last executing test programs:

5.780857912s ago: executing program 1 (id=1195):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x1, 0x4)
connect$inet6(r0, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x3)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='cpuacct.usage_sys\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f000000e0c0), 0x10010)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000240)=@ccm_128={{0x304}, '\x00', "ed86a155b66f481507086fe637736e4c", "8968e562", "842546172794808f"}, 0x28)
sendfile(r0, r1, &(0x7f0000000100)=0x10, 0x10001)

5.780581308s ago: executing program 1 (id=1196):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="a00000002100390d000000000000000000000000000000000005000000000000ffffffff00000008000000000000000000000000000300000a000000ff000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000500011"], 0xa0}}, 0x10)

5.713610059s ago: executing program 1 (id=1197):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000800)=ANY=[@ANYBLOB="84010000", @ANYRES16=r1, @ANYBLOB="010000000000000000000100000004000480080002000100000008000100000000090400088058010c8054000b800800090000000000080009000000000008000a000000000008000a000000000008000a000000000008000900000000000800097c86b722735035dc0067f6b13308000a000000000008000a000000000008000900975b9b5e04000b801c000b800800090000000900000009005e2a2d7a080009000000000024000b80080009e6ff0000000800090000000000080009000000000008000900000000005c000b8008000a000000000008"], 0x184}}, 0x0)
r2 = io_uring_setup(0x71b9, &(0x7f00000000c0)={0x0, 0xc63b})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_REINJECT_CONTROL(r4, 0xae71, &(0x7f00000000c0)={0x5})
io_uring_register$IORING_REGISTER_CLOCK(r2, 0x1d, 0x0, 0x0)
r5 = syz_usb_connect$hid(0x0, 0x3f, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x46d, 0xc537, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x1, 0x20, 0x3, [{{0x9, 0x4, 0x0, 0xf, 0x1, 0x3, 0x1, 0x1, 0x1, {0x9, 0x21, 0x2, 0x5, 0x1, {0x22, 0x3e4}}, {{{0x9, 0x5, 0x81, 0x3, 0x200, 0x0, 0x6, 0x40}}, [{{0x9, 0x5, 0x2, 0x3, 0x40, 0x2, 0x5, 0xeb}}]}}}]}}]}}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0})
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0xfe, 0x7fc00100}]})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000980)={0x0, 0xc2476a88c5e71654, <r7=>0xffffffffffffffff})
ioctl$DRM_IOCTL_RM_MAP(r7, 0x4018641b, &(0x7f00000009c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x1000)=nil})
syz_init_net_socket$x25(0x9, 0x5, 0x0)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x21}, &(0x7f0000000340))
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r6, 0xc0502100, &(0x7f0000002780)={<r8=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000080)={r8, 0x1, r6, 0x80002d})
syz_usb_control_io(r5, 0x0, &(0x7f0000000900)={0x44, &(0x7f0000000480)={0x20, 0x12, 0x91, "e6ed8608d8140a8c1638a55a4e0c752b3f0da6bba486694ecb847e8085e75c2bae236d7fd6a1c4e3d040bc157c80d1d8d28b03ea53a85f7bc446ca4c8b87c157f0964ac850eb230dbdf4ded1b8084644f03d316f7a2fb6be5961337fb46eadf61c63e8527a741d88a198a64561920128023bec500c41bf9de892c5b3013f933c86a2361bf577217ddec771b27a579a4efd"}, 0x0, &(0x7f0000000580)={0x0, 0x8, 0x1, 0x2}, &(0x7f00000005c0)={0x20, 0x0, 0x4, {0x2, 0x1}}, &(0x7f0000000600)={0x20, 0x0, 0x4, {0x120, 0x80}}, &(0x7f0000000640)={0x40, 0x7, 0x2}, &(0x7f0000000680)={0x40, 0x9, 0x1, 0x5}, &(0x7f00000006c0)={0x40, 0xb, 0x2, 'lZ'}, &(0x7f0000000700)={0x40, 0xf, 0x2, 0x5}, &(0x7f0000000740)={0x40, 0x13, 0x6, @remote}, &(0x7f0000000780)={0x40, 0x17, 0x6, @local}, &(0x7f00000007c0)={0x40, 0x19, 0x2, "e98a"}, &(0x7f0000000800)={0x40, 0x1a, 0x2, 0xfffa}, 0x0, &(0x7f0000000880)={0x40, 0x1e, 0x1, 0x4}, &(0x7f00000008c0)={0x40, 0x21, 0x1, 0x23}})

2.500671356s ago: executing program 1 (id=1211):
socket$nl_xfrm(0x10, 0x3, 0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
syz_open_dev$video(0x0, 0x7ff, 0x0)
r2 = openat$binder_debug(0xffffff9c, 0x0, 0x0, 0x0)
r3 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x3, 0x0, 0x0, r1}, &(0x7f0000000140)=<r4=>0x0, &(0x7f00000002c0)=<r5=>0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000500)=ANY=[@ANYBLOB="60000000020601080000000020000000000057b1dd25879db5ae73683a69702c6d61726b00000000050001000700000005000500020000000900020073797a300000001b000ad999baca5a86bd000500040000000000140007800800084000000040c762064000000000"], 0x60}}, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
syz_open_dev$admmidi(&(0x7f0000000100), 0x41, 0x402)
syz_emit_ethernet(0x1e, &(0x7f0000000200)={@remote, @empty, @void, {@can={0xc, {{0x4, 0x0, 0x0, 0x1}, 0x4, 0x3, 0x0, 0x0, "bfafb030b4c2a649"}}}}, &(0x7f0000000240)={0x1, 0x2, [0x3e2, 0x242, 0xee8, 0x308]})
io_uring_enter(r3, 0x2ded, 0x4008, 0x0, 0x0, 0x22)
ioctl$FS_IOC_GETFSLABEL(r2, 0x81009431, &(0x7f0000000400))
r7 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001400)=ANY=[@ANYBLOB="1c0000005e0021a5553f8c6b23cbff070000f3373526a01e35"], 0x1c}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x22802, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
syz_open_procfs(0x0, &(0x7f0000000300)='net/vlan/vlan0\x00')
r8 = syz_io_uring_setup(0xce, &(0x7f00000000c0), &(0x7f0000000040)=<r9=>0x0, &(0x7f0000000000))
r10 = syz_io_uring_setup(0x5179, &(0x7f0000000140)={0x0, 0x80000000, 0x2}, &(0x7f0000000100)=<r11=>0x0, &(0x7f0000000000)=<r12=>0x0)
syz_io_uring_submit(r11, r12, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0})
io_uring_enter(r10, 0x7368, 0x0, 0x0, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r9, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r8, 0x0, 0x10a5, 0x3, 0x0, 0x0)
io_uring_enter(r8, 0x47fa, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r8, 0xde5, 0x0, 0x0, 0x0, 0x0)

2.381457005s ago: executing program 2 (id=1212):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB="3c00000010000104090000000000000700000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b00010062617461647600"], 0x3c}}, 0x0)

2.251102331s ago: executing program 2 (id=1213):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, 0x0, 0x0)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback={0xf403000000000000}}, 0x1c)

2.250784177s ago: executing program 2 (id=1214):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x355641)
unshare(0x6020400)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CAP_X86_DISABLE_EXITS(r2, 0x4068aea3, &(0x7f0000000000)={0xc4})
r3 = syz_open_dev$dri(&(0x7f00000000c0), 0x0, 0x2000)
ioctl$DRM_IOCTL_MODE_GETPLANE(0xffffffffffffffff, 0xc02064b6, &(0x7f0000000140)={0x0, <r4=>0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0]})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f0000000280)={&(0x7f0000000180)=[<r5=>0x0], &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000240)=[0x0], 0x1, 0x9, 0x5, 0x1})
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r3, 0xc01864b0, &(0x7f00000002c0)={r4, r5, 0x2, 0xcf0, 0x3ff})
ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_POOL(r0, 0xc058534b, &(0x7f0000000440)={0x80})

2.108626873s ago: executing program 3 (id=1216):
syz_open_dev$tty1(0xc, 0x4, 0x1)
r0 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600))
socket$netlink(0x10, 0x3, 0x6)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffff}, 0x0)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r4 = syz_open_dev$loop(&(0x7f0000000040), 0x0, 0x80000)
read(r4, &(0x7f00000003c0)=""/205, 0xcd)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r3, 0x4040534e, &(0x7f0000000080)={0x335})
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r3, 0x80045300, 0x0)
tkill(0x0, 0x7)
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x400000000000000, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x3, 0x0, 0x0, 0xa, 0x0, 0x3, 0x0, [@sadb_address={0x3, 0x6, 0xff, 0x0, 0x0, @in={0x2, 0x0, @local}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x4bfffffe}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @loopback}}]}, 0x50}}, 0x0)

2.101177128s ago: executing program 2 (id=1217):
syz_open_dev$tty1(0xc, 0x4, 0x1)
r0 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600))
socket$netlink(0x10, 0x3, 0x6)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffff}, 0x0)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r4 = syz_open_dev$loop(&(0x7f0000000040), 0x0, 0x80000)
read(r4, &(0x7f00000003c0)=""/205, 0xcd)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r3, 0x4040534e, &(0x7f0000000080)={0x335})
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r3, 0x80045300, 0x0)
tkill(0x0, 0x7)
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x400000000000000, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x3, 0x0, 0x0, 0xa, 0x0, 0x3, 0x0, [@sadb_address={0x3, 0x6, 0xff, 0x0, 0x0, @in={0x2, 0x0, @local}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x4bfffffe}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @loopback}}]}, 0x50}}, 0x0)

1.900593769s ago: executing program 1 (id=1221):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet6_sctp(0xa, 0x801, 0x84)
openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
open(0x0, 0x14507f, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x10, 0x11, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000380)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000080)='./file1\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r1, 0xffffffff80000800, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x7fffffff})
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0xf0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
creat(&(0x7f0000000340)='./file0/file0\x00', 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f00000023c0)={0x26, 'hash\x00', 0x0, 0x0, 'crc32\x00'}, 0x58)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000009b80), 0x0, 0x20000881)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)

1.900198843s ago: executing program 0 (id=1222):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0xa3)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}], [], 0x2c})
r0 = io_uring_setup(0x84, &(0x7f0000000440)={0x0, 0xee81, 0x40, 0x3, 0x10b})
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r1, &(0x7f0000000380)={0xa, 0x4e21, 0xffffffff, @local, 0x6}, 0x1c)
sendmmsg$inet6(r1, &(0x7f0000003900)=[{{0x0, 0x0, 0x0}}], 0x1, 0xc005)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="b80000001900674c0000000000000800fe8000000000000000000000000000bbe000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000101"], 0xb8}}, 0x0)
sendmmsg$inet6(r1, &(0x7f0000001e40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
syz_io_uring_setup(0x814172, &(0x7f0000000780)={0x0, 0x0, 0x10100, 0x4, 0x0, 0x0, r0}, &(0x7f0000000100), &(0x7f0000000140))
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0xe)
syz_io_uring_setup(0x10d, &(0x7f0000000140), &(0x7f0000000340)=<r5=>0x0, &(0x7f0000000280))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x10, &(0x7f0000000ac0)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000340)=[{0x5, 0x5, 0x0, 0x9}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x3, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, 0x0, 0x0, 0x4)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000002c0), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x15, 0x1c, &(0x7f0000000000)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, {{0x18, 0x1, 0x1, 0x0, r4}, {}, {0x7, 0x0, 0xb, 0x6, 0x0, 0x0, 0x5}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0x6, 0x9}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x5, 0x1, 0xa, 0x9, 0x9}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x7, 0x0, 0xc}, {0x18, 0x6, 0x2, 0x0, r3}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

1.062015712s ago: executing program 1 (id=1223):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000300)={0x0, 0x200000, 0x10100}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r2, 0x2def, 0x4000, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
r5 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r5, &(0x7f0000000080)={0x0, 0x1, 0x3, 0x1}, 0x8)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f0000000600)={0x0, 0xc, &(0x7f0000000000)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)=ANY=[])
read$FUSE(r1, &(0x7f0000000640)={0x2020, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}, 0x2020)
ptrace$getregset(0x4204, r7, 0x200, &(0x7f0000000140)={&(0x7f0000000100)=""/6, 0x6})
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
r8 = timerfd_create(0x1, 0x0)
timerfd_settime(r8, 0x3, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r9 = openat(r1, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x43, &(0x7f0000000000)=0x84, 0x4)
r10 = openat$6lowpan_enable(0xffffff9c, &(0x7f0000000200), 0x2, 0x0)
write$6lowpan_enable(r10, &(0x7f00000002c0)='0', 0x1)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
ioctl$USBDEVFS_ALLOC_STREAMS(0xffffffffffffffff, 0xc0105500, &(0x7f00000000c0)=ANY=[@ANYRESHEX=r3])
finit_module(r9, &(0x7f0000000080)='-,\xea-\x00', 0x2)
ptrace(0x10, 0x1)

960.991009ms ago: executing program 0 (id=1224):
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f00000001c0)=ANY=[@ANYRESDEC, @ANYRES8, @ANYRES64], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
connect$packet(r0, &(0x7f0000000200)={0x1f, 0xf8, 0x0, 0x1, 0xff, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x21}}, 0x14)
socket$kcm(0xa, 0x5, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r2 = accept4$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000100)=0x14, 0x80000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'batadv_slave_0\x00', <r3=>0x0})
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000003c0)={'bridge0\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=@bridge_delneigh={0x1c, 0x1d, 0xf07, 0x0, 0x0, {0x7, 0x0, 0x0, r5, 0x8, 0x67}}, 0x1c}}, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000005c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', r3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000c40)={0x1b, 0x0, 0x0, 0x3, 0x0, 0xffffffffffffffff, 0x8, '\x00', r3, 0xffffffffffffffff, 0x3, 0x2, 0x4, 0x0, @void, @value, @void, @value}, 0x48)
setsockopt$packet_drop_memb(r2, 0x107, 0x2, &(0x7f0000000180)={r3, 0x1, 0x6, @multicast}, 0x10)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000040), 0x4)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000080)=@ccm_128={{0x303}, "f091030000003477", "4ee9f0420448f5ac45a8b1af8a3d7b75", "0697b948", "c191885fdda84d32"}, 0x28)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000400)="07280b01844f576d1eda1dc0c04343c65895644789733334cd057c33607966a82b0446dcf825c685be42cb4a7379e1b1953dd6a413af539dbef634b6f4dab74fe33bf9ff785ed031ce8e090f8d7e1ef2262d65fabf5fb6cc191d209ea1d5000000fb35fb2786d0a07826570e74235932f4d7f02578fa4896596926aad0b8ca52d6dedab905517df1ea088fbf8ca23d13cb0e88256b1902d43306805cbe1856332673d40fe12e1e7c07e06aacbfcd03c7c0a8833e722417d37013d44759469bd467d75da53b7b87013df6d762de5dbc665a16fd071448633ed5e174a97ad3d6b2a84225d24e5c119442d929b0a444edca", 0xffffffec, 0x20004091, 0x0, 0x0)
close(r1)
r6 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r6, &(0x7f0000000240)={0x0, 0xf0ffffff, &(0x7f0000000140)=[{&(0x7f0000000280)="89000000120081ae08060cdc030000007f03e3f7000000006ee2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec0012100001400d0c0c00bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)
r7 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r7, 0x0, 0xca, &(0x7f00000002c0)={0x1, 0x4, 0x0, 0x0, @vifc_lcl_addr=@initdev={0xac, 0x1e, 0x0, 0x0}, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

900.469041ms ago: executing program 0 (id=1225):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000004b00)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000004ac0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000880)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="01ff00e1c2ed00001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000004b40)=ANY=[@ANYBLOB="3c00000010000104000000000000000000000007", @ANYRES32=0x0, @ANYBLOB="0000000000000000140035007465616d5f736c6176655f310000000008000a00", @ANYRES32=r2], 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x4008040)

801.694436ms ago: executing program 0 (id=1226):
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x10, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

711.325129ms ago: executing program 0 (id=1227):
openat$audio1(0xffffff9c, &(0x7f0000000000), 0x80000, 0x0) (async)
r0 = openat$audio1(0xffffff9c, &(0x7f0000000000), 0x80000, 0x0)
ioctl$SNDCTL_DSP_SUBDIVIDE(r0, 0xc0045009, &(0x7f0000000040))
r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
setsockopt$netrom_NETROM_IDLE(r1, 0x103, 0x7, &(0x7f0000000080)=0x10000, 0x4) (async)
setsockopt$netrom_NETROM_IDLE(r1, 0x103, 0x7, &(0x7f0000000080)=0x10000, 0x4)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r2=>r0, {0x0, 0xee01}}, './file0\x00'})
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000100)={<r3=>0x0, 0x72, "d47ca39ded2c47c0275b072fc53340d3000c022d05499cf07dabf8136d87bc6d0dde4b19e4ff4c243ff799c6fbb44121a3b8310b70ba06acece06d9b2183c2cdcf2d2f8559511c24e88026e19d467dc45d253f08dd5c7c45ace81ef969e605a5a7873a56fb7f90342c2c005b78e000ffac3e"}, &(0x7f0000000180)=0x7a)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f00000001c0)={<r4=>0x0, @in6={{0xa, 0x4e22, 0xd, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x6}}, 0xfffffffc, 0x1, 0x2, 0x8, 0xd}, &(0x7f0000000280)=0x98)
getsockopt$inet_sctp6_SCTP_STATUS(r2, 0x84, 0xe, &(0x7f00000002c0)={r3, 0xffffff20, 0x10, 0x5, 0x0, 0x0, 0x400, 0x499, {r4, @in6={{0xa, 0x4e21, 0xdd, @dev={0xfe, 0x80, '\x00', 0x39}, 0x9}}, 0x2, 0xb2c9, 0x8000, 0xa, 0x7}}, &(0x7f0000000380)=0xb0)
setsockopt$inet6_tcp_TCP_MD5SIG(r2, 0x6, 0xe, &(0x7f00000003c0)={@in6={{0xa, 0x4e22, 0x26c, @private2, 0x1}}, 0x0, 0x0, 0x50, 0x0, "e7c5e76e1c8bb012a72b37ee629b2a159d2cee84d1a0eb055d2aadc5e3e3a1c14a0a57df9a10c3befa549e06db6d862cf48ea927d3654b69b06f19d1125e3c526b29177c27bf6c6ce058d71537c6fd0f"}, 0xd8)
ioctl$SG_GET_SCSI_ID(r2, 0x2276, &(0x7f00000004c0))
ioctl$TIOCPKT(r2, 0x5420, &(0x7f0000000500)=0x5) (async)
ioctl$TIOCPKT(r2, 0x5420, &(0x7f0000000500)=0x5)
ioctl$KVM_GET_ONE_REG(r2, 0x4010aeab, &(0x7f0000000580)=@arm64_sve={0x608000000015021a, &(0x7f0000000540)=0x28000000000})
ioctl$UI_GET_SYSNAME(0xffffffffffffffff, 0x8040552c, &(0x7f00000005c0)) (async)
ioctl$UI_GET_SYSNAME(0xffffffffffffffff, 0x8040552c, &(0x7f00000005c0))
bpf$BPF_PROG_GET_NEXT_ID(0xb, &(0x7f0000000640)={0x1000, <r5=>0x0}, 0x8)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000600)={@fallback=r0, r2, 0x2e, 0x1020, 0x0, @void, @void, @void, @value=r5}, 0x20)
fcntl$F_SET_FILE_RW_HINT(r0, 0x40e, &(0x7f0000000680)=0x1)
ioctl$SOUND_PCM_READ_RATE(r0, 0x80045002, &(0x7f00000006c0))
mmap$dsp(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1000008, 0x4010, r2, 0x0) (async)
mmap$dsp(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1000008, 0x4010, r2, 0x0)
getsockopt$ARPT_SO_GET_INFO(r2, 0x0, 0x60, &(0x7f0000000700)={'filter\x00', 0x0, [0x8001, 0xd, 0x80]}, &(0x7f0000000780)=0x44)
r6 = openat$uinput(0xffffff9c, &(0x7f00000007c0), 0x2, 0x0)
write$6lowpan_enable(r2, &(0x7f0000000800)='1', 0x1)
preadv2(r2, &(0x7f0000001a40)=[{&(0x7f0000000840)=""/197, 0xc5}, {&(0x7f0000000940)=""/4096, 0x1000}, {&(0x7f0000001940)=""/171, 0xab}, {&(0x7f0000001a00)=""/7, 0x7}], 0x4, 0x6, 0x0, 0x12) (async)
preadv2(r2, &(0x7f0000001a40)=[{&(0x7f0000000840)=""/197, 0xc5}, {&(0x7f0000000940)=""/4096, 0x1000}, {&(0x7f0000001940)=""/171, 0xab}, {&(0x7f0000001a00)=""/7, 0x7}], 0x4, 0x6, 0x0, 0x12)
ioctl$BTRFS_IOC_QGROUP_CREATE(r6, 0x4010942a, &(0x7f0000001a80)={0x0, 0x7ff}) (async)
ioctl$BTRFS_IOC_QGROUP_CREATE(r6, 0x4010942a, &(0x7f0000001a80)={0x0, 0x7ff})
openat$bsg(0xffffff9c, &(0x7f0000001ac0), 0x484000, 0x0)
landlock_create_ruleset(&(0x7f0000001b00)={0x4000, 0x2}, 0x18, 0x0) (async)
landlock_create_ruleset(&(0x7f0000001b00)={0x4000, 0x2}, 0x18, 0x0)
r7 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r7, &(0x7f0000001b40)={0xa, 0x4e24, 0x80000, @private0={0xfc, 0x0, '\x00', 0x1}, 0x2}, 0x1c) (async)
bind$inet6(r7, &(0x7f0000001b40)={0xa, 0x4e24, 0x80000, @private0={0xfc, 0x0, '\x00', 0x1}, 0x2}, 0x1c)
openat$incfs(r2, &(0x7f0000001b80)='.log\x00', 0x20380, 0x2) (async)
r8 = openat$incfs(r2, &(0x7f0000001b80)='.log\x00', 0x20380, 0x2)
bind$rxrpc(r8, &(0x7f0000001bc0)=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x4e20, 0x401, @ipv4={'\x00', '\xff\xff', @remote}, 0x2}}, 0x24)
ioctl$TCSETSW(0xffffffffffffffff, 0x5403, &(0x7f0000001c40)={0x8, 0x76, 0x0, 0x518, 0xb, "e705b5a96cf2d885219aa0203c9f9fa2ded639"})

