last executing test programs:

1m51.271313001s ago: executing program 3 (id=620):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = syz_open_dev$dri(&(0x7f00000000c0), 0x2, 0x80801)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, 0x0)
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r2, 0xc05064a7, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0})

1m50.733479177s ago: executing program 3 (id=626):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtaction={0x70, 0x30, 0x0, 0x870bd2d, 0x0, {0x9}, [{0x5c, 0x1, [@m_sample={0x58, 0x0, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PSAMPLE_GROUP={0x8}, @TCA_SAMPLE_RATE={0x8}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x800, 0x0, 0x0, 0x0, 0x80000}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x6}}}}]}]}, 0x70}}, 0x20040000)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000100)={'batadv_slave_1\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="9000000010000305000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="996e06004d4c070054001280080001006873720048000280050003000800000005000300050000", @ANYRES32=r2, @ANYBLOB="08000100", @ANYRES32=r3], 0x90}}, 0x0)
sendmmsg(r0, &(0x7f0000000000), 0x4000000000001f2, 0x0)

1m50.487332653s ago: executing program 3 (id=627):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtaction={0x70, 0x30, 0x0, 0x870bd2d, 0x0, {0x9}, [{0x5c, 0x1, [@m_sample={0x58, 0x0, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PSAMPLE_GROUP={0x8}, @TCA_SAMPLE_RATE={0x8}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x800, 0x0, 0x0, 0x0, 0x80000}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x6}}}}]}]}, 0x70}}, 0x20040000)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000100)={'batadv_slave_1\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="90000000100003050000000000000000000007", @ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500030008000000050003000500000005000300fd00000008000200", @ANYRES32=r2, @ANYBLOB="08000100", @ANYRES32=r3], 0x90}}, 0x0)
sendmmsg(r0, &(0x7f0000000000), 0x4000000000001f2, 0x0)

1m50.248224675s ago: executing program 3 (id=629):
r0 = syz_open_dev$video4linux(&(0x7f0000000000), 0x1, 0x20800)
ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(r0, 0xc0305602, &(0x7f0000000180)={0x0, 0x81, 0x2007, 0x1})
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
umount2(&(0x7f0000000180)='./file0/file0\x00', 0x2)
socket$kcm(0x29, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0/file0\x00', 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='./file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x8b101b, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
r2 = io_uring_setup(0x3eab, &(0x7f0000000440)={0x0, 0x418f, 0x40, 0x2, 0x30c})
r3 = syz_io_uring_setup(0x124f, &(0x7f0000000540)={0x0, 0xc50c, 0x1, 0x0, 0x0, 0x0, r2}, &(0x7f0000000240), &(0x7f0000000180))
bind$alg(r1, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'essiv(cbc(aes),sha256)\x00'}, 0x58)
dup2(r3, r1)
mount$bind(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x80000, 0x0)
r4 = socket$inet6_icmp(0xa, 0x2, 0x3a)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000600)=@nat={'nat\x00', 0x1b, 0x5, 0x67c, 0x0, 0x3e4, 0xffffffff, 0x0, 0x4d0, 0x5b4, 0x5b4, 0xffffffff, 0x5b4, 0x5b4, 0x5, &(0x7f00000004c0), {[{{@uncond, 0x0, 0x224, 0x26c, 0x0, {}, [@common=@dst={{0x48}, {0x3, 0x0, 0x0, [0x7cf, 0x3, 0x0, 0x3ff, 0x504b, 0x6, 0x1, 0x4, 0x3ff, 0xb, 0xfff7, 0x1, 0xfffa, 0x7aa, 0x7], 0x1}}, @common=@rt={{0x138}, {0x7, [0xf5, 0x7fff], 0x5, 0x30, 0x0, [@local, @private2={0xfc, 0x2, '\x00', 0x1}, @ipv4={'\x00', '\xff\xff', @remote}, @private2={0xfc, 0x2, '\x00', 0x1}, @mcast1, @mcast2, @ipv4={'\x00', '\xff\xff', @multicast1}, @local, @mcast2, @private0, @local, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast1, @mcast2, @remote, @rand_addr=' \x01\x00'], 0x3}}]}, @REDIRECT={0x48, 'REDIRECT\x00', 0x0, {0x1, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}, @ipv4=@loopback, @icmp_id=0x67, @port=0x4e23}}}, {{@uncond, 0x0, 0x130, 0x178, 0x0, {}, [@common=@srh1={{0x8c}, {0x0, 0x2, 0x1, 0xfc, 0x6, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @loopback, [0xffffffff, 0xffffffff, 0xffffffff, 0xffffff00], [0xffffff00, 0xffffff00, 0xff, 0xff000000], [0x0, 0xff000000, 0xff, 0xffffff00], 0x280, 0x8}}]}, @REDIRECT={0x48, 'REDIRECT\x00', 0x0, {0x10, @ipv4=@private=0xa010101, @ipv4=@broadcast, @icmp_id=0x67, @gre_key=0x9}}}, {{@uncond, 0x0, 0xa4, 0xec}, @NETMAP={0x48, 'NETMAP\x00', 0x0, {0x10, @ipv6=@remote, @ipv4=@private=0xa010101, @gre_key=0xe2a8, @gre_key=0xfffb}}}, {{@uncond, 0x0, 0xa4, 0xe4}, @common=@unspec=@ERROR={0x40, 'ERROR\x00', 0x0, "a181742194eaa929f1cef5265fdebe297877ce4fa9a076c7cadce66b997d"}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x6d8)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x9901)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
r5 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000000c0), 0x401, 0x0)
ioctl$PTP_PIN_GETFUNC(r5, 0xc0603d06, &(0x7f0000000100)={'\x00', 0x3, 0x2, 0xfffffffc})
r6 = openat$sequencer(0xffffff9c, &(0x7f0000000000), 0x141040, 0x0)
ioctl$SNDCTL_SEQ_NRSYNTHS(r6, 0x8004510a, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
capset(&(0x7f0000000080)={0x19980330}, &(0x7f0000000040)={0x200000, 0x200000, 0x0, 0x40000000})
mount$tmpfs(0x0, &(0x7f0000000400)='./file0/../file0\x00', &(0x7f00000001c0), 0x0, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0)

1m49.106969378s ago: executing program 3 (id=635):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtaction={0x70, 0x30, 0x0, 0x870bd2d, 0x0, {0x9}, [{0x5c, 0x1, [@m_sample={0x58, 0x0, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PSAMPLE_GROUP={0x8}, @TCA_SAMPLE_RATE={0x8}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x800, 0x0, 0x0, 0x0, 0x80000}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x6}}}}]}]}, 0x70}}, 0x20040000)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000100)={'batadv_slave_1\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="9000000010000305000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="996e06004d4c070054001280080001006873720048000280050003000800000005000300050000", @ANYRES32=r2, @ANYBLOB="08000100", @ANYRES32=r3], 0x90}}, 0x0)
sendmmsg(r0, &(0x7f0000000000), 0x4000000000001f2, 0x0)

1m48.563636499s ago: executing program 3 (id=640):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000100)={'batadv_slave_1\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500030008000000050003000500000005000300fd00000008000200", @ANYRES32=r2, @ANYBLOB="08000100", @ANYRES32=r3], 0x90}}, 0x0)
sendmmsg(r0, &(0x7f0000000000), 0x4000000000001f2, 0x0)

1m48.402646902s ago: executing program 32 (id=640):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000100)={'batadv_slave_1\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500030008000000050003000500000005000300fd00000008000200", @ANYRES32=r2, @ANYBLOB="08000100", @ANYRES32=r3], 0x90}}, 0x0)
sendmmsg(r0, &(0x7f0000000000), 0x4000000000001f2, 0x0)

4.395682898s ago: executing program 1 (id=1104):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0xc, 0xf, &(0x7f0000000640)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES64, @ANYRES8], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f0000000480)=ANY=[@ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0xb, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000016c0), 0x0, 0x10, 0x1, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$IPVS_CMD_GET_INFO(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000c80)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="02000000a27168e0a4c606000000"], 0x14}, 0x1, 0x0, 0x0, 0x810}, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x180400, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="24000000202001c859eb03acde575af0c38cac052b2a000000000085dbb01031fc5b4ffd59d74cff0be100000000180006755009000000a38dabb73d43db0b7c0000000000"], 0x24}}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000020000103000000000000000002001400000000000000000008000200ac1414bb08000d00000000000800ed4162f5dc3b9d76129b77bce1bad70b00030000001400030070"], 0x48}}, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60)
r8 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_emit_vhci(&(0x7f0000000300)=ANY=[@ANYBLOB="04040000000000000600"/24], 0xd)
ioctl$KVM_SET_VCPU_EVENTS(r8, 0x4138ae84, &(0x7f0000000340)=@arm64={0x0, 0x2, 0xfd, '\x00', 0x3})
ioctl$KVM_SET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000140)=@x86={0x0, 0xff, 0xec, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x6, 0x9, 0x1, 0x0, 0x13, 0x2, 0x0, 0x3, 0x0, 0x7, '\x00', 0xff, 0x2})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r9 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x20000, 0x0)
readv(r9, &(0x7f0000000000)=[{&(0x7f0000001300)=""/244, 0xfdef}], 0x1)
ioctl$TCSETS(r9, 0x40045431, &(0x7f0000001200)={0x0, 0xffffff1e, 0xffffffff, 0x4, 0x16, "001bf100eeff0000a2c2000100000000002000"})

3.35706973s ago: executing program 0 (id=1111):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={0x24, 0x7, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0xc00e}, 0x20005014)

3.29408166s ago: executing program 0 (id=1112):
ioperm(0x0, 0x7, 0x5)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x14, 0x30, 0x1}, 0x14}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
socket$igmp(0x2, 0x3, 0x2)
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
pipe2(&(0x7f0000000300)={<r3=>0xffffffffffffffff}, 0x84000)
syz_genetlink_get_family_id$fou(&(0x7f0000000280), r3)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='autofs\x00', 0x26c02, &(0x7f0000001540)='\r\x87\x17^\x981\xd5\x14\xe2\x81\xa6\xcd\t\xa5\xbasG\x88\x7f]\x03\xf3\xd5t\x97\x9f\xee\"\xebU\xccM\x02\x17\x0f[\x9c\x9e\xa6\xd2\xe4(\xea\x7f\xe4\x90K\xcb\xb5;f\x02}\x147\x04=\xe50\x8d;\x90!\x01,\xdb,\xb9\x8e\t\x13\x1eh\xbc^<\xd2\x809G\xe6H\xbb&^\\\x9c\xady\xd9\xb5\xa3\x16\xd0\xdf\x1a\xaa\xfcHz\x89\x19\xe1\xe6+\xf6\xc3\xad\x80\x98\xc2\x10\x91\xec\xf6\x93=\xbe\x10\xfc`\x86\xa7\xe6\xae\x00*R\x92\x05\xf6\x80u\xf9\xb7S{\xd6\x99\x9a\xf3\xcc\x04o\xdd\x91 \x92;\x87\xfb\x82c>\x82VR8\xe5\x0f\xeb\xcdJz\f\xf5.\xd7!\xa1\xfe\xc8\xf0\xb5\\\xc2\xc7\xc7\xaa\xd9:\xa3+\x12\x9f\xfc\xf6@},`=\xea\x91\fJ\xe4\rC\xa9\xe0\x8b%\x9f\'\xbdX\xbfS\x00\x8c\x84\x10\xcf\xf0\xd7\xe0\xf9\xf8E\xa3?\x17\\\x9e\n\xa1h!\x9e\xd8\xe8\xa5\xc5\xbf_\xa7\xc9\x91U\x86=\xa5\xf7g~\xaa\xc8N\"^\x8e%')
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$netlink(0x10, 0x3, 0x0)
r4 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSRS485(r4, 0x5437, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
syz_open_dev$mouse(&(0x7f0000000180), 0x1, 0x84000)
r5 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=ANY=[@ANYBLOB="ee000000", @ANYRES16=0x0, @ANYBLOB="0100fdffffff000000000100000008000100", @ANYBLOB="400002803c0001"], 0x5c}, 0x1, 0xf000, 0x0, 0x8c1}, 0x20040)
sendmsg$netlink(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000300)=ANY=[], 0x118}], 0x1}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(r6, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x90011}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x28, r7, 0x300, 0x70bd26, 0x25dfdbfe, {{}, {}, {0xc, 0x14, 'syz1\x00'}}, ["", ""]}, 0x28}}, 0x24008000)

3.292862277s ago: executing program 2 (id=1113):
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x8, 0xc7, &(0x7f0000000480)=""/199, 0x40f00, 0x45, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000002c0)={0x3, 0x4004, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
syz_io_uring_setup(0x10d, 0x0, 0x0, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000200)=ANY=[], 0x125)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
setsockopt$rose(0xffffffffffffffff, 0x104, 0x5, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={0x0, r2}, 0x18)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r3, &(0x7f0000002140)={0x2020, 0x0, <r4=>0x0}, 0x2020)
syz_fuse_handle_req(r3, &(0x7f0000008400)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x3, 0x0, 0x0, 0xa80a, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000, 0x0, 0x0, 0x0, 0x801}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r3, &(0x7f0000000340)={0x50, 0x0, r4}, 0x50)
openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@metacopy_on}]})

3.292446473s ago: executing program 1 (id=1114):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0xfffffffe, 0x0, 0x1, 0x0, 0xa2}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000440), 0x4)
prlimit64(0x0, 0x5, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$binfmt_format(0xffffffffffffff9c, &(0x7f0000001580)='/proc/sys/fs/binfmt_misc/syz0\x00', 0x2, 0x0)
read(r3, 0x0, 0x0)
r4 = syz_open_dev$vivid(&(0x7f0000000180), 0x3, 0x2)
ioctl$VIDIOC_SUBSCRIBE_EVENT(r4, 0x4020565a, &(0x7f00000001c0)={0x3, 0xa07, 0x2})
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000300)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="004674f5f9f238ec329aab7238a258e9e9000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000280)={0x7f, <r7=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f0000000040)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r6}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x2, 0x3, 0xa, 0x9, 0xfe00}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfe00, 0xa0}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8, 0x0, 0x0, 0x9a02fff0}, {}, {}, {0x7, 0x0, 0xc}, {0x18, 0x2, 0x2, 0x0, r5}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000580)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r8, 0x89f1, &(0x7f0000000000)={'ip6gre0\x00', &(0x7f0000000380)={'syztnl0\x00', 0x0, 0x2f, 0x9, 0x0, 0x0, 0x52, @empty, @private2={0xfc, 0x2, '\x00', 0x1}, 0x0, 0x8000, 0x101}})
r9 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r9, &(0x7f0000000480)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr-aes-neonbs-sync\x00'}, 0x58)
r10 = accept4(r9, 0x0, 0x0, 0x0)
io_setup(0x7, &(0x7f0000000000)=<r11=>0x0)
io_submit(r11, 0x1, &(0x7f00000002c0)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x0, r10, 0x0}])
syz_genetlink_get_family_id$nl80211(&(0x7f0000000400), r10)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000040)={0x14, 0x9, 0x6, 0x101, 0x0, 0x0, {0x7, 0x0, 0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x20000044}, 0x44000)

