last executing test programs:

7.217298766s ago: executing program 3 (id=3908):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x40042, 0x1fe)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
rename(0x0, 0x0)
get_mempolicy(0x0, 0xfffffffffffffffe, 0xd, &(0x7f0000ff7000/0x3000)=nil, 0x2)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000000))
sendmmsg(r0, &(0x7f00000002c0)=[{{&(0x7f0000000200)=@ethernet={0x306, @local}, 0x80, &(0x7f0000000a40)=[{&(0x7f0000000280)="a8d007c767dac066248bef2099d2b0c160c75f0f2480ec026682d8bc1cb103d2a2a83f5ec79a282c3901436195957baa88f47b113c", 0x35}, {&(0x7f0000000440)="513582478d8d0dc678b9db757fcaeed7431d61e6fa5e65eb5fd12cf3daac7c575edb6e8a94e5bed7c897556c88424f84d69ff205fd2933c5e3b0d119c5c2d59b0412a5de01ea08f01e193f441731fd7a77289a108459cc56d67389da39992cda65e90ac32f3096cfce0e71474efb5218ac5ffc7ca5eabe8985f14eea311a2032e6ff46b607b2b84fb9c478b711144b15313a06d1f116088ea11895aae4db24056f14675c2181a21dbcd2", 0xaa}, {&(0x7f0000000500)="a619f420645aed53658fe04b2574657e80db642ee1a07409078d3b6d119aad5c4a25fec820443eda79695b927eba7d6fbc7f7ac3875b94dc0a59522ae78dbe20983e62db7ee1683edcdc4ccbac9b0a525fafe09298bbb5b3874d9aa1f89429aaf54f18e70771566555da54d4c145633e1555eb9d75b2b25aac88d088b77db7b46e86e98ea087fa17ed41326301472baf", 0x90}, {&(0x7f00000005c0)="9982e9465ce248b2808d74ad66992a8b72381da818d562f829fbe4cfcb9ec9ebafdc65863736cde052d77abe7144d97a54ee8bf10d9e8ded2c65e3133bba332ba766ae007a9785b9a7ff829f38917c65526e3f2a15fb1dd99d3a1616d8fef18b6f8ac8c39431643beca57b645afc1142be9f533e0521b03fe01f56bd8d535f2e2dd67e004b7257d8d2f6e1276cafa70bbea6202f81a803628ece71462d02958f5ce606924860b2aba1a493f05b787216593a", 0xb2}, {&(0x7f0000000680)="ab0082ddbf5083d4dd1ef46eeef9749555fbcda45d1b1c72227955aad6d05de4544cf43a14e69a0b99f13f714d998f68df8b8224db89ad3dfe7c79778d964c840a6de997e7c6a138a071ed6b665ca3ab1bc0e3dba2600fc5d8ba31b3dde47edbd88cd1a7fc9eb011f8437bc0f580ab3526", 0x71}, {&(0x7f0000000700)="05716399b9760d0910c360e49d212cb17ecb546bed9c3756c27820d6cb76568481d26b558a3f09cb996cab2aae5c6869781947610e2d8178f74c41151dec3bf2dd7e2e48d67868b40a9a4d1c60883aae7680b5fe87d6772cc862836f9cf17e4d5267a5b8df6c0c8e2a5223ea09fcdcc921e113418de18d0b045d27e13af8bd270685835a7817c6c963b8f7a950ef53c3374e78cc7f7ee12bc1970b7114c9bc54d8cbe12aedd13f59c9dc4dd9243547f219", 0xb1}, {&(0x7f0000000c00)="4e86a8374a4ada647190b906d4c142e43197ba5fb68b7408d23b1d01df59f869bc793f01d2217257de5d97d025a6e63a76034d6c4cce9a8087678b8f77acb26f74b94dca6f92970628722ec93b2649a661112b83324be5010f7a709cf669af79efa51382bcc21e0c6d6daae32e3580c3f2d72ad8ddbc8f0d17fdd957ccac82f94d3dd88cb4e0c88e7260dcf6dd257fe18b99a0b9969f641678161537d6", 0x9d}, {&(0x7f0000000880)="11c127451990d184e941da122835f1f9d7012b65b7b96f22fc891de43165a25feb0b13723d2bccbb70c2a3db4cc019a4bef233fc4a2f7222ff1396f73e1d5e814c04875192264c290d8cdcf93f9ba974dec13c807eff9c2d2253aadcab9658358a1cff15d7c927bf30fd083dd44030484459444e577acc8368d31e88771aef447ac0f4a16548d4d5ba7ddcc294d0b471dcd2d37aebc2931e57603a5721a97ac4596a723b65c064f07b550ce9ab941fd5e8ca63239acd76ec521dac43b0d532e298a083791dc1b4c58c929e4c", 0xcc}, {&(0x7f0000000980)="aef6691da01908472879560592aad06d2035df4291358168abcdfad97bb8dc715ab47ef1b57033bba01b4307d8948e377825075a953a41d58bb253c81ba83a4604431ecb380979756fa616f359dd7da0df950f57edddd7903a98520e9eb69cbb2d9ef5d6addee8557b17d82c1bf4942228d23f6b2b498b45900e3a0673766c6534f9b5b992ebe043adb1473b5279f499304b55ee05e3026e381fa0a1fd43504f37a196aa2a68", 0xa6}], 0x9}}], 0x1, 0x20008000)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000640)='.\x00', 0x0, 0x0)
r5 = openat2$dir(0xffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x412041, 0x84, 0x18}, 0x18)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r5, 0xc0c09425, &(0x7f0000000ac0)={"b4132202d4679699c33b18b29a8926c2", 0x0, <r6=>0x0, {0xffffffffffffffff, 0x9}, {0x8, 0x1}, 0x6ec, [0x6, 0x4, 0x100000001, 0x1, 0x2, 0x0, 0x3ff, 0x80a, 0x2, 0x4, 0x3, 0x3ff, 0x2, 0x40, 0x2440000000000, 0x8]})
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000e80)={{}, r6, 0x2, @inherit={0x60, &(0x7f0000000b80)=ANY=[@ANYBLOB="01000000000000000300000000000000090000000000000007000200000000000000000000000000ad230000000000000500000000000000b0000000000000006000000000000000faffffffffffffff00000000000000000100000000000000"]}, @name="43b508e75535b624f35fe914eb388c40b05eceaf781ea25b1a111d39426c7bc16ce3921d7ea686ffb1a10781aeba817bf52c3f7d93ad2556fb91f060a97b375e8396ae9a053f72cb872e001c66dd8d76c7a0df5a273af89abb9b949b9cf43734236ef46682d9668504dc6c274f5a90ea35faaf56b255a9b785c16948d4b355654e96beb150c4c07c451f4236e4474033b17725e32ebef48b01c08dbd1830c0cd390ccba74f95e5ce76a36e15632b05aaa0c7f7bb914250ff39e1e2a4f2fd7e7772f9521db61218b2a211ed63b6bc934b875c2df2be4948910be2cc639879ec9cb51d093342a03954116f40191867c57c96c258034c982c0a43e2e637e2294984808964987c4f8dbcbed0da3b6f1e144e301a62e7d0aab0cefd207bdea80d615f7f1b8a173bbdafb095218593a5a7a1757626757efdc1543846ecf4817548eaccd0e331227f02e644f79c8f34b0f8b3d8f42ec01796b9702ed84e591e03e89bb8482ce98bd9844173c0b7c0a296125c9375aec54dc374fe2b9345f07d34ec8e80a8338fc14ee7fd91cb3ad48c4aa81becfe12d1d663ea4de63f8d45ef7b16b49cc3b324935861a67198254292b0d2933a203946d039191ce6780a221434718d2de00bb7ba46f168d610600c1a35fde1a2f9be89b2edb7022b0c2d6215ce02a2a74ccfbd75faf72d5cdb1925cb41cd1175ed40aaea5385853e76012dc471cc9e6fd2374a532bd17b095b3d03759524bcff4568be0e0661f7c52e68ab257406277fc6b2a5f08e47728bc2cc2abc521fbc23d2781c55c5dd7b56d507fea654de1e979571f8983c62ee43c5a0517ceb64b91c438b88f075a36ea9807b6ef11a6033f68dfd16154c4cde638dc262445790294b1717db62aa7bdf5c85def0030e12d4c97707cb43f44973afcc9bc79f37b66783ade7b0226f743df823bc9b7e0782069f82adadd716d5b5d5153fa9abcd088d7c3ca20e4cce50fc620c2cc0df86e806b7a814a0c8a9a09e20c3e432716ec55bc32890626910f0a9ee9779a9e1ce8a633038b86fd976ad34474b4e63475c0f35541e72b3ec34ef832f1c69d73dfb019b4b82b8e7fa803953fbe2e51691ef77773e36caf3db967bd0b4eb3de1f672139b2ef9978574211f149ad71ccb62e20751aedbf3a5633ad6d97e6e8f2fc3353ebb7141dbac5ff6fe318cc51521170e195ab459ee754430696d3225abd733a535e839a6a724054002602c795bb7de102eaf6410f0e4e6c0fc1bdb8408a00b52b8efa867a12e1620592c747e0b7195aaaf874aefed86c9054881ba9cc01c3de722833867de09302555b83495b2f04c77ba5afbcd42c4439086038e236e5ead9469c1d5a8252ee8d010c4bc19cdcf57f1e27c7c666e62633da7cc3266b361665dfc4603f6b751b0500d8274296c06f489e97762430a8fd2c4c49473d5903ede5d11abf90743050b4ddb601b545ffb880f8f3bbb85c88921139c1fcc0604f94b027da55849ed8539ccfe51e115f75817f454b695ec8249722c244b20c739319a6484af9e7e9969a05b6832b497935a719147b4a9b1ecc600e47b3da88df3da92e4ac882deca342a016ac72c86f29216c5761342da164b62b6737c88e9425812be437ae7517b5e1732d3287dda8aec5f32a0edbc12183f7f4f49bb0017c7db1c674c9471dbce885c22cf48c465aed3d08a1a03ec6c3f0cf7ed393ff39b003a40aacaab0e8f9e45810906fea915086b3b63ebdb4d9ed8487d864b06d499a0ad0de69c5acf38432b256adb05798ce2d52991dc480f3eaa7dac1248e06a530c4ea0d769088f90ff0e1a5a87a99aab37e3b0ce7eb8de79c1690d35c493e6d48153e81701646e3d0259132c1b2bde2b1387667105d40cde8ab57952a75ece95bbed826a15785ef4d5c5bc020606b966f2b818da99ad8cd1031869d8fde974f1e6fd155722c92376299e6463938771f8da484ca0a5beabff8df7ed81be7605d05511f9380f28f2ec426d9d74b7cd29faa6087633235e68969bd191c4a07b1f56cd871fb32e6801d9dcee2edf3252875179d94c0e0cf7ea10c312cb62b9926b1f23220e23d8adae46de8f50f8133bf789567e1b4395c0fc1d9ddcb180cac4a6e99f191056e2d661b7a1c9ba7329024eb550ca07b8ef0109be10afbb79f2f6af359eb6a39bba0fce7d2f4d70017ddc39b57201061c7d18c553cd434722cac08bd19122cd075a9c1360dcafe60e42006583a176c3063ed93ac523288ceda8de42395139fd364576037843a5ca7a3acea155561b2620f18b9c8f9dc2e2084b4d44026ae0ade9e5593e010153dd479f0f9ecaf19f7e1e5ade81800ebbbf9e358047d2487f08647afb433ac7d194bd76dc875555d6814e836877cb00e9906fb969c9ad9dcfbece8e2d36423d25d74847dbc4989c6490242e68f310963cec66830ceb669f12f786c69fc6a444ed242629d6196db139e784372b77c4923145d4749c2549e1692c6ece7d12677bb51f94b9489f31d5ee4bc144aef879f72108f43e292a06807d31444d50ecd8366cc28ac2b76c5e196f30bdaf966c0d7a173ab931616739ffb2bbd0c78b9853a95e5c5e1163d5943ccc86a8d2a82aeba94a36210516aa1620bf5d6f610e017df0489367f3226b250e8acbc98e44a4bdf5ffb8036a9511ad9406e29f39712c9b9db82d79a1e5e88bf62baf1c92c3c30f7a0e9991eb75e4202ed9a68f72b91b83d911d7caca03bb6b59aee00e4887c9cdf031244c0c35624342e840a6c6d25d5d80cceb966672d0cc55a69a586c1afe496aa70ed531bcddab85a1cbb2fd51ef1cbefaa07ffe04f5c5aedbc3ad45628f54ac327ee2ac3fb67e8fba71f6ad3a07ca223fb5fd91ae96db5257ac5fbd2713ae391d79b00fc8af6cb8e5a16a294678c55825f04b56b58aa3efdc7b3e4c2761afeb01df7c1d2dd68f702793195b4ded4a9cdb1f4df538fabda81b064191b3a936205aef2722c85d64ad5d23698f346fdca563cd5f3353cbfae038683c707abc122dabc2965ea26809dbb21685c95cb1c3fb75f125ef945a93beaa236fa7fed4f9dee4eae83a2db779bec33309b8b634afaf501ceba240f99596e1efe558bd8e3eac660f80a90c3d0c9556d535845bf01d73babb6f0abd8ac85e790942325361fb1072c536d3ba854bad03908fa1aa2c0fad37ee9de4d087cf3b03b016817ed1edc86e98d60035d73e34a7403e9888ad473640ffe5bf23950c5510f8f55f24f518a3b29f6f676b4c249b11262a7cf37950d41055b18bc4514bd14919cfd32c670f02449c8358421c19b6d75331de12dbb69d1f380952369b87b967abca34d3028f7be2bf93ea1a82dc26d479c4ceb42b14eb4fef986fb1fa2352f91e681877be66fdbe580b886d6a5c68118cb59d5d42f28ee036954dbaf071791c7fc61c255a3beb362f328746ce4a567a7afafb40428e482b430c4c0fc1f436357c05a1d391ede9e58121f24c672a44f44140e36a2b7e874fce02a314314b876110637a2909e60d3bce15f42c6b2edf410832c36efeffb33dec671ccc367b775c20335374a9961e36d9ca13c8f0a698d18332dfacf2bb0fa03952d9bba130ed24b598c66256ad886a8cfc2b2176d7e495c7bfd7bc7285e59f4905e24837a1db256982357b4ce3f7d2e5877e596fe6fd9d0c0721b23925f9a2b48a885e07caf58a8498a45d6787f91bf1d43908a51b423b5e59044cad34bf31e0513270e5e533c33436fbd262542254ffef611f2eb318f45347ae813d168cfe09beb103014a28d35fc8ed0f0d3df46e6c43b3243a70a90c25db14097ff7170a74146b820476556ccc0cbe947672d9274265d4a9747f4169aefb4a01a03741b734c485ce475752bd30b1bb9f8c592a59d61ca50b1e1cfdade6d9b03bed055c0e61adaa4ec019c902b0a021a858cdd49e262694d435f54eaa55d8e9881458f63b127c1b1d5e979888b6ebe06ddbaf110f30e26f16c83687b25a39e4c67fda5833c997b9b5f9c550fde7fa1339b792f8aac62cb06783d4a57bb51b3c617aea1bd670ca6806289aeabdb39d86039001849278b4c06f9c4c7245c91d2151a49dc8e901b107ce150a3c3b20bd7e096550f75ea157cc7ea570f659fdb13a6523366488168ba3c25af00c22c4266405904f5b298151f0dd2cc8217c152ddbc8b59a4d2c67ce8a5ebbf3d844c66aae2698fbe9c69e6e3efe5e2b5adf318ac0d9b951b2b8bfb227deccc7686fc1b7630868adf5a9b2bd31f01abf78df62ce1f0e920b4950ef23c7a58c87297d64030f1a77d83b8b30f8f47899269443fdabe0742690f927aa722666d87c2abaaff7ac7b660e3e876d14c88237938be9c99a461bec62fedf11d3f690625fa79825d462eebc8d062659bdc414d4c9165930ab6902396ad0e511e2e8f6e2fb20c5af089fe5f78910f5a0848358acb16c7de0933a78be9fb1cde552706190797127de8f7f77ff2cf855e52cd27ea5f99ff3fb0869f08f4ae04054839ff42080a65fec332c77492b195a1f84e503a9489d0839f5e8ad2b99e21fa419a008a81242a614c98b3340aeb64f0090c72f79fe2f36addaa75b5b482dca17d0ef14d381fe8f062d5d233ddbb6a29820c14681e5cbcba76048a01ef59bff5873b0434a3392c8985fcd1c3c8679a5a4a248021625834f48881c7f018ed2bfafac7af8feee835040bc3066e6ffc84b8d7f1b9ad619d5d9a5fa095cb2b7c5734be2d31fd99a50bcab8539c26506bcc4ebb6ef14ad6ffd8e71d6004ff4189b77c4040c942eaddbc7096243b1d01e08f70ba6b72eec219576ae9890a44eedc43371cba1d1e0453a2359d0f11627dfaee2b0546938a8183bdb61c345ff525760b1fd9ee2cc4406e777fe0e32219387e5b66d04eb13d8c5fc6b7b1894975164f19a14778b0d9e93f64095bff988aeb02c6ad464793c551a680bc3461b2fd11997b7f0086edc29a6395fe41bd40cbc52a6cf11e45f8495c9dbec30409280599263dd3e4be31c368e088ff21b75d8ef7a1f2d415950ed0b7bbfa7f6741882b689b2d1642ef0f3f5fe6a59b9f6aea56aeb45611dde9ac92449cdb4db0185e9c899b8780da54de8624e89979108f271fab85178208de2fdcf4269c38aba83dbddae679be8b36c6babd6dd619180e078283f93cc60c87c95bac2e1d962f9d66a52d935a379320d8f9b16dc457e4b0406b27d7521583a4dd9757c2f03cdafecdd7916aeb0c6b6f4cb884fb051afc4a1f28c587dba7fb1a3c7955a60182357107b8c646d0799460bce1ef99b9b640b0e8c20726aa22ea7d037cf0b11e6d3d038b818508e11bd44d619a5d642469b42ce1a4cd97f7ce4c27714d5c99a24585e1c5357ac92fb42a1d870154c29c81f5cb7ebab72ec8362135f9c64d3964275dab8a162d189b336f151f90f5e11d46171b769216cc8b3723b5e6af225250824514209fd98b56d41fcf37e5b22c8c3e23834b3c58f4c40a8ceebcfce2e1a2107d9b9116796a7b9ebe0c12d31521b021357d6c05247541c3e30b582913f2615e9adfff206faef3378dbc17b844e133285a360bd6a1b24b32284dce3a970e0724f87a7c6be77f0c1042b4a2763c628ca89077251e435eb9a77b5cba22b85de2227b014a60b17c041be8c45d2656121697a6718f089956b78ae4064e7ffb4703a2404bf4d79e4b5dc6dc089b07d092e7bb7d4e66087c7433e66167d7e31d1a1b409d1321061ad9b6d0bd79ecb1bc"})
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=@base={0x5, 0x3, 0x4, 0x103, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000000), 0x1000, r7}, 0x38)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x43, r7}, 0x38)
ioctl$NS_GET_OWNER_UID(r3, 0xb704, &(0x7f0000000140))
lstat(&(0x7f0000000dc0)='./file0\x00', &(0x7f0000000e00))
r8 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x2, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r8, 0xc10c5541, &(0x7f0000000300)={0x0, 0xfffffffb})
renameat2(r4, 0x0, r4, &(0x7f0000000200)='./bus\x00', 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000300)=[@acquire], 0x0, 0x0, 0x0})
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000040)={[{0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2, 0x0, 0xf5, 0x9}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x8}, {0x3fb, 0x3f, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x40}]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66ba4300b006ee0f01c40f009b27000000b9800000c00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a000000328fe858b660002fb90d090000b800680000ba000000000f30", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

6.917085933s ago: executing program 3 (id=3909):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000080)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000001a80)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)={[{@workdir={'workdir', 0x3d, './file2'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bind$nfc_llcp(r1, &(0x7f0000000000)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "0f03c8c7e8da000000000000ffffff017f000000cce67e1d0000e565aa9a9d32c7627ffe7a54cdbd77b3000000000000000000060000000000000000deff00"}, 0x60)
getsockopt$nfc_llcp(r1, 0x118, 0x3, &(0x7f0000000140)=""/192, 0x20000057)

6.383802015s ago: executing program 0 (id=3912):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x4, &(0x7f0000000700)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x97}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x700, 0xe, 0x0, &(0x7f0000000300)="14fd54ab72df97e6256c00000000", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

6.249752723s ago: executing program 0 (id=3913):
openat$vimc0(0xffffff9c, &(0x7f0000000080), 0x2, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r1 = userfaultfd(0x1)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
r2 = socket$netlink(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_io_uring_setup(0x67fd, &(0x7f0000000100)={0x0, 0x203400, 0x412, 0x2}, 0x0, 0x0)
r4 = io_uring_setup(0x4d63, &(0x7f0000000080)={0x0, 0xd974, 0x0, 0x2, 0x2d6})
io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
r5 = getpid()
process_vm_readv(r5, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(r5, &(0x7f0000000340)=[{&(0x7f0000002700)=""/4096, 0x1000}, {&(0x7f0000000700)=""/130, 0x82}], 0x2, &(0x7f0000000200)=[{0x0}], 0x1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x8)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
getpeername$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000000c0)=0x8)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r2, &(0x7f00000005c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)=ANY=[@ANYBLOB="2c000004", @ANYRES16=0x0, @ANYBLOB="10032cbd7000fedbdf2501000000060003000500000006001b004e22000008001700", @ANYRES32=r7, @ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x20000051}, 0x805)
ioctl$UFFDIO_COPY(r1, 0xc028aa05, &(0x7f0000000080)={&(0x7f0000c15000/0x1000)=nil, &(0x7f0000508000/0x4000)=nil, 0x1000})
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=<r8=>r0, @ANYBLOB="010000000000000000001000000018000180140002006e657464657673696d3000000000000008000a00040e00000800090000a800000800070000000000080008"], 0x4c}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x0, 0x6, &(0x7f0000000680)=ANY=[@ANYRESDEC=r1, @ANYRES32=r4, @ANYRES8=r6, @ANYRESHEX=r2, @ANYRESOCT=r8], 0x0, 0x6, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x1c}, 0x90)
socket$nl_netfilter(0x10, 0x3, 0xc)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r9, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000009c0)=ANY=[@ANYBLOB="48000000000101040000ff0f0000000002000000240001801400018008000100e000000108000200e00000010c000280050001000000000010000580090001"], 0x48}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)

5.920158034s ago: executing program 1 (id=3914):
socket(0x1e, 0x2, 0x0)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCL_PASTESEL(r0, 0x541c, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NFC_CMD_DEV_UP(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x44050)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x0, &(0x7f0000000040)})
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
r1 = syz_open_dev$sndpcmp(&(0x7f0000000000), 0x1, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r1, 0xc25c4110, &(0x7f0000000080)={0x3002000, [[0x7fff, 0x0, 0x0, 0x0, 0x1], [0xfffffffc, 0x0, 0x0, 0x4, 0x4], [0x403, 0x0, 0x0, 0x0, 0x0, 0x3]], '\x00', [{0x0, 0x5}, {}, {}, {}, {0x2}, {}, {}, {0x0, 0x4}], '\x00', 0x100})