704.983378ms ago: executing program 3 (id=1228):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x1, 0x1c, &(0x7f0000000b80)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffb}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

639.849399ms ago: executing program 2 (id=1229):
socket$nl_xfrm(0x10, 0x3, 0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
syz_open_dev$video(0x0, 0x7ff, 0x0)
r2 = openat$binder_debug(0xffffff9c, 0x0, 0x0, 0x0)
r3 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x3, 0x0, 0x0, r1}, &(0x7f0000000140)=<r4=>0x0, &(0x7f00000002c0)=<r5=>0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000500)=ANY=[@ANYBLOB="60000000020601080000000020000000000057b1dd25879db5ae73683a69702c6d61726b00000000050001000700000005000500020000000900020073797a300000001b000ad999baca5a86bd000500040000000000140007800800084000000040c762064000000000"], 0x60}}, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
syz_open_dev$admmidi(&(0x7f0000000100), 0x41, 0x402)
syz_emit_ethernet(0x1e, &(0x7f0000000200)={@remote, @empty, @void, {@can={0xc, {{0x4, 0x0, 0x0, 0x1}, 0x4, 0x3, 0x0, 0x0, "bfafb030b4c2a649"}}}}, &(0x7f0000000240)={0x1, 0x2, [0x3e2, 0x242, 0xee8, 0x308]})
io_uring_enter(r3, 0x2ded, 0x4008, 0x0, 0x0, 0x22)
ioctl$FS_IOC_GETFSLABEL(r2, 0x81009431, &(0x7f0000000400))
r7 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001400)=ANY=[@ANYBLOB="1c0000005e0021a5553f8c6b23cbff070000f3373526a01e35"], 0x1c}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x22802, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
syz_open_procfs(0x0, &(0x7f0000000300)='net/vlan/vlan0\x00')
r8 = syz_io_uring_setup(0xce, &(0x7f00000000c0), &(0x7f0000000040)=<r9=>0x0, &(0x7f0000000000))
r10 = syz_io_uring_setup(0x5179, &(0x7f0000000140)={0x0, 0x80000000, 0x2}, &(0x7f0000000100)=<r11=>0x0, &(0x7f0000000000)=<r12=>0x0)
syz_io_uring_submit(r11, r12, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0})
io_uring_enter(r10, 0x7368, 0x0, 0x0, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r9, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r8, 0x0, 0x10a5, 0x3, 0x0, 0x0)
io_uring_enter(r8, 0x47fa, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r8, 0xde5, 0x0, 0x0, 0x0, 0x0)

555.93924ms ago: executing program 0 (id=1230):
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000080)={0x4}, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
r1 = epoll_create(0x400)
r2 = eventfd(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000000))
r3 = syz_open_procfs(0x0, &(0x7f00000001c0)='fdinfo/3\x00')
pread64(r3, &(0x7f0000000300)=""/246, 0xf6, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x3, 0x5, &(0x7f0000000700)=ANY=[@ANYBLOB="18020000800000000000000000000000850000002800000085000000070000009500000000000000e39f790748161e366643c5e0d3d382b7b80c2365e911b6ccf05b1e25fac5bd241e7f39d80ecde6d4c2e1b024b6aa5d3fa776ac09fe956192fa49663939826c4af17725a15f734eb2a4eae9b5b1efc52834a76c98ce512f39dc80d8061a00acd4b1b17c8d7985d9c4a13125aeca6369cf842ab2bd9a5bafe0f655d8e9b2d80a80296fe8cfeff0128e5c32babbf308f13f000000000000000000"], &(0x7f0000000680)='GPL\x00', 0xfffff800, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r4, 0x0, 0xe, 0x0, &(0x7f0000000000)="5becbc0e0d7cca6073a4f11d1b00", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x50)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000005c0)="ca996e4a4c9748265ca5b19498b6941430e963570a676702000000a4c124ed6bfe0d8004a355af19a6e3", 0x2a, 0xfffffffffffffffd)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001e00)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000540)={r8, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000380)="b9e403c6630d698cb8a00b04339c", 0x0, 0x7ec, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$NFT_BATCH(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x2ca, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r9, 0x18000000000002a0, 0x29, 0x0, &(0x7f0000000040)="b90103600040f000009e0ff008001fffffe100004000638877fb7f0200017f020001be3e7d2a182fff", 0x0, 0x104, 0x6000000000000000, 0x10c, 0x0, &(0x7f0000000400)="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", &(0x7f0000000000), 0x1}, 0x4c)
openat$vim2m(0xffffff9c, &(0x7f0000000040), 0x2, 0x0)

555.725421ms ago: executing program 3 (id=1231):
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f00000006c0)='tracefs\x00', 0x0, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
r0 = openat$autofs(0xffffff9c, &(0x7f0000000000), 0x2080, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f0000000100)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x3ff}}, './file1\x00'})
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
timer_settime(0x0, 0x1, &(0x7f0000000180)={{0x0, 0x989680}, {0x77359400}}, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r1, &(0x7f0000001fc0)=""/184, 0x20002078)

331.340881ms ago: executing program 3 (id=1232):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="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"], 0x1d8}}, 0x0)

330.978226ms ago: executing program 3 (id=1233):
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f00000001c0)=ANY=[@ANYRESDEC, @ANYRES8, @ANYRES64], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
connect$packet(r0, &(0x7f0000000200)={0x1f, 0xf8, 0x0, 0x1, 0xff, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x21}}, 0x14)
socket$kcm(0xa, 0x5, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r2 = accept4$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000100)=0x14, 0x80000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'batadv_slave_0\x00', <r3=>0x0})
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000003c0)={'bridge0\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=@bridge_delneigh={0x1c, 0x1d, 0xf07, 0x0, 0x0, {0x7, 0x0, 0x0, r5, 0x8, 0x67}}, 0x1c}}, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000005c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', r3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000c40)={0x1b, 0x0, 0x0, 0x3, 0x0, 0xffffffffffffffff, 0x8, '\x00', r3, 0xffffffffffffffff, 0x3, 0x2, 0x4, 0x0, @void, @value, @void, @value}, 0x48)
setsockopt$packet_drop_memb(r2, 0x107, 0x2, &(0x7f0000000180)={r3, 0x1, 0x6, @multicast}, 0x10)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000040), 0x4)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000080)=@ccm_128={{0x303}, "f091030000003477", "4ee9f0420448f5ac45a8b1af8a3d7b75", "0697b948", "c191885fdda84d32"}, 0x28)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000400)="07280b01844f576d1eda1dc0c04343c65895644789733334cd057c33607966a82b0446dcf825c685be42cb4a7379e1b1953dd6a413af539dbef634b6f4dab74fe33bf9ff785ed031ce8e090f8d7e1ef2262d65fabf5fb6cc191d209ea1d5000000fb35fb2786d0a07826570e74235932f4d7f02578fa4896596926aad0b8ca52d6dedab905517df1ea088fbf8ca23d13cb0e88256b1902d43306805cbe1856332673d40fe12e1e7c07e06aacbfcd03c7c0a8833e722417d37013d44759469bd467d75da53b7b87013df6d762de5dbc665a16fd071448633ed5e174a97ad3d6b2a84225d24e5c119442d929b0a444edca", 0xffffffec, 0x20004091, 0x0, 0x0)
close(r1)
r6 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r6, &(0x7f0000000240)={0x0, 0xf0ffffff, &(0x7f0000000140)=[{&(0x7f0000000280)="89000000120081ae08060cdc030000007f03e3f7000000006ee2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec0012100001400d0c0c00bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)
r7 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r7, 0x0, 0xca, &(0x7f00000002c0)={0x1, 0x4, 0x0, 0x0, @vifc_lcl_addr=@initdev={0xac, 0x1e, 0x0, 0x0}, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

260.890079ms ago: executing program 3 (id=1234):
openat$ttyS3(0xffffff9c, &(0x7f0000000000), 0xa40, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, 0x0, 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, 0x0, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
close(r1)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000dc0)='./cgroup/syz1\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
r4 = openat$cgroup_ro(r3, &(0x7f0000000240)='blkio.bfq.time_recursive\x00', 0x0, 0x0)
preadv2(r1, &(0x7f0000000440)=[{&(0x7f0000000080)=""/51, 0x33}, {&(0x7f0000000380)=""/68, 0x44}, {&(0x7f0000000400)=""/14, 0xe}], 0x3, 0x2, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000d40)=ANY=[@ANYRESHEX=r2], 0xc)
socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r1, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000240)={0x0, 0x20, 0x30}, 0xc)
bind$inet6(r4, &(0x7f0000000280)={0xa, 0x4e21, 0x0, @loopback, 0x800}, 0x1c)
sendto$inet6(r0, &(0x7f00000002c0)="9c", 0x1, 0x0, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback, 0xfff}, 0x1c)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000d80)='./cgroup.cpu/syz0\x00', 0x200002, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000e00)=ANY=[], 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x9, 0x4, &(0x7f0000000280)=ANY=[@ANYRESHEX=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffd16, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
write(r5, &(0x7f00000004c0)="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", 0x7f1)
r6 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
fchdir(0xffffffffffffffff)
r7 = syz_open_dev$vim2m(&(0x7f0000000040), 0x0, 0x2)
ioctl$vim2m_VIDIOC_DQBUF(r7, 0xc0445609, &(0x7f0000000240)=@mmap={0x5, 0x3, 0x4, 0x2000, 0x7a6b, {}, {0x4, 0x8, 0x4, 0x5, 0xfb, 0x5}, 0x1ff, 0x1, {}, 0x7})
preadv(r6, &(0x7f00000000c0)=[{&(0x7f0000000300)=""/102, 0x66}], 0x1, 0x0, 0xe)
r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0)
dup(r8)

0s ago: executing program 2 (id=1235):
r0 = openat$vsock(0xffffff9c, 0x0, 0x546042, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
timer_create(0xfffffffffffffffc, 0x0, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_gettime(0x0, &(0x7f0000000280))
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
timer_create(0x9, 0x0, &(0x7f0000000300)=<r4=>0x0)
timer_settime(r4, 0x5, &(0x7f0000000440)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
getsockname$packet(r0, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000100)=0x14)
timer_getoverrun(r4)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r5, &(0x7f0000002780)=[{{&(0x7f0000000000)={0x2, 0x4e20, @local}, 0x10, 0x0, 0x0, &(0x7f0000001180)=[@ip_ttl={{0x10}}], 0x10}}], 0x1, 0x840)
timer_create(0x3, 0x0, &(0x7f0000044000))
timer_settime(0x0, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r6 = syz_usb_connect(0x0, 0x2d, &(0x7f00000012c0)=ANY=[@ANYBLOB="120100001ddf8208c007121522300000000109021b0001000000010904000001faf40d000905820349"], 0x0)
syz_usb_control_io(r6, 0x0, 0x0)
r7 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
read$char_usb(r7, &(0x7f0000000000)=""/73, 0x49)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_usb_ep_write$ath9k_ep1(r6, 0x82, 0x0, 0x0)
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x2004c8, 0x8000000, 0x0, 0x0, 0xfffffffffffffffe, 0xfff]})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

kernel console output (not intermixed with test programs):

