last executing test programs:

1m2.876395905s ago: executing program 0 (id=517):
r0 = socket(0x200000100000011, 0x3, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000240)={'batadv0\x00', <r2=>0x0})
bind$packet(r0, &(0x7f0000000040)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @multicast}, 0x14)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0x800b, 0x4)
sendmsg$netlink(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000480)=ANY=[@ANYBLOB="340000000200000100000700"], 0x34}], 0x1}, 0x4004044) (fail_nth: 2)

1m2.876089763s ago: executing program 0 (id=518):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='configfs\x00', 0x10, 0x0) (async)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='configfs\x00', 0x10, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1}, 0x8081)
socket(0x10, 0x3, 0x0) (async)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800019f000000000000000002000000000000000800010001000000040004"], 0x24}, 0x1, 0x0, 0x0, 0x4005}, 0x0)
sendmmsg(r0, &(0x7f0000000000), 0x4000000000001f2, 0x0)

1m2.810042246s ago: executing program 0 (id=519):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000300))
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r5 = dup3(r4, r3, 0x0)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1, 0x11, r6, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r6, 0x4018620d, &(0x7f0000000040))
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f00000001c0)={0x44, 0x0, &(0x7f0000002580)=[@transaction={0x40406300, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000500)={0x4c, 0x0, &(0x7f0000000580)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})

1m2.772559526s ago: executing program 0 (id=522):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000200)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x20000010}, 0x80)
openat$binfmt_register(0xffffffffffffff9c, 0x0, 0x1, 0x0)
openat$binfmt_register(0xffffffffffffff9c, 0x0, 0x1, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x5)
r1 = inotify_init1(0x0)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn'])
chdir(&(0x7f0000000080)='./file0\x00')
statx(0xffffffffffffff9c, 0x0, 0x3000, 0x8, &(0x7f00000015c0))
inotify_add_watch(r1, &(0x7f0000000000)='./control\x00', 0x8b)
rmdir(&(0x7f0000000100)='./control\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
openat$random(0xffffffffffffff9c, &(0x7f0000000800), 0x100, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0xfffffffffffffdaa)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x14)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="5800000002060103000034e400000000000000060900020073797a310000000005000400020000000c99b4d1cda5b20ec7d680080008400069702c706f727400000000050005000200000005000100070000000000000000000000000000002855b9c185ee74d061dd25358499cc1838"], 0x58}}, 0x2)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="50000000090601020000000000000000020000000900020073797a3100000000050001000700"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x2)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000002000000000000000000082295"], &(0x7f0000000040)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x1f4, 0xe, 0x0, &(0x7f0000000940)="ff412f66b083dcc1010b3efc8864", 0x0, 0x300, 0x300, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffff80fe, 0x6}, 0x50)
ioctl$PIO_UNIMAP(r3, 0x4b67, &(0x7f0000000080)={0x40000101, &(0x7f0000001e80)=[{0x0, 0x1000}]})
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$IPSET_CMD_FLUSH(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000040601010000000000000000000000000500010007000000c27be38a0cce5d596019bbff075cec876a46511765bf72b6d3085829dedd630172d3aea266b96d9cb6f781d2e5ee0d9c3b33aaa2c7f69a64542f3f2d6ed1b05897d006dc510063395eddaae3bd45d70ecb4a22b0682f8f85ab55c242a80fbfbda6fee11a1a951f1d895ccb5a567a1d79bde562a9301d24bc033a7e32dbbfc8cbe548d1928d2f9b609643eed775c9365ca405bfbc10c799cf7046f532d0d0"], 0x1c}}, 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./cgroup\x00', &(0x7f0000000080), 0x0, &(0x7f0000000180)={[{@inode32}, {@usrquota_inode_hardlimit={'usrquota_inode_hardlimit', 0x3d, [0x38, 0x0]}}]})
ioprio_set$pid(0x3, 0x0, 0x64)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[], 0x85}}, 0x0)

59.310454184s ago: executing program 0 (id=540):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x8, &(0x7f0000000180)=[{0x8, 0x5, 0x6, 0x9}, {0xfef, 0x4, 0x5, 0x3}, {0xfff1, 0x15, 0x4, 0x5}, {0x3, 0xff, 0xc5}, {0xfffe, 0x0, 0x0, 0xffffcd58}, {0x7f, 0x2, 0x1, 0x4}, {0xfffd, 0x5, 0x6, 0x8}, {0x9, 0x2}]})
epoll_create1(0x80000)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, 0x0, &(0x7f00000000c0))
syz_io_uring_setup(0x1e1e, &(0x7f0000000200)={0x0, 0x86f7, 0x10100}, &(0x7f0000002000)=<r1=>0x0, &(0x7f0000000000)=<r2=>0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$sock_SIOCGIFCONF(r3, 0x8912, &(0x7f00000003c0)=@req={0x28, &(0x7f0000000340)={'vlan0\x00', @ifru_ivalue=0x5}})
recvmsg(0xffffffffffffffff, 0x0, 0x0)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0x1c}], 0x1, 0x0, 0x45, 0x4002}, 0x4000004)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x400)
ioctl$SG_IO(r5, 0x2285, 0x0)
r6 = fsopen(&(0x7f00000001c0)='bpf\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
r7 = fsmount(r6, 0x1, 0x0)
fchdir(r7)
execve(&(0x7f0000001000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0)
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r9 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r9, 0xc02064b2, &(0x7f0000000200)={0x8000, 0x101, 0x4})
r10 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r10, 0xc04064a0, &(0x7f0000000040)={0x0, &(0x7f00000002c0)=[<r11=>0x0], 0x0, 0x0, 0xfffffd52, 0x1})
ioctl$DRM_IOCTL_MODE_CURSOR(r9, 0xc01c64a3, &(0x7f0000000280)={0x1, r11, 0x1, 0x1, 0xa, 0x1ff, 0x1})
close_range(r8, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x22})

59.049506215s ago: executing program 0 (id=545):
userfaultfd(0x80801)
r0 = socket$netlink(0x10, 0x3, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$NL80211_CMD_SET_BSS(0xffffffffffffffff, 0x0, 0x4000800)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x3c}}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f00000005c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sendmsg$NFT_MSG_GETCHAIN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)={0x20, 0x4, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0x4}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x80}, 0x24004800)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = syz_io_uring_setup(0xd38, &(0x7f0000000280)={0x0, 0x7732, 0x80, 0x1, 0x350}, &(0x7f00000000c0)=<r3=>0x0, &(0x7f0000000440)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2e, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_TIMEOUT={0xb, 0x36, 0x0, 0x0, 0x4, 0x0, 0x1, 0x20})
io_uring_enter(r2, 0x47bc, 0x0, 0x0, 0x0, 0x0) (fail_nth: 4)

58.999250447s ago: executing program 32 (id=545):
userfaultfd(0x80801)
r0 = socket$netlink(0x10, 0x3, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$NL80211_CMD_SET_BSS(0xffffffffffffffff, 0x0, 0x4000800)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x3c}}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f00000005c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sendmsg$NFT_MSG_GETCHAIN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)={0x20, 0x4, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0x4}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x80}, 0x24004800)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = syz_io_uring_setup(0xd38, &(0x7f0000000280)={0x0, 0x7732, 0x80, 0x1, 0x350}, &(0x7f00000000c0)=<r3=>0x0, &(0x7f0000000440)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2e, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_TIMEOUT={0xb, 0x36, 0x0, 0x0, 0x4, 0x0, 0x1, 0x20})
io_uring_enter(r2, 0x47bc, 0x0, 0x0, 0x0, 0x0) (fail_nth: 4)

5.915507521s ago: executing program 1 (id=755):
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mremap(&(0x7f000054e000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f000022c000/0x3000)=nil)
r2 = bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x3, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, r2, 0x8, 0x0, 0xff9e, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffedb, 0x0, 0x0, 0x10, 0x4}, 0x94)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x5, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000040)='maps\x00')
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0xc0686611, &(0x7f0000000180)={0x67, 0x0, 0x3f, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
r4 = socket(0x10, 0x80002, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYRES8=r4, @ANYRES16=r0], 0x20}}, 0x0)
sendmsg$nl_route(r5, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x24}}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="28000000100001000100", @ANYRES32=0x0, @ANYBLOB="2004000000"], 0x28}}, 0x0)
recvmmsg$unix(r4, &(0x7f0000002380)=[{{0x0, 0x0, &(0x7f0000001340)=[{&(0x7f00000002c0)=""/4096, 0x1000}], 0x1}}], 0x4000000000003b9, 0x26022, 0x0)

4.869978606s ago: executing program 1 (id=757):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000c2bd0b20f8061b3039bb0102030109021b0001000000000904"], 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000003c0)={'syzkaller0\x00'})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4040001}, 0x0)
sendmsg$nl_route_sched(r1, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@newtfilter={0x34, 0x2c, 0xd27, 0x30bd29, 0x21dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x0, 0xf}, {}, {0x7}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x24000014}, 0x200c4004)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)={0x6, 0x5, 0x2, 0x87, 0xffffffff, 0x40})
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000005c0)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB, @ANYRES32=0x0], 0x1c}}, 0x0)

3.680965947s ago: executing program 1 (id=764):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f0000000400)={0x48})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f0000000340)={0x48, 0x5, 0x0, 0x0, 0xffffffffffffffff, 0x1})
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x100000a, 0x5d032, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x9}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
r3 = socket(0x28, 0x5, 0x0)
r4 = syz_io_uring_setup(0x4f5, &(0x7f0000000200)={0x0, 0xde84, 0x0, 0x1, 0xd7}, &(0x7f0000000080)=<r5=>0x0, &(0x7f0000000440)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0xffffffff, @my=0x1}, 0x0, 0x0, 0x1})
io_uring_enter(r4, 0x47bc, 0xf5, 0x0, 0x0, 0x0)
r7 = userfaultfd(0x801)
ioctl$UFFDIO_API(r7, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r7, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
ioctl$UFFDIO_COPY(r7, 0xc028aa03, &(0x7f0000000080)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000582000/0x2000)=nil, 0x800000})
setsockopt$inet6_opts(r1, 0x29, 0x39, &(0x7f00000003c0)=ANY=[@ANYRESOCT=r3], 0x98)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, 0x0, &(0x7f0000000140))
r8 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r8, 0x6, 0x0, 0x0, 0x0)
r9 = fsmount(r8, 0x0, 0x87)
fchdir(r9)
r10 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r10, &(0x7f0000000000)=0xfe8e, 0x12)

3.453098654s ago: executing program 1 (id=765):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xce7c1000)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, 0x0, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, 0x0, 0x0)
r3 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={0xffffffffffffffff, 0x18000000000002a0, 0xd, 0x0, &(0x7f0000000280)="b9ff03076804268c989e14f088", 0x0, 0x2, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
ioctl$sock_SIOCGSKNS(r2, 0x894c, &(0x7f0000000000)=0xce85)
connect$bt_rfcomm(r3, &(0x7f0000005dc0)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x15}, 0xa)
socket$netlink(0x10, 0x3, 0x15)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000200)=@raw={'raw\x00', 0x3c1, 0x3, 0x5f8, 0x0, 0xffffff80, 0x178, 0x0, 0x178, 0x528, 0x22b, 0x258, 0x528, 0x258, 0x2034, 0x0, {[{{@uncond, 0x1d, 0x398, 0x3c0, 0x340, {0x1e0002a8, 0x7203000000000000}, [@common=@unspec=@bpf1={{0x230}, @bytecode={0x0, 0x1a, 0x64, [{}, {}, {}, {}, {}, {0x4}, {0x0, 0x0, 0xfd}, {}, {}, {}, {0x20}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x9}, {}, {}, {}, {}, {}, {}, {0x6}, {}, {0x9}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x80000000}, {0x870}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x1}, {}, {0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {0x3}, {0x200}, {0x0, 0xa}, {}, {}, {}, {}, {}, {0x0, 0x8a}, {}, {}, {0x0, 0x0, 0xfc}]}}, @common=@unspec=@string={{0xc0}, {0x0, 0x0, 'kmp\x00', "e22e50439abb066265e088a63e13552b8b2fec412753ac647d17d2ebca69d17a9722bd2f5be411676d5993fb4cc74168209fb9f43b63bab2a88206d7dd8158d916b865d0f713f772c59ad6e6b572e9a6c498fb6459888a281e8c071a9a7229f9fe02cb8e9ba7637a2591a5367c770c87034734be6eda195ce135517efa85da52", 0x59}}]}, @common=@unspec=@CLASSIFY={0x28, 'CLASSIFY\x00', 0x0, {0x9}}}, {{@ipv6={@loopback, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], [], 'veth1_to_bridge\x00', 'geneve1\x00', {0xff}}, 0x0, 0x100, 0x168, 0x0, {}, [@common=@ah={{0x30}}, @common=@ipv6header={{0x28}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x658)

2.4599335s ago: executing program 4 (id=770):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', 0xffffffffffffffff, 0x0, 0x1}, 0x18)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x2000)
ioctl$SG_GET_VERSION_NUM(r0, 0x2284, &(0x7f0000000080))

2.300121401s ago: executing program 2 (id=772):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$IPVS_CMD_GET_DEST(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, r1, 0x50dc85624ea6cf59, 0x70bd27}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

2.299961677s ago: executing program 2 (id=773):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
r1 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000240)='cgroup.threads\x00', 0x2, 0x0)
open_by_handle_at(r3, &(0x7f0000000780)=ANY=[@ANYRES16=r0], 0x408100)

2.209003512s ago: executing program 2 (id=774):
socket(0x11, 0x3, 0x3a)
r0 = openat$sndtimer(0xffffffffffffff9c, 0x0, 0x315b43)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000300)={{0x0, 0x2}})
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
prctl$PR_GET_SPECULATION_CTRL(0x35, 0x0, 0x10)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000b80)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x56a, 0xba, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x8, 0x1, {0x22, 0x7}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x6}}}}}]}}]}}, 0x0)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
r2 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r2, 0xc008561c, &(0x7f0000000100)={0xf0f003, 0x6})

1.835272313s ago: executing program 1 (id=775):
syz_usb_connect(0x1, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="1201000009a65d0860040800dee20102030109021b05000000000009040000f678eaf50009058402"], &(0x7f0000000080)={0x45, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
openat$mice(0xffffffffffffff9c, &(0x7f0000000300), 0x0)

1.599820347s ago: executing program 4 (id=776):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000080)=0x474c, 0x4)
bind$inet(r0, 0x0, 0x0)
connect$inet(r0, 0x0, 0x0)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)
setsockopt$inet_int(r0, 0x0, 0x32, &(0x7f0000000000)=0x6ab8, 0x4)
recvmmsg(r0, &(0x7f00000002c0)=[{{0x0, 0x0, 0x0}, 0x5}], 0x1, 0x45833af92e4bbbfe, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x400, 0x40101)
ioctl$VIDIOC_S_FREQUENCY(0xffffffffffffffff, 0x402c5639, &(0x7f0000002280)={0x0, 0x1, 0x10007d50})
dup(r1)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r2=>r1, {0x80000001}}, './file0\x00'})
r3 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x280040, 0x50, 0x8}, 0x18)
r4 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
write$UHID_CREATE2(r4, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x8031, r4, 0x1000)
r5 = syz_open_dev$hidraw(&(0x7f00000004c0), 0x0, 0x14a042)
ioctl$HIDIOCGFEATURE(r5, 0xc0404807, &(0x7f0000000340)={0x0, "87bffd670230e6fc03b5d899c89937769ce2b8b4ba39fef879aa53114f0600000000000000764262d6bd870ae5117e38267d64e7c383dd68b77c4a97ee1cef24"})
syz_genetlink_get_family_id$ethtool(0x0, r2)
r6 = socket(0x22, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r8, &(0x7f00000017c0)=[{{&(0x7f0000000180)=@file={0x1, './file0/../file0\x00'}, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000200)="e2f5f0317f8d99585316398a1847551a13f2a4560918a5a920df6555", 0x1c}, {&(0x7f0000000500)="32ffc894a28fe604386482ace5f6722464cd7ae3f60f3bebb47545dfa2a24946cd6e3c68e7d2db115f7fc18cf3abd9d008f9bd62fd65d885108293c5bd04c5274a814072dc8cfb8834b79985f5a09d595636654cd219c36e71470068acef3e8461cee91d58a17c87512e8782c0b904f780e2cfa96dc05c35d3a4f2504cc71dd6ebd8f205307fbb0b54492a599ade5263176ee927533ddcdf1197243e50b30007d39afcd2b12df8901f3e9ff039df440cb3061f242ead8842ce2efa9802d3242d061ffd2e532ed520a99824e6489551e3bf0c4222e5854f", 0xd7}, {&(0x7f0000000300)="12f9f77d029a8c62c16954612b5c86799c38f07d4bf55fdd3b458afe7e715f684e783a3b26d1674dcb077952", 0x2c}], 0x3, &(0x7f0000000440)=[@rights={{0x38, 0x1, 0x1, [r0, r0, r6, r1, r6, 0xffffffffffffffff, r6, 0xffffffffffffffff, r3, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x50, 0x4000084}}, {{&(0x7f0000000600)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000980)=[{&(0x7f0000000680)="82034e93ff1da4551de2f45de9f620be2b7eb6482e3afb74a848e496c2a715a78db181d5de1899d42f67f9d258e27a86ba75eaec0d139999e66231778d5907653264d0f6e7fa2d89f1de57cf9db6489ce01310729567c6f7d1f4b0b9b529c523cf3490", 0x63}, {&(0x7f0000000700)="598b584185745e119d4ca8e77211cf0b4bb01e8115e2cf66b3f67b37cc37a051844ab8216e82ee8cbc1f9bbdfa6580581fcf738c779b5fc77aa5efd260046fb4692b80587c6bfacc78e59b844b3c337bafcf30545314089e6a17c9fca3817d705dc2625ef22235dba3ceec0f01b05bda698718811c86f2570535d5afdd2810826bcfbd39d8852879f76632eb9de6ee14dd1ec91de9e75c18ade5c2b2", 0x9c}, {&(0x7f0000000900)="b9f6a944bb36a81b", 0x8}, {&(0x7f0000000940)="440fd1e633f4e485c474e26961ac8daacd68489b223f9f34fb7587378cc7841b98097cc92a78bf16de586499715227e01c7dd5a02d2185cf8c452998a9", 0x3d}], 0x4, &(0x7f0000000c80)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x60, 0x44}}, {{&(0x7f0000000d00)=@file={0x1, './file0\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x20000085}}, {{&(0x7f0000000e40)=@file={0x1, './file0/../file0\x00'}, 0x6e, &(0x7f0000001000)=[{&(0x7f0000000ec0)="0794661da0326e00c3549982ccff6ce99e1067f69fd520b8a5460a27b46577e2b92067991617ac99ce44471df8d219bea7b2cd95c8379be19cb27fe3e10bf8dedf1002c05fcc6e4a16cfe03334ba53d1338a94a36803e6422bc3cadc9298fd378c1b9c6dee165aa765f2c774f1389f29758c4e3e2641d2b638a5b4e53730594ed9927fc16cba85b6d9dbfd4afbaa843c2e18427df7836935686cc2d9862400ec98f813511874babccdbae3092c8b32793b3c1d5f3c1892ac3e678644c675a5c73abcd4f9334f441cc4b1694d5458a9d5b34034b3680e60e1894aae5cfc404e2981554f5f552e7c3c07f53a395f7db28691", 0xf1}, {&(0x7f0000000fc0)="2c6a767840d1a6538488093a0970d9133b6f3120fdc0abb1a4cfbd98001b4cf709e352e76b1eaa6c", 0x28}], 0x2, 0x0, 0xa0, 0x800}}, {{&(0x7f0000001180)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f0000001440)=[{&(0x7f0000001300)="7bb511f57bb91666af695637292285008c9cc4252344ec0932511f3d8806c7790ca31cb97227d8d30125247f7938e90a2e4a1878eef10e097432553287c642addde8337f0c43a8196bc35f77bb6c25e04a699b7948e1ef19196f7a1353e9aa0f77058f567a7218983ed6abee8921ef8939f4e8aa7573642b844ea85962a828917fcc3311a395529564dce56357e77c469cedfbcf8cb7b42ccadf36bc9dc58e6863b398e9f54c6a56851514a049d009921a3a48ca859e655f", 0xb8}, {&(0x7f00000013c0)="2241b41567ea80a927f73a3002f7f80b00dc8374d1b0ef228a3cfadf1c367f977e356d679a06cb5dbe5ec672eca1cf344f635b630e747ca50d2fd000183a3d996b83ad31c3db2baacfcd88579dcda8c437ee3efcbc7ffca6b6ab4da79e", 0x5d}], 0x2, &(0x7f0000001480)=[@rights={{0x14, 0x1, 0x1, [r2]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, r1, 0xffffffffffffffff, 0xffffffffffffffff, r3, r7, r1]}}], 0x48, 0x40}}, {{&(0x7f0000001500)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000016c0)=[{&(0x7f0000001580)="43f0e636bb6fb816efa255fd83804953ffa297fa6a577284f2480fdd55b222c43af9", 0x22}, {&(0x7f0000001600)="b4e213b65ec2e3493ad33d71b924fe49ae2ce1a038a39ccaedd2fcf8c067f72f576c66c424420e8ff65e78f9c432ffe62732fef7318b4283f1c61beec59620d2f646f3440f56f544febe715e55ca6dfe092f2f24b949e8a1f3c6d11a7b5c1fb085149cc15871fefc9686f051c81acbe6f7757a13a062e316e790dc2d556a7be5bc06", 0x82}], 0x2, &(0x7f0000001740)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r5, r1, 0xffffffffffffffff, 0xffffffffffffffff, r1, r2, r5]}}], 0x58, 0x20008885}}], 0x6, 0x40004)

