last executing test programs:
5.783784942s ago: executing program 0 (id=1648):
syz_usb_connect$printer(0x2, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="12011001000000082505a8a4020904000001070101000905010200020000"], 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder1\x00', 0x0, 0x0)
r0 = socket$rds(0x15, 0x5, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000100)={0x2, 0x4e24, @loopback}, 0x10)
bind$alg(r1, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58)
r2 = accept4(r1, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f00000001c0)="00940a37", 0x4)
sendto$unix(r2, &(0x7f0000000440)="36d9a32e92c131d730b1abaedb51eb66fd2d5b1f7eda4f0e859fdaf294bad70673813533d8bf1c6a77b65a7afdc01b29e73571071a68d5def5d7df839810da130b9348f4d9d407eb478d5bfb298c552a498271af70914e14ba9476fd2a0e47984c25ea20afab3064a748add27a7149e9c4705475bda2ecec9ec30214f28c5e16fd3f50f604f20232c534409e52bff64fc6ca0f5e254083aec2794b7216e002e87caf3d0fa7d04ff9e3b03e81595a04979594ff6ea888bf13de8e8f74c6178e31e47593732ae1a501ad3641d423195a788efdb643f50a8c8b9794a62f7b8dfa0fa7da9d391b92ce2a7f9fe0f9d584a3775f", 0x703d59595f6742a8, 0x800, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0xf9, 0x0, 0x0, 0x0, 0x11e5, 0x1, 0x4}, 0x0, 0x0, 0x0, 0x0)
r3 = signalfd4(0xffffffffffffffff, &(0x7f0000000040)={[0x8]}, 0x8, 0x80000)
bind$unix(r3, &(0x7f0000000080)=@abs={0x1, 0x0, 0x4e24}, 0x6e)
3.06766789s ago: executing program 1 (id=1669):
socket$inet_sctp(0x2, 0x1, 0x84)
socket(0x10, 0x803, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f0000000080), 0x72a, 0x500, 0x0)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_SET_FORCE_PACK_ID(r1, 0x227b, &(0x7f00000001c0)=0x2001)
r2 = fcntl$dupfd(r1, 0x0, r1)
write$sndseq(r2, &(0x7f0000000180)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @time}], 0x38)
readv(r2, &(0x7f0000000000)=[{&(0x7f0000001140)=""/136, 0x88}], 0x1)
openat$cgroup_ro(r2, &(0x7f0000000000)='cpuacct.usage_sys\x00', 0x0, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xb}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x0, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_usbip_server_init(0x4)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
socket$alg(0x26, 0x5, 0x0)
2.437375799s ago: executing program 0 (id=1672):
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r1, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)="d8000000320081024e81f782db44b904021d080005000000e8fe55a1180015000600142603600e120900210000000401a8001600a400014006000000036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x0)
r2 = dup(r0)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="000f080000ff0000000b0000000a000300d260d9", @ANYRES32=0x0, @ANYBLOB], 0x1c}}, 0x0)
ioctl$sock_SIOCBRDELBR(r3, 0x89a2, &(0x7f0000000000)='bridge0\x00')
syz_emit_ethernet(0x2a, &(0x7f00000002c0)={@link_local, @dev, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @dev={0xac, 0x14, 0x14, 0x22}}, @address_request={0x11, 0x0, 0x0, 0x1}}}}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r6=>0x0})
sendmsg$nl_route(r4, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="4400000010000d0400"/20, @ANYRES32=r6, @ANYBLOB="003000000000000024001280110001006272696467651f736c617665000000000c000580050019000200"], 0x44}}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x29, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
r8 = dup(0xffffffffffffffff)
ioctl$KVM_CREATE_PIT2(r8, 0x4040ae77, &(0x7f0000000240)={0x5})
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
shmdt(0x0)
prctl$PR_CAP_AMBIENT(0x2f, 0x1, 0x0)
sendmsg$IPSET_CMD_CREATE(r9, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="580000000206010800400000200000000000000011000300686173683a69702c6d61726b000000000500010007000000050005f30100000008e8020073797a300000000005000400000000000c00078008000840000000404b19cf19df8b27403af6e0dffff55514fd1e27dc1b5c4889d6a2178303dbdd390190f52f411e0db7dcca4fa6b40fd5973e3425035cfe127aafc04b1783"], 0x58}}, 0x0)
r10 = socket(0x21, 0x2, 0x10000000000002)
connect$rxrpc(r10, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @multicast2}}, 0x3a)
sendmmsg(r10, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=[{0x10, 0x110, 0x1}], 0x10, 0xe000}, 0x5}], 0x1, 0x0)
recvmmsg(r10, &(0x7f0000002940)=[{{0x0, 0x0, 0x0}}], 0xf000, 0x10002, 0x0)
2.181199884s ago: executing program 2 (id=1674):
iopl(0x3)
lsm_set_self_attr(0x0, 0x0, 0x0, 0x20)
r0 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_int(r1, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r1, &(0x7f00000000c0)="04", 0x1, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
shutdown(r1, 0x1)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000080)={&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000340)=0x40)
getsockopt$IP_VS_SO_GET_INFO(r0, 0x0, 0x481, &(0x7f0000000080), &(0x7f00000000c0)=0xc)
r2 = add_key(&(0x7f0000000180)='.request_key_auth\x00', &(0x7f00000001c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffa)
r3 = syz_open_dev$vbi(&(0x7f0000000040), 0x0, 0x2)
ioctl$VIDIOC_S_CTRL(r3, 0xc008561c, &(0x7f0000000000)={0xf0f027, 0x2})
keyctl$KEYCTL_PKEY_DECRYPT(0x1a, &(0x7f00000003c0)={r2, 0x35, 0x44}, &(0x7f0000000400)=ANY=[@ANYBLOB="656e633d72617720686173683d736861332d323234000000000000000000000000000000001000"/77], &(0x7f0000000480)="482d96bc7cf88453395b453ea0d44b742a1c1d96e0ecd66ee76d1727a61961872e913f6af86b12310341c3d6511d0bea531ef68b47", &(0x7f00000004c0)=""/68)
io_uring_setup(0x8a9, &(0x7f0000000300)={0x0, 0x1897, 0x80, 0x1, 0xc2})
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r4}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='mm_compaction_kcompactd_sleep\x00', r4, 0x0, 0xfffffffffffffffe}, 0x18)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002300000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r6, 0x0, 0x6}, 0x18)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(r7, 0x8946, &(0x7f0000000180)={'veth1_virt_wifi\x00', &(0x7f00000004c0)=@ethtool_perm_addr={0x20, 0xd5, "dcd86cf29ce9d276380e81852c95d951bbf6d6193966028d017ad509e930b30cee64110a0afed516efb548df6e5404afba7fcb1b244698af9a631b181854308c449cc85312adaefd009c2eebc0ca149ebc83aea091b0e1430fb4c9351997bce5f7870acc3eaed631d934bb762feaf751d75f8727bfe1adac10d35a12ad41665035c18c8932aaaa05f5f17cb809dfc605913fecbe5147da71b2c4f066bee8dbe3bc29763e6bac04244687d70c77b1f9d36496b5649b1d13ef727a8d43b93eb45f45b6c96c92bd6eb5e3b3673c663699ca844dc045ca"}})
sched_setaffinity(0x0, 0x0, 0x0)
read$msr(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
socket(0x0, 0x0, 0x0)
2.095829361s ago: executing program 2 (id=1675):
r0 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f00000000c0)=0x81)
r1 = dup(r0)
read$FUSE(r1, 0x0, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r1, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000300)={&(0x7f00000003c0)={0xb4, r2, 0x100, 0x70bd2a, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_SCAN_SSIDS={0x98, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ibss_ssid}, {0xa, 0x0, @default_ap_ssid}, {0x10, 0x0, @random="ebf7bc402cdf10ee47aa77e2"}, {0xa, 0x0, @default_ap_ssid}, {0xa, 0x0, @default_ap_ssid}, {0xa, 0x0, @default_ibss_ssid}, {0x21, 0x0, @random="7f0f9723d40b83716311c626ffd2f362e4c380ace929357f651de86764"}, {0x23, 0x0, @random="f7dbabd425b279d50950ea64125b6e7797c8530d45dbfef0f04385160dd6b4"}]}, @NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x718}]}, 0xb4}}, 0x40010)
r3 = syz_open_dev$dri(&(0x7f0000000080), 0x2, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r3, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANE(r3, 0xc02064b6, &(0x7f00000001c0)={0x0, <r4=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_GET_LEASE(r3, 0xc01064c8, &(0x7f0000000280)={0x1, 0x0, &(0x7f0000000200)=[0x0]})
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000900)={'#! ', './file0', [{0x20, '/dev/dri/card#\x00'}, {}, {0x20, '/dev/dri/card#\x00'}, {0x20, '/dev/dri/card#\x00'}, {0x20, '/dev/dri/card#\x00'}], 0xa, "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"}, 0x104c)
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r3, 0xc02064b9, &(0x7f00000002c0)={&(0x7f0000000240)=[<r5=>0x0, <r6=>0x0], &(0x7f0000000280), 0x2, r4})
ioctl$DRM_IOCTL_MODE_ATOMIC(r3, 0xc03864bc, &(0x7f00000008c0)={0x0, 0x1, &(0x7f00000000c0)=[r5], &(0x7f0000000200), &(0x7f0000000380)=[r6], &(0x7f0000000340)})
r7 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000100)=@generic={&(0x7f0000000040)='./file0\x00', 0x0, 0x8}, 0x14)
close_range(r3, r7, 0x2)
2.09246815s ago: executing program 2 (id=1676):
unshare(0x62040200)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(serpent)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r1)
sendmsg$NL80211_CMD_SET_KEY(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x8004}, 0x24008041)
sendmsg$alg(r1, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$IP6T_SO_GET_INFO(r2, 0x29, 0x40, &(0x7f00000003c0)={'nat\x00', 0x0, [0x2, 0x5, 0xfffffff9, 0x3b, 0xcf2]}, &(0x7f00000001c0)=0x54)
unshare(0x20000)
1.89996478s ago: executing program 2 (id=1677):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="400000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000022280300180012800e000100697036677265746170"], 0x40}}, 0x4080)
1.899738241s ago: executing program 2 (id=1678):
r0 = io_uring_setup(0x60f8, &(0x7f0000000140)={0x0, 0x0, 0x2, 0x1, 0x3bd}) (async)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000500)={0xa, 0x2, 0x0, @loopback}, 0x1c) (async, rerun: 32)
setsockopt$inet6_tcp_int(r1, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4) (async, rerun: 32)
sendto$inet6(r1, &(0x7f00000000c0)="04", 0x1, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c) (async, rerun: 64)
r2 = socket$nl_route(0x10, 0x3, 0x0) (rerun: 64)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000680)=ANY=[@ANYBLOB="500000001000010400000000000000000000ffff", @ANYRES32=0x0, @ANYBLOB="00000000000000001c001280090001007866726d"], 0x50}}, 0x0) (async, rerun: 64)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>r0, {0x6}}, './file0\x00'}) (rerun: 64)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r3, 0xc0605345, &(0x7f0000000040)={0x7f, 0x0, {0x3, 0x3, 0x0, 0x2, 0x3}, 0x1})
setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000100)={@in6={{0xa, 0x4e24, 0x0, @loopback, 0x1}}, 0x0, 0x0, 0x6, 0x0, "10baa70a93289349d889de25b87376f64276337642b890d33cb5b592e66e6229bc5c7ac135fee1b3871b7ef6619db5b2a94edb6f73ea08b02aa3b47debd38b6d889a8c986b33eb49c3157f1f370dfd67"}, 0xd8) (async)
r4 = dup(r1)
write$UHID_INPUT(r4, &(0x7f0000001840)={0xfc, {"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", 0x1000}}, 0xff39) (async, rerun: 64)
ioctl$CEC_ADAP_S_LOG_ADDRS(r4, 0xc05c6104, &(0x7f0000000240)={"85d30fcf", 0xff20, 0x5d, 0xff, 0xb, 0x80, "7a3010a6d5471d84c25a97279d810e", "4d8d16cb", "0d064edb", "89b8ab07", ["20270e171d7b967f958d163e", "ddb2b594e97b9a675c447f50", "1aca0044a5f652ba3fb94edd", "8fecbc162d988b9c815006c0"]}) (rerun: 64)
close_range(r0, 0xffffffffffffffff, 0x0) (async)
r5 = accept4$nfc_llcp(r3, &(0x7f00000002c0), &(0x7f0000000340)=0x58, 0x0)
setsockopt$nfc_llcp_NFC_LLCP_MIUX(r5, 0x118, 0x1, &(0x7f0000000380)=0x32d, 0x4)
1.734941537s ago: executing program 0 (id=1679):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)={0x14, 0x0, 0x0, 0x0, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x43d2f708f0c0410e}, 0x24000800)
sendmsg$NL80211_CMD_SET_COALESCE(r1, &(0x7f0000000200)={0x0, 0xffffffffffffff8c, &(0x7f0000000b00)={&(0x7f0000000040)={0x28, r2, 0x1, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r4}, @void}}}, 0x28}, 0x1, 0x6c00}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0xffffffffff7fffff)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000032680)=""/102392, 0x18ff8)
r6 = openat$qat_adf_ctl(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$IOCTL_CONFIG_SYS_RESOURCE_PARAMETERS(r6, 0x40096100, &(0x7f0000000300))
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0)
r7 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r7, 0x10e, 0xc, &(0x7f0000000180)={0xffffff}, 0x10)
socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_netrom_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000100)={0x1, @null, @netrom={'nr', 0x0}, 0x0, 'syz1\x00', @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x5, 0x0, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @default, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @default, @default]})
write(r7, &(0x7f0000000000)="1c0000001a005f0214f9f407000904001f000000fe010000000000", 0x1b)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r8, &(0x7f0000000040), 0x208e24b)
r9 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r9, &(0x7f00000001c0)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @dev}, 0x10)
recvmmsg(r9, &(0x7f00000005c0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff00003f00}}], 0x1, 0x20, 0x0)
sendfile(r9, r8, 0x0, 0xffefffff)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
1.546405793s ago: executing program 3 (id=1682):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x19, 0x1, &(0x7f0000000380)=@raw=[@ldst={0x1, 0x0, 0x6, 0x8, 0x6, 0x20}], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (fail_nth: 2)
1.545932751s ago: executing program 1 (id=1683):
socket(0x10, 0x803, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000480), 0x0, 0x0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001700)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000001540)="1a15acb0898e", 0x0, 0x0, 0x0, 0x0, 0x0})
socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) (async)
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0) (async, rerun: 32)
r4 = syz_open_dev$swradio(&(0x7f0000000380), 0x0, 0x2) (rerun: 32)
ioctl$VIDIOC_G_CTRL(r4, 0xc008561b, &(0x7f0000000000)={0x98f905, 0x8}) (async)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0}) (async)
r6 = socket$rxrpc(0x21, 0x2, 0xa)
setsockopt$RXRPC_SECURITY_KEY(r6, 0x110, 0x1, &(0x7f00000000c0)='[-$\x00', 0x4)
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x1e, &(0x7f0000000080)={&(0x7f00000002c0)=@newchain={0x44, 0x64, 0x4, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, r5, {0xf, 0x2}, {0xa, 0xfff3}, {0x8, 0xe}}, [@filter_kind_options=@f_route={{0xa}, {0x14, 0x2, [@TCA_ROUTE4_IIF={0x8, 0x4, r5}, @TCA_ROUTE4_IIF={0x8, 0x4, r5}]}}]}, 0x44}}, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x44, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, &(0x7f0000000340)=[{0x10000000, 0x1, 0xa, 0xb}, {0x1, 0x802, 0x10, 0x2}, {0x2, 0x5, 0x7, 0x9}], 0x10, 0x37, @void, @value}, 0x94) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r7 = getpid()
sched_setscheduler(r7, 0x2, &(0x7f0000000200)=0x4) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) (async, rerun: 32)
connect$unix(r8, &(0x7f0000002540)=@abs, 0x6e) (rerun: 32)
sendmmsg$unix(r9, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r8, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
userfaultfd(0x801) (async)
r10 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
bind$ax25(r10, &(0x7f0000000100)={{0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x1}, [@bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null]}, 0x48)
1.464657223s ago: executing program 3 (id=1684):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000940)='hugetlb.2MB.usage_in_bytes\x00', 0x26e1, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b40)=ANY=[@ANYBLOB="140000001000010000060000000000000000000a20000000000a05000000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010000000900010073797a30000000000900030073797a310000000058000000060a010400000000000000000100000008000b4000000000300004802c00018008000100636d70002000028008000240000000e30b00038005000100ef00000008000140000000000900010073797a30"], 0xcc}}, 0x0)
close(r0)
ioctl$SIOCSIFHWADDR(r0, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random='\\\x00\x00 \x00'})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x7a, '\x00', 0x0, 0x2, r0, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'rfc4106-gcm-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000001c0)={'batadv_slave_1\x00', <r4=>0x0})
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000400)={0x0, <r5=>0x0}, 0x8)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r0, 0x84, 0x15, &(0x7f0000000640)={0xfb}, 0x1)
ioctl$TUNSETIFF(r6, 0x400454ca, 0x0)
r7 = dup3(r6, 0xffffffffffffffff, 0x0)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000000)=0x17)
r8 = openat$ipvs(0xffffff9c, &(0x7f00000004c0)='/proc/sys/net/ipv4/vs/lblcr_expiration\x00', 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x1a, 0xa, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x39, 0x0, 0x0, 0x0, 0x3}, [@jmp={0x5, 0x1, 0x0, 0xb, 0x9, 0x0, 0xffffffffffffffff}, @exit, @tail_call={{0x18, 0x2, 0x1, 0x0, r0}}]}, &(0x7f00000006c0)='GPL\x00', 0x2, 0x2f, &(0x7f0000000180)=""/47, 0x41000, 0x5d, '\x00', r4, @fallback=0x5, r0, 0x8, &(0x7f00000003c0)={0x9, 0x4}, 0x8, 0x10, 0x0, 0x0, r5, 0xffffffffffffffff, 0x1, &(0x7f0000000500)=[r0, r7, r0, r0, r0, r0, r8, r0], &(0x7f0000000540)=[{0x0, 0x5, 0x4, 0x8}], 0x10, 0x7e, @void, @value}, 0x94)
r9 = accept4(r3, 0x0, 0x0, 0x0)
recvmmsg(r9, &(0x7f0000000e40)=[{{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000280)=""/10, 0xa}, {&(0x7f00000002c0)=""/48, 0x30}], 0x2}}], 0x1, 0x2000, 0x0)
write$binfmt_elf64(r9, &(0x7f0000002000)=ANY=[], 0x78)
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f0000000680)={0x9, r2, 0x2})
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_exit\x00', r10}, 0x10)
r11 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
r12 = memfd_create(&(0x7f0000000480)='y\x105\xfb\xf7u\x83%:\xce\x00[\xdaF\xa2g\x02\x7f(Ur\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xcda\x9b\x11X\x0e\xa1\xcf\x1a\x98S7\xcd\x00'/58, 0x2)
ftruncate(r12, 0xffff)
fcntl$addseals(r12, 0x409, 0x7)
r13 = ioctl$UDMABUF_CREATE(r11, 0x40187542, &(0x7f0000000000)={r12, 0x0, 0x0, 0x8000})
ioctl$DMA_BUF_IOCTL_SYNC(r13, 0xc0086202, &(0x7f0000000440)=0x2)
1.390179782s ago: executing program 3 (id=1685):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x19, 0x1, &(0x7f0000000380)=@raw=[@ldst={0x1, 0x0, 0x6, 0x8, 0x6, 0x20}], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
1.389798435s ago: executing program 1 (id=1686):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000006500))
r0 = socket$nl_generic(0x10, 0x3, 0x10)
openat$nullb(0xffffffffffffff9c, 0x0, 0x48882, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x4f565559, 0x0, 0xa, [{}, {0x10, 0x2}], 0x0, 0x80, 0x3, 0x0, 0x2}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
socket(0x11, 0x800000003, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="280000001c00070f000000020000000007000000001a615201c0f3a8cb55e78f22509224b7f923a6b3081f0bf79915722e78b1ef3ff5e1b3504443db304e60db416eb9d42e9c2f6d1a673aeb147b00"/90, @ANYRES32=r1, @ANYBLOB="800000000a0002000180c20000000000"], 0x28}}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000800)=@filter={'filter\x00', 0x4, 0x4, 0x324, 0xffffffff, 0x194, 0xc8, 0x0, 0xfeffffff, 0xffffffff, 0x25c, 0x25c, 0x25c, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00', @private2, [], [], 'batadv_slave_0\x00', 'team_slave_1\x00', {}, {}, 0x6, 0x0, 0x1}, 0x2f2, 0xa4, 0xc8}, @REJECT={0x24, 'REJECT\x00', 0x0, {0x6}}}, {{@ipv6={@remote, @private0, [], [], 'hsr0\x00', 'veth0_macvtap\x00'}, 0x0, 0xa4, 0xcc}, @common=@unspec=@NFQUEUE2={0x28}}, {{@uncond, 0x0, 0xa4, 0xc8}, @REJECT={0x24}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x380)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000000900)={0x1c, 0x2c, 0x1, 0x70bd26, 0x25dfdbfc, {0x4}, [@typed={0x8, 0x17, 0x0, 0x0, @uid}]}, 0x1c}, 0x1, 0x0, 0x0, 0x408}, 0x20000000)
