢цꌌ勽눃퍾덊낃鲄㟛웧䤅ⶺϑ㨁塣黮穎繩獢셃痴ᴁ羢疄㇙⿬먞眷࿀䦡湒纵鏩ጲ鮫돧傰汹
[  315.340214][    T9] usb 8-1: Manufacturer: ꓾錍Ӯ阏繈⌼퍭᜿耔즒揖즵ḾീὝ聤
[  315.342452][    T9] usb 8-1: SerialNumber: ᐊ
[  315.532620][T11676] syz.2.1707 (11676): drop_caches: 2
[  315.544093][T11676] syz.2.1707 (11676): drop_caches: 2
[  315.616655][   T39] audit: type=1800 audit(1729675066.062:1195): pid=11674 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=set_data cause=unavailable-hash-algorithm comm="syz.3.1706" name="/" dev="sockfs" ino=42294 res=0 errno=0
[  315.664908][    T9] cdc_ncm 8-1:1.0: bind() failure
[  315.668278][    T9] cdc_ncm 8-1:1.1: CDC Union missing and no IAD found
[  315.669997][    T9] cdc_ncm 8-1:1.1: bind() failure
[  315.672900][    T9] usb 8-1: USB disconnect, device number 44
[  315.826638][   T30] usb 7-1: new high-speed USB device number 35 using dummy_hcd
[  315.976405][   T30] usb 7-1: Using ep0 maxpacket: 8
[  315.978937][   T30] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  315.981474][   T30] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  315.983977][   T30] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  315.986823][   T30] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  315.990568][   T30] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  315.992902][   T30] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  316.201964][   T30] usb 7-1: GET_CAPABILITIES returned 0
[  316.203457][   T30] usbtmc 7-1:16.0: can't read capabilities
[  316.406955][    T9] usb 7-1: USB disconnect, device number 35
[  316.562218][   T39] audit: type=1400 audit(1729675067.002:1196): avc:  denied  { accept } for  pid=11686 comm="syz.1.1709" path="socket:[42302]" dev="sockfs" ino=42302 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  316.781144][ T1380] ieee802154 phy0 wpan0: encryption failed: -22
[  316.783681][ T1380] ieee802154 phy1 wpan1: encryption failed: -22
[  316.839986][T11696] futex_wake_op: syz.1.1711 tries to shift op by 32; fix this program
[  317.751585][T11703] netlink: 'syz.1.1713': attribute type 4 has an invalid length.
[  317.754389][T11703] FAULT_INJECTION: forcing a failure.
[  317.754389][T11703] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  317.759701][T11703] CPU: 3 UID: 0 PID: 11703 Comm: syz.1.1713 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  317.763448][T11703] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  317.767290][T11703] Call Trace:
[  317.768488][T11703]  <TASK>
[  317.769549][T11703]  dump_stack_lvl+0x16c/0x1f0
[  317.771242][T11703]  should_fail_ex+0x497/0x5b0
[  317.772924][T11703]  _copy_to_user+0x30/0xc0
[  317.774519][T11703]  simple_read_from_buffer+0xd0/0x160
[  317.776396][T11703]  proc_fail_nth_read+0x198/0x270
[  317.778045][T11703]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  317.779971][T11703]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  317.781911][T11703]  vfs_read+0x1ce/0xbd0
[  317.783421][T11703]  ? __fget_files+0x23a/0x3f0
[  317.785102][T11703]  ? fdget_pos+0x24c/0x360
[  317.786685][T11703]  ? __pfx_lock_release+0x10/0x10
[  317.788506][T11703]  ? trace_lock_acquire+0x14a/0x1d0
[  317.790329][T11703]  ? __pfx_vfs_read+0x10/0x10
[  317.792004][T11703]  ? __pfx___mutex_lock+0x10/0x10
[  317.793797][T11703]  ? __fget_files+0x244/0x3f0
[  317.795472][T11703]  ksys_read+0x12f/0x260
[  317.796925][T11703]  ? __pfx_ksys_read+0x10/0x10
[  317.798182][T11703]  do_syscall_64+0xcd/0x250
[  317.799385][T11703]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  317.800894][T11703] RIP: 0033:0x7f05fc77ca3c
[  317.802047][T11703] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  317.807033][T11703] RSP: 002b:00007f05fd4ea030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  317.809177][T11703] RAX: ffffffffffffffda RBX: 00007f05fc935f80 RCX: 00007f05fc77ca3c
[  317.811243][T11703] RDX: 000000000000000f RSI: 00007f05fd4ea0a0 RDI: 0000000000000003
[  317.813283][T11703] RBP: 00007f05fd4ea090 R08: 0000000000000000 R09: 0000000000000000
[  317.815326][T11703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  317.817424][T11703] R13: 0000000000000000 R14: 00007f05fc935f80 R15: 00007ffe3312d198
[  317.819460][T11703]  </TASK>
[  317.840529][T11706] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1714'.
[  317.974445][   T39] audit: type=1400 audit(1729675068.412:1197): avc:  denied  { connect } for  pid=11709 comm="syz.1.1715" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  318.055687][   T39] audit: type=1400 audit(1729675068.492:1198): avc:  denied  { getopt } for  pid=11712 comm="syz.3.1716" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  318.149365][T11718] FAULT_INJECTION: forcing a failure.
[  318.149365][T11718] name fail_futex, interval 1, probability 0, space 0, times 1
[  318.152699][T11718] CPU: 1 UID: 0 PID: 11718 Comm: syz.3.1717 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  318.155468][T11718] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  318.158313][T11718] Call Trace:
[  318.159218][T11718]  <TASK>
[  318.160001][T11718]  dump_stack_lvl+0x16c/0x1f0
[  318.161254][T11718]  should_fail_ex+0x497/0x5b0
[  318.162616][T11718]  get_futex_key+0x482/0x1090
[  318.164124][T11718]  ? __pfx_get_futex_key+0x10/0x10
[  318.165658][T11718]  ? get_pid_task+0xfc/0x250
[  318.166903][T11718]  futex_wake_op+0x15d/0xda0
[  318.168146][T11718]  ? __pfx_futex_wake_op+0x10/0x10
[  318.169483][T11718]  ? ksys_write+0x21e/0x260
[  318.170683][T11718]  ? vfs_write+0x14d/0x1140
[  318.171903][T11718]  do_futex+0x2eb/0x350
[  318.172998][T11718]  ? __pfx_do_futex+0x10/0x10
[  318.174170][T11718]  __x64_sys_futex+0x1e1/0x4c0
[  318.175408][T11718]  ? fput+0x30/0x390
[  318.176465][T11718]  ? __pfx___x64_sys_futex+0x10/0x10
[  318.177843][T11718]  ? ksys_write+0x1ad/0x260
[  318.179031][T11718]  ? __pfx_ksys_write+0x10/0x10
[  318.180315][T11718]  do_syscall_64+0xcd/0x250
[  318.181507][T11718]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.183042][T11718] RIP: 0033:0x7fd2b4b7dff9
[  318.184213][T11718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  318.189192][T11718] RSP: 002b:00007fd2b59bd038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  318.191368][T11718] RAX: ffffffffffffffda RBX: 00007fd2b4d36058 RCX: 00007fd2b4b7dff9
[  318.193360][T11718] RDX: 0000000040000002 RSI: 0000000000000005 RDI: 00000000200011c0
[  318.195422][T11718] RBP: 00007fd2b59bd090 R08: 0000000020048000 R09: 00000000ffffffff
[  318.197825][T11718] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  318.199781][T11718] R13: 0000000000000001 R14: 00007fd2b4d36058 R15: 00007fff682a5ec8
[  318.201823][T11718]  </TASK>
[  318.496984][ T5377] usb 7-1: new high-speed USB device number 36 using dummy_hcd
[  318.646473][ T5377] usb 7-1: Using ep0 maxpacket: 8
[  318.649845][ T5377] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  318.652923][ T5377] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  318.655671][ T5377] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  318.658319][ T5377] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  318.661751][ T5377] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  318.664956][ T5377] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  318.879484][ T5377] usb 7-1: GET_CAPABILITIES returned 0
[  318.880956][ T5377] usbtmc 7-1:16.0: can't read capabilities
[  319.087824][   T25] usb 7-1: USB disconnect, device number 36
[  319.539886][T11730] fuse: Unknown parameter '0x000000000000000a'
[  319.549411][T11729] sp0: Synchronizing with TNC
[  319.560900][T11734] sp1: Synchronizing with TNC
[  320.026438][ T5395] usb 7-1: new high-speed USB device number 37 using dummy_hcd
[  320.177170][ T5395] usb 7-1: Using ep0 maxpacket: 8
[  320.187222][ T5395] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  320.198513][ T5395] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 64
[  320.215458][ T5395] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  320.220794][ T5395] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  320.223818][ T5395] usb 7-1: Product: 쌦琢цꌌ勽눃퍾덊낃鲄㟛웧䤅ⶺϑ㨁塣黮穎繩獢셃痴ᴁ羢疄㇙⿬먞眷࿀䦡湒纵鏩ጲ鮫돧傰汹
[  320.229377][ T5395] usb 7-1: Manufacturer: ꓾錍Ӯ阏繈⌼퍭᜿耔즒揖즵ḾീὝ聤
[  320.232400][ T5395] usb 7-1: SerialNumber: ᐊ
[  320.250328][   T39] audit: type=1400 audit(1729675070.692:1199): avc:  denied  { ioctl } for  pid=11738 comm="syz.3.1724" path="socket:[42343]" dev="sockfs" ino=42343 ioctlcmd=0x891b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  320.402276][T11748] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  320.454539][   T39] audit: type=1400 audit(1729675070.892:1200): avc:  denied  { shutdown } for  pid=11744 comm="syz.1.1726" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  320.466430][   T39] audit: type=1400 audit(1729675070.902:1201): avc:  denied  { validate_trans } for  pid=11744 comm="syz.1.1726" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  320.517222][   T39] audit: type=1800 audit(1729675070.952:1202): pid=11737 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=set_data cause=unavailable-hash-algorithm comm="syz.2.1723" name="/" dev="sockfs" ino=42350 res=0 errno=0
[  320.563146][ T5395] cdc_ncm 7-1:1.0: bind() failure
[  320.566752][ T5395] cdc_ncm 7-1:1.1: CDC Union missing and no IAD found
[  320.568557][ T5395] cdc_ncm 7-1:1.1: bind() failure
[  320.577912][ T5395] usb 7-1: USB disconnect, device number 37
[  320.804543][T11756] FAULT_INJECTION: forcing a failure.
[  320.804543][T11756] name failslab, interval 1, probability 0, space 0, times 0
[  320.808063][T11756] CPU: 2 UID: 0 PID: 11756 Comm: syz.3.1727 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  320.810960][T11756] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  320.813781][T11756] Call Trace:
[  320.814664][T11756]  <TASK>
[  320.815454][T11756]  dump_stack_lvl+0x16c/0x1f0
[  320.816748][T11756]  should_fail_ex+0x497/0x5b0
[  320.817987][T11756]  ? fs_reclaim_acquire+0xae/0x150
[  320.819329][T11756]  should_failslab+0xc2/0x120
[  320.820567][T11756]  __kmalloc_cache_noprof+0x6b/0x300
[  320.821943][T11756]  ? madvise_collapse+0x1cc/0xaf0
[  320.823268][T11756]  madvise_collapse+0x1cc/0xaf0
[  320.824538][T11756]  ? mas_prev_slot+0x4cb/0x2000
[  320.825817][T11756]  ? __pfx_madvise_collapse+0x10/0x10
[  320.827283][T11756]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  320.828821][T11756]  madvise_vma_behavior+0x390/0x19e0
[  320.830206][T11756]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  320.831691][T11756]  ? find_vma_prev+0xdb/0x160
[  320.832919][T11756]  ? __pfx_find_vma_prev+0x10/0x10
[  320.834253][T11756]  ? __pfx_rwsem_read_trylock+0x10/0x10
[  320.835697][T11756]  ? do_madvise+0x41a/0x760
[  320.836864][T11756]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  320.838254][T11756]  madvise_walk_vmas+0x1cf/0x2c0
[  320.839564][T11756]  ? __pfx_madvise_walk_vmas+0x10/0x10
[  320.840991][T11756]  ? __mutex_unlock_slowpath+0x164/0x650
[  320.842474][T11756]  do_madvise+0x2e1/0x760
[  320.843627][T11756]  ? __pfx_do_madvise+0x10/0x10
[  320.844912][T11756]  ? ksys_write+0x1ad/0x260
[  320.846275][T11756]  ? __pfx_ksys_write+0x10/0x10
[  320.847603][T11756]  __x64_sys_madvise+0xa9/0x110
[  320.848880][T11756]  ? lockdep_hardirqs_on+0x7c/0x110
[  320.850244][T11756]  do_syscall_64+0xcd/0x250
[  320.851452][T11756]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  320.852980][T11756] RIP: 0033:0x7fd2b4b7dff9
[  320.854138][T11756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  320.859124][T11756] RSP: 002b:00007fd2b59bd038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  320.861290][T11756] RAX: ffffffffffffffda RBX: 00007fd2b4d36058 RCX: 00007fd2b4b7dff9
[  320.863367][T11756] RDX: 0000000000000019 RSI: 0000000000600003 RDI: 0000000020000000
[  320.865694][T11756] RBP: 00007fd2b59bd090 R08: 0000000000000000 R09: 0000000000000000
[  320.867830][T11756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  320.869862][T11756] R13: 0000000000000000 R14: 00007fd2b4d36058 R15: 00007fff682a5ec8
[  320.871909][T11756]  </TASK>
[  320.872749][    C2] vkms_vblank_simulate: vblank timer overrun
[  320.974638][   T39] audit: type=1400 audit(1729675071.412:1203): avc:  denied  { read } for  pid=11757 comm="syz.3.1728" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  321.026817][   T39] audit: type=1400 audit(1729675071.472:1204): avc:  denied  { setopt } for  pid=11757 comm="syz.3.1728" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  321.280377][T11765] binder_alloc: 11764: binder_alloc_buf, no vma
[  321.314130][T11766] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0
[  321.326192][T11766] FAULT_INJECTION: forcing a failure.