3]  ? __pfx_nfsd_fill_super+0x10/0x10
[  104.505145][ T8113]  get_tree_keyed+0x10b/0x1d0
[  104.506837][ T8113]  vfs_get_tree+0x8f/0x380
[  104.508443][ T8113]  path_mount+0x6e1/0x1f10
[  104.510054][ T8113]  ? __pfx_path_mount+0x10/0x10
[  104.511801][ T8113]  ? __ia32_sys_mount+0x207/0x310
[  104.513547][ T8113]  __ia32_sys_mount+0x292/0x310
[  104.515052][ T8113]  ? __pfx___ia32_sys_mount+0x10/0x10
[  104.516461][ T8113]  __do_fast_syscall_32+0x73/0x120
[  104.517780][ T8113]  do_fast_syscall_32+0x32/0x80
[  104.519039][ T8113]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  104.520666][ T8113] RIP: 0023:0xf70ee579
[  104.521718][ T8113] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  104.526684][ T8113] RSP: 002b:00000000f50bf55c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  104.528819][ T8113] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000020000180
[  104.530795][ T8113] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000000000000
[  104.532727][ T8113] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  104.534730][ T8113] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  104.536717][ T8113] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  104.538798][ T8113]  </TASK>
[  104.602672][  T833] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  104.705624][ T8113] syz.0.505 (8113): drop_caches: 2
[  104.759432][  T833] usb 7-1: config 1 interface 0 altsetting 15 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  104.762430][  T833] usb 7-1: config 1 interface 0 altsetting 15 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  104.765755][  T833] usb 7-1: config 1 interface 0 has no altsetting 0
[  104.769213][  T833] usb 7-1: New USB device found, idVendor=046d, idProduct=c537, bcdDevice= 0.40
[  104.771652][  T833] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  104.773884][  T833] usb 7-1: Product: syz
[  104.775053][  T833] usb 7-1: Manufacturer: syz
[  104.776304][  T833] usb 7-1: SerialNumber: syz
[  105.166842][ T8133] overlayfs: failed to resolve './file1': -2
[  105.803198][ T8150] netlink: 'syz.3.519': attribute type 1 has an invalid length.
[  105.811332][ T8150] bond1: entered promiscuous mode
[  105.816190][ T8150] bond1: (slave team_slave_1): Enslaving as an active interface with a down link
[  106.068362][ T1327] hid (null): invalid report_size 812540268
[  106.071079][ T1327] hid-generic 0000:0000:0000.0009: invalid report_size 812540268
[  106.074182][ T1327] hid-generic 0000:0000:0000.0009: item 0 4 1 7 parsing failed
[  106.076391][ T1327] hid-generic 0000:0000:0000.0009: probe with driver hid-generic failed with error -22
[  106.105260][ T8164] tipc: Started in network mode
[  106.106680][ T8164] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[  106.109428][ T8164] tipc: Enabled bearer <eth:team0>, priority 0
[  106.184895][ T8171] bond1: (slave team_slave_1): Releasing active interface
[  106.241469][ T8176] x_tables: ip6_tables: TCPOPTSTRIP target: only valid for protocol 6
[  106.276424][ T8179] netlink: 'syz.1.522': attribute type 1 has an invalid length.
[  106.347303][ T1327] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  106.499466][ T1327] usb 5-1: config 0 has no interfaces?
[  106.501371][ T1327] usb 5-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[  106.504150][ T1327] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  106.518432][ T1327] usb 5-1: config 0 descriptor??
[  106.707469][ T8194] bond0 (unregistering): Released all slaves
[  106.757242][   T25] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  106.887724][   T25] usb 8-1: device descriptor read/64, error -71
[  107.100119][   T35] usb 5-1: USB disconnect, device number 5
[  107.118617][ T5980] tipc: Node number set to 11578026
[  107.127749][   T25] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  107.145613][  T833] usbhid 7-1:1.0: can't add hid device: -71
[  107.147327][  T833] usbhid 7-1:1.0: probe with driver usbhid failed with error -71
[  107.151106][  T833] usb 7-1: USB disconnect, device number 6
[  107.257286][   T25] usb 8-1: device descriptor read/64, error -71
[  107.367865][   T25] usb usb8-port1: attempt power cycle
[  107.747553][   T25] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  107.767722][   T25] usb 8-1: device descriptor read/8, error -71
[  108.007315][   T25] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  108.029464][   T25] usb 8-1: device descriptor read/8, error -71
[  108.140074][   T25] usb usb8-port1: unable to enumerate USB device
[  108.172873][   T39] audit: type=1326 audit(1734590491.711:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8233 comm="syz.0.535" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x0
[  108.229761][ T8216] usb usb4: usbfs: process 8216 (syz.2.529) did not claim interface 0 before use
[  108.936128][ T8247] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  108.938553][ T8247] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock
[  108.940631][ T8247] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  108.942455][ T8247] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock
[  109.376159][ T8260] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  109.378350][ T8260] IPv6: NLM_F_CREATE should be set when creating new route
[  109.443382][ T8264] __nla_validate_parse: 11 callbacks suppressed
[  109.443401][ T8264] netlink: 8 bytes leftover after parsing attributes in process `syz.3.540'.
[  109.457438][ T8264] netlink: 4 bytes leftover after parsing attributes in process `syz.3.540'.
[  110.533840][ T8312] overlayfs: failed to resolve './file1': -2
[  110.536782][ T8312] netlink: 4 bytes leftover after parsing attributes in process `syz.1.547'.
[  110.824029][ T8327] overlayfs: failed to resolve './file1': -2
[  110.831897][ T8327] netlink: 4 bytes leftover after parsing attributes in process `syz.3.550'.
[  110.838861][ T8328] netlink: 4 bytes leftover after parsing attributes in process `syz.0.549'.
[  111.180133][ T8350] FAULT_INJECTION: forcing a failure.
[  111.180133][ T8350] name failslab, interval 1, probability 0, space 0, times 0
[  111.183757][ T8350] CPU: 0 UID: 0 PID: 8350 Comm: syz.2.553 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  111.186518][ T8350] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  111.189316][ T8350] Call Trace:
[  111.190201][ T8350]  <TASK>
[  111.190990][ T8350]  dump_stack_lvl+0x16c/0x1f0
[  111.192250][ T8350]  should_fail_ex+0x497/0x5b0
[  111.193514][ T8350]  ? fs_reclaim_acquire+0xae/0x150
[  111.194922][ T8350]  should_failslab+0xc2/0x120
[  111.196190][ T8350]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  111.197660][ T8350]  ? lockdep_init_map_type+0x16d/0x7d0
[  111.199078][ T8350]  ? security_inode_alloc+0x3b/0x2b0
[  111.200477][ T8350]  security_inode_alloc+0x3b/0x2b0
[  111.201818][ T8350]  inode_init_always_gfp+0xce4/0x1030
[  111.203218][ T8350]  alloc_inode+0x82/0x230
[  111.204368][ T8350]  new_inode+0x22/0x210
[  111.205463][ T8350]  nfsd_get_inode+0x1a/0x190
[  111.206685][ T8350]  nfsd_fill_super+0x18e/0x530
[  111.207951][ T8350]  ? __pfx_nfsd_fill_super+0x10/0x10
[  111.209321][ T8350]  get_tree_keyed+0x10b/0x1d0
[  111.210544][ T8350]  vfs_get_tree+0x8f/0x380
[  111.211703][ T8350]  path_mount+0x6e1/0x1f10
[  111.212879][ T8350]  ? kmem_cache_free+0x152/0x4c0
[  111.214191][ T8350]  ? __pfx_path_mount+0x10/0x10
[  111.215462][ T8350]  ? putname+0x13c/0x180
[  111.216589][ T8350]  __ia32_sys_mount+0x292/0x310
[  111.217859][ T8350]  ? __pfx___ia32_sys_mount+0x10/0x10
[  111.219257][ T8350]  __do_fast_syscall_32+0x73/0x120
[  111.220611][ T8350]  do_fast_syscall_32+0x32/0x80
[  111.221886][ T8350]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  111.223543][ T8350] RIP: 0023:0xf70be579
[  111.224629][ T8350] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  111.229585][ T8350] RSP: 002b:00000000f50b055c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  111.231731][ T8350] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000020000180
[  111.233786][ T8350] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000000000000
[  111.235988][ T8350] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  111.238043][ T8350] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  111.240113][ T8350] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  111.242174][ T8350]  </TASK>
[  111.430886][ T8359] syz.1.554 uses obsolete (PF_INET,SOCK_PACKET)
[  111.461413][ T8359] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  111.464537][ T8359] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  111.466170][ T8350] syz.2.553 (8350): drop_caches: 2
[  111.467897][ T8359] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  111.473072][ T8359] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  111.488761][ T8359] netlink: 'syz.1.554': attribute type 1 has an invalid length.
[  111.506659][ T8359] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  111.517513][ T8359] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 20001 - 0
[  111.722333][ T8374] fuse: Unknown parameter 'ÿ'
[  111.773172][ T8384] loop9: detected capacity change from 0 to 6
[  111.776575][ T8384] Dev loop9: unable to read RDB block 6
[  111.781578][ T8384]  loop9: unable to read partition table
[  111.783627][ T8384] loop9: partition table beyond EOD, truncated
[  111.785395][ T8384] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dƤ´à–ƒÝ¡¯¨�â·û
[  111.785395][ T8384] 
) failed (rc=-5)
[  111.840771][ T8387] netlink: 12 bytes leftover after parsing attributes in process `syz.3.559'.
[  112.447269][ T5980] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  112.516396][ T8415] team0: Device ipvlan2 failed to register rx_handler
[  112.605921][ T5980] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  112.609982][ T5980] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  112.613491][ T5980] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  112.617076][ T5980] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  112.618212][ T8418] netlink: 4 bytes leftover after parsing attributes in process `syz.1.565'.
[  112.619866][ T5980] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  112.626646][ T5980] usb 5-1: config 0 descriptor??
[  112.641762][ T8420] netlink: 4 bytes leftover after parsing attributes in process `syz.3.563'.
[  112.645025][ T8420] unsupported nlmsg_type 40
[  112.746104][ T8428] netlink: 'syz.1.567': attribute type 1 has an invalid length.
[  112.758634][ T8428] bond0: entered promiscuous mode
[  112.778411][ T8428] bond0: (slave team_slave_1): Enslaving as an active interface with a down link
[  112.810236][ T8431] 9pnet: p9_errstr2errno: server reported unknown error 18446
[  112.841772][ T8407] input: syz1 as /devices/virtual/input/input12
[  112.844502][ T8435] bond0: (slave team_slave_1): Releasing active interface
[  112.932215][ T5980] usbhid 5-1:0.0: can't add hid device: -71
[  112.933919][ T5980] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  112.947379][ T5980] usb 5-1: USB disconnect, device number 6
[  112.961403][ T8447] overlayfs: failed to resolve './file1': -2
[  112.971815][ T8447] netlink: 4 bytes leftover after parsing attributes in process `syz.2.574'.
[  113.134942][   T39] audit: type=1804 audit(1734590496.681:4): pid=8453 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.575" name="/newroot/158/file1" dev="fuse" ino=1 res=1 errno=0
[  113.141984][   T39] audit: type=1804 audit(1734590496.681:5): pid=8450 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.575" name="/newroot/158/file1" dev="fuse" ino=1 res=1 errno=0
[  113.525512][ T8472] FAULT_INJECTION: forcing a failure.
[  113.525512][ T8472] name failslab, interval 1, probability 0, space 0, times 0
[  113.529325][ T8472] CPU: 0 UID: 0 PID: 8472 Comm: syz.3.581 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  113.531991][ T8472] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  113.534570][ T8472] Call Trace:
[  113.535380][ T8472]  <TASK>
[  113.536114][ T8472]  dump_stack_lvl+0x16c/0x1f0
[  113.537280][ T8472]  should_fail_ex+0x497/0x5b0
[  113.538442][ T8472]  ? fs_reclaim_acquire+0xae/0x150
[  113.539648][ T8472]  should_failslab+0xc2/0x120
[  113.540792][ T8472]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  113.542190][ T8472]  ? lockdep_init_map_type+0x16d/0x7d0
[  113.543632][ T8472]  ? security_inode_alloc+0x3b/0x2b0
[  113.545026][ T8472]  security_inode_alloc+0x3b/0x2b0
[  113.546377][ T8472]  inode_init_always_gfp+0xce4/0x1030
[  113.547764][ T8472]  ? __pfx_ovl_inode_set+0x10/0x10
[  113.549103][ T8472]  alloc_inode+0x82/0x230
[  113.550233][ T8472]  iget5_locked+0x33b/0x3d0
[  113.551420][ T8472]  ? __pfx_ovl_inode_test+0x10/0x10
[  113.552777][ T8472]  ? __pfx_ovl_inode_set+0x10/0x10
[  113.554132][ T8472]  ? __pfx_iget5_locked+0x10/0x10
[  113.555440][ T8472]  ? __pfx_lock_release+0x10/0x10
[  113.556760][ T8472]  ? do_raw_spin_lock+0x12d/0x2c0
[  113.558067][ T8472]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  113.559463][ T8472]  ? lock_acquire+0x2f/0xb0
[  113.560639][ T8472]  ? ovl_inuse_trylock+0x46/0xe0
[  113.561850][ T8472]  ovl_get_trap_inode+0xb2/0x200
[  113.563111][ T8472]  ovl_fill_super+0xd9b/0x6970
[  113.564346][ T8472]  ? shrinker_register+0x154/0x260
[  113.565619][ T8472]  ? __pfx_lock_release+0x10/0x10
[  113.566844][ T8472]  ? rcu_is_watching+0x12/0xc0
[  113.568056][ T8472]  ? find_held_lock+0x2d/0x110
[  113.569284][ T8472]  ? __pfx_ovl_fill_super+0x10/0x10
[  113.570602][ T8472]  ? lockdep_init_map_type+0x16d/0x7d0
[  113.572026][ T8472]  ? lockdep_init_map_type+0x16d/0x7d0
[  113.573469][ T8472]  ? __init_swait_queue_head+0xca/0x150
[  113.575051][ T8472]  ? shrinker_register+0x1a8/0x260
[  113.576400][ T8472]  ? sget_fc+0x488/0xb90
[  113.577522][ T8472]  ? __pfx_ovl_fill_super+0x10/0x10
[  113.578881][ T8472]  ? get_tree_nodev+0xda/0x190
[  113.580151][ T8472]  get_tree_nodev+0xda/0x190
[  113.581366][ T8472]  vfs_get_tree+0x8f/0x380
[  113.582547][ T8472]  path_mount+0x6e1/0x1f10
[  113.583742][ T8472]  ? kmem_cache_free+0x152/0x4c0
[  113.585071][ T8472]  ? __pfx_path_mount+0x10/0x10
[  113.586364][ T8472]  ? putname+0x13c/0x180
[  113.587488][ T8472]  __ia32_sys_mount+0x292/0x310
[  113.588775][ T8472]  ? __pfx___ia32_sys_mount+0x10/0x10
[  113.590183][ T8472]  __do_fast_syscall_32+0x73/0x120
[  113.591529][ T8472]  do_fast_syscall_32+0x32/0x80
[  113.592821][ T8472]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  113.594495][ T8472] RIP: 0023:0xf7f44579
[  113.595569][ T8472] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  113.600556][ T8472] RSP: 002b:00000000f507555c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  113.602714][ T8472] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200000c0
[  113.604805][ T8472] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000020000900
[  113.606870][ T8472] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  113.608932][ T8472] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  113.610988][ T8472] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  113.613056][ T8472]  </TASK>
[  113.710972][ T8483] netlink: 28 bytes leftover after parsing attributes in process `syz.1.585'.
[  113.859988][ T8495] FAULT_INJECTION: forcing a failure.
[  113.859988][ T8495] name failslab, interval 1, probability 0, space 0, times 0
[  113.863853][ T8495] CPU: 3 UID: 0 PID: 8495 Comm: syz.0.590 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  113.866436][ T8495] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  113.869263][ T8495] Call Trace:
[  113.870144][ T8495]  <TASK>
[  113.870926][ T8495]  dump_stack_lvl+0x16c/0x1f0
[  113.872174][ T8495]  should_fail_ex+0x497/0x5b0
[  113.873412][ T8495]  ? fs_reclaim_acquire+0xae/0x150
[  113.874765][ T8495]  should_failslab+0xc2/0x120
[  113.875980][ T8495]  __kmalloc_cache_node_noprof+0x6f/0x3f0
[  113.877584][ T8495]  ? mark_lock+0xb5/0xc60
[  113.879356][ T8495]  ? __get_vm_area_node+0x101/0x2f0
[  113.881287][ T8495]  __get_vm_area_node+0x101/0x2f0
[  113.882748][ T8495]  ? __pfx_mark_lock+0x10/0x10
[  113.884163][ T8495]  __vmalloc_node_range_noprof+0x26a/0x1530
[  113.885720][ T8495]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  113.887214][ T8495]  ? mark_lock+0xb5/0xc60
[  113.888388][ T8495]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  113.889861][ T8495]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  113.891505][ T8495]  ? __pfx_aa_get_newest_label+0x10/0x10
[  113.892979][ T8495]  ? __pfx___lock_acquire+0x10/0x10
[  113.894347][ T8495]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  113.895804][ T8495]  __vmalloc_noprof+0x6d/0x90
[  113.897034][ T8495]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  113.898513][ T8495]  bpf_prog_alloc_no_stats+0x54/0x630
[  113.899918][ T8495]  ? security_capable+0x7e/0x260
[  113.901209][ T8495]  bpf_prog_alloc+0x3b/0x230
[  113.902423][ T8495]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  113.903984][ T8495]  bpf_prog_load+0x1b4e/0x2670
[  113.905241][ T8495]  ? __pfx_bpf_prog_load+0x10/0x10
[  113.906588][ T8495]  ? find_held_lock+0x2d/0x110
[  113.908131][ T8495]  ? __might_fault+0x13b/0x190
[  113.909876][ T8495]  ? __might_fault+0xe3/0x190
[  113.911605][ T8495]  __sys_bpf+0x5677/0x57a0
[  113.912963][ T8495]  ? __pfx_lock_release+0x10/0x10
[  113.914278][ T8495]  ? __pfx___sys_bpf+0x10/0x10
[  113.915384][ T8495]  ? vfs_write+0x306/0x1150
[  113.916590][ T8495]  ? __mutex_unlock_slowpath+0x164/0x690
[  113.918154][ T8495]  ? fput+0x67/0x440
[  113.919233][ T8495]  ? ksys_write+0x1ba/0x250
[  113.920426][ T8495]  ? __pfx_ksys_write+0x10/0x10
[  113.921687][ T8495]  __ia32_sys_bpf+0x76/0xe0
[  113.922868][ T8495]  __do_fast_syscall_32+0x73/0x120
[  113.924240][ T8495]  do_fast_syscall_32+0x32/0x80
[  113.925515][ T8495]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  113.927177][ T8495] RIP: 0023:0xf70ee579
[  113.928665][ T8495] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  113.933823][ T8495] RSP: 002b:00000000f50e055c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  113.935883][ T8495] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000200000c0
[  113.937945][ T8495] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000
[  113.939904][ T8495] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  113.941939][ T8495] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  113.943977][ T8495] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  113.945995][ T8495]  </TASK>
[  113.948256][ T8495] syz.0.590: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  113.952490][ T8495] CPU: 3 UID: 0 PID: 8495 Comm: syz.0.590 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  113.955159][ T8495] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  113.957893][ T8495] Call Trace:
[  113.958763][ T8495]  <TASK>
[  113.959540][ T8495]  dump_stack_lvl+0x16c/0x1f0
[  113.960779][ T8495]  warn_alloc+0x24d/0x3a0
[  113.961906][ T8495]  ? __pfx_warn_alloc+0x10/0x10
[  113.963188][ T8495]  ? rcu_is_watching+0x12/0xc0
[  113.964455][ T8495]  ? __kmalloc_cache_node_noprof+0x245/0x3f0
[  113.966017][ T8495]  ? __kasan_kmalloc+0x8a/0xb0
[  113.967305][ T8495]  ? __get_vm_area_node+0x1dc/0x2f0
[  113.968680][ T8495]  __vmalloc_node_range_noprof+0xd27/0x1530
[  113.970268][ T8495]  ? mark_lock+0xb5/0xc60
[  113.971394][ T8495]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  113.972769][ T8495]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  113.974353][ T8495]  ? __pfx_aa_get_newest_label+0x10/0x10
[  113.975720][ T8495]  ? __pfx___lock_acquire+0x10/0x10
[  113.977019][ T8495]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  113.978415][ T8495]  __vmalloc_noprof+0x6d/0x90
[  113.979677][ T8495]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  113.981109][ T8495]  bpf_prog_alloc_no_stats+0x54/0x630
[  113.982323][ T8495]  ? security_capable+0x7e/0x260
[  113.983578][ T8495]  bpf_prog_alloc+0x3b/0x230
[  113.984806][ T8495]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  113.986371][ T8495]  bpf_prog_load+0x1b4e/0x2670
[  113.987819][ T8495]  ? __pfx_bpf_prog_load+0x10/0x10
[  113.989795][ T8495]  ? find_held_lock+0x2d/0x110
[  113.991509][ T8495]  ? __might_fault+0x13b/0x190
[  113.992783][ T8495]  ? __might_fault+0xe3/0x190
[  113.994033][ T8495]  __sys_bpf+0x5677/0x57a0
[  113.995212][ T8495]  ? __pfx_lock_release+0x10/0x10
[  113.996880][ T8495]  ? __pfx___sys_bpf+0x10/0x10
[  113.998211][ T8495]  ? vfs_write+0x306/0x1150
[  113.999395][ T8495]  ? __mutex_unlock_slowpath+0x164/0x690
[  114.000873][ T8495]  ? fput+0x67/0x440
[  114.001930][ T8495]  ? ksys_write+0x1ba/0x250
[  114.003128][ T8495]  ? __pfx_ksys_write+0x10/0x10
[  114.004416][ T8495]  __ia32_sys_bpf+0x76/0xe0
[  114.005601][ T8495]  __do_fast_syscall_32+0x73/0x120
[  114.006934][ T8495]  do_fast_syscall_32+0x32/0x80
[  114.008555][ T8495]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  114.010844][ T8495] RIP: 0023:0xf70ee579
[  114.012132][ T8495] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  114.017212][ T8495] RSP: 002b:00000000f50e055c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  114.019722][ T8495] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000200000c0
[  114.021887][ T8495] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000
[  114.023966][ T8495] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  114.025943][ T8495] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  114.028401][ T8495] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  114.031287][ T8495]  </TASK>
[  114.032722][ T8495] Mem-Info:
[  114.033613][ T8495] active_anon:5961 inactive_anon:345 isolated_anon:0
[  114.033613][ T8495]  active_file:14414 inactive_file:33731 isolated_file:0
[  114.033613][ T8495]  unevictable:1768 dirty:102 writeback:0
[  114.033613][ T8495]  slab_reclaimable:5835 slab_unreclaimable:61887
[  114.033613][ T8495]  mapped:24137 shmem:2501 pagetables:753
[  114.033613][ T8495]  sec_pagetables:303 bounce:0
[  114.033613][ T8495]  kernel_misc_reclaimable:0
[  114.033613][ T8495]  free:49930 free_pcp:3909 free_cma:0
[  114.047282][ T8495] Node 0 active_anon:5792kB inactive_anon:1380kB active_file:8316kB inactive_file:0kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:4848kB dirty:0kB writeback:0kB shmem:4948kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10172kB pagetables:1160kB sec_pagetables:1152kB all_unreclaimable? yes
[  114.056449][ T8495] Node 1 active_anon:18052kB inactive_anon:0kB active_file:49340kB inactive_file:134924kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:91700kB dirty:408kB writeback:0kB shmem:5056kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:3468kB pagetables:1852kB sec_pagetables:60kB all_unreclaimable? no
[  114.064546][ T8495] Node 0 DMA free:2988kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:260kB inactive_anon:76kB active_file:132kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:508kB local_pcp:184kB free_cma:0kB
[  114.073098][ T8495] lowmem_reserve[]: 0 273 0 0 0
[  114.074404][ T8495] Node 0 DMA32 free:18132kB boost:0kB min:13904kB low:17380kB high:20856kB reserved_highatomic:4096KB active_anon:5456kB inactive_anon:1304kB active_file:8184kB inactive_file:0kB unevictable:3536kB writepending:0kB present:1032196kB managed:306308kB mlocked:0kB bounce:0kB free_pcp:1032kB local_pcp:272kB free_cma:0kB
[  114.082335][ T8495] lowmem_reserve[]: 0 0 0 0 0
[  114.083751][ T8495] Node 1 DMA32 free:191124kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB active_anon:18000kB inactive_anon:0kB active_file:49340kB inactive_file:134924kB unevictable:3536kB writepending:448kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:2052kB local_pcp:32kB free_cma:0kB
[  114.091597][ T8495] lowmem_reserve[]: 0 0 0 0 0
[  114.092887][ T8495] Node 0 DMA: 39*4kB (UME) 44*8kB (UME) 43*16kB (UME) 32*32kB (UME) 8*64kB (ME) 2*128kB (ME) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2988kB
[  114.096723][ T8495] Node 0 DMA32: 36*4kB (UMEH) 77*8kB (UMEH) 48*16kB (UMEH) 53*32kB (MEH) 58*64kB (UMEH) 27*128kB (UMEH) 6*256kB (UM) 4*512kB (U) 2*1024kB (UM) 1*2048kB (M) 0*4096kB = 18072kB
[  114.101402][ T8495] Node 1 DMA32: 507*4kB (UME) 800*8kB (UME) 544*16kB (UME) 421*32kB (UME) 336*64kB (UME) 72*128kB (UME) 41*256kB (UME) 21*512kB (M) 14*1024kB (ME) 4*2048kB (UM) 21*4096kB (UM) = 191116kB
[  114.106261][ T8495] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  114.108774][ T8495] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  114.111037][ T8495] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  114.113378][ T8495] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  114.115806][ T8495] 50642 total pagecache pages
[  114.117047][ T8495] 0 pages in swap cache
[  114.118989][ T8495] Free swap  = 124000kB
[  114.120944][ T8495] Total swap = 124996kB
[  114.122080][ T8495] 524155 pages RAM
[  114.123086][ T8495] 0 pages HighMem/MovableOnly
[  114.124334][ T8495] 206675 pages reserved
[  114.125424][ T8495] 0 pages cma reserved
[  114.149612][  T833] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  114.211245][ T8505] netfs: Couldn't get user pages (rc=-14)