socket(0x2000000000000021, 0x2, 0x10000000000002)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x10, 0xffffffffffffffff, 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = dup(r5)
write$UHID_INPUT(r6, &(0x7f0000001980)={0x9, {"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", 0x1000}}, 0x1006)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000080)=0x10)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r7, 0x84, 0x10, &(0x7f0000000000)=@sack_info={0x0, 0x0, 0x6}, 0xc)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r7, 0x84, 0x64, &(0x7f0000000900)=[@in={0x2, 0x4e23, @loopback}, @in6={0xa, 0x0, 0x0, @loopback}], 0x2c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r7, 0x84, 0x9, &(0x7f0000000380)={0x0, @in6={{0xa, 0x4e21, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x3}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
sendto$inet6(r7, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
writev(r7, &(0x7f0000000080), 0x0)
1.38948228s ago: executing program 3 (id=1687):
socket$inet6_udp(0xa, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0x3, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0xb}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = openat$nullb(0xffffff9c, &(0x7f0000000300), 0xa002, 0x0)
ioctl$BLKZEROOUT(r1, 0x127f, &(0x7f0000000340)={0x0, 0xffffffffffffffc0})
r2 = dup(r0)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffa, 0x10100, 0x0, 0x0, 0x0, r2}, &(0x7f0000000180), &(0x7f00000001c0))
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r3 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r3, 0x29, 0x4b, &(0x7f0000000100)=0x4, 0x4)
r4 = openat$full(0xffffff9c, &(0x7f0000000280), 0x0, 0x0)
setsockopt$TIPC_MCAST_REPLICAST(r4, 0x10f, 0x86)
fsopen(&(0x7f0000000140)='devpts\x00', 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet6(r3, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000095000000000000003b7a93aa71cc64dd6a2ea0f1b31eb8c4c709818740624b9188b0d0258e38de961129e89ccd564208641792519b0fc0c3849238705a8ca2d990c3c59d40f1dacbb5e7f6c73416d09e70a120ddda3a87863c2ba216d46e281f1001bc3c78ba3d74af460672c76c5e4cd4e419f5c01060d92c31918ef6a39126ee03a9"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = socket$nl_route(0x10, 0x3, 0x0)
accept4$alg(r2, 0x0, 0x0, 0x80800)
sendmsg$nl_route(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x32b}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GENEVE_PORT={0x6, 0x5, 0x4e20}, @IFLA_GENEVE_COLLECT_METADATA={0x4}]}}}]}, 0x40}}, 0x0)
1.069260244s ago: executing program 3 (id=1688):
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x400, 0x70bd2c, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x5, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_setup(0x7c45, &(0x7f0000000080)={0x0, 0x20, 0x13100, 0x0, 0xfffffffc}, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r3 = syz_io_uring_setup(0x11a, &(0x7f0000000100), &(0x7f0000000280)=<r4=>0x0, &(0x7f0000000200)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000000c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0xc})
io_uring_enter(r3, 0x47f6, 0x0, 0x0, 0x0, 0x0)
951.690681ms ago: executing program 2 (id=1689):
syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
r0 = syz_open_dev$vim2m(&(0x7f0000000040), 0x0, 0x2)
ioctl$vim2m_VIDIOC_DQBUF(r0, 0xc0585611, &(0x7f0000000240)=@multiplanar_fd={0x0, 0x2, 0x4, 0x0, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "19893bbb"}, 0x0, 0x4, {0x0}})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
syz_open_dev$ptys(0xc, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=ANY=[@ANYBLOB="240000001a00010000000000000000000a00000000000000"], 0x24}}, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
socket$nl_generic(0x11, 0x3, 0x10)
r6 = syz_open_procfs(0x0, &(0x7f0000000080)='net/anycast6\x00')
preadv(r6, &(0x7f0000000280)=[{&(0x7f0000000480)=""/66, 0x42}], 0x1, 0x0, 0x0)
sendmsg$IPVS_CMD_NEW_DAEMON(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[], 0x58}}, 0x0)
io_setup(0x1, &(0x7f00000004c0)=<r7=>0x0)
r8 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000000), 0x8100)
io_submit(r7, 0x3, &(0x7f00000003c0)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x5, r8, 0x0, 0x300, 0x1800}, 0x0, 0x0])
438.300476ms ago: executing program 0 (id=1690):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$rxrpc(0x21, 0x2, 0xa)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x14, 0x2, 0x3, 0x3}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, 0x2, 0x3, 0x401, 0x0, 0x0, {0x0, 0x0, 0x10}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1}}]}, 0x1c}}, 0x0)
r1 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_INIT(r1, 0x29, 0xc8, &(0x7f0000000340), 0x4)
r2 = socket$packet(0x11, 0x2, 0x300)
sendmmsg$sock(r2, &(0x7f0000000740)=[{{&(0x7f0000000080)=@phonet={0x23, 0x0, 0x0, 0x7}, 0x80, 0x0, 0x0, &(0x7f0000000240)=[@timestamping={{0x10, 0x1, 0x25, 0x4}}], 0x10}}], 0x1, 0x0)
setsockopt$MRT6_ADD_MIF(r1, 0x29, 0xca, &(0x7f0000000040)={0x0, 0x1}, 0xc)
r3 = io_uring_setup(0x21e9, &(0x7f0000002400)={0x0, 0xc3c4, 0x0, 0x2, 0x176})
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r4, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r4, 0x6, 0x14, &(0x7f0000000340)=0x2, 0xa2)
connect$inet6(r4, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, 0x1c)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f000000e0c0), 0x10010)
sendfile(r4, r5, &(0x7f0000000100), 0x100000000010001)
getpeername$packet(r5, &(0x7f0000000140)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000200)=0x14)
setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000280)={@mcast1, r6}, 0x14)
close_range(r3, 0xffffffffffffffff, 0x0)
r7 = socket$igmp6(0xa, 0x3, 0x2)
shutdown(r7, 0x0)
setsockopt$MRT6_DONE(r1, 0x29, 0xc9, 0x0, 0x0)
438.030724ms ago: executing program 1 (id=1691):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_SET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x18, 0x1410, 0x1, 0x70bd2c, 0x25dfdbfe, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x18}, 0x1, 0x0, 0x0, 0x24044836}, 0xc094) (fail_nth: 5)
278.118748ms ago: executing program 1 (id=1692):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x4}, 0x6)
io_setup(0x6, &(0x7f00000003c0)=<r1=>0x0)
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x62081, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0)
close(r3)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r4, 0x0)
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x894b, 0x0)
ioctl$SOUND_PCM_READ_CHANNELS(r3, 0x80045006, &(0x7f0000000400))
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xe, 0x4, 0x8, 0x200b, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
io_submit(r1, 0x1, &(0x7f00000000c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}])
r5 = openat$binfmt(0xffffff9c, 0x0, 0x41, 0x1ff)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r3)
sendmsg$NL80211_CMD_SET_COALESCE(r3, &(0x7f0000000380)={&(0x7f0000000140), 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x24, r6, 0x200, 0x70bd2d, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_COALESCE_RULE_DELAY={0x8, 0x1, 0x10}, @NL80211_ATTR_COALESCE_RULE_DELAY={0x8, 0x1, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x51}, 0x4004)
r7 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
write$char_usb(r7, &(0x7f00000008c0)='-0', 0x2)
write$binfmt_misc(r5, &(0x7f0000000300), 0x0)
r8 = signalfd(r2, &(0x7f0000000100)={[0x3, 0x4]}, 0x8)
ioctl$FS_IOC_MEASURE_VERITY(r8, 0xc0046686, &(0x7f0000000200)={0x2, 0xca, "2bf1c5f55a45894b1c4109f59af8a772461e21a86854d7fea21b6b169c5c56c175baddb01ff36d00f491238c5f362ebb217c03b7da0900d20ebca6ab3865754c0d0933c424773563cb4212d58c4363cd3a2682486d1feea56d5f6e09195c4e96cdb96641d17a1edd4f3224826ac4fbb0195a5d1cad42f21e88185ca955194abedd73057823252ba8c753c597590de7ad28ac9b6b94eedd877b4d9460d5ad26512580af5632f38b94f7cd35cab512341356958df4b6bed9e2905c2c0e0812283523b627635fa5ac336b1b"})
ioctl$int_out(0xffffffffffffffff, 0x0, &(0x7f0000000040))
251.016571ms ago: executing program 0 (id=1693):
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'bridge_slave_0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r0)
sendmsg$NL80211_CMD_TESTMODE(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000200)={0x24c, r2, 0x10, 0x70bd2d, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_TESTDATA={0x93, 0x45, "3e3caf68005e94dd754bfb46e041db9c6b0a9db803369d11459ffdcf2f2c04463403ecccfeeb7f3d43d06d5e3e79e9712ad877c2b51f90094e5817c38644bdd03679b224d330a80c490126f9463f28ef6f824d4659f4ad3f1d34c43a608005a35170217e3fedcd6303f05c5d960b579d64c8ee5e47a089d035bd114afd6ee92513c6735ae9a290d48b24628335067e"}, @NL80211_ATTR_TESTDATA={0x6d, 0x45, "e84edc1786a537281c0139c8ee525afe2dbe88e3b4894a45c321fea166e143540fda172b6017b5e544b2f25f89f0fc534ab217a62b839eafad51a32f488dbb992b80789c1c22efdb267b37ba58354d6daea62fc8d706a09e3ccbc28786e3955caf82480eca7fb11121"}, @NL80211_ATTR_TESTDATA={0xd0, 0x45, "d51f6e10c47e8a0fbedddff594d0c1d0a25196ad2b76ff3c00c07b1832472c35da9e872fa6377a1683a26846ecd08566bb7ea0f583581f51af766d9018d7d23e0f2451e1efed98991697513a6f294a0bd0d773e79c722500643ec2a5785449f406fc420df0a0c39fc3e8a1853ccbebffb8bdd101b17c3cc7eda13ea26178569965809161ce51bba6d217bafc419db2aec80e422bfcdf9a371062004e2fd87c098bbb198c80de11956b63d49f7ad300c7f1a916d2f59218773769b546207390ecb6d00ac2d32820ecc6a589da"}, @NL80211_ATTR_TESTDATA={0x64, 0x45, "a7a800ed316a9368eff3581f7054c6a66076c1c308ae8bbe54ffb1e63ca1c85826351231e88e8081e84d03ba5981ffc5745fd8410c69ab8f492fc677f605fdd8f4ff906db882aa9f26613caa3ae57442d5fe7bed44029e2ac295dfea4c4996ac"}]}, 0x24c}, 0x1, 0x0, 0x0, 0x4}, 0x4000840)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x4c, &(0x7f0000000080)={&(0x7f0000000480)=ANY=[@ANYBLOB="240000001d00070f000200000000000007000000", @ANYRES32=r1, @ANYBLOB='\x00\x00g\x00\b\x00\b\x00', @ANYRES64=r1], 0x24}}, 0x0)
170.861754ms ago: executing program 0 (id=1694):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
preadv2(0xffffffffffffffff, 0x0, 0x0, 0x2b, 0x0, 0x0)
unshare(0x400)
landlock_create_ruleset(0x0, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x28100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_IRQFD(r4, 0x4020ae76, &(0x7f0000000000)={0xffffffffffffffff, 0xfff, 0x300})
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x4, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', 0xffffffffffffffff, 0x0, 0x4}, 0x18)
openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
close(0x3)
r6 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
setsockopt$inet6_dccp_buf(r6, 0x21, 0xf, 0x0, 0x0)
r7 = io_uring_setup(0x3902, &(0x7f0000000000)={0x0, 0x0, 0x1000, 0x3, 0x3})
r8 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r8, 0x8933, &(0x7f0000000280)={'vcan0\x00', <r9=>0x0})
connect$can_j1939(r8, &(0x7f0000005a80)={0x1d, r9, 0x1, {0x2, 0x1, 0x4}, 0xff}, 0x18)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000e00)={r5, 0xe0, &(0x7f0000000d00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100), ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, &(0x7f0000000b80)=[0x0, 0x0, 0x0], &(0x7f0000000bc0), 0x0, 0xec, &(0x7f0000000c00)=[{}], 0x8, 0x10, &(0x7f0000000c40), &(0x7f0000000c80), 0x8, 0x3f, 0x8, 0x8, &(0x7f0000000100)}}, 0x10)
close_range(r7, 0xffffffffffffffff, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
85.933344ms ago: executing program 3 (id=1695):
write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0xfffffd2c)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ADD(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x24044025}, 0x48844)
writev(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
r1 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff})
ioctl$NBD_SET_SOCK(r1, 0xab00, r2)
r3 = syz_open_dev$ndb(&(0x7f0000000080), 0x0, 0x0)
ioctl$NBD_SET_SOCK(r3, 0xab00, r2)
ioctl$NBD_SET_FLAGS(r3, 0xab0a, 0x1000001000104)
ioctl$NBD_SET_SOCK(r3, 0xab00, r2)
ioctl$NBD_DO_IT(r1, 0xab03)
close_range(r0, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
0s ago: executing program 1 (id=1696):
r0 = io_uring_setup(0x4778, &(0x7f0000000140)={0x0, 0x5ff9, 0x2, 0x5, 0xce})
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0xfffc, @dev}], 0x10)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0xfffc, @dev={0xac, 0x14, 0x14, 0x4}}], 0x10)
sendmmsg$inet6(r2, &(0x7f000000cf00)=[{{&(0x7f00000084c0)={0xa, 0xfffc, 0x0, @loopback}, 0x1c, &(0x7f0000008900)=[{&(0x7f0000008500)="88", 0x1}], 0x1}}], 0x1, 0x0)
sendmmsg$inet6(r1, &(0x7f000000cf00)=[{{&(0x7f00000084c0)={0xa, 0xfffc, 0x0, @loopback}, 0x1c, &(0x7f0000008900)=[{&(0x7f0000008500)="88", 0xff12}], 0x1}}], 0x1, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
add_key(0x0, &(0x7f0000000180)={'syz', 0x3}, &(0x7f0000000080)="775f19c89cf8afb63c18dfff9f78acb6e126e541dee533cbdf79dadac4c9dd15b0004a86c2af8d95091510fc02b2f7b3be032837393463098800004d3dcfc7de54a718bbbefd1437", 0x48, 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffffffffffffff86dd6060626000102c00fe8000000000000000000000000000bbfe8000000000000000000000000000aa110040"], 0x0)
kernel console output (not intermixed with test programs):
netlink: 28 bytes leftover after parsing attributes in process `syz.3.1010'.
[ 183.614470][ T5356] Dev loop2: unable to read RDB block 7
[ 183.616435][ T5356] loop2: AHDI p1 p2 p3 p4
[ 183.617718][ T5356] loop2: partition table partially beyond EOD, truncated
[ 183.619788][ T5356] loop2: p1 start 2316988880 is beyond EOD, truncated
[ 183.621736][ T5356] loop2: p2 start 3872735472 is beyond EOD, truncated
[ 183.623635][ T5356] loop2: p3 start 1193984827 is beyond EOD, truncated
[ 184.005793][ T9472] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 184.047010][ T5356] Dev loop2: unable to read RDB block 7
[ 184.048671][ T5356] loop2: AHDI p1 p2 p3 p4
[ 184.050066][ T5356] loop2: partition table partially beyond EOD, truncated
[ 184.052578][ T5356] loop2: p1 start 2316988880 is beyond EOD, truncated
[ 184.054834][ T5356] loop2: p2 start 3872735472 is beyond EOD, truncated
[ 184.056963][ T5356] loop2: p3 start 1193984827 is beyond EOD, truncated
[ 184.144659][ T9477] FAULT_INJECTION: forcing a failure.
[ 184.144659][ T9477] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 184.148636][ T9477] CPU: 0 UID: 0 PID: 9477 Comm: syz.2.1013 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 184.151650][ T9477] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 184.155067][ T9477] Call Trace:
[ 184.156385][ T9477] <TASK>
[ 184.157491][ T9477] dump_stack_lvl+0x16c/0x1f0
[ 184.159350][ T9477] should_fail_ex+0x497/0x5b0
[ 184.161269][ T9477] _copy_to_user+0x32/0xd0
[ 184.162973][ T9477] simple_read_from_buffer+0xd0/0x160
[ 184.164811][ T9477] proc_fail_nth_read+0x198/0x270
[ 184.166768][ T9477] ? __pfx_proc_fail_nth_read+0x10/0x10
[ 184.168854][ T9477] ? __pfx_proc_fail_nth_read+0x10/0x10
[ 184.171049][ T9477] vfs_read+0x1df/0xbe0
[ 184.172606][ T9477] ? __fget_files+0x1fc/0x3a0
[ 184.174397][ T9477] ? __pfx___mutex_lock+0x10/0x10
[ 184.176402][ T9477] ? __pfx_vfs_read+0x10/0x10
[ 184.178205][ T9477] ? __fget_files+0x206/0x3a0
[ 184.179988][ T9477] ksys_read+0x12b/0x250
[ 184.181592][ T9477] ? __pfx_ksys_read+0x10/0x10
[ 184.183389][ T9477] __do_fast_syscall_32+0x73/0x120
[ 184.185300][ T9477] do_fast_syscall_32+0x32/0x80
[ 184.187129][ T9477] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 184.189498][ T9477] RIP: 0023:0xf7ff2579
[ 184.191076][ T9477] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 184.198838][ T9477] RSP: 002b:00000000f5146590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 184.202202][ T9477] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00000000f5146620
[ 184.205382][ T9477] RDX: 000000000000000f RSI: 00000000f7483ff4 RDI: 0000000000000000
[ 184.208586][ T9477] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 184.211660][ T9477] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 184.214999][ T9477] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 184.218162][ T9477] </TASK>
[ 184.219894][ T5294] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 184.339852][ T5356] Dev loop2: unable to read RDB block 7
[ 184.341456][ T5356] loop2: AHDI p1 p2 p3 p4
[ 184.344147][ T5356] loop2: partition table partially beyond EOD, truncated
[ 184.347026][ T5356] loop2: p1 start 2316988880 is beyond EOD, truncated
[ 184.349386][ T5356] loop2: p2 start 3872735472 is beyond EOD, truncated
[ 184.352001][ T5356] loop2: p3 start 1193984827 is beyond EOD, truncated
[ 184.420905][ T9484] FAULT_INJECTION: forcing a failure.
[ 184.420905][ T9484] name failslab, interval 1, probability 0, space 0, times 0
[ 184.424558][ T9484] CPU: 2 UID: 0 PID: 9484 Comm: syz.0.1018 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 184.427633][ T9484] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 184.430715][ T9484] Call Trace:
[ 184.431690][ T9484] <TASK>
[ 184.432562][ T9484] dump_stack_lvl+0x16c/0x1f0
[ 184.433935][ T9484] should_fail_ex+0x497/0x5b0
[ 184.435341][ T9484] ? fs_reclaim_acquire+0xae/0x150
[ 184.436956][ T9484] should_failslab+0xc2/0x120
[ 184.438346][ T9484] __kmalloc_noprof+0xce/0x4f0
[ 184.439744][ T9484] ? __pfx_lock_acquire.part.0+0x10/0x10
[ 184.441329][ T9484] ? tomoyo_realpath_from_path+0xbf/0x710
[ 184.442997][ T9484] tomoyo_realpath_from_path+0xbf/0x710
[ 184.444598][ T9484] ? tomoyo_path_number_perm+0x235/0x5b0
[ 184.446215][ T9484] tomoyo_path_number_perm+0x248/0x5b0
[ 184.447838][ T9484] ? tomoyo_path_number_perm+0x235/0x5b0
[ 184.449475][ T9484] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 184.451219][ T9484] ? __pfx_lock_release+0x10/0x10
[ 184.452704][ T9484] ? trace_lock_acquire+0x14e/0x1f0
[ 184.454208][ T9484] ? lock_acquire+0x2f/0xb0
[ 184.455567][ T9484] ? __fget_files+0x40/0x3a0
[ 184.456937][ T9484] ? __fget_files+0x206/0x3a0
[ 184.458337][ T9484] security_file_ioctl_compat+0x9b/0x240
[ 184.459964][ T9484] __do_compat_sys_ioctl+0x4e/0x2c0
[ 184.461581][ T9484] __do_fast_syscall_32+0x73/0x120
[ 184.463063][ T9484] do_fast_syscall_32+0x32/0x80
[ 184.464477][ T9484] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 184.466392][ T9484] RIP: 0023:0xf707e579
[ 184.467642][ T9484] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 184.473165][ T9484] RSP: 002b:00000000f507055c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 184.475605][ T9484] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000040026102
[ 184.477903][ T9484] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 184.480153][ T9484] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 184.482374][ T9484] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 184.484663][ T9484] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 184.486994][ T9484] </TASK>
[ 184.489449][ T9484] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 184.606347][ T9488] netlink: 'syz.2.1016': attribute type 10 has an invalid length.
[ 184.613981][ T9488] bond0: (slave netdevsim0): Releasing backup interface
[ 184.622454][ T9488] team0: Port device netdevsim0 added
[ 184.633892][ T9488] netlink: 'syz.2.1016': attribute type 10 has an invalid length.
[ 184.641582][ T9488] team0: Port device netdevsim0 removed
[ 184.648108][ T9488] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[ 184.720094][ T9490] vlan0: entered promiscuous mode
[ 185.534243][ T9513] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1025'.