3.176041574s ago: executing program 4 (id=1116):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={0x24, 0x7, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0xc00e}, 0x20005014) (fail_nth: 2)

3.10253738s ago: executing program 4 (id=1117):
r0 = openat$vcsu(0xffffff9c, &(0x7f0000000080), 0x88080, 0x0)
ppoll(&(0x7f0000000200)=[{r0, 0x40}], 0x1, 0x0, 0x0, 0x0)
read$eventfd(r0, &(0x7f00000003c0), 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f00000040c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={r1, 0xe0, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa6, 0x0, 0x0, 0x0}}, 0x10)

3.102216361s ago: executing program 4 (id=1118):
r0 = syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2)
ioctl$vim2m_VIDIOC_STREAMOFF(r0, 0x40045612, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01040000000000000000010000020900010073797a30000000002c000000030a010200000000000000000100fffe0900010073797a30000000000900030073797a30130000007c000000060a010400000000000000000100000008000b400000000054000480400001800e000100696d6d6564696174650000002c0002800800014002000000040002801c0002801800028008000180fffffffc0900020073797a3000000000100001800a0001006c696d69740000000900010073797a30"], 0xf0}}, 0x0)
socket$netlink(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setscheduler(0x0, 0x3, &(0x7f0000000200)=0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000000680)="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", 0x2000, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/expire_quiescent_template\x00', 0x2, 0x0)
r4 = socket(0x10, 0x3, 0x0)
write(r4, &(0x7f0000000000)="240000001a005f0214f9f407000904001f00000000000001000a00000800040001000000", 0x24)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040))
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32, 0x0, 0xfe}, 0x9c)
bind$inet6(r5, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r6 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r6, 0x10e, 0xc, &(0x7f0000000040)={0x5}, 0x10)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000014c0)=@newsa={0x1a0, 0x10, 0x109, 0x0, 0x0, {{@in6=@private0, @in6=@loopback}, {@in, 0x0, 0x32}, @in6=@loopback, {}, {}, {}, 0x0, 0x0, 0xa, 0x0, 0x0, 0xaf}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @replay_esn_val={0x1c}, @algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}, 0x0, 0x8}}]}, 0x1a0}}, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)=@ipv6_getroute={0x1c, 0x1a, 0x401, 0x0, 0x0, {0x2, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000}}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendto$inet6(r5, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

2.357320354s ago: executing program 0 (id=1119):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000280), 0x6)
io_setup(0x5, &(0x7f00000002c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r0, &(0x7f0000000040)="0200ffff", 0x4, 0x0, 0x200000000000000, 0x2}])

2.356875363s ago: executing program 2 (id=1120):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, [@call={0x85, 0x0, 0x0, 0xe}, @printk={@ld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xfffffffe}, {0x85, 0x0, 0x0, 0x2d}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141a82, 0x0)
r2 = dup(r1)
r3 = open(&(0x7f0000000100)='./bus\x00', 0x40542, 0x0)
ftruncate(r3, 0xee72)
sendfile(r2, r3, 0x0, 0x8000fffffffe)
write$P9_RVERSION(r2, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r4, 0x8933, &(0x7f0000004700)={'team0\x00', <r6=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r4, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000047c0)={0x60, r5, 0x405, 0x70bd26, 0x25dfdbfe, {}, [{{0x8, 0x1, r6}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x7c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7, 0x0, 0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_EXPRESSIONS={0x38, 0x12, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @last={{0x9}, @val={0x4}}}, {0x10, 0x1, 0x0, 0x1, @last={{0x9}, @void}}, {0x10, 0x1, 0x0, 0x1, @counter={{0xc}, @void}}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x110}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xc4}}, 0x20050800)
ioctl$KVM_SET_CPUID2(r9, 0x4008ae90, &(0x7f0000000240)=ANY=[@ANYBLOB="01000000000000000100000000000000000000e80000000000000000ff"])
ioctl$KVM_SET_MSRS(r9, 0x4008ae89, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000008204"])
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000080)='fsi_master_acf_cmd_rel_addr\x00', r0, 0x0, 0x20}, 0x18)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r11, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="280000000201050000bc04000e80aea765848a2135f808000340000004024ea12460db080410f225e5cc9a4fdf690186a02b30166e"], 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x20008850)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000200)={<r12=>0xffffffffffffffff}, 0x106, 0x3}}, 0x20)
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r1, &(0x7f0000000340)={0x10, 0x30, 0xfa00, {&(0x7f0000000180), 0x4, {0xa, 0x4e23, 0x7, @private1, 0xc}, r12}}, 0x38)
r13 = socket$l2tp(0x2, 0x2, 0x73)
setsockopt$IP_VS_SO_SET_EDIT(r13, 0x0, 0x483, &(0x7f0000000040)={0x74, @remote, 0x4e20, 0x4, 'wlc\x00', 0x2, 0x0, 0x5c}, 0x2c)

2.290763641s ago: executing program 1 (id=1121):
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000000c0)={0x3, 0x4004, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
syz_io_uring_setup(0x10d, 0x0, 0x0, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="000000000000000000000080"], 0x125)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r2 = openat$binder_debug(0xffffff9c, &(0x7f0000000340)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
setsockopt$rose(r2, 0x104, 0x5, 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000020000000000000000000000850000000f0000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="3800000056000100000000f70000000007020000", @ANYRES32, @ANYBLOB="200001"], 0x38}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={0x0, r3}, 0x18)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
r5 = open(&(0x7f0000000040)='./file0\x00', 0x280500, 0x11)
mknodat$loop(r5, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
link(&(0x7f0000000200)='./file1\x00', &(0x7f0000000300)='./bus\x00')

2.161694916s ago: executing program 0 (id=1122):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r1, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r1, &(0x7f0000000040)={&(0x7f0000001340)=@hci={0x1f, 0x0, 0x2}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000740)="62042700590200000000002f1eafbcf706e12b30087f5c582d26116642c47a5f8786ee601e65ab3c06d4b8bf4a81cb3e247345af215542f41d80ac0010134fa54a0186cee8441e2305e495d04ad68ab8fef69df82de645bef7a447286737a525eef9fc6fbb48b63f60c8c9097be968ea872c4801e5d0711b4373c7224ed7a9cbd49d40f82bdb6afc0036824be26fc96e49a70e90797e6caa1b38ddacb3cb2b3eac7c068a185b644582f25edfa3d6a46e2a894ca809a422a6a29bd7145bb6e7992570484d6a710292ea0c34a7af9eab48f2ca2d74d9a4de33", 0xcc}, {&(0x7f0000000c00)="294f28dfe56d2c8ba23606bc7ecd1f634665cb5bed07bac5684da6eb21da1d6926910c5a0c653b0106869a804dd2a44ce42557b2e32e2bd367e9d01a5e7380cc4fc8e7c9044cc4115b978ca7427d749beaefdf2e48b369cb169ad7b1ced26bb161297c7e56a3e83e91b379c179017f8b4657d1b22eca6bca33036d33e1a684059c53cea91ca6637ac780ab2bcfc22a666cd4e5876f11e9aee4724b7cb59731c97e70ebd7f7483994eb07de2f3c6a9448c3206cff6d290b433f331c2399e99ee3bdecf5689eddc3e549966c1106a933bbc47b65ca6e9d7efbee6e3b1dbe87313111e85336d6890002db17751b6044f964dc90ea466f90856112be7f0a54b39a3f66cc4c39544300093158af39cdde429f50d8c750", 0xfe98}, {&(0x7f0000000080)="0a985d7879f1bbff16c7d66e33657e452299fd0ef8c2afda588eb05891b7da030e01452a7986bea19b59c98dc2996c0ea09604d00ea48336d0c813d83025aca8623a5915ddddce2c11c5e374f2e0f387d2398fe0b899ff60dc7a73addcf253cf32aafbe2b9f90799e7fc583bdd9b564697ba988080270bdceb4714219a2d4c229fffb0d86fb286e3553a8b3ac02badc66ada5fceabe5f63c79da96e641a45901128063d6e1e31b11bcfbc3e70bd3c8c6c0be9f653f977f16", 0xb8}, {&(0x7f0000000840)="6f4720baeb54", 0x6}], 0x4}, 0x0)
setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, 0x0, 0x0)

2.161279345s ago: executing program 0 (id=1123):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1d, 0x2, 0x6)
socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000780)={'vxcan1\x00', <r2=>0x0})
bind$can_j1939(r1, &(0x7f0000000040)={0x1d, r2, 0x3}, 0x18)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000280), r1)
syz_usb_connect$cdc_ncm(0x0, 0x0, 0x0, 0x0)
openat$dsp(0xffffffffffffff9c, 0x0, 0x42, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = dup(0xffffffffffffffff)
write$6lowpan_enable(r3, &(0x7f0000000340)='1', 0x1)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
mount$9p_virtio(0x0, 0x0, &(0x7f00000004c0), 0x14, &(0x7f00000007c0))
ioctl$KVM_IRQFD(r5, 0x4020ae76, &(0x7f00000000c0)={0xffffffffffffffff, 0x7, 0x2})
bind$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000800000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r6}, 0x10)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r3, 0x4010ae68, &(0x7f0000000300)={0xd5dd3000, 0x101000})
connect$llc(0xffffffffffffffff, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x8}, 0xd)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x14, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}}, @NFT_MSG_NEWRULE={0x44, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @cmp={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CMP_SREG={0x8, 0x1, 0x1, 0x0, 0x24}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xa0}}, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000140), r1)
r7 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r7, 0x8933, &(0x7f0000000100)={'vxcan0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@getchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r8}}, 0x24}}, 0x0)

1.981917331s ago: executing program 4 (id=1124):
r0 = openat$audio1(0xffffffffffffff9c, 0x0, 0x256f16877c8c0da9, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap$dsp(&(0x7f0000045000/0x1000)=nil, 0x1000, 0x1, 0x10, r0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ptrace$ARCH_SHSTK_UNLOCK(0x1e, r1, 0x3, 0x5004)
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$evdev(0x0, 0x4, 0x42)
r4 = io_uring_setup(0x4668, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1})
io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$EVIOCGPROP(0xffffffffffffffff, 0x40047438, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
writev(r0, 0x0, 0x0)
chdir(&(0x7f00000000c0)='./file0\x00')
mount$bpf(0x0, 0x0, 0x0, 0x1000, &(0x7f0000000480)={[], [{@euid_gt}]})

1.637492236s ago: executing program 2 (id=1125):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x2f, &(0x7f0000002580)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="140000002500010000000000f100000006"], 0x14}], 0x1, 0x0, 0x0, 0x400048c0}, 0x0)

1.636781649s ago: executing program 2 (id=1126):
r0 = syz_io_uring_setup(0x82e, &(0x7f0000000300)={0x0, 0x0, 0x2}, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0x3ff]}, 0x8, 0x80000) (async, rerun: 32)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.io_service_time\x00', 0x275a, 0x0) (async, rerun: 32)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='mounts\x00') (async)
openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f00000002c0), 0x100, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 64)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0) (rerun: 64)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r4 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r5=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_ATOMIC(r4, 0xc03864bc, &(0x7f0000000180)={0x500, 0x1, &(0x7f00000000c0)=[r5], &(0x7f0000000180), &(0x7f0000000200), &(0x7f0000000040)})
io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f0000000380)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1) (async)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r7 = openat$sysfs(0xffffff9c, &(0x7f0000000000)='/sys/power/pm_wakeup_irq', 0x81, 0x4)
getsockname$inet6(r7, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, &(0x7f0000000140)=0x1c) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xe, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) (async)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x20, 0x2, r6, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x23}}) (async)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100)) (async)
timer_settime(0x0, 0x0, &(0x7f0000000500)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) (async)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0) (async)
open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
open$dir(&(0x7f0000000140)='./file0\x00', 0x399041, 0x1) (async, rerun: 64)
r8 = socket$vsock_stream(0x28, 0x1, 0x0) (rerun: 64)
bind$vsock_stream(r8, &(0x7f0000000a80)={0x28, 0x0, 0x0, @local}, 0x10) (async)
listen(r8, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)

1.572551041s ago: executing program 2 (id=1127):
ioperm(0x0, 0x7, 0x5)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x14, 0x30, 0x1}, 0x14}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
socket$igmp(0x2, 0x3, 0x2)
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
pipe2(&(0x7f0000000300)={<r3=>0xffffffffffffffff}, 0x84000)
syz_genetlink_get_family_id$fou(&(0x7f0000000280), r3)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='autofs\x00', 0x26c02, &(0x7f0000001540)='\r\x87\x17^\x981\xd5\x14\xe2\x81\xa6\xcd\t\xa5\xbasG\x88\x7f]\x03\xf3\xd5t\x97\x9f\xee\"\xebU\xccM\x02\x17\x0f[\x9c\x9e\xa6\xd2\xe4(\xea\x7f\xe4\x90K\xcb\xb5;f\x02}\x147\x04=\xe50\x8d;\x90!\x01,\xdb,\xb9\x8e\t\x13\x1eh\xbc^<\xd2\x809G\xe6H\xbb&^\\\x9c\xady\xd9\xb5\xa3\x16\xd0\xdf\x1a\xaa\xfcHz\x89\x19\xe1\xe6+\xf6\xc3\xad\x80\x98\xc2\x10\x91\xec\xf6\x93=\xbe\x10\xfc`\x86\xa7\xe6\xae\x00*R\x92\x05\xf6\x80u\xf9\xb7S{\xd6\x99\x9a\xf3\xcc\x04o\xdd\x91 \x92;\x87\xfb\x82c>\x82VR8\xe5\x0f\xeb\xcdJz\f\xf5.\xd7!\xa1\xfe\xc8\xf0\xb5\\\xc2\xc7\xc7\xaa\xd9:\xa3+\x12\x9f\xfc\xf6@},`=\xea\x91\fJ\xe4\rC\xa9\xe0\x8b%\x9f\'\xbdX\xbfS\x00\x8c\x84\x10\xcf\xf0\xd7\xe0\xf9\xf8E\xa3?\x17\\\x9e\n\xa1h!\x9e\xd8\xe8\xa5\xc5\xbf_\xa7\xc9\x91U\x86=\xa5\xf7g~\xaa\xc8N\"^\x8e%')
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$netlink(0x10, 0x3, 0x0)
r4 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSRS485(r4, 0x5437, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
syz_open_dev$mouse(&(0x7f0000000180), 0x1, 0x84000)
r5 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=ANY=[@ANYBLOB="ee000000", @ANYRES16=0x0, @ANYBLOB="0100fdffffff000000000100000008000100", @ANYBLOB="400002803c0001"], 0x5c}, 0x1, 0xf000, 0x0, 0x8c1}, 0x20040)
sendmsg$netlink(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000300)=ANY=[], 0x118}], 0x1}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(r6, 0x0, 0x24008000)