5.713373714s ago: executing program 1 (id=3915):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000080)={0x3, 0x1020d, 0xfffd, 0xf}, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r2 = syz_open_dev$MSR(&(0x7f0000019340), 0x0, 0x0)
read$msr(r2, &(0x7f0000000300)=""/102400, 0x19000)
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100), 0x141a42, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
syz_emit_ethernet(0x82, &(0x7f0000003300)={@random="195d0700", @random="77b6d4f11b32", @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "aac4e0", 0x4c, 0x2c, 0x0, @dev, @local, {[@routing={0x2c}]}}}}}, 0x0)
execveat(0xffffffffffffff9c, &(0x7f00000001c0)='./file2\x00', 0x0, 0x0, 0x1000)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/block/loop0', 0x0, 0x0)
close(0xffffffffffffffff)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x17, 0x3, &(0x7f0000000240)=@framed, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x80)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000000)={r4, r5, 0x12}, 0x10)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0)
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f0000000280)={0x1db71897})
r7 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000300)='/proc/sys/vm/compact_memory\x00', 0x1, 0x0)
sendfile(r7, r6, 0x0, 0x23d)
r8 = socket$alg(0x26, 0x5, 0x0)
getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(r0, 0x84, 0x74, &(0x7f00000000c0)=""/28, &(0x7f0000000100)=0x1c)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000000140)={<r9=>0x0, 0x55, "fbe1c073d5ae2234f679fb7296c5be956d33501948577ad4d6184b2667d2824ab7115ee24547a1fdb880ffd0d3fecd77102c3b8ecf4e4386375091f19de5a4484c2e55f5a99b6aca636ed72737c2a4f64f0aff9e31"}, &(0x7f00000001c0)=0x5d)
getsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={r9, 0x100}, &(0x7f0000000240)=0x8)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYRES64, @ANYRESOCT=r8, @ANYRESOCT=r8, @ANYRES32=r8, @ANYRESOCT=0x0, @ANYRESHEX=r8], 0x1d)

5.323241221s ago: executing program 3 (id=3916):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x1, &(0x7f0000000180)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
setxattr$trusted_overlay_opaque(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x0, 0x0, 0x0)
keyctl$setperm(0x5, 0x0, 0x20003024)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x4000}})
lsetxattr$trusted_overlay_opaque(&(0x7f0000000040)='./file0/file0/file0/file0/file0/../file0\x00', &(0x7f0000000200), 0x0, 0x0, 0x0)
read$FUSE(r3, &(0x7f00000021c0)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r3, &(0x7f0000004200)={0x50, 0x0, r4, {0x7, 0x1f}}, 0x50)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000200095"], &(0x7f0000000000)='syzkaller\x00'}, 0x90)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x14, r7, 0x701}, 0x14}}, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x0)
ioctl$TIOCGPTPEER(r8, 0x90000915, 0x0)
ioctl$TIOCL_GETKMSGREDIRECT(r8, 0x541c, &(0x7f00000000c0))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000001000)='sched_switch\x00', r5}, 0x10)
r9 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$kcm(r9, &(0x7f0000001900)={0x0, 0x0, 0x0}, 0x20040000)
sendmsg$inet(r9, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @local}, 0xfc, 0x0}, 0x30004001)
r10 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r10, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030022003505d25a806f8c2394f90435fc600400110a0a740100053582c137153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
syz_fuse_handle_req(r3, &(0x7f00000066c0)="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", 0x2000, &(0x7f0000008b40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)={0x90, 0x0, 0x0, {0x100000000404, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x3, 0x1000}}}, 0x0, 0x0, 0x0, 0x0})
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0x1)

4.292288034s ago: executing program 3 (id=3919):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00'})
socket$inet6_sctp(0xa, 0x1, 0x84)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r1)
write$tun(r1, &(0x7f0000000640)=ANY=[@ANYBLOB="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"], 0x15f)
socket(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000001880)='numa_maps\x00')
pread64(r3, &(0x7f0000000880)=""/4096, 0x1000, 0x0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r4 = inotify_init1(0x0)
fcntl$setown(r4, 0x8, 0xffffffffffffffff)
fcntl$getownex(r4, 0x10, &(0x7f0000000140)={0x0, <r5=>0x0})
r6 = syz_open_procfs(r5, &(0x7f0000000600)='fd/4\x00')
ioctl$FS_IOC_SETFLAGS(r6, 0x40086602, &(0x7f0000000380)=0x85000)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, 0x0, 0x0)
syz_emit_ethernet(0x42, &(0x7f0000000180)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x21, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @redirect={0x5, 0x0, 0x0, @remote={0x5}, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast2, @dev}, '\x00\x00\x00\x00'}}}}}, 0x0)
memfd_create(&(0x7f0000000400)='\xa3\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\xf5 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xacz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8ck\xc6S\xc3g\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\xc9\xff \xd8\x9d\xad\x11\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\xd00\x88y\xebX\x92\xd5\xbb\xa1h7\xf3\xe0\x0f\xbd\x02\xe4%\xf9\xb1\x87\x8aM\xfeG\xb2L\xbd\x92-\xcd\x1f\xf4\xe1,\xb7G|\xec\"\xa2\xab\xf6\x84\xe0\xcf1\x9a', 0x0)
execveat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d00000067"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r7 = getpid()
process_vm_readv(r7, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)

4.142089266s ago: executing program 0 (id=3920):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa10000000000000701"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x5, 0x4, 0x4, 0x5}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x75}]}, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10) (fail_nth: 7)

3.873951s ago: executing program 0 (id=3921):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="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"], 0xd4}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f0000000500), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000900)=ANY=[@ANYRES16=r2, @ANYRES32=0x0, @ANYRES32=r1], 0x44}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
gettid()
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x6, 0x6, 0x80, 0x42, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1}, 0x48)
r3 = socket$rxrpc(0x21, 0x2, 0x2)
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x0, 0x1)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r4, &(0x7f0000006380)={0x2020, 0x0, <r5=>0x0}, 0x2020)
write$FUSE_INIT(r4, &(0x7f0000000100)={0x50, 0x0, r5, {0x7, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x59}}, 0x50)
syz_fuse_handle_req(r4, &(0x7f00000041c0)="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", 0x2000, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r4, &(0x7f0000002100)="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", 0x2000, &(0x7f0000000b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r6 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x0)
r7 = dup3(r6, r4, 0x0)
pipe2$9p(&(0x7f0000000240)={<r8=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r8, @ANYBLOB=',wfdno=', @ANYRESHEX=r7])
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000940)={'wlan1\x00', <r11=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r10, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010000000000000000004400000008000300", @ANYRES32=r11, @ANYBLOB="08002600851600000a00180000000000000000001c005a8018000180140003"], 0x4c}}, 0x0)
readv(r10, &(0x7f0000000280)=[{&(0x7f0000000540)=""/252, 0xfc}, {&(0x7f0000000640)=""/72, 0x48}, {&(0x7f00000006c0)=""/147, 0x93}, {&(0x7f0000000780)=""/149, 0x95}, {&(0x7f0000000840)=""/147, 0x93}], 0x5)
r12 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r12, 0x8933, &(0x7f00000000c0)={'wlan1\x00'})

3.494351002s ago: executing program 1 (id=3923):
close(0xffffffffffffffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0xc, &(0x7f00000004c0)=ANY=[@ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x9, 0xfffffffd}, 0x8, 0x10, &(0x7f0000000200)={0x3, 0xfffffffc, 0x1004, 0x80000003}, 0x10, 0x0, 0x0, 0x3, &(0x7f0000000400)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000000480)=[{0x5, 0x2, 0xd, 0x8}, {0x2, 0x4, 0xd, 0x6}, {0x1, 0x3, 0x9, 0x3}], 0x10, 0x44}, 0x90)
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x2000004, 0x5d032, 0xffffffffffffffff, 0x0)
userfaultfd(0x801)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000640)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000002500), 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r1, 0x6804, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0)
preadv(r2, &(0x7f0000000100)=[{&(0x7f0000001a80)=""/102400, 0x19000}], 0x1, 0x0, 0x6)
r3 = userfaultfd(0x801)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f00000000c0))
add_key$keyring(&(0x7f00000000c0), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @thr={&(0x7f00000006c0)="d37151", &(0x7f0000000340)="21b9511244e9f07bad4399bc517106e9966d27e1e8c35dd65ecfa485d3937e388d63ca43ae93d312e47ccddb6ee0d552adb29898c0c76d110801243e97e56a3adad582230a0d17f034440cad338343825b13d3de3c9a558f7aa6d89fcb5b6f8a91b87df424bc0ff3fe3bae64fa57ce9176662e083b9f84fcaaf7374a8cce8d91b49ced087328c74a2bfa1acc3c44da9c5aad183fd4f8067e495b2dc6e78e8917fa5115b52e8b9dd3"}}, &(0x7f0000000500))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
clock_nanosleep(0x2, 0x1, 0x0, 0x0)
add_key$keyring(0x0, &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0x0)
getpeername$packet(r1, &(0x7f0000000700)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000240)=0x14)
userfaultfd(0x1)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
add_key$keyring(&(0x7f0000000300), &(0x7f00000002c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffff9)
r4 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r4, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @local}, 0xfc, 0x0}, 0x30004001)
sendmsg$kcm(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000680)="18", 0x1}], 0x1}, 0x4000)

2.861328692s ago: executing program 3 (id=3924):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
r1 = memfd_create(&(0x7f0000000140)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xcda\x9b\x11X\x0e\xa1\xcf\x1a\x98S7\xc9\x00'/47, 0x4)
fcntl$addseals(r1, 0x409, 0x7)
ioctl$FS_IOC_RESVSP(r1, 0x402c5828, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x6})
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SET_NESTED_STATE(0xffffffffffffffff, 0x4080aebf, 0x0)
io_uring_setup(0x4d63, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x4008032, r2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
munlock(&(0x7f000099f000/0x2000)=nil, 0x2000)
r3 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
ioctl$SIOCAX25CTLCON(r3, 0x541b, &(0x7f00000000c0)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, 0x0, 0x2, 0x0, [@null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @bcast, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]})
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@func_proto={0x0, 0x0, 0x0, 0xd, 0xa}, @union={0x0, 0x1, 0x0, 0x5, 0x0, 0x0, [{}]}]}}, &(0x7f0000000f40)=""/4089, 0x3e, 0xff9, 0xa}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = memfd_create(&(0x7f0000000280)='\x01\xfd\xae.+\xa6\x8c\xb6?2\x199\x94S,|x?Ue[\xbd\xe1!\x033\xbc\'#\xff\x17\x9b%\xf3[d  \x97\xf5G\x97A\xc2\xd8\xf0Uq\xe6+\xa5l\x94\v\xb6\a\x17\\\xfb\x04!\xe4\xc4\xb1\xa2\x1c\xffC;\x94Q\r\xb6}\x9c\xecC\v\xcf\xeb\xe4\x9aR\xe5,\x82\x03\x00\x19\x8d\xe8\xc6\xb9\xe4\xb4\x99\x8a\x19P\xb8\x8cx\b\x99\x04R\x05\xaf\xa2\xea5\f\xcc\x1a\x9b\x00Uf\xa5\xf7\x80Tgiz\nX\b\x91\xfd0\x8e\xb6\xa3\v#\xa1\xdf\xb4\xc0\xe6\xb4\xef\xa8i\xd8\xa2\xd2(\x98\x9bA\x8f\x13\xeb\xf4b/\xef!\x8f\xf6]-\xe9k\xb62\x89gEv\x13\xf4\xc7\xb2\xf5\\\x17\x90\xb5\xa6\xa8\xb8o\x0f\xe2 \xe7\x9c$\xd7\xf2@\xf7cdv[\t\x00\x8d\xf3\xcc1\r$\x1e\xff\xf0P\xb2\x97\xb8\xbc\xeb\x91\x87\x8bu\xbf\xd4\'\xff\x1f\f\x016\x9dQ\xeeT\xe8\bY\x00\xb2\x06\xa6\xbel\x9b.o\xbe\x80\x9dx\xd5O\xd6h\\I\xc9\x8d\a\x1d\xc9\x0f\x82\xdbs\xc7\x83L\x9e\xa2\xd1\xb3\xac\x8d\xd8\xb4\xb4\xea\x90Q\xd8\xc7\xeb%\x8bOp\x1ab\x96\xcf\xbb\x15\xcf\xfcN\xed\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00s\xaf\xa2\x14]p+\x96\x1ei|n\xda\xee\\\xae\x96*\x82*\xb8j\xda\xaa\x14\x1f\x1d\xf8\xf8\xae\xfcH\xc4\xb3j\xe8\xcfO\xef\x0e\xafe\xb5*\x89\x18\xb2w\x96\b\x1by\xeaT\xdd\xb3g6\xbc\x85\xb2Y\xccv\x06\x00\x00\x00\xc5e\x90\xc51\x9f\v_# \b\xa5\xbcP,|\xe9\xd6s\x1f\x1f\xbe\xd3\x80\xb1\xa8 \xce|df\x903\v\x02\xea.\x03X\xb5\xe4,8\xb7\xadEI\xdcA\xa7\xcc\xd7\xf9n\x1b\x95\xf8\x11Z\xe6:\x03\xce\xfe\x02\x8ctdy~_oC\x9e\xef\xf0\xa2K\xe9;\x8e:\x01\x03C\x92\xeb\x16\x1c\xbf\xbe\xef\xccUxhg\xffY\xe6\x83\xa6z\xff\x01\x9d o_{!O\xaajU\x84 \xe9\xb59r\x9cw\x18Z\xd3\xcd\x0e\xba\\\xdb\xf0\xe1\x86\t\xaf\vi\xdc\xbf?\xf5\n\xbd^\x05\xc0\xceuC}\xa8\xc7\xad\x86\xd7\x15&\xb9]1\x05J\x96\xf0\x84\xc1\f\xa6p\x96\xb8\x02\x13pA\x19\tf\x12\x88\xc8\x9c\xc9Cn\xd4\xa47V\'+\xcc\xbf\r\xa9\x10\x1d\xcf\xebKlb\xe5:\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00G\xdf\xbb\xc0_\x99F\xf4n]\x14\xbc\xcd\xd3\x9f\x9fe\xc5\xe6\xe8Mb\xc6\x82\x82\xcc\xcaXe\xe1\xa2\xaa\x02\x86\xb8\x18\xe2C\xeb\xa9\x17&\x01&\'w\xa1t0\x80\xf0\x93\x80\x9f\x9b\xe0\x9f\xea\xb9\x9eD]#V\xda\x92\xca\xc6\xfa.\xd6\xe31\xfe\xe8\x02\xebX\xbd\nz\x01O\xd3r\xa2\xa9u\x93', 0x6)
fcntl$getownex(r4, 0x11, &(0x7f0000000000))
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="180000009500"/24], &(0x7f00000001c0)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='contention_end\x00', r5}, 0x10)
r6 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="140000002e000b0fd25a806c8c6f94f90324fc60", 0x14}], 0x1}, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)

2.467126355s ago: executing program 1 (id=3925):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x2, 0x1c1)
ioctl$CDROMEJECT(r1, 0x5309)
r2 = openat$nci(0xffffff9c, &(0x7f0000000140), 0x2, 0x0)
read$nci(r2, 0x0, 0x0)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0xffffffff, @empty}, 0x1c)

2.421958182s ago: executing program 2 (id=3926):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000400)={0x48, r0, 0x801, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_KEY={0x2c, 0x50, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPES={0xc}, @NL80211_KEY_IDX={0x5}, @NL80211_KEY_DEFAULT]}]}, 0x48}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0x4, 0x0, 0x0}, 0x90)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)={0x44, 0x0, 0x1, 0x0, 0x0, 0x0, {}, [@CTA_TUPLE_ORIG={0x18, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @remote={0xac, 0x3}}}}]}, @CTA_TUPLE_REPLY={0x18, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @local}, {0x8, 0x2, @dev}}}]}]}, 0x44}}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=ANY=[@ANYBLOB='$\x00 \x00', @ANYRES16=r3, @ANYBLOB="01"], 0x24}}, 0x0)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)=ANY=[@ANYBLOB="d824000028000100020000080000000001"], 0x24d8}], 0x1}, 0x0)

2.337773361s ago: executing program 2 (id=3927):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073"], 0xd4}}, 0x0)
io_setup(0x8, &(0x7f0000000600)=<r0=>0x0)
r1 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
io_submit(r0, 0x1, &(0x7f0000000180)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f00000000c0)="01", 0x24}])
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
write$cgroup_int(r3, &(0x7f0000000000), 0xffffff6a)
ioctl$FS_IOC_RESVSP(r3, 0x40305839, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2})
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@bloom_filter={0x1e, 0x5, 0x8000, 0x3, 0x8, 0xffffffffffffffff, 0x9, '\x00', 0x0, r3, 0x1, 0x0, 0x2}, 0x48)
read$FUSE(r3, &(0x7f0000001600)={0x2020}, 0x2020)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r5 = dup(r4)
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
r6 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r6, 0xaf01, 0x0)
r7 = eventfd(0x0)
r8 = eventfd(0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB], 0x0}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
pipe2$9p(&(0x7f0000000240)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff}, 0x0)
splice(r11, 0x0, r10, &(0x7f00000001c0)=0xfffffffffffffffe, 0x8, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kmem_cache_free\x00', r9}, 0x10)
socket(0x10, 0x3, 0x0)
r12 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r12, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
statfs(&(0x7f0000000140)='./file0\x00', 0x0)
ioctl$VHOST_SET_VRING_KICK(r6, 0x4008af20, &(0x7f0000000040)={0x1, r8})
dup3(r7, r8, 0x0)
ioctl$VHOST_SET_VRING_KICK(r6, 0x4008af20, &(0x7f0000000cc0)={0x1, r7})
ioctl$KVM_SET_FPU(r5, 0x41a0ae8d, &(0x7f0000000640)={'\x00', 0x8, 0x0, 0x1, 0x0, 0x2, 0xf000, 0x100000, '\x00', 0x20})

1.377177182s ago: executing program 2 (id=3928):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0xa, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000000000000000000000000851000000200000018000000000000000000000000000090cd58562a15002c000064a6693bad890000000000180000000000000000000000000000001b"], 0x0}, 0x90)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x3, &(0x7f0000000d80)=ANY=[@ANYBLOB="1800000003000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r0, 0xf0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x63, 0x0, &(0x7f00000000c0)='\x00', 0x0, 0x2}, 0x48)

1.376924531s ago: executing program 1 (id=3929):
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$usbmon(&(0x7f00000001c0), 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000))
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x48)
socket(0x2b, 0x1, 0x1)
r0 = syz_io_uring_setup(0x6, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100), 0x0)
pselect6(0x40, &(0x7f0000000600), 0x0, &(0x7f0000000680)={0x7ff}, 0x0, 0x0)
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

1.024342961s ago: executing program 0 (id=3930):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0, r0}, 0x5b)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = getpid()
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000540)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
io_uring_setup(0x1dc8, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x13, &(0x7f0000000240)=0x3, 0x4)
r3 = syz_io_uring_setup(0x37e8, &(0x7f0000002ec0)={0x0, 0x1, 0x40, 0x1}, &(0x7f0000000380), &(0x7f0000000200)=<r4=>0x0)
r5 = memfd_secret(0x0)
ftruncate(r5, 0x5)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2, 0x11, r5, 0x0)
syz_io_uring_submit(r6, r4, &(0x7f0000000e40)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x40})
io_uring_enter(r3, 0x6d99, 0x5efe, 0x0, 0x0, 0x0)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e21, @empty}, 0x10)
connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @mss={0x2, 0xfff}, @window={0x3, 0x0, 0x401}, @window], 0x20000000000000e4)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f00000001c0), 0xc7)
r7 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0x843, 0x0)
r8 = syz_open_dev$dri(&(0x7f0000000180), 0x800000052, 0x400)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r8, 0xc02064b2, &(0x7f00000000c0)={0xdb, 0x1ff, 0xb})
close_range(r7, 0xffffffffffffffff, 0x0)
sendto$inet(r2, &(0x7f0000000480)="d736f5c1df48b4dd0ed68719c7e989a350010000000000000084720c077095bb1f0d6e9e4694dfa0b36b2d587dd9e987f1334e2896b8ebc118598db9b235bf9f401d498adc41d9eefc7acfe4be5286cb41d5d11753a6df075ccc5b188f602caaf3415250b8b5fbde6b64ae9b3a2b5af9dba2fd61f403532fc9d797dbd692599bf98e3e7680eb78f0bf5908007291d89d6329f4cb10babdb4931c1f1b829a11f6ee00000000000000", 0xfffffcdf, 0x1a, 0x0, 0x0)
recvfrom$inet(r2, &(0x7f0000000080)=""/8, 0xfffffffffffffc6c, 0x1, 0x0, 0x0)

900.37153ms ago: executing program 2 (id=3931):
r0 = openat(0xffffffffffffff9c, &(0x7f00000005c0)='./file0\x00', 0x103a42, 0x0)
pipe2$9p(&(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000600)=ANY=[@ANYRESDEC=r0, @ANYRES8=r2, @ANYRESOCT=0x0], 0x15)
r3 = openat$fb0(0xffffff9c, &(0x7f00000002c0), 0x8040, 0x0)
ioctl$FBIOPUTCMAP(r3, 0x4605, &(0x7f0000000580)={0x401, 0x1, &(0x7f0000000480)=[0x3], 0x0, 0x0, &(0x7f0000000540)})
r4 = dup(r2)
mount$9p_fd(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000004380), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r8, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)={0x50, r7, 0x801, 0x0, 0x0, {{}, {@val={0x8, 0x3, r9}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_KEY={0x28, 0x50, 0x0, 0x1, [@NL80211_KEY_DATA_WEP104={0x11, 0x1, "4abee339084eeef16f162471f4"}, @NL80211_KEY_IDX={0x5}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac0d}]}]}, 0x50}}, 0x0)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r11, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r12=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000140)={0x5c, r10, 0x101, 0x0, 0x0, {{}, {@val={0x8, 0x3, r12}, @void}}, [@NL80211_ATTR_PRIVACY={0x4}, @NL80211_ATTR_KEYS={0x28, 0x51, 0x0, 0x1, [{0x24, 0x0, 0x0, 0x1, [@NL80211_KEY_IDX={0x5}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac01}, @NL80211_KEY_SEQ={0x4}, @NL80211_KEY_DATA_WEP40={0x9, 0x1, "38e004f9f1"}]}]}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}]]}, 0x5c}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r13=>0x0})
sendmsg$NL80211_CMD_STOP_P2P_DEVICE(r5, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000700)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="200028bd7000fddbdf255a000000080003007fcb6598bc688e4ccbb165f29d7963fa34806d669e250a3b00ff253398b54e521e80ecbdd312cb360815f5997369e2ddc565fb566b6031600923cd62155ded1032dd9104175be72648875c81c14f939df389075f3a039dcf79e3a704c20d21b8216fe1200c96212c59c0e743c3ca3f85ef7d5bedc4e8da231c648c667d7e3652b07f79385697fb1f97422bfdb25c87ec7c10d9fd6075c71720e7dfecf4475103aca6ce085d808bdc446406769de6a7bb6f288b26306eeb8dcdbf8a77f14205b8448f8e1792", @ANYRES32=r13, @ANYBLOB="0c0099000c00000071000000"], 0x28}, 0x1, 0x0, 0x0, 0x24000000}, 0x4004001)

721.389174ms ago: executing program 3 (id=3932):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000040)=0xb6, 0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r2 = syz_open_dev$MSR(&(0x7f0000019340), 0x0, 0x0)
read$msr(r2, &(0x7f0000000300)=""/102400, 0x19000)
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100), 0x141a42, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
syz_emit_ethernet(0x82, &(0x7f0000003300)={@random="195d0700", @random="77b6d4f11b32", @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "aac4e0", 0x4c, 0x2c, 0x0, @dev, @local, {[@routing={0x2c}]}}}}}, 0x0)
execveat(0xffffffffffffff9c, &(0x7f00000001c0)='./file2\x00', 0x0, 0x0, 0x1000)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/block/loop0', 0x0, 0x0)
close(0xffffffffffffffff)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x17, 0x3, &(0x7f0000000240)=@framed, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x80)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000000)={r4, r5, 0x12}, 0x10)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0)
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f0000000280)={0x1db71897})
r7 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000300)='/proc/sys/vm/compact_memory\x00', 0x1, 0x0)
sendfile(r7, r6, 0x0, 0x23d)
r8 = socket$alg(0x26, 0x5, 0x0)
getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(r0, 0x84, 0x74, &(0x7f00000000c0)=""/28, &(0x7f0000000100)=0x1c)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000000140)={<r9=>0x0, 0x55, "fbe1c073d5ae2234f679fb7296c5be956d33501948577ad4d6184b2667d2824ab7115ee24547a1fdb880ffd0d3fecd77102c3b8ecf4e4386375091f19de5a4484c2e55f5a99b6aca636ed72737c2a4f64f0aff9e31"}, &(0x7f00000001c0)=0x5d)
getsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={r9, 0x100}, &(0x7f0000000240)=0x8)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYRES64, @ANYRESOCT=r8, @ANYRESOCT=r8, @ANYRES32=r8, @ANYRESOCT=0x0, @ANYRESHEX=r8], 0x1d)