1.249190654s ago: executing program 4 (id=777):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000}}, &(0x7f00000003c0)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='contention_end\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000040)={'wlan0\x00'})
ioctl(r1, 0x8b22, &(0x7f0000000040))

1.248927124s ago: executing program 4 (id=778):
mkdir(&(0x7f0000000180)='./file0\x00', 0xc4)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006180)={0x2020, 0x0, <r1=>0x0, <r2=>0x0, <r3=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000004180)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x1, {0x6, 0x8002, 0xffffffffffffeffe, 0xfffffffffffffffd, 0x0, 0x0, {0x40, 0x8, 0xb, 0xffff, 0x0, 0x1, 0x0, 0x0, 0x120, 0x2000, 0x0, r2, r3, 0x501, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0x1004cc80, 0x40, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}, 0x50)
r4 = open(&(0x7f00000001c0)='./file0/file0\x00', 0x1802, 0x40)
open_by_handle_at(r4, &(0x7f0000000000)=@raw={0x4, 0x62, {"bc"}}, 0x54d180)

1.130045336s ago: executing program 3 (id=779):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x180)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0, 0x15e)
r1 = fanotify_init(0x200, 0x0)
fanotify_mark(r1, 0x1, 0x48000034, r0, 0x0)
fchownat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0xee01, 0x0, 0x1000)

1.129813563s ago: executing program 4 (id=780):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, 0x0, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_io_uring_setup(0x88f, 0x0, &(0x7f00000000c0), 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
socket$nl_netfilter(0x10, 0x3, 0xc)
fsopen(&(0x7f0000000240)='cgroup2\x00', 0x0)
syz_open_dev$amidi(&(0x7f00000006c0), 0x3e0, 0x123e81)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="640000000206030004000000000000000000000005000100070000000900020073797a30000000001400078005001500040000000800124000000000050005000a000000050004000000000015000300686173683a69702c706f72742c6e6574"], 0x64}}, 0x10000)

1.129651123s ago: executing program 3 (id=781):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, 0x0, 0x0)
open$dir(&(0x7f0000000180)='./file0\x00', 0x10000, 0x4)
r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x2)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
io_setup(0x5, 0xffffffffffffffff)
read$FUSE(r2, &(0x7f0000006840)={0x2020, 0x0, <r3=>0x0, <r4=>0x0, <r5=>0x0}, 0x2020)
syz_fuse_handle_req(r2, &(0x7f00000042c0)="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", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r2, &(0x7f0000000600)={0x50, 0x0, r3, {0x7, 0x2b, 0x10, 0x1c20040, 0x0, 0x0, 0x1, 0x1}}, 0x50)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/kexec_crash_size', 0x80000, 0x4)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0xfffffffffffffff5, 0xffffffffffffffff, {0x0, 0x0, 0x0, 0x8, 0x80002, 0x5, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x4, 0x0, 0x6000, 0xd, 0x0, 0x0, 0x800000}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x3, {0x5, 0x0, 0xd04, 0xfffffffffffffffc, 0x0, 0x100000, {0x0, 0x8, 0xfffffffffffffffd, 0x2, 0x0, 0x0, 0x4, 0x4, 0x4, 0x2000, 0x101, r4, r5, 0xf0ee, 0xffffffff}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
open(&(0x7f00000001c0)='./file0/file0\x00', 0x1802, 0x40)
mount(&(0x7f0000000180)=@sr0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000300)='pvfs2\x00', 0x4, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$char_usb(0xc, 0xb4, 0x1)
write$char_usb(r6, &(0x7f0000000340), 0x0)

938.640012ms ago: executing program 2 (id=782):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000400)='ramfs\x00', 0x2000000, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')
creat(&(0x7f0000000300)='./bus\x00', 0x15d)
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14103e, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x143042, 0xfe)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000080)=@bpf_lsm={0xd, 0x3, &(0x7f0000000280)=@framed={{0x66, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0xb8}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
sched_setscheduler(0x0, 0x2, &(0x7f0000000100)=0x5)
sched_setaffinity(0x0, 0xff43, &(0x7f00000002c0)=0x2)
syz_open_dev$MSR(&(0x7f00000007c0), 0x0, 0x0)
ftruncate(r1, 0x2008002)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000fc0)=@polexpire={0xcc, 0x1b, 0x1, 0x70bd2d, 0x25dfdbfd, {{{@in6=@local, @in=@empty, 0x4e24, 0xb, 0x4e22, 0x5, 0x2, 0xa0, 0x20}, {0x2, 0x1, 0x59b, 0xf48, 0x4, 0x9, 0x7ffffffffffffffe, 0x20}, {0x9, 0x7, 0x2, 0xd6a}, 0xa, 0x6e6bbd, 0x0, 0x0, 0x3, 0x2}, 0xb6}, [@policy_type={0xa}]}, 0xcc}, 0x1, 0x0, 0x0, 0x84811}, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)
r3 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_GET_CLIENT(r3, 0xc0286405, &(0x7f0000000400)={0x3, 0x7, {}, {0xffffffffffffffff}, 0x4749})

519.278117ms ago: executing program 2 (id=783):
syz_open_dev$radio(&(0x7f0000000000), 0x1, 0x2)
r0 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0xfffffffd, 0xb6}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000040)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r0, 0x47f6, 0x3e000000, 0x4, 0x0, 0x0)

519.057674ms ago: executing program 1 (id=784):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000001c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0xc000, 0xe, "0062ba7d8200000016001b000200f705096604"})
r1 = syz_open_pts(r0, 0x20000)
dup3(r1, r0, 0x0)
io_setup(0x8, &(0x7f0000004200))
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
r2 = syz_usb_connect(0x5, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000d1d7a440041601801f44010203010902120001000000000904"], 0x0)
syz_open_dev$sndctrl(&(0x7f0000000000), 0xdc3, 0x422)
syz_usb_disconnect(r2)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r3, 0xffffffffffffffff, 0x0)

220.108808ms ago: executing program 4 (id=785):
setsockopt$inet6_IPV6_RTHDR(0xffffffffffffffff, 0x29, 0x39, &(0x7f0000000480)=ANY=[@ANYBLOB="06100208000000000bb7156aa3fcde3ffeba5f958604450921b3bd4d2c1f0210f0a985182aa2ec25ce8f9b723d92936e54fd70eb48ec6fd4349a66208398534e6973530ac8f7e3e75c4247ab706a7281fe306ae14f510f090fc61cfdb790207b68b36b4c58c8fd8b7eacf326b7812e8eb8d7d84e59366037d378ecabd3fb55ebb83470d01f11c5278821213285f64434d5c69b99e3caeea05a4204613181c37e008834ec8640fc88d529d88ef411a02aedabccae1b185496f42f73539a"], 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
epoll_wait(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
madvise(&(0x7f0000869000/0x4000)=nil, 0x4000, 0x9)
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x40001e0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), r3)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="6d932bbd70000000000001"], 0x24}, 0x1, 0x0, 0x0, 0x41}, 0x0)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000380), r3)

219.915752ms ago: executing program 3 (id=786):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
bind$packet(r1, &(0x7f0000000180)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @multicast}, 0x14)
getsockname$packet(r1, &(0x7f00000015c0)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000700)={'bridge0\x00', <r5=>0x0})
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x8848, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="38000000540001000000000000c4000007008209", @ANYRES32=r3, @ANYBLOB="20000100", @ANYRES32=r5, @ANYBLOB="00000000e000030000000000000000000000000008"], 0x38}}, 0x0)

205.845418ms ago: executing program 2 (id=787):
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[], 0x50)
uname(0x0)
sendmsg$key(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000003680)='sched_switch\x00', r3}, 0x10)
r4 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x41341)
ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xff, 0x0, 0x7ffc1ffb}]})
ioctl$sock_SIOCGPGRP(r2, 0x8904, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00'}, 0x10)
utimensat(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000010000000000000006400000181100", @ANYRES32, @ANYBLOB="0000000000000000b70800000e0000007b8af8"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f78500"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
ioctl$FS_IOC_GETFLAGS(r5, 0x80086601, &(0x7f0000000040))
getitimer(0x1, &(0x7f0000000080))
bpf$MAP_CREATE(0x0, 0x0, 0x0)

204.826868ms ago: executing program 3 (id=788):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1/file0\x00', 0x0)
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000280)='./file1/file0\x00', 0x0, 0x1085408, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f00000003c0), 0x0, &(0x7f00000004c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1/file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000001c0)='./bus\x00')
openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='.\x00', 0x40000, 0x100)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='blkio.bfq.sectors_recursive\x00', 0x275a, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0xc0189436, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x7, 0x3})

123.073762ms ago: executing program 3 (id=789):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000380)={'vcan0\x00', <r1=>0x0})
r2 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r2, &(0x7f0000000080)={0x1d, r1}, 0x18)
bind$can_j1939(r2, 0x0, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000007c0)=@newtfilter={0x24, 0x11, 0x101, 0x70bd25, 0x100000, {0x0, 0x0, 0x74, r1, {0xa, 0x8}, {0x5, 0xfff3}, {0xfff1, 0x6}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x40}, 0xc4)

0s ago: executing program 3 (id=790):
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
unshare(0x20000400)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="850000002e00000036000000d2e057c89500000000000000"], &(0x7f0000000240)='GPL\x00', 0x1, 0x348, &(0x7f0000000480)=""/195}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={r2, 0x0, 0xffffffffffffffff}, 0x10)
listen(0xffffffffffffffff, 0xa)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000700)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r4, 0x1, 0x32, &(0x7f0000000180)=r3, 0x4)
r6 = openat$sndseq(0xffffff9c, &(0x7f0000001240), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r6, 0xc0a45320, &(0x7f00000000c0)={{0x80, 0xf7}, 'port1\x00', 0x3ab, 0x2062f, 0x3, 0x7, 0x0, 0xc, 0x3fc, 0x0, 0x7, 0xfd})
openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0), 0x80d02, 0x0)
sendmsg$unix(r5, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000680)="9237ef65", 0x3ec0}], 0x1, 0x0, 0x0, 0xc080}, 0x10)
r7 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)
ioctl$VIDIOC_S_CROP(r7, 0x4014563c, &(0x7f0000000000)={0xe, {0x2, 0x1b288141, 0xe17e, 0x304}})
r8 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='.\x00', 0x0, 0x0)
renameat(r8, &(0x7f00000004c0)='./cgroup.net/devices.allow\x00', r8, &(0x7f0000000500)='./cgroup.net/cgroup.procs\x00')
syz_usb_connect(0x0, 0x5f, 0x0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r9 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$6lowpan_control(r9, &(0x7f0000000180)='connect aa:aa:aa:aa:aa:11 0', 0x1b)
ioctl$SOUND_PCM_READ_CHANNELS(0xffffffffffffffff, 0x80045006, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000680), 0x40000, 0x19)

kernel console output (not intermixed with test programs):

 Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   99.773543][ T7137] Call Trace:
[   99.773550][ T7137]  <TASK>
[   99.773557][ T7137]  dump_stack_lvl+0x16c/0x1f0
[   99.773586][ T7137]  should_fail_ex+0x512/0x640
[   99.773605][ T7137]  _copy_to_user+0x32/0xd0
[   99.773624][ T7137]  simple_read_from_buffer+0xcb/0x170
[   99.773646][ T7137]  proc_fail_nth_read+0x197/0x240
[   99.773671][ T7137]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   99.773709][ T7137]  ? rw_verify_area+0xcf/0x6c0
[   99.773730][ T7137]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   99.773753][ T7137]  vfs_read+0x1e4/0xcf0
[   99.773780][ T7137]  ? __pfx_vfs_read+0x10/0x10
[   99.773800][ T7137]  ? find_held_lock+0x2b/0x80
[   99.773830][ T7137]  ? __fget_files+0x20e/0x3c0
[   99.773849][ T7137]  ? handle_mm_fault+0x1f0/0xd10
[   99.773876][ T7137]  ksys_read+0x12a/0x250
[   99.773897][ T7137]  ? __pfx_ksys_read+0x10/0x10
[   99.773920][ T7137]  ? rcu_is_watching+0x12/0xc0
[   99.773946][ T7137]  __do_fast_syscall_32+0x7c/0x300
[   99.773964][ T7137]  do_fast_syscall_32+0x32/0x80
[   99.773979][ T7137]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   99.773999][ T7137] RIP: 0023:0xf7f63579
[   99.774011][ T7137] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   99.774027][ T7137] RSP: 002b:00000000f5456590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[   99.774042][ T7137] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f5456620
[   99.774052][ T7137] RDX: 000000000000000f RSI: 00000000f73f5ff4 RDI: 0000000000000000
[   99.774061][ T7137] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[   99.774070][ T7137] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   99.774079][ T7137] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   99.774101][ T7137]  </TASK>
[   99.982480][ T7141] netlink: 12 bytes leftover after parsing attributes in process `syz.3.325'.
[   99.996528][ T7141] bridge0: port 4(batadv1) entered blocking state
[  100.004154][ T7141] bridge0: port 4(batadv1) entered disabled state
[  100.006413][ T7141] batadv1: entered allmulticast mode
[  100.011058][ T7141] batadv1: entered promiscuous mode
[  100.088129][ T7143] IPVS: set_ctl: invalid protocol: 46 0.0.0.0:20003
[  100.503834][   T76] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled
[  100.506791][   T76] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled
[  100.517295][ T7159] fuse: Unknown parameter '0x0000000000000003'
[  100.747909][   T40] audit: type=1326 audit(1760706978.759:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7163 comm="syz.1.333" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7ff5579 code=0x0
[  100.901626][ T7166] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  100.950342][ T7168] netlink: 12 bytes leftover after parsing attributes in process `syz.3.334'.
[  100.957500][ T7168] bridge0: port 5(batadv2) entered blocking state
[  100.961005][ T7168] bridge0: port 5(batadv2) entered disabled state
[  100.963102][ T7168] batadv2: entered allmulticast mode
[  100.965645][ T7168] batadv2: entered promiscuous mode
[  101.093950][ T1334] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  101.097227][ T7177] capability: warning: `syz.0.338' uses 32-bit capabilities (legacy support in use)
[  101.244392][ T7184] fuse: Unknown parameter 'group_i00000000000000000000'
[  101.254716][ T1334] usb 7-1: Using ep0 maxpacket: 16
[  101.259755][ T1334] usb 7-1: config 0 has an invalid interface number: 145 but max is 0
[  101.262685][ T1334] usb 7-1: config 0 has no interface number 0
[  101.268113][ T1334] usb 7-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25
[  101.271673][ T1334] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  101.275061][ T1334] usb 7-1: Product: syz
[  101.277085][ T1334] usb 7-1: Manufacturer: syz
[  101.279372][ T1334] usb 7-1: SerialNumber: syz
[  101.284003][ T1334] usb 7-1: config 0 descriptor??
[  101.289466][ T1334] hub 7-1:0.145: bad descriptor, ignoring hub
[  101.292016][ T1334] hub 7-1:0.145: probe with driver hub failed with error -5
[  101.297795][ T1334] input: bcm5974 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.145/input/input8
[  101.474814][  T197] batman_adv: batadv2: No IGMP Querier present - multicast optimizations disabled
[  101.478517][  T197] batman_adv: batadv2: No MLD Querier present - multicast optimizations disabled
[  101.674428][ T1334] usb 8-1: new low-speed USB device number 6 using dummy_hcd
[  101.825675][ T1334] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[  101.828631][ T1334] usb 8-1: config 0 has no interface number 0
[  101.830794][ T1334] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  101.834534][ T1334] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  101.838130][ T1334] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  101.841535][ T1334] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  101.846570][ T1334] usb 8-1: config 0 descriptor??
[  101.855166][ T7189] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  101.862455][ T1334] iowarrior 8-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  102.297332][ T7209] fuse: Unknown parameter '0x0000000000000003'
[  102.495734][ T7221] overlayfs: missing 'lowerdir'
[  103.521978][ T5978] usb 7-1: USB disconnect, device number 3
[  103.523189][ T7229] netlink: 4 bytes leftover after parsing attributes in process `syz.1.358'.
[  103.531510][ T7229] netlink: 12 bytes leftover after parsing attributes in process `syz.1.358'.
[  103.612375][ T7233] fuse: Unknown parameter 'nd'
[  104.018242][ T7252] sctp: [Deprecated]: syz.0.366 (pid 7252) Use of int in max_burst socket option.
[  104.018242][ T7252] Use struct sctp_assoc_value instead
[  104.173210][ T7254] FAULT_INJECTION: forcing a failure.
[  104.173210][ T7254] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  104.178179][ T7254] CPU: 0 UID: 0 PID: 7254 Comm: syz.2.367 Not tainted syzkaller #0 PREEMPT(full) 
[  104.178204][ T7254] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  104.178214][ T7254] Call Trace:
[  104.178219][ T7254]  <TASK>
[  104.178227][ T7254]  dump_stack_lvl+0x16c/0x1f0
[  104.178257][ T7254]  should_fail_ex+0x512/0x640
[  104.178276][ T7254]  _copy_from_iter+0x29f/0x1720
[  104.178302][ T7254]  ? __pfx__copy_from_iter+0x10/0x10
[  104.178321][ T7254]  ? find_held_lock+0x2b/0x80
[  104.178344][ T7254]  ? packet_cached_dev_get+0x14b/0x320
[  104.178372][ T7254]  packet_sendmsg+0x1cef/0x5850
[  104.178404][ T7254]  ? __kernel_text_address+0xd/0x40
[  104.178427][ T7254]  ? __pfx___might_resched+0x10/0x10
[  104.178456][ T7254]  ? aa_sk_perm+0x2f4/0xb10
[  104.178479][ T7254]  ? __pfx_packet_sendmsg+0x10/0x10
[  104.178507][ T7254]  ? __pfx_aa_sk_perm+0x10/0x10
[  104.178532][ T7254]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  104.178556][ T7254]  ____sys_sendmsg+0xa98/0xc70
[  104.178573][ T7254]  ? pfn_valid+0x74/0x4d0
[  104.178599][ T7254]  ? __pfx_____sys_sendmsg+0x10/0x10
[  104.178616][ T7254]  ? get_compat_msghdr+0x11a/0x170
[  104.178653][ T7254]  ___sys_sendmsg+0x134/0x1d0
[  104.178680][ T7254]  ? __pfx____sys_sendmsg+0x10/0x10
[  104.178730][ T7254]  ? find_held_lock+0x2b/0x80
[  104.178769][ T7254]  __sys_sendmsg+0x16d/0x220
[  104.178794][ T7254]  ? __pfx___sys_sendmsg+0x10/0x10
[  104.178829][ T7254]  ? rcu_is_watching+0x12/0xc0
[  104.178856][ T7254]  __do_fast_syscall_32+0x7c/0x300
[  104.178875][ T7254]  do_fast_syscall_32+0x32/0x80
[  104.178890][ T7254]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  104.178911][ T7254] RIP: 0023:0xf7f23579
[  104.178924][ T7254] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  104.178941][ T7254] RSP: 002b:00000000f541655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  104.178957][ T7254] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000140
[  104.178967][ T7254] RDX: 0000000004004044 RSI: 0000000000000000 RDI: 0000000000000000
[  104.178977][ T7254] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  104.178985][ T7254] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  104.178995][ T7254] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  104.179018][ T7254]  </TASK>
[  104.264054][ T5978] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  104.267429][    C0] vkms_vblank_simulate: vblank timer overrun
[  104.300567][   T55] usb 8-1: USB disconnect, device number 6
[  104.423887][ T5978] usb 5-1: Using ep0 maxpacket: 16
[  104.435339][ T5978] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  104.439846][ T5978] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  104.443352][ T5978] usb 5-1: New USB device found, idVendor=0458, idProduct=5012, bcdDevice= 0.00
[  104.448007][ T5978] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  104.455584][ T7268] overlayfs: failed to resolve './file1': -2
[  104.461971][ T5978] usb 5-1: config 0 descriptor??
[  104.499808][ T7273] rdma_rxe: rxe_newlink: failed to add syz_tun
[  104.633916][ T7273] netlink: 16 bytes leftover after parsing attributes in process `syz.3.372'.
[  104.660461][ T7277] netlink: 12 bytes leftover after parsing attributes in process `syz.1.373'.
[  104.772421][ T7283] FAULT_INJECTION: forcing a failure.
[  104.772421][ T7283] name failslab, interval 1, probability 0, space 0, times 0
[  104.778238][ T7283] CPU: 2 UID: 0 PID: 7283 Comm: syz.3.375 Not tainted syzkaller #0 PREEMPT(full) 
[  104.778254][ T7283] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  104.778274][ T7283] Call Trace:
[  104.778281][ T7283]  <TASK>
[  104.778288][ T7283]  dump_stack_lvl+0x16c/0x1f0
[  104.778315][ T7283]  should_fail_ex+0x512/0x640
[  104.778328][ T7283]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  104.778355][ T7283]  should_failslab+0xc2/0x120
[  104.778371][ T7283]  kmem_cache_alloc_node_noprof+0x78/0x770
[  104.778392][ T7283]  ? __alloc_skb+0x2b2/0x380
[  104.778417][ T7283]  ? __alloc_skb+0x2b2/0x380
[  104.778431][ T7283]  ? __pfx_netlink_insert+0x10/0x10
[  104.778447][ T7283]  __alloc_skb+0x2b2/0x380
[  104.778463][ T7283]  ? __pfx___alloc_skb+0x10/0x10
[  104.778479][ T7283]  ? netlink_autobind.isra.0+0x158/0x370
[  104.778500][ T7283]  netlink_alloc_large_skb+0x69/0x140
[  104.778511][ T7283]  netlink_sendmsg+0x698/0xdd0
[  104.778524][ T7283]  ? __pfx_netlink_sendmsg+0x10/0x10
[  104.778536][ T7283]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  104.778550][ T7283]  ____sys_sendmsg+0xa98/0xc70
[  104.778562][ T7283]  ? btrfs_dev_replace_cancel+0xa20/0xc70
[  104.778579][ T7283]  ? __pfx_____sys_sendmsg+0x10/0x10
[  104.778591][ T7283]  ? get_compat_msghdr+0x11a/0x170
[  104.778614][ T7283]  ___sys_sendmsg+0x134/0x1d0
[  104.778632][ T7283]  ? __pfx____sys_sendmsg+0x10/0x10
[  104.778656][ T7283]  ? find_held_lock+0x2b/0x80
[  104.778681][ T7283]  __sys_sendmsg+0x16d/0x220
[  104.778697][ T7283]  ? __pfx___sys_sendmsg+0x10/0x10
[  104.778719][ T7283]  ? rcu_is_watching+0x12/0xc0
[  104.778735][ T7283]  __do_fast_syscall_32+0x7c/0x300
[  104.778746][ T7283]  do_fast_syscall_32+0x32/0x80
[  104.778755][ T7283]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  104.778769][ T7283] RIP: 0023:0xf7f63579
[  104.778778][ T7283] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  104.778788][ T7283] RSP: 002b:00000000f545655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  104.778798][ T7283] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000340
[  104.778804][ T7283] RDX: 0000000004000040 RSI: 0000000000000000 RDI: 0000000000000000
[  104.778810][ T7283] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  104.778816][ T7283] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  104.778822][ T7283] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  104.778835][ T7283]  </TASK>
[  104.880280][ T5978] input: HID 0458:5012 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/0003:0458:5012.0002/input/input9
[  104.893125][ T5978] input: HID 0458:5012 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/0003:0458:5012.0002/input/input10
[  104.941263][ T7285] bridge0: port 6(batadv3) entered blocking state
[  104.944405][ T7285] bridge0: port 6(batadv3) entered disabled state
[  104.947597][ T7285] batadv3: entered allmulticast mode
[  104.951277][ T7285] batadv3: entered promiscuous mode
[  104.973892][ T5978] kye 0003:0458:5012.0002: input,hiddev0,hidraw1: USB HID v0.09 Device [HID 0458:5012] on usb-dummy_hcd.0-1/input0
[  105.076613][ T1024] usb 5-1: USB disconnect, device number 4
[  105.087851][ T7286] fido_id[7286]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/0003:0458:5012.0002/report_descriptor': No such device
[  105.333602][ T7330] netlink: 4 bytes leftover after parsing attributes in process `syz.3.380'.
[  105.354727][ T7332] fuse: Unknown parameter 'group_id00000000000000000000'
[  105.397253][ T7336] rdma_rxe: rxe_newlink: failed to add syz_tun
[  105.444283][ T1143] batman_adv: batadv3: No IGMP Querier present - multicast optimizations disabled
[  105.447235][ T1143] batman_adv: batadv3: No MLD Querier present - multicast optimizations disabled
[  105.476913][ T7337] mkiss: ax0: crc mode is auto.
[  105.546683][ T7339] IPVS: set_ctl: invalid protocol: 46 0.0.0.0:20003
[  105.566920][ T7336] netlink: 16 bytes leftover after parsing attributes in process `syz.2.382'.
[  106.326467][ T7353] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input11
[  106.554370][ T7357] overlayfs: failed to resolve './file1': -2
[  106.745757][ T7366] FAULT_INJECTION: forcing a failure.
[  106.745757][ T7366] name failslab, interval 1, probability 0, space 0, times 0
[  106.750428][   T40] audit: type=1326 audit(1760706984.759:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7364 comm="syz.2.389" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f23579 code=0x0
[  106.750963][ T7366] CPU: 3 UID: 0 PID: 7366 Comm: syz.0.390 Not tainted syzkaller #0 PREEMPT(full) 
[  106.750976][ T7366] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  106.750983][ T7366] Call Trace:
[  106.750987][ T7366]  <TASK>
[  106.750991][ T7366]  dump_stack_lvl+0x16c/0x1f0
[  106.751011][ T7366]  should_fail_ex+0x512/0x640
[  106.751021][ T7366]  ? __kmalloc_noprof+0xca/0x880
[  106.751036][ T7366]  should_failslab+0xc2/0x120
[  106.751046][ T7366]  __kmalloc_noprof+0xdd/0x880
[  106.751059][ T7366]  ? bpf_test_init.isra.0+0x88/0x130
[  106.751076][ T7366]  ? bpf_test_init.isra.0+0x88/0x130
[  106.751089][ T7366]  bpf_test_init.isra.0+0x88/0x130
[  106.751105][ T7366]  bpf_prog_test_run_xdp+0x556/0x1670
[  106.751124][ T7366]  ? __fget_files+0x204/0x3c0
[  106.751139][ T7366]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  106.751156][ T7366]  ? __might_fault+0xa0/0x190
[  106.751172][ T7366]  ? fput+0x9b/0xd0
[  106.751188][ T7366]  ? __bpf_prog_get+0x97/0x2a0
[  106.751200][ T7366]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  106.751216][ T7366]  __sys_bpf+0x1035/0x4980
[  106.751232][ T7366]  ? __pfx___sys_bpf+0x10/0x10
[  106.751246][ T7366]  ? find_held_lock+0x2b/0x80
[  106.751263][ T7366]  ? find_held_lock+0x2b/0x80
[  106.751280][ T7366]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  106.751305][ T7366]  ? fput+0x9b/0xd0
[  106.751315][ T7366]  ? ksys_write+0x1ac/0x250
[  106.751331][ T7366]  ? __pfx_ksys_write+0x10/0x10
[  106.751348][ T7366]  __ia32_sys_bpf+0x76/0xe0
[  106.751363][ T7366]  __do_fast_syscall_32+0x7c/0x300
[  106.751374][ T7366]  do_fast_syscall_32+0x32/0x80
[  106.751383][ T7366]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  106.751397][ T7366] RIP: 0023:0xf7f87579
[  106.751405][ T7366] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  106.751415][ T7366] RSP: 002b:00000000f547655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  106.751425][ T7366] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000180
[  106.751432][ T7366] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[  106.751438][ T7366] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  106.751443][ T7366] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  106.751449][ T7366] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  106.751462][ T7366]  </TASK>
[  106.751730][ T7367] fuse: Bad value for 'user_id'
[  106.836779][ T7367] fuse: Bad value for 'user_id'
[  106.910744][ T7371] netlink: 60 bytes leftover after parsing attributes in process `syz.0.392'.
[  107.022069][ T7383] netlink: 20 bytes leftover after parsing attributes in process `syz.3.396'.
[  107.031661][   T40] audit: type=1326 audit(1760706985.039:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7384 comm="syz.0.397" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f87579 code=0x0
[  107.152833][ T7388] mkiss: ax0: crc mode is auto.
[  107.194733][ T7386] trusted_key: encrypted_key: master key parameter 'defau…t' is invalid
[  107.200816][ T7386] netlink: 16 bytes leftover after parsing attributes in process `syz.1.395'.
[  107.205802][ T7393] FAULT_INJECTION: forcing a failure.
[  107.205802][ T7393] name failslab, interval 1, probability 0, space 0, times 0
[  107.210773][ T7393] CPU: 0 UID: 0 PID: 7393 Comm: syz.3.399 Not tainted syzkaller #0 PREEMPT(full) 
[  107.210795][ T7393] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  107.210806][ T7393] Call Trace:
[  107.210813][ T7393]  <TASK>
[  107.210820][ T7393]  dump_stack_lvl+0x16c/0x1f0
[  107.210851][ T7393]  should_fail_ex+0x512/0x640
[  107.210868][ T7393]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  107.210895][ T7393]  should_failslab+0xc2/0x120
[  107.210913][ T7393]  kmem_cache_alloc_node_noprof+0x78/0x770
[  107.210936][ T7393]  ? __alloc_skb+0x2b2/0x380
[  107.210967][ T7393]  ? __alloc_skb+0x2b2/0x380
[  107.210990][ T7393]  __alloc_skb+0x2b2/0x380
[  107.211015][ T7393]  ? __pfx___alloc_skb+0x10/0x10
[  107.211040][ T7393]  ? __kernel_text_address+0xd/0x40
[  107.211062][ T7393]  ? __pfx___might_resched+0x10/0x10
[  107.211091][ T7393]  netlink_alloc_large_skb+0x69/0x140
[  107.211111][ T7393]  netlink_sendmsg+0x698/0xdd0
[  107.211132][ T7393]  ? __pfx_netlink_sendmsg+0x10/0x10
[  107.211152][ T7393]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  107.211175][ T7393]  ____sys_sendmsg+0xa98/0xc70
[  107.211199][ T7393]  ? __pfx_____sys_sendmsg+0x10/0x10
[  107.211217][ T7393]  ? get_compat_msghdr+0x11a/0x170
[  107.211254][ T7393]  ___sys_sendmsg+0x134/0x1d0
[  107.211282][ T7393]  ? __pfx____sys_sendmsg+0x10/0x10
[  107.211321][ T7393]  ? find_held_lock+0x2b/0x80
[  107.211362][ T7393]  __sys_sendmsg+0x16d/0x220
[  107.211388][ T7393]  ? __pfx___sys_sendmsg+0x10/0x10
[  107.211426][ T7393]  ? rcu_is_watching+0x12/0xc0
[  107.211459][ T7393]  __do_fast_syscall_32+0x7c/0x300
[  107.211478][ T7393]  do_fast_syscall_32+0x32/0x80
[  107.211496][ T7393]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  107.211517][ T7393] RIP: 0023:0xf7f63579
[  107.211533][ T7393] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  107.211549][ T7393] RSP: 002b:00000000f545655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  107.211566][ T7393] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080006000
[  107.211578][ T7393] RDX: 0000000000028000 RSI: 0000000000000000 RDI: 0000000000000000
[  107.211588][ T7393] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  107.211598][ T7393] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  107.211608][ T7393] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  107.211632][ T7393]  </TASK>
[  107.312266][    C0] vkms_vblank_simulate: vblank timer overrun
[  107.484450][ T7399] fuse: Bad value for 'user_id'
[  107.486149][ T7399] fuse: Bad value for 'user_id'
[  108.084971][ T7408] netlink: 16 bytes leftover after parsing attributes in process `syz.2.403'.
[  108.093560][   T40] audit: type=1326 audit(1760706986.099:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7409 comm="syz.0.405" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f87579 code=0x0
[  108.213893][ T7414] mkiss: ax0: crc mode is auto.
[  108.873993][ T6123] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  109.043916][ T6123] usb 6-1: Using ep0 maxpacket: 16
[  109.063985][ T6123] usb 6-1: config 0 has no interfaces?
[  109.066386][ T6123] usb 6-1: New USB device found, idVendor=1fd2, idProduct=6006, bcdDevice= 0.00
[  109.069592][ T6123] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  109.078913][ T7433] fuse: Bad value for 'user_id'
[  109.080659][ T7433] fuse: Bad value for 'user_id'
[  109.081616][ T7434] netlink: 4 bytes leftover after parsing attributes in process `syz.2.411'.
[  109.083300][ T6123] usb 6-1: config 0 descriptor??
[  110.218855][ T1334] usb 6-1: USB disconnect, device number 3
[  110.763292][   T40] audit: type=1326 audit(1760706988.769:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7456 comm="syz.1.418" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7ff5579 code=0x0
[  110.878935][ T7459] mkiss: ax0: crc mode is auto.
[  111.741135][ T7476] wlan0 speed is unknown, defaulting to 1000
[  111.757408][ T7478] rdma_rxe: rxe_newlink: failed to add syz_tun
[  112.083989][ T7478] netlink: 16 bytes leftover after parsing attributes in process `syz.2.423'.
[  112.215517][ T7490] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  112.235714][ T7492] FAULT_INJECTION: forcing a failure.
[  112.235714][ T7492] name failslab, interval 1, probability 0, space 0, times 0
[  112.239921][ T7492] CPU: 0 UID: 0 PID: 7492 Comm: syz.2.428 Not tainted syzkaller #0 PREEMPT(full) 
[  112.239935][ T7492] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  112.239942][ T7492] Call Trace:
[  112.239945][ T7492]  <TASK>
[  112.239950][ T7492]  dump_stack_lvl+0x16c/0x1f0
[  112.239970][ T7492]  should_fail_ex+0x512/0x640
[  112.239980][ T7492]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  112.239997][ T7492]  should_failslab+0xc2/0x120
[  112.240007][ T7492]  kmem_cache_alloc_node_noprof+0x78/0x770
[  112.240022][ T7492]  ? __alloc_skb+0x2b2/0x380
[  112.240040][ T7492]  ? __alloc_skb+0x2b2/0x380
[  112.240053][ T7492]  __alloc_skb+0x2b2/0x380
[  112.240068][ T7492]  ? __pfx___alloc_skb+0x10/0x10
[  112.240084][ T7492]  ? find_held_lock+0x2b/0x80
[  112.240101][ T7492]  alloc_skb_with_frags+0xe0/0x860
[  112.240115][ T7492]  sock_alloc_send_pskb+0x7f9/0x980
[  112.240132][ T7492]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  112.240146][ T7492]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  112.240200][ T7492]  ? find_held_lock+0x2b/0x80
[  112.240217][ T7492]  ? dev_get_by_index+0x17c/0x380
[  112.240242][ T7492]  packet_sendmsg+0x2054/0x5850
[  112.240264][ T7492]  ? __pfx___might_resched+0x10/0x10
[  112.240282][ T7492]  ? aa_sk_perm+0x2f4/0xb10
[  112.240298][ T7492]  ? __pfx_packet_sendmsg+0x10/0x10
[  112.240311][ T7492]  ? __pfx_aa_sk_perm+0x10/0x10
[  112.240323][ T7492]  ? __might_fault+0xe3/0x190
[  112.240341][ T7492]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  112.240354][ T7492]  __sys_sendto+0x4a3/0x520
[  112.240370][ T7492]  ? __pfx___sys_sendto+0x10/0x10
[  112.240395][ T7492]  ? ksys_write+0x1ac/0x250
[  112.240411][ T7492]  ? __pfx_ksys_write+0x10/0x10
[  112.240428][ T7492]  __ia32_sys_sendto+0xdd/0x1b0
[  112.240442][ T7492]  ? lockdep_hardirqs_on+0x7c/0x110
[  112.240459][ T7492]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  112.240476][ T7492]  __do_fast_syscall_32+0x7c/0x300
[  112.240487][ T7492]  do_fast_syscall_32+0x32/0x80
[  112.240497][ T7492]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  112.240510][ T7492] RIP: 0023:0xf7f23579
[  112.240519][ T7492] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  112.240530][ T7492] RSP: 002b:00000000f541655c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  112.240541][ T7492] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  112.240548][ T7492] RDX: 0000000000000000 RSI: 000000000004c001 RDI: 00000000800002c0
[  112.240554][ T7492] RBP: 0000000000000014 R08: 0000000000000000 R09: 0000000000000000
[  112.240560][ T7492] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  112.240566][ T7492] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  112.240579][ T7492]  </TASK>
[  112.243141][ T7490] input: syz1 as /devices/virtual/input/input12
[  112.364381][   T40] audit: type=1326 audit(1760706990.379:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7496 comm="syz.1.430" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7ff5579 code=0x0
[  112.368597][ T7490] input: failed to attach handler leds to device input12, error: -6
[  112.668360][ T7500] mkiss: ax0: crc mode is auto.
[  114.478554][ T7515] loop0: detected capacity change from 0 to 2559
[  114.481763][ T7515] Buffer I/O error on dev loop0, logical block 0, async page read
[  114.487240][ T7515] Buffer I/O error on dev loop0, logical block 0, async page read
[  114.489922][ T7515] Buffer I/O error on dev loop0, logical block 0, async page read