1.355185649s ago: executing program 0 (id=1128):
mount$9p_tcp(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x20008045)
getsockname(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0xf, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9, 0x11e41e7a, 0x5, 0xfffffffc, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0xffffffffffffff2f, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0x21}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, r0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
r4 = openat$apparmor_task_exec(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$apparmor_exec(r4, &(0x7f0000000180)={'exec ', '\x00'}, 0x6)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="9c0000000001010400000000000000000a0000003c0001802c0001801400030000000000000000000000ffffac1414aa14000400ff0100000000000000000000000000010c00028005000100000000003c00d147971be231f0a902802c00018014000300ff02000000000000000000000000000114000400fe8000000000000000000000000000aa0c000280050001000000000008000740000000000800048004000380"], 0x9c}}, 0x0)
setsockopt$inet_tcp_int(r5, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r5, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f0000000140)={0x0, &(0x7f00000001c0)}, 0x8)
sendto$inet(r5, 0x0, 0x218, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r5, &(0x7f0000000fc0)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000001f80)="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", 0x1de}, {0x0}], 0x2}}], 0x1, 0x0)
sendto$inet(r5, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)

1.354979218s ago: executing program 1 (id=1129):
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file1\x00', &(0x7f0000000140), 0x2, &(0x7f0000002400)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000000200)={0x2020, 0x0, <r1=>0x0}, 0x2020)
open(&(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
write$FUSE_INIT(r0, &(0x7f0000002300)={0x50, 0x0, r1, {0x7, 0x9, 0x0, 0x31008003, 0xfffe}}, 0x50)
read$FUSE(r0, &(0x7f0000004580)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r0, &(0x7f0000002240)={0x10, 0xffffffffffffffda, r2}, 0x10)
r3 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
dup3(r3, r0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x6, 0x11, r4, 0x0)

1.337534679s ago: executing program 1 (id=1130):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000400)=0x6)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0xffd}, 0x2a, 0x0)
r3 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
io_submit(0x0, 0x1, &(0x7f0000001d00)=[&(0x7f0000001a80)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0}])
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
chdir(&(0x7f0000000000)='./file0/file0\x00')
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0xb, 0x28011, r4, 0x0)
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0x5ba8, 0xfffffffffffffffd)
keyctl$read(0xb, r3, &(0x7f0000000300)=""/94, 0x20e9dc05)

751.114268ms ago: executing program 4 (id=1131):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000300)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
mkdirat(r0, &(0x7f0000000440)='./bus\x00', 0x41)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000000c0)='./bus\x00')
rmdir(&(0x7f0000000040)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
munlockall()
r1 = socket(0x40000000015, 0x5, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/meminfo\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x28000023896)
ioctl$UI_DEV_DESTROY(r2, 0x5502)

697.603865ms ago: executing program 4 (id=1132):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
getsockopt$sock_int(r0, 0x28, 0x0, 0x0, 0x0)
r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_QBUF(r1, 0xc058560f, &(0x7f0000000300)=@userptr={0x6, 0x9, 0x4, 0x400, 0xa, {}, {0x3, 0xc, 0xf3, 0x4, 0x2f, 0x4, "6dcdc988"}, 0x6, 0x2, {0x0}, 0xe})
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000002c0)=ANY=[@ANYRESDEC, @ANYRES16], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0xc004743e, 0x20001400)
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x80047441, 0x20000000)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000120000000000000000000000850000006d000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='contention_end\x00', r2}, 0x10)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8b30, &(0x7f0000000040)={'wlan0\x00'})
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_NEW(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB="2c000000000701020000000000000000070000000c0002400000000000000009090001007379a85800000000"], 0x2c}}, 0x80)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
memfd_create(0x0, 0x2)
r6 = syz_open_procfs(0x0, &(0x7f0000000140)='smaps\x00')
pread64(r6, &(0x7f000001a240)=""/102400, 0x19000, 0x100008)
syz_open_dev$hidraw(&(0x7f0000000280), 0x0, 0x4a141)
syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
r7 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x802, 0x0)
write$UHID_CREATE2(r7, &(0x7f0000000780)=ANY=[@ANYBLOB="0b00000073797a300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a31000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000003629394704563fd1b6c451f3c1a92234d2e4c861640dd397f169e7a6960804c25712a66d5e4d8d97d2d37dfba62352bfd84ab796c849592d121158c0509ba33527cb906fba08996ac19c34c75cfecf835f9a6b70b4c1d1650bb17ae2d143911b566694edb6593b07c3f61b767d29aa76b903b0b09bf4aa9c3b4740c3a"], 0x119)
writev(r7, &(0x7f0000000300)=[{&(0x7f0000000140)='\n\x00\x00\x00', 0x4}, {&(0x7f00000003c0)='\v\x00\x00\x00', 0x4}], 0x2)
io_setup(0x6, &(0x7f0000001380))

23.286021ms ago: executing program 2 (id=1133):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
r2 = syz_open_dev$video4linux(&(0x7f0000000080), 0x2, 0x0)
ioctl$VIDIOC_QUERYMENU(r2, 0xc040564a, &(0x7f0000000140)={0x0, 0x1, @value=0x100f})
bind$vsock_stream(r1, &(0x7f0000000440), 0x10)
listen(r1, 0x0)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
setsockopt$sock_linger(r3, 0x1, 0xd, &(0x7f0000000100)={0x1, 0x5}, 0x8)
writev(r3, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x20000081}], 0x1)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc))
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0xfffffffe, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffe, 0x0, @void, @value, @void, @value}, 0x50)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000003000000850000008600000018110000", @ANYRES32=r4, @ANYRES64], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
socketpair(0x18, 0x0, 0x2, &(0x7f0000000000))
r7 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$USBDEVFS_FREE_STREAMS(r7, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02002303020007006000000002000020d3"])
sendmsg$NL80211_CMD_DEL_MPATH(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000480)={&(0x7f0000000340)={0x44, 0x0, 0x4, 0x70bd25, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x80}, 0x40)
dup2(r7, r3)
r8 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VIDIOC_QUERYBUF(r8, 0xc0585609, &(0x7f0000000240)=@multiplanar_mmap={0x7, 0x8, 0x4, 0x800, 0xd014, {}, {0x2, 0x2, 0x7, 0x12, 0xc, 0xa, "36211d01"}, 0x6, 0x1, {0x0}, 0x7})
timer_settime(0x0, 0x0, &(0x7f00000008c0)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
openat$sr(0xffffff9c, &(0x7f00000001c0), 0x14001, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x13, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000240)=<r9=>0x0)
timer_settime(r9, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x40000)
io_setup(0x206, &(0x7f0000000200))
close_range(r0, 0xffffffffffffffff, 0x0)

0s ago: executing program 1 (id=1134):
r0 = userfaultfd(0x801)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_int(r1, 0x6, 0x15, 0x0, &(0x7f0000000140))
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
ioctl$UFFDIO_CONTINUE(r0, 0xc020aa08, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$FUSE_INIT(r2, &(0x7f0000000400)={0x6f, 0x0, 0x0, {0x7, 0x28, 0x80000001, 0x0, 0x0, 0x0, 0x2, 0x1}}, 0xfffffede)
vmsplice(r2, &(0x7f0000000280)=[{&(0x7f0000000100)="fb02b4d565b90ba02a54fbac9774d719b7d63c19684eb8ca4b837a1a9cf1abcbb003253403d5d9f8aab9d310925e75b3ef53a0677606b53c8d952565208356a1", 0x40}, {&(0x7f00000001c0)="ab53d2ab3d6c13816cff16f249011398128c87d58fd00e7fa559b6", 0x1b}, {&(0x7f0000000240)="3a2c4ae13e7e79b3827b0cda424acdf23d4c257f8589fb423f48ea6e9c1b306f83f6b623eea7ed8c4bd177edbb7764b9069895c776", 0x35}], 0x3, 0x0)
r3 = openat$qat_adf_ctl(0xffffff9c, &(0x7f0000000040), 0x5d8ee6f546728e02, 0x0)
ioctl$IOCTL_GET_NUM_DEVICES(r3, 0x40046104, &(0x7f0000000180))
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r5, @ANYBLOB="3183d0000000000000001d0000000c000180080003"], 0x20}}, 0x0)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r3, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x34, r5, 0x20, 0x70bd28, 0x25dfdbff, {}, [@ETHTOOL_A_COALESCE_RX_USECS={0x8, 0x2, 0x6}, @ETHTOOL_A_COALESCE_USE_ADAPTIVE_RX={0x5}, @ETHTOOL_A_COALESCE_RX_MAX_FRAMES={0x8, 0x3, 0x80}, @ETHTOOL_A_COALESCE_RX_MAX_FRAMES_HIGH={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x80)
fcntl$setpipe(r2, 0x407, 0x2000000)

kernel console output (not intermixed with test programs):

0805][ T7250]  getname_flags+0x93/0xf0
[  423.950820][ T7250]  __ia32_sys_mkdir+0x51/0x80
[  423.950835][ T7250]  __do_fast_syscall_32+0x73/0x120
[  423.950860][ T7250]  do_fast_syscall_32+0x32/0x80
[  423.950883][ T7250]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  423.950911][ T7250] RIP: 0023:0xf740e579
[  423.950924][ T7250] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  423.950938][ T7250] RSP: 002b:00000000f509655c EFLAGS: 00000296 ORIG_RAX: 0000000000000027
[  423.950954][ T7250] RAX: ffffffffffffffda RBX: 0000000020000140 RCX: 0000000000000000
[  423.950965][ T7250] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  423.950974][ T7250] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  423.950983][ T7250] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  423.950993][ T7250] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  423.951013][ T7250]  </TASK>
[  423.965844][ T7249] o2cb: This node has not been configured.
[  424.145915][ T7249] o2cb: Cluster check failed. Fix errors before retrying.
[  424.149387][ T7249] (syz.0.361,7249,3):user_dlm_register:674 ERROR: status = -22
[  424.152630][ T7249] (syz.0.361,7249,3):dlmfs_mkdir:437 ERROR: Error -22 could not register domain "file0"
[  424.257747][ T7253] bad cache= option: none

[  424.257747][ T7253] 
[  424.260499][ T7253] CIFS: VFS: bad cache= option: none