699.441934ms ago: executing program 2 (id=3933):
socket$alg(0x26, 0x5, 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000540), 0x4260, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f0000000300), 0x0, 0x0})
syz_open_dev$dri(&(0x7f0000000580), 0x20, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000000)=[0x0], 0x0, 0x0, 0x0, 0x1, 0xfffffffffffffe78})
syz_emit_vhci(0x0, 0x22)
ioctl$MON_IOCX_GET(0xffffffffffffffff, 0x40189206, &(0x7f00000002c0)={0x0, &(0x7f00000003c0)=""/122, 0xffffffffffffff61})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x41, &(0x7f0000000040)=0x8)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102377, 0x1902c}], 0x1, 0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c0000001000014700000000000000000a000000060001002a000000e707d6441f8c5691a336b9029ec06c138ee1e8c29e47cc968a378b2ee78b82f0fd49647d6e72fee7689143ab7fd95003927c06414731ac223f3c98ab82bc87122cfc37e814804ceab7999fcac56bec701b4eed1e1782daf054c85db4e9767b0cbadb6e79ff31b81737156566dd7fc0d016fa861d29fee6af5cf1741b8077c07d9419e403f18ec0de90a292b7bfaebe273028f5b7756b69"], 0x1c}}, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_emit_vhci(0x0, 0xfffffffffffffe29)
r2 = openat$capi20(0xffffffffffffff9c, &(0x7f0000000000), 0x20040, 0x0)
ioctl$CAPI_CLR_FLAGS(r2, 0x80044325, &(0x7f0000000040))
r3 = socket$inet6(0xa, 0x800000000000002, 0x0)
sendto$inet6(r3, 0x0, 0x0, 0x4008081, &(0x7f0000000180)={0xa, 0x4e21, 0x4, @remote}, 0x1c)
sendmmsg$inet6(r3, &(0x7f0000001580)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000}, 0xa}], 0x1, 0x0)
ioprio_set$uid(0x3, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x6, 0x0, 0x0, 0x1}, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x4, 0x200000005c831, 0xffffffffffffffff, 0x0)

421.271534ms ago: executing program 1 (id=3934):
sync()
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x42, 0x0)
bpf$OBJ_GET_MAP(0x7, &(0x7f00000000c0)=@o_path={&(0x7f0000000080)='./file0\x00', 0x0, 0x4008, r0}, 0x14)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r1 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r2 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r2, &(0x7f00000004c0)='./file1\x00', 0x2000, 0x1)
r3 = socket$qrtr(0x2a, 0x2, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x1})
r5 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000001200)={&(0x7f00000001c0)={0x38, 0x1403, 0x1, 0x0, 0x0, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'syzkaller0\x00'}}]}, 0x38}}, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
linkat(r1, &(0x7f00000002c0)='./file1\x00', r2, &(0x7f0000000440)='./file0\x00', 0x0)
lchown(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
rename(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000280)='./file0\x00')
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001280)='/proc/diskstats\x00', 0x0, 0x0)
read$hiddev(r6, &(0x7f00000000c0)=""/4053, 0xfd5)

143.261139ms ago: executing program 0 (id=3935):
r0 = socket(0x1e, 0x2, 0x0)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCL_PASTESEL(r1, 0x541c, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000300), 0xffffffffffffffff)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000340)=<r2=>0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000280)=<r3=>0x0)
r4 = syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
r5 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r5, 0x2, &(0x7f00000000c0)=<r6=>0x0)
connect$nfc_raw(r4, &(0x7f0000000140)={0x27, r6}, 0x10)
r7 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r7, 0x0, &(0x7f00000000c0)=<r8=>0x0)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r9)
sendmsg$NFC_CMD_DEV_UP(r9, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r10, @ANYBLOB="01002309000034020056ecb9ca901e518e4f", @ANYRES32=r8, @ANYBLOB], 0x1c}}, 0x0)
r11 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r11, 0x0, &(0x7f00000000c0)=<r12=>0x0)
r13 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r14 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r13)
sendmsg$NFC_CMD_DEV_UP(r13, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYRES64=r10, @ANYRES8=r0, @ANYBLOB="0100000000000000000002000000080001000a94bb0e941d810123b961190524f8b6f466ca8f068dba65a638b6b3126292b9d379c2d47d458cc78511acffad805c59de55455ab57dffff474550e80049831a0ccef02e25a25d2d04685310a03f", @ANYRESHEX=r5], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmsg$NFC_CMD_DEV_UP(r13, &(0x7f0000000480)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000000)={&(0x7f0000000540)={0x5c, r14, 0x1, 0x70bd2a, 0x25dfdbfd, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r12}, @NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_DEVICE_INDEX={0xffffffffffffffa1, 0x1, r3}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r6}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r8}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r2}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r3}, @NFC_ATTR_DEVICE_INDEX={0x8}]}, 0x5c}, 0x1, 0x0, 0x0, 0x631446a323636468}, 0x40408d1)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NFC_CMD_DEV_UP(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x44050)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r15 = syz_clone(0x800a0000, &(0x7f00000004c0), 0x0, &(0x7f0000000500), 0x0, &(0x7f0000000640)="964f9ed1eabee0f5ebac685ed7b011609d9b7034c406ab8f6bfc0f73ed93afd052cfc795eee7c946759181df2374063671c89abecc83ad98889c74927044d44bcc8a749ce4bfdd5b11141ec45dee822f2fe9847d2cb305be058be1ddcea495e0b50f2a3d27a8ecf3f5479e20e54a5dd7858a298be3814224")
syz_open_procfs$namespace(r15, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)

0s ago: executing program 2 (id=3936):
unshare(0x2a020480)
mq_open(&(0x7f0000000440)='!selin\xdb\xa1\x02\xbf\xd9l\xd7\xcd\xc0uxselin\x05x\x00\x00\x00\x00\x00\x00\x00\x00', 0x6e93ebbbcc088cf2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0xc, &(0x7f0000000040)=0x5, 0x4)
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000040))
r1 = socket$nl_crypto(0x10, 0x3, 0x15)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x8, 0x0, 0x0)
unshare(0x64000600)
syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/partitions\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000001500)=[{&(0x7f00000002c0)=""/4084, 0xff4}], 0x1, 0x202, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f0000000700), 0x0, 0x0)
readv(r3, &(0x7f0000000980), 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f0000000080)={'netdevsim0\x00', &(0x7f0000000000)=@ethtool_ringparam={0x11}})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x8, 0x10001, 0x9, 0x1}, 0x48)
close(0xffffffffffffffff)
r5 = gettid()
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
readv(r6, &(0x7f0000001240)=[{&(0x7f0000000040)=""/65, 0x41}], 0x1)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x0, 0x100008b}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x20044010}, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)

kernel console output (not intermixed with test programs):