[  114.319869][  T833] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  114.323585][  T833] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  114.326137][  T833] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  114.330352][  T833] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  114.332601][  T833] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  114.335872][  T833] usb 6-1: config 0 descriptor??
[  114.447371][ T6118] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  114.543247][ T8497] input: syz1 as /devices/virtual/input/input13
[  114.618418][ T6118] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  114.621284][ T6118] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  114.623223][  T833] usbhid 6-1:0.0: can't add hid device: -71
[  114.623820][ T6118] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  114.623843][ T6118] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  114.623854][ T6118] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  114.625453][  T833] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  114.636198][ T6118] usb 7-1: config 0 descriptor??
[  114.646084][  T833] usb 6-1: USB disconnect, device number 5
[  114.817375][ T8535] FAULT_INJECTION: forcing a failure.
[  114.817375][ T8535] name failslab, interval 1, probability 0, space 0, times 0
[  114.821120][ T8535] CPU: 0 UID: 0 PID: 8535 Comm: syz.3.600 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  114.824758][ T8535] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  114.827878][ T8535] Call Trace:
[  114.828800][ T8535]  <TASK>
[  114.829689][ T8535]  dump_stack_lvl+0x16c/0x1f0
[  114.831319][ T8535]  should_fail_ex+0x497/0x5b0
[  114.832974][ T8535]  ? fs_reclaim_acquire+0xae/0x150
[  114.834745][ T8535]  should_failslab+0xc2/0x120
[  114.836173][ T8535]  __kmalloc_noprof+0xce/0x4f0
[  114.837471][ T8535]  ? __pfx___mutex_trylock_common+0x10/0x10
[  114.839030][ T8535]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  114.841421][ T8535]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  114.843791][ T8535]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  114.845610][ T8535]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  114.847341][ T8535]  ? genl_get_cmd+0x195/0x580
[  114.848826][ T8535]  ? bpf_lsm_capable+0x9/0x10
[  114.850294][ T8535]  ? security_capable+0x7e/0x260
[  114.852015][ T8535]  ? ns_capable+0xd7/0x110
[  114.853568][ T8535]  genl_rcv_msg+0x565/0x800
[  114.855135][ T8535]  ? __pfx_genl_rcv_msg+0x10/0x10
[  114.856731][ T8535]  ? __pfx_hwsim_del_radio_nl+0x10/0x10
[  114.858433][ T8535]  ? __pfx___lock_acquire+0x10/0x10
[  114.859991][ T8535]  netlink_rcv_skb+0x165/0x410
[  114.861540][ T8535]  ? __pfx_genl_rcv_msg+0x10/0x10
[  114.863168][ T8535]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  114.864765][ T8535]  ? down_read+0xc9/0x330
[  114.866209][ T8535]  ? __pfx_down_read+0x10/0x10
[  114.867750][ T8535]  ? netlink_deliver_tap+0x1ae/0xca0
[  114.869280][ T8535]  genl_rcv+0x28/0x40
[  114.870669][ T8535]  netlink_unicast+0x53c/0x7f0
[  114.872240][ T8535]  ? __pfx_netlink_unicast+0x10/0x10
[  114.874025][ T8535]  ? __phys_addr_symbol+0x30/0x80
[  114.875406][ T8535]  ? __check_object_size+0x488/0x710
[  114.876969][ T8535]  netlink_sendmsg+0x8b8/0xd70
[  114.878451][ T8535]  ? __pfx_netlink_sendmsg+0x10/0x10
[  114.880171][ T8535]  ____sys_sendmsg+0x9ae/0xb40
[  114.881807][ T8535]  ? __pfx_____sys_sendmsg+0x10/0x10
[  114.883739][ T8535]  ? get_compat_msghdr+0x11b/0x170
[  114.885540][ T8535]  ___sys_sendmsg+0x135/0x1e0
[  114.887176][ T8535]  ? __pfx____sys_sendmsg+0x10/0x10
[  114.888980][ T8535]  ? __pfx_lock_release+0x10/0x10
[  114.890698][ T8535]  ? trace_lock_acquire+0x14e/0x1f0
[  114.892489][ T8535]  ? __fget_files+0x206/0x3a0
[  114.894072][ T8535]  __sys_sendmsg+0x16e/0x220
[  114.895662][ T8535]  ? __pfx___sys_sendmsg+0x10/0x10
[  114.897467][ T8535]  __do_fast_syscall_32+0x73/0x120
[  114.899238][ T8535]  do_fast_syscall_32+0x32/0x80
[  114.900912][ T8535]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  114.903069][ T8535] RIP: 0023:0xf7f44579
[  114.904481][ T8535] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  114.911065][ T8535] RSP: 002b:00000000f509655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  114.914048][ T8535] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000040
[  114.916827][ T8535] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  114.919585][ T8535] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  114.922276][ T8535] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  114.924996][ T8535] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  114.927712][ T8535]  </TASK>
[  115.044657][ T6118] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  115.046943][ T6118] plantronics 0003:047F:FFFF.000A: No inputs registered, leaving
[  115.058922][ T6118] plantronics 0003:047F:FFFF.000A: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  115.192165][ T8548] bond0 (unregistering): Released all slaves
[  115.279372][ T8557] __nla_validate_parse: 1 callbacks suppressed
[  115.279388][ T8557] netlink: 4 bytes leftover after parsing attributes in process `syz.1.605'.
[  115.315031][ T8560] FAULT_INJECTION: forcing a failure.
[  115.315031][ T8560] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  115.318798][ T8560] CPU: 2 UID: 0 PID: 8560 Comm: syz.0.606 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  115.321648][ T8560] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  115.324497][ T8560] Call Trace:
[  115.325431][ T8560]  <TASK>
[  115.326291][ T8560]  dump_stack_lvl+0x16c/0x1f0
[  115.327593][ T8560]  should_fail_ex+0x497/0x5b0
[  115.328884][ T8560]  _copy_to_user+0x32/0xd0
[  115.330170][ T8560]  simple_read_from_buffer+0xd0/0x160
[  115.331617][ T8560]  proc_fail_nth_read+0x198/0x270
[  115.333009][ T8560]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  115.334496][ T8560]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  115.335995][ T8560]  vfs_read+0x1df/0xbe0
[  115.337118][ T8560]  ? __fget_files+0x1fc/0x3a0
[  115.338381][ T8560]  ? __pfx___mutex_lock+0x10/0x10
[  115.339739][ T8560]  ? __pfx_vfs_read+0x10/0x10
[  115.341017][ T8560]  ? __fget_files+0x206/0x3a0
[  115.342297][ T8560]  ksys_read+0x12b/0x250
[  115.343449][ T8560]  ? __pfx_ksys_read+0x10/0x10
[  115.344747][ T8560]  __do_fast_syscall_32+0x73/0x120
[  115.346170][ T8560]  do_fast_syscall_32+0x32/0x80
[  115.347632][ T8560]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  115.349634][ T8560] RIP: 0023:0xf70ee579
[  115.350768][ T8560] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  115.355912][ T8560] RSP: 002b:00000000f50e0590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  115.358138][ T8560] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f50e0620
[  115.360227][ T8560] RDX: 000000000000000f RSI: 00000000f7423ff4 RDI: 0000000000000000
[  115.362355][ T8560] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  115.364482][ T8560] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  115.366611][ T8560] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  115.368753][ T8560]  </TASK>
[  115.424405][ T6118] usb 7-1: USB disconnect, device number 7
[  115.466194][ T8570] overlayfs: failed to resolve './file1': -2
[  115.470117][ T8570] netlink: 4 bytes leftover after parsing attributes in process `syz.1.607'.
[  115.505645][ T8565] FAULT_INJECTION: forcing a failure.
[  115.505645][ T8565] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  115.511411][ T8565] CPU: 3 UID: 0 PID: 8565 Comm: syz.0.608 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  115.515198][ T8565] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  115.518991][ T8565] Call Trace:
[  115.520199][ T8565]  <TASK>
[  115.521279][ T8565]  dump_stack_lvl+0x16c/0x1f0
[  115.522989][ T8565]  should_fail_ex+0x497/0x5b0
[  115.524714][ T8565]  _copy_to_user+0x32/0xd0
[  115.526344][ T8565]  simple_read_from_buffer+0xd0/0x160
[  115.528311][ T8565]  proc_fail_nth_read+0x198/0x270
[  115.530146][ T8565]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  115.532142][ T8565]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  115.534197][ T8565]  vfs_read+0x1df/0xbe0
[  115.535715][ T8565]  ? __fget_files+0x1fc/0x3a0
[  115.537449][ T8565]  ? __pfx___mutex_lock+0x10/0x10
[  115.539278][ T8565]  ? __pfx_vfs_read+0x10/0x10
[  115.540985][ T8565]  ? __fget_files+0x206/0x3a0
[  115.542697][ T8565]  ksys_read+0x12b/0x250
[  115.544253][ T8565]  ? __pfx_ksys_read+0x10/0x10
[  115.545843][ T8565]  __do_fast_syscall_32+0x73/0x120
[  115.547224][ T8565]  do_fast_syscall_32+0x32/0x80
[  115.549007][ T8565]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  115.551218][ T8565] RIP: 0023:0xf70ee579
[  115.552651][ T8565] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  115.558347][ T8565] RSP: 002b:00000000f50e0590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  115.561280][ T8565] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00000000f50e0620
[  115.564055][ T8565] RDX: 000000000000000f RSI: 00000000f7423ff4 RDI: 0000000000000000
[  115.566730][ T8565] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  115.568924][ T8565] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  115.570955][ T8565] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  115.573569][ T8565]  </TASK>
[  115.642591][ T8503] [U] 
[  116.203959][ T8584] netlink: 12 bytes leftover after parsing attributes in process `syz.2.611'.
[  116.562702][ T8592] netlink: 76 bytes leftover after parsing attributes in process `syz.1.614'.
[  116.564218][ T8594] netlink: 4 bytes leftover after parsing attributes in process `syz.3.612'.
[  117.300218][ T8614] 9pnet_fd: Insufficient options for proto=fd
[  117.336914][ T8616] netlink: 276 bytes leftover after parsing attributes in process `syz.3.620'.
[  117.380719][ T8616] syz.3.620 (8616): drop_caches: 2
[  118.244840][ T8656] netlink: 48 bytes leftover after parsing attributes in process `syz.0.635'.
[  118.501611][ T8660] netlink: 4 bytes leftover after parsing attributes in process `syz.3.638'.
[  118.801626][ T8669] netlink: 'syz.0.637': attribute type 4 has an invalid length.
[  119.458783][ T8692] netlink: 4 bytes leftover after parsing attributes in process `syz.0.646'.
[  119.630202][ T8702] netlink: 4 bytes leftover after parsing attributes in process `syz.0.648'.
[  120.637305][ T8734] netlink: 4 bytes leftover after parsing attributes in process `syz.0.654'.
[  121.197309][ T1327] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  121.371840][ T1327] usb 5-1: config 1 interface 0 altsetting 15 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  121.374673][ T1327] usb 5-1: config 1 interface 0 altsetting 15 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  121.378072][ T1327] usb 5-1: config 1 interface 0 has no altsetting 0
[  121.381407][ T1327] usb 5-1: New USB device found, idVendor=046d, idProduct=c537, bcdDevice= 0.40
[  121.383778][ T1327] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  121.385835][ T1327] usb 5-1: Product: syz
[  121.386945][ T1327] usb 5-1: Manufacturer: syz
[  121.388643][ T1327] usb 5-1: SerialNumber: syz
[  121.899175][ T8795] pimreg: entered allmulticast mode
[  121.932336][ T8797] netlink: 12 bytes leftover after parsing attributes in process `syz.3.665'.
[  121.992152][ T8798] sctp: [Deprecated]: syz.3.665 (pid 8798) Use of int in maxseg socket option.
[  121.992152][ T8798] Use struct sctp_assoc_value instead
[  122.182603][ T8800] 9pnet_fd: Insufficient options for proto=fd
[  122.210987][ T8802] netlink: 'syz.1.667': attribute type 1 has an invalid length.
[  122.220915][ T8802] bond3: entered promiscuous mode
[  122.230325][ T8802] bond3: (slave team_slave_1): Enslaving as an active interface with a down link
[  122.951219][ T8827] netlink: 76 bytes leftover after parsing attributes in process `syz.3.671'.
[  123.178733][ T8835] pimreg: entered allmulticast mode
[  123.227976][ T8839] AppArmor: change_hat: Invalid input, NULL hat and NULL magic
[  123.348745][ T8850] overlayfs: failed to resolve './file1': -2
[  123.358002][ T8850] netlink: 4 bytes leftover after parsing attributes in process `syz.1.679'.
[  123.877611][ T1327] usbhid 5-1:1.0: can't add hid device: -71
[  123.879237][ T1327] usbhid 5-1:1.0: probe with driver usbhid failed with error -71
[  123.882650][ T1327] usb 5-1: USB disconnect, device number 7
[  124.079511][ T8862] netlink: 352 bytes leftover after parsing attributes in process `syz.3.680'.
[  124.461435][ T8868] input: syz0 as /devices/virtual/input/input14
[  125.032753][ T8877] netlink: 64 bytes leftover after parsing attributes in process `syz.2.685'.
[  125.073012][ T8884] netlink: 4 bytes leftover after parsing attributes in process `syz.2.687'.
[  125.230724][ T8900] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  125.285407][    C3] ata1: illegal qc_active transition (00000000->40000000)
[  125.622195][ T1105] ata1: SATA link up 1.5 Gbps (SStatus 113 SControl 300)
[  125.633676][ T1105] ata1.00: configured for UDMA/100
[  125.801049][ T8920] netlink: 76 bytes leftover after parsing attributes in process `syz.0.692'.
[  125.936835][ T8930] netlink: 4 bytes leftover after parsing attributes in process `syz.1.694'.
[  126.525315][ T8945] netlink: 256 bytes leftover after parsing attributes in process `syz.3.698'.
[  126.614401][ T8943] binder: 8941:8943 ioctl c0306201 20000400 returned -14
[  126.639573][ T8943] bond2: entered promiscuous mode
[  126.641070][ T8943] bond2: entered allmulticast mode
[  126.643032][ T8943] 8021q: adding VLAN 0 to HW filter on device bond2
[  126.710990][ T8952] netlink: 352 bytes leftover after parsing attributes in process `syz.2.700'.
[  126.833899][ T8943] bond2 (unregistering): Released all slaves
[  126.861685][ T8963] netlink: 4 bytes leftover after parsing attributes in process `syz.0.704'.
[  126.906278][ T8956] netlink: 16 bytes leftover after parsing attributes in process `syz.1.702'.
[  127.168260][ T8998] netlink: 88 bytes leftover after parsing attributes in process `syz.0.712'.
[  127.170728][ T8998] netlink: 24 bytes leftover after parsing attributes in process `syz.0.712'.
[  127.173401][ T8998] netlink: 16 bytes leftover after parsing attributes in process `syz.0.712'.
[  127.175763][ T8998] netlink: 72 bytes leftover after parsing attributes in process `syz.0.712'.
[  127.460634][ T1327] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  127.521506][ T9039] netlink: 'syz.3.720': attribute type 2 has an invalid length.
[  127.629348][ T1327] usb 5-1: config 1 interface 0 altsetting 15 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  127.633270][ T1327] usb 5-1: config 1 interface 0 altsetting 15 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  127.637012][ T1327] usb 5-1: config 1 interface 0 has no altsetting 0
[  127.640419][ T1327] usb 5-1: New USB device found, idVendor=046d, idProduct=c537, bcdDevice= 0.40
[  127.642760][ T1327] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  127.644984][ T1327] usb 5-1: Product: syz
[  127.646080][ T1327] usb 5-1: Manufacturer: syz
[  127.647431][ T1327] usb 5-1: SerialNumber: syz
[  127.667085][ T9052] FAULT_INJECTION: forcing a failure.
[  127.667085][ T9052] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  127.677085][ T9052] CPU: 2 UID: 0 PID: 9052 Comm: syz.3.723 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  127.680903][ T9052] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  127.684671][ T9052] Call Trace:
[  127.685572][ T9052]  <TASK>
[  127.686399][ T9052]  dump_stack_lvl+0x16c/0x1f0
[  127.687848][ T9052]  should_fail_ex+0x497/0x5b0
[  127.689122][ T9052]  _copy_to_user+0x32/0xd0
[  127.690365][ T9052]  simple_read_from_buffer+0xd0/0x160
[  127.691807][ T9052]  proc_fail_nth_read+0x198/0x270
[  127.693160][ T9052]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  127.694652][ T9052]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  127.696309][ T9052]  vfs_read+0x1df/0xbe0
[  127.697446][ T9052]  ? __fget_files+0x1fc/0x3a0
[  127.698690][ T9052]  ? __pfx___mutex_lock+0x10/0x10
[  127.700003][ T9052]  ? __pfx_vfs_read+0x10/0x10
[  127.701186][ T9052]  ? __fget_files+0x206/0x3a0
[  127.702376][ T9052]  ksys_read+0x12b/0x250
[  127.703466][ T9052]  ? __pfx_ksys_read+0x10/0x10
[  127.704715][ T9052]  __do_fast_syscall_32+0x73/0x120
[  127.706578][ T9052]  do_fast_syscall_32+0x32/0x80
[  127.708224][ T9052]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  127.709924][ T9052] RIP: 0023:0xf7f44579
[  127.711023][ T9052] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  127.716381][ T9052] RSP: 002b:00000000f5096590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  127.718587][ T9052] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f5096620
[  127.720731][ T9052] RDX: 000000000000000f RSI: 00000000f73d3ff4 RDI: 0000000000000000
[  127.722832][ T9052] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  127.725428][ T9052] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  127.727745][ T9052] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  127.729979][ T9052]  </TASK>
[  128.103014][ T9085] bond0 (unregistering): Released all slaves
[  128.207857][ T9100] input: syz1 as /devices/virtual/input/input15
[  128.824441][ T9143] batadv_slave_0: entered promiscuous mode
[  128.997050][ T9158] netlink: 'syz.1.741': attribute type 1 has an invalid length.
[  129.006965][ T9158] bond0: entered promiscuous mode
[  129.021119][ T9158] bond3: (slave team_slave_1): Releasing active interface
[  129.026855][ T9158] bond0: (slave team_slave_1): Enslaving as an active interface with a down link
[  129.274192][ T9171] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  129.286000][ T9171] bond0: (slave lo): Enslaving as an active interface with an up link
[  130.077386][ T5306] Bluetooth: hci3: command 0x0419 tx timeout
[  130.193761][ T1327] usbhid 5-1:1.0: can't add hid device: -71
[  130.195472][ T1327] usbhid 5-1:1.0: probe with driver usbhid failed with error -71
[  130.200145][ T1327] usb 5-1: USB disconnect, device number 8
[  131.175857][ T9219] __nla_validate_parse: 15 callbacks suppressed
[  131.176123][ T9219] netlink: 4 bytes leftover after parsing attributes in process `syz.0.756'.
[  131.365452][ T9227] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  132.160199][ T1413] ieee802154 phy0 wpan0: encryption failed: -22
[  132.697563][ T9272] netlink: 'syz.0.765': attribute type 10 has an invalid length.
[  132.819918][   T45] tipc: Subscription rejected, illegal request
[  132.848868][ T9285] netlink: 48 bytes leftover after parsing attributes in process `syz.1.763'.
[  133.639659][ T9307] tipc: Enabling of bearer <eth:team0> rejected, failed to enable media
[  133.672162][ T9309] bridge_slave_0: left allmulticast mode
[  133.673706][ T9309] bridge_slave_0: left promiscuous mode
[  133.675234][ T9309] bridge0: port 1(bridge_slave_0) entered disabled state
[  133.678821][ T9309] bridge_slave_1: left allmulticast mode
[  133.680326][ T9309] bridge_slave_1: left promiscuous mode
[  133.681854][ T9309] bridge0: port 2(bridge_slave_1) entered disabled state
[  133.688563][ T9309] bond0: (slave bond_slave_0): Releasing backup interface
[  133.709945][ T9309] bond0: (slave bond_slave_1): Releasing backup interface
[  133.714449][ T9309] bond3: (slave team_slave_1): Releasing active interface
[  133.716212][ T9309] team_slave_1: left promiscuous mode
[  133.723853][ T9310] FAULT_INJECTION: forcing a failure.
[  133.723853][ T9310] name failslab, interval 1, probability 0, space 0, times 0
[  133.723930][ T9309] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  133.726342][ T9311] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  133.728836][ T9309] batman_adv: batadv0: Removing interface: batadv_slave_0
[  133.729367][ T9310] CPU: 0 UID: 0 PID: 9310 Comm: syz.1.771 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  133.737090][ T9310] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  133.737101][ T9310] Call Trace:
[  133.737105][ T9310]  <TASK>
[  133.737110][ T9310]  dump_stack_lvl+0x16c/0x1f0
[  133.737128][ T9310]  should_fail_ex+0x497/0x5b0
[  133.744324][ T9310]  ? fs_reclaim_acquire+0xae/0x150
[  133.745658][ T9310]  should_failslab+0xc2/0x120
[  133.746903][ T9310]  __kmalloc_noprof+0xce/0x4f0
[  133.748155][ T9310]  ? security_inode_init_security+0x140/0x390
[  133.749738][ T9310]  security_inode_init_security+0x140/0x390
[  133.751293][ T9310]  ? __pfx_shmem_initxattrs+0x10/0x10
[  133.752711][ T9310]  ? __pfx_security_inode_init_security+0x10/0x10
[  133.754383][ T9310]  ? shmem_get_inode+0x737/0xf00
[  133.755695][ T9310]  shmem_mknod+0x22e/0x450
[  133.756872][ T9310]  shmem_mkdir+0x31/0x60
[  133.757993][ T9310]  vfs_mkdir+0x57d/0x860
[  133.759108][ T9310]  ovl_mkdir_real+0xb5/0x380
[  133.760349][ T9310]  ovl_workdir_create+0x3e2/0x820
[  133.761685][ T9310]  ? __pfx_ovl_workdir_create+0x10/0x10
[  133.763148][ T9310]  ? trace_lock_acquire+0x14e/0x1f0
[  133.764518][ T9310]  ? mnt_get_write_access+0x6a/0x300
[  133.765901][ T9310]  ? mnt_get_write_access+0x20c/0x300
[  133.767320][ T9310]  ovl_fill_super+0xe60/0x6970
[  133.768754][ T9310]  ? shrinker_register+0x154/0x260
[  133.770052][ T9310]  ? __pfx_lock_release+0x10/0x10
[  133.771381][ T9310]  ? rcu_is_watching+0x12/0xc0
[  133.772654][ T9310]  ? find_held_lock+0x2d/0x110
[  133.773921][ T9310]  ? __pfx_ovl_fill_super+0x10/0x10
[  133.775280][ T9310]  ? lockdep_init_map_type+0x16d/0x7d0
[  133.776666][ T9310]  ? lockdep_init_map_type+0x16d/0x7d0
[  133.778067][ T9310]  ? __init_swait_queue_head+0xca/0x150
[  133.779443][ T9310]  ? shrinker_register+0x1a8/0x260
[  133.780769][ T9310]  ? sget_fc+0x488/0xb90
[  133.781842][ T9310]  ? __pfx_ovl_fill_super+0x10/0x10
[  133.783205][ T9310]  ? get_tree_nodev+0xda/0x190
[  133.784459][ T9310]  get_tree_nodev+0xda/0x190
[  133.785666][ T9310]  vfs_get_tree+0x8f/0x380
[  133.786844][ T9310]  path_mount+0x6e1/0x1f10
[  133.788018][ T9310]  ? kmem_cache_free+0x152/0x4c0
[  133.789289][ T9310]  ? __pfx_path_mount+0x10/0x10
[  133.790514][ T9310]  ? putname+0x13c/0x180
[  133.791618][ T9310]  __ia32_sys_mount+0x292/0x310
[  133.792900][ T9310]  ? __pfx___ia32_sys_mount+0x10/0x10
[  133.794283][ T9310]  __do_fast_syscall_32+0x73/0x120
[  133.795655][ T9310]  do_fast_syscall_32+0x32/0x80
[  133.796952][ T9310]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  133.798613][ T9310] RIP: 0023:0xf708e579
[  133.799629][ T9310] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  133.804597][ T9310] RSP: 002b:00000000f505f55c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  133.806640][ T9310] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200000c0
[  133.808670][ T9310] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000020000900
[  133.810725][ T9310] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  133.811590][ T9314] Cannot find map_set index 0 as target
[  133.812777][ T9310] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  133.812787][ T9310] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  133.812800][ T9310]  </TASK>
[  133.813340][ T9310] overlayfs: failed to create directory ./bus/work (errno: 12); mounting read-only
[  133.815113][ T9309] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  133.823980][ T9309] batman_adv: batadv0: Removing interface: batadv_slave_1
[  133.898302][ T9309] tipc: Enabling of bearer <eth:team0> rejected, failed to enable media
[  133.938501][ T9324] netlink: 4 bytes leftover after parsing attributes in process `syz.3.776'.
[  133.972685][ T9324] xt_TPROXY: Can be used only with -p tcp or -p udp
[  134.549676][ T9330] Bluetooth: MGMT ver 1.23
[  134.787249][ T9348] netlink: 1284 bytes leftover after parsing attributes in process `syz.1.781'.
[  134.952410][ T9352] netlink: 48 bytes leftover after parsing attributes in process `syz.3.780'.
[  135.762546][ T9383] syzkaller0: entered promiscuous mode
[  135.764571][ T9383] syzkaller0: entered allmulticast mode
[  136.531640][ T9398] netlink: 4 bytes leftover after parsing attributes in process `syz.2.794'.
[  136.574653][ T9401] xt_hashlimit: Unknown mode mask 40030000, kernel too old?
[  136.611163][ T9402] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  136.803464][ T5982] hid-generic 002B:0007:0001.000B: unknown main item tag 0x4
[  136.806081][ T5982] hid-generic 002B:0007:0001.000B: unknown main item tag 0x7
[  136.891040][ T5982] hid-generic 002B:0007:0001.000B: unexpected long global item
[  136.893570][ T5982] hid-generic 002B:0007:0001.000B: probe with driver hid-generic failed with error -22
[  137.383707][ T9405] netlink: 72 bytes leftover after parsing attributes in process `syz.2.796'.
[  137.386180][ T9405] netlink: 72 bytes leftover after parsing attributes in process `syz.2.796'.
[  137.774713][ T9428] netlink: 76 bytes leftover after parsing attributes in process `syz.0.800'.
[  137.873644][ T9433] binder: BINDER_SET_CONTEXT_MGR already set
[  137.876562][ T9433] binder: 9432:9433 ioctl 4018620d 20000100 returned -16
[  137.881907][ T9433] binder: BINDER_SET_CONTEXT_MGR already set
[  137.883615][ T9433] binder: 9432:9433 ioctl 4018620d 200002c0 returned -16
[  138.078852][ T9441] vxcan3: entered promiscuous mode
[  138.080602][ T9441] vxcan3: entered allmulticast mode
[  138.378821][ T9448] 9pnet_fd: Insufficient options for proto=fd
[  138.457946][ T9453] binder: BINDER_SET_CONTEXT_MGR already set
[  138.461428][ T9453] binder: 9449:9453 ioctl 4018620d 200002c0 returned -16