[  424.674745][ T5998] Bluetooth: hci3: unexpected event for opcode 0x2040
[  424.824245][ T7267] Invalid logical block size (83886080)
[  425.745637][ T6032] usb 5-1: new full-speed USB device number 3 using dummy_hcd
[  425.808485][ T7282] netlink: 28 bytes leftover after parsing attributes in process `syz.3.373'.
[  425.812662][ T7282] netlink: 'syz.3.373': attribute type 5 has an invalid length.
[  425.817271][ T7282] netlink: 28 bytes leftover after parsing attributes in process `syz.3.373'.
[  425.830336][ T7282] netlink: 28 bytes leftover after parsing attributes in process `syz.3.373'.
[  425.843788][ T7282] netlink: 'syz.3.373': attribute type 5 has an invalid length.
[  425.862610][ T7282] netlink: 28 bytes leftover after parsing attributes in process `syz.3.373'.
[  425.962230][ T6032] usb 5-1: config 0 has an invalid interface number: 50 but max is 0
[  425.981422][ T6032] usb 5-1: config 0 has no interface number 0
[  425.986554][ T6032] usb 5-1: config 0 interface 50 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  425.995202][ T6032] usb 5-1: config 0 interface 50 altsetting 0 endpoint 0x82 has invalid maxpacket 1023, setting to 64
[  426.026651][ T6032] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[  426.036404][ T6032] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  426.049356][ T6032] usb 5-1: Product: syz
[  426.058673][ T6032] usb 5-1: Manufacturer: syz
[  426.060810][ T6032] usb 5-1: SerialNumber: syz
[  426.089983][ T6032] usb 5-1: config 0 descriptor??
[  426.113084][ T7279] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  426.124320][ T6032] yurex 5-1:0.50: USB YUREX device now attached to Yurex #0
[  426.149600][ T7286] netlink: 'syz.3.375': attribute type 1 has an invalid length.
[  426.153021][ T7286] netlink: 'syz.3.375': attribute type 1 has an invalid length.
[  426.353593][ T6032] usb 5-1: USB disconnect, device number 3
[  426.366412][ T6032] yurex 5-1:0.50: USB YUREX #0 now disconnected
[  427.043919][   T40] kauditd_printk_skb: 16 callbacks suppressed
[  427.043935][   T40] audit: type=1800 audit(1738519249.336:132): pid=7297 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.379" name="file1" dev="tmpfs" ino=613 res=0 errno=0
[  427.371556][ T7304] bridge1: entered promiscuous mode
[  427.374722][ T7305] netlink: 28 bytes leftover after parsing attributes in process `syz.0.382'.
[  427.401738][ T7305] netlink: 28 bytes leftover after parsing attributes in process `syz.0.382'.
[  427.404648][ T7304] bridge1: entered allmulticast mode
[  427.457669][ T7306] netlink: 28 bytes leftover after parsing attributes in process `syz.0.382'.
[  427.462874][ T7304] team0: Port device bridge1 added
[  427.921596][ T7323] ntfs3(nullb0): Primary boot signature is not NTFS.
[  427.946715][ T7323] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  428.485622][ T7333] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  428.690112][ T7344] warning: `syz.2.395' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  428.713025][ T7344] __nla_validate_parse: 3 callbacks suppressed
[  428.713041][ T7344] netlink: 24 bytes leftover after parsing attributes in process `syz.2.395'.
[  429.140473][ T6032] hid-generic 0000:0000:0000.0003: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  429.372304][ T7356] netlink: 4 bytes leftover after parsing attributes in process `syz.0.396'.
[  429.642245][ T7362] netlink: 28 bytes leftover after parsing attributes in process `syz.3.400'.
[  429.645736][ T7362] netlink: 60 bytes leftover after parsing attributes in process `syz.3.400'.
[  429.650281][ T7362] netlink: 28 bytes leftover after parsing attributes in process `syz.3.400'.
[  429.666177][ T7362] netlink: 60 bytes leftover after parsing attributes in process `syz.3.400'.
[  430.163182][ T7370] netlink: 28 bytes leftover after parsing attributes in process `syz.0.402'.
[  430.172087][ T7370] netlink: 44 bytes leftover after parsing attributes in process `syz.0.402'.
[  430.188842][ T7370] netlink: 28 bytes leftover after parsing attributes in process `syz.0.402'.
[  430.201241][ T7370] netlink: 44 bytes leftover after parsing attributes in process `syz.0.402'.
[  431.460776][ T7379] FAULT_INJECTION: forcing a failure.
[  431.460776][ T7379] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  431.484836][ T7379] CPU: 0 UID: 0 PID: 7379 Comm: syz.3.404 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[  431.484886][ T7379] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  431.484896][ T7379] Call Trace:
[  431.484902][ T7379]  <TASK>
[  431.484909][ T7379]  dump_stack_lvl+0x16c/0x1f0
[  431.484939][ T7379]  should_fail_ex+0x50a/0x650
[  431.484962][ T7379]  _copy_from_iter+0x29b/0x1400
[  431.484985][ T7379]  ? trace_lock_acquire+0x14e/0x1f0
[  431.485004][ T7379]  ? __pfx__copy_from_iter+0x10/0x10
[  431.485025][ T7379]  ? __virt_addr_valid+0x1a4/0x590
[  431.485044][ T7379]  ? __virt_addr_valid+0x5e/0x590
[  431.485058][ T7379]  ? __phys_addr_symbol+0x30/0x80
[  431.485083][ T7379]  ? __check_object_size+0x488/0x710
[  431.485106][ T7379]  netlink_sendmsg+0x813/0xd70
[  431.485138][ T7379]  ? __pfx_netlink_sendmsg+0x10/0x10
[  431.485187][ T7379]  ____sys_sendmsg+0x9ae/0xb40
[  431.485212][ T7379]  ? __pfx_____sys_sendmsg+0x10/0x10
[  431.485232][ T7379]  ? get_compat_msghdr+0x11b/0x170
[  431.485262][ T7379]  ___sys_sendmsg+0x135/0x1e0
[  431.485280][ T7379]  ? __pfx____sys_sendmsg+0x10/0x10
[  431.485305][ T7379]  ? __pfx_lock_release+0x10/0x10
[  431.485323][ T7379]  ? trace_lock_acquire+0x14e/0x1f0
[  431.485346][ T7379]  ? __fget_files+0x206/0x3a0
[  431.485370][ T7379]  __sys_sendmsg+0x16e/0x220
[  431.485386][ T7379]  ? __pfx___sys_sendmsg+0x10/0x10
[  431.485402][ T7379]  ? ksys_write+0x17f/0x250
[  431.485432][ T7379]  __do_fast_syscall_32+0x73/0x120
[  431.485458][ T7379]  do_fast_syscall_32+0x32/0x80
[  431.485482][ T7379]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  431.485508][ T7379] RIP: 0023:0xf740e579
[  431.485521][ T7379] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  431.485536][ T7379] RSP: 002b:00000000f509655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  431.485554][ T7379] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200001c0
[  431.485564][ T7379] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  431.485574][ T7379] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  431.485582][ T7379] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  431.485592][ T7379] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  431.485612][ T7379]  </TASK>
[  434.149674][ T7409] netlink: 'syz.0.413': attribute type 29 has an invalid length.
[  434.152626][ T7406] __nla_validate_parse: 6 callbacks suppressed
[  434.152641][ T7406] netlink: 196 bytes leftover after parsing attributes in process `syz.3.410'.
[  434.153360][ T7409] netlink: 8 bytes leftover after parsing attributes in process `syz.0.413'.
[  434.187197][ T7409] netlink: 'syz.0.413': attribute type 29 has an invalid length.
[  434.190110][ T7409] netlink: 8 bytes leftover after parsing attributes in process `syz.0.413'.
[  435.512361][ T7425] netdevsim netdevsim3 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  435.515937][ T7430] netlink: 28 bytes leftover after parsing attributes in process `syz.0.420'.
[  435.545849][ T7425] netdevsim netdevsim3 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  435.545916][ T7425] netdevsim netdevsim3 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  435.545937][ T7425] netdevsim netdevsim3 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  435.587476][ T7430] netlink: 44 bytes leftover after parsing attributes in process `syz.0.420'.
[  435.587918][ T7433] netlink: 28 bytes leftover after parsing attributes in process `syz.0.420'.
[  435.599381][ T7433] netlink: 44 bytes leftover after parsing attributes in process `syz.0.420'.
[  435.622164][ T7425] netdevsim netdevsim3 netdevsim0: unset [1, 1] type 2 family 0 port 20000 - 0
[  435.628058][ T7425] netdevsim netdevsim3 netdevsim1: unset [1, 1] type 2 family 0 port 20000 - 0
[  435.634389][ T7425] netdevsim netdevsim3 netdevsim2: unset [1, 1] type 2 family 0 port 20000 - 0
[  435.656706][ T7425] netdevsim netdevsim3 netdevsim3: unset [1, 1] type 2 family 0 port 20000 - 0
[  435.678435][ T7425] geneve2: entered promiscuous mode
[  435.681222][ T7425] geneve2: entered allmulticast mode
[  436.040412][ T7439] netlink: 28 bytes leftover after parsing attributes in process `syz.2.423'.
[  436.043978][ T7439] netlink: 'syz.2.423': attribute type 7 has an invalid length.
[  436.046897][ T7439] netlink: 'syz.2.423': attribute type 8 has an invalid length.
[  436.064691][ T7439] netlink: 4 bytes leftover after parsing attributes in process `syz.2.423'.
[  436.070535][ T7439] netlink: 28 bytes leftover after parsing attributes in process `syz.2.423'.
[  436.075332][ T7439] netlink: 'syz.2.423': attribute type 7 has an invalid length.
[  436.080996][ T7439] netlink: 'syz.2.423': attribute type 8 has an invalid length.
[  436.263006][ T7444] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  436.571304][ T6637] usb 8-1: new full-speed USB device number 5 using dummy_hcd
[  436.741331][ T6637] usb 8-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  436.747427][ T6637] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84
[  436.756977][ T6637] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  436.762539][ T6637] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  436.771183][ T6637] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  436.781202][ T6637] usb 8-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[  436.788692][ T6637] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  436.793023][ T6637] usb 8-1: Product: syz
[  436.795669][ T6637] usb 8-1: Manufacturer: syz
[  436.798236][ T6637] usb 8-1: SerialNumber: syz
[  436.802624][ T6637] usb 8-1: config 0 descriptor??
[  436.834006][ T6637] input: KB Gear Tablet as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input8
[  437.177197][   T40] audit: type=1800 audit(1738519259.476:133): pid=7463 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.427" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  437.200459][ T7460] netlink: 'syz.1.431': attribute type 10 has an invalid length.
[  437.206889][ T7460] bridge0: port 2(bridge_slave_1) entered disabled state
[  437.222808][ T7460] bridge0: port 1(bridge_slave_0) entered disabled state
[  437.336562][ T7460] bridge0: port 2(bridge_slave_1) entered blocking state
[  437.340780][ T7460] bridge0: port 2(bridge_slave_1) entered forwarding state
[  437.346776][ T7460] bridge0: port 1(bridge_slave_0) entered blocking state
[  437.353721][ T7460] bridge0: port 1(bridge_slave_0) entered forwarding state
[  437.354423][ T7465] netlink: 'syz.0.432': attribute type 7 has an invalid length.
[  437.361712][ T7465] netlink: 'syz.0.432': attribute type 8 has an invalid length.
[  437.385479][ T7460] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  437.422398][ T7466] netlink: 'syz.0.432': attribute type 7 has an invalid length.
[  437.794700][ T7474] syz.2.435 uses obsolete (PF_INET,SOCK_PACKET)
[  438.682821][ T7494] openvswitch: netlink: IP tunnel TTL not specified.
[  439.245273][ T7502] __nla_validate_parse: 22 callbacks suppressed
[  439.245288][ T7502] netlink: 196 bytes leftover after parsing attributes in process `syz.2.440'.
[  439.455104][ T1412] ieee802154 phy0 wpan0: encryption failed: -22
[  439.457407][ T1412] ieee802154 phy1 wpan1: encryption failed: -22
[  439.687073][ T6057] usb 8-1: USB disconnect, device number 5
[  440.166166][ T7512] netlink: 28 bytes leftover after parsing attributes in process `syz.2.447'.
[  440.169533][ T7512] netlink: 44 bytes leftover after parsing attributes in process `syz.2.447'.
[  440.174465][ T7512] netlink: 28 bytes leftover after parsing attributes in process `syz.2.447'.
[  440.191297][ T7512] netlink: 44 bytes leftover after parsing attributes in process `syz.2.447'.
[  440.369376][ T7516] netlink: 28 bytes leftover after parsing attributes in process `syz.2.449'.
[  440.414576][ T7516] netlink: 36 bytes leftover after parsing attributes in process `syz.2.449'.
[  440.461584][ T7517] netlink: 28 bytes leftover after parsing attributes in process `syz.2.449'.
[  440.479623][ T7517] netlink: 36 bytes leftover after parsing attributes in process `syz.2.449'.
[  441.837764][ T7539] netlink: 28 bytes leftover after parsing attributes in process `syz.0.457'.
[  442.298572][ T7554] overlayfs: failed to resolve './file1/file0': -2
[  442.312599][ T7554] tmpfs: Bad value for 'size'
[  442.314974][ T7552] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  442.344656][    C2] vkms_vblank_simulate: vblank timer overrun
[  442.566080][   T40] audit: type=1326 audit(1738519264.826:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7561 comm="syz.1.467" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0xffff0000
[  443.005159][    C2] vkms_vblank_simulate: vblank timer overrun
[  443.293435][ T5980] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  443.494694][ T5980] usb 5-1: device descriptor read/64, error -71
[  443.965148][ T7577] trusted_key: encrypted_key: master key parameter 'default|¾ãŽ¤ìý¤òuUë' is invalid
[  444.023726][ T5980] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  444.174674][ T5980] usb 5-1: device descriptor read/64, error -71
[  444.294951][ T5980] usb usb5-port1: attempt power cycle
[  444.685548][ T7579] capability: warning: `syz.2.473' uses 32-bit capabilities (legacy support in use)
[  444.736508][ T5980] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  444.758102][ T5980] usb 5-1: device descriptor read/8, error -71
[  444.902678][ T7584] __nla_validate_parse: 11 callbacks suppressed
[  444.902696][ T7584] netlink: 24 bytes leftover after parsing attributes in process `syz.3.474'.
[  445.037719][ T5980] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  445.060654][ T5980] usb 5-1: device descriptor read/8, error -71
[  445.133524][ T7591] nvme_fabrics: missing parameter 'transport=%s'
[  445.137603][ T7591] nvme_fabrics: missing parameter 'nqn=%s'
[  445.175042][ T5980] usb usb5-port1: unable to enumerate USB device
[  445.683969][ T7600] netlink: 112 bytes leftover after parsing attributes in process `syz.0.479'.
[  445.869114][    C2] vkms_vblank_simulate: vblank timer overrun
[  445.962451][ T7608] netlink: 4 bytes leftover after parsing attributes in process `syz.0.483'.
[  446.005624][ T7608] netlink: 4 bytes leftover after parsing attributes in process `syz.0.483'.
[  446.010505][ T7608] netlink: 4 bytes leftover after parsing attributes in process `syz.0.483'.
[  446.368618][ T7622] netlink: 112 bytes leftover after parsing attributes in process `syz.3.489'.
[  446.444181][ T7623] [U] 
[  447.010266][ T7631] 9pnet_fd: Insufficient options for proto=fd
[  447.118530][ T7635] netlink: 12 bytes leftover after parsing attributes in process `syz.1.494'.
[  447.128020][   T40] audit: type=1326 audit(1738519269.426:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7634 comm="syz.1.494" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000
[  447.138246][   T40] audit: type=1326 audit(1738519269.436:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7634 comm="syz.1.494" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000
[  447.164697][   T40] audit: type=1326 audit(1738519269.436:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7634 comm="syz.1.494" exe="/syz-executor" sig=0 arch=40000003 syscall=77 compat=1 ip=0xf7f85579 code=0x7ffc0000