anufacturer: ࡃ
[ 1030.054986][ T5375] usb 7-1: SerialNumber: Н
[ 1030.357953][ T5375] pl2303 7-1:3.180: required endpoints missing
[ 1030.378022][ T5375] usb 7-1: USB disconnect, device number 87
[ 1031.579019][T14365] usb 7-1: new high-speed USB device number 88 using dummy_hcd
[ 1031.758929][T14365] usb 7-1: Using ep0 maxpacket: 8
[ 1031.778436][T14365] usb 7-1: config 0 has no interfaces?
[ 1031.785058][T14365] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1031.794473][T14365] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1031.802448][T14365] usb 7-1: Product: syz
[ 1031.806600][T14365] usb 7-1: Manufacturer: syz
[ 1031.810831][T14365] usb 7-1: SerialNumber: syz
[ 1031.824419][T14365] usb 7-1: config 0 descriptor??
[ 1032.251739][   T25] usb 7-1: USB disconnect, device number 88
[ 1033.762767][ T5343] Bluetooth: hci6: sending frame failed (-49)
[ 1033.766204][ T5337] Bluetooth: hci6: Opcode 0x1003 failed: -49
[ 1039.094993][ T1105] Bluetooth: hci6: Frame reassembly failed (-84)
[ 1041.109597][ T5337] Bluetooth: hci6: Opcode 0x1003 failed: -110
[ 1041.109618][ T5343] Bluetooth: hci6: command 0x1003 tx timeout
[ 1046.266486][T13282] Bluetooth: hci6: sending frame failed (-49)
[ 1046.271229][ T5337] Bluetooth: hci6: Opcode 0x1003 failed: -49
[ 1048.454119][T17041] FAULT_INJECTION: forcing a failure.
[ 1048.454119][T17041] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1048.463162][T17041] CPU: 0 UID: 0 PID: 17041 Comm: syz.1.3195 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0
[ 1048.467188][T17041] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1048.471727][T17041] Call Trace:
[ 1048.473596][T17041]  <TASK>
[ 1048.474952][T17041]  dump_stack_lvl+0x16c/0x1f0
[ 1048.477315][T17041]  should_fail_ex+0x497/0x5b0
[ 1048.479763][T17041]  strncpy_from_user+0x38/0x320
[ 1048.481797][T17041]  getname_flags.part.0+0x8f/0x550
[ 1048.483853][T17041]  getname+0x8d/0xe0
[ 1048.485226][T17041]  do_sys_openat2+0x104/0x1e0
[ 1048.486975][T17041]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1048.488954][T17041]  __ia32_compat_sys_openat+0x16e/0x210
[ 1048.490852][T17041]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[ 1048.492896][T17041]  ? ksys_write+0x1ab/0x260
[ 1048.494442][T17041]  __do_fast_syscall_32+0x73/0x120
[ 1048.496165][T17041]  do_fast_syscall_32+0x32/0x80
[ 1048.497818][T17041]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1048.500086][T17041] RIP: 0023:0xf73ae579
[ 1048.501523][T17041] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1048.508160][T17041] RSP: 002b:00000000f5695110 EFLAGS: 00000293 ORIG_RAX: 0000000000000127
[ 1048.511966][T17041] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000f5695160
[ 1048.514634][T17041] RDX: 0000000000101301 RSI: 0000000000000000 RDI: 00000000f73a0ff4
[ 1048.517411][T17041] RBP: 0000000000101301 R08: 0000000000000000 R09: 0000000000000000
[ 1048.520333][T17041] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1048.523595][T17041] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1048.526735][T17041]  </TASK>
[ 1049.521518][T13282] Bluetooth: hci6: sending frame failed (-49)
[ 1049.524774][ T5337] Bluetooth: hci6: Opcode 0x1003 failed: -49
[ 1050.994012][T17082] vti0: entered promiscuous mode
[ 1051.230846][T17084] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3205'.
[ 1051.328961][T11976] usb 5-1: new high-speed USB device number 100 using dummy_hcd
[ 1051.508922][T11976] usb 5-1: Using ep0 maxpacket: 32
[ 1051.513515][T11976] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1051.518108][T11976] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1051.522769][T11976] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1051.526339][T11976] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[ 1051.538942][T11976] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 8
[ 1051.545391][T11976] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1051.549026][T11976] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1051.552185][T11976] usb 5-1: Product: syz
[ 1051.554126][T11976] usb 5-1: Manufacturer: syz
[ 1051.556020][T11976] usb 5-1: SerialNumber: syz
[ 1051.889516][T11976] cdc_ncm 5-1:1.0: bind() failure
[ 1051.910211][T11976] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[ 1051.910633][T13282] Bluetooth: hci6: sending frame failed (-49)
[ 1051.917285][ T5337] Bluetooth: hci6: Opcode 0x1003 failed: -49
[ 1051.940297][T11976] cdc_ncm 5-1:1.1: bind() failure
[ 1051.968982][T11976] usb 5-1: USB disconnect, device number 100
[ 1052.107987][T17097] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3209'.
[ 1054.345836][ T1105] Bluetooth: hci6: Frame reassembly failed (-84)
[ 1056.336730][T17162] vti0: entered promiscuous mode
[ 1056.379047][T13282] Bluetooth: hci6: command 0x1003 tx timeout
[ 1056.379453][ T5337] Bluetooth: hci6: Opcode 0x1003 failed: -110
[ 1056.628963][   T25] usb 6-1: new high-speed USB device number 107 using dummy_hcd
[ 1056.818957][   T25] usb 6-1: Using ep0 maxpacket: 32
[ 1056.823078][   T25] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1056.839261][   T25] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1056.855089][   T25] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1056.879049][   T25] usb 6-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[ 1056.889094][   T25] usb 6-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 8
[ 1056.899219][   T25] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1056.902858][   T25] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1056.916340][   T25] usb 6-1: Product: syz
[ 1056.918152][   T25] usb 6-1: Manufacturer: syz
[ 1056.926412][   T25] usb 6-1: SerialNumber: syz
[ 1057.242513][   T25] cdc_ncm 6-1:1.0: bind() failure
[ 1057.261920][   T25] cdc_ncm 6-1:1.1: CDC Union missing and no IAD found
[ 1057.264978][   T25] cdc_ncm 6-1:1.1: bind() failure
[ 1057.279545][   T25] usb 6-1: USB disconnect, device number 107
[ 1058.966722][T17191] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1059.075112][T17191] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1059.084103][T17191] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1059.743470][ T1377] ieee802154 phy0 wpan0: encryption failed: -22
[ 1059.746106][ T1377] ieee802154 phy1 wpan1: encryption failed: -22
[ 1059.801785][T17197] xt_cgroup: invalid path, errno=-2
[ 1059.949893][ T1105] Bluetooth: hci6: Frame reassembly failed (-84)
[ 1061.828987][ T5343] Bluetooth: hci5: command 0x0406 tx timeout
[ 1061.989061][ T5337] Bluetooth: hci6: command 0x1003 tx timeout
[ 1061.992774][T13282] Bluetooth: hci6: Opcode 0x1003 failed: -110
[ 1062.255424][T17225] ip6gretap0 speed is unknown, defaulting to 1000
[ 1063.131871][T17237] FAULT_INJECTION: forcing a failure.
[ 1063.131871][T17237] name failslab, interval 1, probability 0, space 0, times 0
[ 1063.137980][T17237] CPU: 2 UID: 0 PID: 17237 Comm: syz.1.3245 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0
[ 1063.142625][T17237] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1063.147206][T17237] Call Trace:
[ 1063.148476][T17237]  <TASK>
[ 1063.149781][T17237]  dump_stack_lvl+0x16c/0x1f0
[ 1063.151853][T17237]  should_fail_ex+0x497/0x5b0
[ 1063.153854][T17237]  ? fs_reclaim_acquire+0xae/0x160
[ 1063.155533][T17237]  should_failslab+0xc2/0x120
[ 1063.157512][T17237]  __kmalloc_noprof+0xcb/0x410
[ 1063.159264][T17237]  ? __rtnl_unlock+0x68/0xf0
[ 1063.161119][T17237]  nl80211_set_tid_config+0x25c/0x16a0
[ 1063.163007][T17237]  ? __pfx___mutex_lock+0x10/0x10
[ 1063.164761][T17237]  ? __pfx_nl80211_set_tid_config+0x10/0x10
[ 1063.167040][T17237]  ? nl80211_pre_doit+0x1b0/0xb10
[ 1063.169392][T17237]  genl_family_rcv_msg_doit+0x202/0x2f0
[ 1063.171857][T17237]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1063.174317][T17237]  ? ns_capable+0xd7/0x110
[ 1063.176220][T17237]  genl_rcv_msg+0x565/0x800
[ 1063.178223][T17237]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1063.180366][T17237]  ? __pfx_nl80211_pre_doit+0x10/0x10
[ 1063.182428][T17237]  ? __pfx_nl80211_set_tid_config+0x10/0x10
[ 1063.184722][T17237]  ? __pfx_nl80211_post_doit+0x10/0x10
[ 1063.186646][T17237]  netlink_rcv_skb+0x165/0x410
[ 1063.188837][T17237]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1063.191066][T17237]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1063.193450][T17237]  ? down_read+0xc9/0x330
[ 1063.195875][T17237]  ? __pfx_down_read+0x10/0x10
[ 1063.197906][T17237]  ? netlink_deliver_tap+0x1ae/0xcf0
[ 1063.200141][T17237]  genl_rcv+0x28/0x40
[ 1063.201850][T17237]  netlink_unicast+0x53c/0x7f0
[ 1063.203997][T17237]  ? __pfx_netlink_unicast+0x10/0x10
[ 1063.206248][T17237]  ? __phys_addr_symbol+0x30/0x80
[ 1063.208420][T17237]  ? __check_object_size+0x497/0x720
[ 1063.210747][T17237]  netlink_sendmsg+0x8b8/0xd70
[ 1063.212905][T17237]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1063.215381][T17237]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1063.217647][T17237]  ____sys_sendmsg+0x9b4/0xb50
[ 1063.219906][T17237]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1063.222306][T17237]  ? get_compat_msghdr+0x11b/0x170
[ 1063.224652][T17237]  ? __pfx___lock_acquire+0x10/0x10
[ 1063.226978][T17237]  ___sys_sendmsg+0x135/0x1e0
[ 1063.228986][T17237]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1063.231328][T17237]  ? ksys_write+0x21c/0x260
[ 1063.233237][T17237]  ? __fget_light+0x173/0x210
[ 1063.235275][T17237]  __sys_sendmsg+0x117/0x1f0
[ 1063.237193][T17237]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1063.239426][T17237]  __do_fast_syscall_32+0x73/0x120
[ 1063.241773][T17237]  do_fast_syscall_32+0x32/0x80
[ 1063.243524][T17237]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1063.246122][T17237] RIP: 0023:0xf73ae579
[ 1063.247811][T17237] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1063.255171][T17237] RSP: 002b:00000000f56b656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1063.258380][T17237] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000240
[ 1063.261472][T17237] RDX: 0000000000004040 RSI: 0000000000000000 RDI: 0000000000000000
[ 1063.264231][T17237] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1063.267520][T17237] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1063.270904][T17237] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1063.273802][T17237]  </TASK>
[ 1069.481799][ T5615] IPVS: starting estimator thread 0...
[ 1069.592487][T17299] IPVS: using max 21 ests per chain, 50400 per kthread
[ 1071.925616][T17332] FAULT_INJECTION: forcing a failure.
[ 1071.925616][T17332] name failslab, interval 1, probability 0, space 0, times 0
[ 1071.930636][T17332] CPU: 3 UID: 0 PID: 17332 Comm: syz.3.3269 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0
[ 1071.934659][T17332] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1071.938986][T17332] Call Trace:
[ 1071.940348][T17332]  <TASK>
[ 1071.941697][T17332]  dump_stack_lvl+0x16c/0x1f0
[ 1071.943350][T17332]  should_fail_ex+0x497/0x5b0
[ 1071.945341][T17332]  ? fs_reclaim_acquire+0xae/0x160
[ 1071.947327][T17332]  should_failslab+0xc2/0x120
[ 1071.949131][T17332]  kmem_cache_alloc_node_noprof+0x71/0x310
[ 1071.951659][T17332]  ? __alloc_skb+0x2b3/0x380
[ 1071.953642][T17332]  __alloc_skb+0x2b3/0x380
[ 1071.955552][T17332]  ? __pfx___alloc_skb+0x10/0x10
[ 1071.957727][T17332]  ? __pfx___might_resched+0x10/0x10
[ 1071.960122][T17332]  netlink_alloc_large_skb+0x69/0x130
[ 1071.962033][T17332]  netlink_sendmsg+0x689/0xd70
[ 1071.963551][T17332]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1071.965681][T17332]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1071.968075][T17332]  ____sys_sendmsg+0x9b4/0xb50
[ 1071.969660][T17332]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1071.971914][T17332]  ? get_compat_msghdr+0x11b/0x170
[ 1071.974390][T17332]  ? __pfx___lock_acquire+0x10/0x10
[ 1071.976924][T17332]  ___sys_sendmsg+0x135/0x1e0
[ 1071.979104][T17332]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1071.981281][T17332]  ? ksys_write+0x21c/0x260
[ 1071.983498][T17332]  ? __fget_light+0x173/0x210
[ 1071.985537][T17332]  __sys_sendmsg+0x117/0x1f0
[ 1071.987537][T17332]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1071.989186][T17332]  __do_fast_syscall_32+0x73/0x120
[ 1071.990829][T17332]  do_fast_syscall_32+0x32/0x80
[ 1071.992412][T17332]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1071.995283][T17332] RIP: 0023:0xf7f71579
[ 1071.997224][T17332] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1072.005067][T17332] RSP: 002b:00000000f571656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1072.008765][T17332] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000200
[ 1072.012586][T17332] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1072.016092][T17332] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1072.019753][T17332] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1072.023849][T17332] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1072.027935][T17332]  </TASK>
[ 1080.513677][T17422] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3292'.
[ 1082.710204][T17433] netlink: 'syz.2.3295': attribute type 12 has an invalid length.
[ 1082.775188][T17433] netlink: 'syz.2.3295': attribute type 11 has an invalid length.
[ 1082.793351][T17433] netlink: 211132 bytes leftover after parsing attributes in process `syz.2.3295'.
[ 1082.954411][T13282] block nbd2: Receive control failed (result -107)
[ 1083.109008][T17433] nbd2: detected capacity change from 0 to 15960
[ 1083.128746][T17432] block nbd2: shutting down sockets
[ 1083.416725][ T5395] IPVS: starting estimator thread 0...
[ 1083.550962][T17448] IPVS: using max 20 ests per chain, 48000 per kthread
[ 1084.682678][T17459] tmpfs: Bad value for 'mpol'
[ 1086.568666][T17480] netlink: 'syz.3.3308': attribute type 12 has an invalid length.
[ 1086.665322][T17480] netlink: 'syz.3.3308': attribute type 11 has an invalid length.
[ 1086.689715][T17480] netlink: 211132 bytes leftover after parsing attributes in process `syz.3.3308'.
[ 1086.750330][T13282] block nbd3: Receive control failed (result -107)
[ 1086.861009][T17480] nbd3: detected capacity change from 0 to 15960
[ 1086.894724][T17479] block nbd3: shutting down sockets
[ 1088.278050][T17496] netlink: 100 bytes leftover after parsing attributes in process `syz.3.3312'.
[ 1088.298420][T17496] netlink: 'syz.3.3312': attribute type 12 has an invalid length.
[ 1090.714641][T17513] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3317'.
[ 1093.359222][T17550] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3328'.
[ 1093.368943][T17550] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3328'.
[ 1098.845752][T17596] input: syz0 as /devices/virtual/input/input114
[ 1099.281737][T17602] netlink: 'syz.0.3341': attribute type 12 has an invalid length.
[ 1099.370282][T17602] netlink: 'syz.0.3341': attribute type 11 has an invalid length.
[ 1099.373190][T17602] netlink: 211132 bytes leftover after parsing attributes in process `syz.0.3341'.
[ 1099.469926][T13282] block nbd0: Receive control failed (result -107)
[ 1099.559627][T17602] nbd0: detected capacity change from 0 to 15960
[ 1099.570965][T17601] block nbd0: shutting down sockets
[ 1101.398941][T17624] netlink: 'syz.3.3347': attribute type 12 has an invalid length.
[ 1101.454580][T17624] netlink: 'syz.3.3347': attribute type 11 has an invalid length.
[ 1101.457858][T17624] netlink: 211132 bytes leftover after parsing attributes in process `syz.3.3347'.
[ 1101.518689][T13282] block nbd3: Receive control failed (result -107)
[ 1101.629419][T17624] nbd3: detected capacity change from 0 to 15960
[ 1101.680433][T17623] block nbd3: shutting down sockets
[ 1104.642700][T17653] netlink: 'syz.2.3352': attribute type 12 has an invalid length.
[ 1104.721894][T17653] netlink: 'syz.2.3352': attribute type 11 has an invalid length.
[ 1104.725263][T17653] netlink: 211132 bytes leftover after parsing attributes in process `syz.2.3352'.
[ 1104.799625][T13282] block nbd2: Receive control failed (result -107)
[ 1104.903961][T17653] nbd2: detected capacity change from 0 to 15960
[ 1104.940701][T17652] block nbd2: shutting down sockets
[ 1105.865719][T17671] netlink: 'syz.0.3357': attribute type 12 has an invalid length.
[ 1105.908169][T17671] netlink: 'syz.0.3357': attribute type 11 has an invalid length.
[ 1105.919007][T17671] netlink: 211132 bytes leftover after parsing attributes in process `syz.0.3357'.
[ 1106.010153][T13282] block nbd0: Receive control failed (result -107)
[ 1106.148926][T17671] nbd0: detected capacity change from 0 to 15960
[ 1106.155139][T17670] block nbd0: shutting down sockets
[ 1108.379153][T13282] Bluetooth: hci2: command 0x0406 tx timeout
[ 1108.947394][T17700] netlink: 'syz.0.3364': attribute type 12 has an invalid length.
[ 1109.003114][T17700] netlink: 'syz.0.3364': attribute type 11 has an invalid length.
[ 1109.013257][T17700] netlink: 211132 bytes leftover after parsing attributes in process `syz.0.3364'.
[ 1109.079465][T13282] block nbd0: Receive control failed (result -107)
[ 1109.199298][T17701] nbd0: detected capacity change from 0 to 15960
[ 1109.225620][T17699] block nbd0: shutting down sockets
[ 1109.424247][T17705] netlink: 'syz.0.3374': attribute type 12 has an invalid length.
[ 1109.539272][T17705] netlink: 'syz.0.3374': attribute type 11 has an invalid length.
[ 1109.548926][T17705] netlink: 211132 bytes leftover after parsing attributes in process `syz.0.3374'.
[ 1109.610147][T13282] block nbd0: Receive control failed (result -107)
[ 1109.699808][T17705] nbd0: detected capacity change from 0 to 15960
[ 1109.718527][T17704] block nbd0: shutting down sockets
[ 1112.256716][T17734] netlink: 36 bytes leftover after parsing attributes in process `syz.3.3373'.
[ 1112.278435][T17734] dlm: no local IP address has been set
[ 1112.287896][T17734] dlm: cannot start dlm midcomms -107
[ 1113.831159][T17746] netlink: 'syz.0.3377': attribute type 12 has an invalid length.
[ 1113.896123][T17746] netlink: 'syz.0.3377': attribute type 11 has an invalid length.
[ 1113.915998][T17746] netlink: 211132 bytes leftover after parsing attributes in process `syz.0.3377'.
[ 1114.030745][T13282] block nbd0: Receive control failed (result -107)
[ 1114.159083][T17746] nbd0: detected capacity change from 0 to 15960
[ 1114.240067][T17745] block nbd0: shutting down sockets
[ 1115.771829][T17780] netlink: 36 bytes leftover after parsing attributes in process `syz.0.3384'.
[ 1115.800790][T17780] FAULT_INJECTION: forcing a failure.
[ 1115.800790][T17780] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1115.806175][T17780] CPU: 2 UID: 0 PID: 17780 Comm: syz.0.3384 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0
[ 1115.810702][T17780] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1115.815695][T17780] Call Trace:
[ 1115.817102][T17780]  <TASK>
[ 1115.818287][T17780]  dump_stack_lvl+0x16c/0x1f0
[ 1115.819881][T17780]  should_fail_ex+0x497/0x5b0
[ 1115.821752][T17780]  _copy_from_user+0x30/0xf0
[ 1115.823660][T17780]  memdup_user_nul+0x72/0x110
[ 1115.825446][T17780]  device_write+0xc8/0x1df0
[ 1115.827427][T17780]  ? __pfx_device_write+0x10/0x10
[ 1115.829406][T17780]  ? apparmor_file_permission+0x251/0x400
[ 1115.832252][T17780]  ? bpf_lsm_file_permission+0x9/0x10
[ 1115.834386][T17780]  ? security_file_permission+0x98/0xc0
[ 1115.836668][T17780]  ? __pfx_device_write+0x10/0x10
[ 1115.838646][T17780]  vfs_writev+0x6ec/0xde0
[ 1115.840609][T17780]  ? __pfx_vfs_writev+0x10/0x10
[ 1115.842730][T17780]  ? __fget_files+0x24c/0x400
[ 1115.844919][T17780]  ? do_writev+0x137/0x370
[ 1115.846898][T17780]  do_writev+0x137/0x370
[ 1115.848808][T17780]  ? __pfx_do_writev+0x10/0x10
[ 1115.850817][T17780]  __do_fast_syscall_32+0x73/0x120
[ 1115.853108][T17780]  do_fast_syscall_32+0x32/0x80
[ 1115.855113][T17780]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1115.857727][T17780] RIP: 0023:0xf749e579
[ 1115.859506][T17780] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1115.867268][T17780] RSP: 002b:00000000f56f456c EFLAGS: 00000296 ORIG_RAX: 0000000000000092
[ 1115.870639][T17780] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000020005500
[ 1115.873988][T17780] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[ 1115.877414][T17780] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1115.880672][T17780] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1115.883666][T17780] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1115.886940][T17780]  </TASK>
[ 1117.838221][T17796] netlink: 'syz.1.3389': attribute type 12 has an invalid length.
[ 1117.857328][T17796] netlink: 'syz.1.3389': attribute type 11 has an invalid length.
[ 1117.865604][T17796] netlink: 211132 bytes leftover after parsing attributes in process `syz.1.3389'.
[ 1117.909783][T13282] block nbd1: Receive control failed (result -107)
[ 1118.039129][T17796] nbd1: detected capacity change from 0 to 15960
[ 1118.060050][T17795] block nbd1: shutting down sockets
[ 1119.547271][T17824] random: crng reseeded on system resumption
[ 1121.181273][ T1377] ieee802154 phy0 wpan0: encryption failed: -22
[ 1121.183505][ T1377] ieee802154 phy1 wpan1: encryption failed: -22
[ 1121.919488][T17853] netlink: 'syz.1.3403': attribute type 12 has an invalid length.
[ 1121.971470][T17853] netlink: 'syz.1.3403': attribute type 11 has an invalid length.
[ 1121.979329][T17853] netlink: 211132 bytes leftover after parsing attributes in process `syz.1.3403'.
[ 1122.030212][T13282] block nbd1: Receive control failed (result -107)
[ 1122.108956][T17853] nbd1: detected capacity change from 0 to 15960
[ 1122.129292][T17852] block nbd1: shutting down sockets
[ 1123.940204][T17879] netlink: 'syz.0.3410': attribute type 12 has an invalid length.
[ 1123.999613][T17879] netlink: 'syz.0.3410': attribute type 11 has an invalid length.
[ 1124.002931][T17879] netlink: 211132 bytes leftover after parsing attributes in process `syz.0.3410'.
[ 1124.069990][T13282] block nbd0: Receive control failed (result -107)
[ 1124.149601][T17879] nbd0: detected capacity change from 0 to 15960
[ 1124.282080][T17878] block nbd0: shutting down sockets
[ 1124.586243][T17891] xt_NFQUEUE: number of total queues is 0
[ 1124.725944][T17896] netlink: 104 bytes leftover after parsing attributes in process `syz.1.3416'.
[ 1124.734213][T17896] netlink: 104 bytes leftover after parsing attributes in process `syz.1.3416'.
[ 1125.141362][T17903] netlink: 'syz.0.3418': attribute type 12 has an invalid length.
[ 1125.198125][T17903] netlink: 'syz.0.3418': attribute type 11 has an invalid length.
[ 1125.205336][T17903] netlink: 211132 bytes leftover after parsing attributes in process `syz.0.3418'.
[ 1125.334548][T13282] block nbd0: Receive control failed (result -107)
[ 1125.430753][T17903] nbd0: detected capacity change from 0 to 15960
[ 1125.466546][T17902] block nbd0: shutting down sockets
[ 1126.188520][T17913] netlink: 'syz.3.3421': attribute type 12 has an invalid length.
[ 1126.220616][T17913] netlink: 'syz.3.3421': attribute type 11 has an invalid length.
[ 1126.230242][T17913] netlink: 211132 bytes leftover after parsing attributes in process `syz.3.3421'.
[ 1126.304289][T13282] block nbd3: Receive control failed (result -107)
[ 1126.369003][T17913] nbd3: detected capacity change from 0 to 15960
[ 1126.406053][T17912] block nbd3: shutting down sockets
[ 1126.585087][T17921] FAULT_INJECTION: forcing a failure.
[ 1126.585087][T17921] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1126.599800][T17921] CPU: 0 UID: 0 PID: 17921 Comm: syz.3.3423 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0
[ 1126.604303][T17921] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1126.608663][T17921] Call Trace:
[ 1126.610065][T17921]  <TASK>
[ 1126.611321][T17921]  dump_stack_lvl+0x16c/0x1f0
[ 1126.613131][T17921]  should_fail_ex+0x497/0x5b0
[ 1126.614887][T17921]  _copy_to_user+0x30/0xc0
[ 1126.616586][T17921]  simple_read_from_buffer+0xd0/0x160
[ 1126.618802][T17921]  proc_fail_nth_read+0x19e/0x280
[ 1126.620924][T17921]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1126.623222][T17921]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1126.625520][T17921]  vfs_read+0x1d4/0xbd0
[ 1126.627264][T17921]  ? __fdget_pos+0xeb/0x180
[ 1126.629234][T17921]  ? __pfx_vfs_read+0x10/0x10
[ 1126.631236][T17921]  ? __pfx___mutex_lock+0x10/0x10
[ 1126.633417][T17921]  ? __fget_files+0x256/0x400
[ 1126.635381][T17921]  ksys_read+0x12f/0x260
[ 1126.637157][T17921]  ? __pfx_ksys_read+0x10/0x10
[ 1126.639150][T17921]  __do_fast_syscall_32+0x73/0x120
[ 1126.641292][T17921]  do_fast_syscall_32+0x32/0x80
[ 1126.643327][T17921]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1126.645993][T17921] RIP: 0023:0xf7f71579
[ 1126.647695][T17921] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1126.655628][T17921] RSP: 002b:00000000f57165a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 1126.659029][T17921] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f5716620
[ 1126.662264][T17921] RDX: 000000000000000f RSI: 00000000f7400ff4 RDI: 0000000000000000
[ 1126.665456][T17921] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1126.668679][T17921] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1126.671902][T17921] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1126.675116][T17921]  </TASK>
[ 1135.955390][T18051] netlink: 'syz.1.3454': attribute type 12 has an invalid length.
[ 1136.001497][T18051] netlink: 'syz.1.3454': attribute type 11 has an invalid length.
[ 1136.008954][T18051] netlink: 211132 bytes leftover after parsing attributes in process `syz.1.3454'.
[ 1136.069533][T13282] block nbd1: Receive control failed (result -107)
[ 1136.189463][T18051] nbd1: detected capacity change from 0 to 15960
[ 1136.206394][T18050] block nbd1: shutting down sockets
[ 1139.858311][T18103] netlink: 'syz.0.3467': attribute type 12 has an invalid length.
[ 1139.889465][T18103] netlink: 'syz.0.3467': attribute type 11 has an invalid length.
[ 1139.892822][T18103] netlink: 211132 bytes leftover after parsing attributes in process `syz.0.3467'.
[ 1139.960198][T13282] block nbd0: Receive control failed (result -107)
[ 1140.038991][T18103] nbd0: detected capacity change from 0 to 15960
[ 1140.069752][T18102] block nbd0: shutting down sockets
[ 1142.289541][T18138] netlink: 'syz.2.3476': attribute type 12 has an invalid length.
[ 1142.338731][T18138] netlink: 'syz.2.3476': attribute type 11 has an invalid length.
[ 1142.353332][T18138] netlink: 211132 bytes leftover after parsing attributes in process `syz.2.3476'.
[ 1142.430032][T13282] block nbd2: Receive control failed (result -107)
[ 1142.528936][T18138] nbd2: detected capacity change from 0 to 15960
[ 1142.547119][T18137] block nbd2: shutting down sockets
[ 1146.340781][T18184] netlink: 'syz.1.3485': attribute type 12 has an invalid length.
[ 1146.391134][T18184] netlink: 'syz.1.3485': attribute type 11 has an invalid length.
[ 1146.394869][T18184] netlink: 211132 bytes leftover after parsing attributes in process `syz.1.3485'.
[ 1146.450585][T13282] block nbd1: Receive control failed (result -107)
[ 1146.548976][T18187] nbd1: detected capacity change from 0 to 15960
[ 1146.570373][T18183] block nbd1: shutting down sockets
[ 1149.489058][T18228] netlink: 'syz.3.3495': attribute type 12 has an invalid length.
[ 1149.550512][T18228] netlink: 'syz.3.3495': attribute type 11 has an invalid length.
[ 1149.559027][T18228] netlink: 211132 bytes leftover after parsing attributes in process `syz.3.3495'.
[ 1149.621910][T13282] block nbd3: Receive control failed (result -107)
[ 1149.709029][T18228] nbd3: detected capacity change from 0 to 15960
[ 1149.727296][T18227] block nbd3: shutting down sockets
[ 1151.467049][T18241] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3501'.
[ 1151.490243][T18240] Bluetooth: MGMT ver 1.23
[ 1151.688007][T18251] FAULT_INJECTION: forcing a failure.
[ 1151.688007][T18251] name failslab, interval 1, probability 0, space 0, times 0
[ 1151.718940][T18251] CPU: 1 UID: 0 PID: 18251 Comm: syz.2.3502 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0
[ 1151.723341][T18251] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1151.727760][T18251] Call Trace:
[ 1151.729268][T18251]  <TASK>
[ 1151.730507][T18251]  dump_stack_lvl+0x16c/0x1f0
[ 1151.732318][T18251]  should_fail_ex+0x497/0x5b0
[ 1151.734122][T18251]  ? fs_reclaim_acquire+0xae/0x160
[ 1151.736081][T18251]  should_failslab+0xc2/0x120
[ 1151.737856][T18251]  __kmalloc_node_noprof+0xd1/0x440
[ 1151.739816][T18251]  ? __vmalloc_node_range_noprof+0x3de/0x14e0
[ 1151.742114][T18251]  __vmalloc_node_range_noprof+0x3de/0x14e0
[ 1151.744328][T18251]  ? bpf_prog_alloc_no_stats+0x54/0x5e0
[ 1151.746391][T18251]  ? mark_lock+0xb5/0xc60
[ 1151.748024][T18251]  ? aa_get_newest_label+0x376/0x680
[ 1151.750038][T18251]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1151.752443][T18251]  ? __pfx_aa_get_newest_label+0x10/0x10
[ 1151.754595][T18251]  ? mark_lock+0xb5/0xc60
[ 1151.756266][T18251]  ? bpf_prog_alloc_no_stats+0x54/0x5e0
[ 1151.758347][T18251]  __vmalloc_noprof+0x6d/0x90
[ 1151.760094][T18251]  ? bpf_prog_alloc_no_stats+0x54/0x5e0
[ 1151.762186][T18251]  bpf_prog_alloc_no_stats+0x54/0x5e0
[ 1151.764241][T18251]  bpf_prog_alloc+0x3b/0x240
[ 1151.766043][T18251]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1151.768310][T18251]  bpf_prog_load+0x1b4e/0x2670
[ 1151.770139][T18251]  ? hlock_class+0x4e/0x130
[ 1151.771876][T18251]  ? __pfx_bpf_prog_load+0x10/0x10
[ 1151.773834][T18251]  ? find_held_lock+0x2d/0x110
[ 1151.775678][T18251]  ? security_bpf+0x8c/0xc0
[ 1151.777430][T18251]  __sys_bpf+0x9e0/0x55e0
[ 1151.779100][T18251]  ? __pfx___sys_bpf+0x10/0x10
[ 1151.780927][T18251]  ? ksys_write+0x12f/0x260
[ 1151.782668][T18251]  ? find_held_lock+0x2d/0x110
[ 1151.784504][T18251]  ? ksys_write+0x21c/0x260
[ 1151.786226][T18251]  ? __pfx_lock_release+0x10/0x10
[ 1151.788110][T18251]  ? vfs_write+0x14d/0x1140
[ 1151.789803][T18251]  ? __mutex_unlock_slowpath+0x164/0x650
[ 1151.791964][T18251]  ? fput+0x32/0x390
[ 1151.793461][T18251]  ? ksys_write+0x1ab/0x260
[ 1151.795198][T18251]  ? __pfx_ksys_write+0x10/0x10
[ 1151.797095][T18251]  __ia32_sys_bpf+0x76/0xe0
[ 1151.798842][T18251]  __do_fast_syscall_32+0x73/0x120
[ 1151.800812][T18251]  do_fast_syscall_32+0x32/0x80
[ 1151.802647][T18251]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1151.805011][T18251] RIP: 0023:0xf7ff1579
[ 1151.806571][T18251] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1151.813783][T18251] RSP: 002b:00000000f577556c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[ 1151.816959][T18251] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000280
[ 1151.819977][T18251] RDX: 0000000000000090 RSI: 0000000000000000 RDI: 0000000000000000
[ 1151.822955][T18251] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1151.825952][T18251] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1151.828955][T18251] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1151.831903][T18251]  </TASK>
[ 1151.938893][T18251] syz.2.3502: vmalloc error: size 4096, failed to allocated page array size 8, mode:0x500dc2(GFP_HIGHUSER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=syz2,mems_allowed=0-1
[ 1152.043244][T18251] CPU: 0 UID: 0 PID: 18251 Comm: syz.2.3502 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0
[ 1152.047801][T18251] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1152.052264][T18251] Call Trace:
[ 1152.053715][T18251]  <TASK>
[ 1152.054997][T18251]  dump_stack_lvl+0x16c/0x1f0
[ 1152.056797][T18251]  warn_alloc+0x24d/0x3a0
[ 1152.058221][T18251]  ? __pfx_warn_alloc+0x10/0x10
[ 1152.060094][T18251]  ? dump_stack_lvl+0x1a1/0x1f0
[ 1152.061832][T18251]  ? dump_stack_lvl+0x1a3/0x1f0
[ 1152.063739][T18251]  ? rcu_is_watching+0x12/0xc0
[ 1152.065477][T18251]  ? __kmalloc_node_noprof+0x22f/0x440
[ 1152.067754][T18251]  __vmalloc_node_range_noprof+0xfe8/0x14e0
[ 1152.070136][T18251]  ? bpf_prog_alloc_no_stats+0x54/0x5e0
[ 1152.072051][T18251]  ? mark_lock+0xb5/0xc60
[ 1152.073620][T18251]  ? aa_get_newest_label+0x376/0x680