[  114.492673][ T7515] Buffer I/O error on dev loop0, logical block 0, async page read
[  114.496214][ T7515] Buffer I/O error on dev loop0, logical block 0, async page read
[  114.499921][ T7515] Buffer I/O error on dev loop0, logical block 0, async page read
[  114.503380][ T7515] Buffer I/O error on dev loop0, logical block 0, async page read
[  114.511396][ T7515] Buffer I/O error on dev loop0, logical block 0, async page read
[  114.511447][ T7515] ldm_validate_partition_table(): Disk read failed.
[  114.511471][ T7515] Buffer I/O error on dev loop0, logical block 0, async page read
[  114.511558][ T7515] Buffer I/O error on dev loop0, logical block 0, async page read
[  114.511664][ T7515] Dev loop0: unable to read RDB block 0
[  114.511884][ T7515]  loop0: unable to read partition table
[  114.512016][ T7515] loop_reread_partitions: partition scan of loop0 (3Ÿ¾‚³˜) failed (rc=-5)
[  114.658208][ T7526] loop0: detected capacity change from 0 to 2559
[  114.663921][ T6029] ldm_validate_partition_table(): Disk read failed.
[  114.666309][ T6029] Dev loop0: unable to read RDB block 0
[  114.668956][ T6029]  loop0: unable to read partition table
[  114.676568][ T7526] ldm_validate_partition_table(): Disk read failed.
[  114.679712][ T7526] Dev loop0: unable to read RDB block 0
[  114.682389][ T7526]  loop0: unable to read partition table
[  114.685471][ T7526] loop_reread_partitions: partition scan of loop0 (3Ÿ¾‚³˜) failed (rc=-5)
[  114.725511][ T7526] FAULT_INJECTION: forcing a failure.
[  114.725511][ T7526] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  114.731593][ T7526] CPU: 1 UID: 0 PID: 7526 Comm: syz.1.437 Not tainted syzkaller #0 PREEMPT(full) 
[  114.731617][ T7526] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  114.731628][ T7526] Call Trace:
[  114.731634][ T7526]  <TASK>
[  114.731641][ T7526]  dump_stack_lvl+0x16c/0x1f0
[  114.731673][ T7526]  should_fail_ex+0x512/0x640
[  114.731688][ T7526]  ? page_copy_sane+0xcd/0x2d0
[  114.731715][ T7526]  copy_folio_from_iter_atomic+0x36f/0x1ac0
[  114.731746][ T7526]  ? __pfx_copy_folio_from_iter_atomic+0x10/0x10
[  114.731764][ T7526]  ? fault_in_readable+0x179/0x1d0
[  114.731790][ T7526]  ? __pfx_fault_in_readable+0x10/0x10
[  114.731825][ T7526]  iomap_file_buffered_write+0x535/0xac0
[  114.731858][ T7526]  ? __pfx_iomap_file_buffered_write+0x10/0x10
[  114.731882][ T7526]  ? inode_set_ctime_current+0x2a1/0x8f0
[  114.731929][ T7526]  ? __pfx_down_read+0x10/0x10
[  114.731947][ T7526]  ? preempt_count_add+0x76/0x150
[  114.731966][ T7526]  ? mnt_put_write_access_file+0xc1/0xf0
[  114.731991][ T7526]  blkdev_write_iter+0x575/0xe00
[  114.732021][ T7526]  vfs_write+0x7d3/0x11d0
[  114.732045][ T7526]  ? __pfx_blkdev_write_iter+0x10/0x10
[  114.732068][ T7526]  ? __pfx_vfs_write+0x10/0x10
[  114.732090][ T7526]  ? find_held_lock+0x2b/0x80
[  114.732130][ T7526]  ksys_write+0x12a/0x250
[  114.732176][ T7526]  ? __pfx_ksys_write+0x10/0x10
[  114.732197][ T7526]  ? rcu_is_watching+0x12/0xc0
[  114.732221][ T7526]  __do_fast_syscall_32+0x7c/0x300
[  114.732237][ T7526]  do_fast_syscall_32+0x32/0x80
[  114.732249][ T7526]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  114.732268][ T7526] RIP: 0023:0xf7ff5579
[  114.732282][ T7526] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  114.732298][ T7526] RSP: 002b:00000000f54e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  114.732314][ T7526] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800004c0
[  114.732325][ T7526] RDX: 0000000000001006 RSI: 0000000000000000 RDI: 0000000000000000
[  114.732335][ T7526] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  114.732345][ T7526] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  114.732355][ T7526] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  114.732378][ T7526]  </TASK>
[  114.786492][ T7524] loop0: detected capacity change from 0 to 2559
[  114.834539][ T7524] ldm_validate_partition_table(): Disk read failed.
[  114.838063][ T7524] Dev loop0: unable to read RDB block 0
[  114.840412][ T7524]  loop0: unable to read partition table
[  114.863766][ T7524] loop_reread_partitions: partition scan of loop0 (3Ÿ¾‚³˜) failed (rc=-5)
[  115.118163][ T7538] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  115.368513][ T7543] FAULT_INJECTION: forcing a failure.
[  115.368513][ T7543] name failslab, interval 1, probability 0, space 0, times 0
[  115.372853][ T7543] CPU: 1 UID: 0 PID: 7543 Comm: syz.2.441 Not tainted syzkaller #0 PREEMPT(full) 
[  115.372868][ T7543] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  115.372875][ T7543] Call Trace:
[  115.372879][ T7543]  <TASK>
[  115.372884][ T7543]  dump_stack_lvl+0x16c/0x1f0
[  115.372905][ T7543]  should_fail_ex+0x512/0x640
[  115.372915][ T7543]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  115.372947][ T7543]  should_failslab+0xc2/0x120
[  115.372957][ T7543]  kmem_cache_alloc_node_noprof+0x78/0x770
[  115.372971][ T7543]  ? __alloc_skb+0x2b2/0x380
[  115.372989][ T7543]  ? __alloc_skb+0x2b2/0x380
[  115.373002][ T7543]  ? __pfx_netlink_insert+0x10/0x10
[  115.373018][ T7543]  __alloc_skb+0x2b2/0x380
[  115.373032][ T7543]  ? __pfx___alloc_skb+0x10/0x10
[  115.373048][ T7543]  ? netlink_autobind.isra.0+0x158/0x370
[  115.373068][ T7543]  netlink_alloc_large_skb+0x69/0x140
[  115.373079][ T7543]  netlink_sendmsg+0x698/0xdd0
[  115.373091][ T7543]  ? __pfx_netlink_sendmsg+0x10/0x10
[  115.373102][ T7543]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  115.373116][ T7543]  ____sys_sendmsg+0xa98/0xc70
[  115.373130][ T7543]  ? __pfx_____sys_sendmsg+0x10/0x10
[  115.373141][ T7543]  ? get_compat_msghdr+0x11a/0x170
[  115.373162][ T7543]  ___sys_sendmsg+0x134/0x1d0
[  115.373179][ T7543]  ? __pfx____sys_sendmsg+0x10/0x10
[  115.373201][ T7543]  ? find_held_lock+0x2b/0x80
[  115.373224][ T7543]  __sys_sendmsg+0x16d/0x220
[  115.373240][ T7543]  ? __pfx___sys_sendmsg+0x10/0x10
[  115.373264][ T7543]  ? rcu_is_watching+0x12/0xc0
[  115.373288][ T7543]  __do_fast_syscall_32+0x7c/0x300
[  115.373310][ T7543]  do_fast_syscall_32+0x32/0x80
[  115.373325][ T7543]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  115.373342][ T7543] RIP: 0023:0xf7f23579
[  115.373354][ T7543] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  115.373370][ T7543] RSP: 002b:00000000f541655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  115.373385][ T7543] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080001080
[  115.373396][ T7543] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  115.373405][ T7543] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  115.373413][ T7543] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  115.373423][ T7543] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  115.373443][ T7543]  </TASK>
[  115.499950][   T40] audit: type=1326 audit(1760706993.509:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7547 comm="syz.3.443" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f63579 code=0x0
[  115.563453][ T7550] mkiss: ax0: crc mode is auto.
[  115.887375][ T7560] netlink: 16 bytes leftover after parsing attributes in process `syz.2.444'.
[  116.183849][   T24] usb 6-1: new low-speed USB device number 4 using dummy_hcd
[  116.346709][   T24] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  116.350550][   T24] usb 6-1: config 0 has no interface number 0
[  116.353235][   T24] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  116.359206][   T24] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  116.364158][   T24] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  116.368020][   T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  116.373615][   T24] usb 6-1: config 0 descriptor??
[  116.378807][ T7562] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  116.386421][   T24] iowarrior 6-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  116.442387][ T7570] FAULT_INJECTION: forcing a failure.
[  116.442387][ T7570] name failslab, interval 1, probability 0, space 0, times 0
[  116.448028][ T7570] CPU: 3 UID: 0 PID: 7570 Comm: syz.3.448 Not tainted syzkaller #0 PREEMPT(full) 
[  116.448057][ T7570] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  116.448064][ T7570] Call Trace:
[  116.448068][ T7570]  <TASK>
[  116.448073][ T7570]  dump_stack_lvl+0x16c/0x1f0
[  116.448094][ T7570]  should_fail_ex+0x512/0x640
[  116.448104][ T7570]  ? fs_reclaim_acquire+0xae/0x150
[  116.448116][ T7570]  should_failslab+0xc2/0x120
[  116.448156][ T7570]  __kmalloc_noprof+0xdd/0x880
[  116.448174][ T7570]  ? tomoyo_encode2+0x100/0x3e0
[  116.448198][ T7570]  ? tomoyo_encode2+0x100/0x3e0
[  116.448212][ T7570]  tomoyo_encode2+0x100/0x3e0
[  116.448228][ T7570]  tomoyo_encode+0x29/0x50
[  116.448242][ T7570]  tomoyo_realpath_from_path+0x18f/0x6e0
[  116.448261][ T7570]  tomoyo_path_number_perm+0x245/0x580
[  116.448273][ T7570]  ? tomoyo_path_number_perm+0x237/0x580
[  116.448287][ T7570]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  116.448314][ T7570]  ? find_held_lock+0x2b/0x80
[  116.448329][ T7570]  ? hook_file_ioctl_common+0x145/0x410
[  116.448346][ T7570]  ? __fget_files+0x20e/0x3c0
[  116.448362][ T7570]  security_file_ioctl_compat+0x9b/0x240
[  116.448377][ T7570]  __ia32_compat_sys_ioctl+0xc3/0x370
[  116.448391][ T7570]  __do_fast_syscall_32+0x7c/0x300
[  116.448403][ T7570]  do_fast_syscall_32+0x32/0x80
[  116.448412][ T7570]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  116.448425][ T7570] RIP: 0023:0xf7f63579
[  116.448434][ T7570] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  116.448444][ T7570] RSP: 002b:00000000f545655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  116.448455][ T7570] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000004008af30
[  116.448462][ T7570] RDX: 00000000800000c0 RSI: 0000000000000000 RDI: 0000000000000000
[  116.448467][ T7570] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  116.448473][ T7570] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  116.448479][ T7570] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  116.448493][ T7570]  </TASK>
[  116.448517][ T7570] ERROR: Out of memory at tomoyo_realpath_from_path.
[  117.447548][ T7586] mmap: syz.3.452 (7586) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  117.490296][ T7586] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.604231][ T7586] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.731191][ T7586] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.814015][ T7586] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.842174][ T7593] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  117.910691][ T7317] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  117.933513][ T7313] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  117.952335][ T7313] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  117.985278][ T7317] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  118.054594][   T40] audit: type=1326 audit(1760706996.069:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7596 comm="syz.0.456" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f87579 code=0x0
[  118.121760][ T7600] mkiss: ax0: crc mode is auto.
[  118.422062][ T7604] netlink: 'syz.3.457': attribute type 16 has an invalid length.
[  118.428242][ T7604] netlink: 64138 bytes leftover after parsing attributes in process `syz.3.457'.
[  118.781516][ T7607] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  118.836987][ T1334] usb 6-1: USB disconnect, device number 4
[  118.936296][ T7612] kAFS: No cell specified
[  119.295741][ T7632] program syz.1.466 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  119.823886][    T9] usb 6-1: new low-speed USB device number 5 using dummy_hcd
[  119.868486][ T7641] FAULT_INJECTION: forcing a failure.
[  119.868486][ T7641] name failslab, interval 1, probability 0, space 0, times 0
[  119.873397][ T7641] CPU: 3 UID: 0 PID: 7641 Comm: syz.0.468 Not tainted syzkaller #0 PREEMPT(full) 
[  119.873412][ T7641] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  119.873418][ T7641] Call Trace:
[  119.873423][ T7641]  <TASK>
[  119.873427][ T7641]  dump_stack_lvl+0x16c/0x1f0
[  119.873448][ T7641]  should_fail_ex+0x512/0x640
[  119.873458][ T7641]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  119.873475][ T7641]  should_failslab+0xc2/0x120
[  119.873486][ T7641]  kmem_cache_alloc_node_noprof+0x78/0x770
[  119.873500][ T7641]  ? __alloc_skb+0x2b2/0x380
[  119.873517][ T7641]  ? __alloc_skb+0x2b2/0x380
[  119.873531][ T7641]  ? __pfx_netlink_insert+0x10/0x10
[  119.873546][ T7641]  __alloc_skb+0x2b2/0x380
[  119.873561][ T7641]  ? __pfx___alloc_skb+0x10/0x10
[  119.873576][ T7641]  ? netlink_autobind.isra.0+0x158/0x370
[  119.873596][ T7641]  netlink_alloc_large_skb+0x69/0x140
[  119.873606][ T7641]  netlink_sendmsg+0x698/0xdd0
[  119.873618][ T7641]  ? __pfx_netlink_sendmsg+0x10/0x10
[  119.873629][ T7641]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  119.873644][ T7641]  ____sys_sendmsg+0xa98/0xc70
[  119.873657][ T7641]  ? __pfx_____sys_sendmsg+0x10/0x10
[  119.873668][ T7641]  ? get_compat_msghdr+0x11a/0x170
[  119.873693][ T7641]  ___sys_sendmsg+0x134/0x1d0
[  119.873722][ T7641]  ? __pfx____sys_sendmsg+0x10/0x10
[  119.873745][ T7641]  ? find_held_lock+0x2b/0x80
[  119.873769][ T7641]  __sys_sendmsg+0x16d/0x220
[  119.873785][ T7641]  ? __pfx___sys_sendmsg+0x10/0x10
[  119.873806][ T7641]  ? rcu_is_watching+0x12/0xc0
[  119.873824][ T7641]  __do_fast_syscall_32+0x7c/0x300
[  119.873835][ T7641]  do_fast_syscall_32+0x32/0x80
[  119.873844][ T7641]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  119.873857][ T7641] RIP: 0023:0xf7f87579
[  119.873865][ T7641] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  119.873876][ T7641] RSP: 002b:00000000f547655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  119.873886][ T7641] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080002b00
[  119.873892][ T7641] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  119.873898][ T7641] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  119.873903][ T7641] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  119.873909][ T7641] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  119.873922][ T7641]  </TASK>
[  119.978493][    T9] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  119.981735][    T9] usb 6-1: config 0 has no interface number 0
[  119.985147][    T9] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  119.989108][    T9] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  119.993553][    T9] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  119.997214][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  120.002246][    T9] usb 6-1: config 0 descriptor??
[  120.005159][ T7639] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  120.014359][    T9] iowarrior 6-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  120.140783][ T7651] FAULT_INJECTION: forcing a failure.
[  120.140783][ T7651] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  120.145176][ T7651] CPU: 2 UID: 0 PID: 7651 Comm: syz.2.473 Not tainted syzkaller #0 PREEMPT(full) 
[  120.145191][ T7651] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  120.145197][ T7651] Call Trace:
[  120.145201][ T7651]  <TASK>
[  120.145205][ T7651]  dump_stack_lvl+0x16c/0x1f0
[  120.145226][ T7651]  should_fail_ex+0x512/0x640
[  120.145238][ T7651]  _copy_from_user+0x2e/0xd0
[  120.145249][ T7651]  copy_from_sockptr_offset+0x15c/0x1b0
[  120.145262][ T7651]  ? __pfx_copy_from_sockptr_offset+0x10/0x10
[  120.145276][ T7651]  ? find_held_lock+0x2b/0x80
[  120.145292][ T7651]  do_tcp_getsockopt+0xd3e/0x2620
[  120.145311][ T7651]  ? __pfx_do_tcp_getsockopt+0x10/0x10
[  120.145326][ T7651]  ? __kernel_text_address+0xd/0x40
[  120.145342][ T7651]  ? __lock_acquire+0x622/0x1c90
[  120.145357][ T7651]  ? aa_label_sk_perm+0x195/0x600
[  120.145371][ T7651]  ? _kstrtoull+0x145/0x200
[  120.145383][ T7651]  ? __pfx__kstrtoull+0x10/0x10
[  120.145397][ T7651]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  120.145413][ T7651]  ? __lock_acquire+0x622/0x1c90
[  120.145430][ T7651]  ? __pfx___might_resched+0x10/0x10
[  120.145445][ T7651]  ? get_pid_task+0xfc/0x250
[  120.145457][ T7651]  ? aa_sk_perm+0x2f4/0xb10
[  120.145470][ T7651]  ? proc_fail_nth_write+0x9f/0x220
[  120.145487][ T7651]  ? __lock_acquire+0x622/0x1c90
[  120.145500][ T7651]  tcp_getsockopt+0xdf/0x100
[  120.145516][ T7651]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  120.145529][ T7651]  do_sock_getsockopt+0x34d/0x440
[  120.145541][ T7651]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  120.145551][ T7651]  ? __fget_files+0x204/0x3c0
[  120.145586][ T7651]  __sys_getsockopt+0x123/0x1b0
[  120.145605][ T7651]  __ia32_sys_getsockopt+0xbc/0x160
[  120.145620][ T7651]  ? lockdep_hardirqs_on+0x7c/0x110
[  120.145635][ T7651]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  120.145652][ T7651]  __do_fast_syscall_32+0x7c/0x300
[  120.145663][ T7651]  do_fast_syscall_32+0x32/0x80
[  120.145672][ T7651]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  120.145685][ T7651] RIP: 0023:0xf7f23579
[  120.145694][ T7651] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  120.145704][ T7651] RSP: 002b:00000000f541655c EFLAGS: 00000296 ORIG_RAX: 000000000000016d
[  120.145714][ T7651] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000000006
[  120.145720][ T7651] RDX: 0000000000000023 RSI: 0000000080000040 RDI: 0000000080000100
[  120.145726][ T7651] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  120.145732][ T7651] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  120.145738][ T7651] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  120.145752][ T7651]  </TASK>
[  121.839458][ T7678] rdma_rxe: rxe_newlink: failed to add syz_tun
[  122.027487][ T7678] netlink: 16 bytes leftover after parsing attributes in process `syz.0.481'.
[  122.150795][ T7688] fuse: Unknown parameter 'use00000000000000000000'
[  122.195450][ T7694] tmpfs: Bad value for 'size'
[  122.299359][ T7700] netlink: 8 bytes leftover after parsing attributes in process `syz.2.491'.
[  122.302163][ T7700] netlink: 4 bytes leftover after parsing attributes in process `syz.2.491'.
[  122.476994][ T6123] usb 6-1: USB disconnect, device number 5
[  122.715591][ T7706] random: crng reseeded on system resumption
[  122.720880][ T7706] IPv6: NLM_F_CREATE should be specified when creating new route
[  122.850570][ T7716] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  122.852675][ T7716] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  122.855528][ T7716] vhci_hcd vhci_hcd.0: Device attached
[  123.133833][   T55] usb 40-1: SetAddress Request (6) to port 0
[  123.135914][   T55] usb 40-1: new SuperSpeed USB device number 6 using vhci_hcd
[  123.766288][ T7717] vhci_hcd: connection reset by peer
[  123.769174][ T7317] vhci_hcd: stop threads
[  123.770607][ T7317] vhci_hcd: release socket
[  123.772316][ T7317] vhci_hcd: disconnect device
[  123.803733][ T7735] netlink: 8 bytes leftover after parsing attributes in process `syz.0.500'.
[  123.806709][ T7735] netlink: 4 bytes leftover after parsing attributes in process `syz.0.500'.
[  125.302224][ T7753] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  125.357326][ T7753] netlink: 16 bytes leftover after parsing attributes in process `syz.0.507'.
[  125.360398][ T7753] netlink: 36 bytes leftover after parsing attributes in process `syz.0.507'.
[  126.196244][ T7786] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  126.198319][ T7786] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  126.208946][ T7786] vhci_hcd vhci_hcd.0: Device attached
[  126.226366][   T40] audit: type=1800 audit(1760707004.199:129): pid=7789 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.513" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  126.493808][ T6022] usb 44-1: SetAddress Request (2) to port 0
[  126.495723][ T6022] usb 44-1: new SuperSpeed USB device number 2 using vhci_hcd
[  126.700810][ T7787] vhci_hcd: connection reset by peer
[  126.719133][   T61] vhci_hcd: stop threads
[  126.720830][   T61] vhci_hcd: release socket
[  126.722720][   T61] vhci_hcd: disconnect device
[  126.824996][ T7792] FAULT_INJECTION: forcing a failure.
[  126.824996][ T7792] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  126.828968][ T7792] CPU: 1 UID: 0 PID: 7792 Comm: syz.0.517 Not tainted syzkaller #0 PREEMPT(full) 
[  126.828983][ T7792] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  126.828989][ T7792] Call Trace:
[  126.828993][ T7792]  <TASK>
[  126.828997][ T7792]  dump_stack_lvl+0x16c/0x1f0
[  126.829018][ T7792]  should_fail_ex+0x512/0x640
[  126.829030][ T7792]  _copy_from_iter+0x29f/0x1720
[  126.829044][ T7792]  ? __pfx__copy_from_iter+0x10/0x10
[  126.829054][ T7792]  ? find_held_lock+0x2b/0x80
[  126.829071][ T7792]  ? packet_cached_dev_get+0x14b/0x320
[  126.829089][ T7792]  packet_sendmsg+0x1cef/0x5850
[  126.829108][ T7792]  ? __kernel_text_address+0xd/0x40
[  126.829122][ T7792]  ? __pfx___might_resched+0x10/0x10
[  126.829140][ T7792]  ? aa_sk_perm+0x2f4/0xb10
[  126.829155][ T7792]  ? __pfx_packet_sendmsg+0x10/0x10
[  126.829167][ T7792]  ? __pfx_aa_sk_perm+0x10/0x10
[  126.829184][ T7792]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  126.829197][ T7792]  ____sys_sendmsg+0xa98/0xc70
[  126.829209][ T7792]  ? pfn_valid+0x74/0x4d0
[  126.829225][ T7792]  ? __pfx_____sys_sendmsg+0x10/0x10
[  126.829236][ T7792]  ? get_compat_msghdr+0x11a/0x170
[  126.829257][ T7792]  ___sys_sendmsg+0x134/0x1d0
[  126.829274][ T7792]  ? __pfx____sys_sendmsg+0x10/0x10
[  126.829301][ T7792]  ? find_held_lock+0x2b/0x80
[  126.829323][ T7792]  __sys_sendmsg+0x16d/0x220
[  126.829339][ T7792]  ? __pfx___sys_sendmsg+0x10/0x10
[  126.829361][ T7792]  ? rcu_is_watching+0x12/0xc0
[  126.829378][ T7792]  __do_fast_syscall_32+0x7c/0x300
[  126.829389][ T7792]  do_fast_syscall_32+0x32/0x80
[  126.829398][ T7792]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  126.829411][ T7792] RIP: 0023:0xf7f87579
[  126.829420][ T7792] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  126.829430][ T7792] RSP: 002b:00000000f547655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  126.829440][ T7792] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000140
[  126.829446][ T7792] RDX: 0000000004004044 RSI: 0000000000000000 RDI: 0000000000000000
[  126.829453][ T7792] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  126.829458][ T7792] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  126.829464][ T7792] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  126.829477][ T7792]  </TASK>
[  126.842932][ T7794] netlink: 4 bytes leftover after parsing attributes in process `syz.1.516'.
[  126.937790][ T7800] binder_alloc: 7799: binder_alloc_buf size 4096 failed, no address space
[  126.940361][ T7800] binder_alloc: allocated: 4104 (num: 2 largest: 4096), free: 4088 (num: 1 largest: 4088)
[  127.001825][ T7809] rdma_rxe: rxe_newlink: failed to add syz_tun
[  127.118773][ T7809] netlink: 16 bytes leftover after parsing attributes in process `syz.2.524'.
[  127.349231][ T7823] FAULT_INJECTION: forcing a failure.
[  127.349231][ T7823] name failslab, interval 1, probability 0, space 0, times 0
[  127.353257][ T7823] CPU: 2 UID: 0 PID: 7823 Comm: syz.1.527 Not tainted syzkaller #0 PREEMPT(full) 
[  127.353271][ T7823] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  127.353277][ T7823] Call Trace:
[  127.353281][ T7823]  <TASK>
[  127.353285][ T7823]  dump_stack_lvl+0x16c/0x1f0
[  127.353305][ T7823]  should_fail_ex+0x512/0x640
[  127.353317][ T7823]  should_failslab+0xc2/0x120
[  127.353328][ T7823]  kmem_cache_alloc_node_noprof+0x78/0x770
[  127.353343][ T7823]  ? __alloc_skb+0x2b2/0x380
[  127.353361][ T7823]  ? __alloc_skb+0x2b2/0x380
[  127.353374][ T7823]  __alloc_skb+0x2b2/0x380
[  127.353388][ T7823]  ? __pfx___alloc_skb+0x10/0x10
[  127.353405][ T7823]  ? if_nlmsg_size+0x475/0xaf0
[  127.353424][ T7823]  rtmsg_ifinfo_build_skb+0x81/0x280
[  127.353438][ T7823]  rtmsg_ifinfo+0x9f/0x1a0
[  127.353451][ T7823]  __dev_notify_flags+0x24c/0x2e0
[  127.353468][ T7823]  ? __pfx___dev_notify_flags+0x10/0x10
[  127.353483][ T7823]  ? __dev_change_flags+0x3d5/0x720
[  127.353500][ T7823]  ? __pfx___dev_change_flags+0x10/0x10
[  127.353516][ T7823]  ? __mutex_trylock_common+0xe9/0x250
[  127.353530][ T7823]  netif_change_flags+0x108/0x160
[  127.353548][ T7823]  dev_change_flags+0xba/0x250
[  127.353560][ T7823]  dev_ifsioc+0x148f/0x1ee0
[  127.353576][ T7823]  ? __pfx_dev_ifsioc+0x10/0x10
[  127.353591][ T7823]  ? __pfx___mutex_lock+0x10/0x10
[  127.353606][ T7823]  ? dev_load+0x8e/0x240
[  127.353623][ T7823]  dev_ioctl+0x223/0x1060
[  127.353639][ T7823]  sock_do_ioctl+0x19d/0x280