[  138.683221][ T9456] netlink: 'syz.2.807': attribute type 4 has an invalid length.
[  138.877351][ T1016] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  139.028724][ T1016] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  139.031848][ T1016] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  139.034412][ T1016] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  139.037977][ T1016] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  139.040417][ T1016] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  139.044065][ T1016] usb 5-1: config 0 descriptor??
[  139.260081][ T9465] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  139.277235][ T9467] netlink: 252 bytes leftover after parsing attributes in process `syz.1.810'.
[  139.279904][ T9467] netlink: 28 bytes leftover after parsing attributes in process `syz.1.810'.
[  139.434548][ T9468] netlink: 40 bytes leftover after parsing attributes in process `syz.1.810'.
[  139.454337][ T1016] plantronics 0003:047F:FFFF.000C: unknown main item tag 0x0
[  139.462424][ T1016] plantronics 0003:047F:FFFF.000C: No inputs registered, leaving
[  139.497911][ T1016] plantronics 0003:047F:FFFF.000C: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  139.779649][ T9489] netlink: 352 bytes leftover after parsing attributes in process `syz.2.812'.
[  140.109724][ T9504] FAULT_INJECTION: forcing a failure.
[  140.109724][ T9504] name failslab, interval 1, probability 0, space 0, times 0
[  140.113243][ T9504] CPU: 1 UID: 0 PID: 9504 Comm: syz.1.813 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  140.116027][ T9504] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  140.118807][ T9504] Call Trace:
[  140.119703][ T9504]  <TASK>
[  140.120499][ T9504]  dump_stack_lvl+0x16c/0x1f0
[  140.121753][ T9504]  should_fail_ex+0x497/0x5b0
[  140.123010][ T9504]  ? fs_reclaim_acquire+0xae/0x150
[  140.124380][ T9504]  should_failslab+0xc2/0x120
[  140.125634][ T9504]  kmem_cache_alloc_lru_noprof+0x73/0x3b0
[  140.127151][ T9504]  ? d_alloc+0x17b/0x1e0
[  140.128300][ T9504]  ? alloc_inode+0xbf/0x230
[  140.129513][ T9504]  alloc_inode+0xbf/0x230
[  140.130669][ T9504]  new_inode+0x22/0x210
[  140.131801][ T9504]  simple_fill_super+0x306/0x720
[  140.133151][ T9504]  ? __pfx_nfsd_fill_super+0x10/0x10
[  140.134557][ T9504]  nfsd_fill_super+0x90/0x530
[  140.135813][ T9504]  ? __pfx_set_anon_super_fc+0x10/0x10
[  140.137243][ T9504]  ? __pfx_nfsd_fill_super+0x10/0x10
[  140.138634][ T9504]  get_tree_keyed+0x10b/0x1d0
[  140.139884][ T9504]  vfs_get_tree+0x8f/0x380
[  140.141059][ T9504]  path_mount+0x6e1/0x1f10
[  140.142237][ T9504]  ? kmem_cache_free+0x152/0x4c0
[  140.143582][ T9504]  ? __pfx_path_mount+0x10/0x10
[  140.144868][ T9504]  ? putname+0x13c/0x180
[  140.146011][ T9504]  __ia32_sys_mount+0x292/0x310
[  140.147306][ T9504]  ? __pfx___ia32_sys_mount+0x10/0x10
[  140.148737][ T9504]  __do_fast_syscall_32+0x73/0x120
[  140.150090][ T9504]  do_fast_syscall_32+0x32/0x80
[  140.151371][ T9504]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  140.153052][ T9504] RIP: 0023:0xf708e579
[  140.154109][ T9504] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  140.159165][ T9504] RSP: 002b:00000000f505f55c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  140.161359][ T9504] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000020000180
[  140.163399][ T9504] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000000000000
[  140.165477][ T9504] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  140.167541][ T9504] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  140.169632][ T9504] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  140.171714][ T9504]  </TASK>
[  140.215032][ T9504] syz.1.813 (9504): drop_caches: 2
[  140.341813][ T9513] netlink: 'syz.1.814': attribute type 1 has an invalid length.
[  140.343831][ T9513] netlink: 'syz.1.814': attribute type 1 has an invalid length.
[  140.413258][ T9517] netlink: 4 bytes leftover after parsing attributes in process `syz.1.816'.
[  140.675452][ T9523] bond0 (unregistering): (slave lo): Releasing backup interface
[  140.678102][ T9523] bond0 (unregistering): (slave lo): last VLAN challenged slave left bond - VLAN blocking is removed
[  140.685016][ T9523] bond0 (unregistering): Released all slaves
[  140.783488][ T9528] binder: BINDER_SET_CONTEXT_MGR already set
[  140.785108][ T9528] binder: 9527:9528 ioctl 4018620d 20000100 returned -16
[  140.796219][ T9528] binder: BINDER_SET_CONTEXT_MGR already set
[  140.798183][ T9528] binder: 9527:9528 ioctl 4018620d 20000040 returned -16
[  141.050972][ T9540] netlink: 352 bytes leftover after parsing attributes in process `syz.1.818'.
[  141.367118][ T9558] x_tables: ip6_tables: TCPOPTSTRIP target: only valid for protocol 6
[  141.505816][ T9574] loop2: detected capacity change from 0 to 7
[  141.515220][ T9574] Dev loop2: unable to read RDB block 7
[  141.515243][ T9574]  loop2: unable to read partition table
[  141.515315][ T9574] loop2: partition table beyond EOD, truncated
[  141.515325][ T9574] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  141.537746][ T5980] usb 5-1: USB disconnect, device number 9
[  141.621856][ T9577] __nla_validate_parse: 2 callbacks suppressed
[  141.621867][ T9577] netlink: 4 bytes leftover after parsing attributes in process `syz.3.830'.
[  142.406010][ T9597] overlayfs: failed to resolve './file0': -2
[  142.698434][ T6118] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  142.797745][ T9625] pim6reg1: entered promiscuous mode
[  142.799332][ T9625] pim6reg1: entered allmulticast mode
[  142.859437][ T6118] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  142.862261][ T6118] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  142.864735][ T6118] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  142.868298][ T6118] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  142.870664][ T6118] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  142.874061][ T6118] usb 5-1: config 0 descriptor??
[  143.280585][ T6118] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x0
[  143.282688][ T6118] plantronics 0003:047F:FFFF.000D: No inputs registered, leaving
[  143.295824][ T6118] plantronics 0003:047F:FFFF.000D: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  143.427626][ T9645] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  144.740014][ T9681] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  145.178924][ T9694] netlink: 'syz.3.855': attribute type 2 has an invalid length.
[  145.178937][ T9694] netlink: 244 bytes leftover after parsing attributes in process `syz.3.855'.
[  145.435273][ T9713] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  145.451595][   T25] kernel write not supported for file /sg0 (pid: 25 comm: kworker/2:0)
[  145.468703][ T5980] usb 5-1: USB disconnect, device number 10
[  145.648761][ T9720] netlink: 8 bytes leftover after parsing attributes in process `syz.1.863'.
[  145.648915][ T9720] netlink: 4 bytes leftover after parsing attributes in process `syz.1.863'.
[  145.898591][ T9732] syz.1.869: attempt to access beyond end of device
[  145.898591][ T9732] nbd1: rw=0, sector=2, nr_sectors = 2 limit=0
[  145.903127][ T9732] vxfs: unable to read disk superblock at 1
[  145.905052][ T9732] syz.1.869: attempt to access beyond end of device
[  145.905052][ T9732] nbd1: rw=0, sector=16, nr_sectors = 2 limit=0
[  145.909311][ T9732] vxfs: unable to read disk superblock at 8
[  145.910871][ T9732] vxfs: can't find superblock.
[  145.998030][ T9739] netlink: 164 bytes leftover after parsing attributes in process `syz.1.872'.
[  146.001217][ T9739] netlink: 164 bytes leftover after parsing attributes in process `syz.1.872'.
[  146.148854][ T9745] netlink: 76 bytes leftover after parsing attributes in process `syz.2.874'.
[  146.589479][ T9772] openvswitch: netlink: Key 6 has unexpected len 140 expected 2
[  146.832830][ T9790] binder: BINDER_SET_CONTEXT_MGR already set
[  146.832852][ T9790] binder: 9789:9790 ioctl 4018620d 20000100 returned -16
[  146.912276][ T1327] libceph: connect (1)[c::]:6789 error -101
[  146.914640][ T1327] libceph: mon0 (1)[c::]:6789 connect error
[  146.938301][ T9791] ceph: No mds server is up or the cluster is laggy
[  146.969748][ T9800] Cannot find del_set index 2 as target
[  147.025354][ T9806] netlink: 'syz.1.886': attribute type 10 has an invalid length.
[  147.027399][ T9805] netlink: 16 bytes leftover after parsing attributes in process `syz.1.886'.
[  147.031582][ T9808] netlink: 28 bytes leftover after parsing attributes in process `syz.1.886'.
[  147.034264][ T9805] netlink: 16 bytes leftover after parsing attributes in process `syz.1.886'.
[  147.036615][ T9805] netlink: 16 bytes leftover after parsing attributes in process `syz.1.886'.
[  147.039234][ T9805] netlink: 16 bytes leftover after parsing attributes in process `syz.1.886'.
[  147.041562][ T9805] netlink: 16 bytes leftover after parsing attributes in process `syz.1.886'.
[  147.043860][ T9805] netlink: 16 bytes leftover after parsing attributes in process `syz.1.886'.
[  147.046101][ T9805] netlink: 16 bytes leftover after parsing attributes in process `syz.1.886'.
[  147.048496][ T9805] netlink: 16 bytes leftover after parsing attributes in process `syz.1.886'.
[  147.050858][ T9805] netlink: 16 bytes leftover after parsing attributes in process `syz.1.886'.
[  147.396827][ T9824] netlink: 'syz.2.888': attribute type 4 has an invalid length.
[  147.630693][ T9827] xt_hashlimit: Unknown mode mask 88040000, kernel too old?
[  147.668276][ T9829] overlayfs: failed to resolve './file1': -2
[  147.786919][ T9834] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  148.586513][ T9847] netlink: 'syz.3.897': attribute type 9 has an invalid length.
[  148.590043][ T9847] netlink: 'syz.3.897': attribute type 7 has an invalid length.
[  148.592101][ T9847] netlink: 'syz.3.897': attribute type 8 has an invalid length.
[  148.602152][ T9847] No source specified
[  148.945239][ T9876] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  148.952592][ T9876] bond0: (slave lo): Error: Device can not be enslaved while up
[  149.120353][ T9886] binder: 9879:9886 ioctl c0306201 20000400 returned -14
[  149.163994][ T9891] syz.1.907: attempt to access beyond end of device
[  149.163994][ T9891] nbd1: rw=4096, sector=2, nr_sectors = 2 limit=0
[  149.171338][ T9891] EXT4-fs (nbd1): unable to read superblock
[  149.423567][ T9843] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  150.563269][ T9949] 9pnet_fd: Insufficient options for proto=fd
[  150.566692][ T9949] xt_cluster: you have exceeded the maximum number of cluster nodes (4294967293 > 32)
[  150.984307][ T9965] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  151.014958][ T9965] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock
[  151.067387][ T9965] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  151.074267][ T9965] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock
[  151.807325][   T76] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  151.848474][ T9995] pimreg: entered allmulticast mode
[  151.957850][T10009] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[  151.958539][   T76] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  151.966054][   T76] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  151.974034][   T76] usb 7-1: New USB device found, idVendor=1e7d, idProduct=30d4, bcdDevice= 0.00
[  151.977471][   T76] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  151.981169][T10011] overlayfs: failed to resolve './file1': -2
[  151.984999][   T76] usb 7-1: config 0 descriptor??
[  152.234849][   T76] usbhid 7-1:0.0: can't add hid device: -71
[  152.237039][   T76] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  152.249780][   T76] usb 7-1: USB disconnect, device number 8
[  152.364914][T10024] __nla_validate_parse: 76 callbacks suppressed
[  152.364930][T10024] netlink: 4 bytes leftover after parsing attributes in process `syz.3.940'.
[  152.902293][T10042] fuse: Unknown parameter 'd'
[  153.297290][ T5982] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  153.468389][ T5982] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  153.475682][ T5982] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  153.478286][ T5982] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  153.482366][ T5982] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  153.484734][ T5982] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  153.488182][ T5982] usb 5-1: config 0 descriptor??
[  153.601157][T10080] Cannot find del_set index 0 as target
[  153.904794][ T5982] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0
[  153.908360][ T5982] plantronics 0003:047F:FFFF.000E: No inputs registered, leaving
[  153.912292][ T5982] plantronics 0003:047F:FFFF.000E: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  154.219351][   T76] usb 5-1: USB disconnect, device number 11
[  155.012789][T10106] Cannot find add_set index 0 as target
[  155.665385][T10150] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  155.665413][T10150] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock
[  155.665474][T10150] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  155.665484][T10150] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock
[  155.693758][   T39] audit: type=1326 audit(1734590539.241:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10151 comm="syz.1.966" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000
[  155.697206][   T39] audit: type=1326 audit(1734590539.241:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10151 comm="syz.1.966" exe="/syz-executor" sig=0 arch=40000003 syscall=120 compat=1 ip=0xf708e579 code=0x7ffc0000
[  155.709487][   T39] audit: type=1326 audit(1734590539.251:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10151 comm="syz.1.966" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000
[  155.709520][   T39] audit: type=1326 audit(1734590539.251:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10153 comm="syz.1.966" exe="/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf708e579 code=0x7ffc0000
[  155.709547][   T39] audit: type=1326 audit(1734590539.251:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10151 comm="syz.1.966" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000
[  155.709575][   T39] audit: type=1326 audit(1734590539.251:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10151 comm="syz.1.966" exe="/syz-executor" sig=0 arch=40000003 syscall=270 compat=1 ip=0xf708e579 code=0x7ffc0000
[  155.709601][   T39] audit: type=1326 audit(1734590539.261:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10151 comm="syz.1.966" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000
[  155.709630][   T39] audit: type=1326 audit(1734590539.261:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10151 comm="syz.1.966" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf708e579 code=0x7ffc0000
[  155.709659][   T39] audit: type=1326 audit(1734590539.261:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10151 comm="syz.1.966" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000
[  155.709687][   T39] audit: type=1326 audit(1734590539.261:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10151 comm="syz.1.966" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf708e579 code=0x7ffc0000
[  155.710099][T10152] netlink: 8 bytes leftover after parsing attributes in process `syz.1.966'.
[  155.766896][T10152] 9pnet_fd: Insufficient options for proto=fd
[  155.828180][   T25] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  155.915078][T10158] netlink: 76 bytes leftover after parsing attributes in process `syz.1.968'.
[  155.978707][   T25] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  155.978725][   T25] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  155.978736][   T25] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  155.978752][   T25] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  155.978763][   T25] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  155.979676][   T25] usb 8-1: config 0 descriptor??
[  156.123977][T10164] netlink: 4 bytes leftover after parsing attributes in process `syz.0.969'.
[  156.238861][T10174] netlink: 48 bytes leftover after parsing attributes in process `syz.0.972'.
[  156.270652][T10180] netlink: 4 bytes leftover after parsing attributes in process `syz.0.974'.
[  156.407023][   T25] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0
[  156.409305][   T25] plantronics 0003:047F:FFFF.000F: No inputs registered, leaving
[  156.415350][   T25] plantronics 0003:047F:FFFF.000F: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  156.536623][T10200] netlink: 76 bytes leftover after parsing attributes in process `syz.2.980'.
[  156.657761][   T25] usb 8-1: USB disconnect, device number 9
[  157.105949][T10221] binder: BINDER_SET_CONTEXT_MGR already set
[  157.108828][T10221] binder: 10219:10221 ioctl 4018620d 200002c0 returned -16
[  157.175029][T10229] syzkaller0: entered promiscuous mode
[  157.176509][T10229] syzkaller0: entered allmulticast mode
[  157.325808][T10245] netlink: 76 bytes leftover after parsing attributes in process `syz.0.989'.
[  157.457260][ T5982] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  157.611049][ T5982] usb 6-1: Using ep0 maxpacket: 16
[  157.617998][ T5982] usb 6-1: config 0 interface 0 altsetting 5 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  157.621009][ T5982] usb 6-1: config 0 interface 0 altsetting 5 endpoint 0x81 has invalid wMaxPacketSize 0
[  157.624083][ T5982] usb 6-1: config 0 interface 0 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  157.627793][ T5982] usb 6-1: config 0 interface 0 has no altsetting 0
[  157.629814][ T5982] usb 6-1: New USB device found, idVendor=0458, idProduct=5010, bcdDevice= 0.00
[  157.632415][ T5982] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.637482][ T5982] usb 6-1: config 0 descriptor??
[  158.115286][ T5982] input: HID 0458:5010 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/0003:0458:5010.0010/input/input16
[  158.205898][ T5982] kye 0003:0458:5010.0010: input,hiddev0,hidraw1: USB HID v2.00 Device [HID 0458:5010] on usb-dummy_hcd.1-1/input0
[  158.368651][T10239] trusted_key: encrypted_key: keyword 'update' not allowed when called from .instantiate method
[  158.465197][T10280] fuse: Unknown parameter 'XÂÍ•„»f'
[  158.466222][T10280] netlink: 12 bytes leftover after parsing attributes in process `syz.0.997'.
[  158.777253][ T5982] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  158.960764][ T5982] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  158.964025][ T5982] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  158.964040][ T5982] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  158.964059][ T5982] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  158.964070][ T5982] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  158.965661][ T5982] usb 5-1: config 0 descriptor??
[  159.207902][    C1] kye 0003:0458:5010.0010: usb_submit_urb(ctrl) failed: -1
[  159.382798][ T5982] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  159.385607][ T5982] plantronics 0003:047F:FFFF.0011: No inputs registered, leaving
[  159.389597][ T5982] plantronics 0003:047F:FFFF.0011: hiddev1,hidraw2: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  159.583094][ T5982] usb 5-1: USB disconnect, device number 12
[  159.736015][T10303] FAULT_INJECTION: forcing a failure.
[  159.736015][T10303] name failslab, interval 1, probability 0, space 0, times 0
[  159.739690][T10303] CPU: 1 UID: 0 PID: 10303 Comm: syz.1.1001 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  159.742450][T10303] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  159.745264][T10303] Call Trace:
[  159.746150][T10303]  <TASK>
[  159.746934][T10303]  dump_stack_lvl+0x16c/0x1f0
[  159.748222][T10303]  should_fail_ex+0x497/0x5b0
[  159.749501][T10303]  ? fs_reclaim_acquire+0xae/0x150
[  159.750843][T10303]  should_failslab+0xc2/0x120
[  159.752100][T10303]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  159.753506][T10303]  ? __kernfs_new_node+0xd3/0x890
[  159.754820][T10303]  __kernfs_new_node+0xd3/0x890
[  159.756097][T10303]  ? __pfx___kernfs_new_node+0x10/0x10
[  159.757513][T10303]  ? __pfx_lock_release+0x10/0x10
[  159.758871][T10303]  ? kernfs_add_one+0x39d/0x520
[  159.760159][T10303]  ? up_write+0x1b2/0x520
[  159.761281][T10303]  kernfs_new_node+0x186/0x240
[  159.762825][T10303]  __kernfs_create_file+0x53/0x350
[  159.764421][T10303]  sysfs_add_file_mode_ns+0x1ff/0x3b0
[  159.765820][T10303]  internal_create_group+0x56c/0xf10
[  159.767181][T10303]  ? __pfx_internal_create_group+0x10/0x10
[  159.768776][T10303]  ? kernfs_create_link+0x1bd/0x240
[  159.770125][T10303]  internal_create_groups+0x9d/0x150
[  159.771500][T10303]  device_add+0x6d3/0x1a70
[  159.772687][T10303]  ? __pfx_device_add+0x10/0x10
[  159.773953][T10303]  ? __init_waitqueue_head+0xca/0x150
[  159.775355][T10303]  rfkill_register+0x1ad/0xb40
[  159.776640][T10303]  nfc_register_device+0x11f/0x3c0
[  159.777967][T10303]  nci_register_device+0x7f4/0xb80
[  159.779330][T10303]  ? __pfx_nci_register_device+0x10/0x10
[  159.780806][T10303]  virtual_ncidev_open+0x141/0x220
[  159.782134][T10303]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  159.783630][T10303]  misc_open+0x35a/0x420
[  159.784733][T10303]  ? __pfx_misc_open+0x10/0x10
[  159.786008][T10303]  chrdev_open+0x237/0x6a0
[  159.787168][T10303]  ? __pfx_apparmor_file_open+0x10/0x10
[  159.788892][T10303]  ? __pfx_chrdev_open+0x10/0x10
[  159.790466][T10303]  do_dentry_open+0xf59/0x1ea0
[  159.791799][T10303]  ? __pfx_chrdev_open+0x10/0x10
[  159.793150][T10303]  ? inode_permission+0xdd/0x5f0
[  159.794476][T10303]  vfs_open+0x82/0x3f0
[  159.795600][T10303]  ? may_open+0x1f2/0x400
[  159.796763][T10303]  path_openat+0x1e6a/0x2d60
[  159.798040][T10303]  ? __pfx_path_openat+0x10/0x10
[  159.799364][T10303]  ? __pfx___lock_acquire+0x10/0x10
[  159.800823][T10303]  ? lock_acquire.part.0+0x11b/0x380
[  159.802182][T10303]  ? find_held_lock+0x2d/0x110
[  159.803553][T10303]  do_filp_open+0x20c/0x470
[  159.804774][T10303]  ? __pfx_do_filp_open+0x10/0x10
[  159.806129][T10303]  ? find_held_lock+0x2d/0x110
[  159.807526][T10303]  ? alloc_fd+0x41f/0x760
[  159.808715][T10303]  do_sys_openat2+0x17a/0x1e0
[  159.809971][T10303]  ? __pfx_do_sys_openat2+0x10/0x10
[  159.811353][T10303]  ? __fget_files+0x206/0x3a0
[  159.812635][T10303]  __ia32_compat_sys_openat+0x16e/0x210
[  159.814169][T10303]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  159.815788][T10303]  ? ksys_write+0x1ba/0x250
[  159.817005][T10303]  __do_fast_syscall_32+0x73/0x120
[  159.818423][T10303]  do_fast_syscall_32+0x32/0x80
[  159.819873][T10303]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  159.821509][T10303] RIP: 0023:0xf708e579
[  159.822629][T10303] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  159.827849][T10303] RSP: 002b:00000000f508055c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[  159.830028][T10303] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000020000000
[  159.832066][T10303] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  159.834104][T10303] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  159.836061][T10303] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  159.838026][T10303] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  159.840085][T10303]  </TASK>
[  159.937993][T10309] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1002'.
[  159.978170][   T30] usb 6-1: USB disconnect, device number 6
[  160.195390][T10317] set match dimension is over the limit!
[  160.249104][T10327] Cannot find del_set index 2 as target
[  160.468739][T10338] syz.0.1009: attempt to access beyond end of device
[  160.468739][T10338] nbd0: rw=4096, sector=0, nr_sectors = 1 limit=0
[  160.481740][T10348] syz.1.1008: attempt to access beyond end of device
[  160.481740][T10348] nbd1: rw=0, sector=64, nr_sectors = 8 limit=0
[  160.482099][T10348] syz.1.1008: attempt to access beyond end of device
[  160.482099][T10348] nbd1: rw=0, sector=120, nr_sectors = 8 limit=0
[  160.492159][T10348] Mount JFS Failure: -5
[  160.492206][T10348] jfs_mount failed w/return code = -5
[  160.564334][T10350] FAULT_INJECTION: forcing a failure.
[  160.564334][T10350] name failslab, interval 1, probability 0, space 0, times 0
[  160.564362][T10350] CPU: 3 UID: 0 PID: 10350 Comm: syz.3.1010 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  160.570295][T10350] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  160.570304][T10350] Call Trace:
[  160.570308][T10350]  <TASK>
[  160.570312][T10350]  dump_stack_lvl+0x16c/0x1f0
[  160.570329][T10350]  should_fail_ex+0x497/0x5b0
[  160.570342][T10350]  ? fs_reclaim_acquire+0xae/0x150
[  160.584922][T10350]  should_failslab+0xc2/0x120
[  160.584958][T10350]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  160.584984][T10350]  ? flock_lock_inode+0xbfa/0x1040
[  160.585014][T10350]  flock_lock_inode+0xbfa/0x1040
[  160.585045][T10350]  ? __pfx_flock_lock_inode+0x10/0x10
[  160.585070][T10350]  ? __pfx___might_resched+0x10/0x10
[  160.585090][T10350]  ? __fget_files+0x1fc/0x3a0
[  160.585116][T10350]  locks_lock_inode_wait+0x1c7/0x450
[  160.585142][T10350]  ? __pfx_locks_lock_inode_wait+0x10/0x10