[ 1152.075291][T18251]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1152.077850][T18251]  ? __pfx_aa_get_newest_label+0x10/0x10
[ 1152.080015][T18251]  ? mark_lock+0xb5/0xc60
[ 1152.081675][T18251]  ? bpf_prog_alloc_no_stats+0x54/0x5e0
[ 1152.083866][T18251]  __vmalloc_noprof+0x6d/0x90
[ 1152.085884][T18251]  ? bpf_prog_alloc_no_stats+0x54/0x5e0
[ 1152.088243][T18251]  bpf_prog_alloc_no_stats+0x54/0x5e0
[ 1152.090527][T18251]  bpf_prog_alloc+0x3b/0x240
[ 1152.092556][T18251]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1152.095103][T18251]  bpf_prog_load+0x1b4e/0x2670
[ 1152.097160][T18251]  ? hlock_class+0x4e/0x130
[ 1152.099031][T18251]  ? __pfx_bpf_prog_load+0x10/0x10
[ 1152.100894][T18251]  ? find_held_lock+0x2d/0x110
[ 1152.102782][T18251]  ? security_bpf+0x8c/0xc0
[ 1152.104771][T18251]  __sys_bpf+0x9e0/0x55e0
[ 1152.106635][T18251]  ? __pfx___sys_bpf+0x10/0x10
[ 1152.108717][T18251]  ? ksys_write+0x12f/0x260
[ 1152.110722][T18251]  ? find_held_lock+0x2d/0x110
[ 1152.112852][T18251]  ? ksys_write+0x21c/0x260
[ 1152.114829][T18251]  ? __pfx_lock_release+0x10/0x10
[ 1152.116912][T18251]  ? vfs_write+0x14d/0x1140
[ 1152.118889][T18251]  ? __mutex_unlock_slowpath+0x164/0x650
[ 1152.121349][T18251]  ? fput+0x32/0x390
[ 1152.122682][T18251]  ? ksys_write+0x1ab/0x260
[ 1152.124239][T18251]  ? __pfx_ksys_write+0x10/0x10
[ 1152.125930][T18251]  __ia32_sys_bpf+0x76/0xe0
[ 1152.127813][T18251]  __do_fast_syscall_32+0x73/0x120
[ 1152.129482][T18251]  do_fast_syscall_32+0x32/0x80
[ 1152.131119][T18251]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1152.133297][T18251] RIP: 0023:0xf7ff1579
[ 1152.134500][T18251] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1152.141800][T18251] RSP: 002b:00000000f577556c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[ 1152.145214][T18251] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000280
[ 1152.148305][T18251] RDX: 0000000000000090 RSI: 0000000000000000 RDI: 0000000000000000
[ 1152.151312][T18251] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1152.153888][T18251] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1152.156508][T18251] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1152.159792][T18251]  </TASK>
[ 1152.162232][T18251] Mem-Info:
[ 1152.163432][T18251] active_anon:7485 inactive_anon:580 isolated_anon:0
[ 1152.163432][T18251]  active_file:7698 inactive_file:40618 isolated_file:0
[ 1152.163432][T18251]  unevictable:768 dirty:268 writeback:0
[ 1152.163432][T18251]  slab_reclaimable:4913 slab_unreclaimable:64529
[ 1152.163432][T18251]  mapped:24555 shmem:2850 pagetables:650
[ 1152.163432][T18251]  sec_pagetables:336 bounce:0
[ 1152.163432][T18251]  kernel_misc_reclaimable:0
[ 1152.163432][T18251]  free:69374 free_pcp:4616 free_cma:0
[ 1152.179368][T18251] Node 0 active_anon:1180kB inactive_anon:1036kB active_file:24kB inactive_file:4kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:11820kB dirty:8kB writeback:0kB shmem:1424kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9752kB pagetables:1848kB sec_pagetables:1280kB all_unreclaimable? no
[ 1152.194015][T18251] Node 1 active_anon:30640kB inactive_anon:100kB active_file:30784kB inactive_file:162452kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:86400kB dirty:1064kB writeback:0kB shmem:9976kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:1612kB pagetables:752kB sec_pagetables:64kB all_unreclaimable? no
[ 1152.206694][T18251] Node 0 DMA free:940kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB active_anon:0kB inactive_anon:4kB active_file:8kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:232kB local_pcp:44kB free_cma:0kB
[ 1152.219871][T18251] lowmem_reserve[]: 0 369 0 0 0
[ 1152.222668][T18251] Node 0 DMA32 free:26340kB boost:0kB min:18816kB low:23520kB high:28224kB reserved_highatomic:4096KB active_anon:2016kB inactive_anon:204kB active_file:16kB inactive_file:4kB unevictable:1536kB writepending:8kB present:1032192kB managed:405664kB mlocked:0kB bounce:0kB free_pcp:5264kB local_pcp:460kB free_cma:0kB
[ 1152.235845][T18251] lowmem_reserve[]: 0 0 0 0 0
[ 1152.238511][T18251] Node 1 DMA32 free:249980kB boost:0kB min:47052kB low:58812kB high:70572kB reserved_highatomic:0KB active_anon:31440kB inactive_anon:100kB active_file:30784kB inactive_file:162452kB unevictable:1536kB writepending:1064kB present:1048436kB managed:946208kB mlocked:0kB bounce:0kB free_pcp:11192kB local_pcp:936kB free_cma:0kB
[ 1152.254849][T18251] lowmem_reserve[]: 0 0 0 0 0
[ 1152.256614][T18251] Node 0 DMA: 9*4kB (U) 1*8kB (U) 8*16kB (U) 24*32kB (U) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 940kB
[ 1152.262370][T18251] Node 0 DMA32: 133*4kB (UMEH) 62*8kB (UEH) 34*16kB (UMEH) 120*32kB (UMEH) 91*64kB (UE) 32*128kB (UME) 11*256kB (UME) 10*512kB (UME) 3*1024kB (UM) 0*2048kB 0*4096kB = 26340kB
[ 1152.270116][T18251] Node 1 DMA32: 85*4kB (UME) 177*8kB (UME) 438*16kB (UME) 379*32kB (UME) 473*64kB (UME) 145*128kB (UME) 98*256kB (UME) 65*512kB (UME) 45*1024kB (UM) 15*2048kB (UM) 11*4096kB (UM) = 249948kB
[ 1152.277456][T18251] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1152.287334][T18251] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1152.291187][T18251] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1152.294892][T18251] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1152.304420][T18251] 51688 total pagecache pages
[ 1152.307222][T18251] 521 pages in swap cache
[ 1152.325133][T18251] Free swap  = 112440kB
[ 1152.327748][T18251] Total swap = 124996kB
[ 1152.330419][T18251] 524155 pages RAM
[ 1152.332719][T18251] 0 pages HighMem/MovableOnly
[ 1152.335589][T18251] 182347 pages reserved
[ 1152.338334][T18251] 0 pages cma reserved
[ 1154.029842][T18281] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1154.091077][T18281] FAULT_INJECTION: forcing a failure.
[ 1154.091077][T18281] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1154.100981][T18281] CPU: 3 UID: 0 PID: 18281 Comm: syz.3.3508 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0
[ 1154.104118][T18281] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1154.107558][T18281] Call Trace:
[ 1154.108950][T18281]  <TASK>
[ 1154.110178][T18281]  dump_stack_lvl+0x16c/0x1f0
[ 1154.112156][T18281]  should_fail_ex+0x497/0x5b0
[ 1154.114144][T18281]  _copy_from_iter+0x27a/0xfc0
[ 1154.116224][T18281]  ? __alloc_skb+0x200/0x380
[ 1154.118150][T18281]  ? __pfx__copy_from_iter+0x10/0x10
[ 1154.120375][T18281]  ? __virt_addr_valid+0x5e/0x590
[ 1154.122481][T18281]  ? __phys_addr_symbol+0x30/0x80
[ 1154.124566][T18281]  ? __check_object_size+0x497/0x720
[ 1154.126920][T18281]  netlink_sendmsg+0x813/0xd70
[ 1154.129028][T18281]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1154.131202][T18281]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1154.133392][T18281]  ____sys_sendmsg+0x9b4/0xb50
[ 1154.135350][T18281]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1154.137523][T18281]  ? get_compat_msghdr+0x11b/0x170
[ 1154.139714][T18281]  ? __pfx___lock_acquire+0x10/0x10
[ 1154.141875][T18281]  ___sys_sendmsg+0x135/0x1e0
[ 1154.143871][T18281]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1154.146116][T18281]  ? ksys_write+0x21c/0x260
[ 1154.148102][T18281]  ? __fget_light+0x173/0x210
[ 1154.150165][T18281]  __sys_sendmsg+0x117/0x1f0
[ 1154.151983][T18281]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1154.153957][T18281]  __do_fast_syscall_32+0x73/0x120
[ 1154.155944][T18281]  do_fast_syscall_32+0x32/0x80
[ 1154.157910][T18281]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1154.160544][T18281] RIP: 0023:0xf7f71579
[ 1154.162237][T18281] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1154.170357][T18281] RSP: 002b:00000000f571656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1154.173848][T18281] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000200001c0
[ 1154.177141][T18281] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1154.180455][T18281] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1154.183712][T18281] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1154.187071][T18281] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1154.190452][T18281]  </TASK>
[ 1154.238090][T18281] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1154.265680][T18281] program syz.3.3508 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1154.278679][T18283] FAULT_INJECTION: forcing a failure.
[ 1154.278679][T18283] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1154.297295][T18283] CPU: 1 UID: 0 PID: 18283 Comm: syz.0.3509 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0
[ 1154.301176][T18283] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1154.305197][T18283] Call Trace:
[ 1154.306442][T18283]  <TASK>
[ 1154.307555][T18283]  dump_stack_lvl+0x16c/0x1f0
[ 1154.309332][T18283]  should_fail_ex+0x497/0x5b0
[ 1154.311083][T18283]  _copy_to_user+0x30/0xc0
[ 1154.312761][T18283]  simple_read_from_buffer+0xd0/0x160
[ 1154.314756][T18283]  proc_fail_nth_read+0x19e/0x280
[ 1154.316631][T18283]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1154.318672][T18283]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1154.320750][T18283]  vfs_read+0x1d4/0xbd0
[ 1154.322361][T18283]  ? fput+0x32/0x390
[ 1154.323805][T18283]  ? __fdget_pos+0xeb/0x180
[ 1154.325439][T18283]  ? __pfx_vfs_read+0x10/0x10
[ 1154.327175][T18283]  ? __pfx___mutex_lock+0x10/0x10
[ 1154.329031][T18283]  ? __fget_files+0x256/0x400
[ 1154.330752][T18283]  ksys_read+0x12f/0x260
[ 1154.332314][T18283]  ? __pfx_ksys_read+0x10/0x10
[ 1154.334085][T18283]  __do_fast_syscall_32+0x73/0x120
[ 1154.335953][T18283]  do_fast_syscall_32+0x32/0x80
[ 1154.337733][T18283]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1154.339865][T18283] RIP: 0023:0xf749e579
[ 1154.341366][T18283] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1154.348334][T18283] RSP: 002b:00000000f57a65a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 1154.351345][T18283] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000f57a6620
[ 1154.353953][T18283] RDX: 000000000000000f RSI: 00000000f7490ff4 RDI: 0000000000000000
[ 1154.356456][T18283] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1154.358968][T18283] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1154.361470][T18283] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1154.364135][T18283]  </TASK>
[ 1154.489879][T18285] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1154.492751][T18285] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1154.496074][T18285] bridge0: entered allmulticast mode
[ 1154.525951][T18285] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1154.528664][T18285] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1154.531741][T18285] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1154.534440][T18285] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1154.549213][T18285] bridge0: entered promiscuous mode
[ 1154.587705][T18285] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1156.953479][T18309] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3518'.
[ 1157.531018][ T5395] usb 8-1: new high-speed USB device number 107 using dummy_hcd
[ 1157.784955][ T5395] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1157.798631][ T5395] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1157.809961][ T5395] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1157.822092][ T5395] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1157.852917][T18313] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1157.866998][ T5395] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[ 1158.070940][ T5395] usb 8-1: USB disconnect, device number 107
[ 1159.092252][ T5337] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1159.098327][ T5337] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1159.109450][ T5337] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1159.114820][ T5337] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1159.120033][ T5337] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[ 1159.123421][ T5337] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1159.165905][T18325] ip6gretap0 speed is unknown, defaulting to 1000
[ 1159.584987][T18325] chnl_net:caif_netlink_parms(): no params data found
[ 1160.031426][T18325] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1160.059876][T18325] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1160.062780][T18325] bridge_slave_0: entered allmulticast mode
[ 1160.070667][T18325] bridge_slave_0: entered promiscuous mode
[ 1160.093153][T18325] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1160.097368][T18325] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1160.107501][T18325] bridge_slave_1: entered allmulticast mode
[ 1160.125611][T18325] bridge_slave_1: entered promiscuous mode
[ 1160.291622][T18325] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1160.332498][T18325] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1160.409064][T18339] netlink: 'syz.0.3526': attribute type 12 has an invalid length.
[ 1160.508677][T18325] team0: Port device team_slave_0 added
[ 1160.540969][T18325] team0: Port device team_slave_1 added
[ 1160.541006][T18339] netlink: 'syz.0.3526': attribute type 11 has an invalid length.
[ 1160.546095][T18339] netlink: 211132 bytes leftover after parsing attributes in process `syz.0.3526'.
[ 1160.646382][T13282] block nbd0: Receive control failed (result -107)
[ 1160.729021][T18339] nbd0: detected capacity change from 0 to 15960
[ 1160.748464][T18325] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1160.752639][T18325] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1160.764543][T18325] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1160.765628][T18338] block nbd0: shutting down sockets
[ 1160.772706][T18325] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1160.781797][T18325] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1160.800493][T18325] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1161.028679][T18325] hsr_slave_0: entered promiscuous mode
[ 1161.055362][T18325] hsr_slave_1: entered promiscuous mode
[ 1161.070035][T18325] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1161.073267][T18325] Cannot create hsr debugfs directory
[ 1161.179823][T13282] Bluetooth: hci6: command tx timeout
[ 1161.352184][T18325] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1161.359016][ T5396] usb 5-1: new high-speed USB device number 101 using dummy_hcd
[ 1161.470913][T18325] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1161.551034][ T5396] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid maxpacket 8192, setting to 1024
[ 1161.563146][ T5396] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 1024
[ 1161.573346][ T5396] usb 5-1: New USB device found, idVendor=0499, idProduct=1035, bcdDevice=56.12
[ 1161.593653][ T5396] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1161.610905][ T5396] usb 5-1: config 0 descriptor??
[ 1161.617843][ T5396] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[ 1161.620875][T18325] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1161.731504][T18325] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1161.941216][   T25] usb 5-1: USB disconnect, device number 101
[ 1161.944347][T18325] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1161.963989][T18325] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1161.992780][T18325] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1162.044251][T18325] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1162.193514][T18325] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1162.240270][T18325] 8021q: adding VLAN 0 to HW filter on device team0
[ 1162.284769][   T40] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1162.287952][   T40] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1162.335993][ T8296] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1162.339400][ T8296] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1162.767647][T18325] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1162.872163][T18325] veth0_vlan: entered promiscuous mode
[ 1162.900067][T18325] veth1_vlan: entered promiscuous mode
[ 1162.975550][T18325] veth0_macvtap: entered promiscuous mode
[ 1163.001967][T18325] veth1_macvtap: entered promiscuous mode
[ 1163.024564][T18355] netlink: 'syz.2.3530': attribute type 12 has an invalid length.
[ 1163.047879][T18325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1163.066321][T18325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1163.073396][T18325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1163.078337][T18325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1163.082963][T18325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1163.087645][T18325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1163.093071][T18325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1163.099249][T18325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1163.103642][T18325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1163.108371][T18325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1163.113408][T18325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1163.147760][T18325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1163.152063][T18357] netlink: 'syz.2.3530': attribute type 11 has an invalid length.
[ 1163.152083][T18357] netlink: 211132 bytes leftover after parsing attributes in process `syz.2.3530'.
[ 1163.163299][T18325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1163.167867][T18325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1163.186195][T18325] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1163.214189][T18325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1163.221608][T18325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1163.226413][T18325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1163.232252][T18325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1163.240743][T18325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1163.245629][T18325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1163.260638][T18325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1163.265506][T18325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1163.268962][T13282] Bluetooth: hci6: command tx timeout
[ 1163.282118][T18325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1163.291638][T18325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1163.304529][T18325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1163.309356][T18325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1163.313174][T18325] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1163.334548][T18325] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1163.354221][T13282] block nbd2: Receive control failed (result -107)
[ 1163.361890][T18325] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1163.374250][T18325] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1163.378250][T18325] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1163.382920][T18325] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1163.393400][T18325] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1163.438963][T18358] nbd2: detected capacity change from 0 to 15960
[ 1163.465307][T18354] block nbd2: shutting down sockets
[ 1163.574148][ T1105] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1163.577537][ T1105] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1163.657769][ T1105] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1163.661283][ T1105] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1164.175072][T18383] netlink: 'syz.1.3536': attribute type 12 has an invalid length.
[ 1164.221573][T18383] netlink: 'syz.1.3536': attribute type 11 has an invalid length.
[ 1164.224886][T18383] netlink: 211132 bytes leftover after parsing attributes in process `syz.1.3536'.
[ 1164.280610][T13282] block nbd1: Receive control failed (result -107)
[ 1164.379004][T18383] nbd1: detected capacity change from 0 to 15960
[ 1164.414389][T18380] block nbd1: shutting down sockets
[ 1164.932013][   T25] usb 6-1: new high-speed USB device number 108 using dummy_hcd
[ 1165.131438][   T25] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid maxpacket 8192, setting to 1024
[ 1165.139968][   T25] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 1024
[ 1165.144170][   T25] usb 6-1: New USB device found, idVendor=0499, idProduct=1035, bcdDevice=56.12
[ 1165.178661][   T25] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1165.187880][   T25] usb 6-1: config 0 descriptor??
[ 1165.197378][   T25] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[ 1165.338952][T13282] Bluetooth: hci6: command tx timeout
[ 1165.686443][T18359] usb 6-1: USB disconnect, device number 108
[ 1166.889192][T18406] netlink: 'syz.1.3541': attribute type 12 has an invalid length.
[ 1167.343161][T18406] netlink: 'syz.1.3541': attribute type 11 has an invalid length.
[ 1167.347021][T18406] netlink: 211132 bytes leftover after parsing attributes in process `syz.1.3541'.
[ 1167.429001][T13282] Bluetooth: hci6: command tx timeout
[ 1167.481596][T13282] block nbd1: Receive control failed (result -107)
[ 1167.609085][T18406] nbd1: detected capacity change from 0 to 15960
[ 1167.769899][T18403] block nbd1: shutting down sockets
[ 1168.253694][T18415] dvmrp0: entered allmulticast mode
[ 1170.459131][   T39] kauditd_printk_skb: 65 callbacks suppressed
[ 1170.459147][   T39] audit: type=1326 audit(1724903349.379:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18436 comm="syz.3.3549" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f71579 code=0x0
[ 1171.334351][T18453] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3553'.
[ 1171.353367][T18453] vxcan3: entered promiscuous mode
[ 1171.669116][ T5375] usb 8-1: new high-speed USB device number 108 using dummy_hcd
[ 1171.882472][ T5375] usb 8-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1171.886086][ T5375] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1171.898950][ T5375] usb 8-1: Product: syz
[ 1171.901285][ T5375] usb 8-1: Manufacturer: syz
[ 1171.904018][ T5375] usb 8-1: SerialNumber: syz
[ 1171.918771][ T5375] usb 8-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1172.012730][ T5375] usb 8-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1172.333808][T18463] netlink: 88 bytes leftover after parsing attributes in process `syz.3.3553'.
[ 1172.378612][ T5395] usb 8-1: USB disconnect, device number 108
[ 1173.100661][ T5375] ath9k_htc 8-1:1.0: ath9k_htc: Target is unresponsive
[ 1173.103867][ T5375] ath9k_htc: Failed to initialize the device
[ 1173.129797][ T5395] usb 8-1: ath9k_htc: USB layer deinitialized
[ 1175.450583][T18486] netlink: 'syz.0.3561': attribute type 11 has an invalid length.
[ 1175.453918][T18486] netlink: 211132 bytes leftover after parsing attributes in process `syz.0.3561'.
[ 1175.530761][T13282] block nbd0: Receive control failed (result -107)
[ 1175.729252][T18486] nbd0: detected capacity change from 0 to 15960
[ 1175.742881][T18485] block nbd0: shutting down sockets
[ 1178.315147][T18515] netlink: 'syz.3.3570': attribute type 12 has an invalid length.
[ 1178.431500][T18515] netlink: 'syz.3.3570': attribute type 11 has an invalid length.
[ 1178.434976][T18515] netlink: 211132 bytes leftover after parsing attributes in process `syz.3.3570'.
[ 1178.523078][T13282] block nbd3: Receive control failed (result -107)
[ 1178.648931][T18522] nbd3: detected capacity change from 0 to 15960
[ 1178.670409][T18514] block nbd3: shutting down sockets
[ 1182.622903][ T1377] ieee802154 phy0 wpan0: encryption failed: -22
[ 1182.625738][ T1377] ieee802154 phy1 wpan1: encryption failed: -22
[ 1183.442551][T18557] FAULT_INJECTION: forcing a failure.
[ 1183.442551][T18557] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1183.473093][T18557] CPU: 0 UID: 0 PID: 18557 Comm: syz.1.3579 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0
[ 1183.477619][T18557] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1183.481862][T18557] Call Trace:
[ 1183.483232][T18557]  <TASK>
[ 1183.484528][T18557]  dump_stack_lvl+0x16c/0x1f0
[ 1183.486297][T18557]  should_fail_ex+0x497/0x5b0
[ 1183.488245][T18557]  _copy_to_user+0x30/0xc0
[ 1183.490227][T18557]  simple_read_from_buffer+0xd0/0x160
[ 1183.492642][T18557]  proc_fail_nth_read+0x19e/0x280
[ 1183.494955][T18557]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1183.497490][T18557]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1183.499944][T18557]  vfs_read+0x1d4/0xbd0
[ 1183.501621][T18557]  ? __fdget_pos+0xeb/0x180
[ 1183.503525][T18557]  ? __pfx_vfs_read+0x10/0x10
[ 1183.505209][T18557]  ? __pfx___mutex_lock+0x10/0x10
[ 1183.507319][T18557]  ? __fget_files+0x256/0x400
[ 1183.509377][T18557]  ksys_read+0x12f/0x260
[ 1183.511213][T18557]  ? __pfx_ksys_read+0x10/0x10
[ 1183.513393][T18557]  __do_fast_syscall_32+0x73/0x120
[ 1183.515597][T18557]  do_fast_syscall_32+0x32/0x80
[ 1183.517715][T18557]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1183.520306][T18557] RIP: 0023:0xf7f20579
[ 1183.522140][T18557] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1183.530358][T18557] RSP: 002b:00000000f56c65a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 1183.533989][T18557] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f56c6620
[ 1183.537402][T18557] RDX: 000000000000000f RSI: 00000000f73b0ff4 RDI: 0000000000000000
[ 1183.540801][T18557] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1183.543913][T18557] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1183.547070][T18557] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1183.550395][T18557]  </TASK>
[ 1187.988377][T18600] netlink: 'syz.3.3590': attribute type 11 has an invalid length.
[ 1187.992982][T18600] netlink: 211132 bytes leftover after parsing attributes in process `syz.3.3590'.
[ 1188.050572][T13282] block nbd3: Receive control failed (result -107)
[ 1188.168938][T18600] nbd3: detected capacity change from 0 to 15960
[ 1188.219155][T18599] block nbd3: shutting down sockets
[ 1191.458987][T14365] usb 7-1: new high-speed USB device number 89 using dummy_hcd
[ 1191.670393][T14365] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1191.674602][T14365] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1191.678608][T14365] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1191.683758][T14365] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1191.697653][T18631] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1191.707422][T14365] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[ 1193.304572][T14365] usb 7-1: USB disconnect, device number 89
[ 1193.600376][T18646] netlink: 'syz.0.3601': attribute type 12 has an invalid length.
[ 1193.616626][T18646] netlink: 'syz.0.3601': attribute type 11 has an invalid length.
[ 1193.619323][T18646] netlink: 211132 bytes leftover after parsing attributes in process `syz.0.3601'.
[ 1193.679751][T13282] block nbd0: Receive control failed (result -107)
[ 1193.768972][T18646] nbd0: detected capacity change from 0 to 15960
[ 1193.780062][T18645] block nbd0: shutting down sockets
[ 1197.119837][T10828] bridge_slave_1: left allmulticast mode
[ 1197.122107][T10828] bridge_slave_1: left promiscuous mode
[ 1197.124588][T10828] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1197.141714][T10828] bridge_slave_0: left allmulticast mode
[ 1197.146548][T10828] bridge_slave_0: left promiscuous mode
[ 1197.151591][T10828] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1197.613642][T10828] dvmrp0 (unregistering): left allmulticast mode
[ 1197.961406][T10828] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1197.982615][T10828] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1197.990839][T10828] bond0 (unregistering): (slave dummy0): Releasing backup interface
[ 1197.996776][T10828] bond0 (unregistering): Released all slaves
[ 1198.216167][T10828] IPVS: stopping backup sync thread 15479 ...
[ 1198.630595][T10828] hsr_slave_0: left promiscuous mode
[ 1198.634105][T10828] hsr_slave_1: left promiscuous mode
[ 1198.637142][T10828] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1198.645344][T10828] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1198.649230][T10828] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1198.652453][T10828] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1198.748618][T10828] veth1_macvtap: left promiscuous mode
[ 1198.763042][T10828] veth0_macvtap: left promiscuous mode
[ 1198.773164][T10828] veth1_vlan: left promiscuous mode
[ 1198.790609][T10828] veth0_vlan: left promiscuous mode
[ 1201.214993][T10828] team0 (unregistering): Port device team_slave_1 removed
[ 1201.304352][T18725] netlink: 'syz.3.3622': attribute type 11 has an invalid length.
[ 1201.308504][T18725] netlink: 211132 bytes leftover after parsing attributes in process `syz.3.3622'.
[ 1201.362063][T10828] team0 (unregistering): Port device team_slave_0 removed
[ 1201.389668][T13282] block nbd3: Receive control failed (result -107)
[ 1201.509103][T18725] nbd3: detected capacity change from 0 to 15960
[ 1201.976283][T18720] block nbd3: shutting down sockets
[ 1202.671676][T18722] netlink: 'syz.3.3622': attribute type 12 has an invalid length.
[ 1202.879614][T18739] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1202.889677][T18739] FAULT_INJECTION: forcing a failure.
[ 1202.889677][T18739] name failslab, interval 1, probability 0, space 0, times 0
[ 1202.896093][T18739] CPU: 0 UID: 0 PID: 18739 Comm: syz.2.3627 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0
[ 1202.900534][T18739] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1202.904940][T18739] Call Trace:
[ 1202.906393][T18739]  <TASK>
[ 1202.907665][T18739]  dump_stack_lvl+0x16c/0x1f0
[ 1202.909672][T18739]  should_fail_ex+0x497/0x5b0
[ 1202.911684][T18739]  ? fs_reclaim_acquire+0xae/0x160
[ 1202.913845][T18739]  should_failslab+0xc2/0x120
[ 1202.915841][T18739]  __kmalloc_noprof+0xcb/0x410
[ 1202.917850][T18739]  tomoyo_realpath_from_path+0xbf/0x710
[ 1202.920205][T18739]  tomoyo_check_open_permission+0x2a7/0x3b0
[ 1202.922733][T18739]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[ 1202.925575][T18739]  ? __pfx___lock_acquire+0x10/0x10
[ 1202.927800][T18739]  ? __pfx_hook_file_open+0x10/0x10
[ 1202.929949][T18739]  ? path_get+0x61/0x80
[ 1202.931702][T18739]  tomoyo_file_open+0x71/0x90
[ 1202.933526][T18739]  security_file_open+0x78/0x8b0
[ 1202.935606][T18739]  do_dentry_open+0x5c7/0x15f0
[ 1202.937631][T18739]  vfs_open+0x82/0x3f0
[ 1202.939323][T18739]  dentry_open+0x71/0xd0
[ 1202.940879][T18739]  ovl_path_open+0x198/0x1f0
[ 1202.942716][T18739]  ovl_dir_read_merged+0x185/0x5d0
[ 1202.944714][T18739]  ? dput.part.0+0xce/0x9b0
[ 1202.946605][T18739]  ? __pfx_ovl_dir_read_merged+0x10/0x10
[ 1202.948939][T18739]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1202.951227][T18739]  ? __pfx_ovl_fill_merge+0x10/0x10
[ 1202.953477][T18739]  ? revert_creds+0x99/0xd0
[ 1202.955401][T18739]  ovl_check_empty_dir+0xb0/0x4d0
[ 1202.957487][T18739]  ? __pfx_ovl_check_empty_dir+0x10/0x10
[ 1202.959730][T18739]  ? __pfx_lock_acquire+0x10/0x10
[ 1202.961598][T18739]  ovl_do_remove+0xc5/0xde0
[ 1202.963503][T18739]  ? __pfx_ovl_do_remove+0x10/0x10
[ 1202.965642][T18739]  vfs_rmdir+0x203/0x690
[ 1202.967424][T18739]  ? bpf_lsm_path_rmdir+0x9/0x10
[ 1202.969493][T18739]  do_rmdir+0x3a2/0x410
[ 1202.971237][T18739]  ? __pfx_do_rmdir+0x10/0x10
[ 1202.973217][T18739]  ? getname_flags.part.0+0x1c5/0x550
[ 1202.975452][T18739]  __ia32_sys_rmdir+0xc4/0x110
[ 1202.977418][T18739]  __do_fast_syscall_32+0x73/0x120
[ 1202.979347][T18739]  do_fast_syscall_32+0x32/0x80
[ 1202.981391][T18739]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1202.983897][T18739] RIP: 0023:0xf7ff1579
[ 1202.985578][T18739] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1202.993443][T18739] RSP: 002b:00000000f579656c EFLAGS: 00000296 ORIG_RAX: 0000000000000028
[ 1202.996778][T18739] RAX: ffffffffffffffda RBX: 00000000200001c0 RCX: 0000000000000000