[  321.326192][T11766] name failslab, interval 1, probability 0, space 0, times 0
[  321.334845][T11766] CPU: 1 UID: 0 PID: 11766 Comm: syz.2.1729 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  321.337922][T11766] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  321.340929][T11766] Call Trace:
[  321.341812][T11766]  <TASK>
[  321.342630][T11766]  dump_stack_lvl+0x16c/0x1f0
[  321.343946][T11766]  should_fail_ex+0x497/0x5b0
[  321.345205][T11766]  ? fs_reclaim_acquire+0xae/0x150
[  321.346577][T11766]  should_failslab+0xc2/0x120
[  321.347873][T11766]  __kmalloc_node_noprof+0xd1/0x430
[  321.349347][T11766]  ? seq_lseek+0x56/0x440
[  321.350548][T11766]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  321.352099][T11766]  __kvmalloc_node_noprof+0xad/0x1a0
[  321.353551][T11766]  traverse.part.0.constprop.0+0x392/0x640
[  321.355070][T11766]  ? __pfx___mutex_lock+0x10/0x10
[  321.356401][T11766]  seq_lseek+0x2b4/0x440
[  321.357505][T11766]  proc_reg_llseek+0x205/0x2f0
[  321.358800][T11766]  ksys_lseek+0x144/0x1b0
[  321.359949][T11766]  do_syscall_64+0xcd/0x250
[  321.361151][T11766]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  321.362773][T11766] RIP: 0033:0x7f266a17dff9
[  321.363997][T11766] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  321.369191][T11766] RSP: 002b:00007f266af3c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000008
[  321.371321][T11766] RAX: ffffffffffffffda RBX: 00007f266a336130 RCX: 00007f266a17dff9
[  321.373421][T11766] RDX: 0000000000000000 RSI: 0000000080000001 RDI: 0000000000000003
[  321.375554][T11766] RBP: 00007f266af3c090 R08: 0000000000000000 R09: 0000000000000000
[  321.377659][T11766] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  321.379917][T11766] R13: 0000000000000000 R14: 00007f266a336130 R15: 00007ffc489ba298
[  321.382120][T11766]  </TASK>
[  322.119526][   T39] audit: type=1400 audit(1729675072.562:1205): avc:  denied  { setopt } for  pid=11783 comm="syz.2.1735" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  322.185548][T11791] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1734'.
[  323.176837][   T39] audit: type=1400 audit(1729675073.622:1206): avc:  denied  { getopt } for  pid=11797 comm="syz.2.1738" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  323.220168][  T983] usb 8-1: new high-speed USB device number 45 using dummy_hcd
[  323.264827][T11810] FAULT_INJECTION: forcing a failure.
[  323.264827][T11810] name failslab, interval 1, probability 0, space 0, times 0
[  323.268306][T11810] CPU: 0 UID: 0 PID: 11810 Comm: syz.2.1741 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  323.271030][T11810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  323.273807][T11810] Call Trace:
[  323.274711][T11810]  <TASK>
[  323.275494][T11810]  dump_stack_lvl+0x16c/0x1f0
[  323.276770][T11810]  should_fail_ex+0x497/0x5b0
[  323.278024][T11810]  ? fs_reclaim_acquire+0xae/0x150
[  323.279394][T11810]  should_failslab+0xc2/0x120
[  323.280635][T11810]  __kmalloc_noprof+0xcb/0x400
[  323.281876][T11810]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  323.283374][T11810]  tomoyo_realpath_from_path+0xb9/0x720
[  323.284858][T11810]  ? tomoyo_path_number_perm+0x232/0x590
[  323.286325][T11810]  tomoyo_path_number_perm+0x245/0x590
[  323.287790][T11810]  ? tomoyo_path_number_perm+0x232/0x590
[  323.289298][T11810]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  323.290911][T11810]  ? trace_lock_acquire+0x14a/0x1d0
[  323.292258][T11810]  ? lock_acquire+0x2f/0xb0
[  323.293482][T11810]  ? __fget_files+0x40/0x3f0
[  323.294708][T11810]  ? __fget_files+0x244/0x3f0
[  323.295961][T11810]  security_file_ioctl+0x9b/0x240
[  323.297317][T11810]  __x64_sys_ioctl+0xbb/0x220
[  323.298567][T11810]  do_syscall_64+0xcd/0x250
[  323.299823][T11810]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  323.301340][T11810] RIP: 0033:0x7f266a17dff9
[  323.302514][T11810] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  323.308268][T11810] RSP: 002b:00007f266af7e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  323.310406][T11810] RAX: ffffffffffffffda RBX: 00007f266a335f80 RCX: 00007f266a17dff9
[  323.312431][T11810] RDX: 0000000000000004 RSI: 0000000000003b65 RDI: 0000000000000005
[  323.314456][T11810] RBP: 00007f266af7e090 R08: 0000000000000000 R09: 0000000000000000
[  323.316521][T11810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  323.318636][T11810] R13: 0000000000000000 R14: 00007f266a335f80 R15: 00007ffc489ba298
[  323.320722][T11810]  </TASK>
[  323.324342][T11810] ERROR: Out of memory at tomoyo_realpath_from_path.
[  323.386514][   T30] usb 6-1: new high-speed USB device number 40 using dummy_hcd
[  323.416510][  T983] usb 8-1: Using ep0 maxpacket: 8
[  323.421212][  T983] usb 8-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  323.424826][  T983] usb 8-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 64
[  323.430437][  T983] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  323.432631][  T983] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  323.434602][  T983] usb 8-1: Product: 쌦琢цꌌ勽눃퍾덊낃鲄㟛웧䤅ⶺϑ㨁塣黮穎繩獢셃痴ᴁ羢疄㇙⿬먞眷࿀䦡湒纵鏩ጲ鮫돧傰汹
[  323.440314][  T983] usb 8-1: Manufacturer: ꓾錍Ӯ阏繈⌼퍭᜿耔즒揖즵ḾീὝ聤
[  323.443216][  T983] usb 8-1: SerialNumber: ᐊ
[  323.526571][   T30] usb 6-1: device descriptor read/64, error -71
[  323.736606][   T39] audit: type=1800 audit(1729675074.182:1207): pid=11796 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=set_data cause=unavailable-hash-algorithm comm="syz.3.1737" name="/" dev="sockfs" ino=42469 res=0 errno=0
[  323.779115][   T30] usb 6-1: new high-speed USB device number 41 using dummy_hcd
[  323.781452][  T983] cdc_ncm 8-1:1.0: bind() failure
[  323.798453][  T983] cdc_ncm 8-1:1.1: CDC Union missing and no IAD found
[  323.801041][  T983] cdc_ncm 8-1:1.1: bind() failure
[  323.806829][  T983] usb 8-1: USB disconnect, device number 45
[  323.916561][   T30] usb 6-1: device descriptor read/64, error -71
[  324.026970][   T30] usb usb6-port1: attempt power cycle
[  324.310930][T11825] program syz.2.1744 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  324.376568][   T30] usb 6-1: new high-speed USB device number 42 using dummy_hcd
[  324.396848][   T30] usb 6-1: device descriptor read/8, error -71
[  324.646465][   T30] usb 6-1: new high-speed USB device number 43 using dummy_hcd
[  324.667496][   T30] usb 6-1: device descriptor read/8, error -71
[  324.779417][   T30] usb usb6-port1: unable to enumerate USB device
[  324.786460][ T1295] usb 7-1: new high-speed USB device number 38 using dummy_hcd
[  324.938113][ T1295] usb 7-1: config index 0 descriptor too short (expected 43306, got 18)
[  324.940396][ T1295] usb 7-1: config 153 has too many interfaces: 250, using maximum allowed: 32
[  324.942834][ T1295] usb 7-1: config 153 has an invalid descriptor of length 62, skipping remainder of the config
[  324.945620][ T1295] usb 7-1: config 153 has 0 interfaces, different from the descriptor's value: 250
[  324.948414][ T1295] usb 7-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[  324.950855][ T1295] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  326.283250][T11842] overlayfs: failed to resolve './file0': -2
[  326.291582][T11844] overlayfs: failed to resolve './file0': -2
[  326.297913][T11842] FAULT_INJECTION: forcing a failure.
[  326.297913][T11842] name failslab, interval 1, probability 0, space 0, times 0
[  326.302090][T11842] CPU: 0 UID: 0 PID: 11842 Comm: syz.3.1746 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  326.305171][T11842] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  326.309317][T11842] Call Trace:
[  326.310467][T11842]  <TASK>
[  326.311491][T11842]  dump_stack_lvl+0x16c/0x1f0
[  326.313101][T11842]  should_fail_ex+0x497/0x5b0
[  326.314693][T11842]  ? fs_reclaim_acquire+0xae/0x150
[  326.316445][T11842]  should_failslab+0xc2/0x120
[  326.318034][T11842]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  326.319857][T11842]  ? getname_flags.part.0+0x4c/0x550
[  326.321643][T11842]  getname_flags.part.0+0x4c/0x550
[  326.325107][T11842]  getname_flags+0x93/0xf0
[  326.326744][T11842]  __x64_sys_mkdirat+0x76/0xb0
[  326.328614][T11842]  do_syscall_64+0xcd/0x250
[  326.329827][T11842]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  326.331826][T11842] RIP: 0033:0x7fd2b4b7dff9
[  326.333325][T11842] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  326.339761][T11842] RSP: 002b:00007fd2b59bd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  326.342738][T11842] RAX: ffffffffffffffda RBX: 00007fd2b4d36058 RCX: 00007fd2b4b7dff9
[  326.345407][T11842] RDX: 00000000000001ff RSI: 0000000020000000 RDI: ffffffffffffff9c
[  326.348005][T11842] RBP: 00007fd2b59bd090 R08: 0000000000000000 R09: 0000000000000000
[  326.350586][T11842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  326.352666][T11842] R13: 0000000000000000 R14: 00007fd2b4d36058 R15: 00007fff682a5ec8
[  326.355326][T11842]  </TASK>
[  327.364725][ T1295] usb 7-1: string descriptor 0 read error: -71
[  327.367612][ T1295] usb 7-1: USB disconnect, device number 38
[  327.410731][T11857] fuse: Unknown parameter '
'
[  327.413923][T11857] FAULT_INJECTION: forcing a failure.
[  327.413923][T11857] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  327.420204][T11857] CPU: 3 UID: 0 PID: 11857 Comm: syz.2.1749 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  327.423126][T11857] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  327.425994][T11857] Call Trace:
[  327.426954][T11857]  <TASK>
[  327.427781][T11857]  dump_stack_lvl+0x16c/0x1f0
[  327.429078][T11857]  should_fail_ex+0x497/0x5b0
[  327.430357][T11857]  _copy_from_user+0x30/0xf0
[  327.431625][T11857]  copy_msghdr_from_user+0x99/0x160
[  327.433041][T11857]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  327.434625][T11857]  ? __pfx___lock_acquire+0x10/0x10
[  327.436042][T11857]  ___sys_sendmsg+0xff/0x1e0
[  327.437303][T11857]  ? __pfx____sys_sendmsg+0x10/0x10
[  327.438706][T11857]  ? lock_acquire+0x2f/0xb0
[  327.439943][T11857]  ? __fget_files+0x40/0x3f0
[  327.441205][T11857]  ? fdget+0x176/0x210
[  327.442314][T11857]  __sys_sendmsg+0x117/0x1f0
[  327.443573][T11857]  ? __pfx___sys_sendmsg+0x10/0x10
[  327.444942][T11857]  ? __fget_files+0x244/0x3f0
[  327.446230][T11857]  do_syscall_64+0xcd/0x250
[  327.447495][T11857]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  327.449091][T11857] RIP: 0033:0x7f266a17dff9
[  327.450308][T11857] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  327.455399][T11857] RSP: 002b:00007f266af7e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  327.457767][T11857] RAX: ffffffffffffffda RBX: 00007f266a335f80 RCX: 00007f266a17dff9
[  327.460034][T11857] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 000000000000000b
[  327.462147][T11857] RBP: 00007f266af7e090 R08: 0000000000000000 R09: 0000000000000000
[  327.464234][T11857] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  327.466340][T11857] R13: 0000000000000000 R14: 00007f266a335f80 R15: 00007ffc489ba298
[  327.468459][T11857]  </TASK>
[  327.474435][T11857] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[  327.520412][T11860] fuse: Unknown parameter '
'
[  327.532139][T11860] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[  327.568678][T11862] netlink: 'syz.2.1751': attribute type 1 has an invalid length.
[  327.619710][T11862] 8021q: adding VLAN 0 to HW filter on device batadv1
[  327.624194][T11862] bond2: (slave batadv1): Enslaving as a backup interface with an up link
[  327.710858][T11868] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1753'.
[  327.787885][T11871] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1753'.
[  327.996505][ T5377] usb 7-1: new high-speed USB device number 39 using dummy_hcd
[  328.156529][ T5377] usb 7-1: Using ep0 maxpacket: 8
[  328.160263][ T5377] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  328.162857][ T5377] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 64
[  328.169041][ T5377] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  328.171544][ T5377] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  328.174125][ T5377] usb 7-1: Product: 쌦琢цꌌ勽눃퍾덊낃鲄㟛웧䤅ⶺϑ㨁塣黮穎繩獢셃痴ᴁ羢疄㇙⿬먞眷࿀䦡湒纵鏩ጲ鮫돧傰汹
[  328.178514][ T5377] usb 7-1: Manufacturer: ꓾錍Ӯ阏繈⌼퍭᜿耔즒揖즵ḾീὝ聤
[  328.180721][ T5377] usb 7-1: SerialNumber: ᐊ
[  328.432486][T11877] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0
[  328.436946][   T39] audit: type=1800 audit(1729675078.882:1208): pid=11870 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=set_data cause=unavailable-hash-algorithm comm="syz.2.1754" name="/" dev="sockfs" ino=43950 res=0 errno=0
[  328.511516][ T5377] cdc_ncm 7-1:1.0: bind() failure
[  328.522227][ T5377] cdc_ncm 7-1:1.1: CDC Union missing and no IAD found
[  328.524449][ T5377] cdc_ncm 7-1:1.1: bind() failure
[  328.535391][ T5377] usb 7-1: USB disconnect, device number 39
[  329.087895][ T1295] usb 8-1: new high-speed USB device number 46 using dummy_hcd
[  329.108712][T11887] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  329.167725][   T39] audit: type=1400 audit(1729675079.612:1209): avc:  denied  { ioctl } for  pid=11886 comm="syz.2.1757" path="/dev/input/mice" dev="devtmpfs" ino=860 ioctlcmd=0x6420 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  329.200901][T11897] audit: audit_lost=1 audit_rate_limit=0 audit_backlog_limit=64
[  329.202901][T11897] audit: out of memory in audit_log_start
[  329.241821][   T39] audit: type=1400 audit(1729675079.682:1210): avc:  denied  { read } for  pid=11898 comm="syz.1.1761" name="file0" dev="9p" ino=36573108 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  329.248542][ T1295] usb 8-1: config index 0 descriptor too short (expected 43306, got 18)
[  329.250997][   T39] audit: type=1400 audit(1729675079.682:1211): avc:  denied  { open } for  pid=11898 comm="syz.1.1761" path="/453/file0/file0" dev="9p" ino=36573108 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  329.251693][ T1295] usb 8-1: config 153 has too many interfaces: 250, using maximum allowed: 32
[  329.253201][T11899] Process accounting resumed
[  329.258493][   T39] audit: type=1400 audit(1729675079.692:1212): avc:  denied  { append } for  pid=11898 comm="syz.1.1761" name="file0" dev="9p" ino=36573108 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  329.261756][ T1295] usb 8-1: config 153 has an invalid descriptor of length 62, skipping remainder of the config
[  329.263242][   T39] audit: type=1804 audit(1729675079.692:1213): pid=11899 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.1.1761" name="/newroot/453/file0/file0" dev="9p" ino=36573108 res=1 errno=0
[  329.273965][ T1295] usb 8-1: config 153 has 0 interfaces, different from the descriptor's value: 250
[  329.284664][ T1295] usb 8-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[  329.288279][ T1295] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  330.526470][   T25] usb 7-1: new high-speed USB device number 40 using dummy_hcd
[  330.686447][   T25] usb 7-1: Using ep0 maxpacket: 8
[  330.692695][   T25] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  330.695455][   T25] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 64
[  330.700457][   T25] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  330.703756][   T25] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  330.706522][   T25] usb 7-1: Product: 쌦琢цꌌ勽눃퍾덊낃鲄㟛웧䤅ⶺϑ㨁塣黮穎繩獢셃痴ᴁ羢疄㇙⿬먞眷࿀䦡湒纵鏩ጲ鮫돧傰汹
[  330.711516][   T25] usb 7-1: Manufacturer: ꓾錍Ӯ阏繈⌼퍭᜿耔즒揖즵ḾീὝ聤
[  330.714257][   T25] usb 7-1: SerialNumber: ᐊ
[  330.969416][   T39] audit: type=1800 audit(1729675081.412:1214): pid=11906 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=set_data cause=unavailable-hash-algorithm comm="syz.2.1764" name="/" dev="sockfs" ino=44354 res=0 errno=0
[  331.028997][   T25] cdc_ncm 7-1:1.0: bind() failure
[  331.032939][   T25] cdc_ncm 7-1:1.1: CDC Union missing and no IAD found
[  331.035372][   T25] cdc_ncm 7-1:1.1: bind() failure
[  331.040694][   T25] usb 7-1: USB disconnect, device number 40
[  331.192612][T11924] FAULT_INJECTION: forcing a failure.