[ 185.775325][ T1013] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[ 185.946374][ T1013] usb 7-1: Using ep0 maxpacket: 16
[ 185.989422][ T1013] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87
[ 185.992703][ T1013] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 185.995926][ T1013] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 8285, setting to 1024
[ 186.001219][ T1013] usb 7-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[ 186.003850][ T1013] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 186.006416][ T1013] usb 7-1: Product: syz
[ 186.008094][ T1013] usb 7-1: Manufacturer: syz
[ 186.009910][ T1013] usb 7-1: SerialNumber: syz
[ 186.015947][ T1013] usb 7-1: config 0 descriptor??
[ 186.300867][ T1013] appledisplay 7-1:0.0: Error while getting initial brightness: -110
[ 186.307532][ T1013] appledisplay 7-1:0.0: probe with driver appledisplay failed with error -110
[ 186.512264][ T4715] usb 7-1: USB disconnect, device number 11
[ 187.126116][ T9544] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1036'.
[ 188.233378][ T9574] netlink: 'syz.2.1041': attribute type 4 has an invalid length.
[ 188.375262][ T9578] random: crng reseeded on system resumption
[ 188.459770][ T9582] siw: device registration error -23
[ 188.587978][ T9587] FAULT_INJECTION: forcing a failure.
[ 188.587978][ T9587] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 188.591803][ T9587] CPU: 2 UID: 0 PID: 9587 Comm: syz.2.1043 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 188.594803][ T9587] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 188.597865][ T9587] Call Trace:
[ 188.598829][ T9587] <TASK>
[ 188.599923][ T9587] dump_stack_lvl+0x16c/0x1f0
[ 188.601669][ T9587] should_fail_ex+0x497/0x5b0
[ 188.603423][ T9587] _copy_from_user+0x2e/0xd0
[ 188.605148][ T9587] get_compat_msghdr+0xa8/0x170
[ 188.606969][ T9587] ? __pfx_get_compat_msghdr+0x10/0x10
[ 188.608986][ T9587] ___sys_recvmsg+0x193/0x1a0
[ 188.610739][ T9587] ? __pfx____sys_recvmsg+0x10/0x10
[ 188.612663][ T9587] ? __fget_files+0x1fc/0x3a0
[ 188.614407][ T9587] ? trace_lock_acquire+0x14e/0x1f0
[ 188.616362][ T9587] ? __fget_files+0x206/0x3a0
[ 188.618103][ T9587] ? __pfx___might_resched+0x10/0x10
[ 188.620066][ T9587] do_recvmmsg+0x55d/0x740
[ 188.621733][ T9587] ? __pfx_do_recvmmsg+0x10/0x10
[ 188.623572][ T9587] ? vfs_write+0x306/0x1150
[ 188.625279][ T9587] ? __fget_files+0x206/0x3a0
[ 188.627035][ T9587] __sys_recvmmsg+0x21e/0x280
[ 188.628795][ T9587] ? __pfx___sys_recvmmsg+0x10/0x10
[ 188.630721][ T9587] ? __pfx_ksys_write+0x10/0x10
[ 188.632319][ T9587] __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[ 188.634235][ T9587] ? lockdep_hardirqs_on+0x7c/0x110
[ 188.635837][ T9587] ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[ 188.638187][ T9587] __do_fast_syscall_32+0x73/0x120
[ 188.639692][ T9587] do_fast_syscall_32+0x32/0x80
[ 188.641111][ T9587] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 188.642917][ T9587] RIP: 0023:0xf7ff2579
[ 188.644102][ T9587] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 188.649591][ T9587] RSP: 002b:00000000f512555c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 188.651982][ T9587] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000020002940
[ 188.654274][ T9587] RDX: 000000000000f000 RSI: 0000000000010002 RDI: 0000000000000000
[ 188.657064][ T9587] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 188.659481][ T9587] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 188.662030][ T9587] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 188.664856][ T9587] </TASK>
[ 188.717147][ T9578] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[ 189.135722][ T9606] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1050'.
[ 189.389697][ T9615] siw: device registration error -23
[ 189.413346][ T9613] syz.3.1053 (9613): drop_caches: 2
[ 189.620824][ T9633] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1058'.
[ 190.449740][ T9631] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 190.453006][ T9631] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 190.488673][ T9639] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1060'.
[ 190.571820][ T9644] FAULT_INJECTION: forcing a failure.
[ 190.571820][ T9644] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 190.576966][ T9644] CPU: 0 UID: 0 PID: 9644 Comm: syz.0.1062 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 190.580046][ T9644] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 190.583138][ T9644] Call Trace:
[ 190.584127][ T9644] <TASK>
[ 190.585001][ T9644] dump_stack_lvl+0x16c/0x1f0
[ 190.586371][ T9644] should_fail_ex+0x497/0x5b0
[ 190.587813][ T9644] _copy_to_user+0x32/0xd0
[ 190.589112][ T9644] rng_dev_read+0x24b/0x790
[ 190.590401][ T9644] ? __pfx_rng_dev_read+0x10/0x10
[ 190.591870][ T9644] ? bpf_lsm_file_permission+0x9/0x10
[ 190.593421][ T9644] ? security_file_permission+0x71/0x210
[ 190.595061][ T9644] ? __pfx_rng_dev_read+0x10/0x10
[ 190.596538][ T9644] vfs_readv+0x6bf/0x890
[ 190.597791][ T9644] ? __pfx___lock_acquire+0x10/0x10
[ 190.599329][ T9644] ? find_held_lock+0x2d/0x110
[ 190.600811][ T9644] ? __pfx_vfs_readv+0x10/0x10
[ 190.602245][ T9644] ? __fget_files+0x1fc/0x3a0
[ 190.603632][ T9644] ? __pfx_lock_release+0x10/0x10
[ 190.605119][ T9644] ? __fget_files+0x206/0x3a0
[ 190.606514][ T9644] ? do_preadv+0x1b1/0x270
[ 190.607836][ T9644] do_preadv+0x1b1/0x270
[ 190.609069][ T9644] ? __pfx_do_preadv+0x10/0x10
[ 190.610458][ T9644] __do_fast_syscall_32+0x73/0x120
[ 190.611968][ T9644] do_fast_syscall_32+0x32/0x80
[ 190.613381][ T9644] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 190.615217][ T9644] RIP: 0023:0xf707e579
[ 190.616431][ T9644] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 190.621879][ T9644] RSP: 002b:00000000f504f55c EFLAGS: 00000296 ORIG_RAX: 000000000000014d
[ 190.624292][ T9644] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000240
[ 190.626634][ T9644] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[ 190.628940][ T9644] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 190.631199][ T9644] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 190.633458][ T9644] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 190.635639][ T9644] </TASK>
[ 190.644292][ T9641] fuse: Unknown parameter 'gro@'
[ 190.648347][ T9641] overlay: ./file0 is not a directory
[ 190.714622][ T5999] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[ 190.766362][ T40] audit: type=1326 audit(1736544777.793:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9646 comm="syz.1.1063" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[ 190.774678][ T40] audit: type=1326 audit(1736544777.793:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9646 comm="syz.1.1063" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[ 190.784935][ T40] audit: type=1326 audit(1736544777.793:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9646 comm="syz.1.1063" exe="/syz-executor" sig=0 arch=40000003 syscall=360 compat=1 ip=0xf70ee579 code=0x7ffc0000
[ 190.795281][ T40] audit: type=1326 audit(1736544777.793:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9646 comm="syz.1.1063" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[ 190.803585][ T40] audit: type=1326 audit(1736544777.793:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9646 comm="syz.1.1063" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[ 190.811465][ T40] audit: type=1326 audit(1736544777.793:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9646 comm="syz.1.1063" exe="/syz-executor" sig=0 arch=40000003 syscall=385 compat=1 ip=0xf70ee579 code=0x7ffc0000
[ 190.819048][ T40] audit: type=1326 audit(1736544777.793:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9646 comm="syz.1.1063" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[ 190.826864][ T40] audit: type=1326 audit(1736544777.793:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9646 comm="syz.1.1063" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[ 190.835090][ T40] audit: type=1326 audit(1736544777.793:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9646 comm="syz.1.1063" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf70ee579 code=0x7ffc0000
[ 190.843084][ T40] audit: type=1326 audit(1736544777.793:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9646 comm="syz.1.1063" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[ 190.883584][ T5999] usb 7-1: config index 0 descriptor too short (expected 23569, got 27)
[ 190.886284][ T5999] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 190.892741][ T5999] usb 7-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[ 190.895520][ T5999] usb 7-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[ 190.898423][ T5999] usb 7-1: Manufacturer: syz
[ 190.902156][ T5999] usb 7-1: config 0 descriptor??
[ 190.949517][ T5999] rc_core: IR keymap rc-hauppauge not found
[ 190.951366][ T5999] Registered IR keymap rc-empty
[ 190.953430][ T5999] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0
[ 190.962070][ T5999] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0/input25
[ 191.317027][ T9660] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 191.815485][ T5294] Bluetooth: hci2: command 0x0406 tx timeout
[ 191.849659][ T9682] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 191.988594][ T9686] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1070'.
[ 192.180166][ T9692] RDS: rds_bind could not find a transport for ::ffff:172.30.1.4, load rds_tcp or rds_rdma?
[ 192.183680][ T9693] RDS: rds_bind could not find a transport for ::ffff:172.30.1.4, load rds_tcp or rds_rdma?
[ 192.861708][ T9702] netlink: 'syz.0.1077': attribute type 21 has an invalid length.
[ 192.986585][ T9710] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[ 193.076985][ T1013] usb 6-1: new full-speed USB device number 15 using dummy_hcd
[ 193.185151][ T831] usb 7-1: USB disconnect, device number 12
[ 193.237300][ T1013] usb 6-1: device descriptor read/64, error -71
[ 193.515911][ T1013] usb 6-1: new full-speed USB device number 16 using dummy_hcd
[ 193.664956][ T1013] usb 6-1: device descriptor read/64, error -71
[ 193.782713][ T1013] usb usb6-port1: attempt power cycle
[ 193.954841][ T9726] FAULT_INJECTION: forcing a failure.
[ 193.954841][ T9726] name failslab, interval 1, probability 0, space 0, times 0
[ 193.990633][ T9726] CPU: 0 UID: 0 PID: 9726 Comm: syz.2.1086 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 193.993307][ T9726] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 193.995989][ T9726] Call Trace:
[ 193.996830][ T9726] <TASK>
[ 193.997604][ T9726] dump_stack_lvl+0x16c/0x1f0
[ 193.998794][ T9726] should_fail_ex+0x497/0x5b0
[ 193.999990][ T9726] ? fs_reclaim_acquire+0xae/0x150
[ 194.001284][ T9726] should_failslab+0xc2/0x120
[ 194.002455][ T9726] __kmalloc_noprof+0xce/0x4f0
[ 194.003656][ T9726] ? is_bpf_text_address+0x8a/0x1a0
[ 194.005041][ T9726] ? tomoyo_encode2+0x100/0x3e0
[ 194.006309][ T9726] tomoyo_encode2+0x100/0x3e0
[ 194.007509][ T9726] ? bpf_ksym_find+0x124/0x1c0
[ 194.008688][ T9726] tomoyo_encode+0x2c/0x40
[ 194.009776][ T9726] tomoyo_mount_acl+0x145/0x880
[ 194.010940][ T9726] ? hlock_class+0x4e/0x130
[ 194.012068][ T9726] ? __lock_acquire+0x15a9/0x3c40
[ 194.013269][ T9726] ? __pfx_tomoyo_mount_acl+0x10/0x10
[ 194.014568][ T9726] ? __pfx___lock_acquire+0x10/0x10
[ 194.015823][ T9726] ? stack_trace_save+0x95/0xd0
[ 194.017004][ T9726] ? __pfx_lock_release+0x10/0x10
[ 194.018214][ T9726] ? trace_lock_acquire+0x14e/0x1f0
[ 194.019505][ T9726] ? tomoyo_mount_permission+0x149/0x420
[ 194.020876][ T9726] ? lock_acquire+0x2f/0xb0
[ 194.021986][ T9726] ? tomoyo_mount_permission+0x149/0x420
[ 194.023382][ T9726] tomoyo_mount_permission+0x16e/0x420
[ 194.024777][ T9726] ? tomoyo_mount_permission+0x149/0x420
[ 194.026318][ T9726] ? __pfx_tomoyo_mount_permission+0x10/0x10
[ 194.027834][ T9726] ? get_current_fs_domain+0x184/0x1f0
[ 194.029458][ T9726] security_sb_mount+0x9b/0x260
[ 194.031126][ T9726] path_mount+0x129/0x1f00
[ 194.032617][ T9726] ? kmem_cache_free+0x152/0x4c0
[ 194.034279][ T9726] ? __pfx_path_mount+0x10/0x10
[ 194.035936][ T9726] ? putname+0x13c/0x180
[ 194.037379][ T9726] __ia32_sys_mount+0x292/0x310
[ 194.039007][ T9726] ? __pfx___ia32_sys_mount+0x10/0x10
[ 194.040802][ T9726] ? rcu_is_watching+0x12/0xc0
[ 194.042410][ T9726] __do_fast_syscall_32+0x73/0x120
[ 194.044151][ T9726] do_fast_syscall_32+0x32/0x80
[ 194.045966][ T9726] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 194.048124][ T9726] RIP: 0023:0xf7ff2579
[ 194.049263][ T9726] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 194.050040][ T5294] Bluetooth: hci2: command 0x0406 tx timeout
[ 194.054020][ T9726] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[ 194.057916][ T9726] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000020004a00
[ 194.059945][ T9726] RDX: 0000000020000040 RSI: 000000000100080f RDI: 0000000000000000
[ 194.061931][ T9726] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 194.063893][ T9726] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 194.065934][ T9726] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 194.068005][ T9726] </TASK>
[ 194.073178][ T9728] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 194.159263][ T1013] usb 6-1: new full-speed USB device number 17 using dummy_hcd
[ 194.178573][ T1013] usb 6-1: device descriptor read/8, error -71
[ 194.445393][ T1013] usb 6-1: new full-speed USB device number 18 using dummy_hcd
[ 194.485183][ T1013] usb 6-1: device descriptor read/8, error -71
[ 194.584672][ T9745] netlink: 'syz.0.1092': attribute type 10 has an invalid length.
[ 194.596057][ T1013] usb usb6-port1: unable to enumerate USB device
[ 194.603990][ T9745] team0: left promiscuous mode
[ 194.606754][ T9745] team0: left allmulticast mode
[ 194.711960][ T9745] batman_adv: batadv0: Adding interface: team0
[ 194.714656][ T9745] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 194.722453][ T9745] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[ 195.514539][ T5999] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[ 195.676767][ T5999] usb 7-1: config 0 has an invalid interface number: 120 but max is 0
[ 195.679309][ T5999] usb 7-1: config 0 has no interface number 0
[ 195.681507][ T5999] usb 7-1: config 0 interface 120 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 195.685654][ T5999] usb 7-1: config 0 interface 120 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 195.689142][ T5999] usb 7-1: config 0 interface 120 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[ 195.692626][ T5999] usb 7-1: New USB device found, idVendor=16e3, idProduct=f9e9, bcdDevice= 0.58
[ 195.695441][ T5999] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 195.699573][ T5999] usb 7-1: config 0 descriptor??
[ 195.701906][ T9757] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 195.708867][ T5999] input: USB Touchscreen 16e3:f9e9 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.120/input/input26
[ 195.717120][ C1] usbtouchscreen 7-1:0.120: usbtouch_irq - usb_submit_urb failed with result: -1
[ 195.922187][ T9757] trusted_key: encrypted_key: insufficient parameters specified
[ 196.085349][ T9770] sctp: [Deprecated]: syz.1.1098 (pid 9770) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 196.085349][ T9770] Use struct sctp_sack_info instead
[ 196.106143][ T9770] sctp: [Deprecated]: syz.1.1098 (pid 9770) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 196.106143][ T9770] Use struct sctp_sack_info instead
[ 196.263724][ T9778] serio: Serial port ttynull
[ 196.661540][ T9790] overlayfs: option "workdir=." is useless in a non-upper mount, ignore
[ 196.663996][ T9790] overlayfs: missing 'lowerdir'
[ 196.677263][ T9791] serio: Serial port ttynull
[ 196.773523][ T9797] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1107'.
[ 196.841909][ T5294] block nbd3: Receive control failed (result -107)
[ 196.941126][ T9798] bio_check_eod: 3 callbacks suppressed
[ 196.941137][ T9798] syz.3.1107: attempt to access beyond end of device
[ 196.941137][ T9798] nbd3: rw=0, sector=64, nr_sectors = 2 limit=0
[ 196.946683][ T9798] syz.3.1107: attempt to access beyond end of device
[ 196.946683][ T9798] nbd3: rw=0, sector=512, nr_sectors = 2 limit=0
[ 196.950305][ T9798] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[ 196.952945][ T9798] syz.3.1107: attempt to access beyond end of device
[ 196.952945][ T9798] nbd3: rw=0, sector=1024, nr_sectors = 2 limit=0
[ 196.956465][ T9798] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[ 196.959374][ T9798] syz.3.1107: attempt to access beyond end of device
[ 196.959374][ T9798] nbd3: rw=0, sector=64, nr_sectors = 4 limit=0
[ 196.962980][ T9798] syz.3.1107: attempt to access beyond end of device
[ 196.962980][ T9798] nbd3: rw=0, sector=1024, nr_sectors = 4 limit=0
[ 196.966617][ T9798] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[ 196.969476][ T9798] syz.3.1107: attempt to access beyond end of device
[ 196.969476][ T9798] nbd3: rw=0, sector=2048, nr_sectors = 4 limit=0
[ 196.973104][ T9798] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[ 196.976215][ T9798] syz.3.1107: attempt to access beyond end of device
[ 196.976215][ T9798] nbd3: rw=0, sector=64, nr_sectors = 8 limit=0
[ 196.980115][ T9798] syz.3.1107: attempt to access beyond end of device
[ 196.980115][ T9798] nbd3: rw=0, sector=2048, nr_sectors = 8 limit=0
[ 196.983560][ T9798] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[ 196.987405][ T9798] syz.3.1107: attempt to access beyond end of device
[ 196.987405][ T9798] nbd3: rw=0, sector=4096, nr_sectors = 8 limit=0
[ 196.991385][ T9798] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[ 196.994242][ T9798] UDF-fs: warning (device nbd3): udf_fill_super: No partition found (1)
[ 197.001065][ T9797] nbd3: detected capacity change from 0 to 20
[ 197.003841][ T5933] block nbd3: Dead connection, failed to find a fallback
[ 197.005878][ T5933] block nbd3: shutting down sockets
[ 197.007527][ T5933] blk_print_req_error: 24 callbacks suppressed
[ 197.007534][ T5933] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 197.013293][ T5933] buffer_io_error: 23 callbacks suppressed
[ 197.013301][ T5933] Buffer I/O error on dev nbd3, logical block 0, async page read
[ 197.017384][ T5933] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 197.020947][ T5933] Buffer I/O error on dev nbd3, logical block 0, async page read
[ 197.023931][ T5933] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 197.026582][ T5933] Buffer I/O error on dev nbd3, logical block 0, async page read
[ 197.028869][ T5933] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 197.031502][ T5933] Buffer I/O error on dev nbd3, logical block 0, async page read
[ 197.034240][ T5933] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 197.036910][ T5933] Buffer I/O error on dev nbd3, logical block 0, async page read
[ 197.039590][ T5933] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 197.042376][ T5933] Buffer I/O error on dev nbd3, logical block 0, async page read
[ 197.045911][ T5933] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 197.049038][ T5933] Buffer I/O error on dev nbd3, logical block 0, async page read
[ 197.051537][ T5933] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 197.054575][ T5933] Buffer I/O error on dev nbd3, logical block 0, async page read
[ 197.056938][ T5933] ldm_validate_partition_table(): Disk read failed.
[ 197.058869][ T5933] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 197.061449][ T5933] Buffer I/O error on dev nbd3, logical block 0, async page read
[ 197.063690][ T5933] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 197.066761][ T5933] Buffer I/O error on dev nbd3, logical block 0, async page read
[ 197.069157][ T5933] Dev nbd3: unable to read RDB block 0
[ 197.071590][ T5933] nbd3: unable to read partition table
[ 197.073686][ T5933] nbd3: partition table beyond EOD, truncated
[ 197.076754][ T5933] ldm_validate_partition_table(): Disk read failed.
[ 197.078887][ T5933] Dev nbd3: unable to read RDB block 0
[ 197.080590][ T5933] nbd3: unable to read partition table
[ 197.082576][ T5933] nbd3: partition table beyond EOD, truncated
[ 197.719187][ T1412] ieee802154 phy0 wpan0: encryption failed: -22
[ 198.221933][ T9823] random: crng reseeded on system resumption
[ 198.286083][ T9824] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[ 198.304790][ T6195] usb 6-1: new full-speed USB device number 19 using dummy_hcd
[ 198.374074][ T9829] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1117'.
[ 198.477150][ T6195] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid maxpacket 512, setting to 64
[ 198.482632][ T6195] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[ 198.485982][ T6195] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 198.487141][ T1013] usb 7-1: USB disconnect, device number 13
[ 198.488874][ T6195] usb 6-1: Product: syz
[ 198.492035][ T6195] usb 6-1: Manufacturer: syz
[ 198.493712][ T6195] usb 6-1: SerialNumber: syz
[ 198.506054][ T9820] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[ 198.553591][ T9832] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[ 198.667993][ T9837] netlink: 'syz.2.1120': attribute type 1 has an invalid length.
[ 198.671004][ T9837] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1120'.