[  127.353650][ T7823]  ? __pfx_sock_do_ioctl+0x10/0x10
[  127.353661][ T7823]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  127.353678][ T7823]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  127.353704][ T7823]  compat_sock_ioctl+0x301/0x730
[  127.353721][ T7823]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  127.353733][ T7823]  ? hook_file_ioctl_common+0x145/0x410
[  127.353750][ T7823]  ? __fget_files+0x20e/0x3c0
[  127.353768][ T7823]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  127.353780][ T7823]  __ia32_compat_sys_ioctl+0x242/0x370
[  127.353793][ T7823]  __do_fast_syscall_32+0x7c/0x300
[  127.353804][ T7823]  do_fast_syscall_32+0x32/0x80
[  127.353814][ T7823]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  127.353827][ T7823] RIP: 0023:0xf7ff5579
[  127.353836][ T7823] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  127.353845][ T7823] RSP: 002b:00000000f54e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  127.353855][ T7823] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000008914
[  127.353862][ T7823] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[  127.353868][ T7823] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  127.353873][ T7823] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  127.353879][ T7823] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  127.353893][ T7823]  </TASK>
[  127.443022][    C2] vkms_vblank_simulate: vblank timer overrun
[  128.213980][   T55] usb 40-1: device descriptor read/8, error -110
[  128.433844][ T1334] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  128.585262][ T1334] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  128.588123][ T1334] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  128.591731][ T1334] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  128.595835][ T1334] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  128.599353][ T1334] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  128.614719][   T55] usb usb40-port1: attempt power cycle
[  128.614931][ T1334] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  128.621546][ T1334] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  128.630814][ T1334] usb 7-1: Product: syz
[  128.632318][ T1334] usb 7-1: Manufacturer: syz
[  128.639934][ T1334] cdc_wdm 7-1:1.0: skipping garbage
[  128.643848][ T1334] cdc_wdm 7-1:1.0: skipping garbage
[  128.652170][ T1334] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  128.655331][ T1334] cdc_wdm 7-1:1.0: Unknown control protocol
[  129.335196][   T55] usb usb40-port1: unable to enumerate USB device
[  129.402936][    T9] usb 7-1: USB disconnect, device number 4
[  129.686551][ T7861] FAULT_INJECTION: forcing a failure.
[  129.686551][ T7861] name failslab, interval 1, probability 0, space 0, times 0
[  129.691562][ T7861] CPU: 1 UID: 0 PID: 7861 Comm: syz.3.537 Not tainted syzkaller #0 PREEMPT(full) 
[  129.691600][ T7861] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  129.691610][ T7861] Call Trace:
[  129.691619][ T7861]  <TASK>
[  129.691627][ T7861]  dump_stack_lvl+0x16c/0x1f0
[  129.691656][ T7861]  should_fail_ex+0x512/0x640
[  129.691671][ T7861]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  129.691696][ T7861]  should_failslab+0xc2/0x120
[  129.691712][ T7861]  kmem_cache_alloc_noprof+0x75/0x6e0
[  129.691734][ T7861]  ? copy_fs_struct+0x49/0x340
[  129.691756][ T7861]  ? copy_fs_struct+0x49/0x340
[  129.691772][ T7861]  copy_fs_struct+0x49/0x340
[  129.691792][ T7861]  ksys_unshare+0x356/0xa40
[  129.691809][ T7861]  ? __pfx_ksys_unshare+0x10/0x10
[  129.691826][ T7861]  ? ksys_write+0x1ac/0x250
[  129.691856][ T7861]  __ia32_sys_unshare+0x30/0x40
[  129.691872][ T7861]  __do_fast_syscall_32+0x7c/0x300
[  129.691890][ T7861]  do_fast_syscall_32+0x32/0x80
[  129.691907][ T7861]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  129.691929][ T7861] RIP: 0023:0xf7f63579
[  129.691942][ T7861] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  129.691957][ T7861] RSP: 002b:00000000f541455c EFLAGS: 00000296 ORIG_RAX: 0000000000000136
[  129.691972][ T7861] RAX: ffffffffffffffda RBX: 0000000040020000 RCX: 0000000000000000
[  129.691982][ T7861] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  129.691991][ T7861] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  129.692023][ T7861] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  129.692033][ T7861] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  129.692056][ T7861]  </TASK>
[  129.993855][ T7867] netlink: 76 bytes leftover after parsing attributes in process `syz.2.539'.
[  130.109498][ T7869] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  130.566015][   T40] audit: type=1326 audit(1760707008.579:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7876 comm="syz.3.543" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f63579 code=0x0
[  130.626028][ T7878] mkiss: ax0: crc mode is auto.
[  130.871266][ T7885] batman_adv: batadv0: Adding interface: dummy0
[  130.873688][ T7885] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  130.884653][ T7885] batman_adv: batadv0: Interface activated: dummy0
[  130.894573][ T7885] batadv0: mtu less than device minimum
[  130.897701][ T7885] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  130.901701][ T7885] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  130.905614][ T7885] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  130.910269][ T7885] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  130.915477][ T7885] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  130.920044][ T7885] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  130.925456][ T7885] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  130.930751][ T7885] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  130.935836][ T7885] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  130.942031][ T5302] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  130.947039][ T5302] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  130.951503][ T5302] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  130.956506][ T5302] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  130.959573][ T5302] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  130.989131][ T7886] wlan0 speed is unknown, defaulting to 1000
[  131.092033][ T7886] chnl_net:caif_netlink_parms(): no params data found
[  131.188880][ T7886] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.192074][ T7886] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.196141][ T7886] bridge_slave_0: entered allmulticast mode
[  131.200098][ T7886] bridge_slave_0: entered promiscuous mode
[  131.205355][ T7886] bridge0: port 2(bridge_slave_1) entered blocking state
[  131.212968][ T7886] bridge0: port 2(bridge_slave_1) entered disabled state
[  131.217261][ T7886] bridge_slave_1: entered allmulticast mode
[  131.221239][ T7886] bridge_slave_1: entered promiscuous mode
[  131.280928][ T7886] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  131.289569][ T7886] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  131.344974][ T7886] team0: Port device team_slave_0 added
[  131.351223][ T7886] team0: Port device team_slave_1 added
[  131.415520][ T7886] batman_adv: batadv0: Adding interface: batadv_slave_0
[  131.418672][ T7886] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  131.429219][ T7886] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  131.438485][ T7886] batman_adv: batadv0: Adding interface: batadv_slave_1
[  131.441477][ T7886] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  131.453533][ T7886] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  131.538367][ T7886] hsr_slave_0: entered promiscuous mode
[  131.541454][ T7886] hsr_slave_1: entered promiscuous mode
[  131.544253][ T7886] debugfs: 'hsr0' already exists in 'hsr'
[  131.546122][ T7886] Cannot create hsr debugfs directory
[  131.573925][ T6022] usb 44-1: device descriptor read/8, error -110
[  131.655605][ T7906] netlink: 8 bytes leftover after parsing attributes in process `syz.3.550'.
[  131.712071][ T7886] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  131.718001][ T7886] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  131.723881][ T7886] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  131.730569][ T7886] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  131.776530][ T7886] 8021q: adding VLAN 0 to HW filter on device bond0
[  131.786639][ T7886] 8021q: adding VLAN 0 to HW filter on device team0
[  131.792044][ T7319] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.794951][ T7319] bridge0: port 1(bridge_slave_0) entered forwarding state
[  131.803544][ T7319] bridge0: port 2(bridge_slave_1) entered blocking state
[  131.805921][ T7319] bridge0: port 2(bridge_slave_1) entered forwarding state
[  131.919234][ T7886] 8021q: adding VLAN 0 to HW filter on device batadv0
[  132.045997][ T7886] veth0_vlan: entered promiscuous mode
[  132.051346][ T7886] veth1_vlan: entered promiscuous mode
[  132.067584][ T7886] veth0_macvtap: entered promiscuous mode
[  132.071407][ T7886] veth1_macvtap: entered promiscuous mode
[  132.086872][ T7886] batman_adv: batadv0: Interface activated: batadv_slave_0
[  132.096385][ T7886] batman_adv: batadv0: Interface activated: batadv_slave_1
[  132.106873][ T7315] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  132.110316][ T7315] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  132.117996][ T7315] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  132.288186][ T6022] usb usb44-port1: attempt power cycle
[  132.295779][ T7315] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  132.297515][ T1418] ieee802154 phy0 wpan0: encryption failed: -22
[  132.302258][ T1418] ieee802154 phy1 wpan1: encryption failed: -22
[  132.341326][ T7313] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  132.345250][ T7313] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  132.402203][ T7315] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  132.405231][ T7315] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  132.615285][ T7942] netlink: 12 bytes leftover after parsing attributes in process `syz.2.556'.
[  132.743867][   T34] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  132.859895][ T7951] FAULT_INJECTION: forcing a failure.
[  132.859895][ T7951] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  132.864698][ T7951] CPU: 1 UID: 0 PID: 7951 Comm: syz.1.560 Not tainted syzkaller #0 PREEMPT(full) 
[  132.864712][ T7951] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  132.864718][ T7951] Call Trace:
[  132.864722][ T7951]  <TASK>
[  132.864726][ T7951]  dump_stack_lvl+0x16c/0x1f0
[  132.864746][ T7951]  should_fail_ex+0x512/0x640
[  132.864758][ T7951]  _copy_from_iter+0x29f/0x1720
[  132.864770][ T7951]  ? __alloc_skb+0x200/0x380
[  132.864786][ T7951]  ? __pfx__copy_from_iter+0x10/0x10
[  132.864796][ T7951]  ? netlink_autobind.isra.0+0x158/0x370
[  132.864818][ T7951]  netlink_sendmsg+0x820/0xdd0
[  132.864830][ T7951]  ? __pfx_netlink_sendmsg+0x10/0x10
[  132.864842][ T7951]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  132.864855][ T7951]  ____sys_sendmsg+0xa98/0xc70
[  132.864869][ T7951]  ? __pfx_____sys_sendmsg+0x10/0x10
[  132.864880][ T7951]  ? get_compat_msghdr+0x11a/0x170
[  132.864901][ T7951]  ___sys_sendmsg+0x134/0x1d0
[  132.864919][ T7951]  ? __pfx____sys_sendmsg+0x10/0x10
[  132.864941][ T7951]  ? find_held_lock+0x2b/0x80
[  132.864968][ T7951]  __sys_sendmsg+0x16d/0x220
[  132.864985][ T7951]  ? __pfx___sys_sendmsg+0x10/0x10
[  132.865007][ T7951]  ? rcu_is_watching+0x12/0xc0
[  132.865023][ T7951]  __do_fast_syscall_32+0x7c/0x300
[  132.865034][ T7951]  do_fast_syscall_32+0x32/0x80
[  132.865043][ T7951]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  132.865056][ T7951] RIP: 0023:0xf7ff5579
[  132.865065][ T7951] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  132.865075][ T7951] RSP: 002b:00000000f54e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  132.865085][ T7951] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800003c0
[  132.865106][ T7951] RDX: 0000000000040000 RSI: 0000000000000000 RDI: 0000000000000000
[  132.865112][ T7951] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  132.865118][ T7951] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  132.865124][ T7951] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  132.865137][ T7951]  </TASK>
[  132.865463][ T6022] usb usb44-port1: unable to enumerate USB device
[  132.934068][   T34] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  132.938945][   T34] usb 9-1: config 0 has no interfaces?
[  132.942002][   T34] usb 9-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  132.947130][   T34] usb 9-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  132.949840][   T34] usb 9-1: Product: syz
[  132.951162][   T34] usb 9-1: Manufacturer: syz
[  132.954007][   T34] usb 9-1: config 0 descriptor??
[  133.013925][ T5302] Bluetooth: hci2: command tx timeout
[  133.154026][ T7960] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  133.156111][ T7960] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  133.159579][ T7960] vhci_hcd vhci_hcd.0: Device attached
[  133.399178][ T7932] netlink: 32 bytes leftover after parsing attributes in process `syz.4.546'.
[  133.404449][ T1334] usb 9-1: USB disconnect, device number 2
[  133.433994][ T6022] usb 40-1: SetAddress Request (10) to port 0
[  133.436038][ T6022] usb 40-1: new SuperSpeed USB device number 10 using vhci_hcd
[  133.678083][ T7972] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  133.680171][ T7972] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  133.683055][ T7972] vhci_hcd vhci_hcd.0: Device attached
[  133.842751][ T7961] vhci_hcd: connection reset by peer
[  133.856663][ T7317] vhci_hcd: stop threads
[  133.858116][ T7317] vhci_hcd: release socket
[  133.860214][ T7317] vhci_hcd: disconnect device
[  133.965506][   T55] usb 44-1: SetAddress Request (6) to port 0
[  133.967574][   T55] usb 44-1: new SuperSpeed USB device number 6 using vhci_hcd
[  134.412923][ T7973] vhci_hcd: connection reset by peer
[  134.415175][ T7319] vhci_hcd: stop threads
[  134.416587][ T7319] vhci_hcd: release socket
[  134.418182][ T7319] vhci_hcd: disconnect device
[  134.444496][ T7986] FAULT_INJECTION: forcing a failure.
[  134.444496][ T7986] name failslab, interval 1, probability 0, space 0, times 0
[  134.450427][ T7986] CPU: 3 UID: 0 PID: 7986 Comm: syz.4.570 Not tainted syzkaller #0 PREEMPT(full) 
[  134.450451][ T7986] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  134.450462][ T7986] Call Trace:
[  134.450469][ T7986]  <TASK>
[  134.450476][ T7986]  dump_stack_lvl+0x16c/0x1f0
[  134.450506][ T7986]  should_fail_ex+0x512/0x640
[  134.450523][ T7986]  ? __kmalloc_noprof+0xca/0x880
[  134.450547][ T7986]  should_failslab+0xc2/0x120
[  134.450565][ T7986]  __kmalloc_noprof+0xdd/0x880
[  134.450587][ T7986]  ? io_cache_alloc_new+0x45/0xf0
[  134.450610][ T7986]  ? io_cache_alloc_new+0x45/0xf0
[  134.450626][ T7986]  io_cache_alloc_new+0x45/0xf0
[  134.450643][ T7986]  __io_prep_rw+0x21d/0x1090
[  134.450666][ T7986]  ? find_held_lock+0x2b/0x80
[  134.450691][ T7986]  ? __pfx___io_prep_rw+0x10/0x10
[  134.450709][ T7986]  ? __io_alloc_req_refill+0x18f/0x5e0
[  134.450735][ T7986]  ? __io_alloc_req_refill+0x33a/0x5e0
[  134.450761][ T7986]  io_prep_rw+0x76/0x2c0
[  134.450778][ T7986]  ? __pfx_io_prep_rw+0x10/0x10
[  134.450808][ T7986]  io_prep_writev+0x23/0xa0
[  134.450831][ T7986]  io_submit_sqes+0x855/0x2710
[  134.450868][ T7986]  __do_sys_io_uring_enter+0xd69/0x1630
[  134.450897][ T7986]  ? __fget_files+0x20e/0x3c0
[  134.450920][ T7986]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  134.450946][ T7986]  ? fput+0x9b/0xd0
[  134.450964][ T7986]  ? ksys_write+0x1ac/0x250
[  134.450988][ T7986]  ? __pfx_ksys_write+0x10/0x10
[  134.451012][ T7986]  ? rcu_is_watching+0x12/0xc0
[  134.451040][ T7986]  __do_fast_syscall_32+0x7c/0x300
[  134.451060][ T7986]  do_fast_syscall_32+0x32/0x80
[  134.451074][ T7986]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  134.451096][ T7986] RIP: 0023:0xf70ed579
[  134.451110][ T7986] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  134.451126][ T7986] RSP: 002b:00000000f54bc55c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa
[  134.451144][ T7986] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000000003516
[  134.451152][ T7986] RDX: 000000000000e0ff RSI: 0000000000000000 RDI: 0000000000000000
[  134.451163][ T7986] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  134.451174][ T7986] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  134.451183][ T7986] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  134.451209][ T7986]  </TASK>
[  135.097722][ T5944] Bluetooth: hci2: command tx timeout
[  135.490556][ T8002] netlink: 'syz.1.576': attribute type 10 has an invalid length.
[  135.497411][ T8002] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  135.657457][ T8007] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.790887][ T8007] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.858194][ T8007] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.883807][ T5302] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  135.995421][ T8007] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.114462][ T8018] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  136.293148][ T1254] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  136.306253][ T1254] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  136.314761][ T1254] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  136.322486][ T7315] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  136.377109][ T8020] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  136.379749][ T8020] IPv6: NLM_F_CREATE should be set when creating new route
[  136.382144][ T8020] IPv6: NLM_F_CREATE should be set when creating new route
[  136.384491][ T8020] IPv6: NLM_F_CREATE should be set when creating new route
[  136.427618][ T8024] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  136.429726][ T8024] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  136.433550][ T8024] vhci_hcd vhci_hcd.0: Device attached
[  136.435910][ T8023] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  136.438508][ T8023] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  136.444118][ T8023] vhci_hcd vhci_hcd.0: Device attached
[  136.474378][ T8023] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.555466][ T8023] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.619500][ T8023] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.679071][ T8023] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.741088][ T8025] vhci_hcd: connection closed
[  136.742643][ T7317] vhci_hcd: stop threads
[  136.746380][ T7317] vhci_hcd: release socket
[  136.748164][ T7317] vhci_hcd: disconnect device
[  137.163847][ T5302] Bluetooth: hci2: command tx timeout
[  137.272521][ T8027] vhci_hcd: connection closed
[  137.272949][ T1254] vhci_hcd: stop threads
[  137.276019][ T1254] vhci_hcd: release socket
[  137.277523][ T1254] vhci_hcd: disconnect device
[  137.550007][ T8044] 9p: Unknown access argument 18446744073709551615: -34
[  137.598163][ T8047] netlink: 8 bytes leftover after parsing attributes in process `syz.2.587'.
[  137.738276][ T8055] netlink: 128 bytes leftover after parsing attributes in process `syz.2.591'.
[  137.965496][ T8062] netlink: 'syz.4.593': attribute type 1 has an invalid length.
[  137.974780][ T8062] FAULT_INJECTION: forcing a failure.
[  137.974780][ T8062] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  137.980237][ T8062] CPU: 2 UID: 0 PID: 8062 Comm: syz.4.593 Not tainted syzkaller #0 PREEMPT(full) 
[  137.980261][ T8062] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  137.980272][ T8062] Call Trace:
[  137.980280][ T8062]  <TASK>
[  137.980288][ T8062]  dump_stack_lvl+0x16c/0x1f0
[  137.980319][ T8062]  should_fail_ex+0x512/0x640
[  137.980340][ T8062]  _copy_from_iter+0x29f/0x1720
[  137.980360][ T8062]  ? __alloc_skb+0x200/0x380
[  137.980386][ T8062]  ? __pfx__copy_from_iter+0x10/0x10
[  137.980404][ T8062]  ? netlink_autobind.isra.0+0x158/0x370
[  137.980440][ T8062]  netlink_sendmsg+0x820/0xdd0
[  137.980463][ T8062]  ? __pfx_netlink_sendmsg+0x10/0x10
[  137.980482][ T8062]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  137.980506][ T8062]  ____sys_sendmsg+0xa98/0xc70
[  137.980530][ T8062]  ? __pfx_____sys_sendmsg+0x10/0x10
[  137.980547][ T8062]  ? get_compat_msghdr+0x11a/0x170
[  137.980582][ T8062]  ___sys_sendmsg+0x134/0x1d0
[  137.980610][ T8062]  ? __pfx____sys_sendmsg+0x10/0x10
[  137.980647][ T8062]  ? find_held_lock+0x2b/0x80
[  137.980687][ T8062]  __sys_sendmsg+0x16d/0x220
[  137.980713][ T8062]  ? __pfx___sys_sendmsg+0x10/0x10
[  137.980748][ T8062]  ? rcu_is_watching+0x12/0xc0
[  137.980776][ T8062]  __do_fast_syscall_32+0x7c/0x300
[  137.980795][ T8062]  do_fast_syscall_32+0x32/0x80
[  137.980813][ T8062]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  137.980835][ T8062] RIP: 0023:0xf70ed579
[  137.980849][ T8062] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  137.980867][ T8062] RSP: 002b:00000000f54dd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  137.980886][ T8062] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000280
[  137.980898][ T8062] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  137.980909][ T8062] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  137.980918][ T8062] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  137.980934][ T8062] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  137.980958][ T8062]  </TASK>
[  138.093876][ T6023] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  138.243862][ T6023] usb 7-1: Using ep0 maxpacket: 16
[  138.247127][ T6023] usb 7-1: config 0 has no interfaces?
[  138.249278][ T6023] usb 7-1: New USB device found, idVendor=1fd2, idProduct=6006, bcdDevice= 0.00
[  138.252733][ T6023] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  138.257431][ T6023] usb 7-1: config 0 descriptor??
[  138.466214][ T6023] usb 7-1: USB disconnect, device number 5
[  138.502437][   T40] audit: type=1400 audit(1760707017.515:131): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=3AF4F9904E7FDB3635A70D23C73EEAF23A3F503280080CA26230668AD9DCF8B061228F8599D34E45087D21AA56759E1651B3DD467BDEF390C76D pid=8063 comm="syz.3.594"
[  138.613904][ T6022] usb 40-1: device descriptor read/8, error -110
[  139.013836][   T55] usb 44-1: device descriptor read/8, error -110
[  139.024251][ T6022] usb usb40-port1: attempt power cycle
[  139.095582][   T34] vhci_hcd: vhci_device speed not set
[  139.243907][ T5302] Bluetooth: hci2: command tx timeout
[  139.404344][   T55] usb usb44-port1: attempt power cycle
[  139.509329][ T8091] netlink: 'syz.4.601': attribute type 10 has an invalid length.
[  139.520799][ T8091] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  139.584454][   T40] audit: type=1326 audit(1760707018.605:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8092 comm="syz.2.602" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f23579 code=0x0
[  139.715555][ T8096] mkiss: ax0: crc mode is auto.
[  140.851040][ T7313] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  140.908121][   T55] usb usb44-port1: unable to enumerate USB device
[  140.939762][ T1254] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  140.942370][ T1254] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  140.947644][ T1254] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  141.234425][ T8114] wlan0 speed is unknown, defaulting to 1000
[  141.678414][ T8125] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  141.681101][ T8125] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  141.716040][ T8125] vhci_hcd vhci_hcd.0: Device attached
[  141.741534][ T6022] usb usb40-port1: unable to enumerate USB device
[  141.959729][   T55] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  142.120407][ T8135] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  142.131128][  T843] usb 44-1: SetAddress Request (10) to port 0
[  142.145289][  T843] usb 44-1: new SuperSpeed USB device number 10 using vhci_hcd
[  142.154917][   T55] usb 9-1: Using ep0 maxpacket: 16
[  142.166067][   T55] usb 9-1: config 0 has no interfaces?
[  142.168890][   T55] usb 9-1: New USB device found, idVendor=1fd2, idProduct=6006, bcdDevice= 0.00
[  142.172992][   T55] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  142.205111][   T54] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  142.325151][   T55] usb 9-1: config 0 descriptor??
[  142.353905][   T54] usb 6-1: Using ep0 maxpacket: 16
[  142.357027][   T54] usb 6-1: config 0 has no interfaces?