[  331.192612][T11924] name failslab, interval 1, probability 0, space 0, times 0
[  331.196746][T11924] CPU: 3 UID: 0 PID: 11924 Comm: syz.1.1769 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  331.200207][T11924] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  331.203668][T11924] Call Trace:
[  331.204752][T11924]  <TASK>
[  331.205656][T11924]  dump_stack_lvl+0x16c/0x1f0
[  331.207160][T11924]  should_fail_ex+0x497/0x5b0
[  331.208669][T11924]  ? fs_reclaim_acquire+0xae/0x150
[  331.210285][T11924]  should_failslab+0xc2/0x120
[  331.211711][T11924]  __kmalloc_cache_noprof+0x6b/0x300
[  331.213359][T11924]  ? madvise_collapse+0x1cc/0xaf0
[  331.214948][T11924]  madvise_collapse+0x1cc/0xaf0
[  331.216472][T11924]  ? mas_prev_slot+0x4cb/0x2000
[  331.218098][T11924]  ? __pfx_madvise_collapse+0x10/0x10
[  331.219871][T11924]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  331.221770][T11924]  madvise_vma_behavior+0x390/0x19e0
[  331.223469][T11924]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  331.225270][T11924]  ? find_vma_prev+0xdb/0x160
[  331.226725][T11924]  ? __pfx_find_vma_prev+0x10/0x10
[  331.228429][T11924]  ? __pfx_rwsem_read_trylock+0x10/0x10
[  331.230216][T11924]  ? do_madvise+0x41a/0x760
[  331.231687][T11924]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  331.233480][T11924]  madvise_walk_vmas+0x1cf/0x2c0
[  331.235063][T11924]  ? __pfx_madvise_walk_vmas+0x10/0x10
[  331.236820][T11924]  ? __mutex_unlock_slowpath+0x164/0x650
[  331.238596][T11924]  do_madvise+0x2e1/0x760
[  331.239995][T11924]  ? __pfx_do_madvise+0x10/0x10
[  331.241560][T11924]  ? ksys_write+0x1ad/0x260
[  331.243020][T11924]  ? __pfx_ksys_write+0x10/0x10
[  331.244597][T11924]  __x64_sys_madvise+0xa9/0x110
[  331.246160][T11924]  ? lockdep_hardirqs_on+0x7c/0x110
[  331.247846][T11924]  do_syscall_64+0xcd/0x250
[  331.249312][T11924]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  331.251199][T11924] RIP: 0033:0x7f05fc77dff9
[  331.252623][T11924] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  331.258734][T11924] RSP: 002b:00007f05fd4c9038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  331.261400][T11924] RAX: ffffffffffffffda RBX: 00007f05fc936058 RCX: 00007f05fc77dff9
[  331.263901][T11924] RDX: 0000000000000019 RSI: 0000000000600003 RDI: 0000000020000000
[  331.266389][T11924] RBP: 00007f05fd4c9090 R08: 0000000000000000 R09: 0000000000000000
[  331.268974][T11924] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  331.271488][T11924] R13: 0000000000000000 R14: 00007f05fc936058 R15: 00007ffe3312d198
[  331.273993][T11924]  </TASK>
[  331.811236][ T1295] usb 8-1: string descriptor 0 read error: -71
[  331.836606][ T1295] usb 8-1: USB disconnect, device number 46
[  332.047424][T11938] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=11938 comm=syz.3.1773
[  332.090380][T11942] FAULT_INJECTION: forcing a failure.
[  332.090380][T11942] name failslab, interval 1, probability 0, space 0, times 0
[  332.093599][T11942] CPU: 3 UID: 0 PID: 11942 Comm: syz.2.1774 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  332.096340][T11942] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  332.099086][T11942] Call Trace:
[  332.099956][T11942]  <TASK>
[  332.100732][T11942]  dump_stack_lvl+0x16c/0x1f0
[  332.101968][T11942]  should_fail_ex+0x497/0x5b0
[  332.103197][T11942]  ? fs_reclaim_acquire+0xae/0x150
[  332.104518][T11942]  should_failslab+0xc2/0x120
[  332.105751][T11942]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  332.107167][T11942]  ? getname_flags.part.0+0x4c/0x550
[  332.108544][T11942]  getname_flags.part.0+0x4c/0x550
[  332.109878][T11942]  getname_flags+0x93/0xf0
[  332.111045][T11942]  user_path_at+0x24/0x60
[  332.112188][T11942]  __x64_sys_mount+0x1fc/0x320
[  332.113443][T11942]  ? __pfx___x64_sys_mount+0x10/0x10
[  332.114821][T11942]  do_syscall_64+0xcd/0x250
[  332.116024][T11942]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  332.117557][T11942] RIP: 0033:0x7f266a17dff9
[  332.118720][T11942] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  332.123571][T11942] RSP: 002b:00007f266af7e038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  332.125668][T11942] RAX: ffffffffffffffda RBX: 00007f266a335f80 RCX: 00007f266a17dff9
[  332.127638][T11942] RDX: 0000000020000080 RSI: 0000000020000100 RDI: 00000000200000c0
[  332.129653][T11942] RBP: 00007f266af7e090 R08: 0000000000000000 R09: 0000000000000000
[  332.131701][T11942] R10: 000000000000001f R11: 0000000000000246 R12: 0000000000000001
[  332.133737][T11942] R13: 0000000000000000 R14: 00007f266a335f80 R15: 00007ffc489ba298
[  332.135780][T11942]  </TASK>
[  332.243036][   T39] audit: type=1400 audit(1729675082.682:1215): avc:  denied  { write } for  pid=11948 comm="syz.2.1777" name="binder0" dev="binder" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  332.430218][T11954] loop6: detected capacity change from 0 to 524287999
[  332.441698][    C1] blk_print_req_error: 26 callbacks suppressed
[  332.441711][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  332.445619][    C1] buffer_io_error: 25 callbacks suppressed
[  332.445625][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  332.536806][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  332.539870][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  332.543414][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  332.546403][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  332.550088][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  332.553220][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  332.557623][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  332.559877][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  332.577546][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  332.579962][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  332.583906][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  332.586265][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  332.617179][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  332.620427][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  332.623128][T11954] ldm_validate_partition_table(): Disk read failed.
[  332.639171][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  332.641722][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  332.709167][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  332.711655][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  332.721934][T11954] Dev loop6: unable to read RDB block 0
[  332.729458][T11954]  loop6: unable to read partition table
[  332.733571][T11954] loop_reread_partitions: partition scan of loop6 (3��x��C�

) failed (rc=-5)
[  332.897498][ T1295] usb 7-1: new high-speed USB device number 41 using dummy_hcd
[  332.941314][T11966] No control pipe specified
[  333.058146][ T1295] usb 7-1: config index 0 descriptor too short (expected 43306, got 18)
[  333.061384][ T1295] usb 7-1: config 153 has too many interfaces: 250, using maximum allowed: 32
[  333.065173][ T1295] usb 7-1: config 153 has an invalid descriptor of length 62, skipping remainder of the config
[  333.069121][ T1295] usb 7-1: config 153 has 0 interfaces, different from the descriptor's value: 250
[  333.072562][ T1295] usb 7-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[  333.075976][ T1295] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  333.396456][ T5394] usb 8-1: new high-speed USB device number 47 using dummy_hcd
[  333.546460][ T5394] usb 8-1: Using ep0 maxpacket: 8
[  333.552053][ T5394] usb 8-1: config 179 has an invalid descriptor of length 0, skipping remainder of the config
[  333.555688][ T5394] usb 8-1: config 179 has 0 interfaces, different from the descriptor's value: 1
[  333.559111][ T5394] usb 8-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  333.562444][ T5394] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  335.473714][ T1295] usb 7-1: string descriptor 0 read error: -71
[  335.478280][ T1295] usb 7-1: USB disconnect, device number 41
[  335.603207][T11978] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  335.608892][T11978] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  335.774027][   T39] kauditd_printk_skb: 1 callbacks suppressed
[  335.774062][   T39] audit: type=1400 audit(1729675086.212:1217): avc:  denied  { create } for  pid=11986 comm="syz.2.1789" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_dnrt_socket permissive=1
[  335.804669][T11988] veth1_to_team: entered promiscuous mode
[  336.003962][T11990] FAULT_INJECTION: forcing a failure.
[  336.003962][T11990] name failslab, interval 1, probability 0, space 0, times 0
[  336.007474][T11990] CPU: 1 UID: 0 PID: 11990 Comm: syz.1.1787 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  336.010268][T11990] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  336.013023][T11990] Call Trace:
[  336.013906][T11990]  <TASK>
[  336.014684][T11990]  dump_stack_lvl+0x16c/0x1f0
[  336.015956][T11990]  should_fail_ex+0x497/0x5b0
[  336.017229][T11990]  ? fs_reclaim_acquire+0xae/0x150
[  336.018574][T11990]  should_failslab+0xc2/0x120
[  336.019836][T11990]  __kmalloc_cache_noprof+0x6b/0x300
[  336.021218][T11990]  ? madvise_collapse+0x1cc/0xaf0
[  336.022607][T11990]  madvise_collapse+0x1cc/0xaf0
[  336.023949][T11990]  ? mas_prev_slot+0x4cb/0x2000
[  336.025226][T11990]  ? __pfx_madvise_collapse+0x10/0x10
[  336.026632][T11990]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  336.028225][T11990]  madvise_vma_behavior+0x390/0x19e0
[  336.029631][T11990]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  336.031270][T11990]  ? find_vma_prev+0xdb/0x160
[  336.032534][T11990]  ? __pfx_find_vma_prev+0x10/0x10
[  336.033878][T11990]  ? __pfx_rwsem_read_trylock+0x10/0x10
[  336.035329][T11990]  ? do_madvise+0x41a/0x760
[  336.036532][T11990]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  336.038092][T11990]  madvise_walk_vmas+0x1cf/0x2c0
[  336.039460][T11990]  ? __pfx_madvise_walk_vmas+0x10/0x10
[  336.040894][T11990]  ? __mutex_unlock_slowpath+0x164/0x650
[  336.042359][T11990]  do_madvise+0x2e1/0x760
[  336.043573][T11990]  ? __pfx_do_madvise+0x10/0x10
[  336.044867][T11990]  ? ksys_write+0x1ad/0x260
[  336.046064][T11990]  ? __pfx_ksys_write+0x10/0x10
[  336.047472][T11990]  __x64_sys_madvise+0xa9/0x110
[  336.048772][T11990]  ? lockdep_hardirqs_on+0x7c/0x110
[  336.050149][T11990]  do_syscall_64+0xcd/0x250
[  336.051367][T11990]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.052951][T11990] RIP: 0033:0x7f05fc77dff9
[  336.054097][T11990] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  336.059179][T11990] RSP: 002b:00007f05fd4c9038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  336.061337][T11990] RAX: ffffffffffffffda RBX: 00007f05fc936058 RCX: 00007f05fc77dff9
[  336.063388][T11990] RDX: 0000000000000019 RSI: 0000000000600003 RDI: 0000000020000000
[  336.065427][T11990] RBP: 00007f05fd4c9090 R08: 0000000000000000 R09: 0000000000000000
[  336.067508][T11990] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  336.069843][T11990] R13: 0000000000000000 R14: 00007f05fc936058 R15: 00007ffe3312d198
[  336.071940][T11990]  </TASK>
[  336.110408][ T8016] usb 8-1: USB disconnect, device number 47
[  336.141543][T11995] pimreg: entered allmulticast mode
[  336.152199][T11999] binder_alloc: 11998: binder_alloc_buf, no vma
[  336.589939][T11986] veth1_to_team: left promiscuous mode
[  336.656968][ T1295] usb 8-1: new high-speed USB device number 48 using dummy_hcd
[  336.825481][ T1295] usb 8-1: config index 0 descriptor too short (expected 43306, got 18)
[  336.827939][ T1295] usb 8-1: config 153 has too many interfaces: 250, using maximum allowed: 32
[  336.830243][ T1295] usb 8-1: config 153 has an invalid descriptor of length 62, skipping remainder of the config
[  336.832907][ T1295] usb 8-1: config 153 has 0 interfaces, different from the descriptor's value: 250
[  336.835433][ T1295] usb 8-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[  336.838045][ T1295] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  338.186426][   T25] usb 6-1: new high-speed USB device number 44 using dummy_hcd
[  338.366410][   T25] usb 6-1: Using ep0 maxpacket: 8
[  338.369117][   T25] usb 6-1: config 179 has an invalid descriptor of length 0, skipping remainder of the config
[  338.371759][   T25] usb 6-1: config 179 has 0 interfaces, different from the descriptor's value: 1
[  338.374108][   T25] usb 6-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  338.376646][   T25] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  338.676250][T12036] binder_alloc: 12035: binder_alloc_buf, no vma
[  338.723241][T12038] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1802'.