[ 1202.999934][T18739] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1203.003031][T18739] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1203.006022][T18739] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1203.009258][T18739] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1203.012566][T18739]  </TASK>
[ 1203.025933][ T1105] tipc: Subscription rejected, illegal request
[ 1203.033006][T18739] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1203.947222][T18756] netlink: 'syz.0.3633': attribute type 12 has an invalid length.
[ 1204.019573][T18756] netlink: 'syz.0.3633': attribute type 11 has an invalid length.
[ 1204.022881][T18756] netlink: 211132 bytes leftover after parsing attributes in process `syz.0.3633'.
[ 1204.091752][T13282] block nbd0: Receive control failed (result -107)
[ 1204.169014][T18756] nbd0: detected capacity change from 0 to 15960
[ 1204.184591][T18755] block nbd0: shutting down sockets
[ 1208.993482][T18823] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3650'.
[ 1209.806807][T18837] 9pnet_fd: Insufficient options for proto=fd
[ 1209.836623][T18837] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3654'.
[ 1211.147713][T18852] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1211.228536][T18852] tipc: Resetting bearer <eth:syzkaller0>
[ 1211.277150][T18851] tipc: Resetting bearer <eth:syzkaller0>
[ 1212.163854][T18869] 9pnet_fd: Insufficient options for proto=fd
[ 1212.429369][T18875] 9pnet_fd: Insufficient options for proto=fd
[ 1214.144960][T18851] tipc: Disabling bearer <eth:syzkaller0>
[ 1214.182013][T18875] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3666'.
[ 1214.387943][T18890] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3671'.
[ 1217.183394][T18925] FAULT_INJECTION: forcing a failure.
[ 1217.183394][T18925] name failslab, interval 1, probability 0, space 0, times 0
[ 1217.192902][T18925] CPU: 1 UID: 0 PID: 18925 Comm: syz.0.3680 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0
[ 1217.197824][T18925] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1217.202564][T18925] Call Trace:
[ 1217.203978][T18925]  <TASK>
[ 1217.205178][T18925]  dump_stack_lvl+0x16c/0x1f0
[ 1217.207176][T18925]  should_fail_ex+0x497/0x5b0
[ 1217.209200][T18925]  ? fs_reclaim_acquire+0xae/0x160
[ 1217.211501][T18925]  should_failslab+0xc2/0x120
[ 1217.213498][T18925]  __kmalloc_cache_noprof+0x6b/0x310
[ 1217.215721][T18925]  ? hash_net_create+0x36b/0x1250
[ 1217.217861][T18925]  hash_net_create+0x36b/0x1250
[ 1217.219925][T18925]  ? __nla_parse+0x40/0x60
[ 1217.221878][T18925]  ? __pfx_hash_net_create+0x10/0x10
[ 1217.224116][T18925]  ip_set_create+0x62a/0x1400
[ 1217.226122][T18925]  ? __pfx_ip_set_create+0x10/0x10
[ 1217.228283][T18925]  ? rcu_is_watching+0x12/0xc0
[ 1217.230479][T18925]  nfnetlink_rcv_msg+0x9c3/0x11e0
[ 1217.232746][T18925]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[ 1217.235173][T18925]  ? kfree_skbmem+0x1a4/0x1f0
[ 1217.237168][T18925]  ? find_held_lock+0x2d/0x110
[ 1217.239443][T18925]  netlink_rcv_skb+0x165/0x410
[ 1217.241315][T18925]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[ 1217.243461][T18925]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1217.245842][T18925]  ? bpf_lsm_capable+0x9/0x10
[ 1217.247836][T18925]  ? security_capable+0x98/0xd0
[ 1217.249879][T18925]  ? ns_capable+0xd7/0x110
[ 1217.252303][T18925]  nfnetlink_rcv+0x1b4/0x430
[ 1217.254726][T18925]  ? __pfx_nfnetlink_rcv+0x10/0x10
[ 1217.256889][T18925]  ? netlink_deliver_tap+0x1ae/0xcf0
[ 1217.259152][T18925]  netlink_unicast+0x53c/0x7f0
[ 1217.261042][T18925]  ? __pfx_netlink_unicast+0x10/0x10
[ 1217.263034][T18925]  ? __phys_addr_symbol+0x30/0x80
[ 1217.264853][T18925]  ? __check_object_size+0x497/0x720
[ 1217.266772][T18925]  netlink_sendmsg+0x8b8/0xd70
[ 1217.268642][T18925]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1217.271012][T18925]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1217.273323][T18925]  ____sys_sendmsg+0x9b4/0xb50
[ 1217.275404][T18925]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1217.277699][T18925]  ? get_compat_msghdr+0x11b/0x170
[ 1217.279905][T18925]  ? __pfx___lock_acquire+0x10/0x10
[ 1217.282139][T18925]  ___sys_sendmsg+0x135/0x1e0
[ 1217.284171][T18925]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1217.286405][T18925]  ? ksys_write+0x21c/0x260
[ 1217.288191][T18925]  ? __fget_light+0x173/0x210
[ 1217.290107][T18925]  __sys_sendmsg+0x117/0x1f0
[ 1217.292110][T18925]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1217.294336][T18925]  __do_fast_syscall_32+0x73/0x120
[ 1217.296504][T18925]  do_fast_syscall_32+0x32/0x80
[ 1217.298549][T18925]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1217.301741][T18925] RIP: 0023:0xf749e579
[ 1217.303659][T18925] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1217.312411][T18925] RSP: 002b:00000000f57a656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1217.315831][T18925] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[ 1217.318978][T18925] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1217.322123][T18925] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1217.325486][T18925] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1217.328877][T18925] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1217.333747][T18925]  </TASK>
[ 1217.902318][T18942] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 1217.911247][T18943] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3685'.
[ 1218.664238][T18963] ALSA: mixer_oss: invalid OSS volume ''
[ 1218.671011][T18963] ALSA: mixer_oss: invalid OSS volume ''
[ 1220.449017][T18359] usb 6-1: new high-speed USB device number 109 using dummy_hcd
[ 1220.564551][   T39] audit: type=1326 audit(1724903399.489:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18985 comm="syz.3.3698" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f71579 code=0x7ffc0000
[ 1220.583674][   T39] audit: type=1326 audit(1724903399.489:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18985 comm="syz.3.3698" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f71579 code=0x7ffc0000
[ 1220.602491][   T39] audit: type=1326 audit(1724903399.499:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18985 comm="syz.3.3698" exe="/syz-executor" sig=0 arch=40000003 syscall=305 compat=1 ip=0xf7f71579 code=0x7ffc0000
[ 1220.618516][   T39] audit: type=1326 audit(1724903399.499:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18985 comm="syz.3.3698" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f71579 code=0x7ffc0000
[ 1220.629085][T18359] usb 6-1: Using ep0 maxpacket: 8
[ 1220.633893][T18359] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[ 1220.637434][T18359] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1220.641440][T18359] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1220.649091][   T39] audit: type=1326 audit(1724903399.499:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18985 comm="syz.3.3698" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f71579 code=0x7ffc0000
[ 1220.669120][   T39] audit: type=1326 audit(1724903399.519:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18985 comm="syz.3.3698" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f71579 code=0x7ffc0000
[ 1220.678781][   T39] audit: type=1326 audit(1724903399.519:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18985 comm="syz.3.3698" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f71579 code=0x7ffc0000
[ 1220.689085][   T39] audit: type=1326 audit(1724903399.519:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18985 comm="syz.3.3698" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f71579 code=0x7ffc0000
[ 1220.703915][   T39] audit: type=1326 audit(1724903399.519:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18985 comm="syz.3.3698" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f71579 code=0x7ffc0000
[ 1220.718950][   T39] audit: type=1326 audit(1724903399.519:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18985 comm="syz.3.3698" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f71579 code=0x7ffc0000
[ 1220.774496][T18359] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1220.780220][T18359] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1220.786083][T18359] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1220.797091][T18359] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1221.020978][T18359] usb 6-1: usb_control_msg returned -32
[ 1221.023513][T18359] usbtmc 6-1:16.0: can't read capabilities
[ 1223.020658][T19008] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0xd
[ 1223.041802][ T1105] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1223.045015][ T1105] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1223.104854][T18359] usb 6-1: USB disconnect, device number 109
[ 1223.244751][T19015] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.3707'.
[ 1223.257216][T19015] openvswitch: netlink: IP tunnel attribute has 3056 unknown bytes.
[ 1223.348995][T11976] usb 7-1: new high-speed USB device number 90 using dummy_hcd
[ 1223.511634][T11976] usb 7-1: device descriptor read/64, error -71
[ 1223.698963][   T56] usb 6-1: new high-speed USB device number 110 using dummy_hcd
[ 1223.780471][T19025] wg2: entered allmulticast mode
[ 1223.808252][T19025] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3710'.
[ 1223.819118][T11976] usb 7-1: new high-speed USB device number 91 using dummy_hcd
[ 1223.928979][   T56] usb 6-1: Using ep0 maxpacket: 32
[ 1223.933740][   T56] usb 6-1: config index 0 descriptor too short (expected 156, got 27)
[ 1223.937150][   T56] usb 6-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1223.951730][   T56] usb 6-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1223.962904][   T56] usb 6-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1223.979237][   T56] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1223.994087][   T56] usb 6-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1223.999149][T11976] usb 7-1: device descriptor read/64, error -71
[ 1223.999165][   T56] usb 6-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1224.013642][   T56] usb 6-1: Product: syz
[ 1224.022637][   T56] usb 6-1: Manufacturer: syz
[ 1224.029407][   T56] usb 6-1: SerialNumber: syz
[ 1224.041327][T13282] Bluetooth: hci2: unexpected event for opcode 0x2031
[ 1224.049480][   T56] usb 6-1: config 0 descriptor??
[ 1224.069040][   T56] ldusb 6-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1224.074435][   T56] ldusb 6-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1224.129121][T11976] usb usb7-port1: attempt power cycle
[ 1224.588981][T11976] usb 7-1: new high-speed USB device number 92 using dummy_hcd
[ 1224.620438][T11976] usb 7-1: device descriptor read/8, error -71
[ 1224.847873][T19035] netlink: 3 bytes leftover after parsing attributes in process `syz.3.3713'.
[ 1224.900760][T11976] usb 7-1: new high-speed USB device number 93 using dummy_hcd
[ 1224.930002][T19035] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1224.935433][T11976] usb 7-1: device descriptor read/8, error -71
[ 1225.069360][T11976] usb usb7-port1: unable to enumerate USB device
[ 1225.249030][T18359] usb 8-1: new high-speed USB device number 109 using dummy_hcd
[ 1225.466434][T18359] usb 8-1: Using ep0 maxpacket: 8
[ 1225.470557][T18359] usb 8-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1225.474290][T18359] usb 8-1: config 246 descriptor has 1 excess byte, ignoring
[ 1225.489063][T18359] usb 8-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1225.492914][T18359] usb 8-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1225.497711][T18359] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1225.518908][T18359] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1225.523351][T18359] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1225.542732][T18359] usb 8-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1225.546656][T18359] usb 8-1: config 246 descriptor has 1 excess byte, ignoring
[ 1225.551406][T18359] usb 8-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1225.555411][T18359] usb 8-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1225.580777][T18359] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1225.585461][T18359] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1225.632720][T18359] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1225.642767][T18359] usb 8-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1225.646659][T18359] usb 8-1: config 246 descriptor has 1 excess byte, ignoring
[ 1225.652038][T18359] usb 8-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1225.656106][T18359] usb 8-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1225.662028][T18359] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1225.667001][T18359] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1225.689263][T18359] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1225.711700][T18359] usb 8-1: string descriptor 0 read error: -22
[ 1225.735402][T18359] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1225.767870][T18359] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1225.830201][T18359] adutux 8-1:246.0: ADU100  now attached to /dev/usb/adutux1
[ 1226.008000][T19042] Cannot find add_set index 65534 as target
[ 1226.485459][ T5395] usb 6-1: USB disconnect, device number 110
[ 1226.494761][ T5395] ldusb 6-1:0.0: LD USB Device #0 now disconnected
[ 1227.123794][ T5395] usb 8-1: USB disconnect, device number 109
[ 1227.386780][T19058] cgroup: No subsys list or none specified
[ 1228.061981][T13282] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[ 1228.065959][T13282] Bluetooth: hci2: Injecting HCI hardware error event
[ 1228.079413][ T5337] Bluetooth: hci2: hardware error 0x00
[ 1230.220157][ T5337] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[ 1231.173108][T19096] tipc: Started in network mode
[ 1231.177038][T19096] tipc: Node identity 52eaf8386ae4, cluster identity 4711
[ 1231.181549][T19096] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1231.385208][T19096] tipc: Resetting bearer <eth:syzkaller0>
[ 1231.473306][T19095] tipc: Resetting bearer <eth:syzkaller0>
[ 1232.189582][   T25] tipc: Node number set to 940505144
[ 1234.886434][T19138] usb 1-1: USB disconnect, device number 2
[ 1237.411367][T19095] tipc: Disabling bearer <eth:syzkaller0>
[ 1238.262707][T19169] netlink: 'syz.3.3750': attribute type 12 has an invalid length.
[ 1238.381042][T19169] netlink: 'syz.3.3750': attribute type 11 has an invalid length.
[ 1238.388946][T19169] netlink: 211132 bytes leftover after parsing attributes in process `syz.3.3750'.
[ 1238.441132][ T5337] block nbd3: Receive control failed (result -107)
[ 1238.568973][T19169] nbd3: detected capacity change from 0 to 15960
[ 1238.582126][T19168] block nbd3: shutting down sockets
[ 1239.673353][T19202] FAULT_INJECTION: forcing a failure.
[ 1239.673353][T19202] name failslab, interval 1, probability 0, space 0, times 0
[ 1239.680132][T19202] CPU: 0 UID: 0 PID: 19202 Comm: syz.3.3760 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0
[ 1239.686003][T19202] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1239.691155][T19202] Call Trace:
[ 1239.692623][T19202]  <TASK>
[ 1239.693793][T19202]  dump_stack_lvl+0x16c/0x1f0
[ 1239.695547][T19202]  should_fail_ex+0x497/0x5b0
[ 1239.697494][T19202]  ? fs_reclaim_acquire+0xae/0x160
[ 1239.699581][T19202]  should_failslab+0xc2/0x120
[ 1239.701504][T19202]  kmem_cache_alloc_node_noprof+0x71/0x310
[ 1239.704410][T19202]  ? __alloc_skb+0x2b3/0x380
[ 1239.706353][T19202]  __alloc_skb+0x2b3/0x380
[ 1239.708280][T19202]  ? __pfx___alloc_skb+0x10/0x10
[ 1239.710587][T19202]  ? genl_rcv_msg+0x480/0x800
[ 1239.713988][T19202]  ? genl_rcv_msg+0x4bd/0x800
[ 1239.716651][T19202]  netlink_ack+0x164/0xb20
[ 1239.718776][T19202]  netlink_rcv_skb+0x327/0x410
[ 1239.721585][T19202]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1239.724117][T19202]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1239.726639][T19202]  ? down_read+0xc9/0x330
[ 1239.728594][T19202]  ? __pfx_down_read+0x10/0x10
[ 1239.730702][T19202]  ? netlink_deliver_tap+0x1ae/0xcf0
[ 1239.733022][T19202]  genl_rcv+0x28/0x40
[ 1239.734708][T19202]  netlink_unicast+0x53c/0x7f0
[ 1239.736714][T19202]  ? __pfx_netlink_unicast+0x10/0x10
[ 1239.738918][T19202]  ? __phys_addr_symbol+0x30/0x80
[ 1239.741168][T19202]  ? __check_object_size+0x497/0x720
[ 1239.743377][T19202]  netlink_sendmsg+0x8b8/0xd70
[ 1239.745400][T19202]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1239.747610][T19202]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1239.749601][T19204] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.3759'.
[ 1239.749830][T19202]  ____sys_sendmsg+0x9b4/0xb50
[ 1239.756142][T19202]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1239.758334][T19202]  ? get_compat_msghdr+0x11b/0x170
[ 1239.760136][T19204] FAULT_INJECTION: forcing a failure.
[ 1239.760136][T19204] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1239.760469][T19202]  ? __pfx___lock_acquire+0x10/0x10
[ 1239.768043][T19202]  ___sys_sendmsg+0x135/0x1e0
[ 1239.770087][T19202]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1239.772361][T19202]  ? ksys_write+0x21c/0x260
[ 1239.774330][T19202]  ? __fget_light+0x173/0x210
[ 1239.776402][T19202]  __sys_sendmsg+0x117/0x1f0
[ 1239.778382][T19202]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1239.780598][T19202]  __do_fast_syscall_32+0x73/0x120
[ 1239.782626][T19202]  do_fast_syscall_32+0x32/0x80
[ 1239.784657][T19202]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1239.786924][T19202] RIP: 0023:0xf7f71579
[ 1239.788664][T19202] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1239.796400][T19202] RSP: 002b:00000000f571656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1239.799475][T19202] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200008c0
[ 1239.802420][T19202] RDX: 0000000000048080 RSI: 0000000000000000 RDI: 0000000000000000
[ 1239.805371][T19202] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1239.808758][T19202] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1239.811970][T19202] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1239.814650][T19202]  </TASK>
[ 1239.817249][T19204] CPU: 3 UID: 0 PID: 19204 Comm: syz.2.3759 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0
[ 1239.822217][T19204] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1239.823348][   T39] kauditd_printk_skb: 41 callbacks suppressed
[ 1239.823363][   T39] audit: type=1800 audit(2000000006.030:220): pid=19203 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.3758" name="/" dev="fuse" ino=1 res=0 errno=0
[ 1239.826798][T19204] Call Trace:
[ 1239.826807][T19204]  <TASK>
[ 1239.826815][T19204]  dump_stack_lvl+0x16c/0x1f0
[ 1239.826846][T19204]  should_fail_ex+0x497/0x5b0
[ 1239.839752][    C0] TCP: request_sock_TCP: Possible SYN flooding on port [::ffff:0.0.0.0]:20002. Sending cookies.
[ 1239.840590][T19204]  _copy_to_user+0x30/0xc0
[ 1239.849926][T19204]  simple_read_from_buffer+0xd0/0x160
[ 1239.852206][T19204]  proc_fail_nth_read+0x19e/0x280
[ 1239.854345][T19204]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1239.857027][T19204]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1239.859424][T19204]  vfs_read+0x1d4/0xbd0
[ 1239.861292][T19204]  ? __fdget_pos+0xeb/0x180
[ 1239.863805][T19204]  ? __pfx_vfs_read+0x10/0x10
[ 1239.865911][T19204]  ? __pfx___mutex_lock+0x10/0x10
[ 1239.868076][T19204]  ? __fget_files+0x256/0x400
[ 1239.870089][T19204]  ksys_read+0x12f/0x260
[ 1239.871977][T19204]  ? __pfx_ksys_read+0x10/0x10
[ 1239.873964][T19204]  __do_fast_syscall_32+0x73/0x120
[ 1239.876170][T19204]  do_fast_syscall_32+0x32/0x80
[ 1239.878223][T19204]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1239.880829][T19204] RIP: 0023:0xf7ff1579
[ 1239.882593][T19204] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1239.890551][T19204] RSP: 002b:00000000f57755a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 1239.894321][T19204] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f5775620
[ 1239.897913][T19204] RDX: 000000000000000f RSI: 00000000f7480ff4 RDI: 0000000000000000
[ 1239.901522][T19204] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1239.904829][T19204] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1239.908419][T19204] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1239.911744][T19204]  </TASK>
[ 1240.001380][T19214] FAULT_INJECTION: forcing a failure.
[ 1240.001380][T19214] name failslab, interval 1, probability 0, space 0, times 0
[ 1240.009004][T19214] CPU: 3 UID: 0 PID: 19214 Comm: syz.1.3764 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0
[ 1240.013690][T19214] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1240.018539][T19214] Call Trace:
[ 1240.020252][T19214]  <TASK>
[ 1240.021766][T19214]  dump_stack_lvl+0x16c/0x1f0
[ 1240.023901][T19214]  should_fail_ex+0x497/0x5b0
[ 1240.025894][T19214]  ? fs_reclaim_acquire+0xae/0x160
[ 1240.028095][T19214]  should_failslab+0xc2/0x120
[ 1240.030193][T19214]  __kmalloc_noprof+0xcb/0x410
[ 1240.032251][T19214]  ? crypto_type_has_alg+0x5e/0x80
[ 1240.034424][T19214]  pfkey_add+0x130f/0x34e0
[ 1240.036886][T19214]  ? kfree_skbmem+0x11d/0x1f0
[ 1240.039175][T19214]  ? __pfx_pfkey_add+0x10/0x10
[ 1240.041227][T19214]  ? kfree_skbmem+0x1a4/0x1f0
[ 1240.043229][T19214]  ? sk_skb_reason_drop+0x140/0x200
[ 1240.045391][T19214]  ? pfkey_broadcast+0x2ab/0x460
[ 1240.047917][T19214]  ? __pfx_pfkey_add+0x10/0x10
[ 1240.050451][T19214]  pfkey_process+0x6db/0x840
[ 1240.052838][T19214]  ? __pfx_pfkey_process+0x10/0x10
[ 1240.055198][T19214]  ? rcu_is_watching+0x12/0xc0
[ 1240.057226][T19214]  ? __virt_addr_valid+0x5e/0x590
[ 1240.059364][T19214]  ? __phys_addr_symbol+0x30/0x80
[ 1240.061835][T19214]  pfkey_sendmsg+0x43b/0x840
[ 1240.064111][T19214]  ____sys_sendmsg+0x9b4/0xb50
[ 1240.066342][T19214]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1240.068732][T19214]  ? get_compat_msghdr+0x11b/0x170
[ 1240.071142][T19214]  ? __pfx___lock_acquire+0x10/0x10
[ 1240.073434][T19214]  ___sys_sendmsg+0x135/0x1e0
[ 1240.075466][T19214]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1240.077662][T19214]  ? ksys_write+0x21c/0x260
[ 1240.079621][T19214]  ? __fget_light+0x173/0x210
[ 1240.081629][T19214]  __sys_sendmsg+0x117/0x1f0
[ 1240.083569][T19214]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1240.085902][T19214]  __do_fast_syscall_32+0x73/0x120
[ 1240.088048][T19214]  do_fast_syscall_32+0x32/0x80
[ 1240.090172][T19214]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1240.092861][T19214] RIP: 0023:0xf7f20579
[ 1240.094583][T19214] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1240.102521][T19214] RSP: 002b:00000000f56c656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1240.105979][T19214] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000040
[ 1240.109285][T19214] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1240.112589][T19214] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1240.115892][T19214] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1240.119207][T19214] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1240.122507][T19214]  </TASK>
[ 1240.127280][T19215] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[ 1241.869074][ T5395] usb 8-1: new high-speed USB device number 110 using dummy_hcd
[ 1242.089124][ T5395] usb 8-1: Using ep0 maxpacket: 8
[ 1242.113364][ T5395] usb 8-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1242.130864][ T5395] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84
[ 1242.137638][ T5395] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1242.142139][ T5395] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1242.145878][ T5395] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 1242.162726][ T5395] usb 8-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[ 1242.169014][ T5395] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1242.172551][ T5395] usb 8-1: Product: syz
[ 1242.174161][ T5395] usb 8-1: Manufacturer: syz
[ 1242.175955][ T5395] usb 8-1: SerialNumber: syz
[ 1242.182385][ T5395] usb 8-1: config 0 descriptor??
[ 1242.191238][ T5395] input: KB Gear Tablet as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input116
[ 1242.413687][ T5395] usb 8-1: USB disconnect, device number 110
[ 1243.113905][T19263] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3777'.
[ 1244.061539][ T1377] ieee802154 phy0 wpan0: encryption failed: -22
[ 1244.064720][ T1377] ieee802154 phy1 wpan1: encryption failed: -22
[ 1244.426980][T19280] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3782'.
[ 1244.436223][T19280] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3782'.
[ 1244.440483][T19280] block nbd0: Unsupported socket: shutdown callout must be supported.
[ 1247.898973][ T5395] usb 7-1: new high-speed USB device number 94 using dummy_hcd
[ 1248.079163][ T5395] usb 7-1: Using ep0 maxpacket: 16
[ 1248.085065][ T5395] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 38, changing to 9
[ 1248.090830][ T5395] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1248.094316][ T5395] usb 7-1: New USB device found, idVendor=17ef, idProduct=6009, bcdDevice= 0.00
[ 1248.098460][ T5395] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1248.105122][ T5395] usb 7-1: config 0 descriptor??
[ 1248.659667][T19329] FAULT_INJECTION: forcing a failure.
[ 1248.659667][T19329] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1248.665437][T19329] CPU: 3 UID: 0 PID: 19329 Comm: syz.1.3798 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0
[ 1248.669534][T19329] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1248.673601][T19329] Call Trace:
[ 1248.675182][T19329]  <TASK>
[ 1248.676606][T19329]  dump_stack_lvl+0x16c/0x1f0
[ 1248.678786][T19329]  should_fail_ex+0x497/0x5b0
[ 1248.680685][T19329]  _copy_to_user+0x30/0xc0
[ 1248.682448][T19329]  simple_read_from_buffer+0xd0/0x160
[ 1248.684917][T19329]  proc_fail_nth_read+0x19e/0x280
[ 1248.687169][T19329]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1248.689517][T19329]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1248.691955][T19329]  vfs_read+0x1d4/0xbd0
[ 1248.693791][T19329]  ? __fdget_pos+0xeb/0x180
[ 1248.695812][T19329]  ? __pfx_vfs_read+0x10/0x10
[ 1248.697899][T19329]  ? __pfx___mutex_lock+0x10/0x10
[ 1248.700132][T19329]  ? __fget_files+0x256/0x400
[ 1248.702182][T19329]  ksys_read+0x12f/0x260
[ 1248.704019][T19329]  ? __pfx_ksys_read+0x10/0x10
[ 1248.706096][T19329]  __do_fast_syscall_32+0x73/0x120
[ 1248.708329][T19329]  do_fast_syscall_32+0x32/0x80
[ 1248.710043][T19329]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1248.712573][T19329] RIP: 0023:0xf7f20579
[ 1248.714335][T19329] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1248.722871][T19329] RSP: 002b:00000000f56c65a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 1248.726543][T19329] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f56c6620
[ 1248.730070][T19329] RDX: 000000000000000f RSI: 00000000f73b0ff4 RDI: 0000000000000000
[ 1248.733593][T19329] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1248.737113][T19329] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1248.740771][T19329] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1248.744317][T19329]  </TASK>
[ 1249.042378][T18359] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[ 1249.077444][T18359] hid-generic 0000:0000:0000.0011: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[ 1249.154857][T19346] sg_write: data in/out 1738684315/245 bytes for SCSI command 0xbc-- guessing data in;
[ 1249.154857][T19346]    program syz.3.3803 not setting count and/or reply_len properly
[ 1249.804625][T19352] netlink: 'syz.0.3805': attribute type 12 has an invalid length.
[ 1249.863949][T19352] netlink: 'syz.0.3805': attribute type 11 has an invalid length.
[ 1249.866922][T19352] netlink: 211132 bytes leftover after parsing attributes in process `syz.0.3805'.
[ 1249.970187][ T5337] block nbd0: Receive control failed (result -107)
[ 1250.023265][T19348] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 1250.079377][T19352] nbd0: detected capacity change from 0 to 15960
[ 1250.105054][T19351] block nbd0: shutting down sockets
[ 1250.176597][T19363] FAULT_INJECTION: forcing a failure.
[ 1250.176597][T19363] name failslab, interval 1, probability 0, space 0, times 0
[ 1250.198881][T19363] CPU: 1 UID: 0 PID: 19363 Comm: syz.0.3808 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0
[ 1250.203519][T19363] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1250.208210][T19363] Call Trace:
[ 1250.209627][T19363]  <TASK>
[ 1250.210946][T19363]  dump_stack_lvl+0x16c/0x1f0
[ 1250.213082][T19363]  should_fail_ex+0x497/0x5b0
[ 1250.215124][T19363]  ? fs_reclaim_acquire+0xae/0x160
[ 1250.217393][T19363]  should_failslab+0xc2/0x120
[ 1250.219285][T19363]  __kmalloc_cache_noprof+0x6b/0x310
[ 1250.221670][T19363]  ? apparmor_sk_alloc_security+0x87/0x150
[ 1250.222921][ T5395] usb 7-1: string descriptor 0 read error: -71
[ 1250.224374][T19363]  apparmor_sk_alloc_security+0x87/0x150
[ 1250.224399][T19363]  security_sk_alloc+0x75/0xc0
[ 1250.224411][T19363]  sk_prot_alloc+0x1c7/0x2a0
[ 1250.230341][ T5395] usbhid 7-1:0.0: can't add hid device: -71
[ 1250.231167][T19363]  sk_alloc+0x36/0xb90
[ 1250.235189][ T5395] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[ 1250.235725][T19363]  bpf_prog_test_run_skb+0x335/0x2140
[ 1250.235760][T19363]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[ 1250.240154][ T5395] usb 7-1: USB disconnect, device number 94
[ 1250.240536][T19363]  ? fput+0x32/0x390
[ 1250.248716][T19363]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[ 1250.251111][T19363]  __sys_bpf+0x1af6/0x55e0
[ 1250.252883][T19363]  ? __pfx___sys_bpf+0x10/0x10
[ 1250.254497][T19363]  ? ksys_write+0x12f/0x260
[ 1250.256524][T19363]  ? find_held_lock+0x2d/0x110
[ 1250.258681][T19363]  ? ksys_write+0x21c/0x260
[ 1250.260713][T19363]  ? __pfx_lock_release+0x10/0x10
[ 1250.262932][T19363]  ? vfs_write+0x14d/0x1140
[ 1250.264943][T19363]  ? __mutex_unlock_slowpath+0x164/0x650
[ 1250.267403][T19363]  ? fput+0x32/0x390
[ 1250.269127][T19363]  ? ksys_write+0x1ab/0x260
[ 1250.271136][T19363]  ? __pfx_ksys_write+0x10/0x10
[ 1250.273231][T19363]  __ia32_sys_bpf+0x76/0xe0
[ 1250.275193][T19363]  __do_fast_syscall_32+0x73/0x120
[ 1250.277406][T19363]  do_fast_syscall_32+0x32/0x80
[ 1250.279532][T19363]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1250.282226][T19363] RIP: 0023:0xf749e579
[ 1250.284213][T19363] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1250.291717][T19363] RSP: 002b:00000000f57a656c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[ 1250.294836][T19363] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000280
[ 1250.297844][T19363] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000000
[ 1250.300407][T19363] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1250.302897][T19363] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1250.306226][T19363] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1250.309675][T19363]  </TASK>
[ 1258.392986][T19446] Bluetooth: MGMT ver 1.23
[ 1258.419986][T19448] FAULT_INJECTION: forcing a failure.
[ 1258.419986][T19448] name failslab, interval 1, probability 0, space 0, times 0
[ 1258.425760][T19448] CPU: 1 UID: 0 PID: 19448 Comm: syz.2.3833 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0
[ 1258.430396][T19448] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1258.435017][T19448] Call Trace:
[ 1258.436457][T19448]  <TASK>
[ 1258.437755][T19448]  dump_stack_lvl+0x16c/0x1f0
[ 1258.439957][T19448]  should_fail_ex+0x497/0x5b0
[ 1258.441983][T19448]  ? fs_reclaim_acquire+0xae/0x160
[ 1258.444257][T19448]  should_failslab+0xc2/0x120
[ 1258.446376][T19448]  kmem_cache_alloc_noprof+0x6e/0x2f0
[ 1258.448681][T19448]  ? alloc_empty_file+0x73/0x1e0
[ 1258.450812][T19448]  alloc_empty_file+0x73/0x1e0
[ 1258.452866][T19448]  alloc_file_pseudo+0x13d/0x200
[ 1258.455035][T19448]  ? __pfx_alloc_file_pseudo+0x10/0x10
[ 1258.457326][T19448]  ? do_raw_spin_unlock+0x172/0x230
[ 1258.459632][T19448]  ? _raw_spin_unlock+0x28/0x50
[ 1258.461821][T19448]  ? alloc_fd+0x2d7/0x6c0