[  142.358909][   T54] usb 6-1: New USB device found, idVendor=1fd2, idProduct=6006, bcdDevice= 0.00
[  142.362287][   T54] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  142.368937][   T54] usb 6-1: config 0 descriptor??
[  142.456051][ T8126] vhci_hcd: connection reset by peer
[  142.458444][ T7317] vhci_hcd: stop threads
[  142.459875][ T7317] vhci_hcd: release socket
[  142.461379][ T7317] vhci_hcd: disconnect device
[  142.542238][   T55] usb 9-1: USB disconnect, device number 3
[  142.612813][   T54] usb 6-1: USB disconnect, device number 6
[  142.839753][ T8139] overlayfs: missing 'lowerdir'
[  143.274082][ T8153] 9pnet_fd: Insufficient options for proto=fd
[  143.628816][ T8161] netlink: 'syz.4.617': attribute type 29 has an invalid length.
[  143.631572][   T40] audit: type=1400 audit(1760707022.635:133): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=3AF4F9904E7FDB3635A70D23C73EEAF23A3F503280080CA26230668AD9DCF8B061228F8599D34E45087D21AA56759E1651B3DD467BDEF390C76D pid=8157 comm="syz.4.617"
[  144.311707][ T8169] fuse: Unknown parameter '0x0000000000000003'
[  144.582392][ T8177] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  144.991831][ T8183] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  144.993950][ T8183] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  144.998858][ T8183] vhci_hcd vhci_hcd.0: Device attached
[  145.273839][   T34] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  145.433918][   T34] usb 8-1: Using ep0 maxpacket: 16
[  145.439079][   T34] usb 8-1: config 0 has no interfaces?
[  145.440910][   T34] usb 8-1: New USB device found, idVendor=1fd2, idProduct=6006, bcdDevice= 0.00
[  145.443983][   T34] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  145.449554][   T34] usb 8-1: config 0 descriptor??
[  145.453946][ T6022] usb 42-1: SetAddress Request (2) to port 0
[  145.456665][ T6022] usb 42-1: new SuperSpeed USB device number 2 using vhci_hcd
[  145.580339][ T8201] netlink: 8 bytes leftover after parsing attributes in process `syz.1.627'.
[  145.633373][ T8200] netlink: 8 bytes leftover after parsing attributes in process `syz.4.628'.
[  145.658666][   T34] usb 8-1: USB disconnect, device number 7
[  145.720219][ T8184] vhci_hcd: connection reset by peer
[  145.722762][ T7317] vhci_hcd: stop threads
[  145.725134][ T7317] vhci_hcd: release socket
[  145.726614][ T7317] vhci_hcd: disconnect device
[  145.830264][ T8201] net_ratelimit: 11 callbacks suppressed
[  145.830366][ T8201] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  145.871258][ T8200] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  146.197682][ T8205] fuse: Unknown parameter '0x0000000000000003'
[  147.608616][ T8217] netlink: 8 bytes leftover after parsing attributes in process `syz.3.632'.
[  147.611860][ T8217] netlink: 'syz.3.632': attribute type 5 has an invalid length.
[  147.614872][ T8217] netlink: 20 bytes leftover after parsing attributes in process `syz.3.632'.
[  147.621614][ T8217] geneve2: entered promiscuous mode
[  147.623340][ T8217] geneve2: entered allmulticast mode
[  147.625953][ T1254] netdevsim netdevsim3 eth0: set [1, 1] type 2 family 0 port 256 - 0
[  147.629402][ T1254] netdevsim netdevsim3 eth1: set [1, 1] type 2 family 0 port 256 - 0
[  147.631013][  T843] usb 44-1: device descriptor read/8, error -110
[  147.633087][ T1254] netdevsim netdevsim3 eth2: set [1, 1] type 2 family 0 port 256 - 0
[  147.638629][ T1254] netdevsim netdevsim3 eth3: set [1, 1] type 2 family 0 port 256 - 0
[  148.127722][ T8229] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  148.157859][  T843] usb usb44-port1: attempt power cycle
[  148.217951][ T5302] Bluetooth: hci3: link tx timeout
[  148.219701][ T5302] Bluetooth: hci3: killing stalled connection 10:aa:aa:aa:aa:aa
[  148.260819][ T8228] 9pnet_fd: Insufficient options for proto=fd
[  148.522693][ T8236] fuse: Unknown parameter '0x0000000000000003'
[  148.670758][   T40] audit: type=1326 audit(1760707027.685:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8239 comm="syz.2.640" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f23579 code=0x0
[  148.811920][ T8244] mkiss: ax0: crc mode is auto.
[  148.846119][ T8245] netlink: 8 bytes leftover after parsing attributes in process `syz.1.637'.
[  148.873506][ T8245] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  148.878896][   T55] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  149.030323][  T843] usb usb44-port1: unable to enumerate USB device
[  149.043901][   T55] usb 9-1: Using ep0 maxpacket: 16
[  149.053330][   T55] usb 9-1: config 0 has no interfaces?
[  149.056377][   T55] usb 9-1: New USB device found, idVendor=1fd2, idProduct=6006, bcdDevice= 0.00
[  149.063797][   T55] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  149.067627][   T55] usb 9-1: config 0 descriptor??
[  149.277484][   T55] usb 9-1: USB disconnect, device number 4
[  149.390798][ T8251] macvlan2: entered allmulticast mode
[  149.393343][ T8251] veth1_vlan: entered allmulticast mode
[  149.402709][ T8251] veth1_vlan: left allmulticast mode
[  149.950192][ T8255] netlink: 8 bytes leftover after parsing attributes in process `syz.1.642'.
[  149.965566][ T8255] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  150.290104][ T5302] Bluetooth: hci3: command 0x0405 tx timeout
[  150.409557][   T34] usb 8-1: new low-speed USB device number 8 using dummy_hcd
[  150.423860][ T6023] usb 7-1: new low-speed USB device number 6 using dummy_hcd
[  150.553873][ T6022] usb 42-1: device descriptor read/8, error -110
[  150.561030][   T34] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[  150.563581][   T34] usb 8-1: config 0 has no interface number 0
[  150.567760][   T34] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  150.571335][   T34] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  150.575028][   T34] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  150.577858][   T34] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  150.582296][   T34] usb 8-1: config 0 descriptor??
[  150.589964][ T8262] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  150.595760][ T6023] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[  150.598105][   T34] iowarrior 8-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  150.598309][ T6023] usb 7-1: config 0 has no interface number 0
[  150.604299][ T6023] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  150.607955][ T6023] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  150.611730][ T6023] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  150.645665][ T6023] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  150.654524][ T6023] usb 7-1: config 0 descriptor??
[  150.674020][ T8263] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  150.686699][ T6023] iowarrior 7-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior1
[  151.008267][ T6022] usb usb42-port1: attempt power cycle
[  151.658702][ T6022] usb usb42-port1: unable to enumerate USB device
[  151.789011][ T8324] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  152.978820][ T1334] usb 8-1: USB disconnect, device number 8
[  152.996694][   T34] usb 7-1: USB disconnect, device number 6
[  153.243908][ T6022] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  153.305173][ T8350] netlink: 8 bytes leftover after parsing attributes in process `syz.3.654'.
[  153.345183][ T8350] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  153.394144][ T6022] usb 6-1: Using ep0 maxpacket: 16
[  153.400272][ T6022] usb 6-1: config 0 has no interfaces?
[  153.402093][ T6022] usb 6-1: New USB device found, idVendor=1fd2, idProduct=6006, bcdDevice= 0.00
[  153.413856][ T6022] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  153.429345][ T6022] usb 6-1: config 0 descriptor??
[  153.656409][ T1024] usb 6-1: USB disconnect, device number 7
[  154.011123][ T8373] netlink: 4 bytes leftover after parsing attributes in process `syz.3.658'.
[  154.337877][ T8383] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  154.398454][ T8384] team0: left allmulticast mode
[  154.400580][ T8384] team_slave_0: left allmulticast mode
[  154.402545][ T8384] team_slave_1: left allmulticast mode
[  154.406441][ T8384] team0: left promiscuous mode
[  154.408300][ T8384] team_slave_0: left promiscuous mode
[  154.410742][ T8384] team_slave_1: left promiscuous mode
[  154.416431][ T8384] bridge0: port 3(team0) entered disabled state
[  154.529520][ T8380] netlink: 4 bytes leftover after parsing attributes in process `syz.1.660'.
[  154.529956][ T8384] bridge_slave_0: left allmulticast mode
[  154.534091][ T8384] bridge_slave_0: left promiscuous mode
[  154.535912][ T8384] bridge0: port 1(bridge_slave_0) entered disabled state
[  154.544897][ T8384] bridge_slave_1: left allmulticast mode
[  154.553464][ T8384] bridge_slave_1: left promiscuous mode
[  154.557785][ T8384] bridge0: port 2(bridge_slave_1) entered disabled state
[  154.571594][ T8384] bond0: (slave bond_slave_0): Releasing backup interface
[  154.588994][ T8384] bond0: (slave bond_slave_1): Releasing backup interface
[  154.611310][ T8384] team0: Port device team_slave_0 removed
[  154.619992][ T8384] team0: Port device team_slave_1 removed
[  154.622825][ T8384] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  154.626303][ T8384] batman_adv: batadv0: Removing interface: batadv_slave_0
[  154.631681][ T8384] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  154.635919][ T8384] batman_adv: batadv0: Removing interface: batadv_slave_1
[  154.644616][ T8384] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  155.041514][ T8394] team0: left allmulticast mode
[  155.043928][ T8394] team_slave_0: left allmulticast mode
[  155.045804][ T8394] team_slave_1: left allmulticast mode
[  155.047576][ T8394] team0: left promiscuous mode
[  155.051588][ T8394] team_slave_0: left promiscuous mode
[  155.057857][ T8394] team_slave_1: left promiscuous mode
[  155.060463][ T8394] bridge0: port 3(team0) entered disabled state
[  155.077666][   T40] audit: type=1326 audit(1760707034.095:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8389 comm="syz.4.662" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x0
[  155.099593][ T8394] bridge_slave_0: left allmulticast mode
[  155.101976][ T8394] bridge_slave_0: left promiscuous mode
[  155.106503][ T8394] bridge0: port 1(bridge_slave_0) entered disabled state
[  155.114541][ T8394] bridge_slave_1: left allmulticast mode
[  155.117133][ T8394] bridge_slave_1: left promiscuous mode
[  155.122993][ T8394] bridge0: port 2(bridge_slave_1) entered disabled state
[  155.160467][ T8401] netlink: 4 bytes leftover after parsing attributes in process `syz.3.663'.
[  155.178032][ T8394] bond0: (slave bond_slave_0): Releasing backup interface
[  155.192225][ T8394] bond0: (slave bond_slave_1): Releasing backup interface
[  155.216308][ T8394] team0: Port device team_slave_0 removed
[  155.230570][ T8394] team0: Port device team_slave_1 removed
[  155.237311][ T8394] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  155.240211][ T8394] batman_adv: batadv0: Removing interface: batadv_slave_0
[  155.254202][ T8394] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  155.256514][ T8394] batman_adv: batadv0: Removing interface: batadv_slave_1
[  155.264721][ T8394] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  155.332896][ T8399] team0: Mode changed to "loadbalance"
[  155.403584][   T40] audit: type=1326 audit(1760707034.415:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8407 comm="syz.1.666" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7ff5579 code=0x0
[  156.219376][ T8410] Falling back ldisc for ttyprintk.
[  156.861250][ T8421] netlink: 40 bytes leftover after parsing attributes in process `syz.2.669'.
[  157.069356][ T8427] netlink: 8 bytes leftover after parsing attributes in process `syz.1.667'.
[  157.083239][ T8427] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  158.492411][ T8435] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  158.495071][ T8435] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  158.499037][ T8435] vhci_hcd vhci_hcd.0: Device attached
[  158.571804][ T8446] netlink: 40 bytes leftover after parsing attributes in process `syz.1.673'.
[  158.762120][ T8442] vhci_hcd: connection closed
[  158.769188][ T1143] vhci_hcd: stop threads
[  158.773943][   T34] usb 44-1: SetAddress Request (14) to port 0
[  158.786524][ T1143] vhci_hcd: release socket
[  158.788192][ T1143] vhci_hcd: disconnect device
[  158.789362][   T34] usb 44-1: new SuperSpeed USB device number 14 using vhci_hcd
[  158.808465][ T8457] netlink: 'syz.2.675': attribute type 9 has an invalid length.
[  158.869623][   T34] usb 44-1: enqueue for inactive port 0
[  158.950674][ T8456] fuse: Bad value for 'fd'
[  159.494732][   T34] usb usb44-port1: attempt power cycle
[  159.567366][ T8466] FAULT_INJECTION: forcing a failure.
[  159.567366][ T8466] name failslab, interval 1, probability 0, space 0, times 0
[  159.592396][ T8466] CPU: 3 UID: 0 PID: 8466 Comm: syz.1.677 Not tainted syzkaller #0 PREEMPT(full) 
[  159.592427][ T8466] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  159.592438][ T8466] Call Trace:
[  159.592444][ T8466]  <TASK>
[  159.592451][ T8466]  dump_stack_lvl+0x16c/0x1f0
[  159.592482][ T8466]  should_fail_ex+0x512/0x640
[  159.592499][ T8466]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  159.592533][ T8466]  should_failslab+0xc2/0x120
[  159.592551][ T8466]  kmem_cache_alloc_noprof+0x75/0x6e0
[  159.592574][ T8466]  ? skb_clone+0x190/0x3f0
[  159.592603][ T8466]  ? skb_clone+0x190/0x3f0
[  159.592626][ T8466]  skb_clone+0x190/0x3f0
[  159.592651][ T8466]  netlink_deliver_tap+0xabd/0xd30
[  159.592683][ T8466]  netlink_unicast+0x64c/0x870
[  159.592703][ T8466]  ? __pfx_netlink_unicast+0x10/0x10
[  159.592727][ T8466]  netlink_sendmsg+0x8c8/0xdd0
[  159.592748][ T8466]  ? __pfx_netlink_sendmsg+0x10/0x10
[  159.592766][ T8466]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  159.592789][ T8466]  ____sys_sendmsg+0xa98/0xc70
[  159.592812][ T8466]  ? __pfx_____sys_sendmsg+0x10/0x10
[  159.592830][ T8466]  ? get_compat_msghdr+0x11a/0x170
[  159.592864][ T8466]  ___sys_sendmsg+0x134/0x1d0
[  159.592892][ T8466]  ? __pfx____sys_sendmsg+0x10/0x10
[  159.592930][ T8466]  ? find_held_lock+0x2b/0x80
[  159.592969][ T8466]  __sys_sendmsg+0x16d/0x220
[  159.593002][ T8466]  ? __pfx___sys_sendmsg+0x10/0x10
[  159.593038][ T8466]  ? rcu_is_watching+0x12/0xc0
[  159.593065][ T8466]  __do_fast_syscall_32+0x7c/0x300
[  159.593106][ T8466]  do_fast_syscall_32+0x32/0x80
[  159.593122][ T8466]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  159.593144][ T8466] RIP: 0023:0xf7ff5579
[  159.593158][ T8466] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  159.593175][ T8466] RSP: 002b:00000000f54e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  159.593192][ T8466] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000300
[  159.593202][ T8466] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000000
[  159.593211][ T8466] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  159.593221][ T8466] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  159.593231][ T8466] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  159.593254][ T8466]  </TASK>
[  159.734703][ T8472] netlink: 40 bytes leftover after parsing attributes in process `syz.1.680'.
[  160.065064][   T34] usb usb44-port1: unable to enumerate USB device
[  160.099576][ T8476] random: crng reseeded on system resumption
[  160.106108][ T8476] IPv6: NLM_F_CREATE should be specified when creating new route
[  160.204742][ T8487] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[  160.207207][ T8487] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  160.214050][ T8487] vhci_hcd vhci_hcd.0: Device attached
[  160.490312][ T6022] usb 46-1: SetAddress Request (2) to port 0
[  160.496978][ T6022] usb 46-1: new SuperSpeed USB device number 2 using vhci_hcd
[  161.105209][ T8504] FAULT_INJECTION: forcing a failure.
[  161.105209][ T8504] name failslab, interval 1, probability 0, space 0, times 0
[  161.110371][ T8504] CPU: 3 UID: 0 PID: 8504 Comm: syz.3.688 Not tainted syzkaller #0 PREEMPT(full) 
[  161.110398][ T8504] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  161.110408][ T8504] Call Trace:
[  161.110418][ T8504]  <TASK>
[  161.110428][ T8504]  dump_stack_lvl+0x16c/0x1f0
[  161.110463][ T8504]  should_fail_ex+0x512/0x640
[  161.110479][ T8504]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  161.110499][ T8504]  should_failslab+0xc2/0x120
[  161.110519][ T8504]  kmem_cache_alloc_noprof+0x75/0x6e0
[  161.110542][ T8504]  ? skb_clone+0x190/0x3f0
[  161.110573][ T8504]  ? skb_clone+0x190/0x3f0
[  161.110596][ T8504]  skb_clone+0x190/0x3f0
[  161.110620][ T8504]  netlink_deliver_tap+0xabd/0xd30
[  161.110650][ T8504]  netlink_unicast+0x64c/0x870
[  161.110666][ T8504]  ? __pfx_netlink_unicast+0x10/0x10
[  161.110681][ T8504]  netlink_sendmsg+0x8c8/0xdd0
[  161.110699][ T8504]  ? __pfx_netlink_sendmsg+0x10/0x10
[  161.110717][ T8504]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  161.110755][ T8504]  ____sys_sendmsg+0xa98/0xc70
[  161.110785][ T8504]  ? __pfx_____sys_sendmsg+0x10/0x10
[  161.110803][ T8504]  ? get_compat_msghdr+0x11a/0x170
[  161.110839][ T8504]  ___sys_sendmsg+0x134/0x1d0
[  161.110863][ T8504]  ? __pfx____sys_sendmsg+0x10/0x10
[  161.110897][ T8504]  ? find_held_lock+0x2b/0x80
[  161.110939][ T8504]  __sys_sendmsg+0x16d/0x220
[  161.110963][ T8504]  ? __pfx___sys_sendmsg+0x10/0x10
[  161.110998][ T8504]  ? rcu_is_watching+0x12/0xc0
[  161.111018][ T8504]  __do_fast_syscall_32+0x7c/0x300
[  161.111031][ T8504]  do_fast_syscall_32+0x32/0x80
[  161.111041][ T8504]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  161.111056][ T8504] RIP: 0023:0xf7f63579
[  161.111066][ T8504] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  161.111077][ T8504] RSP: 002b:00000000f545655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  161.111088][ T8504] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000300
[  161.111095][ T8504] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000000
[  161.111101][ T8504] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  161.111107][ T8504] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  161.111113][ T8504] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  161.111127][ T8504]  </TASK>
[  161.113006][ T8488] vhci_hcd: connection reset by peer
[  161.204531][ T1254] vhci_hcd: stop threads
[  161.206402][ T1254] vhci_hcd: release socket
[  161.208735][ T1254] vhci_hcd: disconnect device
[  161.250625][ T8510] netlink: 40 bytes leftover after parsing attributes in process `syz.3.691'.
[  161.374496][ T8514] overlayfs: missing 'lowerdir'
[  161.444416][ T8517] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  161.446895][ T8517] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  161.464104][ T8517] vhci_hcd vhci_hcd.0: Device attached
[  161.681259][ T8521] rdma_rxe: rxe_newlink: failed to add syz_tun
[  161.738352][ T8518] vhci_hcd: connection closed
[  161.738568][ T1143] vhci_hcd: stop threads
[  161.741378][ T1143] vhci_hcd: release socket
[  161.742792][ T1143] vhci_hcd: disconnect device
[  161.743948][   T55] usb 42-1: SetAddress Request (6) to port 0
[  161.746608][   T55] usb 42-1: new SuperSpeed USB device number 6 using vhci_hcd
[  161.888218][ T8521] netlink: 16 bytes leftover after parsing attributes in process `syz.3.693'.
[  161.964793][ T8528] tipc: Started in network mode
[  161.967555][ T8528] tipc: Node identity a62123c9258e, cluster identity 4711
[  161.970420][ T8528] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  161.975319][ T8528] syzkaller0: entered promiscuous mode
[  161.977235][ T8528] syzkaller0: entered allmulticast mode
[  161.987572][ T8528] netlink: 44 bytes leftover after parsing attributes in process `syz.4.695'.
[  161.993588][ T8528] tipc: Resetting bearer <eth:syzkaller0>
[  161.998913][ T8527] tipc: Resetting bearer <eth:syzkaller0>
[  162.007734][ T8527] tipc: Disabling bearer <eth:syzkaller0>
[  162.101785][ T8533] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  162.105303][ T8533] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  162.108881][ T8533] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[  162.151250][ T8534] netlink: 32 bytes leftover after parsing attributes in process `syz.4.697'.
[  162.596038][ T8544] netlink: 8 bytes leftover after parsing attributes in process `syz.2.700'.
[  162.852172][ T8549] netlink: 'syz.3.702': attribute type 10 has an invalid length.
[  162.870943][ T8549] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  162.941273][ T8551] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  163.006965][ T8554] tipc: Started in network mode
[  163.008801][ T8554] tipc: Node identity 520ad4ba80b8, cluster identity 4711
[  163.011143][ T8554] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  163.014754][ T8554] syzkaller0: entered promiscuous mode
[  163.016915][ T8554] syzkaller0: entered allmulticast mode
[  163.121313][ T8553] tipc: Resetting bearer <eth:syzkaller0>
[  163.137012][ T8553] tipc: Disabling bearer <eth:syzkaller0>
[  163.613781][   T34] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  163.748839][ T8066] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  163.756284][ T8572] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[  163.758779][ T8572] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  163.773074][ T8572] vhci_hcd vhci_hcd.0: Device attached
[  163.789648][ T8581] netlink: 'syz.2.708': attribute type 10 has an invalid length.
[  163.793999][   T34] usb 8-1: Using ep0 maxpacket: 8
[  163.797965][   T34] usb 8-1: config 0 has an invalid interface number: 55 but max is 0
[  163.801243][   T34] usb 8-1: config 0 has no interface number 0
[  163.803344][   T34] usb 8-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  163.817213][   T34] usb 8-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  163.821759][   T34] usb 8-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  163.825879][ T8581] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  163.827326][   T34] usb 8-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  163.831323][ T8581] FAULT_INJECTION: forcing a failure.
[  163.831323][ T8581] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  163.835871][   T34] usb 8-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  163.842856][ T8581] CPU: 2 UID: 0 PID: 8581 Comm: syz.2.708 Not tainted syzkaller #0 PREEMPT(full) 
[  163.842879][ T8581] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  163.842890][ T8581] Call Trace:
[  163.842896][ T8581]  <TASK>
[  163.842903][ T8581]  dump_stack_lvl+0x16c/0x1f0
[  163.842934][ T8581]  should_fail_ex+0x512/0x640
[  163.842956][ T8581]  _copy_from_user+0x2e/0xd0
[  163.842975][ T8581]  get_user_ifreq+0x116/0x1c0
[  163.842995][ T8581]  inet_ioctl+0x37e/0x3f0
[  163.843019][ T8581]  ? __pfx_inet_ioctl+0x10/0x10
[  163.843055][ T8581]  ? tomoyo_path_number_perm+0x18d/0x580
[  163.843079][ T8581]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  163.843101][ T8581]  sock_do_ioctl+0x118/0x280
[  163.843119][ T8581]  ? __pfx_sock_do_ioctl+0x10/0x10
[  163.843138][ T8581]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  163.843167][ T8581]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  163.843193][ T8581]  compat_sock_ioctl+0x301/0x730
[  163.843217][ T8581]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  163.843237][ T8581]  ? hook_file_ioctl_common+0x145/0x410
[  163.843266][ T8581]  ? __fget_files+0x20e/0x3c0
[  163.843295][ T8581]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  163.843313][ T8581]  __ia32_compat_sys_ioctl+0x242/0x370
[  163.843335][ T8581]  __do_fast_syscall_32+0x7c/0x300
[  163.843353][ T8581]  do_fast_syscall_32+0x32/0x80
[  163.843368][ T8581]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  163.843386][ T8581] RIP: 0023:0xf7f23579
[  163.843399][ T8581] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  163.843414][ T8581] RSP: 002b:00000000f541655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  163.843429][ T8581] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000008914
[  163.843438][ T8581] RDX: 0000000080002280 RSI: 0000000000000000 RDI: 0000000000000000
[  163.843447][ T8581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  163.843456][ T8581] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  163.843466][ T8581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  163.843487][ T8581]  </TASK>
[  163.903857][ T8066] usb 6-1: Using ep0 maxpacket: 16
[  163.906648][   T34] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  163.912800][ T8066] usb 6-1: config 0 has no interfaces?