[  339.216252][ T1295] usb 8-1: string descriptor 0 read error: -71
[  339.246157][ T1295] usb 8-1: USB disconnect, device number 48
[  340.209650][T12071] binder_alloc: 12070: binder_alloc_buf, no vma
[  340.303060][T12075] wireguard0: entered promiscuous mode
[  340.304651][T12075] wireguard0: entered allmulticast mode
[  340.826519][ T1295] usb 8-1: new high-speed USB device number 49 using dummy_hcd
[  340.912425][ T5394] usb 6-1: USB disconnect, device number 44
[  340.977785][ T1295] usb 8-1: config index 0 descriptor too short (expected 43306, got 18)
[  340.979995][ T1295] usb 8-1: config 153 has too many interfaces: 250, using maximum allowed: 32
[  340.982289][ T1295] usb 8-1: config 153 has an invalid descriptor of length 62, skipping remainder of the config
[  340.984946][ T1295] usb 8-1: config 153 has 0 interfaces, different from the descriptor's value: 250
[  340.988051][ T1295] usb 8-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[  340.990649][ T1295] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  341.004270][T12092] binder: 12091:12092 ioctl c0306201 0 returned -14
[  342.046515][ T5394] usb 7-1: new high-speed USB device number 42 using dummy_hcd
[  342.061599][T12109] wireguard0: entered promiscuous mode
[  342.063621][T12109] wireguard0: entered allmulticast mode
[  342.125761][T12117] binder: 12116:12117 ioctl c0306201 0 returned -14
[  342.167010][T12119] FAULT_INJECTION: forcing a failure.
[  342.167010][T12119] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  342.170367][T12119] CPU: 0 UID: 0 PID: 12119 Comm: syz.1.1826 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  342.173138][T12119] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  342.175911][T12119] Call Trace:
[  342.176791][T12119]  <TASK>
[  342.177572][T12119]  dump_stack_lvl+0x16c/0x1f0
[  342.178809][T12119]  should_fail_ex+0x497/0x5b0
[  342.180052][T12119]  ? page_copy_sane+0xcd/0x2d0
[  342.181314][T12119]  copy_page_from_iter_atomic+0x247/0x1560
[  342.182846][T12119]  ? __pfx_copy_page_from_iter_atomic+0x10/0x10
[  342.184483][T12119]  ? shmem_write_begin+0x177/0x300
[  342.185808][T12119]  ? __pfx_fault_in_readable+0x10/0x10
[  342.187233][T12119]  ? __pfx_shmem_write_begin+0x10/0x10
[  342.188674][T12119]  generic_perform_write+0x4a1/0x920
[  342.190074][T12119]  ? __pfx_generic_perform_write+0x10/0x10
[  342.191617][T12119]  ? __pfx_generic_write_checks+0x10/0x10
[  342.193122][T12119]  ? __pfx___lock_acquire+0x10/0x10
[  342.194492][T12119]  shmem_file_write_iter+0x10e/0x140
[  342.195901][T12119]  do_iter_readv_writev+0x532/0x7f0
[  342.197283][T12119]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  342.198741][T12119]  ? rcu_is_watching+0x12/0xc0
[  342.200003][T12119]  vfs_writev+0x363/0xdd0
[  342.201121][T12119]  ? ksys_write+0x12f/0x260
[  342.202309][T12119]  ? __pfx_vfs_writev+0x10/0x10
[  342.203591][T12119]  ? find_held_lock+0x2d/0x110
[  342.204804][T12119]  ? __pfx_lock_release+0x10/0x10
[  342.206096][T12119]  ? trace_lock_acquire+0x14a/0x1d0
[  342.207497][T12119]  ? __fget_files+0x244/0x3f0
[  342.208788][T12119]  ? do_pwritev+0x1b4/0x270
[  342.210146][T12119]  do_pwritev+0x1b4/0x270
[  342.211587][T12119]  ? __pfx_do_pwritev+0x10/0x10
[  342.213201][T12119]  ? ksys_write+0x1ad/0x260
[  342.214708][T12119]  ? __pfx_ksys_write+0x10/0x10
[  342.216367][T12119]  __x64_sys_pwritev2+0xef/0x160
[  342.218012][T12119]  do_syscall_64+0xcd/0x250
[  342.219582][T12119]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.221503][T12119] RIP: 0033:0x7f05fc77dff9
[  342.222965][T12119] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  342.229430][T12119] RSP: 002b:00007f05fd4ea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  342.232342][T12119] RAX: ffffffffffffffda RBX: 00007f05fc935f80 RCX: 00007f05fc77dff9
[  342.234904][T12119] RDX: 0000000000000001 RSI: 0000000020000680 RDI: 0000000000000003
[  342.237545][T12119] RBP: 00007f05fd4ea090 R08: 0000000000000000 R09: 0000000000000000
[  342.240432][T12119] R10: 0000000006000000 R11: 0000000000000246 R12: 0000000000000002
[  342.243029][T12119] R13: 0000000000000000 R14: 00007f05fc935f80 R15: 00007ffe3312d198
[  342.245659][T12119]  </TASK>
[  342.267570][ T5394] usb 7-1: Using ep0 maxpacket: 8
[  342.270406][ T5394] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  342.273587][ T5394] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  342.276625][ T5394] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  342.279989][ T5394] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  342.284175][ T5394] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  342.287292][ T5394] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  342.495015][ T5394] usb 7-1: GET_CAPABILITIES returned 0
[  342.496491][ T5394] usbtmc 7-1:16.0: can't read capabilities
[  342.698441][ T5394] usb 7-1: USB disconnect, device number 42
[  343.072610][T12133] syzkaller0: entered promiscuous mode
[  343.074273][T12133] syzkaller0: entered allmulticast mode
[  343.335192][T12142] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  343.338638][T12142] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  343.342112][T12142] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  343.398290][ T1295] usb 8-1: string descriptor 0 read error: -71
[  343.406692][ T1295] usb 8-1: USB disconnect, device number 49
[  343.438456][T12146] binder: 12145:12146 ioctl c0306201 0 returned -14
[  343.571235][T12151] FAULT_INJECTION: forcing a failure.
[  343.571235][T12151] name failslab, interval 1, probability 0, space 0, times 0
[  343.575903][T12151] CPU: 0 UID: 0 PID: 12151 Comm: syz.2.1835 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  343.579577][T12151] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  343.582920][T12151] Call Trace:
[  343.584109][T12151]  <TASK>
[  343.585095][T12151]  dump_stack_lvl+0x16c/0x1f0
[  343.586709][T12151]  should_fail_ex+0x497/0x5b0
[  343.588206][T12151]  ? fs_reclaim_acquire+0xae/0x150
[  343.589503][T12151]  should_failslab+0xc2/0x120
[  343.590699][T12151]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  343.592268][T12151]  ? security_file_alloc+0x34/0x2b0
[  343.593623][T12151]  ? rcu_is_watching+0x12/0xc0
[  343.594873][T12151]  security_file_alloc+0x34/0x2b0
[  343.596158][T12151]  init_file+0x93/0x230
[  343.597373][T12151]  alloc_empty_file+0x91/0x1e0
[  343.598621][T12151]  path_openat+0xe1/0x2d60
[  343.599781][T12151]  ? hlock_class+0x4e/0x130
[  343.600967][T12151]  ? __lock_acquire+0x163e/0x3ce0
[  343.602630][T12151]  ? __pfx_path_openat+0x10/0x10
[  343.604419][T12151]  ? __pfx___lock_acquire+0x10/0x10
[  343.606322][T12151]  do_filp_open+0x1dc/0x430
[  343.607875][T12151]  ? __pfx_do_filp_open+0x10/0x10
[  343.609609][T12151]  ? find_held_lock+0x2d/0x110
[  343.611298][T12151]  ? _raw_spin_unlock+0x28/0x50
[  343.613018][T12151]  ? alloc_fd+0x2d7/0x6c0
[  343.614514][T12151]  do_sys_openat2+0x17a/0x1e0
[  343.615947][T12151]  ? __pfx_do_sys_openat2+0x10/0x10
[  343.617634][T12151]  ? __fget_files+0x244/0x3f0
[  343.619325][T12151]  __x64_sys_openat+0x175/0x210
[  343.621045][T12151]  ? __pfx___x64_sys_openat+0x10/0x10
[  343.622882][T12151]  ? ksys_write+0x1ad/0x260
[  343.624513][T12151]  do_syscall_64+0xcd/0x250
[  343.626144][T12151]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.627888][T12151] RIP: 0033:0x7f266a17c990
[  343.629049][T12151] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 19 8f 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 6c 8f 02 00 8b 44
[  343.633933][T12151] RSP: 002b:00007f266af7df10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  343.636044][T12151] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f266a17c990
[  343.638016][T12151] RDX: 0000000000000002 RSI: 00007f266af7dfa0 RDI: 00000000ffffff9c
[  343.640063][T12151] RBP: 00007f266af7dfa0 R08: 0000000000000000 R09: 0000000000000000
[  343.642078][T12151] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  343.644094][T12151] R13: 0000000000000000 R14: 00007f266a335f80 R15: 00007ffc489ba298
[  343.646086][T12151]  </TASK>
[  343.956504][   T25] usb 7-1: new high-speed USB device number 43 using dummy_hcd
[  344.133124][   T25] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  344.136927][   T25] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  344.140610][   T25] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  344.143884][   T25] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  344.148244][   T25] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  344.151300][   T25] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  344.167198][   T25] usb 7-1: config 0 descriptor??
[  344.658209][   T39] audit: type=1400 audit(1729675095.102:1218): avc:  denied  { read } for  pid=12153 comm="syz.2.1836" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  344.836527][ T5394] usb 8-1: new high-speed USB device number 50 using dummy_hcd
[  344.986475][ T5394] usb 8-1: Using ep0 maxpacket: 8
[  344.989932][ T5394] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  344.993375][ T5394] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  344.997132][ T5394] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  345.001240][ T5394] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  345.005751][ T5394] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  345.009230][ T5394] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  345.218149][ T5394] usb 8-1: GET_CAPABILITIES returned 0
[  345.220003][ T5394] usbtmc 8-1:16.0: can't read capabilities
[  345.230334][   T25] usbhid 7-1:0.0: can't add hid device: -71
[  345.231907][   T25] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  345.234883][   T25] usb 7-1: USB disconnect, device number 43
[  345.305444][T12159] FAULT_INJECTION: forcing a failure.
[  345.305444][T12159] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  345.309904][T12159] CPU: 0 UID: 0 PID: 12159 Comm: syz.1.1838 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  345.313597][T12159] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  345.317363][T12159] Call Trace:
[  345.318526][T12159]  <TASK>
[  345.319557][T12159]  dump_stack_lvl+0x16c/0x1f0
[  345.320865][T12159]  should_fail_ex+0x497/0x5b0
[  345.322429][T12159]  _copy_from_user+0x30/0xf0
[  345.323941][T12159]  video_usercopy+0xed4/0x1600
[  345.325534][T12159]  ? __pfx___video_do_ioctl+0x10/0x10
[  345.327056][T12159]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  345.329087][T12159]  ? __pfx_video_usercopy+0x10/0x10
[  345.330419][T12159]  v4l2_ioctl+0x1ba/0x250
[  345.331545][T12159]  ? __pfx_v4l2_ioctl+0x10/0x10
[  345.332845][T12159]  __x64_sys_ioctl+0x18f/0x220
[  345.334267][T12159]  do_syscall_64+0xcd/0x250
[  345.335940][T12159]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  345.338136][T12159] RIP: 0033:0x7f05fc77dff9
[  345.339780][T12159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  345.345535][T12159] RSP: 002b:00007f05fd4ea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  345.347849][T12159] RAX: ffffffffffffffda RBX: 00007f05fc935f80 RCX: 00007f05fc77dff9
[  345.350569][T12159] RDX: 0000000020000480 RSI: 00000000c0405602 RDI: 0000000000000003
[  345.353368][T12159] RBP: 00007f05fd4ea090 R08: 0000000000000000 R09: 0000000000000000
[  345.356119][T12159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  345.358859][T12159] R13: 0000000000000000 R14: 00007f05fc935f80 R15: 00007ffe3312d198
[  345.361514][T12159]  </TASK>
[  345.362344][    C0] vkms_vblank_simulate: vblank timer overrun
[  345.423935][   T25] usb 8-1: USB disconnect, device number 50
[  345.926527][  T983] usb 6-1: new high-speed USB device number 45 using dummy_hcd
[  346.087852][  T983] usb 6-1: config index 0 descriptor too short (expected 43306, got 18)
[  346.090382][  T983] usb 6-1: config 153 has too many interfaces: 250, using maximum allowed: 32
[  346.092929][  T983] usb 6-1: config 153 has an invalid descriptor of length 62, skipping remainder of the config
[  346.096036][  T983] usb 6-1: config 153 has 0 interfaces, different from the descriptor's value: 250
[  346.100917][  T983] usb 6-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[  346.103960][T12181] FAULT_INJECTION: forcing a failure.