[ 198.721105][ T9839] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1121'.
[ 198.731613][ T6195] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 19 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[ 198.945595][ T9820] RDS: rds_bind could not find a transport for ::ffff:10.1.1.1, load rds_tcp or rds_rdma?
[ 199.904760][ T9856] binder: 9854:9856 ioctl 4144 0 returned -22
[ 200.641683][ T9873] capability: warning: `syz.3.1130' uses 32-bit capabilities (legacy support in use)
[ 200.742314][ T9874] random: crng reseeded on system resumption
[ 200.838055][ T9874] ebtables: wrong size: *len 120, entries_size 48, replsz 48
[ 201.263149][ T4715] usb 6-1: USB disconnect, device number 19
[ 201.265793][ T4715] usblp0: removed
[ 201.317469][ T9884] syz.1.1134: attempt to access beyond end of device
[ 201.317469][ T9884] nbd1: rw=0, sector=64, nr_sectors = 1 limit=0
[ 201.321380][ T9884] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[ 201.324640][ T9884] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[ 201.327981][ T9884] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[ 201.330972][ T9884] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[ 201.335267][ T9884] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[ 201.338079][ T9884] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[ 201.341189][ T9884] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[ 201.343886][ T9884] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[ 201.346634][ T9884] UDF-fs: warning (device nbd1): udf_fill_super: No partition found (1)
[ 203.104589][ T9921] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1146'.
[ 203.116572][ T40] kauditd_printk_skb: 20 callbacks suppressed
[ 203.116582][ T40] audit: type=1326 audit(1736544789.354:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9920 comm="syz.2.1146" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x0
[ 203.329278][ T5999] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[ 203.491015][ T5999] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
[ 203.494022][ T5999] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 203.498472][ T5999] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[ 203.501806][ T5999] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[ 203.504046][ T5999] usb 5-1: Manufacturer: syz
[ 203.506502][ T5999] usb 5-1: config 0 descriptor??
[ 203.553784][ T5999] rc_core: IR keymap rc-hauppauge not found
[ 203.555575][ T5999] Registered IR keymap rc-empty
[ 203.558487][ T5999] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0
[ 203.562021][ T5999] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input27
[ 203.821092][ T9932] FAULT_INJECTION: forcing a failure.
[ 203.821092][ T9932] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 203.824756][ T9932] CPU: 1 UID: 0 PID: 9932 Comm: syz.3.1148 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 203.827784][ T9932] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 203.830823][ T9932] Call Trace:
[ 203.831781][ T9932] <TASK>
[ 203.832648][ T9932] dump_stack_lvl+0x16c/0x1f0
[ 203.833983][ T9932] should_fail_ex+0x497/0x5b0
[ 203.835387][ T9932] _copy_to_iter+0x29b/0x1400
[ 203.836736][ T9932] ? pipe_read+0x13b/0x13f0
[ 203.838022][ T9932] ? __pfx__copy_to_iter+0x10/0x10
[ 203.839496][ T9932] ? __pfx___mutex_lock+0x10/0x10
[ 203.840928][ T9932] copy_page_to_iter+0xf1/0x180
[ 203.842281][ T9932] pipe_read+0x53d/0x13f0
[ 203.843504][ T9932] ? __pfx_pipe_read+0x10/0x10
[ 203.844860][ T9932] ? apparmor_file_permission+0x251/0x400
[ 203.846473][ T9932] ? bpf_lsm_file_permission+0x9/0x10
[ 203.847988][ T9932] ? security_file_permission+0x71/0x210
[ 203.849567][ T9932] vfs_read+0xa4c/0xbe0
[ 203.850766][ T9932] ? __pfx_vfs_read+0x10/0x10
[ 203.852132][ T9932] ? __fget_files+0x40/0x3a0
[ 203.853477][ T9932] ksys_read+0x207/0x250
[ 203.854700][ T9932] ? __pfx_ksys_read+0x10/0x10
[ 203.856069][ T9932] __do_fast_syscall_32+0x73/0x120
[ 203.857547][ T9932] do_fast_syscall_32+0x32/0x80
[ 203.858940][ T9932] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 203.860730][ T9932] RIP: 0023:0xf7fc2579
[ 203.861885][ T9932] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 203.867177][ T9932] RSP: 002b:00000000f50d455c EFLAGS: 00000296 ORIG_RAX: 0000000000000003
[ 203.869510][ T9932] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000200081c0
[ 203.871729][ T9932] RDX: 0000000000002020 RSI: 0000000000000000 RDI: 0000000000000000
[ 203.873945][ T9932] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 203.876172][ T9932] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 203.878397][ T9932] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 203.880574][ T9932] </TASK>
[ 203.881585][ C1] vkms_vblank_simulate: vblank timer overrun
[ 204.619132][ T40] audit: type=1326 audit(1736544790.758:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9954 comm="syz.3.1154" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc2579 code=0x7ffc0000
[ 204.627687][ T40] audit: type=1326 audit(1736544790.758:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9954 comm="syz.3.1154" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc2579 code=0x7ffc0000
[ 204.635741][ T40] audit: type=1326 audit(1736544790.767:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9954 comm="syz.3.1154" exe="/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf7fc2579 code=0x7ffc0000
[ 204.643949][ T40] audit: type=1326 audit(1736544790.767:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9954 comm="syz.3.1154" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc2579 code=0x7ffc0000
[ 204.652307][ T40] audit: type=1326 audit(1736544790.767:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9954 comm="syz.3.1154" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc2579 code=0x7ffc0000
[ 204.662590][ T40] audit: type=1326 audit(1736544790.776:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9954 comm="syz.3.1154" exe="/syz-executor" sig=0 arch=40000003 syscall=279 compat=1 ip=0xf7fc2579 code=0x7ffc0000
[ 204.671109][ T40] audit: type=1326 audit(1736544790.776:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9954 comm="syz.3.1154" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc2579 code=0x7ffc0000
[ 204.683843][ T40] audit: type=1326 audit(1736544790.776:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9954 comm="syz.3.1154" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc2579 code=0x7ffc0000
[ 204.708455][ T40] audit: type=1326 audit(1736544790.776:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9954 comm="syz.3.1154" exe="/syz-executor" sig=0 arch=40000003 syscall=280 compat=1 ip=0xf7fc2579 code=0x7ffc0000
[ 204.772280][ T9957] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1155'.
[ 204.905882][ T9961] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1156'.
[ 204.920122][ T9961] loop6: detected capacity change from 0 to 64
[ 204.931800][ C0] blk_print_req_error: 25 callbacks suppressed
[ 204.931811][ C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 8 prio class 2
[ 204.946061][ C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 204.948831][ C0] buffer_io_error: 25 callbacks suppressed
[ 204.948838][ C0] Buffer I/O error on dev loop6, logical block 0, async page read
[ 204.953644][ C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 204.956385][ C0] Buffer I/O error on dev loop6, logical block 0, async page read
[ 204.958987][ C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 204.962372][ C1] Buffer I/O error on dev loop6, logical block 0, async page read
[ 204.966579][ C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 204.969333][ C3] Buffer I/O error on dev loop6, logical block 0, async page read
[ 205.158793][ T9966] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1158'.
[ 205.217028][ T9967] bio_check_eod: 11 callbacks suppressed
[ 205.217040][ T9967] syz.1.1158: attempt to access beyond end of device
[ 205.217040][ T9967] nbd1: rw=0, sector=64, nr_sectors = 1 limit=0
[ 205.224837][ T9967] syz.1.1158: attempt to access beyond end of device
[ 205.224837][ T9967] nbd1: rw=0, sector=256, nr_sectors = 1 limit=0
[ 205.228556][ T9967] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[ 205.231240][ T9967] syz.1.1158: attempt to access beyond end of device
[ 205.231240][ T9967] nbd1: rw=0, sector=512, nr_sectors = 1 limit=0
[ 205.235364][ T9967] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[ 205.238258][ T9967] syz.1.1158: attempt to access beyond end of device
[ 205.238258][ T9967] nbd1: rw=0, sector=64, nr_sectors = 2 limit=0
[ 205.241941][ T9967] syz.1.1158: attempt to access beyond end of device
[ 205.241941][ T9967] nbd1: rw=0, sector=512, nr_sectors = 2 limit=0
[ 205.245742][ T9967] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[ 205.248998][ T9967] syz.1.1158: attempt to access beyond end of device
[ 205.248998][ T9967] nbd1: rw=0, sector=1024, nr_sectors = 2 limit=0
[ 205.252764][ T9967] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[ 205.255925][ T9967] syz.1.1158: attempt to access beyond end of device
[ 205.255925][ T9967] nbd1: rw=0, sector=64, nr_sectors = 4 limit=0
[ 205.259715][ T9967] syz.1.1158: attempt to access beyond end of device
[ 205.259715][ T9967] nbd1: rw=0, sector=1024, nr_sectors = 4 limit=0
[ 205.263359][ T9967] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[ 205.266445][ T9967] syz.1.1158: attempt to access beyond end of device
[ 205.266445][ T9967] nbd1: rw=0, sector=2048, nr_sectors = 4 limit=0
[ 205.270199][ T9967] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[ 205.273114][ T9967] syz.1.1158: attempt to access beyond end of device
[ 205.273114][ T9967] nbd1: rw=0, sector=64, nr_sectors = 8 limit=0
[ 205.279330][ T9967] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[ 205.282033][ T9967] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[ 205.284979][ T9967] UDF-fs: warning (device nbd1): udf_fill_super: No partition found (1)
[ 205.625109][ T9981] FAULT_INJECTION: forcing a failure.
[ 205.625109][ T9981] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 205.628955][ T9981] CPU: 2 UID: 0 PID: 9981 Comm: syz.1.1163 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 205.631820][ T9981] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 205.635050][ T9981] Call Trace:
[ 205.636395][ T9981] <TASK>
[ 205.637568][ T9981] dump_stack_lvl+0x16c/0x1f0
[ 205.639047][ T9981] should_fail_ex+0x497/0x5b0
[ 205.640415][ T9981] _copy_from_iter+0x29b/0x1400
[ 205.641805][ T9981] ? trace_lock_acquire+0x14e/0x1f0
[ 205.643282][ T9981] ? __alloc_skb+0x200/0x380
[ 205.644641][ T9981] ? __pfx__copy_from_iter+0x10/0x10
[ 205.646714][ T9981] ? __virt_addr_valid+0x1a4/0x590
[ 205.648705][ T9981] ? __virt_addr_valid+0x5e/0x590
[ 205.650627][ T9981] ? __phys_addr_symbol+0x30/0x80
[ 205.652520][ T9981] ? __check_object_size+0x488/0x710
[ 205.654496][ T9981] netlink_sendmsg+0x813/0xd70
[ 205.656316][ T9981] ? __pfx_netlink_sendmsg+0x10/0x10
[ 205.658271][ T9981] ____sys_sendmsg+0x9ae/0xb40
[ 205.660152][ T9981] ? __pfx_____sys_sendmsg+0x10/0x10
[ 205.662244][ T9981] ? get_compat_msghdr+0x11b/0x170
[ 205.664323][ T9981] ___sys_sendmsg+0x135/0x1e0
[ 205.666210][ T9981] ? __pfx____sys_sendmsg+0x10/0x10
[ 205.668128][ T9981] ? __pfx_lock_release+0x10/0x10
[ 205.669570][ T9981] ? trace_lock_acquire+0x14e/0x1f0
[ 205.671057][ T9981] ? __fget_files+0x206/0x3a0
[ 205.672418][ T9981] __sys_sendmsg+0x16e/0x220
[ 205.673743][ T9981] ? __pfx___sys_sendmsg+0x10/0x10
[ 205.675179][ T9981] __do_fast_syscall_32+0x73/0x120
[ 205.676644][ T9981] do_fast_syscall_32+0x32/0x80
[ 205.678078][ T9981] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 205.679837][ T9981] RIP: 0023:0xf70ee579
[ 205.681003][ T9981] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 205.686462][ T9981] RSP: 002b:00000000f50e055c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 205.688866][ T9981] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000200010c0
[ 205.691069][ T9981] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 205.693181][ T9981] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 205.695269][ T9981] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 205.697389][ T9981] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 205.699970][ T9981] </TASK>
[ 205.904588][ T9992] serio: Serial port ttynull
[ 206.295937][ T1327] usb 5-1: USB disconnect, device number 5
[ 206.533296][T10013] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1172'.
[ 206.536688][T10006] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1170'.
[ 206.536881][T10013] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1172'.
[ 206.557385][T10013] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1172'.
[ 206.691606][T10023] FAULT_INJECTION: forcing a failure.
[ 206.691606][T10023] name failslab, interval 1, probability 0, space 0, times 0
[ 206.695173][T10023] CPU: 3 UID: 0 PID: 10023 Comm: syz.3.1175 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 206.698210][T10023] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 206.701264][T10023] Call Trace:
[ 206.702205][T10023] <TASK>
[ 206.703138][T10023] dump_stack_lvl+0x16c/0x1f0
[ 206.704483][T10023] should_fail_ex+0x497/0x5b0
[ 206.705808][T10023] should_failslab+0xc2/0x120
[ 206.707237][T10023] kmem_cache_alloc_noprof+0x6e/0x3b0
[ 206.708854][T10023] ? skb_clone+0x190/0x3f0
[ 206.710254][T10023] skb_clone+0x190/0x3f0
[ 206.711550][T10023] netlink_deliver_tap+0xafd/0xca0
[ 206.713002][T10023] netlink_unicast+0x5e1/0x7f0
[ 206.714344][T10023] ? __pfx_netlink_unicast+0x10/0x10
[ 206.715909][T10023] ? __phys_addr_symbol+0x30/0x80
[ 206.717331][T10023] ? __check_object_size+0x488/0x710
[ 206.718836][T10023] netlink_sendmsg+0x8b8/0xd70
[ 206.720175][T10023] ? __pfx_netlink_sendmsg+0x10/0x10
[ 206.721660][T10023] ____sys_sendmsg+0x9ae/0xb40
[ 206.723022][T10023] ? __pfx_____sys_sendmsg+0x10/0x10
[ 206.724571][T10023] ? get_compat_msghdr+0x11b/0x170
[ 206.726001][T10023] ___sys_sendmsg+0x135/0x1e0
[ 206.727419][T10023] ? __pfx____sys_sendmsg+0x10/0x10
[ 206.728952][T10023] ? __pfx_lock_release+0x10/0x10
[ 206.730343][T10023] ? trace_lock_acquire+0x14e/0x1f0
[ 206.731871][T10023] ? __fget_files+0x206/0x3a0
[ 206.733192][T10023] __sys_sendmsg+0x16e/0x220
[ 206.734558][T10023] ? __pfx___sys_sendmsg+0x10/0x10
[ 206.736156][T10023] __do_fast_syscall_32+0x73/0x120
[ 206.737603][T10023] do_fast_syscall_32+0x32/0x80
[ 206.738942][T10023] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 206.740779][T10023] RIP: 0023:0xf7fc2579
[ 206.741938][T10023] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 206.747440][T10023] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 206.749870][T10023] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000000
[ 206.752008][T10023] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 206.754329][T10023] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 206.756618][T10023] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 206.758843][T10023] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 206.761137][T10023] </TASK>
[ 206.762990][T10023] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1175'.
[ 207.049620][ T1327] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[ 207.049875][T10033] FAULT_INJECTION: forcing a failure.
[ 207.049875][T10033] name failslab, interval 1, probability 0, space 0, times 0
[ 207.055274][T10033] CPU: 3 UID: 0 PID: 10033 Comm: syz.2.1179 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 207.058195][T10033] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 207.061126][T10033] Call Trace:
[ 207.062065][T10033] <TASK>
[ 207.062885][T10033] dump_stack_lvl+0x16c/0x1f0
[ 207.064191][T10033] should_fail_ex+0x497/0x5b0
[ 207.065502][T10033] ? fs_reclaim_acquire+0xae/0x150
[ 207.066927][T10033] should_failslab+0xc2/0x120
[ 207.068245][T10033] __kmalloc_noprof+0xce/0x4f0
[ 207.069588][T10033] ? is_bpf_text_address+0x8a/0x1a0
[ 207.071019][T10033] ? tomoyo_encode2+0x100/0x3e0
[ 207.072373][T10033] tomoyo_encode2+0x100/0x3e0
[ 207.073675][T10033] ? bpf_ksym_find+0x124/0x1c0
[ 207.074991][T10033] tomoyo_encode+0x2c/0x40
[ 207.076228][T10033] tomoyo_mount_acl+0x145/0x880
[ 207.077546][T10033] ? hlock_class+0x4e/0x130
[ 207.078774][T10033] ? __lock_acquire+0x15a9/0x3c40
[ 207.080134][T10033] ? __pfx_tomoyo_mount_acl+0x10/0x10
[ 207.081604][T10033] ? __pfx___lock_acquire+0x10/0x10
[ 207.083091][T10033] ? stack_trace_save+0x95/0xd0
[ 207.084463][T10033] ? __pfx_lock_release+0x10/0x10
[ 207.085851][T10033] ? trace_lock_acquire+0x14e/0x1f0
[ 207.087302][T10033] ? tomoyo_mount_permission+0x149/0x420
[ 207.088940][T10033] ? lock_acquire+0x2f/0xb0
[ 207.090189][T10033] ? tomoyo_mount_permission+0x149/0x420
[ 207.091733][T10033] tomoyo_mount_permission+0x16e/0x420
[ 207.093230][T10033] ? tomoyo_mount_permission+0x149/0x420
[ 207.094761][T10033] ? __pfx_tomoyo_mount_permission+0x10/0x10
[ 207.096441][T10033] ? get_current_fs_domain+0x184/0x1f0
[ 207.097923][T10033] security_sb_mount+0x9b/0x260
[ 207.099277][T10033] path_mount+0x129/0x1f00
[ 207.100528][T10033] ? kmem_cache_free+0x152/0x4c0
[ 207.101890][T10033] ? __pfx_path_mount+0x10/0x10
[ 207.103232][T10033] ? putname+0x13c/0x180
[ 207.104416][T10033] __ia32_sys_mount+0x292/0x310
[ 207.105743][T10033] ? __pfx___ia32_sys_mount+0x10/0x10
[ 207.107201][T10033] __do_fast_syscall_32+0x73/0x120
[ 207.108607][T10033] do_fast_syscall_32+0x32/0x80
[ 207.109966][T10033] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 207.111718][T10033] RIP: 0023:0xf7ff2579
[ 207.112808][T10033] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 207.118707][T10033] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[ 207.121016][T10033] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000020000000
[ 207.123167][T10033] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000020000500
[ 207.125765][T10033] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 207.128117][T10033] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 207.130235][T10033] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 207.132499][T10033] </TASK>
[ 207.221808][ T1327] usb 6-1: config index 0 descriptor too short (expected 23569, got 27)
[ 207.231283][ T1327] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 207.235527][ T1327] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[ 207.238240][ T1327] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[ 207.240480][ T1327] usb 6-1: Manufacturer: syz
[ 207.244334][ T1327] usb 6-1: config 0 descriptor??
[ 207.295556][ T1327] rc_core: IR keymap rc-hauppauge not found
[ 207.298033][ T1327] Registered IR keymap rc-empty
[ 207.299674][ T1327] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0
[ 207.302903][ T1327] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0/input28
[ 208.887117][T10084] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[ 208.976891][T10087] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1192'.
[ 210.398927][ T1327] usb 6-1: USB disconnect, device number 20
[ 210.599114][T10113] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1199'.
[ 210.630928][ T5294] Bluetooth: hci2: command 0x0406 tx timeout
[ 211.199357][ C1] vcan0: j1939_tp_rxtimer: 0xffff8880226b0c00: rx timeout, send abort
[ 211.201695][ C1] vcan0: j1939_tp_rxtimer: 0xffff888024124400: rx timeout, send abort
[ 211.204006][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff8880226b0c00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[ 211.208037][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888024124400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[ 211.483191][ T40] kauditd_printk_skb: 41 callbacks suppressed
[ 211.483207][ T40] audit: type=1804 audit(1736544797.174:329): pid=10129 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1205" name="/newroot/337/file0/cgroup.controllers" dev="9p" ino=38535857 res=1 errno=0
[ 211.795712][T10135] FAULT_INJECTION: forcing a failure.
[ 211.795712][T10135] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 211.799327][T10135] CPU: 3 UID: 0 PID: 10135 Comm: syz.2.1208 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 211.802264][T10135] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 211.805163][T10135] Call Trace:
[ 211.806126][T10135] <TASK>
[ 211.806936][T10135] dump_stack_lvl+0x16c/0x1f0
[ 211.808242][T10135] should_fail_ex+0x497/0x5b0
[ 211.809521][T10135] _copy_from_user+0x2e/0xd0
[ 211.810799][T10135] io_submit_one+0xbc/0x1da0
[ 211.812065][T10135] ? __pfx_io_submit_one+0x10/0x10
[ 211.813464][T10135] ? __might_fault+0x13b/0x190
[ 211.814776][T10135] ? lock_acquire+0x2f/0xb0
[ 211.816002][T10135] ? __might_fault+0xe3/0x190
[ 211.817281][T10135] ? __ia32_compat_sys_io_submit+0x1ba/0x3a0
[ 211.818894][T10135] __ia32_compat_sys_io_submit+0x1ba/0x3a0
[ 211.820493][T10135] ? __pfx___ia32_compat_sys_io_submit+0x10/0x10
[ 211.822217][T10135] __do_fast_syscall_32+0x73/0x120
[ 211.823612][T10135] do_fast_syscall_32+0x32/0x80
[ 211.824954][T10135] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 211.826717][T10135] RIP: 0023:0xf7ff2579
[ 211.827852][T10135] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 211.833015][T10135] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 00000000000000f8
[ 211.835301][T10135] RAX: ffffffffffffffda RBX: 00000000f7fed000 RCX: 0000000000000008
[ 211.837460][T10135] RDX: 0000000020000340 RSI: 0000000000000000 RDI: 0000000000000000
[ 211.839625][T10135] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 211.841736][T10135] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 211.843952][T10135] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 211.846128][T10135] </TASK>
[ 214.009159][ T6195] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[ 214.180200][ T6195] usb 5-1: Using ep0 maxpacket: 8
[ 214.182956][ T6195] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[ 214.185363][ T6195] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 214.188112][ T6195] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 214.190940][ T6195] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 214.193825][ T6195] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 214.197638][ T6195] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 214.200181][ T6195] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 214.400276][T10185] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1219'.