[  163.930499][ T8066] usb 6-1: New USB device found, idVendor=1fd2, idProduct=6006, bcdDevice= 0.00
[  163.934060][ T8066] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  163.936900][   T34] usb 8-1: config 0 descriptor??
[  163.948008][   T34] ldusb 8-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  163.950352][ T8066] usb 6-1: config 0 descriptor??
[  163.954022][ T8586] overlayfs: failed to resolve './file1/file0': -20
[  163.958209][   T40] audit: type=1326 audit(1760707042.975:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8585 comm="syz.2.710" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f23579 code=0x0
[  163.982032][ T8573] vhci_hcd: connection closed
[  163.984123][  T197] vhci_hcd: stop threads
[  163.987631][  T197] vhci_hcd: release socket
[  163.989472][  T197] vhci_hcd: disconnect device
[  164.144600][   T34] usb 8-1: USB disconnect, device number 9
[  164.144694][    C2] ldusb 8-1:0.55: usb_submit_urb failed (-19)
[  164.150108][   T34] ldusb 8-1:0.55: LD USB Device #0 now disconnected
[  164.158289][ T1024] usb 6-1: USB disconnect, device number 8
[  164.569479][ T8611] netlink: 12 bytes leftover after parsing attributes in process `syz.4.712'.
[  164.728756][ T8621] netlink: 4 bytes leftover after parsing attributes in process `syz.4.712'.
[  164.848774][ T8634] ksmbd: Daemon and kernel module version mismatch. ksmbd: 124, kernel module: 1. User-space ksmbd should terminate.
[  164.883511][ T8634] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  164.942398][ T8637] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  165.068681][ T8640] input: syz0 as /devices/virtual/input/input13
[  165.633541][ T6022] usb 46-1: device descriptor read/8, error -110
[  165.658509][   T40] audit: type=1326 audit(1760707044.675:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8643 comm="syz.3.719" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x7ffc0000
[  165.670091][   T40] audit: type=1326 audit(1760707044.685:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8643 comm="syz.3.719" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x7ffc0000
[  165.695320][ T8653] PKCS7: Unknown OID: [4] 2.19.50.2018883.1651(bad)
[  165.698027][ T8653] PKCS7: Only support pkcs7_signedData type
[  165.859567][ T8653] warning: `syz.1.721' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  165.885782][   T40] audit: type=1326 audit(1760707044.905:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8643 comm="syz.3.719" exe="/syz-executor" sig=0 arch=40000003 syscall=366 compat=1 ip=0xf7f63579 code=0x7ffc0000
[  165.887021][   T54] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  165.911897][   T40] audit: type=1326 audit(1760707044.905:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8643 comm="syz.3.719" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x7ffc0000
[  165.923426][   T40] audit: type=1326 audit(1760707044.905:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8643 comm="syz.3.719" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f63579 code=0x7ffc0000
[  165.941341][   T40] audit: type=1326 audit(1760707044.955:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8643 comm="syz.3.719" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x7ffc0000
[  165.949336][   T40] audit: type=1326 audit(1760707044.955:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8643 comm="syz.3.719" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x7ffc0000
[  165.974161][   T40] audit: type=1326 audit(1760707044.985:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8643 comm="syz.3.719" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f63579 code=0x7ffc0000
[  166.004671][   T40] audit: type=1326 audit(1760707044.985:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8643 comm="syz.3.719" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x7ffc0000
[  166.145810][ T6022] usb usb46-port1: attempt power cycle
[  166.649262][ T8678] netlink: 40 bytes leftover after parsing attributes in process `syz.4.725'.
[  166.681058][ T8682] FAULT_INJECTION: forcing a failure.
[  166.681058][ T8682] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  166.687526][ T8682] CPU: 0 UID: 0 PID: 8682 Comm: syz.4.727 Not tainted syzkaller #0 PREEMPT(full) 
[  166.687541][ T8682] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  166.687548][ T8682] Call Trace:
[  166.687552][ T8682]  <TASK>
[  166.687556][ T8682]  dump_stack_lvl+0x16c/0x1f0
[  166.687577][ T8682]  should_fail_ex+0x512/0x640
[  166.687589][ T8682]  _copy_to_user+0x32/0xd0
[  166.687601][ T8682]  simple_read_from_buffer+0xcb/0x170
[  166.687616][ T8682]  proc_fail_nth_read+0x197/0x240
[  166.687631][ T8682]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  166.687647][ T8682]  ? rw_verify_area+0xcf/0x6c0
[  166.687683][ T8682]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  166.687698][ T8682]  vfs_read+0x1e4/0xcf0
[  166.687715][ T8682]  ? __pfx_vfs_read+0x10/0x10
[  166.687728][ T8682]  ? find_held_lock+0x2b/0x80
[  166.687747][ T8682]  ? __fget_files+0x20e/0x3c0
[  166.687765][ T8682]  ksys_read+0x12a/0x250
[  166.687779][ T8682]  ? __pfx_ksys_read+0x10/0x10
[  166.687794][ T8682]  ? rcu_is_watching+0x12/0xc0
[  166.687811][ T8682]  __do_fast_syscall_32+0x7c/0x300
[  166.687822][ T8682]  do_fast_syscall_32+0x32/0x80
[  166.687832][ T8682]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  166.687845][ T8682] RIP: 0023:0xf70ed579
[  166.687857][ T8682] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  166.687867][ T8682] RSP: 002b:00000000f54dd590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  166.687878][ T8682] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f54dd620
[  166.687884][ T8682] RDX: 000000000000000f RSI: 00000000f7485ff4 RDI: 0000000000000000
[  166.687890][ T8682] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  166.687896][ T8682] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  166.687902][ T8682] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  166.687915][ T8682]  </TASK>
[  166.755310][    C0] vkms_vblank_simulate: vblank timer overrun
[  166.855039][   T55] usb 42-1: device descriptor read/8, error -110
[  166.997639][ T8694] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  167.074505][ T6022] usb usb46-port1: unable to enumerate USB device
[  167.113870][   T55] usb 42-1: SetAddress Request (7) to port 0
[  167.116747][   T55] usb 42-1: new SuperSpeed USB device number 7 using vhci_hcd
[  167.401230][ T8701] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  172.204070][   T55] usb 42-1: device descriptor read/8, error -110
[  172.315675][   T55] usb usb42-port1: attempt power cycle
[  172.443913][   T55] usb 42-1: SetAddress Request (8) to port 0
[  172.446242][   T55] usb 42-1: new SuperSpeed USB device number 8 using vhci_hcd
[  175.323951][ T5302] Bluetooth: hci1: command 0x0406 tx timeout
[  176.604104][ T8724] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[  176.606166][ T8724] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  176.608950][ T8724] vhci_hcd vhci_hcd.0: Device attached
[  177.148688][   T40] kauditd_printk_skb: 8 callbacks suppressed
[  177.148700][   T40] audit: type=1326 audit(1760707056.165:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8717 comm="syz.1.731" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff5579 code=0x7fc00000
[  177.157164][   T40] audit: type=1326 audit(1760707056.165:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8717 comm="syz.1.731" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7ff5579 code=0x7fc00000
[  177.164210][   T40] audit: type=1326 audit(1760707056.165:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8717 comm="syz.1.731" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff5579 code=0x7fc00000
[  177.170760][   T40] audit: type=1326 audit(1760707056.165:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8717 comm="syz.1.731" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff5579 code=0x7fc00000
[  177.177514][   T40] audit: type=1326 audit(1760707056.165:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8717 comm="syz.1.731" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff5579 code=0x7fc00000
[  177.184769][   T40] audit: type=1326 audit(1760707056.165:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8717 comm="syz.1.731" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff5579 code=0x7fc00000
[  177.301142][ T8725] vhci_hcd: connection closed
[  177.301365][ T7313] vhci_hcd: stop threads
[  177.304392][ T7313] vhci_hcd: release socket
[  177.305900][ T7313] vhci_hcd: disconnect device
[  177.313872][ T8066] usb 46-1: enqueue for inactive port 0
[  177.484092][   T55] usb 42-1: device descriptor read/8, error -110
[  177.724358][   T55] usb 42-1: SetAddress Request (9) to port 0
[  177.727016][   T55] usb 42-1: new SuperSpeed USB device number 9 using vhci_hcd
[  177.822659][ T8066] usb usb46-port1: attempt power cycle
[  178.394291][ T8066] usb usb46-port1: unable to enumerate USB device
[  180.246360][ T5944] Bluetooth: hci2: link tx timeout
[  180.248391][ T5944] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa
[  180.719084][   T40] audit: type=1326 audit(1760707059.725:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8752 comm="syz.1.738" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff5579 code=0x7ffc0000
[  180.727590][   T40] audit: type=1326 audit(1760707059.735:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8752 comm="syz.1.738" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff5579 code=0x7ffc0000
[  180.734670][   T40] audit: type=1326 audit(1760707059.745:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8752 comm="syz.1.738" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf7ff5579 code=0x7ffc0000
[  180.743815][   T40] audit: type=1326 audit(1760707059.745:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8752 comm="syz.1.738" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff5579 code=0x7ffc0000
[  181.754391][ T8781] netlink: 4 bytes leftover after parsing attributes in process `syz.3.746'.
[  182.286043][ T5302] Bluetooth: hci2: command 0x0406 tx timeout
[  182.764555][   T55] usb 42-1: device descriptor read/8, error -110
[  182.874833][   T55] usb usb42-port1: unable to enumerate USB device
[  183.384699][   T34] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  183.730874][   T34] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  183.736386][   T34] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  183.740701][   T34] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  183.745153][   T34] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  183.748372][   T34] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  183.757195][   T34] usb 9-1: config 0 descriptor??
[  184.074941][ T8813] netlink: 8 bytes leftover after parsing attributes in process `syz.1.755'.
[  185.144214][ T8343] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  185.293812][ T8343] usb 6-1: Using ep0 maxpacket: 32
[  185.298594][ T8343] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  185.304963][ T8343] usb 6-1: New USB device found, idVendor=06f8, idProduct=301b, bcdDevice=bb.39
[  185.307987][ T8343] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  185.310515][ T8343] usb 6-1: Product: syz
[  185.311893][ T8343] usb 6-1: Manufacturer: syz
[  185.313420][ T8343] usb 6-1: SerialNumber: syz
[  185.317142][ T8343] usb 6-1: config 0 descriptor??
[  185.321375][ T8343] gspca_main: gspca_pac7302-2.14.0 probing 06f8:301b
[  185.538102][ T8343] gspca_pac7302: reg_w() failed i: ff v: 01 error -71
[  185.544050][ T8343] gspca_pac7302 6-1:0.0: probe with driver gspca_pac7302 failed with error -71
[  185.551710][ T8343] usb 6-1: USB disconnect, device number 9
[  185.900838][   T34] usbhid 9-1:0.0: can't add hid device: -71
[  185.909665][   T34] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[  185.917573][   T34] usb 9-1: USB disconnect, device number 5
[  186.178184][ T8838] Device name cannot be null; rc = [-22]
[  186.270817][ T8837] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  186.314083][   T34] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  186.475978][   T34] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  186.479966][   T34] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 3
[  186.484573][   T34] usb 9-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  186.488188][   T34] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  186.491326][   T34] usb 9-1: SerialNumber: syz
[  186.704171][   T34] usb 9-1: 0:2 : does not exist
[  186.719238][   T34] usb 9-1: USB disconnect, device number 6
[  186.754038][ T8820] udevd[8820]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb9/9-1/9-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  186.973451][ T8850] netlink: 72 bytes leftover after parsing attributes in process `syz.2.767'.
[  187.010180][ T8850] syz.2.767 (8850) used greatest stack depth: 20040 bytes left
[  187.284097][ T8855] ptrace attach of "/syz-executor exec"[8856] was attempted by "/syz-executor exec"[8855]
[  187.793846][ T6023] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  187.987915][ T6023] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  187.991185][ T6023] usb 7-1: New USB device found, idVendor=056a, idProduct=00ba, bcdDevice= 0.00
[  187.995594][ T6023] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  188.001498][ T6023] usb 7-1: config 0 descriptor??
[  188.181667][ T5985] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  188.194290][ T1024] usb 6-1: new low-speed USB device number 10 using dummy_hcd
[  188.223192][ T5985] hid-generic 0000:0000:0000.0003: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  188.232279][ T6023] usbhid 7-1:0.0: can't add hid device: -71
[  188.234491][ T6023] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  188.240917][ T6023] usb 7-1: USB disconnect, device number 7
[  188.367144][ T1024] usb 6-1: config index 0 descriptor too short (expected 1307, got 27)
[  188.369751][ T1024] usb 6-1: config 0 has an invalid interface number: 0 but max is -1
[  188.372282][ T1024] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 0
[  188.375518][ T1024] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  188.379608][ T1024] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  188.382852][ T1024] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  188.386362][ T1024] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  188.399004][ T1024] usb 6-1: string descriptor 0 read error: -22
[  188.400904][ T1024] usb 6-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  188.403613][ T1024] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  188.408852][ T1024] usb 6-1: config 0 descriptor??
[  188.414561][ T1024] hub 6-1:0.0: bad descriptor, ignoring hub
[  188.416638][ T1024] hub 6-1:0.0: probe with driver hub failed with error -5
[  188.421867][ T1024] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input14
[  188.590388][ T8883] evm: overlay not supported
[  188.677159][ T5978] usb 6-1: USB disconnect, device number 10
[  188.796104][ T8891] netlink: 8 bytes leftover after parsing attributes in process `syz.2.782'.
[  189.459750][ T8887] orangefs_mount: mount request failed with -4
[  189.534916][ T8343] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  189.605023][ T8908] netlink: 4 bytes leftover after parsing attributes in process `syz.3.789'.
[  189.697249][ T8343] usb 6-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  189.700987][ T8343] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  189.704730][ T8343] usb 6-1: Product: syz
[  189.706491][ T8343] usb 6-1: Manufacturer: syz
[  189.708495][ T8343] usb 6-1: SerialNumber: syz
[  189.714672][ T8343] usb 6-1: config 0 descriptor??
[  189.782700][ T8914] netlink: 16 bytes leftover after parsing attributes in process `syz.4.785'.
[  189.903037][   T40] kauditd_printk_skb: 192 callbacks suppressed
[  189.903052][   T40] audit: type=1326 audit(1760707068.915:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.2.787" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  189.924814][   T40] audit: type=1326 audit(1760707068.915:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.2.787" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  189.931803][   T40] audit: type=1326 audit(1760707068.925:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.2.787" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  189.938869][   T40] audit: type=1326 audit(1760707068.925:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.2.787" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  189.946458][   T40] audit: type=1326 audit(1760707068.925:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.2.787" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  189.953372][   T40] audit: type=1326 audit(1760707068.925:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.2.787" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  189.963485][   T40] audit: type=1326 audit(1760707068.925:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.2.787" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  189.975947][   T40] audit: type=1326 audit(1760707068.925:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.2.787" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  189.984338][   T40] audit: type=1326 audit(1760707068.925:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.2.787" exe="/syz-executor" sig=0 arch=40000003 syscall=320 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  189.991397][   T40] audit: type=1326 audit(1760707068.925:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.2.787" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f23579 code=0x7ffc0000
[  190.001730][ T6023] usb 6-1: USB disconnect, device number 11
[  190.177023][ T8915] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  190.179831][ T8915] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  190.191291][ T8915] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  190.195242][ T8915] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  190.197843][ T8915] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  190.257635][ T8915] Oops: general protection fault, probably for non-canonical address 0xdffffc000000000b: 0000 [#1] SMP KASAN NOPTI
[  190.262277][ T8915] KASAN: null-ptr-deref in range [0x0000000000000058-0x000000000000005f]
[  190.267017][ T8915] CPU: 1 UID: 0 PID: 8915 Comm: syz.3.790 Not tainted syzkaller #0 PREEMPT(full) 
[  190.271328][ T8915] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  190.275451][ T8915] RIP: 0010:klist_put+0x4d/0x1b0
[  190.277389][ T8915] Code: c1 ea 03 80 3c 02 00 0f 85 5f 01 00 00 48 b8 00 00 00 00 00 fc ff df 4c 8b 23 49 83 e4 fe 49 8d 7c 24 58 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 2e 01 00 00 4c 89 e7 4d 8b 74 24 58 e8 9c f2 0c
[  190.284973][ T8915] RSP: 0018:ffffc900037e72e0 EFLAGS: 00010202
[  190.287300][ T8915] RAX: dffffc0000000000 RBX: ffff88804ed23460 RCX: ffffc90028b92000
[  190.290261][ T8915] RDX: 000000000000000b RSI: ffffffff8b5932f5 RDI: 0000000000000058
[  190.293235][ T8915] RBP: 0000000000000001 R08: 0000000000000000 R09: fffffbfff20cd6a4
[  190.296169][ T8915] R10: ffffffff9066b523 R11: 0000000000000001 R12: 0000000000000000
[  190.299248][ T8915] R13: 0000000000000001 R14: 1ffff920006fce64 R15: ffffffff9066b4e0
[  190.302528][ T8915] FS:  0000000000000000(0000) GS:ffff8880978df000(0063) knlGS:00000000f5414b40
[  190.306122][ T8915] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  190.308658][ T8915] CR2: 00007ffe8a353150 CR3: 00000000730d5000 CR4: 0000000000352ef0
[  190.311635][ T8915] Call Trace:
[  190.312946][ T8915]  <TASK>
[  190.314076][ T8915]  klist_remove+0x13f/0x2e0
[  190.315841][ T8915]  ? __pfx_klist_remove+0x10/0x10
[  190.317566][ T8915]  ? kobject_move+0x15d/0x260
[  190.319201][ T8915]  ? __pfx_kobject_move+0x10/0x10
[  190.321162][ T8915]  ? get_device_parent+0x1ed/0x4e0
[  190.323155][ T8915]  device_move+0x12d/0x10d0
[  190.324982][ T8915]  hci_conn_del_sysfs+0x81/0x180
[  190.326935][ T8915]  hci_conn_del+0x657/0x1180
[  190.328727][ T8915]  hci_abort_conn_sync+0x76a/0xb20
[  190.330773][ T8915]  ? __pfx_hci_abort_conn_sync+0x10/0x10
[  190.333053][ T8915]  ? find_held_lock+0x2b/0x80
[  190.334940][ T8915]  ? hci_disconnect_all_sync.constprop.0+0x77/0x3c0
[  190.337509][ T8915]  ? hci_disconnect_all_sync.constprop.0+0x77/0x3c0
[  190.339941][ T8915]  hci_disconnect_all_sync.constprop.0+0x104/0x3c0
[  190.342368][ T8915]  hci_suspend_sync+0x821/0xb20
[  190.344193][ T8915]  ? preempt_schedule_thunk+0x16/0x30
[  190.346196][ T8915]  ? __pfx_hci_suspend_sync+0x10/0x10
[  190.348306][ T8915]  ? _raw_spin_unlock_irqrestore+0x61/0x80
[  190.350592][ T8915]  hci_suspend_dev+0x308/0x500
[  190.352485][ T8915]  ? __pfx_hci_suspend_dev+0x10/0x10
[  190.354522][ T8915]  ? rcu_barrier+0x341/0x6e0
[  190.356348][ T8915]  ? kobject_get+0xbb/0x150
[  190.358175][ T8915]  hci_suspend_notifier+0x28d/0x2f0
[  190.360041][ T8915]  notifier_call_chain+0xbc/0x410
[  190.362047][ T8915]  ? __pfx_hci_suspend_notifier+0x10/0x10
[  190.364356][ T8915]  blocking_notifier_call_chain_robust+0xc8/0x160
[  190.366905][ T8915]  ? __pfx_blocking_notifier_call_chain_robust+0x10/0x10
[  190.369213][ T8915]  ? do_raw_spin_unlock+0x172/0x230
[  190.370811][ T8915]  pm_notifier_call_chain_robust+0x27/0x60
[  190.372506][ T8915]  snapshot_open+0x189/0x2b0
[  190.374219][ T8915]  ? __pfx_snapshot_open+0x10/0x10
[  190.376023][ T8915]  misc_open+0x26d/0x450
[  190.377611][ T8915]  ? __pfx_misc_open+0x10/0x10
[  190.379411][ T8915]  chrdev_open+0x234/0x6a0
[  190.381184][ T8915]  ? __pfx_apparmor_file_open+0x10/0x10
[  190.383318][ T8915]  ? __pfx_chrdev_open+0x10/0x10
[  190.385276][ T8915]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  190.387739][ T8915]  do_dentry_open+0x982/0x1530
[  190.389609][ T8915]  ? __pfx_chrdev_open+0x10/0x10
[  190.391533][ T8915]  vfs_open+0x82/0x3f0
[  190.393145][ T8915]  path_openat+0x1de4/0x2cb0
[  190.394929][ T8915]  ? __pfx_path_openat+0x10/0x10
[  190.396843][ T8915]  do_filp_open+0x20b/0x470
[  190.398458][ T8915]  ? __pfx_do_filp_open+0x10/0x10
[  190.399927][ T8915]  ? _raw_spin_unlock+0x28/0x50
[  190.401324][ T8915]  ? alloc_fd+0x471/0x7d0
[  190.402595][ T8915]  do_sys_openat2+0x11b/0x1d0
[  190.404402][ T8915]  ? __pfx_do_sys_openat2+0x10/0x10
[  190.406473][ T8915]  __ia32_compat_sys_openat+0x16d/0x210
[  190.408603][ T8915]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  190.410719][ T8915]  ? xfd_validate_state+0x61/0x180
[  190.412419][ T8915]  ? rcu_is_watching+0x12/0xc0
[  190.414072][ T8915]  __do_fast_syscall_32+0x7c/0x300
[  190.415827][ T8915]  do_fast_syscall_32+0x32/0x80
[  190.417452][ T8915]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  190.419519][ T8915] RIP: 0023:0xf7f63579
[  190.421064][ T8915] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  190.427505][ T8915] RSP: 002b:00000000f541455c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[  190.429892][ T8915] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000680
[  190.432436][ T8915] RDX: 0000000000040000 RSI: 0000000000000019 RDI: 0000000000000000
[  190.435174][ T8915] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  190.438099][ T8915] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  190.441109][ T8915] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  190.444145][ T8915]  </TASK>
[  190.445385][ T8915] Modules linked in:
[  190.447340][ T8915] ---[ end trace 0000000000000000 ]---
[  190.452636][ T8915] RIP: 0010:klist_put+0x4d/0x1b0
[  190.459127][ T8915] Code: c1 ea 03 80 3c 02 00 0f 85 5f 01 00 00 48 b8 00 00 00 00 00 fc ff df 4c 8b 23 49 83 e4 fe 49 8d 7c 24 58 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 2e 01 00 00 4c 89 e7 4d 8b 74 24 58 e8 9c f2 0c
[  190.473800][ T8915] RSP: 0018:ffffc900037e72e0 EFLAGS: 00010202
[  190.479630][ T8915] RAX: dffffc0000000000 RBX: ffff88804ed23460 RCX: ffffc90028b92000
[  190.485825][ T8915] RDX: 000000000000000b RSI: ffffffff8b5932f5 RDI: 0000000000000058
[  190.489901][ T8915] RBP: 0000000000000001 R08: 0000000000000000 R09: fffffbfff20cd6a4
[  190.503761][ T8915] R10: ffffffff9066b523 R11: 0000000000000001 R12: 0000000000000000
[  190.506838][ T8915] R13: 0000000000000001 R14: 1ffff920006fce64 R15: ffffffff9066b4e0
[  190.509877][ T8915] FS:  0000000000000000(0000) GS:ffff8880978df000(0063) knlGS:00000000f5414b40
[  190.513328][ T8915] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  190.516168][ T8915] CR2: 00000000f5435b04 CR3: 00000000730d5000 CR4: 0000000000352ef0
[  190.519202][ T8915] Kernel panic - not syncing: Fatal exception
[  190.521963][ T8915] Kernel Offset: disabled
[  190.523336][ T8915] Rebooting in 86400 seconds..