[  346.103960][T12181] name fail_futex, interval 1, probability 0, space 0, times 0
[  346.104032][T12181] CPU: 3 UID: 0 PID: 12181 Comm: syz.3.1844 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  346.104066][T12181] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  346.104079][T12181] Call Trace:
[  346.104086][T12181]  <TASK>
[  346.104094][T12181]  dump_stack_lvl+0x16c/0x1f0
[  346.108854][  T983] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  346.111563][T12181]  should_fail_ex+0x497/0x5b0
[  346.123215][T12181]  get_futex_key+0xb89/0x1090
[  346.124771][T12181]  ? __pfx_get_futex_key+0x10/0x10
[  346.126425][T12181]  futex_wait_multiple_setup+0x18c/0x6b0
[  346.128274][T12181]  ? __might_fault+0xe3/0x190
[  346.129863][T12181]  ? __pfx_futex_wait_multiple_setup+0x10/0x10
[  346.131919][T12181]  ? _copy_from_user+0x5d/0xf0
[  346.133523][T12181]  futex_wait_multiple+0xe7/0x460
[  346.135218][T12181]  ? __pfx_futex_wait_multiple+0x10/0x10
[  346.137099][T12181]  ? trace_kmalloc+0x2d/0xe0
[  346.138637][T12181]  ? __kmalloc_noprof+0x207/0x400
[  346.140353][T12181]  __do_sys_futex_waitv+0x17f/0x2c0
[  346.142119][T12181]  ? __pfx___do_sys_futex_waitv+0x10/0x10
[  346.144081][T12181]  do_syscall_64+0xcd/0x250
[  346.145671][T12181]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.147723][T12181] RIP: 0033:0x7fd2b4b7dff9
[  346.149247][T12181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  346.155778][T12181] RSP: 002b:00007fd2b59de038 EFLAGS: 00000246 ORIG_RAX: 00000000000001c1
[  346.158569][T12181] RAX: ffffffffffffffda RBX: 00007fd2b4d35f80 RCX: 00007fd2b4b7dff9
[  346.161226][T12181] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020000280
[  346.163889][T12181] RBP: 00007fd2b59de090 R08: 0000000000000000 R09: 0000000000000000
[  346.166433][T12181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  346.169024][T12181] R13: 0000000000000000 R14: 00007fd2b4d35f80 R15: 00007fff682a5ec8
[  346.171636][T12181]  </TASK>
[  347.132625][T12188] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1846'.
[  347.197686][T12191] FAULT_INJECTION: forcing a failure.
[  347.197686][T12191] name failslab, interval 1, probability 0, space 0, times 0
[  347.202168][T12191] CPU: 3 UID: 0 PID: 12191 Comm: syz.3.1847 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  347.205836][T12191] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  347.209508][T12191] Call Trace:
[  347.210655][T12191]  <TASK>
[  347.211707][T12191]  dump_stack_lvl+0x16c/0x1f0
[  347.213372][T12191]  should_fail_ex+0x497/0x5b0
[  347.215015][T12191]  ? fs_reclaim_acquire+0xae/0x150
[  347.216765][T12191]  should_failslab+0xc2/0x120
[  347.218369][T12191]  __kmalloc_cache_noprof+0x6b/0x300
[  347.220139][T12191]  ? register_netdevice+0x504/0x1e90
[  347.221924][T12191]  register_netdevice+0x504/0x1e90
[  347.223684][T12191]  ? ip_tunnel_find+0x1fa/0x420
[  347.225334][T12191]  ? __pfx_register_netdevice+0x10/0x10
[  347.227213][T12191]  ip_tunnel_newlink+0x2e6/0x920
[  347.228974][T12191]  ? __pfx_ip_tunnel_newlink+0x10/0x10
[  347.230855][T12191]  ? __asan_memset+0x23/0x50
[  347.232434][T12191]  ipgre_newlink+0x143/0x150
[  347.234013][T12191]  ? __pfx_ipgre_newlink+0x10/0x10
[  347.235830][T12191]  ? alloc_netdev_mqs+0xe3e/0x1420
[  347.237640][T12191]  ? rtnl_create_link+0xa51/0xfa0
[  347.239359][T12191]  ? __pfx_ipgre_newlink+0x10/0x10
[  347.240959][T12191]  __rtnl_newlink+0x1197/0x1920
[  347.242606][T12191]  ? __pfx___rtnl_newlink+0x10/0x10
[  347.244451][T12191]  rtnl_newlink+0x67/0xa0
[  347.245965][T12191]  ? __pfx_rtnl_newlink+0x10/0x10
[  347.247754][T12191]  rtnetlink_rcv_msg+0x3c7/0xea0
[  347.249476][T12191]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  347.251326][T12191]  netlink_rcv_skb+0x16b/0x440
[  347.252882][T12191]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  347.254714][T12191]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  347.256350][T12191]  ? netlink_deliver_tap+0x1ae/0xd90
[  347.258186][T12191]  netlink_unicast+0x53c/0x7f0
[  347.259870][T12191]  ? __pfx_netlink_unicast+0x10/0x10
[  347.261716][T12191]  netlink_sendmsg+0x8b8/0xd70
[  347.263437][T12191]  ? __pfx_netlink_sendmsg+0x10/0x10
[  347.265120][T12191]  ? __import_iovec+0x1fd/0x6e0
[  347.266846][T12191]  ____sys_sendmsg+0xaaf/0xc90
[  347.268473][T12191]  ? copy_msghdr_from_user+0x10b/0x160
[  347.270269][T12191]  ? __pfx_____sys_sendmsg+0x10/0x10
[  347.272111][T12191]  ? __pfx___lock_acquire+0x10/0x10
[  347.273808][T12191]  ___sys_sendmsg+0x135/0x1e0
[  347.275330][T12191]  ? __pfx____sys_sendmsg+0x10/0x10
[  347.277081][T12191]  ? lock_acquire+0x2f/0xb0
[  347.278613][T12191]  ? __fget_files+0x40/0x3f0
[  347.280223][T12191]  ? fdget+0x176/0x210
[  347.281622][T12191]  __sys_sendmsg+0x117/0x1f0
[  347.283184][T12191]  ? __pfx___sys_sendmsg+0x10/0x10
[  347.284926][T12191]  ? __fget_files+0x244/0x3f0
[  347.286554][T12191]  do_syscall_64+0xcd/0x250
[  347.288119][T12191]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  347.290155][T12191] RIP: 0033:0x7fd2b4b7dff9
[  347.291688][T12191] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  347.298224][T12191] RSP: 002b:00007fd2b59de038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  347.300817][T12191] RAX: ffffffffffffffda RBX: 00007fd2b4d35f80 RCX: 00007fd2b4b7dff9
[  347.303476][T12191] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[  347.306188][T12191] RBP: 00007fd2b59de090 R08: 0000000000000000 R09: 0000000000000000
[  347.308897][T12191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  347.311602][T12191] R13: 0000000000000000 R14: 00007fd2b4d35f80 R15: 00007fff682a5ec8
[  347.314899][T12191]  </TASK>
[  347.366062][ T5394] kernel write not supported for file /sequencer2 (pid: 5394 comm: kworker/0:5)
[  347.805570][T12206] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  347.812872][T12206] CIFS mount error: No usable UNC path provided in device string!
[  347.812872][T12206] 
[  347.821071][T12206] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  347.867251][   T39] audit: type=1400 audit(1729675098.312:1219): avc:  denied  { map } for  pid=12210 comm="syz.3.1853" path="socket:[42932]" dev="sockfs" ino=42932 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  347.949747][ T5377] IPVS: starting estimator thread 0...
[  348.036552][T12215] IPVS: using max 34 ests per chain, 81600 per kthread
[  348.372027][T12218] sp0: Synchronizing with TNC
[  348.386051][T12218] sp0: Found TNC
[  348.428340][T12221] FAULT_INJECTION: forcing a failure.
[  348.428340][T12221] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  348.431806][T12221] CPU: 2 UID: 0 PID: 12221 Comm: syz.3.1856 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  348.434901][T12221] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  348.437767][T12221] Call Trace:
[  348.438965][T12221]  <TASK>
[  348.440040][T12221]  dump_stack_lvl+0x16c/0x1f0
[  348.441752][T12221]  should_fail_ex+0x497/0x5b0
[  348.443411][T12221]  _copy_from_iter+0x2a1/0x1540
[  348.445039][T12221]  ? __pfx__copy_from_iter+0x10/0x10
[  348.446947][T12221]  ? __pfx_lock_release+0x10/0x10
[  348.448742][T12221]  ? kernel_fpu_end+0x45/0x70
[  348.450552][T12221]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  348.452536][T12221]  write_pool_user+0xe9/0x2f0
[  348.454182][T12221]  ? __pfx_write_pool_user+0x10/0x10
[  348.455719][T12221]  ? bpf_lsm_file_permission+0x9/0x10
[  348.457314][T12221]  ? security_file_permission+0x71/0x210
[  348.459333][T12221]  vfs_write+0x6b5/0x1140
[  348.460887][T12221]  ? __pfx_random_write_iter+0x10/0x10
[  348.462801][T12221]  ? trace_lock_acquire+0x14a/0x1d0
[  348.464705][T12221]  ? __pfx_vfs_write+0x10/0x10
[  348.466445][T12221]  ? __fget_files+0x40/0x3f0
[  348.468089][T12221]  ksys_write+0x12f/0x260
[  348.469221][T12221]  ? __pfx_ksys_write+0x10/0x10
[  348.470494][T12221]  do_syscall_64+0xcd/0x250
[  348.471713][T12221]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.473260][T12221] RIP: 0033:0x7fd2b4b7dff9
[  348.474435][T12221] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  348.481159][T12221] RSP: 002b:00007fd2b59de038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  348.484097][T12221] RAX: ffffffffffffffda RBX: 00007fd2b4d35f80 RCX: 00007fd2b4b7dff9
[  348.486707][T12221] RDX: 0000000000010010 RSI: 0000000020000040 RDI: 0000000000000003
[  348.488744][T12221] RBP: 00007fd2b59de090 R08: 0000000000000000 R09: 0000000000000000
[  348.490758][T12221] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  348.492888][T12221] R13: 0000000000000000 R14: 00007fd2b4d35f80 R15: 00007fff682a5ec8
[  348.495521][T12221]  </TASK>
[  348.523676][  T983] usb 6-1: string descriptor 0 read error: -71
[  348.525772][  T983] usb 6-1: USB disconnect, device number 45
[  348.560139][T12230] vti0: entered promiscuous mode
[  348.561929][T12230] vti0: entered allmulticast mode
[  348.695601][   T39] audit: type=1400 audit(1729675099.132:1220): avc:  denied  { mounton } for  pid=12243 comm="syz.3.1865" path="/534/file0" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  349.036493][  T983] usb 6-1: new high-speed USB device number 46 using dummy_hcd
[  349.206453][  T983] usb 6-1: Using ep0 maxpacket: 8
[  349.212023][  T983] usb 6-1: config 179 has an invalid interface number: 65 but max is 0
[  349.214277][  T983] usb 6-1: config 179 has an invalid descriptor of length 0, skipping remainder of the config
[  349.217041][  T983] usb 6-1: config 179 has no interface number 0
[  349.218691][  T983] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0
[  349.221368][  T983] usb 6-1: config 179 interface 65 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 23
[  349.224826][  T983] usb 6-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  349.227300][ T1295] usb 8-1: new high-speed USB device number 51 using dummy_hcd
[  349.229358][  T983] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  349.427801][ T1295] usb 8-1: config index 0 descriptor too short (expected 43306, got 18)
[  349.430078][ T1295] usb 8-1: config 153 has too many interfaces: 250, using maximum allowed: 32
[  349.432342][ T1295] usb 8-1: config 153 has an invalid descriptor of length 62, skipping remainder of the config
[  349.434940][ T1295] usb 8-1: config 153 has 0 interfaces, different from the descriptor's value: 250
[  349.437987][ T1295] usb 8-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[  349.440943][ T1295] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  351.602728][ T5394] usb 6-1: USB disconnect, device number 46
[  351.754381][ T1295] usb 8-1: string descriptor 0 read error: -71
[  351.778369][ T1295] usb 8-1: USB disconnect, device number 51
[  351.938328][T12284] input: syz1 as /devices/virtual/input/input28
[  351.956499][ T5394] usb 6-1: new high-speed USB device number 47 using dummy_hcd
[  352.077448][   T39] audit: type=1400 audit(1729675102.522:1221): avc:  denied  { getopt } for  pid=12286 comm="syz.2.1875" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  352.116566][ T5394] usb 6-1: Using ep0 maxpacket: 8
[  352.120421][ T5394] usb 6-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  352.123796][ T5394] usb 6-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 64
[  352.129079][ T5394] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  352.131980][ T5394] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  352.134529][ T5394] usb 6-1: Product: 쌦琢цꌌ勽눃퍾덊낃鲄㟛웧䤅ⶺϑ㨁塣黮穎繩獢셃痴ᴁ羢疄㇙⿬먞眷࿀䦡湒纵鏩ጲ鮫돧傰汹
[  352.139919][ T5394] usb 6-1: Manufacturer: ꓾錍Ӯ阏繈⌼퍭᜿耔즒揖즵ḾീὝ聤
[  352.142738][ T5394] usb 6-1: SerialNumber: ᐊ
[  352.150824][T12291] FAULT_INJECTION: forcing a failure.
[  352.150824][T12291] name failslab, interval 1, probability 0, space 0, times 0
[  352.153980][T12291] CPU: 2 UID: 0 PID: 12291 Comm: syz.3.1876 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  352.156666][T12291] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  352.159405][T12291] Call Trace:
[  352.160243][T12291]  <TASK>
[  352.161035][T12291]  dump_stack_lvl+0x16c/0x1f0
[  352.162308][T12291]  should_fail_ex+0x497/0x5b0
[  352.163578][T12291]  ? fs_reclaim_acquire+0xae/0x150
[  352.164948][T12291]  should_failslab+0xc2/0x120
[  352.166208][T12291]  __kmalloc_noprof+0xcb/0x400
[  352.167512][T12291]  ? d_absolute_path+0x137/0x1b0
[  352.168838][T12291]  tomoyo_encode2+0x100/0x3e0
[  352.170099][T12291]  tomoyo_encode+0x29/0x50
[  352.171301][T12291]  tomoyo_realpath_from_path+0x19d/0x720
[  352.172796][T12291]  tomoyo_path_number_perm+0x245/0x590
[  352.174245][T12291]  ? tomoyo_path_number_perm+0x232/0x590
[  352.175755][T12291]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  352.177359][T12291]  ? kmem_cache_free+0x152/0x4b0
[  352.178684][T12291]  ? trace_lock_acquire+0x14a/0x1d0
[  352.180028][T12291]  ? lock_acquire+0x2f/0xb0
[  352.181258][T12291]  ? __fget_files+0x40/0x3f0
[  352.182494][T12291]  ? __fget_files+0x244/0x3f0
[  352.183769][T12291]  security_file_ioctl+0x9b/0x240
[  352.185113][T12291]  __x64_sys_ioctl+0xbb/0x220
[  352.186375][T12291]  do_syscall_64+0xcd/0x250
[  352.187729][T12291]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  352.189298][T12291] RIP: 0033:0x7fd2b4b7dbfb
[  352.190492][T12291] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[  352.195557][T12291] RSP: 002b:00007fd2b59dc490 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  352.197756][T12291] RAX: ffffffffffffffda RBX: 00007fd2b59dcbe0 RCX: 00007fd2b4b7dbfb
[  352.199850][T12291] RDX: 00007fd2b59dcbe0 RSI: 00000000c008ae05 RDI: 0000000000000007
[  352.201850][T12291] RBP: 0000000020fe8000 R08: 0000000000000000 R09: 0000000000000007
[  352.203763][T12291] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  352.205788][T12291] R13: 0000000000000063 R14: 0000000020fe7000 R15: 0000000020fe8800
[  352.207849][T12291]  </TASK>
[  352.209064][T12291] ERROR: Out of memory at tomoyo_realpath_from_path.