[  447.185516][   T40] audit: type=1326 audit(1738519269.436:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7634 comm="syz.1.494" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000
[  447.187435][    C2] vkms_vblank_simulate: vblank timer overrun
[  447.203811][   T40] audit: type=1326 audit(1738519269.436:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7634 comm="syz.1.494" exe="/syz-executor" sig=0 arch=40000003 syscall=365 compat=1 ip=0xf7f85579 code=0x7ffc0000
[  447.203848][   T40] audit: type=1326 audit(1738519269.436:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7634 comm="syz.1.494" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000
[  447.203875][   T40] audit: type=1326 audit(1738519269.436:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7634 comm="syz.1.494" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000
[  447.288138][    C2] vkms_vblank_simulate: vblank timer overrun
[  447.700074][ T7654] netlink: 28 bytes leftover after parsing attributes in process `syz.0.500'.
[  447.704047][ T7654] netlink: 44 bytes leftover after parsing attributes in process `syz.0.500'.
[  447.719872][ T7654] netlink: 28 bytes leftover after parsing attributes in process `syz.0.500'.
[  447.786648][ T7657] validate_nla: 1 callbacks suppressed
[  447.786667][ T7657] netlink: 'syz.0.501': attribute type 7 has an invalid length.
[  447.803574][ T7657] netlink: 'syz.0.501': attribute type 8 has an invalid length.
[  447.812819][ T7657] netlink: 'syz.0.501': attribute type 7 has an invalid length.
[  447.824186][ T7657] netlink: 'syz.0.501': attribute type 8 has an invalid length.
[  448.281280][    C2] vkms_vblank_simulate: vblank timer overrun
[  448.507887][    C2] vkms_vblank_simulate: vblank timer overrun
[  448.736671][ T7679] netlink: 'syz.0.510': attribute type 7 has an invalid length.
[  448.739810][ T7679] netlink: 'syz.0.510': attribute type 8 has an invalid length.
[  448.744198][ T7679] netlink: 'syz.0.510': attribute type 7 has an invalid length.
[  448.749024][ T7679] netlink: 'syz.0.510': attribute type 8 has an invalid length.
[  448.982101][    C2] vkms_vblank_simulate: vblank timer overrun
[  449.479531][ T7699] befs: (nullb0): No write support. Marking filesystem read-only
[  449.484160][ T7699] befs: (nullb0): invalid magic header
[  450.291506][ T7725] netlink: 'syz.3.525': attribute type 2 has an invalid length.
[  450.295359][ T7725] netlink: 'syz.3.525': attribute type 1 has an invalid length.
[  450.315770][ T7725] __nla_validate_parse: 21 callbacks suppressed
[  450.315789][ T7725] netlink: 112860 bytes leftover after parsing attributes in process `syz.3.525'.
[  450.357388][ T7725] nbd: couldn't find device at index 1568768
[  450.388825][ T7729] netlink: 28 bytes leftover after parsing attributes in process `syz.1.528'.
[  450.393428][ T7729] netlink: 36 bytes leftover after parsing attributes in process `syz.1.528'.
[  450.399245][ T7729] netlink: 28 bytes leftover after parsing attributes in process `syz.1.528'.
[  450.402518][ T7729] netlink: 36 bytes leftover after parsing attributes in process `syz.1.528'.
[  450.739779][ T7738] netlink: 112 bytes leftover after parsing attributes in process `syz.1.532'.
[  451.017122][    C2] vkms_vblank_simulate: vblank timer overrun
[  451.061076][    C2] vkms_vblank_simulate: vblank timer overrun
[  451.215370][ T7753] netlink: 28 bytes leftover after parsing attributes in process `syz.2.538'.
[  451.219255][ T7753] netlink: 36 bytes leftover after parsing attributes in process `syz.2.538'.
[  451.223889][ T7753] netlink: 28 bytes leftover after parsing attributes in process `syz.2.538'.
[  451.238554][ T7753] netlink: 36 bytes leftover after parsing attributes in process `syz.2.538'.
[  451.241066][    C2] vkms_vblank_simulate: vblank timer overrun
[  451.686935][    C2] vkms_vblank_simulate: vblank timer overrun
[  451.893023][    C2] vkms_vblank_simulate: vblank timer overrun
[  452.625071][    C2] vkms_vblank_simulate: vblank timer overrun
[  453.984319][    C2] vkms_vblank_simulate: vblank timer overrun
[  456.398610][ T7762] __nla_validate_parse: 5 callbacks suppressed
[  456.398625][ T7762] netlink: 8 bytes leftover after parsing attributes in process `syz.3.534'.
[  456.554589][ T6205] Bluetooth: hci4: Frame reassembly failed (-84)
[  456.649404][ T7785] netlink: 40 bytes leftover after parsing attributes in process `syz.2.547'.
[  456.661744][ T7785] netlink: 24 bytes leftover after parsing attributes in process `syz.2.547'.
[  456.914397][ T7792] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  456.935599][ T7789] netlink: 8 bytes leftover after parsing attributes in process `syz.3.550'.
[  456.944751][ T7789] netlink: 8 bytes leftover after parsing attributes in process `syz.3.550'.
[  456.964359][ T7789] netdevsim netdevsim3 netdevsim0: set [1, 1] type 2 family 0 port 20003 - 0
[  456.967949][ T7789] netdevsim netdevsim3 netdevsim1: set [1, 1] type 2 family 0 port 20003 - 0
[  456.973555][ T7789] netdevsim netdevsim3 netdevsim2: set [1, 1] type 2 family 0 port 20003 - 0
[  456.979134][ T7789] netdevsim netdevsim3 netdevsim3: set [1, 1] type 2 family 0 port 20003 - 0
[  457.173207][ T7798] netlink: 28 bytes leftover after parsing attributes in process `syz.3.554'.
[  457.182754][ T7800] validate_nla: 1 callbacks suppressed
[  457.182770][ T7800] netlink: 'syz.1.555': attribute type 5 has an invalid length.
[  457.189264][ T7798] netlink: 60 bytes leftover after parsing attributes in process `syz.3.554'.
[  457.203536][ T7798] netlink: 28 bytes leftover after parsing attributes in process `syz.3.554'.
[  457.207531][ T7798] netlink: 60 bytes leftover after parsing attributes in process `syz.3.554'.
[  457.834251][ T7815] fuse: Bad value for 'user_id'
[  457.836900][ T7815] fuse: Bad value for 'user_id'
[  458.438436][ T7824] netlink: 168 bytes leftover after parsing attributes in process `syz.2.562'.
[  458.634708][ T5998] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  458.635997][   T66] Bluetooth: hci4: command 0x1003 tx timeout
[  458.831351][ T7842] netlink: 'syz.1.566': attribute type 7 has an invalid length.
[  458.834785][ T7842] netlink: 'syz.1.566': attribute type 8 has an invalid length.
[  458.903159][ T7847] netlink: 'syz.1.566': attribute type 7 has an invalid length.
[  458.906219][ T7847] netlink: 'syz.1.566': attribute type 8 has an invalid length.
[  459.165418][ T7857] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  459.324739][   T40] audit: type=1326 audit(1738519281.596:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7856 comm="syz.3.569" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000
[  459.332318][   T40] audit: type=1326 audit(1738519281.596:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7856 comm="syz.3.569" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000
[  459.402783][   T40] audit: type=1326 audit(1738519281.696:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7856 comm="syz.3.569" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf740e579 code=0x7ffc0000
[  459.421488][   T40] audit: type=1326 audit(1738519281.696:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7856 comm="syz.3.569" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000
[  459.499604][   T40] audit: type=1326 audit(1738519281.696:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7856 comm="syz.3.569" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000
[  459.562016][   T40] audit: type=1326 audit(1738519281.716:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7856 comm="syz.3.569" exe="/syz-executor" sig=0 arch=40000003 syscall=362 compat=1 ip=0xf740e579 code=0x7ffc0000
[  459.588544][   T40] audit: type=1326 audit(1738519281.716:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7856 comm="syz.3.569" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000
[  459.620975][   T40] audit: type=1326 audit(1738519281.716:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7856 comm="syz.3.569" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000
[  459.648954][   T40] audit: type=1326 audit(1738519281.716:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7856 comm="syz.3.569" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf740e579 code=0x7ffc0000
[  459.672088][   T40] audit: type=1326 audit(1738519281.716:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7856 comm="syz.3.569" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000
[  459.830756][ T7878] 9pnet_virtio: no channels available for device syz
[  459.965738][ T7881] syz.3.571 (7881): /proc/7879/oom_adj is deprecated, please use /proc/7879/oom_score_adj instead.
[  459.991628][ T7881] netlink: 'syz.3.571': attribute type 5 has an invalid length.
[  461.025848][ T6034] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  461.388871][ T7921] FAULT_INJECTION: forcing a failure.
[  461.388871][ T7921] name failslab, interval 1, probability 0, space 0, times 0
[  461.437259][ T7921] CPU: 1 UID: 0 PID: 7921 Comm: syz.3.579 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[  461.437283][ T7921] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  461.437292][ T7921] Call Trace:
[  461.437297][ T7921]  <TASK>
[  461.437304][ T7921]  dump_stack_lvl+0x16c/0x1f0
[  461.437331][ T7921]  should_fail_ex+0x50a/0x650
[  461.437348][ T7921]  ? fs_reclaim_acquire+0xae/0x150
[  461.437371][ T7921]  should_failslab+0xc2/0x120
[  461.437388][ T7921]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  461.437404][ T7921]  ? make_vfsuid+0xf1/0x140
[  461.437421][ T7921]  ? alloc_empty_file+0x73/0x1e0
[  461.437442][ T7921]  alloc_empty_file+0x73/0x1e0
[  461.437461][ T7921]  dentry_open+0x46/0xd0
[  461.437479][ T7921]  ovl_path_open+0x198/0x1f0
[  461.437496][ T7921]  ovl_copy_up_metadata+0x75a/0x890
[  461.437514][ T7921]  ? __pfx_ovl_copy_up_metadata+0x10/0x10
[  461.437534][ T7921]  ? down_write_nested+0x152/0x210
[  461.437554][ T7921]  ? __pfx_down_write_nested+0x10/0x10
[  461.437574][ T7921]  ? ovl_create_real+0x1c5/0x680
[  461.437593][ T7921]  ? ovl_copy_up_one+0xd26/0x38d0
[  461.437611][ T7921]  ? lock_two_directories+0x225/0x2d0
[  461.437633][ T7921]  ovl_copy_up_one+0x2364/0x38d0
[  461.437649][ T7921]  ? hlock_class+0x4e/0x130
[  461.437669][ T7921]  ? mark_lock+0xb5/0xc60
[  461.437692][ T7921]  ? __pfx_ovl_copy_up_one+0x10/0x10
[  461.437707][ T7921]  ? __pfx_mark_lock+0x10/0x10
[  461.437724][ T7921]  ? hlock_class+0x4e/0x130
[  461.437748][ T7921]  ? hlock_class+0x4e/0x130
[  461.437807][ T7921]  ? do_raw_spin_unlock+0x172/0x230
[  461.437835][ T7921]  ovl_copy_up_flags+0x18d/0x200
[  461.437855][ T7921]  ovl_tmpfile+0x182/0x7c0
[  461.437875][ T7921]  ? lock_acquire+0x2f/0xb0
[  461.437891][ T7921]  ? __pfx_ovl_tmpfile+0x10/0x10
[  461.437910][ T7921]  ? do_raw_spin_unlock+0x172/0x230
[  461.437929][ T7921]  ? _raw_spin_unlock+0x28/0x50
[  461.437950][ T7921]  vfs_tmpfile+0x2bd/0x8a0
[  461.437969][ T7921]  path_openat+0x16e8/0x2d80
[  461.437982][ T7921]  ? hlock_class+0x4e/0x130
[  461.438001][ T7921]  ? __lock_acquire+0x15a9/0x3c40
[  461.438025][ T7921]  ? __pfx_path_openat+0x10/0x10
[  461.438039][ T7921]  ? __pfx___lock_acquire+0x10/0x10
[  461.438053][ T7921]  ? lock_acquire.part.0+0x11b/0x380
[  461.438068][ T7921]  ? find_held_lock+0x2d/0x110
[  461.438090][ T7921]  do_filp_open+0x20c/0x470
[  461.438105][ T7921]  ? __pfx_do_filp_open+0x10/0x10
[  461.438117][ T7921]  ? find_held_lock+0x2d/0x110
[  461.438152][ T7921]  ? alloc_fd+0x41f/0x760
[  461.438172][ T7921]  do_sys_openat2+0x17a/0x1e0
[  461.438189][ T7921]  ? __pfx_do_sys_openat2+0x10/0x10
[  461.438208][ T7921]  ? __fget_files+0x206/0x3a0
[  461.438226][ T7921]  __ia32_compat_sys_openat+0x16e/0x210
[  461.438245][ T7921]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  461.438262][ T7921]  ? ksys_write+0x1ba/0x250
[  461.438283][ T7921]  __do_fast_syscall_32+0x73/0x120
[  461.438305][ T7921]  do_fast_syscall_32+0x32/0x80
[  461.438326][ T7921]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  461.438347][ T7921] RIP: 0023:0xf740e579
[  461.438358][ T7921] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  461.438370][ T7921] RSP: 002b:00000000f509655c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[  461.438384][ T7921] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000020000280
[  461.438392][ T7921] RDX: 0000000000513802 RSI: 0000000000000000 RDI: 0000000000000000
[  461.438400][ T7921] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  461.438408][ T7921] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  461.438415][ T7921] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  461.438434][ T7921]  </TASK>
[  461.890561][ T7925] afs: Unknown parameter '/dev/audio1'
[  461.986859][ T5998] Bluetooth: hci1: command 0x0406 tx timeout
[  471.602626][ T7979] __nla_validate_parse: 12 callbacks suppressed
[  471.602644][ T7979] netlink: 8 bytes leftover after parsing attributes in process `syz.0.586'.
[  471.679687][ T7976] bridge0: port 2(bridge_slave_1) entered disabled state
[  471.682438][ T7976] bridge0: port 1(bridge_slave_0) entered disabled state
[  471.725024][ T7976] batman_adv: batadv0: Interface deactivated: dummy0
[  471.767465][ T7981] netlink: 'syz.2.584': attribute type 9 has an invalid length.
[  471.892216][ T7976] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  471.906772][ T7976] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  472.177998][ T7976] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  472.182017][ T7976] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  472.186166][ T7976] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  472.193089][ T7976] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  472.598591][ T7987] netlink: 28 bytes leftover after parsing attributes in process `syz.3.588'.
[  472.602371][ T7987] netlink: 52 bytes leftover after parsing attributes in process `syz.3.588'.
[  472.622098][ T7987] netlink: 28 bytes leftover after parsing attributes in process `syz.3.588'.
[  472.626007][ T7987] netlink: 52 bytes leftover after parsing attributes in process `syz.3.588'.
[  472.643011][ T7989] netlink: 'syz.0.589': attribute type 3 has an invalid length.
[  472.722712][   T40] kauditd_printk_skb: 10 callbacks suppressed
[  472.722731][   T40] audit: type=1800 audit(1738519295.016:162): pid=7993 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.591" name="file1" dev="tmpfs" ino=867 res=0 errno=0
[  473.128151][ T1451] hid-generic 00A0:0006:0003.0004: unknown main item tag 0x7
[  473.131101][ T1451] hid-generic 00A0:0006:0003.0004: unknown main item tag 0x0
[  473.133934][ T1451] hid-generic 00A0:0006:0003.0004: unknown main item tag 0x0
[  473.137439][ T1451] hid-generic 00A0:0006:0003.0004: unknown main item tag 0x0
[  473.140305][ T1451] hid-generic 00A0:0006:0003.0004: unknown main item tag 0x0
[  473.142795][ T1451] hid-generic 00A0:0006:0003.0004: unknown main item tag 0x0
[  473.145478][ T1451] hid-generic 00A0:0006:0003.0004: unknown main item tag 0x0
[  473.153222][ T1451] hid-generic 00A0:0006:0003.0004: hidraw1: <UNKNOWN> HID v0.05 Device [syz1] on syz0
[  473.956852][    C2] vkms_vblank_simulate: vblank timer overrun
[  474.389027][ T1451] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  474.673184][ T1451] usb 6-1: Using ep0 maxpacket: 8