[  160.585169][T10350]  ? lockdep_init_map_type+0x16d/0x7d0
[  160.585193][T10350]  ? apparmor_file_lock+0x273/0x430
[  160.585224][T10350]  __do_sys_flock+0x497/0x570
[  160.585250][T10350]  ? __pfx___do_sys_flock+0x10/0x10
[  160.585294][T10350]  ? ksys_write+0x1ba/0x250
[  160.585315][T10350]  ? __pfx_ksys_write+0x10/0x10
[  160.585343][T10350]  __do_fast_syscall_32+0x73/0x120
[  160.585368][T10350]  do_fast_syscall_32+0x32/0x80
[  160.585391][T10350]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  160.585417][T10350] RIP: 0023:0xf7f44579
[  160.585432][T10350] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  160.585451][T10350] RSP: 002b:00000000f509655c EFLAGS: 00000296 ORIG_RAX: 000000000000008f
[  160.585470][T10350] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000000006
[  160.585482][T10350] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  160.585493][T10350] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  160.585505][T10350] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  160.585517][T10350] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  160.585540][T10350]  </TASK>
[  160.732018][   T39] kauditd_printk_skb: 60 callbacks suppressed
[  160.732028][   T39] audit: type=1326 audit(1734590544.281:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10355 comm="syz.0.1012" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  160.732145][   T39] audit: type=1326 audit(1734590544.281:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10355 comm="syz.0.1012" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  160.732363][   T39] audit: type=1326 audit(1734590544.281:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10355 comm="syz.0.1012" exe="/syz-executor" sig=0 arch=40000003 syscall=5 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  160.733691][T10361] Cannot find map_set index 0 as target
[  160.752571][   T39] audit: type=1326 audit(1734590544.281:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10355 comm="syz.0.1012" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  160.752594][   T39] audit: type=1326 audit(1734590544.281:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10355 comm="syz.0.1012" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  160.752610][   T39] audit: type=1326 audit(1734590544.281:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10355 comm="syz.0.1012" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  160.752626][   T39] audit: type=1326 audit(1734590544.281:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10355 comm="syz.0.1012" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  160.752642][   T39] audit: type=1326 audit(1734590544.281:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10355 comm="syz.0.1012" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  160.752659][   T39] audit: type=1326 audit(1734590544.281:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10355 comm="syz.0.1012" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  160.752676][   T39] audit: type=1326 audit(1734590544.281:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10355 comm="syz.0.1012" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  160.806805][T10363] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1015'.
[  160.844499][T10363] overlayfs: only single ':' or double '::' sequences of unescaped colons in lowerdir mount option allowed.
[  161.068988][T10376] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  161.069032][T10376] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock
[  161.069376][T10376] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  161.077211][T10376] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock
[  161.494396][T10384] netlink: 352 bytes leftover after parsing attributes in process `syz.2.1019'.
[  161.784645][T10389] overlayfs: failed to resolve './file1': -2
[  161.792605][T10389] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1022'.
[  162.396851][T10399] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1024'.
[  162.436605][T10401] binder: BINDER_SET_CONTEXT_MGR already set
[  162.444810][T10401] binder: 10400:10401 ioctl 4018620d 20000100 returned -16
[  162.605346][T10401] binder: BINDER_SET_CONTEXT_MGR already set
[  162.607128][T10401] binder: 10400:10401 ioctl 4018620d 200002c0 returned -16
[  162.744492][T10417] netlink: 164 bytes leftover after parsing attributes in process `syz.2.1028'.
[  162.744506][T10417] netlink: 164 bytes leftover after parsing attributes in process `syz.2.1028'.
[  162.959287][T10438] tty tty3: ldisc open failed (-12), clearing slot 2
[  162.994029][ T5949] Bluetooth: hci0: unexpected event for opcode 0x2060
[  163.003041][T10449] set match dimension is over the limit!
[  163.090048][T10459] netlink: 352 bytes leftover after parsing attributes in process `syz.1.1033'.
[  163.102002][T10459] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  163.623312][T10478] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1041'.
[  163.625734][T10478] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1041'.
[  164.273171][T10521] FAULT_INJECTION: forcing a failure.
[  164.273171][T10521] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  164.283472][T10521] CPU: 1 UID: 0 PID: 10521 Comm: syz.2.1050 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  164.286311][T10521] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  164.289169][T10521] Call Trace:
[  164.290052][T10521]  <TASK>
[  164.290834][T10521]  dump_stack_lvl+0x16c/0x1f0
[  164.292279][T10521]  should_fail_ex+0x497/0x5b0
[  164.293537][T10521]  _copy_from_user+0x2e/0xd0
[  164.294769][T10521]  get_compat_msghdr+0xa8/0x170
[  164.296106][T10521]  ? __pfx_get_compat_msghdr+0x10/0x10
[  164.297537][T10521]  ___sys_sendmsg+0x1b0/0x1e0
[  164.298777][T10521]  ? __pfx____sys_sendmsg+0x10/0x10
[  164.300172][T10521]  ? __pfx_lock_release+0x10/0x10
[  164.301502][T10521]  ? trace_lock_acquire+0x14e/0x1f0
[  164.302838][T10521]  ? __fget_files+0x206/0x3a0
[  164.304094][T10521]  __sys_sendmsg+0x16e/0x220
[  164.305322][T10521]  ? __pfx___sys_sendmsg+0x10/0x10
[  164.306687][T10521]  __do_fast_syscall_32+0x73/0x120
[  164.308051][T10521]  do_fast_syscall_32+0x32/0x80
[  164.309338][T10521]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  164.310998][T10521] RIP: 0023:0xf70be579
[  164.312083][T10521] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  164.312691][T10524] netlink: 284 bytes leftover after parsing attributes in process `syz.3.1053'.
[  164.312698][T10525] netlink: 284 bytes leftover after parsing attributes in process `syz.3.1053'.
[  164.317091][T10521] RSP: 002b:00000000f506e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  164.317105][T10521] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000020000100
[  164.326048][T10521] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  164.328130][T10521] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  164.330193][T10521] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  164.332211][T10521] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  164.334275][T10521]  </TASK>
[  164.690396][T10558] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1063'.
[  164.789022][T10564] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  164.791123][T10564] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock
[  164.794289][T10564] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  164.796345][T10564] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock
[  164.819368][T10566] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1064'.
[  164.863866][T10568] netlink: 'syz.1.1065': attribute type 4 has an invalid length.
[  164.869064][T10568] netlink: 'syz.1.1065': attribute type 4 has an invalid length.
[  164.943611][T10568] syz.1.1065 (10568) used greatest stack depth: 20672 bytes left
[  165.098454][T10582] netlink: 'syz.1.1070': attribute type 2 has an invalid length.
[  165.193657][T10589] x_tables: duplicate underflow at hook 3
[  165.804975][T10612] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  166.133649][T10615] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  166.411921][T10628] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1080'.
[  166.438692][T10628] bond0: entered promiscuous mode
[  166.440712][T10628] 8021q: adding VLAN 0 to HW filter on device bond0
[  166.456180][T10631] overlayfs: failed to resolve './file1': -2
[  166.479745][T10631] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1081'.
[  166.510663][T10626] netlink: 'syz.1.1079': attribute type 4 has an invalid length.
[  167.039319][ T5949] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  167.041583][ T5949] Bluetooth: hci0: Injecting HCI hardware error event
[  167.045643][ T5949] Bluetooth: hci0: hardware error 0x00
[  167.880624][T10667] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  167.905656][   T39] kauditd_printk_skb: 25 callbacks suppressed
[  167.905735][   T39] audit: type=1326 audit(1734590551.451:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10658 comm="syz.0.1088" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  167.913917][   T39] audit: type=1326 audit(1734590551.461:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10658 comm="syz.0.1088" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  167.926557][   T39] audit: type=1326 audit(1734590551.471:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10658 comm="syz.0.1088" exe="/syz-executor" sig=0 arch=40000003 syscall=5 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  167.937429][   T39] audit: type=1326 audit(1734590551.481:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10658 comm="syz.0.1088" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  167.943324][   T39] audit: type=1326 audit(1734590551.481:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10658 comm="syz.0.1088" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  167.958615][   T39] audit: type=1326 audit(1734590551.501:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10658 comm="syz.0.1088" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  167.973197][   T39] audit: type=1326 audit(1734590551.501:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10658 comm="syz.0.1088" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  167.989015][   T39] audit: type=1326 audit(1734590551.501:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10658 comm="syz.0.1088" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  168.002612][   T39] audit: type=1326 audit(1734590551.501:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10658 comm="syz.0.1088" exe="/syz-executor" sig=0 arch=40000003 syscall=5 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  168.009222][   T39] audit: type=1326 audit(1734590551.501:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10658 comm="syz.0.1088" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  168.403646][T10686] No buffer was provided with the request
[  168.413568][T10658] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  168.435742][T10691] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1093'.
[  168.443091][T10691] FAULT_INJECTION: forcing a failure.
[  168.443091][T10691] name failslab, interval 1, probability 0, space 0, times 0
[  168.446746][T10691] CPU: 1 UID: 0 PID: 10691 Comm: syz.3.1093 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  168.449516][T10691] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  168.452272][T10691] Call Trace:
[  168.453183][T10691]  <TASK>
[  168.453962][T10691]  dump_stack_lvl+0x16c/0x1f0
[  168.455192][T10691]  should_fail_ex+0x497/0x5b0
[  168.456436][T10691]  ? fs_reclaim_acquire+0xae/0x150
[  168.457777][T10691]  should_failslab+0xc2/0x120
[  168.459016][T10691]  kmem_cache_alloc_lru_noprof+0x73/0x3b0
[  168.460505][T10691]  ? __pfx_lookup_one_len+0x10/0x10
[  168.461862][T10691]  ? alloc_inode+0xbf/0x230
[  168.463073][T10691]  alloc_inode+0xbf/0x230
[  168.464214][T10691]  new_inode+0x22/0x210
[  168.465303][T10691]  ? start_creating.part.0+0x25d/0x3a0
[  168.466768][T10691]  __debugfs_create_file+0x11a/0x660
[  168.468363][T10691]  debugfs_create_file_full+0x6d/0xa0
[  168.470227][T10691]  cfg80211_debugfs_rdev_add+0x5c/0xe0
[  168.472064][T10691]  wiphy_register+0x1dfa/0x2860
[  168.473705][T10691]  ? netdev_run_todo+0x837/0x12d0
[  168.475418][T10691]  ? __pfx_wiphy_register+0x10/0x10
[  168.477179][T10691]  ieee80211_register_hw+0x2951/0x3fa0
[  168.479023][T10691]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  168.480993][T10691]  ? net_generic+0xea/0x2a0
[  168.482531][T10691]  ? lockdep_init_map_type+0x16d/0x7d0
[  168.484365][T10691]  ? rcu_is_watching+0x12/0xc0
[  168.485981][T10691]  ? trace_hrtimer_init+0x1a6/0x230
[  168.487475][T10691]  ? __hrtimer_init+0x106/0x2c0
[  168.488761][T10691]  mac80211_hwsim_new_radio+0x2c47/0x56c0
[  168.490270][T10691]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  168.491884][T10691]  hwsim_new_radio_nl+0xb42/0x12b0
[  168.493254][T10691]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  168.494713][T10691]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  168.496635][T10691]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  168.498557][T10691]  genl_family_rcv_msg_doit+0x202/0x2f0
[  168.500028][T10691]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  168.501613][T10691]  ? genl_get_cmd+0x195/0x580
[  168.502861][T10691]  ? bpf_lsm_capable+0x9/0x10
[  168.504445][T10691]  ? security_capable+0x7e/0x260
[  168.506138][T10691]  ? ns_capable+0xd7/0x110
[  168.507331][T10691]  genl_rcv_msg+0x565/0x800
[  168.508856][T10691]  ? __pfx_genl_rcv_msg+0x10/0x10
[  168.510458][T10691]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  168.512240][T10691]  ? __pfx___lock_acquire+0x10/0x10
[  168.513984][T10691]  netlink_rcv_skb+0x165/0x410
[  168.515470][T10691]  ? __pfx_genl_rcv_msg+0x10/0x10
[  168.517137][T10691]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  168.518917][T10691]  ? down_read+0xc9/0x330
[  168.520397][T10691]  ? __pfx_down_read+0x10/0x10
[  168.521980][T10691]  ? netlink_deliver_tap+0x1ae/0xca0
[  168.523540][T10691]  genl_rcv+0x28/0x40
[  168.524803][T10691]  netlink_unicast+0x53c/0x7f0
[  168.526402][T10691]  ? __pfx_netlink_unicast+0x10/0x10
[  168.527860][T10691]  ? __phys_addr_symbol+0x30/0x80
[  168.529174][T10691]  ? __check_object_size+0x488/0x710
[  168.530657][T10691]  netlink_sendmsg+0x8b8/0xd70
[  168.531875][T10691]  ? __pfx_netlink_sendmsg+0x10/0x10
[  168.533666][T10691]  ____sys_sendmsg+0x9ae/0xb40
[  168.535263][T10691]  ? __pfx_____sys_sendmsg+0x10/0x10
[  168.537054][T10691]  ? get_compat_msghdr+0x11b/0x170
[  168.538663][T10691]  ___sys_sendmsg+0x135/0x1e0
[  168.540279][T10691]  ? __pfx____sys_sendmsg+0x10/0x10
[  168.542018][T10691]  ? __pfx_lock_release+0x10/0x10
[  168.543653][T10691]  ? trace_lock_acquire+0x14e/0x1f0
[  168.545047][T10691]  ? __fget_files+0x206/0x3a0
[  168.546281][T10691]  __sys_sendmsg+0x16e/0x220
[  168.547471][T10691]  ? __pfx___sys_sendmsg+0x10/0x10
[  168.548814][T10691]  __do_fast_syscall_32+0x73/0x120
[  168.550169][T10691]  do_fast_syscall_32+0x32/0x80
[  168.551457][T10691]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  168.553123][T10691] RIP: 0023:0xf7f44579
[  168.554183][T10691] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  168.558953][T10691] RSP: 002b:00000000f509655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  168.560945][T10691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000040
[  168.562834][T10691] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  168.564863][T10691] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  168.566803][T10691] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  168.568750][T10691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  168.570694][T10691]  </TASK>
[  168.578814][T10691] debugfs: out of free dentries, can not create file 'rts_threshold'
[  168.910062][T10720] IPVS: set_ctl: invalid protocol: 8 224.0.0.2:0
[  169.112836][T10736] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1100'.
[  169.127957][ T5949] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  169.128197][T10738] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1101'.
[  169.255076][T10748] FAULT_INJECTION: forcing a failure.
[  169.255076][T10748] name failslab, interval 1, probability 0, space 0, times 0
[  169.259906][T10748] CPU: 2 UID: 0 PID: 10748 Comm: syz.1.1104 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  169.262751][T10748] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  169.265593][T10748] Call Trace:
[  169.266421][T10748]  <TASK>
[  169.267231][T10748]  dump_stack_lvl+0x16c/0x1f0
[  169.268449][T10748]  should_fail_ex+0x497/0x5b0
[  169.269629][T10748]  ? fs_reclaim_acquire+0xae/0x150
[  169.270991][T10748]  should_failslab+0xc2/0x120
[  169.272255][T10748]  __kmalloc_noprof+0xce/0x4f0
[  169.273577][T10748]  ? is_bpf_text_address+0x8a/0x1a0
[  169.274890][T10748]  ? tomoyo_encode2+0x100/0x3e0
[  169.276172][T10748]  tomoyo_encode2+0x100/0x3e0
[  169.277451][T10748]  ? bpf_ksym_find+0x124/0x1c0
[  169.278712][T10748]  tomoyo_encode+0x2c/0x40
[  169.279871][T10748]  tomoyo_mount_acl+0x145/0x880
[  169.281094][T10748]  ? hlock_class+0x4e/0x130
[  169.282238][T10748]  ? __lock_acquire+0x15a9/0x3c40
[  169.283780][T10748]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  169.285743][T10748]  ? __pfx___lock_acquire+0x10/0x10
[  169.287588][T10748]  ? stack_trace_save+0x95/0xd0
[  169.288844][T10748]  ? __pfx_lock_release+0x10/0x10
[  169.290154][T10748]  ? trace_lock_acquire+0x14e/0x1f0
[  169.291520][T10748]  ? tomoyo_mount_permission+0x149/0x420
[  169.293011][T10748]  ? lock_acquire+0x2f/0xb0
[  169.294290][T10748]  ? tomoyo_mount_permission+0x149/0x420
[  169.295676][T10748]  tomoyo_mount_permission+0x16e/0x420
[  169.297021][T10748]  ? tomoyo_mount_permission+0x149/0x420
[  169.298448][T10748]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  169.300040][T10748]  ? get_current_fs_domain+0x184/0x1f0
[  169.301412][T10748]  security_sb_mount+0x9b/0x260
[  169.302682][T10748]  path_mount+0x129/0x1f10
[  169.304114][T10748]  ? kmem_cache_free+0x152/0x4c0
[  169.305938][T10748]  ? __pfx_path_mount+0x10/0x10
[  169.307520][T10748]  ? putname+0x13c/0x180
[  169.308640][T10748]  __ia32_sys_mount+0x292/0x310
[  169.309930][T10748]  ? __pfx___ia32_sys_mount+0x10/0x10
[  169.311348][T10748]  __do_fast_syscall_32+0x73/0x120
[  169.312727][T10748]  do_fast_syscall_32+0x32/0x80
[  169.314163][T10748]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  169.315781][T10748] RIP: 0023:0xf708e579
[  169.316834][T10748] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  169.321759][T10748] RSP: 002b:00000000f508055c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  169.324188][T10748] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000020000140
[  169.326946][T10748] RDX: 0000000020000180 RSI: 0000000000000000 RDI: 00000000200003c0
[  169.329041][T10748] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  169.331061][T10748] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  169.333085][T10748] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  169.335270][T10748]  </TASK>
[  169.920781][T10786] netlink: 352 bytes leftover after parsing attributes in process `syz.1.1106'.
[  169.929989][T10786] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  169.948194][T10790] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1108'.
[  170.304934][T10807] netlink: 'syz.1.1111': attribute type 2 has an invalid length.
[  170.541088][T10828] =======================================================
[  170.541088][T10828] WARNING: The mand mount option has been deprecated and
[  170.541088][T10828]          and is ignored by this kernel. Remove the mand
[  170.541088][T10828]          option from the mount to silence this warning.
[  170.541088][T10828] =======================================================
[  170.957249][ T5949] Bluetooth: hci3: command 0x0419 tx timeout
[  171.077135][T10842] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  171.132699][T10842] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  171.133529][ T5982] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[  171.150369][ T5982] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[  171.190900][T10842] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  171.271581][ T6802] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[  171.380310][ T1137] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[  171.507915][   T70] wlan1: authentication with 08:02:11:00:00:00 timed out
[  171.667587][ T5982] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  171.741976][T10872] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  171.745557][T10872] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock
[  171.752001][T10872] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  171.755564][T10872] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock
[  171.821875][ T5982] usb 7-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  171.825149][ T5982] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  171.828225][ T5982] usb 7-1: Product: syz
[  171.829719][ T5982] usb 7-1: Manufacturer: syz
[  171.834393][ T5982] usb 7-1: SerialNumber: syz
[  171.843604][ T5982] usb 7-1: config 0 descriptor??
[  172.113656][T10888] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1129'.
[  172.150935][T10892] --map-set only usable from mangle table
[  172.994170][T10909] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1133'.
[  172.998607][T10909] x_tables: ip6_tables: icmp6 match: only valid for protocol 58
[  173.058392][ T5982] usb 7-1: USB disconnect, device number 9
[  173.098751][T10918] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1135'.
[  173.100639][T10919] overlayfs: failed to resolve './file1': -2
[  173.109816][T10919] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1137'.
[  173.378785][T10926] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1138'.
[  174.042822][T10942] usb usb4: usbfs: process 10942 (syz.0.1141) did not claim interface 0 before use
[  174.621376][T10959] Cannot find add_set index 0 as target
[  174.732811][T10965] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  175.324705][T10967] bond0 (unregistering): Released all slaves
[  175.463391][T10975] netlink: 'syz.3.1154': attribute type 1 has an invalid length.
[  175.488627][T10975] bond2: entered promiscuous mode
[  175.496158][T10978] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1155'.
[  175.497733][T10975] bond2: (slave team_slave_1): Enslaving as an active interface with a down link
[  175.508873][T10978] FAULT_INJECTION: forcing a failure.
[  175.508873][T10978] name failslab, interval 1, probability 0, space 0, times 0
[  175.513165][T10978] CPU: 0 UID: 0 PID: 10978 Comm: syz.2.1155 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  175.513202][T10978] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  175.519397][T10978] Call Trace:
[  175.520521][T10978]  <TASK>
[  175.521608][T10978]  dump_stack_lvl+0x16c/0x1f0
[  175.523314][T10978]  should_fail_ex+0x497/0x5b0
[  175.524963][T10978]  ? fs_reclaim_acquire+0xae/0x150
[  175.526670][T10978]  should_failslab+0xc2/0x120
[  175.528282][T10978]  kmem_cache_alloc_lru_noprof+0x73/0x3b0
[  175.530163][T10978]  ? __d_alloc+0x35/0x8c0
[  175.531632][T10978]  __d_alloc+0x35/0x8c0
[  175.533042][T10978]  d_alloc+0x4a/0x1e0
[  175.534411][T10978]  d_alloc_parallel+0xe9/0x12b0
[  175.536044][T10978]  ? __pfx_d_alloc_parallel+0x10/0x10
[  175.537824][T10978]  ? lockdep_init_map_type+0x16d/0x7d0
[  175.539616][T10978]  ? mark_lock+0xb5/0xc60
[  175.541054][T10978]  ? lockdep_init_map_type+0x16d/0x7d0
[  175.542863][T10978]  __lookup_slow+0x194/0x460
[  175.544417][T10978]  ? __pfx___lookup_slow+0x10/0x10
[  175.546153][T10978]  ? __pfx_lock_release+0x10/0x10
[  175.547938][T10978]  ? d_lookup+0xe9/0x180
[  175.549336][T10978]  lookup_one_len+0x181/0x1b0
[  175.550899][T10978]  ? __pfx_lookup_one_len+0x10/0x10
[  175.552525][T10978]  ? mntput+0x10/0x90
[  175.553556][T10978]  start_creating.part.0+0x12f/0x3a0
[  175.554890][T10978]  __debugfs_create_file+0xa5/0x660
[  175.556259][T10978]  debugfs_create_file_full+0x6d/0xa0
[  175.557935][T10978]  cfg80211_debugfs_rdev_add+0x5c/0xe0
[  175.559757][T10978]  wiphy_register+0x1dfa/0x2860
[  175.561370][T10978]  ? netdev_run_todo+0x837/0x12d0
[  175.563042][T10978]  ? __pfx_wiphy_register+0x10/0x10
[  175.564795][T10978]  ieee80211_register_hw+0x2951/0x3fa0
[  175.566619][T10978]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  175.568586][T10978]  ? net_generic+0xea/0x2a0
[  175.570108][T10978]  ? lockdep_init_map_type+0x16d/0x7d0
[  175.571919][T10978]  ? rcu_is_watching+0x12/0xc0
[  175.573516][T10978]  ? trace_hrtimer_init+0x1a6/0x230
[  175.575259][T10978]  ? __hrtimer_init+0x106/0x2c0
[  175.576885][T10978]  mac80211_hwsim_new_radio+0x2c47/0x56c0
[  175.578813][T10978]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  175.580871][T10978]  hwsim_new_radio_nl+0xb42/0x12b0
[  175.582585][T10978]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  175.584498][T10978]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  175.586932][T10978]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  175.589383][T10978]  genl_family_rcv_msg_doit+0x202/0x2f0