[  352.389073][   T39] audit: type=1800 audit(1729675102.832:1222): pid=12277 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=set_data cause=unavailable-hash-algorithm comm="syz.1.1871" name="/" dev="sockfs" ino=47161 res=0 errno=0
[  352.448609][ T5394] cdc_ncm 6-1:1.0: bind() failure
[  352.451448][ T5394] cdc_ncm 6-1:1.1: CDC Union missing and no IAD found
[  352.453252][ T5394] cdc_ncm 6-1:1.1: bind() failure
[  352.456054][ T5394] usb 6-1: USB disconnect, device number 47
[  352.566480][    T9] usb 8-1: new high-speed USB device number 52 using dummy_hcd
[  352.716508][    T9] usb 8-1: Using ep0 maxpacket: 8
[  352.720511][    T9] usb 8-1: config 179 has an invalid interface number: 65 but max is 0
[  352.723525][    T9] usb 8-1: config 179 has an invalid descriptor of length 0, skipping remainder of the config
[  352.727665][    T9] usb 8-1: config 179 has no interface number 0
[  352.729827][    T9] usb 8-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0
[  352.733563][    T9] usb 8-1: config 179 interface 65 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 23
[  352.738980][    T9] usb 8-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  352.742205][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  355.226573][  T983] usb 6-1: new high-speed USB device number 48 using dummy_hcd
[  355.289411][ T8016] usb 8-1: USB disconnect, device number 52
[  355.409246][  T983] usb 6-1: config index 0 descriptor too short (expected 43306, got 18)
[  355.412403][  T983] usb 6-1: config 153 has too many interfaces: 250, using maximum allowed: 32
[  355.415533][  T983] usb 6-1: config 153 has an invalid descriptor of length 62, skipping remainder of the config
[  355.423833][  T983] usb 6-1: config 153 has 0 interfaces, different from the descriptor's value: 250
[  355.427470][  T983] usb 6-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[  355.430742][  T983] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  355.480654][T12316] FAULT_INJECTION: forcing a failure.
[  355.480654][T12316] name failslab, interval 1, probability 0, space 0, times 0
[  355.484684][T12316] CPU: 3 UID: 0 PID: 12316 Comm: syz.3.1883 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  355.488064][T12316] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  355.491440][T12316] Call Trace:
[  355.492445][T12316]  <TASK>
[  355.493348][T12316]  dump_stack_lvl+0x16c/0x1f0
[  355.494909][T12316]  should_fail_ex+0x497/0x5b0
[  355.496527][T12316]  ? fs_reclaim_acquire+0xae/0x150
[  355.498155][T12316]  should_failslab+0xc2/0x120
[  355.499737][T12316]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  355.501356][T12316]  ? __kernfs_new_node+0xd3/0x890
[  355.502985][T12316]  __kernfs_new_node+0xd3/0x890
[  355.504657][T12316]  ? __pfx___kernfs_new_node+0x10/0x10
[  355.506648][T12316]  ? __pfx_lock_release+0x10/0x10
[  355.508255][T12316]  ? kernfs_add_one+0x39d/0x520
[  355.509791][T12316]  ? up_write+0x1b2/0x520
[  355.511058][T12316]  kernfs_new_node+0x186/0x240
[  355.512558][T12316]  __kernfs_create_file+0x53/0x350
[  355.514110][T12316]  sysfs_add_file_mode_ns+0x1ff/0x3b0
[  355.515888][T12316]  internal_create_group+0x565/0xe50
[  355.517517][T12316]  ? __pfx_internal_create_group+0x10/0x10
[  355.519490][T12316]  ? kernfs_create_link+0x1bd/0x240
[  355.521346][T12316]  internal_create_groups+0x9d/0x150
[  355.523072][T12316]  device_add+0x733/0x1a70
[  355.524310][T12316]  ? __pfx_device_add+0x10/0x10
[  355.525915][T12316]  ? __pfx___mutex_lock+0x10/0x10
[  355.527617][T12316]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  355.529527][T12316]  input_register_device+0x7e8/0x1110
[  355.531426][T12316]  ? __pfx_uinput_ioctl+0x10/0x10
[  355.533043][T12316]  uinput_ioctl_handler.isra.0+0x130c/0x1d70
[  355.534919][T12316]  ? ioctl_has_perm.constprop.0.isra.0+0x2f3/0x460
[  355.536931][T12316]  ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10
[  355.539118][T12316]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  355.541595][T12316]  ? trace_lock_acquire+0x14a/0x1d0
[  355.543518][T12316]  ? selinux_file_ioctl+0x180/0x270
[  355.545379][T12316]  ? selinux_file_ioctl+0xb4/0x270
[  355.547235][T12316]  ? __pfx_uinput_ioctl+0x10/0x10
[  355.549080][T12316]  __x64_sys_ioctl+0x18f/0x220
[  355.550974][T12316]  do_syscall_64+0xcd/0x250
[  355.552672][T12316]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.554853][T12316] RIP: 0033:0x7fd2b4b7dff9
[  355.556484][T12316] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  355.563039][T12316] RSP: 002b:00007fd2b59bd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  355.565801][T12316] RAX: ffffffffffffffda RBX: 00007fd2b4d36058 RCX: 00007fd2b4b7dff9
[  355.568513][T12316] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000009
[  355.571289][T12316] RBP: 00007fd2b59bd090 R08: 0000000000000000 R09: 0000000000000000
[  355.574158][T12316] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  355.576953][T12316] R13: 0000000000000001 R14: 00007fd2b4d36058 R15: 00007fff682a5ec8
[  355.579742][T12316]  </TASK>
[  355.977233][T12318] random: crng reseeded on system resumption
[  356.154610][   T39] audit: type=1400 audit(1729675106.592:1223): avc:  denied  { ioctl } for  pid=12317 comm="syz.2.1884" path="/dev/snapshot" dev="devtmpfs" ino=98 ioctlcmd=0x3311 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  356.561356][T12322] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1885'.
[  356.567784][T12322] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  356.736781][ T5346] bond0: (slave syz_tun): Releasing backup interface
[  356.989876][ T5344] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  356.998543][ T5344] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  357.001112][ T5344] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  357.007694][ T5344] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  357.011811][ T5344] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  357.013892][ T5344] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  357.103128][T12325] chnl_net:caif_netlink_parms(): no params data found
[  357.145159][T12325] bridge0: port 1(bridge_slave_0) entered blocking state
[  357.147598][T12325] bridge0: port 1(bridge_slave_0) entered disabled state
[  357.149706][T12325] bridge_slave_0: entered allmulticast mode
[  357.152153][T12325] bridge_slave_0: entered promiscuous mode
[  357.156123][T12325] bridge0: port 2(bridge_slave_1) entered blocking state
[  357.158890][T12325] bridge0: port 2(bridge_slave_1) entered disabled state
[  357.161257][T12325] bridge_slave_1: entered allmulticast mode
[  357.163392][T12325] bridge_slave_1: entered promiscuous mode
[  357.185167][T12325] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  357.189006][T12325] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  357.213276][T12325] team0: Port device team_slave_0 added
[  357.220143][T12325] team0: Port device team_slave_1 added
[  357.240583][T12325] batman_adv: batadv0: Adding interface: batadv_slave_0
[  357.242551][T12325] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  357.251321][T12325] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  357.255136][T12325] batman_adv: batadv0: Adding interface: batadv_slave_1
[  357.257468][T12325] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  357.265202][T12325] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  357.291124][T12325] hsr_slave_0: entered promiscuous mode
[  357.293109][T12325] hsr_slave_1: entered promiscuous mode
[  357.295011][T12325] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  357.297896][T12325] Cannot create hsr debugfs directory
[  357.375960][T12325] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  357.454912][T12325] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  357.545199][T12325] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  357.660866][T12325] bond0: (slave netdevsim0): Releasing backup interface
[  357.667324][T12325] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  357.777202][  T983] usb 6-1: string descriptor 0 read error: -71
[  357.794854][T12325] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  357.799038][T12325] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  357.804742][  T983] usb 6-1: USB disconnect, device number 48
[  359.097037][ T5349] Bluetooth: hci3: command tx timeout
[  359.208919][T12325] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  359.228931][T12325] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  359.274000][T12325] 8021q: adding VLAN 0 to HW filter on device bond0
[  359.283784][T12325] 8021q: adding VLAN 0 to HW filter on device team0
[  359.289990][  T101] bridge0: port 1(bridge_slave_0) entered blocking state
[  359.291948][  T101] bridge0: port 1(bridge_slave_0) entered forwarding state
[  359.298199][ T1189] bridge0: port 2(bridge_slave_1) entered blocking state
[  359.300149][ T1189] bridge0: port 2(bridge_slave_1) entered forwarding state
[  359.391167][T12354] Bluetooth: hci4: Frame reassembly failed (-84)
[  359.402790][T12325] 8021q: adding VLAN 0 to HW filter on device batadv0
[  359.420436][T12325] veth0_vlan: entered promiscuous mode
[  359.426820][T12325] veth1_vlan: entered promiscuous mode
[  359.439032][T12325] veth0_macvtap: entered promiscuous mode
[  359.442145][T12325] veth1_macvtap: entered promiscuous mode
[  359.448794][T12325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  359.451520][T12325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  359.454124][T12325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  359.457052][T12325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  359.459587][T12325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  359.462282][T12325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  359.464999][T12325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  359.468015][T12325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  359.473482][T12325] batman_adv: batadv0: Interface activated: batadv_slave_0
[  359.478758][T12325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  359.481511][T12325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  359.484032][T12325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  359.488016][T12325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  359.490584][T12325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  359.493303][T12325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  359.495848][T12325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  359.498948][T12325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  359.502381][T12325] batman_adv: batadv0: Interface activated: batadv_slave_1
[  359.506945][T12325] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  359.509947][T12325] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  359.512584][T12325] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  359.515702][T12325] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  359.548999][ T1105] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  359.551952][ T1105] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  359.556791][    T9] usb 7-1: new high-speed USB device number 44 using dummy_hcd
[  359.573836][   T69] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  359.575947][   T69] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  359.718001][    T9] usb 7-1: Using ep0 maxpacket: 8
[  359.722300][    T9] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  359.725929][    T9] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 64
[  359.731701][    T9] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  359.734972][    T9] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  359.738154][    T9] usb 7-1: Product: 쌦琢цꌌ勽눃퍾덊낃鲄㟛웧䤅ⶺϑ㨁塣黮穎繩獢셃痴ᴁ羢疄㇙⿬먞眷࿀䦡湒纵鏩ጲ鮫돧傰汹
[  359.744102][    T9] usb 7-1: Manufacturer: ꓾錍Ӯ阏繈⌼퍭᜿耔즒揖즵ḾീὝ聤
[  359.747291][    T9] usb 7-1: SerialNumber: ᐊ
[  359.856645][ T5377] usb 8-1: new high-speed USB device number 53 using dummy_hcd
[  359.996702][   T39] audit: type=1800 audit(1729675110.442:1224): pid=12349 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=set_data cause=unavailable-hash-algorithm comm="syz.2.1894" name="/" dev="sockfs" ino=44982 res=0 errno=0
[  360.026463][ T5377] usb 8-1: Using ep0 maxpacket: 8
[  360.029091][ T5377] usb 8-1: config 179 has an invalid interface number: 65 but max is 0
[  360.031851][ T5377] usb 8-1: config 179 has an invalid descriptor of length 0, skipping remainder of the config
[  360.034449][ T5377] usb 8-1: config 179 has no interface number 0
[  360.037322][ T5377] usb 8-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0
[  360.040591][ T5377] usb 8-1: config 179 interface 65 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 23
[  360.044000][ T5377] usb 8-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  360.046218][ T5377] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  360.056067][    T9] cdc_ncm 7-1:1.0: bind() failure
[  360.060836][    T9] cdc_ncm 7-1:1.1: CDC Union missing and no IAD found
[  360.062502][    T9] cdc_ncm 7-1:1.1: bind() failure
[  360.065241][    T9] usb 7-1: USB disconnect, device number 44
[  360.251771][ T5377] usb 8-1: USB disconnect, device number 53
[  360.842028][ T5344] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  360.856557][ T1295] usb 7-1: new high-speed USB device number 45 using dummy_hcd
[  361.006632][ T1295] usb 7-1: Using ep0 maxpacket: 16
[  361.011817][ T1295] usb 7-1: New USB device found, idVendor=0456, idProduct=f000, bcdDevice=f3.7f
[  361.015312][ T1295] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  361.019321][ T1295] usb 7-1: Product: syz
[  361.020863][ T1295] usb 7-1: Manufacturer: syz
[  361.022494][ T1295] usb 7-1: SerialNumber: syz
[  361.025813][ T1295] usb 7-1: config 0 descriptor??
[  361.031463][ T1295] ftdi_sio 7-1:0.0: Ignoring interface reserved for JTAG
[  361.186949][ T5344] Bluetooth: hci3: command tx timeout
[  361.233023][T12363] netlink: 'syz.2.1896': attribute type 1 has an invalid length.
[  361.237440][ T1295] usb 7-1: USB disconnect, device number 45
[  361.327531][   T25] usb 8-1: new high-speed USB device number 54 using dummy_hcd
[  361.416561][ T5349] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  361.416701][ T5344] Bluetooth: hci4: command 0x1003 tx timeout
[  361.506917][   T25] usb 8-1: Using ep0 maxpacket: 8
[  361.510143][   T25] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  361.513439][   T25] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  361.516839][   T25] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  361.520185][   T25] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  361.524549][   T25] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  361.527762][   T25] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  361.737360][   T25] usb 8-1: GET_CAPABILITIES returned 0
[  361.738899][   T25] usbtmc 8-1:16.0: can't read capabilities
[  361.746561][ T1295] usb 6-1: new high-speed USB device number 49 using dummy_hcd
[  361.857296][T12390] FAULT_INJECTION: forcing a failure.