[ 214.426170][ T6195] usb 5-1: usb_control_msg returned -32
[ 214.427714][ T6195] usbtmc 5-1:16.0: can't read capabilities
[ 214.808058][T10202] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1217'.
[ 215.530487][T10209] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1225'.
[ 215.552508][T10209] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1225'.
[ 215.555130][T10209] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1225'.
[ 215.557786][T10209] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1225'.
[ 215.742151][T10217] netlink: 'syz.2.1227': attribute type 1 has an invalid length.
[ 215.744347][T10217] netlink: 212408 bytes leftover after parsing attributes in process `syz.2.1227'.
[ 216.035141][T10228] FAULT_INJECTION: forcing a failure.
[ 216.035141][T10228] name failslab, interval 1, probability 0, space 0, times 0
[ 216.038853][T10228] CPU: 1 UID: 0 PID: 10228 Comm: syz.1.1231 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 216.042139][T10228] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 216.045182][T10228] Call Trace:
[ 216.046230][T10228] <TASK>
[ 216.047152][T10228] dump_stack_lvl+0x16c/0x1f0
[ 216.048566][T10228] should_fail_ex+0x497/0x5b0
[ 216.049993][T10228] ? fs_reclaim_acquire+0xae/0x150
[ 216.051550][T10228] should_failslab+0xc2/0x120
[ 216.052941][T10228] kmem_cache_alloc_noprof+0x6e/0x3b0
[ 216.054548][T10228] ? sctp_chunkify+0x51/0x2d0
[ 216.055960][T10228] sctp_chunkify+0x51/0x2d0
[ 216.057393][T10228] _sctp_make_chunk+0x148/0x270
[ 216.058860][T10228] sctp_make_datafrag_empty+0x15c/0x220
[ 216.060544][T10228] ? __pfx_sctp_make_datafrag_empty+0x10/0x10
[ 216.062400][T10228] sctp_datamsg_from_user+0x590/0x1320
[ 216.064034][T10228] sctp_sendmsg_to_asoc+0xafd/0x1ad0
[ 216.065947][T10228] ? sctp_assoc_add_peer+0x254/0x14b0
[ 216.067583][T10228] ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10
[ 216.069352][T10228] ? __pfx_sctp_connect_new_asoc+0x10/0x10
[ 216.071054][T10228] ? lock_acquire+0x2f/0xb0
[ 216.072501][T10228] ? sctp_endpoint_lookup_assoc+0xac/0x2a0
[ 216.074849][T10228] sctp_sendmsg+0x129c/0x1f10
[ 216.076266][T10228] ? __pfx___lock_acquire+0x10/0x10
[ 216.077763][T10228] ? __pfx_sctp_sendmsg+0x10/0x10
[ 216.079307][T10228] ? __pfx_aa_sk_perm+0x10/0x10
[ 216.080725][T10228] ? __pfx_sctp_sendmsg+0x10/0x10
[ 216.082168][T10228] inet_sendmsg+0x119/0x140
[ 216.083537][T10228] __sys_sendto+0x42a/0x4f0
[ 216.084854][T10228] ? __pfx___sys_sendto+0x10/0x10
[ 216.086344][T10228] ? ksys_write+0x1ba/0x250
[ 216.087675][T10228] ? __pfx_ksys_write+0x10/0x10
[ 216.089232][T10228] __ia32_sys_sendto+0xdd/0x1b0
[ 216.090770][T10228] ? lockdep_hardirqs_on+0x7c/0x110
[ 216.092318][T10228] ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[ 216.094314][T10228] __do_fast_syscall_32+0x73/0x120
[ 216.095829][T10228] do_fast_syscall_32+0x32/0x80
[ 216.097302][T10228] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 216.099175][T10228] RIP: 0023:0xf70ee579
[ 216.100434][T10228] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 216.104539][ T56] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[ 216.106401][T10228] RSP: 002b:00000000f50e055c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[ 216.111718][T10228] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020847fff
[ 216.114036][T10228] RDX: 000000000000fee4 RSI: 00000000000003c4 RDI: 000000002005ffe4
[ 216.116788][T10228] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[ 216.119148][T10228] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 216.121462][T10228] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 216.123869][T10228] </TASK>
[ 216.256646][T10236] random: crng reseeded on system resumption
[ 216.264981][ T56] usb 7-1: Using ep0 maxpacket: 32
[ 216.275861][ T56] usb 7-1: config index 0 descriptor too short (expected 156, got 27)
[ 216.279015][ T56] usb 7-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 216.283183][ T56] usb 7-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 216.287751][ T56] usb 7-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 216.292791][ T56] usb 7-1: config 0 interface 0 has no altsetting 0
[ 216.297399][ T56] usb 7-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 216.301083][ T56] usb 7-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 216.304332][ T56] usb 7-1: Product: syz
[ 216.305942][ T56] usb 7-1: Manufacturer: syz
[ 216.308456][ T56] usb 7-1: SerialNumber: syz
[ 216.314514][T10240] FAULT_INJECTION: forcing a failure.
[ 216.314514][T10240] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 216.318654][ T56] usb 7-1: config 0 descriptor??
[ 216.322715][T10240] CPU: 2 UID: 0 PID: 10240 Comm: syz.3.1235 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 216.325188][ T56] ldusb 7-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 216.326471][T10240] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 216.326481][T10240] Call Trace:
[ 216.332046][ T56] ldusb 7-1:0.0: LD USB Device #1 now attached to major 180 minor 1
[ 216.332697][T10240] <TASK>
[ 216.336977][T10240] dump_stack_lvl+0x16c/0x1f0
[ 216.338840][T10240] should_fail_ex+0x497/0x5b0
[ 216.340628][T10240] strncpy_from_user+0x3b/0x2d0
[ 216.342573][T10240] do_tcp_setsockopt+0x54b/0x2820
[ 216.344533][T10240] ? __pfx_do_tcp_setsockopt+0x10/0x10
[ 216.346734][T10240] ? ksys_write+0x191/0x250
[ 216.348591][T10240] ? __pfx_aa_sk_perm+0x10/0x10
[ 216.350146][T10240] tcp_setsockopt+0xe2/0x100
[ 216.351546][T10240] ? __pfx_sock_common_setsockopt+0x10/0x10
[ 216.353729][T10240] do_sock_setsockopt+0x222/0x480
[ 216.355268][T10240] ? __pfx_do_sock_setsockopt+0x10/0x10
[ 216.356871][T10240] ? lock_acquire+0x2f/0xb0
[ 216.358171][T10240] __sys_setsockopt+0x1a0/0x230
[ 216.359641][T10240] __ia32_sys_setsockopt+0xbc/0x160
[ 216.361134][T10240] ? lockdep_hardirqs_on+0x7c/0x110
[ 216.363073][T10240] ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[ 216.365696][T10240] __do_fast_syscall_32+0x73/0x120
[ 216.367763][T10240] do_fast_syscall_32+0x32/0x80
[ 216.369716][T10240] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 216.372210][T10240] RIP: 0023:0xf7fc2579
[ 216.373858][T10240] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 216.379996][T10240] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[ 216.382459][T10240] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000006
[ 216.384754][T10240] RDX: 000000000000001f RSI: 0000000020000300 RDI: 0000000000000001
[ 216.387143][T10240] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 216.389492][T10240] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 216.391888][T10240] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 216.392435][T10242] netlink: 188 bytes leftover after parsing attributes in process `syz.1.1232'.
[ 216.394204][T10240] </TASK>
[ 216.399164][T10242] netlink: 'syz.1.1232': attribute type 1 has an invalid length.
[ 216.527286][T10247] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1237'.
[ 216.542025][ T56] usb 7-1: USB disconnect, device number 14
[ 216.547003][ T56] ldusb 7-1:0.0: LD USB Device #1 now disconnected
[ 216.774688][ T56] usb 5-1: USB disconnect, device number 6
[ 217.179470][T10263] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1242'.
[ 217.698457][T10280] lo: MTU too low for tipc bearer
[ 217.700097][T10280] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[ 218.644176][T10297] FAULT_INJECTION: forcing a failure.
[ 218.644176][T10297] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 218.648517][T10297] CPU: 0 UID: 0 PID: 10297 Comm: syz.3.1253 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 218.652325][T10297] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 218.655272][T10297] Call Trace:
[ 218.656246][T10297] <TASK>
[ 218.657078][T10297] dump_stack_lvl+0x16c/0x1f0
[ 218.658422][T10297] should_fail_ex+0x497/0x5b0
[ 218.659776][T10297] _copy_from_iter+0x29b/0x1400
[ 218.661168][T10297] ? trace_lock_acquire+0x14e/0x1f0
[ 218.662638][T10297] ? __alloc_skb+0x200/0x380
[ 218.663994][T10297] ? __pfx__copy_from_iter+0x10/0x10
[ 218.665508][T10297] ? __virt_addr_valid+0x1a4/0x590
[ 218.666999][T10297] ? __virt_addr_valid+0x5e/0x590
[ 218.668406][T10297] ? __phys_addr_symbol+0x30/0x80
[ 218.669822][T10297] ? __check_object_size+0x488/0x710
[ 218.671310][T10297] netlink_sendmsg+0x813/0xd70
[ 218.672663][T10297] ? __pfx_netlink_sendmsg+0x10/0x10
[ 218.674166][T10297] ____sys_sendmsg+0x9ae/0xb40
[ 218.675578][T10297] ? __pfx_____sys_sendmsg+0x10/0x10
[ 218.677137][T10297] ? get_compat_msghdr+0x11b/0x170
[ 218.678620][T10297] ___sys_sendmsg+0x135/0x1e0
[ 218.680023][T10297] ? __pfx____sys_sendmsg+0x10/0x10
[ 218.681510][T10297] ? __pfx_lock_release+0x10/0x10
[ 218.682946][T10297] ? trace_lock_acquire+0x14e/0x1f0
[ 218.684522][T10297] ? __fget_files+0x206/0x3a0
[ 218.685916][T10297] __sys_sendmsg+0x16e/0x220
[ 218.687282][T10297] ? __pfx___sys_sendmsg+0x10/0x10
[ 218.688762][T10297] __do_fast_syscall_32+0x73/0x120
[ 218.690213][T10297] do_fast_syscall_32+0x32/0x80
[ 218.691582][T10297] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 218.693340][T10297] RIP: 0023:0xf7fc2579
[ 218.694562][T10297] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 218.699970][T10297] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 218.702317][T10297] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020006040
[ 218.704565][T10297] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 218.706862][T10297] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 218.709054][T10297] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 218.711254][T10297] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 218.713526][T10297] </TASK>
[ 218.714729][ T5999] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[ 218.830489][T10306] affs: No valid root block on device nullb0
[ 218.883370][ T5999] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[ 218.883388][ T5999] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 218.883399][ T5999] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[ 218.885873][ T5999] usb 6-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13
[ 218.885888][ T5999] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 218.885940][ T5999] usb 6-1: Product: syz
[ 218.885948][ T5999] usb 6-1: Manufacturer: syz
[ 218.885956][ T5999] usb 6-1: SerialNumber: syz
[ 218.888980][ T5999] usb 6-1: config 0 descriptor??
[ 219.123256][ T5999] adutux 6-1:0.0: ADU208 4242424 now attached to /dev/usb/adutux0
[ 219.341442][T10292] fuse: Unknown parameter '���m�2�h�QkV>M���͘`���Se�������z�w��Fb����6���$�����%���������M3�7���[�Þm��t�?�2�>�/������x����t7�����4"��FB�w��y(F���'AÕ¯Hy䇷��ߪI�8UK<�
[ 219.341442][T10292] ��!���1���L5c�\JLff���y�;[Bj��� �˛`�-U�:$%��5��J���_D�e�j��:���ێ&�����U�R���B?��j͟��Z��`�#A����/�_���w�����'
[ 220.591298][ T40] audit: type=1804 audit(1736544805.696:330): pid=10330 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1261" name="/newroot/285/file0/cgroup.controllers" dev="9p" ino=38535857 res=1 errno=0
[ 220.792232][T10336] net veth1_virt_wifi ������: renamed from virt_wifi0
[ 221.259779][T10347] sctp: [Deprecated]: syz.0.1267 (pid 10347) Use of int in max_burst socket option.
[ 221.259779][T10347] Use struct sctp_assoc_value instead
[ 221.322813][T10348] __nla_validate_parse: 4 callbacks suppressed
[ 221.322824][T10348] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1267'.
[ 221.636301][ T4715] usb 6-1: USB disconnect, device number 21
[ 221.745868][T10387] netlink: 'syz.3.1277': attribute type 1 has an invalid length.
[ 221.748143][T10387] netlink: 212408 bytes leftover after parsing attributes in process `syz.3.1277'.
[ 221.758634][T10392] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1281'.
[ 221.862553][T10406] futex_wake_op: syz.3.1287 tries to shift op by -1; fix this program
[ 221.900524][T10412] netlink: 18 bytes leftover after parsing attributes in process `syz.3.1288'.
[ 221.904328][T10412] netlink: 18 bytes leftover after parsing attributes in process `syz.3.1288'.
[ 222.789001][T10444] netlink: 'syz.1.1294': attribute type 1 has an invalid length.
[ 222.791627][T10444] netlink: 212408 bytes leftover after parsing attributes in process `syz.1.1294'.
[ 222.828357][T10449] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1299'.
[ 222.835220][T10449] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1299'.
[ 222.840529][T10452] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 222.850012][T10452] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 223.540657][T10479] batman_adv: batadv0: Removing interface: ipvlan2
[ 223.558539][T10479] team0: Mode changed to "loadbalance"
[ 223.654869][T10481] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 223.892214][T10490] overlay: ./file0 is not a directory
[ 223.897375][ T40] audit: type=1326 audit(1736544808.783:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10489 comm="syz.0.1313" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf707e579 code=0x0
[ 223.907081][T10497] binder: BINDER_SET_CONTEXT_MGR already set
[ 223.911674][T10497] binder: 10492:10497 ioctl 4018620d 20004a80 returned -16
[ 223.995223][T10508] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1319'.
[ 224.411142][ T56] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[ 224.572228][ T56] usb 7-1: Using ep0 maxpacket: 8
[ 224.575668][ T56] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[ 224.578620][ T56] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 224.582044][ T56] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 224.585662][ T56] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 224.589271][ T56] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 224.594003][ T56] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 224.597274][ T56] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 224.823886][ T56] usb 7-1: usb_control_msg returned -32
[ 224.825988][ T56] usbtmc 7-1:16.0: can't read capabilities
[ 225.005199][T10522] fuse: Unknown parameter '�d'
[ 225.202882][T10525] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1323'.
[ 225.475361][T10535] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 225.602714][T10539] netlink: 'syz.3.1328': attribute type 33 has an invalid length.
[ 226.315999][T10567] sd 0:0:0:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x24 ascq=0x0
[ 226.334668][T10568] IPVS: Error joining to the multicast group
[ 226.986128][T10589] bond1: entered promiscuous mode
[ 226.988571][T10589] bond1: entered allmulticast mode
[ 226.990591][T10589] 8021q: adding VLAN 0 to HW filter on device bond1
[ 227.077582][T10589] bond1 (unregistering): Released all slaves
[ 227.199226][ T5943] usb 7-1: USB disconnect, device number 15
[ 227.638237][T10631] FAULT_INJECTION: forcing a failure.
[ 227.638237][T10631] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 227.642099][T10631] CPU: 2 UID: 0 PID: 10631 Comm: syz.0.1360 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 227.645004][T10631] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 227.647826][T10631] Call Trace:
[ 227.648737][T10631] <TASK>
[ 227.649548][T10631] dump_stack_lvl+0x16c/0x1f0
[ 227.650831][T10631] should_fail_ex+0x497/0x5b0
[ 227.652098][T10631] _copy_to_user+0x32/0xd0
[ 227.653325][T10631] simple_read_from_buffer+0xd0/0x160
[ 227.654769][T10631] proc_fail_nth_read+0x198/0x270
[ 227.656143][T10631] ? __pfx_proc_fail_nth_read+0x10/0x10
[ 227.657631][T10631] ? __pfx_proc_fail_nth_read+0x10/0x10
[ 227.659131][T10631] vfs_read+0x1df/0xbe0
[ 227.660280][T10631] ? __fget_files+0x1fc/0x3a0
[ 227.661540][T10631] ? __pfx___mutex_lock+0x10/0x10
[ 227.662952][T10631] ? __pfx_vfs_read+0x10/0x10
[ 227.664278][T10631] ? __fget_files+0x206/0x3a0
[ 227.665584][T10631] ksys_read+0x12b/0x250
[ 227.666748][T10631] ? __pfx_ksys_read+0x10/0x10
[ 227.668068][T10631] __do_fast_syscall_32+0x73/0x120
[ 227.669451][T10631] do_fast_syscall_32+0x32/0x80
[ 227.670808][T10631] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 227.672550][T10631] RIP: 0023:0xf707e579
[ 227.673649][T10631] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 227.678785][T10631] RSP: 002b:00000000f5070590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 227.681077][T10631] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5070620
[ 227.683194][T10631] RDX: 000000000000000f RSI: 00000000f73b3ff4 RDI: 0000000000000000
[ 227.685325][T10631] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 227.687471][T10631] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 227.689570][T10631] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 227.691708][T10631] </TASK>
[ 227.745596][T10635] __nla_validate_parse: 4 callbacks suppressed
[ 227.745608][T10635] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1362'.
[ 228.927177][T10679] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[ 228.932638][ T5294] Bluetooth: hci2: unexpected event for opcode 0x1005
[ 230.604941][T10728] netlink: 260 bytes leftover after parsing attributes in process `syz.0.1394'.
[ 231.215333][T10752] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 231.391025][T10761] netlink: 260 bytes leftover after parsing attributes in process `syz.3.1405'.
[ 231.496896][T10765] block device autoloading is deprecated and will be removed.
[ 231.504615][T10762] md: md2 stopped.
[ 232.985684][T10794] FAULT_INJECTION: forcing a failure.
[ 232.985684][T10794] name failslab, interval 1, probability 0, space 0, times 0
[ 232.990012][T10794] CPU: 2 UID: 0 PID: 10794 Comm: syz.0.1415 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 232.993210][T10794] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 232.996364][T10794] Call Trace:
[ 232.997296][T10794] <TASK>
[ 232.998138][T10794] dump_stack_lvl+0x16c/0x1f0
[ 232.999500][T10794] should_fail_ex+0x497/0x5b0
[ 233.000840][T10794] ? fs_reclaim_acquire+0xae/0x150
[ 233.002288][T10794] should_failslab+0xc2/0x120
[ 233.003594][T10794] __kmalloc_noprof+0xce/0x4f0
[ 233.004893][T10794] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[ 233.006876][T10794] ? lockdep_hardirqs_on+0x7c/0x110
[ 233.008300][T10794] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[ 233.010725][T10794] genl_family_rcv_msg_doit+0xbf/0x2f0
[ 233.012857][T10794] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 233.015219][T10794] ? genl_get_cmd+0x195/0x580
[ 233.016925][T10794] ? bpf_lsm_capable+0x9/0x10
[ 233.018750][T10794] ? security_capable+0x7e/0x260
[ 233.020533][T10794] ? ns_capable+0xd7/0x110
[ 233.022140][T10794] genl_rcv_msg+0x565/0x800
[ 233.023768][T10794] ? __pfx_genl_rcv_msg+0x10/0x10
[ 233.025247][T10794] ? __pfx_nl80211_pre_doit+0x10/0x10
[ 233.026797][T10794] ? __pfx_nl80211_connect+0x10/0x10
[ 233.028321][T10794] ? __pfx_nl80211_post_doit+0x10/0x10
[ 233.029970][T10794] netlink_rcv_skb+0x165/0x410
[ 233.031548][T10794] ? __pfx_genl_rcv_msg+0x10/0x10
[ 233.032992][T10794] ? __pfx_netlink_rcv_skb+0x10/0x10
[ 233.034415][T10795] random: crng reseeded on system resumption
[ 233.034663][T10794] ? down_read+0xc9/0x330
[ 233.038747][T10794] ? __pfx_down_read+0x10/0x10
[ 233.040624][T10794] ? netlink_deliver_tap+0x1ae/0xca0
[ 233.042442][T10794] genl_rcv+0x28/0x40
[ 233.043723][T10794] netlink_unicast+0x53c/0x7f0
[ 233.043746][T10794] ? __pfx_netlink_unicast+0x10/0x10
[ 233.045139][T10794] ? __phys_addr_symbol+0x30/0x80
[ 233.045154][T10794] ? __check_object_size+0x488/0x710
[ 233.045170][T10794] netlink_sendmsg+0x8b8/0xd70
[ 233.045183][T10794] ? __pfx_netlink_sendmsg+0x10/0x10
[ 233.049316][T10794] ____sys_sendmsg+0x9ae/0xb40
[ 233.049343][T10794] ? __pfx_____sys_sendmsg+0x10/0x10
[ 233.058579][T10794] ? get_compat_msghdr+0x11b/0x170
[ 233.060547][T10794] ___sys_sendmsg+0x135/0x1e0
[ 233.062382][T10794] ? __pfx____sys_sendmsg+0x10/0x10
[ 233.064437][T10794] ? __pfx_lock_release+0x10/0x10
[ 233.066342][T10794] ? trace_lock_acquire+0x14e/0x1f0
[ 233.068392][T10794] ? __fget_files+0x206/0x3a0
[ 233.070252][T10794] __sys_sendmsg+0x16e/0x220
[ 233.072149][T10794] ? __pfx___sys_sendmsg+0x10/0x10
[ 233.074243][T10794] __do_fast_syscall_32+0x73/0x120
[ 233.076375][T10794] do_fast_syscall_32+0x32/0x80
[ 233.078311][T10794] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 233.080744][T10794] RIP: 0023:0xf707e579
[ 233.082417][T10794] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 233.089375][T10794] RSP: 002b:00000000f507055c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 233.091781][T10794] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200001c0
[ 233.094024][T10794] RDX: 00000000000000c0 RSI: 0000000000000000 RDI: 0000000000000000
[ 233.096326][T10794] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 233.098749][T10794] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 233.101098][T10794] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 233.103339][T10794] </TASK>
[ 233.184153][T10799] netlink: 188 bytes leftover after parsing attributes in process `syz.1.1414'.