[  175.591220][T10978]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  175.593241][T10978]  ? genl_get_cmd+0x195/0x580
[  175.594811][T10978]  ? bpf_lsm_capable+0x9/0x10
[  175.596407][T10978]  ? security_capable+0x7e/0x260
[  175.598029][T10978]  ? ns_capable+0xd7/0x110
[  175.599523][T10978]  genl_rcv_msg+0x565/0x800
[  175.601036][T10978]  ? __pfx_genl_rcv_msg+0x10/0x10
[  175.602709][T10978]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  175.604573][T10978]  ? __pfx___lock_acquire+0x10/0x10
[  175.606340][T10978]  netlink_rcv_skb+0x165/0x410
[  175.607952][T10978]  ? __pfx_genl_rcv_msg+0x10/0x10
[  175.609631][T10978]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  175.611416][T10978]  ? down_read+0xc9/0x330
[  175.612914][T10978]  ? __pfx_down_read+0x10/0x10
[  175.614488][T10978]  ? netlink_deliver_tap+0x1ae/0xca0
[  175.616253][T10978]  genl_rcv+0x28/0x40
[  175.617604][T10978]  netlink_unicast+0x53c/0x7f0
[  175.619247][T10978]  ? __pfx_netlink_unicast+0x10/0x10
[  175.621022][T10978]  ? __phys_addr_symbol+0x30/0x80
[  175.622690][T10978]  ? __check_object_size+0x488/0x710
[  175.624467][T10978]  netlink_sendmsg+0x8b8/0xd70
[  175.626103][T10978]  ? __pfx_netlink_sendmsg+0x10/0x10
[  175.627849][T10978]  ____sys_sendmsg+0x9ae/0xb40
[  175.629452][T10978]  ? __pfx_____sys_sendmsg+0x10/0x10
[  175.631246][T10978]  ? get_compat_msghdr+0x11b/0x170
[  175.632953][T10978]  ___sys_sendmsg+0x135/0x1e0
[  175.634533][T10978]  ? __pfx____sys_sendmsg+0x10/0x10
[  175.636289][T10978]  ? __pfx_lock_release+0x10/0x10
[  175.637949][T10978]  ? trace_lock_acquire+0x14e/0x1f0
[  175.639682][T10978]  ? __fget_files+0x206/0x3a0
[  175.641249][T10978]  __sys_sendmsg+0x16e/0x220
[  175.642794][T10978]  ? __pfx___sys_sendmsg+0x10/0x10
[  175.644525][T10978]  __do_fast_syscall_32+0x73/0x120
[  175.646215][T10978]  do_fast_syscall_32+0x32/0x80
[  175.647829][T10978]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  175.649962][T10978] RIP: 0023:0xf70be579
[  175.651325][T10978] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  175.657599][T10978] RSP: 002b:00000000f50b055c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  175.660322][T10978] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000040
[  175.662872][T10978] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  175.665441][T10978] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  175.668066][T10978] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  175.670678][T10978] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  175.673510][T10978]  </TASK>
[  175.806861][T10998] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1161'.
[  175.939929][T11005] 9pnet_fd: Insufficient options for proto=fd
[  176.087344][T11013] FAULT_INJECTION: forcing a failure.
[  176.087344][T11013] name failslab, interval 1, probability 0, space 0, times 0
[  176.099931][T11013] CPU: 1 UID: 0 PID: 11013 Comm: syz.0.1163 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  176.102628][T11013] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  176.105282][T11013] Call Trace:
[  176.106150][T11013]  <TASK>
[  176.106903][T11013]  dump_stack_lvl+0x16c/0x1f0
[  176.108096][T11013]  should_fail_ex+0x497/0x5b0
[  176.109277][T11013]  ? fs_reclaim_acquire+0xae/0x150
[  176.110561][T11013]  should_failslab+0xc2/0x120
[  176.111751][T11013]  __kmalloc_cache_noprof+0x68/0x420
[  176.113091][T11013]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  176.114605][T11013]  ? lockdep_hardirqs_on+0x7c/0x110
[  176.115941][T11013]  __request_module+0x2c6/0x6c0
[  176.117176][T11013]  ? dev_load+0x221/0x240
[  176.118263][T11013]  ? __pfx___request_module+0x10/0x10
[  176.119639][T11013]  ? aa_get_newest_label+0x376/0x680
[  176.121015][T11013]  ? __pfx_aa_get_newest_label+0x10/0x10
[  176.122440][T11013]  ? apparmor_capable+0x114/0x1d0
[  176.123708][T11013]  ? dev_load+0x1c0/0x240
[  176.124809][T11013]  dev_load+0x221/0x240
[  176.125871][T11013]  dev_ioctl+0x39b/0x10c0
[  176.126972][T11013]  sock_do_ioctl+0x19e/0x280
[  176.128152][T11013]  ? __pfx_sock_do_ioctl+0x10/0x10
[  176.129431][T11013]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  176.130712][T11013]  compat_sock_ioctl+0x318/0x7e0
[  176.131962][T11013]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  176.133325][T11013]  ? __fget_files+0x206/0x3a0
[  176.134502][T11013]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  176.135872][T11013]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  176.137174][T11013]  __do_fast_syscall_32+0x73/0x120
[  176.138427][T11013]  do_fast_syscall_32+0x32/0x80
[  176.139647][T11013]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  176.141198][T11013] RIP: 0023:0xf70ee579
[  176.142216][T11013] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  176.146927][T11013] RSP: 002b:00000000f50e055c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  176.149069][T11013] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000008948
[  176.151054][T11013] RDX: 00000000200002c0 RSI: 0000000000000000 RDI: 0000000000000000
[  176.153051][T11013] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  176.155058][T11013] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  176.156966][T11013] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  176.158916][T11013]  </TASK>
[  176.189364][T11016] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1165'.
[  176.372850][T11022] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1168'.
[  176.531435][T11027] FAULT_INJECTION: forcing a failure.
[  176.531435][T11027] name failslab, interval 1, probability 0, space 0, times 0
[  176.537233][T11027] CPU: 2 UID: 0 PID: 11027 Comm: syz.1.1170 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  176.539949][T11027] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  176.542668][T11027] Call Trace:
[  176.543528][T11027]  <TASK>
[  176.544272][T11027]  dump_stack_lvl+0x16c/0x1f0
[  176.545501][T11027]  should_fail_ex+0x497/0x5b0
[  176.546755][T11027]  ? fs_reclaim_acquire+0xae/0x150
[  176.548048][T11027]  should_failslab+0xc2/0x120
[  176.549273][T11027]  __kmalloc_noprof+0xce/0x4f0
[  176.550463][T11027]  ? __kmalloc_noprof+0x23b/0x4f0
[  176.551768][T11027]  ? is_bpf_text_address+0x8a/0x1a0
[  176.553095][T11027]  ? tomoyo_realpath_from_path+0xbf/0x710
[  176.554532][T11027]  tomoyo_realpath_from_path+0xbf/0x710
[  176.555937][T11027]  ? tomoyo_fill_path_info+0x233/0x420
[  176.557288][T11027]  tomoyo_mount_acl+0x1af/0x880
[  176.558720][T11027]  ? hlock_class+0x4e/0x130
[  176.559894][T11027]  ? __lock_acquire+0x15a9/0x3c40
[  176.561169][T11027]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  176.562831][T11027]  ? __pfx___lock_acquire+0x10/0x10
[  176.564165][T11027]  ? stack_trace_save+0x95/0xd0
[  176.565438][T11027]  ? __pfx_lock_release+0x10/0x10
[  176.566926][T11027]  ? trace_lock_acquire+0x14e/0x1f0
[  176.568313][T11027]  ? tomoyo_mount_permission+0x149/0x420
[  176.570294][T11027]  ? lock_acquire+0x2f/0xb0
[  176.571906][T11027]  ? tomoyo_mount_permission+0x149/0x420
[  176.573769][T11027]  tomoyo_mount_permission+0x16e/0x420
[  176.575696][T11027]  ? tomoyo_mount_permission+0x149/0x420
[  176.577650][T11027]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  176.579721][T11027]  ? get_current_fs_domain+0x184/0x1f0
[  176.581513][T11027]  security_sb_mount+0x9b/0x260
[  176.583280][T11027]  path_mount+0x129/0x1f10
[  176.584913][T11027]  ? kmem_cache_free+0x152/0x4c0
[  176.586679][T11027]  ? __pfx_path_mount+0x10/0x10
[  176.588417][T11027]  ? putname+0x13c/0x180
[  176.589951][T11027]  __ia32_sys_mount+0x292/0x310
[  176.591660][T11027]  ? __pfx___ia32_sys_mount+0x10/0x10
[  176.593580][T11027]  __do_fast_syscall_32+0x73/0x120
[  176.595420][T11027]  do_fast_syscall_32+0x32/0x80
[  176.597158][T11027]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  176.599290][T11027] RIP: 0023:0xf708e579
[  176.600731][T11027] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  176.606550][T11027] RSP: 002b:00000000f508055c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  176.609444][T11027] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000020000140
[  176.612183][T11027] RDX: 0000000020000180 RSI: 0000000000000000 RDI: 00000000200003c0
[  176.614919][T11027] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  176.617676][T11027] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  176.620401][T11027] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  176.623144][T11027]  </TASK>
[  176.677620][T11027] ERROR: Out of memory at tomoyo_realpath_from_path.
[  176.738323][T11041] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1173'.
[  176.907814][T11054] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  177.197243][   T25] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  177.348633][   T25] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  177.351325][   T25] usb 6-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  177.354926][   T25] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  177.367384][   T25] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  177.370708][   T25] usb 6-1: config 0 descriptor??
[  177.374235][   T25] usbhid 6-1:0.0: couldn't find an input interrupt endpoint
[  177.577065][T11057] input: syz1 as /devices/virtual/input/input17
[  177.653701][    T9] usb 6-1: USB disconnect, device number 7
[  177.966061][T11105] binder: BC_ACQUIRE_RESULT not supported
[  177.971668][T11105] binder: 11104:11105 ioctl c0306201 20000580 returned -22
[  178.244273][T11133] No buffer was provided with the request
[  178.248232][   T25] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  178.276541][T11138] FAULT_INJECTION: forcing a failure.
[  178.276541][T11138] name failslab, interval 1, probability 0, space 0, times 0
[  178.280175][T11138] CPU: 1 UID: 0 PID: 11138 Comm: syz.1.1192 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  178.282897][T11138] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  178.285719][T11138] Call Trace:
[  178.286559][T11138]  <TASK>
[  178.287294][T11138]  dump_stack_lvl+0x16c/0x1f0
[  178.288488][T11138]  should_fail_ex+0x497/0x5b0
[  178.289637][T11138]  ? fs_reclaim_acquire+0xae/0x150
[  178.290900][T11138]  should_failslab+0xc2/0x120
[  178.292079][T11138]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  178.293439][T11138]  ? __kernfs_new_node+0xd3/0x890
[  178.294720][T11138]  __kernfs_new_node+0xd3/0x890
[  178.295928][T11138]  ? __pfx___kernfs_new_node+0x10/0x10
[  178.297249][T11138]  ? __pfx_lock_release+0x10/0x10
[  178.298504][T11138]  ? kernfs_add_one+0x39d/0x520
[  178.299736][T11138]  ? up_write+0x1b2/0x520
[  178.300778][T11138]  kernfs_new_node+0x186/0x240
[  178.301985][T11138]  __kernfs_create_file+0x53/0x350
[  178.303222][T11138]  sysfs_add_file_mode_ns+0x1ff/0x3b0
[  178.304505][T11138]  internal_create_group+0x56c/0xf10
[  178.305830][T11138]  ? __pfx_internal_create_group+0x10/0x10
[  178.307235][T11138]  ? kernfs_create_link+0x1bd/0x240
[  178.308492][T11138]  internal_create_groups+0x9d/0x150
[  178.309812][T11138]  device_add+0x6d3/0x1a70
[  178.310917][T11138]  ? __pfx_device_add+0x10/0x10
[  178.312164][T11138]  ? __init_waitqueue_head+0xca/0x150
[  178.313517][T11138]  rfkill_register+0x1ad/0xb40
[  178.314743][T11138]  nfc_register_device+0x11f/0x3c0
[  178.316062][T11138]  nci_register_device+0x7f4/0xb80
[  178.317332][T11138]  ? __pfx_nci_register_device+0x10/0x10
[  178.318685][T11138]  virtual_ncidev_open+0x141/0x220
[  178.319950][T11138]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  178.321319][T11138]  misc_open+0x35a/0x420
[  178.322383][T11138]  ? __pfx_misc_open+0x10/0x10
[  178.323611][T11138]  chrdev_open+0x237/0x6a0
[  178.324776][T11138]  ? __pfx_apparmor_file_open+0x10/0x10
[  178.326192][T11138]  ? __pfx_chrdev_open+0x10/0x10
[  178.327537][T11138]  do_dentry_open+0xf59/0x1ea0
[  178.328766][T11138]  ? __pfx_chrdev_open+0x10/0x10
[  178.330024][T11138]  ? inode_permission+0xdd/0x5f0
[  178.331262][T11138]  vfs_open+0x82/0x3f0
[  178.332248][T11138]  ? may_open+0x1f2/0x400
[  178.333298][T11138]  path_openat+0x1e6a/0x2d60
[  178.334492][T11138]  ? __pfx_path_openat+0x10/0x10
[  178.335770][T11138]  ? __pfx___lock_acquire+0x10/0x10
[  178.337085][T11138]  ? lock_acquire.part.0+0x11b/0x380
[  178.338379][T11138]  ? find_held_lock+0x2d/0x110
[  178.339548][T11138]  do_filp_open+0x20c/0x470
[  178.340693][T11138]  ? __pfx_do_filp_open+0x10/0x10
[  178.341951][T11138]  ? find_held_lock+0x2d/0x110
[  178.343146][T11138]  ? alloc_fd+0x41f/0x760
[  178.344263][T11138]  do_sys_openat2+0x17a/0x1e0
[  178.345426][T11138]  ? __pfx_do_sys_openat2+0x10/0x10
[  178.346726][T11138]  ? __fget_files+0x206/0x3a0
[  178.347898][T11138]  __ia32_compat_sys_openat+0x16e/0x210
[  178.349236][T11138]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  178.350754][T11138]  ? ksys_write+0x1ba/0x250
[  178.351881][T11138]  __do_fast_syscall_32+0x73/0x120
[  178.353159][T11138]  do_fast_syscall_32+0x32/0x80
[  178.354398][T11138]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  178.355996][T11138] RIP: 0023:0xf708e579
[  178.357037][T11138] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  178.361692][T11138] RSP: 002b:00000000f508055c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[  178.363791][T11138] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000020000000
[  178.365778][T11138] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  178.367709][T11138] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  178.369690][T11138] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  178.371814][T11138] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  178.373822][T11138]  </TASK>
[  178.458246][   T25] usb 8-1: config 0 has no interfaces?
[  178.459680][   T25] usb 8-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  178.461975][   T25] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  178.469348][   T25] usb 8-1: config 0 descriptor??
[  178.578764][T11165] netlink: 88 bytes leftover after parsing attributes in process `syz.1.1197'.
[  178.581283][T11165] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1197'.
[  178.583572][T11165] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1197'.
[  178.585970][T11165] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1197'.
[  178.758203][T11125] syz.2.1187 (11125): drop_caches: 2
[  178.782875][ T5982] usb 8-1: USB disconnect, device number 10
[  178.927428][   T30] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  179.098991][   T30] usb 6-1: config 1 interface 0 altsetting 15 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  179.102603][   T30] usb 6-1: config 1 interface 0 altsetting 15 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  179.107095][   T30] usb 6-1: config 1 interface 0 has no altsetting 0
[  179.124618][   T30] usb 6-1: New USB device found, idVendor=046d, idProduct=c537, bcdDevice= 0.40
[  179.130406][   T30] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  179.133292][   T30] usb 6-1: Product: syz
[  179.134803][   T30] usb 6-1: Manufacturer: syz
[  179.136511][   T30] usb 6-1: SerialNumber: syz
[  179.357269][   T25] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  179.392126][T11181] overlayfs: failed to resolve './file1': -2
[  179.395815][T11181] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1201'.
[  179.519032][   T25] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  179.522427][   T25] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  179.525863][   T25] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  179.528988][   T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  179.532877][   T25] usb 5-1: config 0 descriptor??
[  179.536644][   T25] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  179.738949][T11172] input: syz1 as /devices/virtual/input/input18
[  179.805208][   T25] usb 5-1: USB disconnect, device number 13
[  180.318398][T11188] usb usb4: usbfs: process 11188 (syz.3.1202) did not claim interface 0 before use
[  180.381311][T11194] overlayfs: failed to resolve './file1': -2
[  181.362708][T11209] No buffer was provided with the request
[  181.572332][T11220] __nla_validate_parse: 1 callbacks suppressed
[  181.572369][T11220] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1209'.
[  181.709944][   T30] usbhid 6-1:1.0: can't add hid device: -71
[  181.713005][   T30] usbhid 6-1:1.0: probe with driver usbhid failed with error -71
[  181.738661][   T30] usb 6-1: USB disconnect, device number 8
[  181.895257][T11231] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1211'.
[  181.983977][T11236] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1212'.
[  181.986450][T11236] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1212'.
[  182.394796][T11267] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  182.415781][T11264] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  182.456991][T11271] overlayfs: failed to resolve './file1': -2
[  182.465991][T11271] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1222'.
[  183.408980][T11291] netlink: 'syz.0.1225': attribute type 1 has an invalid length.
[  183.426155][T11293] netlink: 'syz.1.1223': attribute type 10 has an invalid length.
[  183.449267][T11291] bond0: entered promiscuous mode
[  183.468238][T11293] ptrace attach of "/syz-executor exec"[5946] was attempted by "/syz-executor exec"[11293]
[  183.495579][T11291] bond0: (slave team_slave_1): making interface the new active one
[  183.498878][T11291] team_slave_1: entered promiscuous mode
[  183.502224][T11291] bond0: (slave team_slave_1): Enslaving as an active interface with an up link
[  183.755802][T11317] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1229'.
[  183.833854][T11321] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  183.836970][T11321] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  184.005150][T11330] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1230'.
[  184.388526][T11346] ------------[ cut here ]------------
[  184.390196][T11346] WARNING: CPU: 0 PID: 11346 at kernel/signal.c:2050 posixtimer_send_sigqueue+0xba8/0x1020
[  184.392880][T11346] Modules linked in:
[  184.394062][T11346] CPU: 0 UID: 0 PID: 11346 Comm: syz.2.1235 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  184.398082][T11346] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  184.400915][T11346] RIP: 0010:posixtimer_send_sigqueue+0xba8/0x1020
[  184.402638][T11346] Code: ff ff 4c 89 e7 e8 a8 42 9d 00 e9 7e f8 ff ff 41 bf 02 00 00 00 e9 87 f8 ff ff 48 89 54 24 10 48 89 44 24 08 e8 49 d8 3a 00 90 <0f> 0b 90 48 8d 7b 10 48 8b 44 24 08 48 b9 00 00 00 00 00 fc ff df
[  184.407741][T11346] RSP: 0018:ffffc9002550fbc8 EFLAGS: 00010087
[  184.409355][T11346] RAX: 0000000000000087 RBX: ffff8880717a25a0 RCX: ffffc9000c402000
[  184.411441][T11346] RDX: 0000000000080000 RSI: ffffffff815e76a7 RDI: 0000000000000001
[  184.413557][T11346] RBP: ffff8880221fc880 R08: 0000000000000001 R09: 0000000000000000
[  184.415625][T11346] R10: 0000000000000001 R11: 0000000000000003 R12: ffff8880717a2644
[  184.418186][T11346] R13: 1ffff92004aa1f7e R14: ffff8880717a2678 R15: ffff8880717a2660
[  184.420819][T11346] FS:  0000000000000000(0000) GS:ffff88802b400000(0063) knlGS:00000000f50b0b40
[  184.423272][T11346] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  184.425108][T11346] CR2: 0000000020044000 CR3: 0000000062ecc000 CR4: 0000000000352ef0
[  184.427244][T11346] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  184.429332][T11346] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  184.431430][T11346] Call Trace:
[  184.432318][T11346]  <TASK>
[  184.433115][T11346]  ? __warn+0xea/0x3c0
[  184.434205][T11346]  ? posixtimer_send_sigqueue+0xba8/0x1020
[  184.435766][T11346]  ? report_bug+0x3c0/0x580
[  184.436985][T11346]  ? handle_bug+0x54/0xa0
[  184.438148][T11346]  ? exc_invalid_op+0x17/0x50
[  184.439419][T11346]  ? asm_exc_invalid_op+0x1a/0x20
[  184.440765][T11346]  ? posixtimer_send_sigqueue+0xba7/0x1020
[  184.442310][T11346]  ? posixtimer_send_sigqueue+0xba8/0x1020
[  184.443884][T11346]  ? posixtimer_send_sigqueue+0xba7/0x1020
[  184.445594][T11346]  ? cpu_clock_sample+0xc9/0x140
[  184.446785][T11346]  ? __pfx_posixtimer_send_sigqueue+0x10/0x10
[  184.448196][T11346]  posix_cpu_timer_set+0x9e1/0xd30
[  184.449377][T11346]  ? __pfx_posix_cpu_timer_set+0x10/0x10
[  184.450672][T11346]  ? __lock_timer+0x1a9/0x4c0
[  184.451788][T11346]  do_timer_settime+0x26c/0x400
[  184.452952][T11346]  ? __pfx_posix_cpu_timer_set+0x10/0x10
[  184.454396][T11346]  ? __pfx_do_timer_settime+0x10/0x10
[  184.456162][T11346]  ? __pfx_get_old_itimerspec32+0x10/0x10
[  184.457889][T11346]  ? __pfx_do_futex+0x10/0x10
[  184.459349][T11346]  __ia32_sys_timer_settime32+0x1d4/0x2c0
[  184.461087][T11346]  ? __pfx___ia32_sys_timer_settime32+0x10/0x10
[  184.462767][T11346]  ? xfd_validate_state+0x5d/0x180
[  184.464140][T11346]  __do_fast_syscall_32+0x73/0x120
[  184.465562][T11346]  do_fast_syscall_32+0x32/0x80
[  184.466954][T11346]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  184.469030][T11346] RIP: 0023:0xf70be579
[  184.470456][T11346] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  184.477115][T11346] RSP: 002b:00000000f50b055c EFLAGS: 00000296 ORIG_RAX: 0000000000000104
[  184.479807][T11346] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000001
[  184.482612][T11346] RDX: 0000000020000340 RSI: 0000000000000000 RDI: 0000000000000000
[  184.485316][T11346] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  184.487652][T11346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  184.489866][T11346] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  184.492072][T11346]  </TASK>
[  184.492964][T11346] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  184.494969][T11346] CPU: 0 UID: 0 PID: 11346 Comm: syz.2.1235 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  184.497914][T11346] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  184.500886][T11346] Call Trace:
[  184.501815][T11346]  <TASK>
[  184.502678][T11346]  dump_stack_lvl+0x3d/0x1f0
[  184.504009][T11346]  panic+0x71d/0x800
[  184.505113][T11346]  ? __pfx_panic+0x10/0x10
[  184.506368][T11346]  ? show_trace_log_lvl+0x29d/0x3d0
[  184.507820][T11346]  ? posixtimer_send_sigqueue+0xba8/0x1020
[  184.509439][T11346]  check_panic_on_warn+0xab/0xb0
[  184.510812][T11346]  __warn+0xf6/0x3c0
[  184.511924][T11346]  ? posixtimer_send_sigqueue+0xba8/0x1020
[  184.513589][T11346]  report_bug+0x3c0/0x580
[  184.514799][T11346]  handle_bug+0x54/0xa0
[  184.515970][T11346]  exc_invalid_op+0x17/0x50
[  184.517274][T11346]  asm_exc_invalid_op+0x1a/0x20
[  184.518611][T11346] RIP: 0010:posixtimer_send_sigqueue+0xba8/0x1020
[  184.520354][T11346] Code: ff ff 4c 89 e7 e8 a8 42 9d 00 e9 7e f8 ff ff 41 bf 02 00 00 00 e9 87 f8 ff ff 48 89 54 24 10 48 89 44 24 08 e8 49 d8 3a 00 90 <0f> 0b 90 48 8d 7b 10 48 8b 44 24 08 48 b9 00 00 00 00 00 fc ff df
[  184.526029][T11346] RSP: 0018:ffffc9002550fbc8 EFLAGS: 00010087
[  184.527944][T11346] RAX: 0000000000000087 RBX: ffff8880717a25a0 RCX: ffffc9000c402000
[  184.530107][T11346] RDX: 0000000000080000 RSI: ffffffff815e76a7 RDI: 0000000000000001
[  184.532437][T11346] RBP: ffff8880221fc880 R08: 0000000000000001 R09: 0000000000000000
[  184.534782][T11346] R10: 0000000000000001 R11: 0000000000000003 R12: ffff8880717a2644
[  184.537510][T11346] R13: 1ffff92004aa1f7e R14: ffff8880717a2678 R15: ffff8880717a2660
[  184.539691][T11346]  ? posixtimer_send_sigqueue+0xba7/0x1020
[  184.541291][T11346]  ? posixtimer_send_sigqueue+0xba7/0x1020
[  184.543329][T11346]  ? cpu_clock_sample+0xc9/0x140
[  184.544892][T11346]  ? __pfx_posixtimer_send_sigqueue+0x10/0x10
[  184.546656][T11346]  posix_cpu_timer_set+0x9e1/0xd30
[  184.548005][T11346]  ? __pfx_posix_cpu_timer_set+0x10/0x10
[  184.549504][T11346]  ? __lock_timer+0x1a9/0x4c0
[  184.551166][T11346]  do_timer_settime+0x26c/0x400
[  184.552721][T11346]  ? __pfx_posix_cpu_timer_set+0x10/0x10
[  184.554258][T11346]  ? __pfx_do_timer_settime+0x10/0x10
[  184.556120][T11346]  ? __pfx_get_old_itimerspec32+0x10/0x10
[  184.558160][T11346]  ? __pfx_do_futex+0x10/0x10
[  184.559884][T11346]  __ia32_sys_timer_settime32+0x1d4/0x2c0
[  184.561909][T11346]  ? __pfx___ia32_sys_timer_settime32+0x10/0x10
[  184.564178][T11346]  ? xfd_validate_state+0x5d/0x180
[  184.566020][T11346]  __do_fast_syscall_32+0x73/0x120
[  184.567855][T11346]  do_fast_syscall_32+0x32/0x80
[  184.569581][T11346]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  184.571837][T11346] RIP: 0023:0xf70be579
[  184.573298][T11346] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  184.580178][T11346] RSP: 002b:00000000f50b055c EFLAGS: 00000296 ORIG_RAX: 0000000000000104
[  184.582632][T11346] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000001
[  184.584806][T11346] RDX: 0000000020000340 RSI: 0000000000000000 RDI: 0000000000000000
[  184.586927][T11346] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  184.589005][T11346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  184.591171][T11346] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  184.593354][T11346]  </TASK>
[  184.594767][T11346] Kernel Offset: disabled
[  184.596176][T11346] Rebooting in 86400 seconds..