[  361.857296][T12390] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  361.860737][T12390] CPU: 1 UID: 0 PID: 12390 Comm: syz.2.1906 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  361.863750][T12390] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  361.867649][T12390] Call Trace:
[  361.868653][T12390]  <TASK>
[  361.869428][T12390]  dump_stack_lvl+0x16c/0x1f0
[  361.870665][T12390]  should_fail_ex+0x497/0x5b0
[  361.871897][T12390]  _copy_to_user+0x30/0xc0
[  361.873108][T12390]  simple_read_from_buffer+0xd0/0x160
[  361.874504][T12390]  proc_fail_nth_read+0x198/0x270
[  361.875822][T12390]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  361.877260][T12390]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  361.878697][T12390]  vfs_read+0x1ce/0xbd0
[  361.879800][T12390]  ? __fget_files+0x23a/0x3f0
[  361.881037][T12390]  ? fdget_pos+0x24c/0x360
[  361.882197][T12390]  ? __pfx_lock_release+0x10/0x10
[  361.883747][T12390]  ? trace_lock_acquire+0x14a/0x1d0
[  361.885653][T12390]  ? __pfx_vfs_read+0x10/0x10
[  361.887414][T12390]  ? __pfx___mutex_lock+0x10/0x10
[  361.888907][T12390]  ? __fget_files+0x244/0x3f0
[  361.890134][T12390]  ksys_read+0x12f/0x260
[  361.891255][T12390]  ? __pfx_ksys_read+0x10/0x10
[  361.892508][T12390]  do_syscall_64+0xcd/0x250
[  361.893971][T12390]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  361.895826][T12390] RIP: 0033:0x7f266a17ca3c
[  361.896987][T12390] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  361.901933][T12390] RSP: 002b:00007f266af7e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  361.904559][T12390] RAX: ffffffffffffffda RBX: 00007f266a335f80 RCX: 00007f266a17ca3c
[  361.907602][T12390] RDX: 000000000000000f RSI: 00007f266af7e0a0 RDI: 0000000000000004
[  361.909811][T12390] RBP: 00007f266af7e090 R08: 0000000000000000 R09: 0000000000000000
[  361.912043][T12390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  361.914205][T12390] R13: 0000000000000000 R14: 00007f266a335f80 R15: 00007ffc489ba298
[  361.916274][T12390]  </TASK>
[  361.936515][ T1295] usb 6-1: Using ep0 maxpacket: 8
[  361.938387][ T5377] usb 8-1: USB disconnect, device number 54
[  361.939041][ T1295] usb 6-1: config 179 has an invalid interface number: 65 but max is 0
[  361.942173][ T1295] usb 6-1: config 179 has an invalid descriptor of length 0, skipping remainder of the config
[  361.945613][ T1295] usb 6-1: config 179 has no interface number 0
[  361.948250][ T1295] usb 6-1: config 179 interface 65 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 23
[  361.951657][ T1295] usb 6-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  361.954129][ T1295] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  362.399156][   T39] audit: type=1400 audit(1729675112.842:1225): avc:  denied  { create } for  pid=12397 comm="syz.2.1909" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[  362.549126][T12409] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_macvtap, syncid = 0, id = 0
[  362.571233][T12412] input: syz0 as /devices/virtual/input/input30
[  362.951875][T12419] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1915'.
[  363.258043][T12382] Bluetooth: hci3: command tx timeout
[  363.381864][T12423] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1916'.
[  363.396441][   T39] audit: type=1400 audit(1729675113.832:1226): avc:  denied  { setopt } for  pid=12422 comm="syz.2.1916" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  363.483440][ T4772] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  363.489174][ T4772] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  363.492497][ T4772] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  363.498447][ T4772] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  363.502381][ T4772] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  363.505172][ T4772] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  363.619332][   T45] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  363.653266][T12426] chnl_net:caif_netlink_parms(): no params data found
[  363.677408][  T983] usb 7-1: new high-speed USB device number 46 using dummy_hcd
[  363.709168][   T45] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  363.709426][   T39] audit: type=1326 audit(1729675114.152:1227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12437 comm="syz.3.1920" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcaa17dff9 code=0x7ffc0000
[  363.718951][   T39] audit: type=1326 audit(1729675114.152:1228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12437 comm="syz.3.1920" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbcaa17dff9 code=0x7ffc0000
[  363.724899][   T39] audit: type=1326 audit(1729675114.152:1229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12437 comm="syz.3.1920" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbcaa17dff9 code=0x7ffc0000
[  363.732964][   T39] audit: type=1326 audit(1729675114.152:1230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12437 comm="syz.3.1920" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbcaa17dff9 code=0x7ffc0000
[  363.741636][   T39] audit: type=1326 audit(1729675114.152:1231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12437 comm="syz.3.1920" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbcaa17dff9 code=0x7ffc0000
[  363.748875][   T39] audit: type=1326 audit(1729675114.152:1232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12437 comm="syz.3.1920" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbcaa17dff9 code=0x7ffc0000
[  363.757231][   T39] audit: type=1326 audit(1729675114.152:1233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12437 comm="syz.3.1920" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbcaa17dff9 code=0x7ffc0000
[  363.763654][T12443] FAULT_INJECTION: forcing a failure.
[  363.763654][T12443] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  363.768765][T12443] CPU: 0 UID: 0 PID: 12443 Comm: syz.3.1921 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  363.771991][T12443] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  363.775626][T12443] Call Trace:
[  363.776497][T12443]  <TASK>
[  363.777269][T12443]  dump_stack_lvl+0x16c/0x1f0
[  363.778495][T12443]  should_fail_ex+0x497/0x5b0
[  363.779741][T12443]  _copy_from_user+0x30/0xf0
[  363.781037][T12443]  __sys_bpf+0x21c/0x49a0
[  363.782456][T12443]  ? ksys_write+0x21e/0x260
[  363.784101][T12443]  ? reacquire_held_locks+0x450/0x4c0
[  363.786043][T12443]  ? __pfx___sys_bpf+0x10/0x10
[  363.787908][T12443]  ? vfs_write+0x14d/0x1140
[  363.789548][T12443]  ? __mutex_unlock_slowpath+0x164/0x650
[  363.791594][T12443]  ? fput+0x30/0x390
[  363.793022][T12443]  ? ksys_write+0x1ad/0x260
[  363.794680][T12443]  ? __pfx_ksys_write+0x10/0x10
[  363.796432][T12443]  __x64_sys_bpf+0x78/0xc0
[  363.798034][T12443]  ? lockdep_hardirqs_on+0x7c/0x110
[  363.799935][T12443]  do_syscall_64+0xcd/0x250
[  363.801584][T12443]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.803684][T12443] RIP: 0033:0x7fbcaa17dff9
[  363.805274][T12443] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  363.812071][T12443] RSP: 002b:00007fbcab059038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  363.814966][T12443] RAX: ffffffffffffffda RBX: 00007fbcaa335f80 RCX: 00007fbcaa17dff9
[  363.817491][T12443] RDX: 0000000000000048 RSI: 0000000020000000 RDI: 0000000000000000
[  363.820310][T12443] RBP: 00007fbcab059090 R08: 0000000000000000 R09: 0000000000000000
[  363.823013][T12443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  363.825964][T12443] R13: 0000000000000001 R14: 00007fbcaa335f80 R15: 00007fff38039118
[  363.828767][T12443]  </TASK>
[  363.845889][   T45] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  363.850001][  T983] usb 7-1: Using ep0 maxpacket: 8
[  363.853897][  T983] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  363.866554][  T983] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  363.869810][  T983] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  363.873220][  T983] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  363.874897][T12426] bridge0: port 1(bridge_slave_0) entered blocking state
[  363.877907][  T983] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  363.877922][  T983] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  363.885076][T12426] bridge0: port 1(bridge_slave_0) entered disabled state
[  363.887330][T12426] bridge_slave_0: entered allmulticast mode
[  363.890397][T12426] bridge_slave_0: entered promiscuous mode
[  363.894117][T12426] bridge0: port 2(bridge_slave_1) entered blocking state
[  363.896555][T12426] bridge0: port 2(bridge_slave_1) entered disabled state
[  363.898463][T12426] bridge_slave_1: entered allmulticast mode
[  363.900460][T12426] bridge_slave_1: entered promiscuous mode
[  363.940806][   T45] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  363.948612][T12426] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  363.953010][T12426] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  363.974785][T12426] team0: Port device team_slave_0 added
[  363.978509][T12426] team0: Port device team_slave_1 added
[  363.999322][T12426] batman_adv: batadv0: Adding interface: batadv_slave_0
[  364.001785][T12426] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  364.011379][T12426] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  364.015777][T12426] batman_adv: batadv0: Adding interface: batadv_slave_1
[  364.017963][T12426] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  364.025084][T12426] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  364.085256][  T983] usb 7-1: usb_control_msg returned -71
[  364.087396][  T983] usbtmc 7-1:16.0: can't read capabilities
[  364.097688][T12426] hsr_slave_0: entered promiscuous mode
[  364.099985][T12426] hsr_slave_1: entered promiscuous mode
[  364.101893][T12426] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  364.104179][T12426] Cannot create hsr debugfs directory
[  364.106035][  T983] usb 7-1: USB disconnect, device number 46
[  364.141785][   T45] bridge_slave_1: left allmulticast mode
[  364.143390][   T45] bridge_slave_1: left promiscuous mode
[  364.144989][   T45] bridge0: port 2(bridge_slave_1) entered disabled state
[  364.152181][   T45] bridge_slave_0: left allmulticast mode
[  364.153731][   T45] bridge_slave_0: left promiscuous mode
[  364.155325][   T45] bridge0: port 1(bridge_slave_0) entered disabled state
[  364.263366][T12453] vivid-006: disconnect
[  364.413871][   T45] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  364.418133][   T45] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  364.421963][   T45] bond0 (unregistering): Released all slaves
[  364.471090][  T983] usb 6-1: USB disconnect, device number 49
[  364.594434][T12457] netlink: 256 bytes leftover after parsing attributes in process `syz.1.1926'.
[  364.771078][   T45] hsr_slave_0: left promiscuous mode
[  364.772790][   T45] hsr_slave_1: left promiscuous mode
[  364.774483][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  364.776890][   T45] batman_adv: batadv0: Removing interface: batadv_slave_0
[  364.779424][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  364.781337][   T45] batman_adv: batadv0: Removing interface: batadv_slave_1
[  364.807449][   T45] veth1_macvtap: left promiscuous mode
[  364.809116][   T45] veth0_macvtap: left promiscuous mode
[  364.810612][   T45] veth1_vlan: left promiscuous mode
[  364.811931][   T45] veth0_vlan: left promiscuous mode
[  365.042587][T12451] vivid-006: reconnect
[  365.336511][ T4772] Bluetooth: hci3: command tx timeout
[  365.586306][T12487] kvm: pic: non byte write
[  365.588041][ T4772] Bluetooth: hci1: command tx timeout
[  365.706038][   T45] team0 (unregistering): Port device team_slave_1 removed
[  365.728981][ T8016] usb 6-1: new high-speed USB device number 50 using dummy_hcd
[  365.800409][   T45] team0 (unregistering): Port device team_slave_0 removed
[  365.886598][ T8016] usb 6-1: Using ep0 maxpacket: 8
[  365.890038][ T8016] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  365.892585][ T8016] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  365.895603][ T8016] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  365.898498][ T8016] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  365.901857][ T8016] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  365.904726][ T8016] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  366.123092][ T8016] usb 6-1: usb_control_msg returned -71
[  366.126050][ T8016] usbtmc 6-1:16.0: can't read capabilities
[  366.130678][ T8016] usb 6-1: USB disconnect, device number 50
[  366.733284][T12426] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  366.751856][T12426] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  366.756429][T12426] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  366.759749][T12426] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  366.790242][T12426] 8021q: adding VLAN 0 to HW filter on device bond0
[  366.797818][T12426] 8021q: adding VLAN 0 to HW filter on device team0
[  366.801709][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  366.803642][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  366.808927][ T1189] bridge0: port 2(bridge_slave_1) entered blocking state
[  366.810838][ T1189] bridge0: port 2(bridge_slave_1) entered forwarding state
[  366.904187][T12426] 8021q: adding VLAN 0 to HW filter on device batadv0
[  366.929792][T12426] veth0_vlan: entered promiscuous mode
[  366.935871][T12426] veth1_vlan: entered promiscuous mode
[  366.946646][T12426] veth0_macvtap: entered promiscuous mode
[  366.949669][T12426] veth1_macvtap: entered promiscuous mode
[  366.955442][T12426] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  366.958632][T12426] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  366.961166][T12426] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  366.963917][T12426] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  366.966464][T12426] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  366.969141][T12426] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  366.971652][T12426] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  366.974356][T12426] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  366.977650][T12426] batman_adv: batadv0: Interface activated: batadv_slave_0
[  366.983078][T12426] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  366.985857][T12426] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  366.988447][T12426] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  366.991142][T12426] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  366.993685][T12426] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  366.996429][T12426] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  366.998945][T12426] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  367.001608][T12426] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  367.005335][T12426] batman_adv: batadv0: Interface activated: batadv_slave_1
[  367.010395][T12426] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  367.012704][T12426] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  367.015135][T12426] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  367.017551][T12426] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  367.069128][ T1105] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  367.071925][ T1105] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  367.085967][   T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  367.088125][   T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  367.347426][ T1295] usb 6-1: new high-speed USB device number 51 using dummy_hcd
[  367.430374][   T39] kauditd_printk_skb: 31 callbacks suppressed
[  367.430390][   T39] audit: type=1400 audit(1729675117.872:1265): avc:  denied  { egress } for  pid=1105 comm="kworker/u32:7" daddr=ff02::1:ffaa:aa1b netif=wpan1 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:netif_t tclass=netif permissive=1
[  367.441411][   T39] audit: type=1400 audit(1729675117.872:1266): avc:  denied  { sendto } for  pid=1105 comm="kworker/u32:7" daddr=ff02::1:ffaa:aa1b netif=wpan1 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:node_t tclass=node permissive=1