[ 1258.463703][T19448]  sock_alloc_file+0x50/0x1d0
[ 1258.465689][T19448]  __sys_socket+0x1c2/0x260
[ 1258.467872][T19448]  ? __pfx___sys_socket+0x10/0x10
[ 1258.470036][T19448]  __do_compat_sys_socketcall+0x57e/0x700
[ 1258.472490][T19448]  ? __pfx___do_compat_sys_socketcall+0x10/0x10
[ 1258.475249][T19448]  ? fput+0x32/0x390
[ 1258.477025][T19448]  __do_fast_syscall_32+0x73/0x120
[ 1258.479332][T19448]  do_fast_syscall_32+0x32/0x80
[ 1258.481562][T19448]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1258.484279][T19448] RIP: 0023:0xf7ff1579
[ 1258.486019][T19448] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1258.494086][T19448] RSP: 002b:00000000f5795500 EFLAGS: 00000282 ORIG_RAX: 0000000000000066
[ 1258.497634][T19448] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00000000f5795510
[ 1258.500948][T19448] RDX: 00000000f7480ff4 RSI: 0000000000000000 RDI: 00000000f7480ff4
[ 1258.504294][T19448] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1258.507605][T19448] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1258.510955][T19448] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1258.514279][T19448]  </TASK>
[ 1259.925859][T19475] FAULT_INJECTION: forcing a failure.
[ 1259.925859][T19475] name failslab, interval 1, probability 0, space 0, times 0
[ 1259.943909][T19475] CPU: 2 UID: 0 PID: 19475 Comm: syz.1.3842 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0
[ 1259.948461][T19475] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1259.953025][T19475] Call Trace:
[ 1259.954469][T19475]  <TASK>
[ 1259.955745][T19475]  dump_stack_lvl+0x16c/0x1f0
[ 1259.957760][T19475]  should_fail_ex+0x497/0x5b0
[ 1259.959805][T19475]  ? fs_reclaim_acquire+0xae/0x160
[ 1259.962015][T19475]  should_failslab+0xc2/0x120
[ 1259.964045][T19475]  kmem_cache_alloc_noprof+0x6e/0x2f0
[ 1259.966339][T19475]  ? security_inode_alloc+0x3e/0x240
[ 1259.968606][T19475]  security_inode_alloc+0x3e/0x240
[ 1259.970818][T19475]  inode_init_always+0xc56/0xf80
[ 1259.972970][T19475]  alloc_inode+0x7d/0x230
[ 1259.974856][T19475]  new_inode+0x22/0x210
[ 1259.976650][T19475]  proc_pid_make_inode+0x22/0x160
[ 1259.978826][T19475]  proc_pident_instantiate+0x85/0x320
[ 1259.981144][T19475]  proc_tgid_base_lookup+0x214/0x280
[ 1259.983724][T19475]  __lookup_slow+0x24f/0x460
[ 1259.985768][T19475]  ? __pfx___lookup_slow+0x10/0x10
[ 1259.987969][T19475]  ? __startup_64+0x120/0x2a0
[ 1259.990001][T19475]  ? __startup_64+0x120/0x2a0
[ 1259.992059][T19475]  ? lookup_fast+0x155/0x540
[ 1259.994045][T19475]  walk_component+0x350/0x5b0
[ 1259.996075][T19475]  link_path_walk.part.0.constprop.0+0x669/0xd40
[ 1259.998791][T19475]  path_openat+0x238/0x2d20
[ 1260.000757][T19475]  ? __lock_acquire+0x1620/0x3cb0
[ 1260.002974][T19475]  ? __pfx_path_openat+0x10/0x10
[ 1260.005114][T19475]  ? __pfx___lock_acquire+0x10/0x10
[ 1260.007346][T19475]  ? find_held_lock+0x2d/0x110
[ 1260.009399][T19475]  do_filp_open+0x1dc/0x430
[ 1260.011368][T19475]  ? __pfx_do_filp_open+0x10/0x10
[ 1260.013548][T19475]  ? find_held_lock+0x2d/0x110
[ 1260.015610][T19475]  ? __pfx_kfree_link+0x10/0x10
[ 1260.017759][T19475]  ? _raw_spin_unlock+0x28/0x50
[ 1260.019942][T19475]  ? alloc_fd+0x2d7/0x6c0
[ 1260.021844][T19475]  do_sys_openat2+0x17a/0x1e0
[ 1260.023923][T19475]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1260.026240][T19475]  __ia32_compat_sys_openat+0x16e/0x210
[ 1260.028664][T19475]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[ 1260.031320][T19475]  ? ksys_write+0x1ab/0x260
[ 1260.033378][T19475]  __do_fast_syscall_32+0x73/0x120
[ 1260.035669][T19475]  do_fast_syscall_32+0x32/0x80
[ 1260.037816][T19475]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1260.040580][T19475] RIP: 0023:0xf7f20579
[ 1260.042335][T19475] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1260.049532][T19475] RSP: 002b:00000000f56c64f0 EFLAGS: 00000293 ORIG_RAX: 0000000000000127
[ 1260.053031][T19475] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000f729b74a
[ 1260.056336][T19475] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000f73b0ff4
[ 1260.059570][T19475] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1260.062652][T19475] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1260.065669][T19475] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1260.068672][T19475]  </TASK>
[ 1264.813871][T19531] netlink: 'syz.1.3856': attribute type 12 has an invalid length.
[ 1264.852742][T19531] netlink: 'syz.1.3856': attribute type 11 has an invalid length.
[ 1264.855995][T19531] netlink: 211132 bytes leftover after parsing attributes in process `syz.1.3856'.
[ 1264.948126][ T5337] block nbd1: Receive control failed (result -107)
[ 1265.058948][T19531] nbd1: detected capacity change from 0 to 15960
[ 1265.067525][T19529] block nbd1: shutting down sockets
[ 1265.176177][   T39] audit: type=1326 audit(2000000031.380:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19539 comm="syz.1.3858" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f20579 code=0x7ffc0000
[ 1265.188695][   T39] audit: type=1326 audit(2000000031.380:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19539 comm="syz.1.3858" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f20579 code=0x7ffc0000
[ 1265.199043][   T39] audit: type=1326 audit(2000000031.380:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19539 comm="syz.1.3858" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7f20579 code=0x7ffc0000
[ 1265.207701][   T39] audit: type=1326 audit(2000000031.380:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19539 comm="syz.1.3858" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f20579 code=0x7ffc0000
[ 1265.224273][   T39] audit: type=1326 audit(2000000031.380:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19539 comm="syz.1.3858" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f20579 code=0x7ffc0000
[ 1265.233666][ T5395] usb 5-1: new high-speed USB device number 102 using dummy_hcd
[ 1265.237621][   T39] audit: type=1326 audit(2000000031.380:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19539 comm="syz.1.3858" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f20579 code=0x7ffc0000
[ 1265.246055][   T39] audit: type=1326 audit(2000000031.380:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19539 comm="syz.1.3858" exe="/syz-executor" sig=0 arch=40000003 syscall=175 compat=1 ip=0xf7f20579 code=0x7ffc0000
[ 1265.258424][   T39] audit: type=1326 audit(2000000031.380:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19539 comm="syz.1.3858" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f20579 code=0x7ffc0000
[ 1265.267914][   T39] audit: type=1326 audit(2000000031.380:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19539 comm="syz.1.3858" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f20579 code=0x7ffc0000
[ 1265.278589][   T39] audit: type=1326 audit(2000000031.380:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19539 comm="syz.1.3858" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f20579 code=0x7ffc0000
[ 1265.420481][ T5395] usb 5-1: Using ep0 maxpacket: 32
[ 1265.427733][ T5395] usb 5-1: config index 0 descriptor too short (expected 156, got 27)
[ 1265.432525][ T5395] usb 5-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1265.437751][ T5395] usb 5-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1265.442738][ T5395] usb 5-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1265.448515][ T5395] usb 5-1: config 0 interface 0 has no altsetting 0
[ 1265.456138][ T5395] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1265.463094][ T5395] usb 5-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1265.467021][ T5395] usb 5-1: Product: syz
[ 1265.470433][ T5395] usb 5-1: Manufacturer: syz
[ 1265.472440][ T5395] usb 5-1: SerialNumber: syz
[ 1265.478453][ T5395] usb 5-1: config 0 descriptor??
[ 1265.484481][ T5395] ldusb 5-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1265.491772][ T5395] ldusb 5-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1265.796424][T19538] netlink: 'syz.0.3857': attribute type 4 has an invalid length.
[ 1266.190082][ T5375] usb 5-1: USB disconnect, device number 102
[ 1266.194005][ T5375] ldusb 5-1:0.0: LD USB Device #0 now disconnected
[ 1269.179124][ T5337] Bluetooth: hci6: Controller not accepting commands anymore: ncmd = 0
[ 1269.182489][ T5337] Bluetooth: hci6: Injecting HCI hardware error event
[ 1269.187430][ T5337] Bluetooth: hci6: hardware error 0x00
[ 1269.774754][T19595] netlink: 'syz.0.3870': attribute type 4 has an invalid length.
[ 1270.252949][ T5615] usb 5-1: new high-speed USB device number 103 using dummy_hcd
[ 1270.438910][ T5615] usb 5-1: Using ep0 maxpacket: 8
[ 1270.443174][ T5615] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1270.446946][ T5615] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1270.450754][ T5615] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1270.455430][ T5615] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1270.469003][ T5615] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1270.472865][ T5615] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1270.506599][T19602] netlink: 16126 bytes leftover after parsing attributes in process `syz.2.3872'.
[ 1270.511823][T19602] netlink: 183228 bytes leftover after parsing attributes in process `syz.2.3872'.
[ 1270.730784][ T5615] usb 5-1: GET_CAPABILITIES returned 0
[ 1270.733177][ T5615] usbtmc 5-1:16.0: can't read capabilities
[ 1270.952524][ T5615] usb 5-1: USB disconnect, device number 103
[ 1271.267943][ T5337] Bluetooth: hci6: Opcode 0x0c03 failed: -110
[ 1271.422926][T19610] netlink: 'syz.2.3874': attribute type 12 has an invalid length.
[ 1271.489871][ T5337] block nbd2: Receive control failed (result -107)
[ 1271.621547][T19610] nbd2: detected capacity change from 0 to 15960
[ 1271.641112][T19609] block nbd2: shutting down sockets
[ 1271.694586][T19614] UBIFS error (pid: 19614): cannot open "./file0", error -22
[ 1272.368978][T11976] usb 5-1: new high-speed USB device number 104 using dummy_hcd
[ 1272.584546][T11976] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1272.596863][T11976] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[ 1272.608200][T11976] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[ 1272.615117][T11976] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1272.630579][T11976] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1272.644981][T11976] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1272.661463][T11976] usb 5-1: config 0 descriptor??
[ 1272.666808][T19624] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1273.105708][T11976] plantronics 0003:047F:FFFF.0012: unknown main item tag 0xd
[ 1273.125825][T11976] plantronics 0003:047F:FFFF.0012: No inputs registered, leaving
[ 1273.142623][T11976] plantronics 0003:047F:FFFF.0012: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[ 1273.397343][T11976] usb 5-1: USB disconnect, device number 104
[ 1273.979049][ T5337] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1273.979946][T13282] Bluetooth: hci4: command 0x1003 tx timeout
[ 1274.568072][   T39] kauditd_printk_skb: 18 callbacks suppressed
[ 1274.568282][   T39] audit: type=1326 audit(2000000001.610:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19628 comm="syz.0.3881" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749e579 code=0x7ffc0000
[ 1274.589159][   T39] audit: type=1326 audit(2000000001.610:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19628 comm="syz.0.3881" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749e579 code=0x7ffc0000
[ 1274.608987][   T39] audit: type=1326 audit(2000000001.620:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19628 comm="syz.0.3881" exe="/syz-executor" sig=0 arch=40000003 syscall=304 compat=1 ip=0xf749e579 code=0x7ffc0000
[ 1274.628999][   T39] audit: type=1326 audit(2000000001.620:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19628 comm="syz.0.3881" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749e579 code=0x7ffc0000
[ 1274.666383][   T39] audit: type=1326 audit(2000000001.620:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19628 comm="syz.0.3881" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749e579 code=0x7ffc0000
[ 1274.694015][   T39] audit: type=1326 audit(2000000001.660:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19628 comm="syz.0.3881" exe="/syz-executor" sig=0 arch=40000003 syscall=442 compat=1 ip=0xf749e579 code=0x7ffc0000
[ 1274.708976][   T39] audit: type=1326 audit(2000000001.670:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19628 comm="syz.0.3881" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749e579 code=0x7ffc0000
[ 1274.737108][   T39] audit: type=1326 audit(2000000001.670:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19628 comm="syz.0.3881" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf749e579 code=0x7ffc0000
[ 1277.413947][   T39] audit: type=1326 audit(2000000004.440:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19666 comm="syz.2.3889" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[ 1277.488994][   T39] audit: type=1326 audit(2000000004.440:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19666 comm="syz.2.3889" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[ 1278.012373][T19674] netlink: 'syz.3.3890': attribute type 12 has an invalid length.
[ 1278.190185][ T5337] block nbd3: Receive control failed (result -107)
[ 1278.272731][T19674] nbd3: detected capacity change from 0 to 15960
[ 1278.307114][T19673] block nbd3: shutting down sockets
[ 1280.498989][ T5615] usb 6-1: new high-speed USB device number 111 using dummy_hcd
[ 1280.699319][ T5615] usb 6-1: Using ep0 maxpacket: 8
[ 1280.711050][ T5615] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1280.715876][ T5615] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1280.739106][ T5615] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1280.743387][ T5615] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1280.759341][ T5615] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1280.763190][ T5615] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1281.001047][ T5615] usb 6-1: GET_CAPABILITIES returned 0
[ 1281.007385][ T5615] usbtmc 6-1:16.0: can't read capabilities
[ 1281.204751][T14365] usb 6-1: USB disconnect, device number 111
[ 1283.956621][T19740] netlink: 16126 bytes leftover after parsing attributes in process `syz.3.3905'.
[ 1283.961416][T19740] netlink: 183228 bytes leftover after parsing attributes in process `syz.3.3905'.
[ 1285.118993][ T5380] usb 8-1: new high-speed USB device number 111 using dummy_hcd
[ 1285.319907][ T5380] usb 8-1: Using ep0 maxpacket: 8
[ 1285.340768][ T5380] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1285.344643][ T5380] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1285.348509][ T5380] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1285.353626][ T5380] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1285.365030][ T5380] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1285.369553][ T5380] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1285.588604][ T5380] usb 8-1: GET_CAPABILITIES returned 0
[ 1285.591252][ T5380] usbtmc 8-1:16.0: can't read capabilities
[ 1285.797463][ T5380] usb 8-1: USB disconnect, device number 111
[ 1286.654002][T19775] netlink: 16126 bytes leftover after parsing attributes in process `syz.3.3916'.
[ 1286.657873][T19775] netlink: 183228 bytes leftover after parsing attributes in process `syz.3.3916'.
[ 1287.397031][T19781] netlink: 16126 bytes leftover after parsing attributes in process `syz.2.3918'.
[ 1287.402103][T19781] netlink: 183228 bytes leftover after parsing attributes in process `syz.2.3918'.
[ 1287.597533][T19787] FAULT_INJECTION: forcing a failure.
[ 1287.597533][T19787] name failslab, interval 1, probability 0, space 0, times 0
[ 1287.603775][T19787] CPU: 1 UID: 0 PID: 19787 Comm: syz.0.3920 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0
[ 1287.608454][T19787] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1287.612979][T19787] Call Trace:
[ 1287.614414][T19787]  <TASK>
[ 1287.615679][T19787]  dump_stack_lvl+0x16c/0x1f0
[ 1287.617692][T19787]  should_fail_ex+0x497/0x5b0
[ 1287.619688][T19787]  ? fs_reclaim_acquire+0xae/0x160
[ 1287.621862][T19787]  should_failslab+0xc2/0x120
[ 1287.623885][T19787]  __kmalloc_noprof+0xcb/0x410
[ 1287.625888][T19787]  ? __pfx___bpf_trace_tlb_flush+0x10/0x10
[ 1287.628354][T19787]  tracepoint_add_func+0x293/0xe50
[ 1287.630542][T19787]  ? __pfx___bpf_trace_tlb_flush+0x10/0x10
[ 1287.633045][T19787]  ? find_held_lock+0x2d/0x110
[ 1287.635144][T19787]  ? __pfx___bpf_trace_tlb_flush+0x10/0x10
[ 1287.637667][T19787]  tracepoint_probe_register_prio_may_exist+0xbd/0x110
[ 1287.640519][T19787]  ? __pfx_tracepoint_probe_register_prio_may_exist+0x10/0x10
[ 1287.643540][T19787]  ? __pfx___bpf_trace_tlb_flush+0x10/0x10
[ 1287.646082][T19787]  ? bpf_link_prime+0x8a/0x4d0
[ 1287.648187][T19787]  ? __local_bh_enable_ip+0xa4/0x120
[ 1287.650311][T19787]  bpf_probe_register+0x189/0x200
[ 1287.652363][T19787]  bpf_raw_tp_link_attach+0x245/0x540
[ 1287.654496][T19787]  ? find_held_lock+0x2d/0x110
[ 1287.656588][T19787]  ? __pfx_bpf_raw_tp_link_attach+0x10/0x10
[ 1287.659160][T19787]  ? fput+0x32/0x390
[ 1287.660893][T19787]  ? __bpf_prog_get+0xa0/0x2f0
[ 1287.663001][T19787]  __sys_bpf+0x3cc/0x55e0
[ 1287.664958][T19787]  ? __pfx___sys_bpf+0x10/0x10
[ 1287.667055][T19787]  ? ksys_write+0x12f/0x260
[ 1287.669028][T19787]  ? find_held_lock+0x2d/0x110
[ 1287.671111][T19787]  ? ksys_write+0x21c/0x260
[ 1287.673108][T19787]  ? __pfx_lock_release+0x10/0x10
[ 1287.675287][T19787]  ? vfs_write+0x14d/0x1140
[ 1287.677263][T19787]  ? __mutex_unlock_slowpath+0x164/0x650
[ 1287.679702][T19787]  ? fput+0x32/0x390
[ 1287.681414][T19787]  ? ksys_write+0x1ab/0x260
[ 1287.683443][T19787]  ? __pfx_ksys_write+0x10/0x10
[ 1287.685519][T19787]  __ia32_sys_bpf+0x76/0xe0
[ 1287.687662][T19787]  __do_fast_syscall_32+0x73/0x120
[ 1287.689899][T19787]  do_fast_syscall_32+0x32/0x80
[ 1287.692043][T19787]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1287.694731][T19787] RIP: 0023:0xf749e579
[ 1287.696341][T19787] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1287.704416][T19787] RSP: 002b:00000000f57a656c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[ 1287.707919][T19787] RAX: ffffffffffffffda RBX: 0000000000000011 RCX: 0000000020000040
[ 1287.711162][T19787] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000
[ 1287.714222][T19787] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1287.717564][T19787] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1287.720976][T19787] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1287.724400][T19787]  </TASK>
[ 1287.890203][T19788] dccp_v4_rcv: dropped packet with invalid checksum
[ 1289.332720][T19803] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3926'.
[ 1289.342268][T19803] netlink: 'syz.2.3926': attribute type 1 has an invalid length.
[ 1289.345399][T19803] netlink: 'syz.2.3926': attribute type 1 has an invalid length.
[ 1289.348552][T19803] netlink: 9328 bytes leftover after parsing attributes in process `syz.2.3926'.
[ 1289.355835][T19803] netlink: 'syz.2.3926': attribute type 1 has an invalid length.
[ 1289.763009][   T39] kauditd_printk_skb: 30 callbacks suppressed
[ 1289.763025][   T39] audit: type=1326 audit(2000000016.800:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19806 comm="syz.2.3927" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[ 1289.783429][   T39] audit: type=1326 audit(2000000016.820:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19806 comm="syz.2.3927" exe="/syz-executor" sig=0 arch=40000003 syscall=331 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[ 1289.801240][   T39] audit: type=1326 audit(2000000016.820:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19806 comm="syz.2.3927" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[ 1289.820159][   T39] audit: type=1326 audit(2000000016.820:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19806 comm="syz.2.3927" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[ 1289.834892][   T39] audit: type=1326 audit(2000000016.820:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19806 comm="syz.2.3927" exe="/syz-executor" sig=0 arch=40000003 syscall=313 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[ 1289.849078][   T39] audit: type=1326 audit(2000000016.820:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19806 comm="syz.2.3927" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[ 1289.867505][   T39] audit: type=1326 audit(2000000016.820:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19806 comm="syz.2.3927" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[ 1289.882547][   T39] audit: type=1326 audit(2000000016.820:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19806 comm="syz.2.3927" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[ 1289.892919][   T39] audit: type=1326 audit(2000000016.820:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19806 comm="syz.2.3927" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[ 1289.904415][   T39] audit: type=1326 audit(2000000016.820:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19806 comm="syz.2.3927" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[ 1291.511341][T19837] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1291.826607][T19837] infiniband syz1: ib_query_port failed (-19)
[ 1291.833472][T19837] infiniband syz1: Couldn't set up InfiniBand P_Key/GID cache
[ 1291.837163][T19837] ------------[ cut here ]------------
[ 1291.839372][T19837] GID entry ref leak for dev syz1 index 0 ref=1
[ 1291.846105][T19837] WARNING: CPU: 0 PID: 19837 at drivers/infiniband/core/cache.c:806 gid_table_release_one+0x387/0x4b0
[ 1291.853152][T19837] Modules linked in:
[ 1291.855222][T19837] CPU: 0 UID: 0 PID: 19837 Comm: syz.1.3934 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0
[ 1291.859546][T19837] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1291.865843][T19837] RIP: 0010:gid_table_release_one+0x387/0x4b0
[ 1291.871211][T19837] Code: 78 07 00 00 48 85 f6 74 2a 48 89 74 24 38 e8 b0 0a 76 f9 48 8b 74 24 38 44 89 f9 89 da 48 c7 c7 c0 69 51 8c e8 5a c3 38 f9 90 <0f> 0b 90 90 e9 6f fe ff ff e8 8b 0a 76 f9 49 8d bc 24 28 07 00 00
[ 1291.879767][T19837] RSP: 0018:ffffc900042b7080 EFLAGS: 00010286
[ 1291.882580][T19837] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffc9002811e000
[ 1291.886484][T19837] RDX: 0000000000040000 RSI: ffffffff814dd406 RDI: 0000000000000001
[ 1291.889958][T19837] RBP: ffff88807ebaaf00 R08: 0000000000000001 R09: 0000000000000000
[ 1291.893973][T19837] R10: 0000000000000001 R11: 0000000000000000 R12: ffff888051860000
[ 1291.900611][T19837] R13: dffffc0000000000 R14: ffffed100fd755fb R15: 0000000000000001
[ 1291.904114][T19837] FS:  0000000000000000(0000) GS:ffff88802c000000(0063) knlGS:00000000f56c6b40
[ 1291.908054][T19837] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1291.910926][T19837] CR2: 000000002effcff8 CR3: 0000000060c5e000 CR4: 0000000000350ef0
[ 1291.914328][T19837] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1291.917822][T19837] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1291.924429][T19837] Call Trace:
[ 1291.926078][T19837]  <TASK>
[ 1291.927445][T19837]  ? show_regs+0x8c/0xa0
[ 1291.929622][T19837]  ? __warn+0xe5/0x3c0
[ 1291.931269][T19837]  ? gid_table_release_one+0x387/0x4b0
[ 1291.933441][T19837]  ? report_bug+0x3c0/0x580
[ 1291.935434][T19837]  ? handle_bug+0x3d/0x70
[ 1291.937321][T19837]  ? exc_invalid_op+0x17/0x50
[ 1291.939468][T19837]  ? asm_exc_invalid_op+0x1a/0x20
[ 1291.941593][T19837]  ? __warn_printk+0x1a6/0x350
[ 1291.943689][T19837]  ? gid_table_release_one+0x387/0x4b0
[ 1291.946119][T19837]  ib_device_release+0xef/0x1e0
[ 1291.947990][T19837]  ? __pfx_ib_device_release+0x10/0x10
[ 1291.950693][T19837]  device_release+0xa1/0x240
[ 1291.952866][T19837]  kobject_put+0x1e4/0x5a0
[ 1291.954835][T19837]  put_device+0x1f/0x30
[ 1291.956602][T19837]  rxe_net_add+0xe0/0x110
[ 1291.958111][T19837]  rxe_newlink+0x70/0x190
[ 1291.960793][T19837]  nldev_newlink+0x373/0x5e0
[ 1291.962997][T19837]  ? __pfx_nldev_newlink+0x10/0x10
[ 1291.964722][T19837]  ? aa_get_newest_label+0x376/0x680
[ 1291.966655][T19837]  ? __pfx_lock_acquire+0x10/0x10
[ 1291.969134][T19837]  ? __pfx_aa_get_newest_label+0x10/0x10
[ 1291.971475][T19837]  ? __pfx_rwsem_read_trylock+0x10/0x10
[ 1291.973628][T19837]  ? __pfx___might_resched+0x10/0x10
[ 1291.975740][T19837]  ? apparmor_capable+0x114/0x1d0
[ 1291.977991][T19837]  ? ns_capable+0xd7/0x110
[ 1291.979971][T19837]  ? __pfx_nldev_newlink+0x10/0x10
[ 1291.982114][T19837]  rdma_nl_rcv_msg+0x388/0x6e0
[ 1291.984073][T19837]  ? __pfx_rdma_nl_rcv_msg+0x10/0x10
[ 1291.986128][T19837]  ? __pfx___lock_acquire+0x10/0x10
[ 1291.987784][T19837]  ? find_held_lock+0x2d/0x110
[ 1291.989513][T19837]  rdma_nl_rcv_skb.constprop.0.isra.0+0x2e6/0x450
[ 1291.992561][T19837]  ? __pfx_rdma_nl_rcv_skb.constprop.0.isra.0+0x10/0x10
[ 1291.995203][T19837]  ? netlink_deliver_tap+0x1ae/0xcf0
[ 1291.997319][T19837]  netlink_unicast+0x53c/0x7f0
[ 1291.999551][T19837]  ? __pfx_netlink_unicast+0x10/0x10
[ 1292.001911][T19837]  ? __phys_addr_symbol+0x30/0x80
[ 1292.004072][T19837]  ? __check_object_size+0x497/0x720
[ 1292.006454][T19837]  netlink_sendmsg+0x8b8/0xd70
[ 1292.008215][T19837]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1292.010400][T19837]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1292.012789][T19837]  ____sys_sendmsg+0x9b4/0xb50
[ 1292.014939][T19837]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1292.017314][T19837]  ? get_compat_msghdr+0x11b/0x170
[ 1292.019748][T19837]  ? __pfx___lock_acquire+0x10/0x10
[ 1292.022059][T19837]  ? try_to_wake_up+0xc08/0x13e0
[ 1292.024413][T19837]  ___sys_sendmsg+0x135/0x1e0
[ 1292.026616][T19837]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1292.029188][T19837]  ? __fget_light+0x173/0x210
[ 1292.031511][T19837]  __sys_sendmsg+0x117/0x1f0
[ 1292.033613][T19837]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1292.035966][T19837]  ? __ia32_sys_futex_time32+0x1da/0x460
[ 1292.038525][T19837]  __do_fast_syscall_32+0x73/0x120
[ 1292.040904][T19837]  do_fast_syscall_32+0x32/0x80
[ 1292.043451][T19837]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1292.046121][T19837] RIP: 0023:0xf7f20579
[ 1292.047708][T19837] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1292.055867][T19837] RSP: 002b:00000000f56c656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1292.059606][T19837] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000200003c0
[ 1292.063596][T19837] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1292.067857][T19837] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1292.072378][T19837] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1292.079420][T19837] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1292.083651][T19837]  </TASK>
[ 1292.085027][T19837] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1292.087765][T19837] CPU: 0 UID: 0 PID: 19837 Comm: syz.1.3934 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0
[ 1292.092449][T19837] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1292.096051][T19837] Call Trace:
[ 1292.097220][T19837]  <TASK>
[ 1292.098387][T19837]  dump_stack_lvl+0x3d/0x1f0
[ 1292.100024][T19837]  panic+0x6dc/0x7c0
[ 1292.101592][T19837]  ? __pfx_panic+0x10/0x10
[ 1292.103325][T19837]  ? show_trace_log_lvl+0x363/0x500
[ 1292.105510][T19837]  ? gid_table_release_one+0x387/0x4b0
[ 1292.107702][T19837]  check_panic_on_warn+0xab/0xb0
[ 1292.109829][T19837]  __warn+0xf1/0x3c0
[ 1292.111519][T19837]  ? gid_table_release_one+0x387/0x4b0
[ 1292.113572][T19837]  report_bug+0x3c0/0x580
[ 1292.115471][T19837]  handle_bug+0x3d/0x70
[ 1292.117240][T19837]  exc_invalid_op+0x17/0x50
[ 1292.119111][T19837]  asm_exc_invalid_op+0x1a/0x20
[ 1292.120964][T19837] RIP: 0010:gid_table_release_one+0x387/0x4b0
[ 1292.123124][T19837] Code: 78 07 00 00 48 85 f6 74 2a 48 89 74 24 38 e8 b0 0a 76 f9 48 8b 74 24 38 44 89 f9 89 da 48 c7 c7 c0 69 51 8c e8 5a c3 38 f9 90 <0f> 0b 90 90 e9 6f fe ff ff e8 8b 0a 76 f9 49 8d bc 24 28 07 00 00
[ 1292.130157][T19837] RSP: 0018:ffffc900042b7080 EFLAGS: 00010286
[ 1292.132477][T19837] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffc9002811e000
[ 1292.135377][T19837] RDX: 0000000000040000 RSI: ffffffff814dd406 RDI: 0000000000000001
[ 1292.138893][T19837] RBP: ffff88807ebaaf00 R08: 0000000000000001 R09: 0000000000000000
[ 1292.142359][T19837] R10: 0000000000000001 R11: 0000000000000000 R12: ffff888051860000
[ 1292.146109][T19837] R13: dffffc0000000000 R14: ffffed100fd755fb R15: 0000000000000001
[ 1292.149521][T19837]  ? __warn_printk+0x1a6/0x350
[ 1292.151714][T19837]  ib_device_release+0xef/0x1e0
[ 1292.153856][T19837]  ? __pfx_ib_device_release+0x10/0x10
[ 1292.156146][T19837]  device_release+0xa1/0x240
[ 1292.158153][T19837]  kobject_put+0x1e4/0x5a0
[ 1292.160486][T19837]  put_device+0x1f/0x30
[ 1292.162453][T19837]  rxe_net_add+0xe0/0x110
[ 1292.164234][T19837]  rxe_newlink+0x70/0x190
[ 1292.165951][T19837]  nldev_newlink+0x373/0x5e0
[ 1292.167888][T19837]  ? __pfx_nldev_newlink+0x10/0x10
[ 1292.170309][T19837]  ? aa_get_newest_label+0x376/0x680
[ 1292.172801][T19837]  ? __pfx_lock_acquire+0x10/0x10
[ 1292.175102][T19837]  ? __pfx_aa_get_newest_label+0x10/0x10
[ 1292.179452][T19837]  ? __pfx_rwsem_read_trylock+0x10/0x10
[ 1292.181747][T19837]  ? __pfx___might_resched+0x10/0x10
[ 1292.184063][T19837]  ? apparmor_capable+0x114/0x1d0
[ 1292.186263][T19837]  ? ns_capable+0xd7/0x110
[ 1292.188171][T19837]  ? __pfx_nldev_newlink+0x10/0x10
[ 1292.190303][T19837]  rdma_nl_rcv_msg+0x388/0x6e0
[ 1292.192359][T19837]  ? __pfx_rdma_nl_rcv_msg+0x10/0x10
[ 1292.194764][T19837]  ? __pfx___lock_acquire+0x10/0x10
[ 1292.196890][T19837]  ? find_held_lock+0x2d/0x110
[ 1292.198755][T19837]  rdma_nl_rcv_skb.constprop.0.isra.0+0x2e6/0x450
[ 1292.201720][T19837]  ? __pfx_rdma_nl_rcv_skb.constprop.0.isra.0+0x10/0x10
[ 1292.204765][T19837]  ? netlink_deliver_tap+0x1ae/0xcf0
[ 1292.207123][T19837]  netlink_unicast+0x53c/0x7f0
[ 1292.209265][T19837]  ? __pfx_netlink_unicast+0x10/0x10
[ 1292.211372][T19837]  ? __phys_addr_symbol+0x30/0x80
[ 1292.213378][T19837]  ? __check_object_size+0x497/0x720
[ 1292.215468][T19837]  netlink_sendmsg+0x8b8/0xd70
[ 1292.217377][T19837]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1292.219699][T19837]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1292.221866][T19837]  ____sys_sendmsg+0x9b4/0xb50
[ 1292.223893][T19837]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1292.226147][T19837]  ? get_compat_msghdr+0x11b/0x170
[ 1292.228270][T19837]  ? __pfx___lock_acquire+0x10/0x10
[ 1292.230282][T19837]  ? try_to_wake_up+0xc08/0x13e0
[ 1292.232033][T19837]  ___sys_sendmsg+0x135/0x1e0
[ 1292.234033][T19837]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1292.236263][T19837]  ? __fget_light+0x173/0x210
[ 1292.238091][T19837]  __sys_sendmsg+0x117/0x1f0
[ 1292.239649][T19837]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1292.241794][T19837]  ? __ia32_sys_futex_time32+0x1da/0x460
[ 1292.244216][T19837]  __do_fast_syscall_32+0x73/0x120
[ 1292.246183][T19837]  do_fast_syscall_32+0x32/0x80
[ 1292.247863][T19837]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1292.250302][T19837] RIP: 0023:0xf7f20579
[ 1292.251941][T19837] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1292.259328][T19837] RSP: 002b:00000000f56c656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1292.262487][T19837] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000200003c0
[ 1292.265150][T19837] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1292.268160][T19837] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1292.271364][T19837] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1292.274878][T19837] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1292.278263][T19837]  </TASK>
[ 1292.280403][T19837] Kernel Offset: disabled
[ 1292.282396][T19837] Rebooting in 86400 seconds..