[ 233.188971][T10799] netlink: 'syz.1.1414': attribute type 1 has an invalid length.
[ 233.776648][T10810] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1419'.
[ 234.017946][T10813] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING
[ 234.160050][T10819] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1423'.
[ 234.344910][T10821] netlink: 1264 bytes leftover after parsing attributes in process `syz.3.1422'.
[ 234.601225][T10827] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[ 234.609225][T10829] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[ 235.474060][T10848] usb usb1: usbfs: process 10848 (syz.0.1431) did not claim interface 0 before use
[ 235.812551][T10865] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 235.816175][T10865] delete_channel: no stack
[ 235.821152][T10864] delete_channel: no stack
[ 235.901579][T10869] netlink: 'syz.3.1439': attribute type 1 has an invalid length.
[ 235.911576][T10869] 8021q: adding VLAN 0 to HW filter on device bond1
[ 235.927380][T10869] bond1: (slave gretap1): making interface the new active one
[ 235.930712][T10869] bond1: (slave gretap1): Enslaving as an active interface with an up link
[ 239.071005][T10926] FAULT_INJECTION: forcing a failure.
[ 239.071005][T10926] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 239.075512][T10926] CPU: 0 UID: 0 PID: 10926 Comm: syz.3.1455 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 239.078431][T10926] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 239.081535][T10926] Call Trace:
[ 239.082513][T10926] <TASK>
[ 239.083385][T10926] dump_stack_lvl+0x16c/0x1f0
[ 239.084684][T10926] should_fail_ex+0x497/0x5b0
[ 239.085981][T10926] _copy_from_user+0x2e/0xd0
[ 239.087300][T10926] get_compat_msghdr+0xa8/0x170
[ 239.088708][T10926] ? __pfx_get_compat_msghdr+0x10/0x10
[ 239.090444][T10926] ___sys_recvmsg+0x193/0x1a0
[ 239.091830][T10926] ? __pfx____sys_recvmsg+0x10/0x10
[ 239.093229][T10926] ? __fget_files+0x1fc/0x3a0
[ 239.094499][T10926] ? trace_lock_acquire+0x14e/0x1f0
[ 239.095938][T10926] ? __fget_files+0x206/0x3a0
[ 239.097238][T10926] ? __pfx___might_resched+0x10/0x10
[ 239.098741][T10926] do_recvmmsg+0x55d/0x740
[ 239.100031][T10926] ? __pfx_do_recvmmsg+0x10/0x10
[ 239.101574][T10926] ? vfs_write+0x306/0x1150
[ 239.103032][T10926] ? __fget_files+0x206/0x3a0
[ 239.104363][T10926] __sys_recvmmsg+0x21e/0x280
[ 239.105826][T10926] ? __pfx___sys_recvmmsg+0x10/0x10
[ 239.107278][T10926] ? __pfx_ksys_write+0x10/0x10
[ 239.108673][T10926] __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[ 239.110358][T10926] ? lockdep_hardirqs_on+0x7c/0x110
[ 239.111944][T10926] ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[ 239.113839][T10926] __do_fast_syscall_32+0x73/0x120
[ 239.115271][T10926] do_fast_syscall_32+0x32/0x80
[ 239.116676][T10926] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 239.118406][T10926] RIP: 0023:0xf7fc2579
[ 239.119581][T10926] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 239.126502][T10926] RSP: 002b:00000000f50f555c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 239.128772][T10926] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000020002940
[ 239.130886][T10926] RDX: 000000000000f000 RSI: 0000000000010002 RDI: 0000000000000000
[ 239.133012][T10926] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 239.135505][T10926] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 239.137863][T10926] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 239.140762][T10926] </TASK>
[ 239.325071][T10935] [U]
[ 239.326592][T10935] [U]
[ 239.327694][T10935] [U]
[ 239.328739][T10935] [U]
[ 239.330014][T10935] [U]
[ 239.331185][T10935] [U]
[ 239.332291][T10935] [U]
[ 239.333326][T10935] [U]
[ 239.334366][T10935] [U]
[ 239.335428][T10935] [U]
[ 239.336491][T10935] [U]
[ 239.337511][T10935] [U]
[ 239.338825][T10935] [U]
[ 239.339870][T10935] [U]
[ 239.340841][T10935] [U]
[ 239.341863][T10935] [U]
[ 239.342924][T10935] [U]
[ 239.343872][T10935] [U]
[ 239.344651][T10935] [U]
[ 239.345621][T10935] [U]
[ 239.346665][T10935] [U]
[ 239.347695][T10935] [U]
[ 239.348741][T10935] [U]
[ 239.349765][T10935] [U]
[ 239.350947][T10935] [U]
[ 239.352014][T10935] [U]
[ 239.353034][T10935] [U]
[ 239.354069][T10935] [U]
[ 239.355098][T10935] [U]
[ 239.356150][T10935] [U]
[ 239.357168][T10935] [U]
[ 239.358040][T10935] [U]
[ 239.358897][T10935] [U]
[ 239.359698][T10935] [U]
[ 239.360504][T10935] [U]
[ 239.361299][T10935] [U]
[ 239.362097][T10935] [U]
[ 239.362934][T10935] [U]
[ 239.363741][T10935] [U]
[ 239.364523][T10935] [U]
[ 239.365314][T10935] [U]
[ 239.366147][T10935] [U]
[ 239.366945][T10935] [U]
[ 239.367740][T10935] [U]
[ 239.368564][T10935] [U]
[ 239.369378][T10935] [U]
[ 239.370168][T10935] [U]
[ 239.370948][T10935] [U]
[ 239.371815][T10935] [U]
[ 239.372616][T10935] [U]
[ 239.373409][T10935] [U]
[ 239.374193][T10935] [U]
[ 239.374976][T10935] [U]
[ 239.375740][T10935] [U]
[ 239.376522][T10935] [U]
[ 239.377300][T10935] [U]
[ 239.378115][T10935] [U]
[ 239.378868][T10935] [U]
[ 239.379621][T10935] [U]
[ 239.380401][T10935] [U]
[ 239.381115][T10936] netlink: 'syz.3.1458': attribute type 27 has an invalid length.
[ 239.381337][T10935] [U]
[ 239.384742][T10935] [U]
[ 239.385558][T10935] [U]
[ 239.386386][T10935] [U]
[ 239.387240][T10935] [U]
[ 239.387988][T10935] [U]
[ 239.388731][T10935] [U]
[ 239.389494][T10935] [U]
[ 239.390322][T10935] [U]
[ 239.391139][T10935] [U]
[ 239.391965][T10935] [U]
[ 239.392790][T10935] [U]
[ 239.393630][T10935] [U]
[ 239.394398][T10935] [U]
[ 239.395168][T10935] [U]
[ 239.395985][T10935] [U]
[ 239.396772][T10935] [U]
[ 239.397570][T10935] [U]
[ 239.398361][T10935] [U]
[ 239.399150][T10935] [U]
[ 239.399990][T10935] [U]
[ 239.400773][T10935] [U]
[ 239.401552][T10935] [U]
[ 239.402330][T10935] [U]
[ 239.403430][T10935] [U]
[ 239.404231][T10935] [U]
[ 239.405032][T10935] [U]
[ 239.405857][T10935] [U]
[ 239.406686][T10935] [U]
[ 239.407481][T10935] [U]
[ 239.408264][T10935] [U]
[ 239.409031][T10935] [U]
[ 239.409800][T10935] [U]
[ 239.410580][T10935] [U]
[ 239.411369][T10935] [U]
[ 239.412129][T10935] [U]
[ 239.413081][T10935] [U]
[ 239.414126][T10935] [U]
[ 239.415162][T10935] [U]
[ 239.416128][T10935] [U]
[ 239.417002][T10935] [U]
[ 239.417795][T10935] [U]
[ 239.418569][T10935] [U]
[ 239.419353][T10935] [U]
[ 239.420132][T10935] [U]
[ 239.420886][T10935] [U]
[ 239.421655][T10935] [U]
[ 239.422419][T10935] [U]
[ 239.423151][T10935] [U]
[ 239.423933][T10935] [U]
[ 239.424669][T10935] [U]
[ 239.425444][T10935] [U]
[ 239.426815][T10935] [U]
[ 239.427625][T10935] [U]
[ 239.428379][T10935] [U]
[ 239.429159][T10935] [U]
[ 239.430442][T10935] [U]
[ 239.431241][T10935] [U]
[ 239.432054][T10935] [U]
[ 239.432841][T10935] [U]
[ 239.433643][T10935] [U]
[ 239.434450][T10935] [U]
[ 239.435243][T10935] [U]
[ 239.436050][T10935] [U]
[ 239.437368][T10935] [U]
[ 239.438397][T10935] [U]
[ 239.439321][T10935] [U]
[ 239.452947][T10936] infiniband syz0: set down
[ 239.496734][T10936] batadv_slave_0: left promiscuous mode
[ 239.542180][T10936] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 239.544828][T10936] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 239.547327][T10936] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 239.549797][T10936] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 239.744700][T10944] FAULT_INJECTION: forcing a failure.
[ 239.744700][T10944] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 239.748315][T10944] CPU: 0 UID: 0 PID: 10944 Comm: syz.0.1460 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 239.751378][T10944] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 239.754392][T10944] Call Trace:
[ 239.755378][T10944] <TASK>
[ 239.756245][T10944] dump_stack_lvl+0x16c/0x1f0
[ 239.757615][T10944] should_fail_ex+0x497/0x5b0
[ 239.758973][T10944] _copy_from_user+0x2e/0xd0
[ 239.760333][T10944] get_compat_msghdr+0xa8/0x170
[ 239.761727][T10944] ? __pfx_get_compat_msghdr+0x10/0x10
[ 239.763227][T10944] ___sys_recvmsg+0x193/0x1a0
[ 239.764538][T10944] ? __pfx____sys_recvmsg+0x10/0x10
[ 239.765972][T10944] ? __fget_files+0x1fc/0x3a0
[ 239.767322][T10944] ? trace_lock_acquire+0x14e/0x1f0
[ 239.768803][T10944] ? __fget_files+0x206/0x3a0
[ 239.770132][T10944] ? __pfx___might_resched+0x10/0x10
[ 239.771639][T10944] do_recvmmsg+0x55d/0x740
[ 239.772978][T10944] ? __pfx_do_recvmmsg+0x10/0x10
[ 239.774411][T10944] ? vfs_write+0x306/0x1150
[ 239.775729][T10944] ? __fget_files+0x206/0x3a0
[ 239.777050][T10944] __sys_recvmmsg+0x21e/0x280
[ 239.778363][T10944] ? __pfx___sys_recvmmsg+0x10/0x10
[ 239.779762][T10944] ? __pfx_ksys_write+0x10/0x10
[ 239.781243][T10944] __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[ 239.783087][T10944] ? lockdep_hardirqs_on+0x7c/0x110
[ 239.784594][T10944] ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[ 239.786533][T10944] __do_fast_syscall_32+0x73/0x120
[ 239.788056][T10944] do_fast_syscall_32+0x32/0x80
[ 239.789451][T10944] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 239.791215][T10944] RIP: 0023:0xf707e579
[ 239.792366][T10944] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 239.797632][T10944] RSP: 002b:00000000f504f55c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 239.799868][T10944] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000020002940
[ 239.802051][T10944] RDX: 000000000000f000 RSI: 0000000000010002 RDI: 0000000000000000
[ 239.804264][T10944] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 239.806496][T10944] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 239.808652][T10944] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 239.810883][T10944] </TASK>
[ 240.063546][ T40] audit: type=1804 audit(1736544823.393:332): pid=10951 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1461" name="/newroot/366/file0/file0" dev="9p" ino=38535850 res=1 errno=0
[ 240.171844][T10933] [U]
[ 241.840605][T10985] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1472'.
[ 241.849680][T10985] netlink: 64 bytes leftover after parsing attributes in process `syz.1.1472'.
[ 243.020213][T11011] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1479'.
[ 243.023920][T11011] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1479'.
[ 243.028059][T11011] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1479'.
[ 243.129082][T11015] FAULT_INJECTION: forcing a failure.
[ 243.129082][T11015] name failslab, interval 1, probability 0, space 0, times 0
[ 243.132716][T11015] CPU: 0 UID: 0 PID: 11015 Comm: syz.3.1480 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 243.135621][T11015] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 243.138473][T11015] Call Trace:
[ 243.139387][T11015] <TASK>
[ 243.140196][T11015] dump_stack_lvl+0x16c/0x1f0
[ 243.141570][T11015] should_fail_ex+0x497/0x5b0
[ 243.142935][T11015] ? fs_reclaim_acquire+0xae/0x150
[ 243.144429][T11015] should_failslab+0xc2/0x120
[ 243.145752][T11015] __kmalloc_noprof+0xce/0x4f0
[ 243.147077][T11015] ? tomoyo_encode2+0x100/0x3e0
[ 243.148488][T11015] tomoyo_encode2+0x100/0x3e0
[ 243.149836][T11015] tomoyo_realpath_from_path+0x1a7/0x710
[ 243.151412][T11015] ? tomoyo_path_number_perm+0x235/0x5b0
[ 243.152979][T11015] tomoyo_path_number_perm+0x248/0x5b0
[ 243.154514][T11015] ? tomoyo_path_number_perm+0x235/0x5b0
[ 243.156204][T11015] ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 243.157905][T11015] ? __pfx_lock_release+0x10/0x10
[ 243.159596][T11015] ? trace_lock_acquire+0x14e/0x1f0
[ 243.161052][T11015] ? lock_acquire+0x2f/0xb0
[ 243.162344][T11015] ? __fget_files+0x40/0x3a0
[ 243.163689][T11015] ? __fget_files+0x206/0x3a0
[ 243.165033][T11015] security_file_ioctl_compat+0x9b/0x240
[ 243.166611][T11015] __do_compat_sys_ioctl+0x4e/0x2c0
[ 243.168081][T11015] __do_fast_syscall_32+0x73/0x120
[ 243.169558][T11015] do_fast_syscall_32+0x32/0x80
[ 243.170947][T11015] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 243.172762][T11015] RIP: 0023:0xf7fc2579
[ 243.173965][T11015] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 243.179400][T11015] RSP: 002b:00000000f50e855c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 243.181721][T11015] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000c020aa00
[ 243.184015][T11015] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000000000000
[ 243.186283][T11015] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 243.188552][T11015] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 243.190726][T11015] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 243.192985][T11015] </TASK>
[ 243.295081][T11015] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 243.748104][T11034] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1486'.
[ 243.927444][T11039] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1487'.
[ 244.003479][ T40] audit: type=1800 audit(1736544827.036:333): pid=11040 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1484" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[ 245.024848][T11058] netlink: 72 bytes leftover after parsing attributes in process `syz.0.1488'.
[ 245.079286][T11059] random: crng reseeded on system resumption
[ 245.230402][T11061] netlink: 188 bytes leftover after parsing attributes in process `syz.1.1492'.
[ 245.234324][T11061] netlink: 'syz.1.1492': attribute type 1 has an invalid length.
[ 245.427862][T11048] syz.0.1488 (11048) used greatest stack depth: 21072 bytes left
[ 245.791692][T11078] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1497'.
[ 245.792577][ T40] audit: type=1326 audit(1736544828.702:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11079 comm="syz.3.1498" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc2579 code=0x7ffc0000
[ 245.795225][T11078] IPVS: set_ctl: invalid protocol: 33 172.20.20.45:20004
[ 245.803025][ T40] audit: type=1326 audit(1736544828.702:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11079 comm="syz.3.1498" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc2579 code=0x7ffc0000
[ 245.804715][T11081] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 245.820362][ T40] audit: type=1326 audit(1736544828.702:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11079 comm="syz.3.1498" exe="/syz-executor" sig=0 arch=40000003 syscall=343 compat=1 ip=0xf7fc2579 code=0x7ffc0000
[ 245.828410][ T40] audit: type=1326 audit(1736544828.702:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11079 comm="syz.3.1498" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc2579 code=0x7ffc0000
[ 245.849438][ T40] audit: type=1326 audit(1736544828.702:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11079 comm="syz.3.1498" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc2579 code=0x7ffc0000
[ 245.855711][ T40] audit: type=1326 audit(1736544828.702:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11079 comm="syz.3.1498" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fc2579 code=0x7ffc0000
[ 245.861893][ T40] audit: type=1326 audit(1736544828.702:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11079 comm="syz.3.1498" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc2579 code=0x7ffc0000
[ 245.869526][ T40] audit: type=1326 audit(1736544828.702:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11079 comm="syz.3.1498" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc2579 code=0x7ffc0000
[ 245.870643][T11083] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[ 245.877561][ T40] audit: type=1326 audit(1736544828.702:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11079 comm="syz.3.1498" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fc2579 code=0x7ffc0000
[ 245.889779][ T40] audit: type=1326 audit(1736544828.702:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11079 comm="syz.3.1498" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc2579 code=0x7ffc0000
[ 246.454195][T11107] 9pnet_virtio: no channels available for device syz
[ 246.625369][T11113] CUSE: unknown device info "��KJ���H+��ۤ2Lh��nL�1�`�Cc��n�������8����0���(��3նi��>f���_ٮ,����<�_e�F����"
[ 246.635687][T11113] CUSE: unknown device info "3�ܟ�,��̘�"
[ 246.638124][T11113] CUSE: DEVNAME unspecified
[ 246.837424][T11121] batman_adv: batadv0: Removing interface: team0
[ 247.775649][T11146] bio_check_eod: 2 callbacks suppressed
[ 247.775664][T11146] syz.0.1514: attempt to access beyond end of device
[ 247.775664][T11146] nbd0: rw=4096, sector=0, nr_sectors = 2 limit=0
[ 247.781968][T11146] XFS (nbd0): SB validate failed with error -5.
[ 248.532717][ T3223] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[ 248.714745][ T3223] usb 5-1: Using ep0 maxpacket: 8
[ 248.717003][ T3223] usb 5-1: config 0 has no interfaces?
[ 248.719392][ T3223] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 248.722387][ T3223] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 248.726824][ T3223] usb 5-1: config 0 descriptor??
[ 248.963861][T11170] netlink: 'syz.0.1526': attribute type 8 has an invalid length.
[ 248.975489][ T5294] Bluetooth: hci2: Malformed LE Event: 0x1d
[ 248.994723][ T63] usb 5-1: USB disconnect, device number 7
[ 249.035021][T11181] binder: 11180:11181 ioctl c0306201 200002c0 returned -14
[ 249.040713][T11183] __nla_validate_parse: 1 callbacks suppressed
[ 249.040724][T11183] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1529'.
[ 249.232690][T11188] macvtap0: mtu less than device minimum
[ 249.307666][T11195] IPVS: sync thread started: state = BACKUP, mcast_ifn = lo, syncid = 0, id = 0
[ 249.313170][T11194] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1534'.
[ 250.835972][T11232] binder: 11231:11232 unknown command 0
[ 250.835987][T11232] binder: 11231:11232 ioctl c0306201 20004a40 returned -22
[ 251.711008][T11250] random: crng reseeded on system resumption
[ 251.772331][T11255] netlink: 188 bytes leftover after parsing attributes in process `syz.2.1549'.
[ 251.776179][T11255] netlink: 'syz.2.1549': attribute type 1 has an invalid length.
[ 251.936567][ T4715] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[ 252.097208][ T4715] usb 5-1: Using ep0 maxpacket: 16
[ 252.100968][ T4715] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 103, changing to 10
[ 252.105488][ T4715] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 34304, setting to 1024
[ 252.110564][ T4715] usb 5-1: New USB device found, idVendor=05ac, idProduct=8241, bcdDevice= 0.00
[ 252.114188][ T4715] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 252.119650][ T4715] usb 5-1: config 0 descriptor??