VM DIAGNOSIS:
06:42:48  Registers:
info registers vcpu 0

CPU#0
RAX=000000000000006d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff851417b5 RDI=ffffffff9a6672c0 RBP=ffffffff9a667280 RSP=ffffc9002550f528
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000008
R12=0000000000000000 R13=000000000000006d R14=ffffffff85141750 R15=0000000000000000
RIP=ffffffff851417df RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020044000 CR3=0000000062ecc000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000c400000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=dffffc0000000000 RBX=ffffed1004815001 RCX=0000000000000000 RDX=1ffffffff1b05f9d
RSI=ffffffff8bb16cc0 RDI=ffffffff8d82fce8 RBP=ffffc90025d47748 RSP=ffffc90025d475b0
R8 =0000000000000001 R9 =fffffbfff2d36db0 R10=ffffffff969b6d87 R11=0000000000000004
R12=0000000000000001 R13=ffff8880240a8000 R14=ffff88804c69ec28 R15=000000000003ed00
RIP=ffffffff8b1ac645 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7205350 CR3=0000000072418000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=ffff88802b63ff00 RCX=ffffffff818d6ea4 RDX=ffff88801cef8000
RSI=ffffffff818d6e7f RDI=0000000000000005 RBP=ffffc9000045fd78 RSP=ffffc9000045fca0
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=fffffbfff1bb8bee
R12=1ffff9200008bf98 R13=0000000000000001 R14=0000000000000003 R15=ffffed10056c7fe1
RIP=ffffffff818d6e81 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f71c0360 CR3=00000000756c2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fda181a8 Opmask01=00000000003fffff Opmask02=000000002bbfffff Opmask03=2040000404420020
Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 69253a6925632500 3d45444f4d564544
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcf25efb00 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00ff000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00ff000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1c1f115c435d4316 10120300161e121d
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5c431d1c1a141601 5c43000611171d5c
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000560090003078 30004e4f53414552 5f4b434f4c425f57 485f4c4c494b4652
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000560090003078 303d4e4f53414552 5f4b434f4c425f57 485f4c4c494b4652
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000560090000d45 0d004e4f53414552 5f4b434f4c425f57 485f4c4c494b4652
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 656565692f39346d 697377682f6d6973 77685f3131323038 63616d2f6c617574
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000b1 0000000039356c6c 696b66722f303579 68702f3131323038
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000231 0000000000000000 0000003100347400 306d656d702f6b63
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 264c383a3a264f38 3a3a264e383a3a26 49383a3a2648383a 3a2633383a3a2632
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692054524f50202c 2064696c61696d20 0070253a20252054 524f504d49005452
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692020520050202c 2025204f504d4900 0061253a20252000 2527204d49005452
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=dffffc0000000000 RBX=ffffc900005f8838 RCX=ffffffff90b2d3b4 RDX=1ffff920000bf108
RSI=ffffc900005f8eb8 RDI=ffffc900005f8838 RBP=ffffc900005f8eb8 RSP=ffffc900005f8788
R8 =ffffffff90b2d3ba R9 =ffffffff90b2d3b8 R10=ffffc900005f8838 R11=000000000000862d
R12=0000000000000008 R13=ffffc900005f8848 R14=ffffc900005f8840 R15=ffffc900005f1000
RIP=ffffffff8148ecae RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000055cbcebab2b0 CR3=000000007241a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000004800000000 0000000100000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000004800000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000