[  474.732229][ T1451] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  474.760280][ T1451] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  474.764092][ T1451] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  474.778575][ T1451] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  474.782048][ T1451] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  474.796101][ T1451] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  474.800547][ T1451] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  475.051757][ T1451] usb 6-1: usb_control_msg returned -32
[  475.071572][ T1451] usbtmc 6-1:16.0: can't read capabilities
[  475.147483][ T8039] netlink: 28 bytes leftover after parsing attributes in process `syz.3.601'.
[  475.152307][ T8039] netlink: 36 bytes leftover after parsing attributes in process `syz.3.601'.
[  475.168623][ T8039] netlink: 28 bytes leftover after parsing attributes in process `syz.3.601'.
[  475.181449][ T8039] netlink: 36 bytes leftover after parsing attributes in process `syz.3.601'.
[  475.409101][ T8050] usbtmc 6-1:16.0: usb_control_msg returned -32
[  475.413528][ T1451] usb 6-1: USB disconnect, device number 3
[  475.545298][ T8054] random: crng reseeded on system resumption
[  475.770797][ T8056] netlink: 112 bytes leftover after parsing attributes in process `syz.2.604'.
[  475.991215][    C2] vkms_vblank_simulate: vblank timer overrun
[  476.332843][    C2] vkms_vblank_simulate: vblank timer overrun
[  476.613191][ T8072] FAULT_INJECTION: forcing a failure.
[  476.613191][ T8072] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  476.634885][ T8072] CPU: 0 UID: 0 PID: 8072 Comm: syz.0.610 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[  476.634935][ T8072] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  476.634944][ T8072] Call Trace:
[  476.634949][ T8072]  <TASK>
[  476.634956][ T8072]  dump_stack_lvl+0x16c/0x1f0
[  476.634983][ T8072]  should_fail_ex+0x50a/0x650
[  476.635005][ T8072]  _copy_from_user+0x2e/0xd0
[  476.635026][ T8072]  get_compat_msghdr+0xa8/0x170
[  476.635046][ T8072]  ? __pfx_get_compat_msghdr+0x10/0x10
[  476.635071][ T8072]  ___sys_sendmsg+0x1b0/0x1e0
[  476.635088][ T8072]  ? __pfx____sys_sendmsg+0x10/0x10
[  476.635109][ T8072]  ? __pfx_lock_release+0x10/0x10
[  476.635126][ T8072]  ? trace_lock_acquire+0x14e/0x1f0
[  476.635147][ T8072]  ? __fget_files+0x206/0x3a0
[  476.635170][ T8072]  __sys_sendmsg+0x16e/0x220
[  476.635186][ T8072]  ? __pfx___sys_sendmsg+0x10/0x10
[  476.635215][ T8072]  __do_fast_syscall_32+0x73/0x120
[  476.635267][ T8072]  do_fast_syscall_32+0x32/0x80
[  476.635290][ T8072]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  476.635315][ T8072] RIP: 0023:0xf7f47579
[  476.635328][ T8072] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  476.635343][ T8072] RSP: 002b:00000000f506655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  476.635359][ T8072] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000000
[  476.635374][ T8072] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000000
[  476.635383][ T8072] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  476.635392][ T8072] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  476.635400][ T8072] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  476.635419][ T8072]  </TASK>
[  477.901641][ T8082] __nla_validate_parse: 1 callbacks suppressed
[  477.901657][ T8082] netlink: 112 bytes leftover after parsing attributes in process `syz.0.613'.
[  477.916347][ T8082] netlink: 112 bytes leftover after parsing attributes in process `syz.0.613'.
[  478.087376][ T8084] 9pnet_virtio: no channels available for device syz
[  478.122267][    C2] vkms_vblank_simulate: vblank timer overrun
[  478.225521][ T8085] block device autoloading is deprecated and will be removed.
[  478.372546][ T8087] kAFS: No cell specified
[  478.376811][    C2] vkms_vblank_simulate: vblank timer overrun
[  478.602693][ T8090] netlink: 28 bytes leftover after parsing attributes in process `syz.0.616'.
[  478.607773][ T8090] netlink: 60 bytes leftover after parsing attributes in process `syz.0.616'.
[  478.614410][ T8090] netlink: 28 bytes leftover after parsing attributes in process `syz.0.616'.
[  478.619971][ T8090] netlink: 60 bytes leftover after parsing attributes in process `syz.0.616'.
[  478.923236][ T8095] --map-set only usable from mangle table
[  478.962174][    C2] vkms_vblank_simulate: vblank timer overrun
[  479.124898][    C2] vkms_vblank_simulate: vblank timer overrun
[  479.261151][    C2] vkms_vblank_simulate: vblank timer overrun
[  479.311813][ T8100] FAULT_INJECTION: forcing a failure.
[  479.311813][ T8100] name failslab, interval 1, probability 0, space 0, times 0
[  479.357558][ T8100] CPU: 3 UID: 0 PID: 8100 Comm: syz.0.619 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[  479.357586][ T8100] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  479.357595][ T8100] Call Trace:
[  479.357600][ T8100]  <TASK>
[  479.357607][ T8100]  dump_stack_lvl+0x16c/0x1f0
[  479.357633][ T8100]  should_fail_ex+0x50a/0x650
[  479.357650][ T8100]  ? fs_reclaim_acquire+0xae/0x150
[  479.357676][ T8100]  should_failslab+0xc2/0x120
[  479.357696][ T8100]  __kmalloc_node_noprof+0xd1/0x520
[  479.357717][ T8100]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  479.357737][ T8100]  __kvmalloc_node_noprof+0xad/0x1a0
[  479.357753][ T8100]  hash_ipportip_create+0x3ea/0x1250
[  479.357777][ T8100]  ? __nla_validate+0x46/0x50
[  479.357800][ T8100]  ? __pfx_hash_ipportip_create+0x10/0x10
[  479.357822][ T8100]  ip_set_create+0x62a/0x1400
[  479.357851][ T8100]  ? rcu_is_watching+0x12/0xc0
[  479.357874][ T8100]  ? __pfx_ip_set_create+0x10/0x10
[  479.362090][ T8100]  nfnetlink_rcv_msg+0x9c3/0x11e0
[  479.362127][ T8100]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  479.362153][ T8100]  ? hlock_class+0x4e/0x130
[  479.362175][ T8100]  ? mark_lock+0xb5/0xc60
[  479.362208][ T8100]  ? hlock_class+0x4e/0x130
[  479.362229][ T8100]  ? __lock_acquire+0xcc5/0x3c40
[  479.362254][ T8100]  netlink_rcv_skb+0x165/0x410
[  479.362276][ T8100]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  479.362299][ T8100]  ? __pfx___lock_acquire+0x10/0x10
[  479.362316][ T8100]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  479.362337][ T8100]  ? __pfx_aa_get_newest_label+0x10/0x10
[  479.362373][ T8100]  ? bpf_lsm_capable+0x9/0x10
[  479.362395][ T8100]  ? security_capable+0x7e/0x260
[  479.362429][ T8100]  ? ns_capable+0xd7/0x110
[  479.362454][ T8100]  nfnetlink_rcv+0x1b4/0x430
[  479.362478][ T8100]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  479.362501][ T8100]  ? netlink_deliver_tap+0x1ae/0xca0
[  479.362528][ T8100]  netlink_unicast+0x53c/0x7f0
[  479.362553][ T8100]  ? __pfx_netlink_unicast+0x10/0x10
[  479.362577][ T8100]  ? __phys_addr_symbol+0x30/0x80
[  479.362602][ T8100]  ? __check_object_size+0x488/0x710
[  479.362627][ T8100]  netlink_sendmsg+0x8b8/0xd70
[  479.362654][ T8100]  ? __pfx_netlink_sendmsg+0x10/0x10
[  479.362687][ T8100]  ____sys_sendmsg+0x9ae/0xb40
[  479.362711][ T8100]  ? __pfx_____sys_sendmsg+0x10/0x10
[  479.362731][ T8100]  ? get_compat_msghdr+0x11b/0x170
[  479.362765][ T8100]  ___sys_sendmsg+0x135/0x1e0
[  479.362784][ T8100]  ? __pfx____sys_sendmsg+0x10/0x10
[  479.362812][ T8100]  ? __pfx_lock_release+0x10/0x10
[  479.362832][ T8100]  ? trace_lock_acquire+0x14e/0x1f0
[  479.362856][ T8100]  ? __fget_files+0x206/0x3a0
[  479.362880][ T8100]  __sys_sendmsg+0x16e/0x220
[  479.362898][ T8100]  ? __pfx___sys_sendmsg+0x10/0x10
[  479.362932][ T8100]  __do_fast_syscall_32+0x73/0x120
[  479.362961][ T8100]  do_fast_syscall_32+0x32/0x80
[  479.363191][ T8100]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  479.363220][ T8100] RIP: 0023:0xf7f47579
[  479.363235][ T8100] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  479.363251][ T8100] RSP: 002b:00000000f506655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  479.363268][ T8100] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  479.363279][ T8100] RDX: 0000000000008000 RSI: 0000000000000000 RDI: 0000000000000000
[  479.363289][ T8100] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  479.363298][ T8100] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  479.363308][ T8100] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  479.363330][ T8100]  </TASK>
[  479.840807][    C2] vkms_vblank_simulate: vblank timer overrun
[  479.938816][    C2] vkms_vblank_simulate: vblank timer overrun
[  480.033358][ T8112] netlink: 'syz.2.624': attribute type 9 has an invalid length.
[  480.036610][ T8112] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.624'.
[  480.171021][ T8117] netlink: 28 bytes leftover after parsing attributes in process `syz.3.626'.
[  480.178976][ T8117] netlink: 52 bytes leftover after parsing attributes in process `syz.3.626'.
[  480.184571][ T8117] netlink: 28 bytes leftover after parsing attributes in process `syz.3.626'.
[  480.251147][ T8107] 9pnet: Could not find request transport: fd0x0000000000000003
[  480.280180][    C2] vkms_vblank_simulate: vblank timer overrun
[  481.396855][    C2] vkms_vblank_simulate: vblank timer overrun
[  481.451229][ T1451] kernel write not supported for file /snd/seq (pid: 1451 comm: kworker/0:3)
[  481.650569][    C2] vkms_vblank_simulate: vblank timer overrun
[  481.976857][    C2] vkms_vblank_simulate: vblank timer overrun
[  482.719956][ T5998] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  482.752320][ T5998] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  482.786243][ T5998] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  482.809233][ T5998] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  482.844838][ T5998] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  482.851903][ T5998] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  483.044629][ T6034] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  483.085525][ T8176] chnl_net:caif_netlink_parms(): no params data found
[  483.235111][ T6034] usb 5-1: Using ep0 maxpacket: 32
[  483.250179][ T6034] usb 5-1: unable to get BOS descriptor or descriptor too short
[  483.281517][ T6034] usb 5-1: config 1 interface 0 has no altsetting 0
[  483.287895][ T6034] usb 5-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.40
[  483.291980][ T6034] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  483.295039][ T6034] usb 5-1: Product: syz
[  483.296624][ T6034] usb 5-1: Manufacturer: á°�
[  483.298444][ T6034] usb 5-1: SerialNumber: syz
[  483.410005][ T8176] bridge0: port 1(bridge_slave_0) entered blocking state
[  483.420912][ T8176] bridge0: port 1(bridge_slave_0) entered disabled state
[  483.431467][ T8176] bridge_slave_0: entered allmulticast mode
[  483.448746][ T8176] bridge_slave_0: entered promiscuous mode
[  483.454274][ T8176] bridge0: port 2(bridge_slave_1) entered blocking state
[  483.459023][ T8176] bridge0: port 2(bridge_slave_1) entered disabled state
[  483.462184][ T8176] bridge_slave_1: entered allmulticast mode
[  483.468953][ T8176] bridge_slave_1: entered promiscuous mode
[  483.560789][ T8176] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  483.570517][ T8176] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  483.662971][ T8176] team0: Port device team_slave_0 added
[  483.673304][ T8176] team0: Port device team_slave_1 added
[  483.769310][ T8176] batman_adv: batadv0: Adding interface: batadv_slave_0
[  483.773061][ T8176] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  483.794765][ T8176] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  483.813976][ T8176] batman_adv: batadv0: Adding interface: batadv_slave_1
[  483.823960][ T8176] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  483.853159][ T8176] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  483.965735][ T8176] hsr_slave_0: entered promiscuous mode
[  483.970924][ T8176] hsr_slave_1: entered promiscuous mode
[  483.985088][ T8176] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  484.016278][ T8176] Cannot create hsr debugfs directory
[  484.549652][ T8176] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  484.579836][ T8176] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  484.619424][ T8176] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  484.630227][ T8176] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  484.808952][ T8176] 8021q: adding VLAN 0 to HW filter on device bond0
[  484.826543][ T8176] 8021q: adding VLAN 0 to HW filter on device team0
[  484.839023][ T6047] bridge0: port 1(bridge_slave_0) entered blocking state
[  484.845603][ T6047] bridge0: port 1(bridge_slave_0) entered forwarding state
[  484.854375][ T6047] bridge0: port 2(bridge_slave_1) entered blocking state
[  484.860257][ T6047] bridge0: port 2(bridge_slave_1) entered forwarding state
[  484.954722][ T5998] Bluetooth: hci2: command tx timeout
[  485.250782][ T8176] 8021q: adding VLAN 0 to HW filter on device batadv0
[  485.519223][ T6034] usbhid 5-1:1.0: can't add hid device: -71
[  485.528411][ T6034] usbhid 5-1:1.0: probe with driver usbhid failed with error -71
[  485.535255][ T6034] usb 5-1: USB disconnect, device number 8
[  485.624795][ T8176] veth0_vlan: entered promiscuous mode
[  485.656084][ T8176] veth1_vlan: entered promiscuous mode
[  485.683506][ T8176] veth0_macvtap: entered promiscuous mode
[  485.695266][ T8176] veth1_macvtap: entered promiscuous mode
[  485.707562][ T8176] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  485.713066][ T8176] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  485.718708][ T8176] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  485.724214][ T8176] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  485.730084][ T8176] batman_adv: batadv0: Interface activated: batadv_slave_0
[  485.751305][ T8176] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  485.774754][ T8176] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  485.791351][ T8176] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  485.802047][ T8176] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  485.818659][ T8176] batman_adv: batadv0: Interface activated: batadv_slave_1
[  485.839781][ T8176] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  485.851919][ T8176] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  485.865064][ T8176] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  485.868258][ T8176] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  486.113401][ T1134] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  486.149303][ T1134] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  486.177976][ T6022] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  486.182924][ T6022] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  486.203839][ T8242] __nla_validate_parse: 7 callbacks suppressed
[  486.203855][ T8242] netlink: 112 bytes leftover after parsing attributes in process `syz.2.656'.
[  486.222082][ T8242] netlink: 112 bytes leftover after parsing attributes in process `syz.2.656'.
[  486.239306][ T8244] netlink: 260 bytes leftover after parsing attributes in process `syz.1.653'.
[  487.028805][ T5998] Bluetooth: hci2: command tx timeout
[  488.148536][ T8274] netlink: 112 bytes leftover after parsing attributes in process `syz.0.665'.
[  488.172988][ T8274] netlink: 112 bytes leftover after parsing attributes in process `syz.0.665'.
[  488.396685][ T8282] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  488.512485][ T8286] sctp: [Deprecated]: syz.0.670 (pid 8286) Use of int in maxseg socket option.