[ 252.122359][T11253] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 252.233200][ T40] kauditd_printk_skb: 14 callbacks suppressed
[ 252.233216][ T40] audit: type=1326 audit(1736544834.714:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11261 comm="syz.3.1553" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fc2579 code=0x0
[ 252.290152][ T40] audit: type=1400 audit(1736544834.780:359): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=2F70720263685E8EFCC01C1502DE5198CADB73656C66 pid=11263 comm="syz.1.1554"
[ 252.378777][T11272] FAULT_INJECTION: forcing a failure.
[ 252.378777][T11272] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 252.382831][T11272] CPU: 1 UID: 0 PID: 11272 Comm: syz.1.1555 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 252.386006][T11272] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 252.389080][T11272] Call Trace:
[ 252.390045][T11272] <TASK>
[ 252.390914][T11272] dump_stack_lvl+0x16c/0x1f0
[ 252.392293][T11272] should_fail_ex+0x497/0x5b0
[ 252.393688][T11272] _copy_from_user+0x2e/0xd0
[ 252.395049][T11272] bpf_test_init.isra.0+0xf1/0x150
[ 252.396552][T11272] bpf_prog_test_run_xdp+0x4f0/0x1580
[ 252.398056][T11272] ? lock_acquire+0x2f/0xb0
[ 252.399367][T11272] ? __fget_files+0x40/0x3a0
[ 252.400701][T11272] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 252.402350][T11272] ? __fget_files+0x206/0x3a0
[ 252.403662][T11272] ? fput+0x67/0x440
[ 252.404804][T11272] ? __bpf_prog_get+0xa0/0x290
[ 252.406216][T11272] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 252.407892][T11272] __sys_bpf+0x1921/0x57a0
[ 252.409251][T11272] ? __pfx_lock_release+0x10/0x10
[ 252.410711][T11272] ? __pfx___sys_bpf+0x10/0x10
[ 252.412114][T11272] ? vfs_write+0x306/0x1150
[ 252.413467][T11272] ? __mutex_unlock_slowpath+0x164/0x690
[ 252.415096][T11272] ? fput+0x67/0x440
[ 252.416288][T11272] ? ksys_write+0x1ba/0x250
[ 252.417620][T11272] ? __pfx_ksys_write+0x10/0x10
[ 252.419027][T11272] __ia32_sys_bpf+0x76/0xe0
[ 252.420356][T11272] __do_fast_syscall_32+0x73/0x120
[ 252.422171][T11272] do_fast_syscall_32+0x32/0x80
[ 252.423624][T11272] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 252.425471][T11272] RIP: 0023:0xf70ee579
[ 252.426783][T11272] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 252.432598][T11272] RSP: 002b:00000000f50e055c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[ 252.435031][T11272] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000200002c0
[ 252.437358][T11272] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[ 252.439671][T11272] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 252.441966][T11272] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 252.444285][T11272] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 252.446629][T11272] </TASK>
[ 252.570966][ T4715] input: HID 05ac:8241 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/0003:05AC:8241.0007/input/input30
[ 252.633960][ T4715] appleir 0003:05AC:8241.0007: input,hiddev0,hidraw0: USB HID v0.00 Device [HID 05ac:8241] on usb-dummy_hcd.0-1/input0
[ 252.801870][ T64] Bluetooth: hci4: Frame reassembly failed (-84)
[ 252.804726][ T64] Bluetooth: hci4: Frame reassembly failed (-84)
[ 252.806701][ T64] Bluetooth: hci4: Frame reassembly failed (-84)
[ 252.810010][ T64] Bluetooth: hci4: Frame reassembly failed (-84)
[ 252.846295][T11285] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[ 253.113331][ T40] audit: type=1326 audit(1736544835.537:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11286 comm="syz.3.1560" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fc2579 code=0x0
[ 253.632359][T11304] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1564'.
[ 253.634944][T11304] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1564'.
[ 254.336651][T11317] random: crng reseeded on system resumption
[ 254.405232][T11318] netlink: 188 bytes leftover after parsing attributes in process `syz.0.1566'.
[ 254.418208][T11318] netlink: 'syz.0.1566': attribute type 1 has an invalid length.
[ 254.508693][ T6195] usb 5-1: USB disconnect, device number 8
[ 254.952947][ T5294] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 255.347476][T11330] syz.3.1568: attempt to access beyond end of device
[ 255.347476][T11330] nbd3: rw=4096, sector=0, nr_sectors = 2 limit=0
[ 255.351553][T11330] XFS (nbd3): SB validate failed with error -5.
[ 255.468805][T11340] sg_write: data in/out 11/14 bytes for SCSI command 0x0-- guessing data in;
[ 255.468805][T11340] program syz.0.1571 not setting count and/or reply_len properly
[ 255.484904][T11340] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1571'.
[ 256.421165][T11352] kvm: Disabled LAPIC found during irq injection
[ 256.443899][T11358] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1575'.
[ 257.544685][T11377] x_tables: duplicate underflow at hook 1
[ 258.128544][T11385] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1592'.
[ 258.137894][T11385] netlink: 72 bytes leftover after parsing attributes in process `syz.0.1592'.
[ 258.309624][T11394] cgroup: fork rejected by pids controller in /syz0
[ 258.454194][T11643] program syz.3.1588 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 258.468728][T11645] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 258.531251][T11652] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1591'.
[ 258.536284][T11652] geneve0: entered allmulticast mode
[ 258.654081][T11654] FAULT_INJECTION: forcing a failure.
[ 258.654081][T11654] name failslab, interval 1, probability 0, space 0, times 0
[ 258.658371][T11654] CPU: 2 UID: 0 PID: 11654 Comm: syz.0.1593 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 258.661556][T11654] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 258.664536][T11654] Call Trace:
[ 258.665484][T11654] <TASK>
[ 258.666337][T11654] dump_stack_lvl+0x16c/0x1f0
[ 258.667767][T11654] should_fail_ex+0x497/0x5b0
[ 258.669617][T11654] ? fs_reclaim_acquire+0xae/0x150
[ 258.671683][T11654] should_failslab+0xc2/0x120
[ 258.673629][T11654] __kmalloc_noprof+0xce/0x4f0
[ 258.675617][T11654] ? kobject_get_path+0xcb/0x230
[ 258.677554][T11654] kobject_get_path+0xcb/0x230
[ 258.679472][T11654] kobject_uevent_env+0x289/0x1670
[ 258.681524][T11654] ? __pfx_dev_uevent_name+0x10/0x10
[ 258.683734][T11654] ? bus_to_subsys+0x12d/0x160
[ 258.685730][T11654] device_del+0x623/0x9f0
[ 258.687446][T11654] ? __pfx_device_del+0x10/0x10
[ 258.689353][T11654] ? lockdep_hardirqs_on+0x7c/0x110
[ 258.691427][T11654] ? _raw_spin_unlock_irq+0x2e/0x50
[ 258.693556][T11654] del_gendisk+0x4c7/0xad0
[ 258.695416][T11654] ? __pfx_del_gendisk+0x10/0x10
[ 258.697351][T11654] ? __radix_tree_lookup+0x21f/0x2c0
[ 258.699431][T11654] loop_control_ioctl+0x4f8/0x640
[ 258.701447][T11654] ? __pfx_loop_control_ioctl+0x10/0x10
[ 258.703690][T11654] ? __do_compat_sys_ioctl+0x5b/0x2c0
[ 258.705814][T11654] ? __sanitizer_cov_trace_switch+0x16/0x90
[ 258.708063][T11654] ? __pfx_loop_control_ioctl+0x10/0x10
[ 258.710275][T11654] __do_compat_sys_ioctl+0x1cb/0x2c0
[ 258.712402][T11654] __do_fast_syscall_32+0x73/0x120
[ 258.714420][T11654] do_fast_syscall_32+0x32/0x80
[ 258.716449][T11654] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 258.719027][T11654] RIP: 0023:0xf707e579
[ 258.720686][T11654] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 258.728290][T11654] RSP: 002b:00000000f504f55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 258.731687][T11654] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000004c81
[ 258.734923][T11654] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[ 258.738122][T11654] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 258.741333][T11654] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 258.744542][T11654] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 258.747780][T11654] </TASK>
[ 258.885233][ T40] audit: type=1326 audit(1736544840.933:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11662 comm="syz.0.1595" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf707e579 code=0x0
[ 259.581625][T11672] random: crng reseeded on system resumption
[ 259.642195][T11673] netlink: 188 bytes leftover after parsing attributes in process `syz.3.1598'.
[ 259.644879][T11673] netlink: 'syz.3.1598': attribute type 1 has an invalid length.
[ 260.471387][ T40] audit: type=1326 audit(1736544842.429:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11688 comm="syz.3.1603" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fc2579 code=0x0
[ 261.172948][T11706] batman_adv: batadv0: Adding interface: ipvlan3
[ 261.175585][T11706] batman_adv: batadv0: The MTU of interface ipvlan3 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 261.185521][T11706] batman_adv: batadv0: Not using interface ipvlan3 (retrying later): interface not active
[ 262.182801][T11725] netlink: 'syz.1.1613': attribute type 4 has an invalid length.
[ 262.912435][ T40] audit: type=1326 audit(1736544844.702:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11739 comm="syz.1.1617" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x0
[ 263.654868][T11775] netlink: 'syz.3.1624': attribute type 1 has an invalid length.
[ 263.669054][T11775] 8021q: adding VLAN 0 to HW filter on device bond2
[ 263.676206][T11775] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1624'.
[ 263.750538][T11779] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1626'.
[ 263.827620][T11784] netlink: 1276 bytes leftover after parsing attributes in process `syz.1.1625'.
[ 264.021974][ T1412] ieee802154 phy0 wpan0: encryption failed: -22
[ 264.491887][T11791] FAULT_INJECTION: forcing a failure.
[ 264.491887][T11791] name failslab, interval 1, probability 0, space 0, times 0
[ 264.496873][T11791] CPU: 2 UID: 0 PID: 11791 Comm: syz.0.1629 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 264.501092][T11791] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 264.505224][T11791] Call Trace:
[ 264.506560][T11791] <TASK>
[ 264.507739][T11791] dump_stack_lvl+0x16c/0x1f0
[ 264.509602][T11791] should_fail_ex+0x497/0x5b0
[ 264.511494][T11791] ? fs_reclaim_acquire+0xae/0x150
[ 264.513585][T11791] should_failslab+0xc2/0x120
[ 264.515550][T11791] kmem_cache_alloc_node_noprof+0x72/0x3b0
[ 264.517978][T11791] ? __up_read+0x1fb/0x760
[ 264.519823][T11791] ? __alloc_skb+0x2b3/0x380
[ 264.521743][T11791] __alloc_skb+0x2b3/0x380
[ 264.523605][T11791] ? __pfx___alloc_skb+0x10/0x10
[ 264.525596][T11791] netlink_ack+0x164/0xb20
[ 264.527366][T11791] ? __pfx___lock_acquire+0x10/0x10
[ 264.529449][T11791] rdma_nl_rcv_skb.constprop.0.isra.0+0x346/0x450
[ 264.532017][T11791] ? __pfx_rdma_nl_rcv_skb.constprop.0.isra.0+0x10/0x10
[ 264.534649][T11791] ? netlink_deliver_tap+0x1ae/0xca0
[ 264.536684][T11791] netlink_unicast+0x53c/0x7f0
[ 264.538643][T11791] ? __pfx_netlink_unicast+0x10/0x10
[ 264.540819][T11791] ? __phys_addr_symbol+0x30/0x80
[ 264.542894][T11791] ? __check_object_size+0x488/0x710
[ 264.545085][T11791] netlink_sendmsg+0x8b8/0xd70
[ 264.547057][T11791] ? __pfx_netlink_sendmsg+0x10/0x10
[ 264.549170][T11791] ____sys_sendmsg+0x9ae/0xb40
[ 264.551121][T11791] ? __pfx_____sys_sendmsg+0x10/0x10
[ 264.553291][T11791] ? get_compat_msghdr+0x11b/0x170
[ 264.555426][T11791] ___sys_sendmsg+0x135/0x1e0
[ 264.557303][T11791] ? __pfx____sys_sendmsg+0x10/0x10
[ 264.559421][T11791] ? __pfx_lock_release+0x10/0x10
[ 264.561427][T11791] ? trace_lock_acquire+0x14e/0x1f0
[ 264.563546][T11791] ? __fget_files+0x206/0x3a0
[ 264.565481][T11791] __sys_sendmsg+0x16e/0x220
[ 264.567410][T11791] ? __pfx___sys_sendmsg+0x10/0x10
[ 264.569529][T11791] __do_fast_syscall_32+0x73/0x120
[ 264.571642][T11791] do_fast_syscall_32+0x32/0x80
[ 264.573640][T11791] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 264.576246][T11791] RIP: 0023:0xf707e579
[ 264.577932][T11791] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 264.585727][T11791] RSP: 002b:00000000f507055c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 264.589201][T11791] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000200
[ 264.592412][T11791] RDX: 000000000000c094 RSI: 0000000000000000 RDI: 0000000000000000
[ 264.595650][T11791] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 264.598924][T11791] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 264.602080][T11791] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 264.605231][T11791] </TASK>
[ 264.633703][T11793] random: crng reseeded on system resumption
[ 264.647330][T11793] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1630'.
[ 264.651528][T11793] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1630'.
[ 264.661391][T11793] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1630'.
[ 265.294957][ T40] audit: type=1326 audit(1736544846.938:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11806 comm="syz.2.1634" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x0
[ 266.747535][T11830] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1637'.
[ 267.120203][T11837] netlink: 220 bytes leftover after parsing attributes in process `syz.1.1639'.
[ 267.894421][T11851] FAULT_INJECTION: forcing a failure.
[ 267.894421][T11851] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 267.899235][T11851] CPU: 2 UID: 0 PID: 11851 Comm: syz.3.1643 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 267.902707][T11851] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 267.905942][T11851] Call Trace:
[ 267.907065][T11851] <TASK>
[ 267.908027][T11851] dump_stack_lvl+0x16c/0x1f0
[ 267.909626][T11851] should_fail_ex+0x497/0x5b0
[ 267.911319][T11851] _copy_from_user+0x2e/0xd0
[ 267.912806][T11851] move_addr_to_kernel+0x68/0x160
[ 267.914412][T11851] __get_compat_msghdr+0x3f1/0x4d0
[ 267.916334][T11851] get_compat_msghdr+0xd3/0x170
[ 267.917982][T11851] ? __pfx_get_compat_msghdr+0x10/0x10
[ 267.919613][T11851] ___sys_sendmsg+0x1b0/0x1e0
[ 267.921321][T11851] ? __pfx____sys_sendmsg+0x10/0x10
[ 267.923385][T11851] ? __pfx_lock_release+0x10/0x10
[ 267.925390][T11851] ? trace_lock_acquire+0x14e/0x1f0
[ 267.927496][T11851] ? __fget_files+0x206/0x3a0
[ 267.929379][T11851] __sys_sendmsg+0x16e/0x220
[ 267.931235][T11851] ? __pfx___sys_sendmsg+0x10/0x10
[ 267.933105][T11851] __do_fast_syscall_32+0x73/0x120
[ 267.934897][T11851] do_fast_syscall_32+0x32/0x80
[ 267.936835][T11851] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 267.939314][T11851] RIP: 0023:0xf7fc2579
[ 267.940938][T11851] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 267.948155][T11851] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 267.951461][T11851] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200001c0
[ 267.954561][T11851] RDX: 00000000000000ee RSI: 0000000000000000 RDI: 0000000000000000
[ 267.957702][T11851] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 267.960858][T11851] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 267.963995][T11851] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 267.967092][T11851] </TASK>
[ 268.041716][T11853] random: crng reseeded on system resumption
[ 268.796789][T11876] x_tables: duplicate underflow at hook 1
[ 268.810550][ T63] usb 5-1: new full-speed USB device number 9 using dummy_hcd
[ 268.971181][ T63] usb 5-1: unable to read config index 0 descriptor/start: -61
[ 268.973570][ T63] usb 5-1: can't read configurations, error -61
[ 269.109027][ T63] usb 5-1: new full-speed USB device number 10 using dummy_hcd
[ 269.212777][T11884] tipc: Started in network mode
[ 269.218792][T11884] tipc: Node identity 10000, cluster identity 4711
[ 269.226317][T11884] tipc: Node number set to 65536
[ 269.272111][ T63] usb 5-1: unable to read config index 0 descriptor/start: -61
[ 269.274388][ T63] usb 5-1: can't read configurations, error -61
[ 269.276499][ T63] usb usb5-port1: attempt power cycle
[ 269.633110][ T63] usb 5-1: new full-speed USB device number 11 using dummy_hcd
[ 269.655893][ T63] usb 5-1: unable to read config index 0 descriptor/start: -61
[ 269.658755][ T63] usb 5-1: can't read configurations, error -61
[ 269.792849][ T63] usb 5-1: new full-speed USB device number 12 using dummy_hcd
[ 269.816153][ T63] usb 5-1: unable to read config index 0 descriptor/start: -61
[ 269.818380][ T63] usb 5-1: can't read configurations, error -61
[ 269.820439][ T63] usb usb5-port1: unable to enumerate USB device
[ 270.610362][T11912] ptrace attach of "/syz-executor exec"[11913] was attempted by "/syz-executor exec"[11912]
[ 270.700122][T11916] FAULT_INJECTION: forcing a failure.
[ 270.700122][T11916] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 270.704021][T11916] CPU: 0 UID: 0 PID: 11916 Comm: syz.3.1662 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 270.707503][T11916] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 270.710589][T11916] Call Trace:
[ 270.711579][T11916] <TASK>
[ 270.712444][T11916] dump_stack_lvl+0x16c/0x1f0
[ 270.713809][T11916] should_fail_ex+0x497/0x5b0
[ 270.715213][T11916] _copy_from_user+0x2e/0xd0
[ 270.716558][T11916] get_compat_msghdr+0xa8/0x170
[ 270.717965][T11916] ? __pfx_get_compat_msghdr+0x10/0x10
[ 270.719563][T11916] ___sys_recvmsg+0x193/0x1a0
[ 270.720909][T11916] ? __pfx____sys_recvmsg+0x10/0x10
[ 270.722408][T11916] ? __fget_files+0x1fc/0x3a0
[ 270.723765][T11916] ? trace_lock_acquire+0x14e/0x1f0
[ 270.725422][T11916] ? __fget_files+0x206/0x3a0
[ 270.726803][T11916] ? __pfx___might_resched+0x10/0x10
[ 270.728346][T11916] do_recvmmsg+0x55d/0x740
[ 270.729661][T11916] ? __pfx_do_recvmmsg+0x10/0x10
[ 270.731098][T11916] ? vfs_write+0x306/0x1150
[ 270.732416][T11916] ? __fget_files+0x206/0x3a0
[ 270.733783][T11916] __sys_recvmmsg+0x21e/0x280
[ 270.735216][T11916] ? __pfx___sys_recvmmsg+0x10/0x10
[ 270.736750][T11916] ? __pfx_ksys_write+0x10/0x10
[ 270.738143][T11916] __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[ 270.739967][T11916] ? lockdep_hardirqs_on+0x7c/0x110
[ 270.741459][T11916] ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[ 270.743333][T11916] __do_fast_syscall_32+0x73/0x120
[ 270.744847][T11916] do_fast_syscall_32+0x32/0x80
[ 270.746348][T11916] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 270.748232][T11916] RIP: 0023:0xf7fc2579
[ 270.749433][T11916] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 270.754902][T11916] RSP: 002b:00000000f50f555c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 270.757468][T11916] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000020002940
[ 270.759832][T11916] RDX: 000000000000f000 RSI: 0000000000010002 RDI: 0000000000000000
[ 270.762158][T11916] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 270.764540][T11916] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 270.766890][T11916] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 270.769258][T11916] </TASK>
[ 271.118369][T11930] sp0: Synchronizing with TNC
[ 271.379931][T11938] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(14)
[ 271.381986][T11938] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[ 271.384546][T11938] vhci_hcd vhci_hcd.0: Device attached
[ 271.749218][ T5999] vhci_hcd: vhci_device speed not set
[ 271.813634][ T5999] usb 39-1: new full-speed USB device number 3 using vhci_hcd
[ 271.936377][T11946] netlink: 'syz.0.1672': attribute type 1 has an invalid length.
[ 272.108077][T11947] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1672'.
[ 272.161170][T11939] vhci_hcd: connection reset by peer
[ 272.163604][ T1137] vhci_hcd: stop threads
[ 272.168311][ T1137] vhci_hcd: release socket
[ 272.170165][ T1137] vhci_hcd: disconnect device
[ 272.192164][T11955] fuse: Bad value for 'fd'
[ 272.443147][T11964] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1677'.
[ 272.445901][T11964] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1677'.
[ 272.475713][T11966] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1678'.
[ 272.479402][T11966] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1678'.
[ 272.629662][T11971] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1679'.
[ 272.772841][T11978] FAULT_INJECTION: forcing a failure.