VM DIAGNOSIS:
03:42:39  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff84fa7b65 RDI=ffffffff9511c240 RBP=ffffffff9511c200 RSP=ffffc900042b6a40
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000020 R14=ffffffff84fa7b00 R15=0000000000000000
RIP=ffffffff84fa7b8f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802c000000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002effcff8 CR3=0000000060c5e000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=dffffc0000000000 RBX=1ffff9200007af3d RCX=0000000000000001 RDX=0000000000000001
RSI=00000000588ff84b RDI=ffffffff945b7528 RBP=ffffffff946102c8 RSP=ffffc900003d7958
R8 =0000000000000000 R9 =fffffbfff28b6ae0 R10=ffffffff945b5707 R11=0000000000000000
R12=dffffc0000000000 R13=ffff88801634af70 R14=0000000000000004 R15=ffff88801634a440
RIP=ffffffff81690ed3 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802c100000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020004000 CR3=00000000658c0000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000f5e099 RBX=0000000000000002 RCX=ffffffff8b057f59 RDX=0000000000000000
RSI=ffffffff8b4cd060 RDI=ffffffff8bb05a60 RBP=ffffed1002cf7000 RSP=ffffc90000487e08
R8 =0000000000000001 R9 =ffffed1005846fd9 R10=ffff88802c237ecb R11=0000000000000000
R12=0000000000000002 R13=ffff8880167b8000 R14=ffffffff90114818 R15=0000000000000000
RIP=ffffffff8b05934f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802c200000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f5182249 CR3=0000000000b5a000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=6b20657479622d32 3320646e61707865 6b20657479622d32 3320646e61707865 6b20657479622d32 3320646e61707865 6b20657479622d32 3320646e61707865
ZMM17=7cb390afcfcd52d4 70013ae135878f5d 7cb390afcfcd52d4 70013ae135878f5d 7cb390afcfcd52d4 70013ae135878f5d 7cb390afcfcd52d4 70013ae135878f5d
ZMM18=5cab4c4aaf4f6222 0ab4b08f269159d0 5cab4c4aaf4f6222 0ab4b08f269159d0 5cab4c4aaf4f6222 0ab4b08f269159d0 5cab4c4aaf4f6222 0ab4b08f269159d0
ZMM19=b122000000000000 0000000000000005 b122000000000000 0000000000000004 b122000000000000 0000000000000003 b122000000000000 0000000000000002
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=70013ae170013ae1 70013ae170013ae1 70013ae170013ae1 70013ae170013ae1 70013ae170013ae1 70013ae170013ae1 70013ae170013ae1 70013ae170013ae1
ZMM22=cfcd52d4cfcd52d4 cfcd52d4cfcd52d4 cfcd52d4cfcd52d4 cfcd52d4cfcd52d4 cfcd52d4cfcd52d4 cfcd52d4cfcd52d4 cfcd52d4cfcd52d4 cfcd52d4cfcd52d4
ZMM23=7cb390af7cb390af 7cb390af7cb390af 7cb390af7cb390af 7cb390af7cb390af 7cb390af7cb390af 7cb390af7cb390af 7cb390af7cb390af 7cb390af7cb390af
ZMM24=269159d0269159d0 269159d0269159d0 269159d0269159d0 269159d0269159d0 269159d0269159d0 269159d0269159d0 269159d0269159d0 269159d0269159d0
ZMM25=0ab4b08f0ab4b08f 0ab4b08f0ab4b08f 0ab4b08f0ab4b08f 0ab4b08f0ab4b08f 0ab4b08f0ab4b08f 0ab4b08f0ab4b08f 0ab4b08f0ab4b08f 0ab4b08f0ab4b08f
ZMM26=af4f6222af4f6222 af4f6222af4f6222 af4f6222af4f6222 af4f6222af4f6222 af4f6222af4f6222 af4f6222af4f6222 af4f6222af4f6222 af4f6222af4f6222
ZMM27=5cab4c4a5cab4c4a 5cab4c4a5cab4c4a 5cab4c4a5cab4c4a 5cab4c4a5cab4c4a 5cab4c4a5cab4c4a 5cab4c4a5cab4c4a 5cab4c4a5cab4c4a 5cab4c4a5cab4c4a
ZMM28=000000100000000f 0000000e0000000d 0000000c0000000b 0000000a00000009 0000000800000007 0000000600000005 0000000400000003 0000000200000001
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=b0220000b0220000 b0220000b0220000 b0220000b0220000 b0220000b0220000 b0220000b0220000 b0220000b0220000 b0220000b0220000 b0220000b0220000
info registers vcpu 3

CPU#3
RAX=1ffffffff1f42773 RBX=ffffffff8fa13db8 RCX=ffffffff819a47c2 RDX=ffff888020a24880
RSI=ffffffff81998939 RDI=ffffffff8fa13b98 RBP=ffffffff8fa13db8 RSP=ffffc900005f05f0
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=00000000f7f45579 R13=dffffc0000000000 R14=0000000000000000 R15=ffff888020a24880
RIP=ffffffff81998950 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802c300000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002ce06ff8 CR3=0000000012ab4000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000007800000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000