[  488.512485][ T8286] Use struct sctp_assoc_value instead
[  488.641482][ T8292] netlink: 'syz.4.671': attribute type 16 has an invalid length.
[  488.645885][ T8292] netlink: 'syz.4.671': attribute type 3 has an invalid length.
[  488.649894][ T8292] netlink: 64066 bytes leftover after parsing attributes in process `syz.4.671'.
[  488.895921][ T8296] netlink: 'syz.2.669': attribute type 1 has an invalid length.
[  489.075385][ T8296] 8021q: adding VLAN 0 to HW filter on device bond1
[  489.088494][ T8296] vlan0: entered promiscuous mode
[  489.096451][ T8296] bond1: entered promiscuous mode
[  489.103167][ T8296] bond1: left promiscuous mode
[  489.104815][ T5998] Bluetooth: hci2: command tx timeout
[  489.571819][ T8306] netlink: 112 bytes leftover after parsing attributes in process `syz.4.674'.
[  489.599240][ T8306] netlink: 112 bytes leftover after parsing attributes in process `syz.4.674'.
[  489.735281][ T8310] overlayfs: lowerdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[  489.756329][ T8311] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  489.807984][ T8310] overlayfs: overlapping lowerdir path
[  489.955606][ T8318] netlink: 4 bytes leftover after parsing attributes in process `syz.4.678'.
[  489.968142][ T8318] netlink: 8 bytes leftover after parsing attributes in process `syz.4.678'.
[  491.053478][ T8347] netlink: 'syz.2.681': attribute type 10 has an invalid length.
[  491.063934][ T8347] 8021q: adding VLAN 0 to HW filter on device batadv0
[  491.069406][ T8347] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  491.185194][ T5998] Bluetooth: hci2: command tx timeout
[  492.580028][ T8368] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  492.743896][ T8372] __nla_validate_parse: 2 callbacks suppressed
[  492.743915][ T8372] netlink: 28 bytes leftover after parsing attributes in process `syz.4.693'.
[  492.756888][ T8372] netlink: 28 bytes leftover after parsing attributes in process `syz.4.693'.
[  493.600261][ T8381] netlink: 8 bytes leftover after parsing attributes in process `syz.2.696'.
[  493.745199][ T3226] kernel read not supported for file /543/net/igmp (pid: 3226 comm: kworker/2:2)
[  496.065550][ T8394] BFS-fs: bfs_fill_super(): No BFS filesystem on nullb0 (magic=00000000)
[  496.399771][ T8411] netlink: 28 bytes leftover after parsing attributes in process `syz.1.702'.
[  496.403416][ T8411] netlink: 28 bytes leftover after parsing attributes in process `syz.1.702'.
[  496.818608][ T6034] hid-generic 0000:0000:0080.0005: unknown main item tag 0x0
[  496.826598][ T6034] hid-generic 0000:0000:0080.0005: unknown main item tag 0x0
[  496.832059][ T6034] hid-generic 0000:0000:0080.0005: unknown main item tag 0x0
[  496.841270][ T6034] hid-generic 0000:0000:0080.0005: unknown main item tag 0x0
[  496.851145][ T6034] hid-generic 0000:0000:0080.0005: unknown main item tag 0x0
[  496.875942][ T6034] hid-generic 0000:0000:0080.0005: unknown main item tag 0x0
[  496.879012][ T6034] hid-generic 0000:0000:0080.0005: unknown main item tag 0x0
[  496.882264][ T6034] hid-generic 0000:0000:0080.0005: unknown main item tag 0x0
[  496.899042][ T6034] hid-generic 0000:0000:0080.0005: unknown main item tag 0x0
[  496.902694][ T6034] hid-generic 0000:0000:0080.0005: unknown main item tag 0x0
[  496.938413][ T6034] hid-generic 0000:0000:0080.0005: unknown main item tag 0x0
[  496.944044][ T6034] hid-generic 0000:0000:0080.0005: unknown main item tag 0x0
[  496.954358][ T6034] hid-generic 0000:0000:0080.0005: unknown main item tag 0x0
[  496.961058][ T6034] hid-generic 0000:0000:0080.0005: unknown main item tag 0x0
[  496.966711][ T6034] hid-generic 0000:0000:0080.0005: unknown main item tag 0x0
[  496.972832][ T6034] hid-generic 0000:0000:0080.0005: unknown main item tag 0x0
[  496.977883][ T6034] hid-generic 0000:0000:0080.0005: unknown main item tag 0x0
[  496.982341][ T6034] hid-generic 0000:0000:0080.0005: unknown main item tag 0x0
[  496.989852][ T6034] hid-generic 0000:0000:0080.0005: unknown main item tag 0x0
[  496.996429][ T6034] hid-generic 0000:0000:0080.0005: unknown main item tag 0x0
[  497.002266][ T6034] hid-generic 0000:0000:0080.0005: unknown main item tag 0x0
[  497.010409][ T6034] hid-generic 0000:0000:0080.0005: unknown main item tag 0x0
[  497.018532][ T6034] hid-generic 0000:0000:0080.0005: unknown main item tag 0x0
[  497.021695][ T6034] hid-generic 0000:0000:0080.0005: unknown main item tag 0x0
[  497.029722][ T6034] hid-generic 0000:0000:0080.0005: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  497.075694][ T3226] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  497.227775][ T3226] usb 7-1: device descriptor read/64, error -71
[  497.474647][ T3226] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  497.604706][ T3226] usb 7-1: device descriptor read/64, error -71
[  497.742764][ T3226] usb usb7-port1: attempt power cycle
[  498.084792][ T3226] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  498.126487][ T3226] usb 7-1: device descriptor read/8, error -71
[  498.394784][ T3226] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  498.415378][ T3226] usb 7-1: device descriptor read/8, error -71
[  498.528339][ T3226] usb usb7-port1: unable to enumerate USB device
[  500.540819][ T8442] netlink: 16 bytes leftover after parsing attributes in process `syz.0.707'.
[  500.603184][ T8444] ieee802154 phy0 wpan0: encryption failed: -22
[  500.873935][ T1412] ieee802154 phy0 wpan0: encryption failed: -22
[  500.878991][ T1412] ieee802154 phy1 wpan1: encryption failed: -22
[  500.910257][ T8448] 9pnet_fd: Insufficient options for proto=fd
[  500.920480][ T8448] 9pnet_fd: Insufficient options for proto=fd
[  502.036911][ T8452] autofs4:pid:8452:validate_dev_ioctl: invalid path supplied for cmd(0xc018937e)
[  502.045977][ T8452] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.711' sets config #1024
[  502.768029][ T8455] netlink: 28 bytes leftover after parsing attributes in process `syz.0.712'.
[  502.771651][ T8455] netlink: 28 bytes leftover after parsing attributes in process `syz.0.712'.
[  503.293993][   T40] audit: type=1326 audit(1738519325.586:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8460 comm="syz.4.714" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f01579 code=0x7fc00000
[  503.321519][   T40] audit: type=1326 audit(1738519325.586:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8460 comm="syz.4.714" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f01579 code=0x7fc00000
[  503.519746][ T8469] tipc: Started in network mode
[  503.521741][ T8469] tipc: Node identity 5e5dffffffffffff93, cluster identity 4711
[  504.072598][   T40] audit: type=1326 audit(1738519326.366:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8460 comm="syz.4.714" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f01579 code=0x7fc00000
[  504.761362][ T1451] usb 9-1: new full-speed USB device number 2 using dummy_hcd
[  504.975794][ T1451] usb 9-1: config 0 has an invalid interface number: 11 but max is 0
[  504.981587][ T1451] usb 9-1: config 0 has no interface number 0
[  505.029339][ T1451] usb 9-1: config 0 interface 11 has no altsetting 0
[  505.032242][ T1451] usb 9-1: New USB device found, idVendor=06cd, idProduct=010f, bcdDevice=d5.1b
[  505.036231][ T1451] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  505.065145][ T1451] usb 9-1: config 0 descriptor??
[  505.075656][ T1451] keyspan 9-1:0.11: Keyspan 2 port adapter converter detected
[  505.084682][ T1451] keyspan 9-1:0.11: found no endpoint descriptor for endpoint 87
[  505.087232][ T1451] keyspan 9-1:0.11: found no endpoint descriptor for endpoint 7
[  505.103530][ T1451] keyspan 9-1:0.11: found no endpoint descriptor for endpoint 81
[  505.116644][ T1451] keyspan 9-1:0.11: found no endpoint descriptor for endpoint 82
[  505.121205][ T1451] keyspan 9-1:0.11: found no endpoint descriptor for endpoint 1
[  505.126422][ T1451] keyspan 9-1:0.11: found no endpoint descriptor for endpoint 2
[  505.136145][ T1451] keyspan 9-1:0.11: found no endpoint descriptor for endpoint 85
[  505.149654][ T1451] keyspan 9-1:0.11: found no endpoint descriptor for endpoint 5
[  505.161765][ T1451] usb 9-1: Keyspan 2 port adapter converter now attached to ttyUSB0
[  505.181620][ T1451] keyspan 9-1:0.11: found no endpoint descriptor for endpoint 83
[  505.195153][ T1451] keyspan 9-1:0.11: found no endpoint descriptor for endpoint 84
[  505.199845][ T1451] keyspan 9-1:0.11: found no endpoint descriptor for endpoint 3
[  505.204127][ T1451] keyspan 9-1:0.11: found no endpoint descriptor for endpoint 4
[  505.220066][ T1451] keyspan 9-1:0.11: found no endpoint descriptor for endpoint 86
[  505.224439][ T1451] keyspan 9-1:0.11: found no endpoint descriptor for endpoint 6
[  505.238549][ T1451] usb 9-1: Keyspan 2 port adapter converter now attached to ttyUSB1
[  505.387555][ T6057] usb 9-1: USB disconnect, device number 2
[  505.413522][ T6057] keyspan_2 ttyUSB0: Keyspan 2 port adapter converter now disconnected from ttyUSB0
[  505.468230][ T6057] keyspan_2 ttyUSB1: Keyspan 2 port adapter converter now disconnected from ttyUSB1
[  505.472687][ T6057] keyspan 9-1:0.11: device disconnected
[  505.596731][ T5998] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  505.813013][ T8487] netlink: 8 bytes leftover after parsing attributes in process `syz.0.722'.
[  505.913920][ T1451] IPVS: starting estimator thread 0...
[  505.928754][ T8494] openvswitch: netlink: Missing key (keys=40, expected=100)
[  505.986315][ T3226] kernel read not supported for file /573/net/igmp (pid: 3226 comm: kworker/2:2)
[  506.114819][ T8492] IPVS: using max 22 ests per chain, 52800 per kthread
[  506.493483][ T8502] random: crng reseeded on system resumption
[  511.949827][   T66] Bluetooth: hci2: command 0x0406 tx timeout
[  513.652546][ T8526] netlink: 4 bytes leftover after parsing attributes in process `syz.0.732'.
[  514.289552][ T8544] syzkaller1: entered promiscuous mode
[  514.292556][ T8544] syzkaller1: entered allmulticast mode
[  515.996188][ T8559] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  516.020440][ T8559] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  516.053434][ T8559] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  516.071703][ T8559] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  516.183531][ T8559] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  516.201335][ T8559] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  516.210417][ T8559] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  516.494894][ T8565] netlink: 28 bytes leftover after parsing attributes in process `syz.1.742'.
[  516.938209][ T8578] sp0: Synchronizing with TNC
[  516.962279][ T8575] [U] è
[  517.085760][ T8580] netlink: 'syz.4.747': attribute type 10 has an invalid length.
[  517.089529][ T8580] netlink: 40 bytes leftover after parsing attributes in process `syz.4.747'.
[  517.112404][ T8580] bridge0: port 3(veth1_vlan) entered blocking state
[  517.116324][ T8580] bridge0: port 3(veth1_vlan) entered disabled state
[  517.142849][ T8580] veth1_vlan: entered allmulticast mode
[  517.153773][ T8580] veth1_vlan: left allmulticast mode
[  517.191322][ T8580] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check.
[  518.004980][ T5998] Bluetooth: hci1: command 0x0406 tx timeout
[  518.074967][ T5998] Bluetooth: hci3: command 0x0405 tx timeout
[  518.251103][ T5998] Bluetooth: hci2: command 0x0406 tx timeout
[  519.113144][ T8589] syzkaller1: entered promiscuous mode
[  519.115450][ T8589] syzkaller1: entered allmulticast mode
[  520.083351][ T5998] Bluetooth: hci1: command 0x0406 tx timeout
[  520.180791][ T5998] Bluetooth: hci3: command 0x0405 tx timeout
[  520.304922][ T5998] Bluetooth: hci2: command 0x0406 tx timeout
[  521.283329][ T8596] netlink: 196 bytes leftover after parsing attributes in process `syz.0.752'.
[  522.245037][ T5998] Bluetooth: hci3: command 0x0405 tx timeout
[  523.504208][ T8608] syz.2.754: attempt to access beyond end of device
[  523.504208][ T8608] nbd2: rw=0, sector=16, nr_sectors = 1 limit=0
[  523.524569][ T8608] qnx6: unable to read the first superblock
[  523.565455][ T8608] syz.2.754: attempt to access beyond end of device
[  523.565455][ T8608] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  523.607392][ T8608] qnx6: unable to read the first superblock
[  523.612948][ T8608] qnx6: unable to read the first superblock
[  523.703291][ T8608] input: syz0 as /devices/virtual/input/input9
[  524.771484][ T8630] fuse: Unknown parameter 'group_i00000000000000000000'
[  524.783524][   T40] audit: type=1800 audit(1738781747.078:166): pid=8630 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.762" name="file1" dev="tmpfs" ino=184 res=0 errno=0
[  525.134640][ T1451] usb 6-1: new full-speed USB device number 4 using dummy_hcd
[  525.327314][ T1451] usb 6-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  525.331236][ T1451] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84
[  525.346048][ T1451] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  525.394213][ T1451] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  525.404458][ T1451] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  525.421417][ T1451] usb 6-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[  525.433238][ T1451] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  525.442897][ T1451] usb 6-1: Product: syz
[  525.447051][ T1451] usb 6-1: Manufacturer: syz
[  525.450313][ T1451] usb 6-1: SerialNumber: syz
[  525.461325][ T1451] usb 6-1: config 0 descriptor??
[  525.468137][ T1451] input: KB Gear Tablet as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input10
[  526.016383][    C0] vkms_vblank_simulate: vblank timer overrun
[  526.046689][    C0] vkms_vblank_simulate: vblank timer overrun
[  526.112349][    C0] vkms_vblank_simulate: vblank timer overrun
[  526.147065][ T6634] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  526.324637][ T6634] usb 5-1: Using ep0 maxpacket: 16
[  526.344893][ T6634] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  526.350481][ T6634] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  526.571464][    C0] vkms_vblank_simulate: vblank timer overrun
[  526.611724][ T8654] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  526.683412][ T8654] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  526.746624][    C0] vkms_vblank_simulate: vblank timer overrun
[  526.828326][    C0] vkms_vblank_simulate: vblank timer overrun
[  526.838406][ T6634] usb 5-1: Product: syz
[  526.839921][ T6634] usb 5-1: Manufacturer: syz
[  526.853005][ T6634] usb 5-1: SerialNumber: syz
[  526.877193][ T6634] r8152-cfgselector 5-1: Unknown version 0x0000
[  526.880007][ T6634] r8152-cfgselector 5-1: config 0 descriptor??
[  527.088876][ T6634] r8152-cfgselector 5-1: Unknown version 0x0000
[  527.099451][ T6634] r8152-cfgselector 5-1: bad CDC descriptors
[  527.108615][ T6634] r8152-cfgselector 5-1: USB disconnect, device number 9
[  527.735342][    C0] vkms_vblank_simulate: vblank timer overrun
[  527.887431][ T8675] netlink: 4 bytes leftover after parsing attributes in process `syz.2.776'.
[  527.960123][ T8675] netlink: 4 bytes leftover after parsing attributes in process `syz.2.776'.
[  528.040923][   T30] usb 6-1: USB disconnect, device number 4
[  528.306629][   T66] Bluetooth: hci2: command 0x0406 tx timeout
[  528.584336][    C0] vkms_vblank_simulate: vblank timer overrun