VM DIAGNOSIS:
13:17:48  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000080000 RBX=ffff88802b340460 RCX=ffffc9000deb1000 RDX=0000000000080000
RSI=ffffffff81b0b41b RDI=0000000000000005 RBP=0000000000000003 RSP=ffffc900037b7188
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000082c1e
R12=dffffc0000000000 R13=ffffed100566808d R14=0000000000000001 R15=0000000000000001
RIP=ffffffff81b0b41d RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880977df000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000801be018 CR3=00000000730d5000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000004 00c800a400000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000100000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff852e2155 RDI=ffffffff9adf3e80 RBP=ffffffff9adf3e40 RSP=ffffc900037e6ce0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=000000004153414b
R12=0000000000000000 R13=0000000000000030 R14=ffffffff9adf3e40 R15=ffffffff852e20f0
RIP=ffffffff852e217f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880978df000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffe8a353150 CR3=00000000730d5000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=00000000001e90fc RBX=0000000000000002 RCX=ffffffff8b6382a9 RDX=ffffed1005686656
RSI=ffffffff8bf1eec0 RDI=ffffffff81921f4d RBP=ffffed1003b58920 RSP=ffffc9000047fde8
R8 =0000000000000000 R9 =ffffed1005686655 R10=ffff88802b4332ab R11=0000000000000001
R12=0000000000000002 R13=ffff88801dac4900 R14=ffffffff90836ed0 R15=0000000000000000
RIP=ffffffff8b636d5f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880979df000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000055a8e08c7ec8 CR3=0000000027fd3000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000004 00c800a400000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000100000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=0000000000000003 RCX=ffffffff8b5cb750 RDX=ffff888022e50000
RSI=0000000000000004 RDI=0000000000000005 RBP=ffffffff8cf18940 RSP=ffffc90003817658
R8 =0000000000000005 R9 =0000000000000004 R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=0000000000000005 R14=0000000000000006 R15=00007fa85be97000
RIP=ffffffff81bcb1f1 RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097adf000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fa85be9f440 CR3=0000000076a20000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 766c6f7365726269 6c2f343662696c2f
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000c10 000000000000d3f0
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff000000000000 ffffffffffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000001da0 0000000000033260
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000