[  367.448644][T12526] openvswitch: netlink: Missing key (keys=40, expected=80)
[  367.449769][   T39] audit: type=1400 audit(1729675117.892:1267): avc:  denied  { recv } for  pid=0 comm="swapper/2" saddr=127.0.0.1 src=30000 daddr=127.0.0.1 dest=49468 netif=lo scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  367.460406][   T39] audit: type=1400 audit(1729675117.892:1268): avc:  denied  { recv } for  pid=0 comm="swapper/2" saddr=127.0.0.1 src=49468 daddr=127.0.0.1 dest=30000 netif=lo scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  367.498618][ T1295] usb 6-1: config index 0 descriptor too short (expected 43306, got 18)
[  367.500802][ T1295] usb 6-1: config 153 has too many interfaces: 250, using maximum allowed: 32
[  367.503107][ T1295] usb 6-1: config 153 has an invalid descriptor of length 62, skipping remainder of the config
[  367.505745][ T1295] usb 6-1: config 153 has 0 interfaces, different from the descriptor's value: 250
[  367.509237][ T1295] usb 6-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[  367.511606][ T1295] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  367.656488][ T4772] Bluetooth: hci1: command tx timeout
[  367.726500][  T983] usb 7-1: new high-speed USB device number 47 using dummy_hcd
[  367.886391][  T983] usb 7-1: Using ep0 maxpacket: 8
[  367.889755][  T983] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  367.892325][  T983] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  367.894874][  T983] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  367.897560][  T983] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  367.900949][  T983] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  367.903383][  T983] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  368.112778][  T983] usb 7-1: usb_control_msg returned -71
[  368.117155][  T983] usbtmc 7-1:16.0: can't read capabilities
[  368.120561][  T983] usb 7-1: USB disconnect, device number 47
[  368.562744][T12531] tipc: Started in network mode
[  368.564630][T12531] tipc: Node identity ac1414aa, cluster identity 4711
[  368.571362][T12531] tipc: Enabled bearer <udp:s>, priority 10
[  368.580329][   T39] audit: type=1326 audit(1729675119.022:1269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12529 comm="syz.3.1943" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbcaa17dff9 code=0x0
[  369.371398][T12558] ==================================================================
[  369.371412][T12558] BUG: KASAN: global-out-of-bounds in bit_putcs+0xa64/0xdf0
[  369.371441][T12558] Read of size 1 at addr ffffffff8bd4f890 by task syz.2.1949/12558
[  369.371457][T12558] 
[  369.371465][T12558] CPU: 0 UID: 0 PID: 12558 Comm: syz.2.1949 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  369.371486][T12558] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  369.371497][T12558] Call Trace:
[  369.371503][T12558]  <TASK>
[  369.371511][T12558]  dump_stack_lvl+0x116/0x1f0
[  369.371539][T12558]  print_report+0xc3/0x620
[  369.371561][T12558]  ? __virt_addr_valid+0x5e/0x590
[  369.371585][T12558]  ? __phys_addr+0xc6/0x150
[  369.371608][T12558]  kasan_report+0xd9/0x110
[  369.371628][T12558]  ? bit_putcs+0xa64/0xdf0
[  369.371649][T12558]  ? bit_putcs+0xa64/0xdf0
[  369.371671][T12558]  bit_putcs+0xa64/0xdf0
[  369.371698][T12558]  ? __pfx_bit_putcs+0x10/0x10
[  369.371721][T12558]  ? fb_get_color_depth+0x120/0x250
[  369.371742][T12558]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  369.371770][T12558]  ? __pfx_bit_putcs+0x10/0x10
[  369.371798][T12558]  fbcon_putcs+0x364/0x480
[  369.371820][T12558]  do_update_region+0x1f8/0x3f0
[  369.371845][T12558]  update_region+0xc1/0x160
[  369.371869][T12558]  vcs_write+0x7cd/0xdb0
[  369.371894][T12558]  ? __pfx_vcs_write+0x10/0x10
[  369.371918][T12558]  ? bpf_lsm_file_permission+0x9/0x10
[  369.371935][T12558]  ? security_file_permission+0x71/0x210
[  369.371955][T12558]  ? __pfx_vcs_write+0x10/0x10
[  369.371976][T12558]  vfs_writev+0x6da/0xdd0
[  369.372000][T12558]  ? futex_wait+0x121/0x380
[  369.372025][T12558]  ? __pfx_vfs_writev+0x10/0x10
[  369.372047][T12558]  ? find_held_lock+0x2d/0x110
[  369.372071][T12558]  ? __pfx_lock_release+0x10/0x10
[  369.372087][T12558]  ? trace_lock_acquire+0x14a/0x1d0
[  369.372112][T12558]  ? __fget_files+0x244/0x3f0
[  369.372138][T12558]  ? do_writev+0x137/0x370
[  369.372159][T12558]  do_writev+0x137/0x370
[  369.372182][T12558]  ? __pfx_do_writev+0x10/0x10
[  369.372207][T12558]  do_syscall_64+0xcd/0x250
[  369.372232][T12558]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  369.372256][T12558] RIP: 0033:0x7f266a17dff9
[  369.372271][T12558] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  369.372287][T12558] RSP: 002b:00007f266af7e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  369.372306][T12558] RAX: ffffffffffffffda RBX: 00007f266a335f80 RCX: 00007f266a17dff9
[  369.372318][T12558] RDX: 0000000000000004 RSI: 0000000020000a40 RDI: 0000000000000003
[  369.372329][T12558] RBP: 00007f266a1f0296 R08: 0000000000000000 R09: 0000000000000000
[  369.372340][T12558] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  369.372353][T12558] R13: 0000000000000000 R14: 00007f266a335f80 R15: 00007ffc489ba298
[  369.372372][T12558]  </TASK>
[  369.372379][T12558] 
[  369.372383][T12558] The buggy address belongs to the variable:
[  369.372389][T12558]  type_check_kinds+0x790/0xcc0
[  369.372410][T12558] 
[  369.372414][T12558] The buggy address belongs to the physical page:
[  369.372420][T12558] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0xbd4f
[  369.372435][T12558] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff)
[  369.372457][T12558] raw: 00fff00000002000 ffffea00002f53c8 ffffea00002f53c8 0000000000000000
[  369.372473][T12558] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[  369.372482][T12558] page dumped because: kasan: bad access detected
[  369.372490][T12558] page_owner info is not present (never set?)
[  369.372496][T12558] 
[  369.372500][T12558] Memory state around the buggy address:
[  369.372508][T12558]  ffffffff8bd4f780: 00 00 01 f9 f9 f9 f9 f9 00 00 00 f9 f9 f9 f9 f9
[  369.372520][T12558]  ffffffff8bd4f800: 05 f9 f9 f9 f9 f9 f9 f9 05 f9 f9 f9 f9 f9 f9 f9
[  369.372532][T12558] >ffffffff8bd4f880: 05 f9 f9 f9 f9 f9 f9 f9 05 f9 f9 f9 f9 f9 f9 f9
[  369.372541][T12558]                          ^
[  369.372550][T12558]  ffffffff8bd4f900: 00 00 00 00 06 f9 f9 f9 f9 f9 f9 f9 00 00 00 00
[  369.372561][T12558]  ffffffff8bd4f980: 00 00 01 f9 f9 f9 f9 f9 00 00 00 00 00 00 f9 f9
[  369.372571][T12558] ==================================================================
[  369.372667][T12558] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  369.372685][T12558] CPU: 1 UID: 0 PID: 12558 Comm: syz.2.1949 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  369.372701][T12558] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  369.372708][T12558] Call Trace:
[  369.372712][T12558]  <TASK>
[  369.372717][T12558]  dump_stack_lvl+0x3d/0x1f0
[  369.372736][T12558]  panic+0x71d/0x800
[  369.372751][T12558]  ? __pfx_panic+0x10/0x10
[  369.372766][T12558]  ? rcu_is_watching+0x12/0xc0
[  369.372781][T12558]  ? preempt_schedule_thunk+0x1a/0x30
[  369.372792][T12558]  ? preempt_schedule_common+0x44/0xc0
[  369.372807][T12558]  check_panic_on_warn+0xab/0xb0
[  369.372822][T12558]  end_report+0x117/0x180
[  369.372834][T12558]  kasan_report+0xe9/0x110
[  369.372846][T12558]  ? bit_putcs+0xa64/0xdf0
[  369.372859][T12558]  ? bit_putcs+0xa64/0xdf0
[  369.372873][T12558]  bit_putcs+0xa64/0xdf0
[  369.372888][T12558]  ? __pfx_bit_putcs+0x10/0x10
[  369.372902][T12558]  ? fb_get_color_depth+0x120/0x250
[  369.372913][T12558]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  369.372931][T12558]  ? __pfx_bit_putcs+0x10/0x10
[  369.372943][T12558]  fbcon_putcs+0x364/0x480
[  369.372956][T12558]  do_update_region+0x1f8/0x3f0
[  369.372969][T12558]  update_region+0xc1/0x160
[  369.372983][T12558]  vcs_write+0x7cd/0xdb0
[  369.372998][T12558]  ? __pfx_vcs_write+0x10/0x10
[  369.373012][T12558]  ? bpf_lsm_file_permission+0x9/0x10
[  369.373022][T12558]  ? security_file_permission+0x71/0x210
[  369.373034][T12558]  ? __pfx_vcs_write+0x10/0x10
[  369.373047][T12558]  vfs_writev+0x6da/0xdd0
[  369.373061][T12558]  ? futex_wait+0x121/0x380
[  369.373077][T12558]  ? __pfx_vfs_writev+0x10/0x10
[  369.373090][T12558]  ? find_held_lock+0x2d/0x110
[  369.373104][T12558]  ? __pfx_lock_release+0x10/0x10
[  369.373114][T12558]  ? trace_lock_acquire+0x14a/0x1d0
[  369.373129][T12558]  ? __fget_files+0x244/0x3f0
[  369.373144][T12558]  ? do_writev+0x137/0x370
[  369.373158][T12558]  do_writev+0x137/0x370
[  369.373171][T12558]  ? __pfx_do_writev+0x10/0x10
[  369.373186][T12558]  do_syscall_64+0xcd/0x250
[  369.373201][T12558]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  369.373215][T12558] RIP: 0033:0x7f266a17dff9
[  369.373223][T12558] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  369.373234][T12558] RSP: 002b:00007f266af7e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  369.373245][T12558] RAX: ffffffffffffffda RBX: 00007f266a335f80 RCX: 00007f266a17dff9
[  369.373252][T12558] RDX: 0000000000000004 RSI: 0000000020000a40 RDI: 0000000000000003
[  369.373259][T12558] RBP: 00007f266a1f0296 R08: 0000000000000000 R09: 0000000000000000
[  369.373266][T12558] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  369.373272][T12558] R13: 0000000000000000 R14: 00007f266a335f80 R15: 00007ffc489ba298
[  369.373281][T12558]  </TASK>
[  369.373999][T12558] Kernel Offset: disabled

VM DIAGNOSIS:
09:18:39  Registers:
info registers vcpu 0

CPU#0
RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff813321f0 RDX=ffffffff8de957c0
RSI=ffffffff81332238 RDI=ffffffff9377d7c0 RBP=0000000000000000 RSP=ffffc90000007fd0
R8 =0000000000000001 R9 =fffffbfff26efaf8 R10=ffffffff9377d7c7 R11=0000000000000000
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81332239 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c38559e CR3=0000000058316000 CR4=00350ef0
DR0=0000000000000000 DR1=000000000000000a DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000208001 Opmask01=0000000000000054 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f266a1f1133
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f266a1f1140
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f266a1f113a
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f266a1f114e
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f266a1f11d4
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f266a1f12b2
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 d373f945ede6ed0e b59776f067b25531 b9646375ff4f2148 5b6865d94e7de4a9
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 d2e705b4a1199fb9 67729adc19d5ee0d ba7d85dad373f945 ede6ed0eb59776f0
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ea0f524cfe35e39d 8d6fbd8d6d929ea3 f0f3680a665d6fd0 927d288a40690865
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 62dc2cead48d1b0a 058388b28fd71bd3 30113b7d983472f7 a243ab35342cc6ff
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 097133d9f27c829f b13554fe97a6fc5e a355afb2bbe048ac 8dc8702293d05bcd
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7c0415ceaad8e034 6e1229d2b94ea426 818ce4bd4789fd75 04945a7f7932fa31
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2da1dff38c1e93a3 82fc4c333f89751b c221d60a62daa7db 0066b83e7062dc2c
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ead48d1b0a058388 b28fd71bd330113b 7d983472f7a243ab 35342cc6ffea0f52
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=dffffc0000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9
RSI=ffffffff850b0160 RDI=ffffffff9aae6bc0 RBP=ffffffff9aae6b80 RSP=ffffc9000609f388
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=7973203a6d6d6f43
R12=0000000000000000 R13=ffffffff9aae6b80 R14=ffffffff9aae6bd0 R15=0000000000000079
RIP=ffffffff850b0187 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f266af7e6c0 ffffffff 00c00000
GS =0000 ffff88806a700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c2a3a11 CR3=0000000058316000 CR4=00352ef0
DR0=0000000000001000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000010000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008000100 Opmask01=0000000000000000 Opmask02=000000007ffbffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe3312d530 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f05fc7f1133
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f05fc7f1140
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f05fc7f113a
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f05fc7f114e
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f05fc7f11d4
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f05fc7f12b2
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff813321f0 RDX=ffff88801dec0000
RSI=ffffffff81332238 RDI=ffffffff9377d7c0 RBP=0000000000000002 RSP=ffffc90000858fd0
R8 =0000000000000001 R9 =fffffbfff26efaf8 R10=ffffffff9377d7c7 R11=0000000000000000
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81332239 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a800000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000555565101808 CR3=00000000571e0000 CR4=00350ef0
DR0=0000000000000000 DR1=000000000000000a DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000208001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f05fc7f1133
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f05fc7f1140
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f05fc7f113a
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f05fc7f114e
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f05fc7f11d4
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f05fc7f12b2
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0065766973727563 65725f656d69745f 746961775f6f692e 7166622e6f696b6c
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5d4fc7852925a1e2 dcc448ba43cc3270 b968d8ce2e0e0004 0008000f0010000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 e5bc1322f484afdd 06adaf92c8546006 71bd260939c92d91 1d024afbad923927
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 f6a71fe5e69438c0 c146c46ed35e461b 062b826d03b1b2aa aa19e5467ead4493
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 bd97338b4f670000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000094 7875b1ebc55b3135 eded571045b9cb7e 68749bbec17b2e32
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2094087fcfe402d6 21aa2ea47fe9ff1e ab602fd48b49febe f9c6320bac93ac34
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0d7d9a596c5517ad ca8d0448c5ffe7b9 e61bf1549041caf6 a71fe5e69438c0c1
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff813321f0 RDX=ffff888060738000
RSI=ffffffff81332238 RDI=ffffffff9377d7c0 RBP=0000000000000003 RSP=ffffc90000908fd0
R8 =0000000000000001 R9 =fffffbfff26efaf8 R10=ffffffff9377d7c7 R11=0000000000000000
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81332239 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000555565101500 ffffffff 00c00000
GS =0000 ffff88806a900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fbcaa198d00 CR3=000000004d1dc000 CR4=00350ef0
DR0=0000000000001000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000010000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=000000000c400000 Opmask01=0000000000000000 Opmask02=000000007ffbffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6966696e752f7075 6f7267637a79732f
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7a79732f64656966 696e752f70756f72
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbcaa1f1133
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbcaa1f1140
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbcaa1f113a
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbcaa1f114e
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbcaa1f11d4
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbcaa1f12b2
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 69702f732500756c 6c257a79732f6465 6966696e752f7075 6f7267637a79732f
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4c550a5600005049 49005f5c560a4140 4c434c4b500a5550 4a5742465f5c560a
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000