[ 272.772841][T11978] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 272.777900][T11978] CPU: 2 UID: 0 PID: 11978 Comm: syz.3.1682 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 272.780957][T11978] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 272.783982][T11978] Call Trace:
[ 272.784966][T11978] <TASK>
[ 272.785849][T11978] dump_stack_lvl+0x16c/0x1f0
[ 272.787197][T11978] should_fail_ex+0x497/0x5b0
[ 272.788553][T11978] _copy_to_user+0x32/0xd0
[ 272.789839][T11978] simple_read_from_buffer+0xd0/0x160
[ 272.791374][T11978] proc_fail_nth_read+0x198/0x270
[ 272.792833][T11978] ? __pfx_proc_fail_nth_read+0x10/0x10
[ 272.794495][T11978] ? __pfx_proc_fail_nth_read+0x10/0x10
[ 272.796247][T11978] vfs_read+0x1df/0xbe0
[ 272.797443][T11978] ? __fget_files+0x1fc/0x3a0
[ 272.798796][T11978] ? __pfx___mutex_lock+0x10/0x10
[ 272.800249][T11978] ? __pfx_vfs_read+0x10/0x10
[ 272.801608][T11978] ? __fget_files+0x206/0x3a0
[ 272.802967][T11978] ksys_read+0x12b/0x250
[ 272.804191][T11978] ? __pfx_ksys_read+0x10/0x10
[ 272.805579][T11978] __do_fast_syscall_32+0x73/0x120
[ 272.807052][T11978] do_fast_syscall_32+0x32/0x80
[ 272.808436][T11978] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 272.810228][T11978] RIP: 0023:0xf7fc2579
[ 272.811394][T11978] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 272.816824][T11978] RSP: 002b:00000000f5116590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 272.819179][T11978] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f5116620
[ 272.821397][T11978] RDX: 000000000000000f RSI: 00000000f7453ff4 RDI: 0000000000000000
[ 272.823639][T11978] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 272.825902][T11978] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 272.828175][T11978] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 272.830411][T11978] </TASK>
[ 272.975207][T11995] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1686'.
[ 273.074505][T11997] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 20000 - 0
[ 273.074595][T11997] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 20000 - 0
[ 273.074866][T11997] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 20000 - 0
[ 273.074897][T11997] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 20000 - 0
[ 273.078925][T11997] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 20000 - 0
[ 273.079005][T11997] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 20000 - 0
[ 273.079035][T11997] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 20000 - 0
[ 273.079091][T11997] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 20000 - 0
[ 273.082034][T11997] geneve2: entered promiscuous mode
[ 273.106259][T11997] geneve2: entered allmulticast mode
[ 273.632766][T12006] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1689'.
[ 273.955151][T12008] pim6reg: entered allmulticast mode
[ 273.955501][T12010] FAULT_INJECTION: forcing a failure.
[ 273.955501][T12010] name failslab, interval 1, probability 0, space 0, times 0
[ 273.961244][T12010] CPU: 3 UID: 0 PID: 12010 Comm: syz.1.1691 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 273.964546][T12010] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 273.967459][T12010] Call Trace:
[ 273.968450][T12010] <TASK>
[ 273.969427][T12010] dump_stack_lvl+0x16c/0x1f0
[ 273.970780][T12010] should_fail_ex+0x497/0x5b0
[ 273.972189][T12010] ? fs_reclaim_acquire+0xae/0x150
[ 273.973696][T12010] should_failslab+0xc2/0x120
[ 273.975130][T12010] kmem_cache_alloc_node_noprof+0x72/0x3b0
[ 273.976814][T12010] ? __up_read+0x1fb/0x760
[ 273.978150][T12010] ? __alloc_skb+0x2b3/0x380
[ 273.979503][T12010] __alloc_skb+0x2b3/0x380
[ 273.980813][T12010] ? __pfx___alloc_skb+0x10/0x10
[ 273.982290][T12010] netlink_ack+0x164/0xb20
[ 273.983593][T12010] ? __pfx___lock_acquire+0x10/0x10
[ 273.985227][T12010] rdma_nl_rcv_skb.constprop.0.isra.0+0x346/0x450
[ 273.987104][T12010] ? __pfx_rdma_nl_rcv_skb.constprop.0.isra.0+0x10/0x10
[ 273.989151][T12010] ? netlink_deliver_tap+0x1ae/0xca0
[ 273.990703][T12010] netlink_unicast+0x53c/0x7f0
[ 273.992100][T12010] ? __pfx_netlink_unicast+0x10/0x10
[ 273.993654][T12010] ? __phys_addr_symbol+0x30/0x80
[ 273.995125][T12010] ? __check_object_size+0x488/0x710
[ 273.996941][T12010] netlink_sendmsg+0x8b8/0xd70
[ 273.998332][T12010] ? __pfx_netlink_sendmsg+0x10/0x10
[ 273.999969][T12010] ____sys_sendmsg+0x9ae/0xb40
[ 274.001436][T12010] ? __pfx_____sys_sendmsg+0x10/0x10
[ 274.003068][T12010] ? get_compat_msghdr+0x11b/0x170
[ 274.004774][T12010] ___sys_sendmsg+0x135/0x1e0
[ 274.006199][T12010] ? __pfx____sys_sendmsg+0x10/0x10
[ 274.007959][T12010] ? __pfx_lock_release+0x10/0x10
[ 274.009429][T12010] ? trace_lock_acquire+0x14e/0x1f0
[ 274.010988][T12010] ? __fget_files+0x206/0x3a0
[ 274.012361][T12010] __sys_sendmsg+0x16e/0x220
[ 274.013706][T12010] ? __pfx___sys_sendmsg+0x10/0x10
[ 274.015275][T12010] __do_fast_syscall_32+0x73/0x120
[ 274.016971][T12010] do_fast_syscall_32+0x32/0x80
[ 274.018373][T12010] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 274.020241][T12010] RIP: 0023:0xf70ee579
[ 274.020554][T12011] pim6reg: left allmulticast mode
[ 274.021478][T12010] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 274.021491][T12010] RSP: 002b:00000000f50e055c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 274.031769][T12010] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000200
[ 274.034067][T12010] RDX: 000000000000c094 RSI: 0000000000000000 RDI: 0000000000000000
[ 274.036389][T12010] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 274.038682][T12010] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 274.040985][T12010] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 274.043318][T12010] </TASK>
[ 274.447206][T12020]
[ 274.448228][T12020] ======================================================
[ 274.450929][T12020] WARNING: possible circular locking dependency detected
[ 274.453656][T12020] 6.13.0-rc6-syzkaller-00130-g2144da25584e #0 Not tainted
[ 274.457709][T12020] ------------------------------------------------------
[ 274.460751][T12020] syz.3.1695/12020 is trying to acquire lock:
[ 274.463151][T12020] ffff88802405b6c0 (&q->sysfs_lock){+.+.}-{4:4}, at: __blk_mq_update_nr_hw_queues+0x446/0x1460
[ 274.467125][T12020]
[ 274.467125][T12020] but task is already holding lock:
[ 274.469589][T12020] ffff88802405b190 (&q->q_usage_counter(io)#52){++++}-{0:0}, at: __blk_mq_update_nr_hw_queues+0x1fc/0x1460
[ 274.473428][T12020]
[ 274.473428][T12020] which lock already depends on the new lock.
[ 274.473428][T12020]
[ 274.476885][T12020]
[ 274.476885][T12020] the existing dependency chain (in reverse order) is:
[ 274.479706][T12020]
[ 274.479706][T12020] -> #4 (&q->q_usage_counter(io)#52){++++}-{0:0}:
[ 274.482516][T12020] blk_mq_submit_bio+0x1fb6/0x24c0
[ 274.484419][T12020] __submit_bio+0x384/0x540
[ 274.486140][T12020] submit_bio_noacct_nocheck+0x698/0xd70
[ 274.488461][T12020] submit_bio_noacct+0x93a/0x1e20
[ 274.490406][T12020] block_read_full_folio+0x812/0xa50
[ 274.492411][T12020] filemap_read_folio+0xc6/0x2a0
[ 274.494280][T12020] filemap_get_pages+0x155f/0x1be0
[ 274.496183][T12020] filemap_read+0x3ca/0xd70
[ 274.497903][T12020] blkdev_read_iter+0x187/0x480
[ 274.499732][T12020] vfs_read+0x87f/0xbe0
[ 274.501337][T12020] ksys_read+0x12b/0x250
[ 274.502985][T12020] do_syscall_64+0xcd/0x250
[ 274.504635][T12020] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 274.506836][T12020]
[ 274.506836][T12020] -> #3 (mapping.invalidate_lock#2){++++}-{4:4}:
[ 274.509751][T12020] down_read+0x9a/0x330
[ 274.511364][T12020] filemap_fault+0x2e0/0x2820
[ 274.513126][T12020] __do_fault+0x10a/0x490
[ 274.514917][T12020] do_pte_missing+0xebd/0x3e00
[ 274.516839][T12020] __handle_mm_fault+0x103c/0x2a40
[ 274.518801][T12020] handle_mm_fault+0x3fa/0xaa0
[ 274.520595][T12020] do_user_addr_fault+0x7a3/0x13f0
[ 274.522482][T12020] exc_page_fault+0x5c/0xc0
[ 274.524168][T12020] asm_exc_page_fault+0x26/0x30
[ 274.525951][T12020] strncpy_from_user+0x14a/0x2d0
[ 274.527802][T12020] getname_flags.part.0+0x8f/0x550
[ 274.529676][T12020] getname_flags+0x93/0xf0
[ 274.531245][T12020] __ia32_sys_mknodat+0x9a/0xe0
[ 274.532974][T12020] __do_fast_syscall_32+0x73/0x120
[ 274.534743][T12020] do_fast_syscall_32+0x32/0x80
[ 274.536471][T12020] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 274.538594][T12020]
[ 274.538594][T12020] -> #2 (&mm->mmap_lock){++++}-{4:4}:
[ 274.540962][T12020] __might_fault+0x11b/0x190
[ 274.542576][T12020] _copy_from_user+0x29/0xd0
[ 274.544218][T12020] compat_blk_trace_setup+0xc9/0x200
[ 274.546104][T12020] blk_trace_ioctl+0x24a/0x290
[ 274.547770][T12020] compat_blkdev_ioctl+0x13c/0x750
[ 274.549541][T12020] __do_compat_sys_ioctl+0x1cb/0x2c0
[ 274.551379][T12020] __do_fast_syscall_32+0x73/0x120
[ 274.553134][T12020] do_fast_syscall_32+0x32/0x80
[ 274.554826][T12020] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 274.557060][T12020]
[ 274.557060][T12020] -> #1 (&q->debugfs_mutex){+.+.}-{4:4}:
[ 274.559533][T12020] __mutex_lock+0x19b/0xa60
[ 274.561148][T12020] blk_register_queue+0x13c/0x4f0
[ 274.562839][T12020] add_disk_fwnode+0x785/0x1300
[ 274.564556][T12020] brd_alloc.isra.0+0x50a/0x7c0
[ 274.566260][T12020] brd_init+0x12b/0x1d0
[ 274.567736][T12020] do_one_initcall+0x128/0x630
[ 274.569380][T12020] kernel_init_freeable+0x58f/0x8b0
[ 274.571204][T12020] kernel_init+0x1c/0x2b0
[ 274.572722][T12020] ret_from_fork+0x45/0x80
[ 274.574260][T12020] ret_from_fork_asm+0x1a/0x30
[ 274.575975][T12020]
[ 274.575975][T12020] -> #0 (&q->sysfs_lock){+.+.}-{4:4}:
[ 274.578356][T12020] __lock_acquire+0x249e/0x3c40
[ 274.580030][T12020] lock_acquire.part.0+0x11b/0x380
[ 274.581754][T12020] __mutex_lock+0x19b/0xa60
[ 274.583371][T12020] __blk_mq_update_nr_hw_queues+0x446/0x1460
[ 274.585410][T12020] blk_mq_update_nr_hw_queues+0x2a/0x40
[ 274.587361][T12020] nbd_start_device+0x15b/0xd70
[ 274.589061][T12020] nbd_ioctl+0x21a/0xfd0
[ 274.590574][T12020] compat_blkdev_ioctl+0x2f7/0x750
[ 274.592368][T12020] __do_compat_sys_ioctl+0x1cb/0x2c0
[ 274.594265][T12020] __do_fast_syscall_32+0x73/0x120
[ 274.596211][T12020] do_fast_syscall_32+0x32/0x80
[ 274.598089][T12020] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 274.600289][T12020]
[ 274.600289][T12020] other info that might help us debug this:
[ 274.600289][T12020]
[ 274.603612][T12020] Chain exists of:
[ 274.603612][T12020] &q->sysfs_lock --> mapping.invalidate_lock#2 --> &q->q_usage_counter(io)#52
[ 274.603612][T12020]
[ 274.607696][T12020] Possible unsafe locking scenario:
[ 274.607696][T12020]
[ 274.610430][T12020] CPU0 CPU1
[ 274.612041][T12020] ---- ----
[ 274.613476][T12020] lock(&q->q_usage_counter(io)#52);
[ 274.615007][T12020] lock(mapping.invalidate_lock#2);
[ 274.617050][T12020] lock(&q->q_usage_counter(io)#52);
[ 274.619124][T12020] lock(&q->sysfs_lock);
[ 274.620276][T12020]
[ 274.620276][T12020] *** DEADLOCK ***
[ 274.620276][T12020]
[ 274.622411][T12020] 4 locks held by syz.3.1695/12020:
[ 274.623823][T12020] #0: ffff8880241be998 (&nbd->config_lock){+.+.}-{4:4}, at: nbd_ioctl+0x151/0xfd0
[ 274.626415][T12020] #1: ffff8880241be8d8 (&set->tag_list_lock){+.+.}-{4:4}, at: blk_mq_update_nr_hw_queues+0x20/0x40
[ 274.630062][T12020] #2: ffff88802405b190 (&q->q_usage_counter(io)#52){++++}-{0:0}, at: __blk_mq_update_nr_hw_queues+0x1fc/0x1460
[ 274.634566][T12020] #3: ffff88802405b1c8 (&q->q_usage_counter(queue)#36){+.+.}-{0:0}, at: __blk_mq_update_nr_hw_queues+0x1fc/0x1460
[ 274.639361][T12020]
[ 274.639361][T12020] stack backtrace:
[ 274.641592][T12020] CPU: 3 UID: 0 PID: 12020 Comm: syz.3.1695 Not tainted 6.13.0-rc6-syzkaller-00130-g2144da25584e #0
[ 274.645738][T12020] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 274.649889][T12020] Call Trace:
[ 274.651270][T12020] <TASK>
[ 274.652435][T12020] dump_stack_lvl+0x116/0x1f0
[ 274.654300][T12020] print_circular_bug+0x41c/0x610
[ 274.656314][T12020] check_noncircular+0x31a/0x400
[ 274.658211][T12020] ? __pfx_check_noncircular+0x10/0x10
[ 274.660041][T12020] ? save_trace+0x42/0xa10
[ 274.661305][T12020] ? add_lock_to_list+0x17d/0x390
[ 274.662729][T12020] __lock_acquire+0x249e/0x3c40
[ 274.664114][T12020] ? __pfx___lock_acquire+0x10/0x10
[ 274.665541][T12020] ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 274.667206][T12020] ? stack_depot_save_flags+0x36d/0x9e0
[ 274.668839][T12020] lock_acquire.part.0+0x11b/0x380
[ 274.670274][T12020] ? __blk_mq_update_nr_hw_queues+0x446/0x1460
[ 274.671988][T12020] ? __pfx_lock_acquire.part.0+0x10/0x10
[ 274.673507][T12020] ? rcu_is_watching+0x12/0xc0
[ 274.674836][T12020] ? trace_lock_acquire+0x14e/0x1f0
[ 274.676276][T12020] ? __blk_mq_update_nr_hw_queues+0x446/0x1460
[ 274.678195][T12020] ? lock_acquire+0x2f/0xb0
[ 274.680009][T12020] ? __blk_mq_update_nr_hw_queues+0x446/0x1460
[ 274.681828][T12020] __mutex_lock+0x19b/0xa60
[ 274.683110][T12020] ? __blk_mq_update_nr_hw_queues+0x446/0x1460
[ 274.684831][T12020] ? __blk_mq_update_nr_hw_queues+0x446/0x1460
[ 274.686630][T12020] ? __pfx___mutex_lock+0x10/0x10
[ 274.688299][T12020] ? __blk_mq_update_nr_hw_queues+0x446/0x1460
[ 274.690120][T12020] __blk_mq_update_nr_hw_queues+0x446/0x1460
[ 274.691767][T12020] ? lock_acquire.part.0+0x11b/0x380
[ 274.693221][T12020] ? __mutex_trylock_common+0xea/0x250
[ 274.694733][T12020] ? __pfx___mutex_trylock_common+0x10/0x10
[ 274.696384][T12020] ? blk_mq_update_nr_hw_queues+0x20/0x40
[ 274.698150][T12020] ? rcu_is_watching+0x12/0xc0
[ 274.700086][T12020] ? __pfx___blk_mq_update_nr_hw_queues+0x10/0x10
[ 274.701971][T12020] ? __pfx___mutex_trylock_common+0x10/0x10
[ 274.703636][T12020] ? blk_mq_update_nr_hw_queues+0x20/0x40
[ 274.705239][T12020] ? __pfx___mutex_lock+0x10/0x10
[ 274.706664][T12020] ? trace_contention_end+0xee/0x140
[ 274.708325][T12020] ? __mutex_lock+0x1cc/0xa60
[ 274.709644][T12020] ? nbd_ioctl+0x151/0xfd0
[ 274.710905][T12020] ? __pfx___mutex_lock+0x10/0x10
[ 274.712313][T12020] blk_mq_update_nr_hw_queues+0x2a/0x40
[ 274.713835][T12020] nbd_start_device+0x15b/0xd70
[ 274.715192][T12020] ? bpf_lsm_capable+0x9/0x10
[ 274.716535][T12020] nbd_ioctl+0x21a/0xfd0
[ 274.717738][T12020] ? __pfx_nbd_ioctl+0x10/0x10
[ 274.719078][T12020] ? __pfx_lock_release+0x10/0x10
[ 274.720458][T12020] ? trace_lock_acquire+0x14e/0x1f0
[ 274.721910][T12020] ? __pfx_nbd_ioctl+0x10/0x10
[ 274.723239][T12020] compat_blkdev_ioctl+0x2f7/0x750
[ 274.724663][T12020] ? __pfx_compat_blkdev_ioctl+0x10/0x10
[ 274.726251][T12020] ? __fget_files+0x206/0x3a0
[ 274.727664][T12020] ? __pfx_compat_blkdev_ioctl+0x10/0x10
[ 274.729913][T12020] __do_compat_sys_ioctl+0x1cb/0x2c0
[ 274.731982][T12020] __do_fast_syscall_32+0x73/0x120
[ 274.734005][T12020] do_fast_syscall_32+0x32/0x80
[ 274.735812][T12020] entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 274.738340][T12020] RIP: 0023:0xf7fc2579
[ 274.740002][T12020] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 274.747532][T12020] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 274.750728][T12020] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ab03
[ 274.753848][T12020] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 274.757038][T12020] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 274.760208][T12020] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 274.763386][T12020] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 274.766582][T12020] </TASK>
[ 274.807423][ T5294] block nbd3: Receive control failed (result -32)
[ 274.809431][ T5294] block nbd3: Receive control failed (result -32)
[ 274.811397][ T5294] block nbd3: Receive control failed (result -32)
[ 274.861357][T12020] block nbd3: shutting down sockets
[ 277.265534][ T5999] vhci_hcd: vhci_device speed not set
VM DIAGNOSIS:
21:34:24 Registers:
info registers vcpu 0
CPU#0
RAX=0000000000000001 RBX=ffffffff81e1aa03 RCX=ffffffff81756c7c RDX=0000000000000000
RSI=ffffffff8bb170c0 RDI=ffffffff8d82fce0 RBP=0000000000000000 RSP=ffffc9002993f9d0
R8 =0000000000000000 R9 =fffffbfff2039e4a R10=ffffffff901cf257 R11=0000000000000000
R12=0000000000000000 R13=0000000000000001 R14=0000000000000001 R15=0000000000000000
RIP=ffffffff81765adf RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c364237 CR3=00000000549ce000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
CPU#1
RAX=0000000000000001 RBX=0000000000000001 RCX=ffffc9000e410000 RDX=ffffc9000e40fb01
RSI=ffffc9000e40fb28 RDI=ffffc9000e40efd0 RBP=ffffc9000e40fb28 RSP=ffffc9000e40ef30
R8 =ffffffff90bd49da R9 =ffffffff90bd49d8 R10=ffffc9000e40efd0 R11=0000000000010d5b
R12=0000000000000008 R13=ffffc9000e40efe0 R14=ffffc9000e40efd8 R15=ffffc9000e408000
RIP=ffffffff8148edd6 RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=00000000549ce000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2
CPU#2
RAX=0000000000000001 RBX=ffffffff8b1cf302 RCX=1ffffffff3476914 RDX=0000000000000000
RSI=ffffffff815912ac RDI=ffffffff8b1cf302 RBP=ffff888021782e00 RSP=ffffc9002a807ac0
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=ffff88802568d100 R14=1ffff92005500f72 R15=ffff888021782440
RIP=ffffffff8176a660 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT= fffffe000008f000 0000007f
IDT= fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000054f7e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3
CPU#3
RAX=0000000000000034 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff851454b5 RDI=ffffffff9a66a200 RBP=ffffffff9a66a1c0 RSP=ffffc9002732f000
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d
R12=0000000000000000 R13=0000000000000034 R14=ffffffff85145450 R15=0000000000000000
RIP=ffffffff851454df RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b700000 ffffffff 00d0f300 DPL=3 DS [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe00000d6000 0000007f
IDT= fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020018000 CR3=000000006fede000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000