[  528.679198][ T8697] netlink: 260 bytes leftover after parsing attributes in process `syz.2.780'.
[  528.686340][ T8696] tipc: Started in network mode
[  528.688851][ T8696] tipc: Node identity ac14140f, cluster identity 4711
[  528.691854][ T8696] tipc: New replicast peer: 255.255.255.255
[  528.706582][ T8696] tipc: Enabled bearer <udp:syz2>, priority 10
[  529.126395][ T8711] syz.2.785: attempt to access beyond end of device
[  529.126395][ T8711] nbd2: rw=0, sector=64, nr_sectors = 1 limit=0
[  529.133038][ T8711] syz.2.785: attempt to access beyond end of device
[  529.133038][ T8711] nbd2: rw=0, sector=256, nr_sectors = 1 limit=0
[  529.143007][ T8711] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  529.151040][ T8711] syz.2.785: attempt to access beyond end of device
[  529.151040][ T8711] nbd2: rw=0, sector=512, nr_sectors = 1 limit=0
[  529.161594][ T8711] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  529.167158][ T8711] UDF-fs: warning (device nbd2): udf_load_vrs: No anchor found
[  529.172249][ T8711] UDF-fs: Scanning with blocksize 512 failed
[  529.178198][ T8711] syz.2.785: attempt to access beyond end of device
[  529.178198][ T8711] nbd2: rw=0, sector=64, nr_sectors = 2 limit=0
[  529.208202][ T8711] syz.2.785: attempt to access beyond end of device
[  529.208202][ T8711] nbd2: rw=0, sector=512, nr_sectors = 2 limit=0
[  529.213787][ T8711] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  529.214616][ T3226] usb 5-1: new full-speed USB device number 10 using dummy_hcd
[  529.249113][ T8711] syz.2.785: attempt to access beyond end of device
[  529.249113][ T8711] nbd2: rw=0, sector=1024, nr_sectors = 2 limit=0
[  529.277941][    C0] vkms_vblank_simulate: vblank timer overrun
[  529.287065][ T8711] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  529.292667][ T8711] UDF-fs: warning (device nbd2): udf_load_vrs: No anchor found
[  529.300984][ T8711] UDF-fs: Scanning with blocksize 1024 failed
[  529.306047][ T8711] syz.2.785: attempt to access beyond end of device
[  529.306047][ T8711] nbd2: rw=0, sector=64, nr_sectors = 4 limit=0
[  529.313133][ T8711] syz.2.785: attempt to access beyond end of device
[  529.313133][ T8711] nbd2: rw=0, sector=1024, nr_sectors = 4 limit=0
[  529.319478][ T8711] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  529.325680][ T8711] syz.2.785: attempt to access beyond end of device
[  529.325680][ T8711] nbd2: rw=0, sector=2048, nr_sectors = 4 limit=0
[  529.332808][ T8711] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  529.338247][ T8711] UDF-fs: warning (device nbd2): udf_load_vrs: No anchor found
[  529.342606][ T8711] UDF-fs: Scanning with blocksize 2048 failed
[  529.344361][    C0] vkms_vblank_simulate: vblank timer overrun
[  529.367323][ T8711] syz.2.785: attempt to access beyond end of device
[  529.367323][ T8711] nbd2: rw=0, sector=64, nr_sectors = 8 limit=0
[  529.379812][ T8711] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  529.406996][ T8711] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  529.413405][ T8711] UDF-fs: warning (device nbd2): udf_load_vrs: No anchor found
[  529.428137][ T3226] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  529.443546][ T8711] UDF-fs: Scanning with blocksize 4096 failed
[  529.449247][ T3226] usb 5-1: config 0 has no interfaces?
[  529.465543][ T8711] UDF-fs: warning (device nbd2): udf_fill_super: No partition found (1)
[  529.509580][ T3226] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  529.509608][ T3226] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  529.511119][ T3226] usb 5-1: config 0 descriptor??
[  529.709408][ T1451] tipc: Node number set to 2886997007
[  529.743158][ T8726] netlink: 4 bytes leftover after parsing attributes in process `syz.4.787'.
[  529.761794][ T8724] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  529.766809][ T8724] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  529.784894][ T8724] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  529.813405][ T8728] IPVS: wrr: SCTP 172.20.20.187:0 - no destination available
[  529.820488][ T1016] usb 5-1: USB disconnect, device number 10
[  529.857143][   T78] Bluetooth: hci4: Frame reassembly failed (-84)
[  530.234434][ T8742] netlink: 24 bytes leftover after parsing attributes in process `syz.2.792'.
[  530.277951][ T3226] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  530.294934][ T6634] usb 9-1: new full-speed USB device number 3 using dummy_hcd
[  530.459839][ T3226] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  530.469183][ T3226] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  530.481249][ T6634] usb 9-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  530.485388][ T3226] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  530.491303][ T6634] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84
[  530.491331][ T6634] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  530.491349][ T6634] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  530.491366][ T6634] usb 9-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  530.503266][ T6634] usb 9-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[  530.513090][ T3226] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  530.526454][ T6634] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  530.526478][ T6634] usb 9-1: Product: syz
[  530.538937][ T3226] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  530.539944][ T6634] usb 9-1: Manufacturer: syz
[  530.551633][ T3226] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  530.552575][ T6634] usb 9-1: SerialNumber: syz
[  530.561491][ T3226] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  530.566409][ T6634] usb 9-1: config 0 descriptor??
[  530.567275][ T3226] usb 6-1: Product: syz
[  530.579347][ T8744] overlayfs: workdir and upperdir must be separate subtrees
[  530.581207][ T6634] input: KB Gear Tablet as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/input/input11
[  530.581730][ T3226] usb 6-1: Manufacturer: syz
[  530.674461][ T3226] cdc_wdm 6-1:1.0: skipping garbage
[  530.677352][ T3226] cdc_wdm 6-1:1.0: skipping garbage
[  530.720665][ T3226] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  530.724389][ T3226] cdc_wdm 6-1:1.0: Unknown control protocol
[  530.732351][    C0] vkms_vblank_simulate: vblank timer overrun
[  530.785032][ T5998] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  530.982039][    C0] vkms_vblank_simulate: vblank timer overrun
[  531.033300][ T1016] usb 6-1: USB disconnect, device number 5
[  531.048324][    C0] vkms_vblank_simulate: vblank timer overrun
[  531.282451][    C0] vkms_vblank_simulate: vblank timer overrun
[  531.461498][ T8752] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  531.466916][ T8752] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  531.665971][    C0] vkms_vblank_simulate: vblank timer overrun
[  531.744378][    C0] vkms_vblank_simulate: vblank timer overrun
[  531.824732][ T5313] Bluetooth: hci3: command 0x0405 tx timeout
[  531.824961][ T5992] Bluetooth: hci1: command 0x0406 tx timeout
[  531.828694][ T5313] Bluetooth: hci2: command 0x0406 tx timeout
[  531.910130][   T66] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  532.529749][ T8772] input: syz0 as /devices/virtual/input/input12
[  532.544340][    C0] vkms_vblank_simulate: vblank timer overrun
[  532.582862][    C0] vkms_vblank_simulate: vblank timer overrun
[  533.152161][    T9] usb 9-1: USB disconnect, device number 3
[  533.205410][ T8781] nbd2: detected capacity change from 0 to 10
[  533.211924][ T3226] IPVS: starting estimator thread 0...
[  533.220985][ T8782] block nbd2: shutting down sockets
[  533.249382][    C2] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  533.253900][    C2] Buffer I/O error on dev nbd2, logical block 0, async page read
[  533.275349][ T8649] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  533.347685][ T8649] Buffer I/O error on dev nbd2, logical block 0, async page read
[  533.356565][ T8786] IPVS: using max 29 ests per chain, 69600 per kthread
[  533.374895][ T8649] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  533.405464][ T8649] Buffer I/O error on dev nbd2, logical block 0, async page read
[  533.408705][ T8649] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  533.411959][ T8649] Buffer I/O error on dev nbd2, logical block 0, async page read
[  533.415707][ T8649] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  533.426500][ T8649] Buffer I/O error on dev nbd2, logical block 0, async page read
[  533.433105][ T8649] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  533.438692][ T8649] Buffer I/O error on dev nbd2, logical block 0, async page read
[  533.442948][ T8649] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  533.448679][ T8649] Buffer I/O error on dev nbd2, logical block 0, async page read
[  533.453685][ T8649] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  533.459810][ T8649] Buffer I/O error on dev nbd2, logical block 0, async page read
[  533.465030][ T8649] ldm_validate_partition_table(): Disk read failed.
[  533.469060][ T8649] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  533.476950][ T8649] Buffer I/O error on dev nbd2, logical block 0, async page read
[  533.520690][ T8649] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  533.546096][ T8649] Buffer I/O error on dev nbd2, logical block 0, async page read
[  533.551214][ T8649] Dev nbd2: unable to read RDB block 0
[  533.554125][ T8649]  nbd2: unable to read partition table
[  533.557906][ T8649] nbd2: partition table beyond EOD, truncated
[  533.672901][ T8649] ldm_validate_partition_table(): Disk read failed.
[  533.677402][ T8649] Dev nbd2: unable to read RDB block 0
[  533.680969][ T8649]  nbd2: unable to read partition table
[  533.684431][ T8649] nbd2: partition table beyond EOD, truncated
[  533.780069][ T8792] netdevsim netdevsim4 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  533.787609][ T8792] netdevsim netdevsim4 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  533.791598][ T8792] netdevsim netdevsim4 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  533.799707][ T8792] netdevsim netdevsim4 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  533.804454][ T8792] geneve2: entered allmulticast mode
[  533.907121][   T66] Bluetooth: hci2: command 0x0406 tx timeout
[  533.955265][   T40] audit: type=1804 audit(1738781756.238:167): pid=8803 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.808" name="/newroot/43/file0" dev="tmpfs" ino=248 res=1 errno=0
[  534.007412][ T6637] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  534.125750][ T8805] trusted_key: encrypted_key: insufficient parameters specified
[  534.195026][ T6637] usb 5-1: Using ep0 maxpacket: 8
[  534.198885][ T6637] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  534.201893][ T6637] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  534.206274][ T6637] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  534.231516][ T6637] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  534.265088][ T6637] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  534.275188][ T6637] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  534.278555][ T6637] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  534.509478][ T6637] usb 5-1: usb_control_msg returned -32
[  534.512754][ T6637] usbtmc 5-1:16.0: can't read capabilities
[  534.879589][ T8811] usbtmc 5-1:16.0: INDICATOR_PULSE returned 0
[  535.095290][   T57] usb 5-1: USB disconnect, device number 11
[  535.101752][    C0] vkms_vblank_simulate: vblank timer overrun
[  535.208463][ T8816] pimreg3: entered allmulticast mode
[  535.267033][ T8818] netlink: 4 bytes leftover after parsing attributes in process `syz.4.812'.
[  535.700074][ T8825] fuse: Unknown parameter 'group_id00000000000000000000'
[  535.711875][   T40] audit: type=1800 audit(1738781757.998:168): pid=8825 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.815" name="file1" dev="tmpfs" ino=1239 res=0 errno=0
[  535.745143][    C0] vkms_vblank_simulate: vblank timer overrun
[  535.796220][ T8828] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  536.022171][    C0] vkms_vblank_simulate: vblank timer overrun
[  536.336211][ T6057] usb 6-1: new full-speed USB device number 6 using dummy_hcd
[  536.464760][ T6057] usb 6-1: device descriptor read/64, error -71
[  536.577029][    C0] vkms_vblank_simulate: vblank timer overrun
[  536.673512][   T40] audit: type=1326 audit(1738781758.948:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8826 comm="syz.4.816" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f01579 code=0x7fc00000
[  536.686690][ T8838] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  536.736945][ T6057] usb 6-1: new full-speed USB device number 7 using dummy_hcd
[  536.885667][ T6057] usb 6-1: device descriptor read/64, error -71
[  536.944324][    C0] vkms_vblank_simulate: vblank timer overrun
[  537.007730][ T6057] usb usb6-port1: attempt power cycle
[  537.028990][ T8843] netlink: 28 bytes leftover after parsing attributes in process `syz.0.820'.
[  537.351154][ T6057] usb 6-1: new full-speed USB device number 8 using dummy_hcd
[  537.412411][    C0] vkms_vblank_simulate: vblank timer overrun
[  537.444972][ T6057] usb 6-1: device descriptor read/8, error -71
[  537.704917][ T6057] usb 6-1: new full-speed USB device number 9 using dummy_hcd
[  537.748923][ T6057] usb 6-1: device descriptor read/8, error -71
[  537.779304][ T8858] fuse: Bad value for 'user_id'
[  537.781683][ T8858] fuse: Bad value for 'user_id'
[  537.843246][   T40] audit: type=1800 audit(1738781760.128:170): pid=8858 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.826" name="file1" dev="tmpfs" ino=269 res=0 errno=0
[  537.855925][ T6057] usb usb6-port1: unable to enumerate USB device
[  538.070585][ T8865] kAFS: unparsable volume name
[  538.101798][ T8866] netlink: 4 bytes leftover after parsing attributes in process `syz.2.824'.
[  538.125710][    C0] vkms_vblank_simulate: vblank timer overrun
[  538.174553][ T8865] netlink: 8 bytes leftover after parsing attributes in process `syz.0.828'.
[  538.693752][ T8877] netlink: 112 bytes leftover after parsing attributes in process `syz.2.832'.
[  538.713735][ T8877] netlink: 112 bytes leftover after parsing attributes in process `syz.2.832'.
[  539.204599][ T8889] fuse: Bad value for 'user_id'
[  539.206742][ T8889] fuse: Bad value for 'user_id'
[  539.211656][   T40] audit: type=1800 audit(1738781761.429:171): pid=8889 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.836" name="file1" dev="tmpfs" ino=1282 res=0 errno=0
[  539.285104][    C0] vkms_vblank_simulate: vblank timer overrun
[  539.684261][    C0] vkms_vblank_simulate: vblank timer overrun
[  539.763586][ T8897] NILFS (loop4): device size too small
[  539.778036][ T8897] netlink: 'syz.4.839': attribute type 5 has an invalid length.
[  539.902467][ T8903] netlink: 112 bytes leftover after parsing attributes in process `syz.4.841'.
[  539.910808][ T8903] netlink: 112 bytes leftover after parsing attributes in process `syz.4.841'.
[  540.228359][ T8911] fuse: Bad value for 'user_id'
[  540.230807][ T8911] fuse: Bad value for 'user_id'
[  540.236289][   T40] audit: type=1800 audit(1738781762.383:172): pid=8911 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.845" name="file1" dev="tmpfs" ino=1303 res=0 errno=0
[  540.246900][ T8913] tap0: tun_chr_ioctl cmd 1074025675
[  540.289588][ T8913] tap0: persist enabled
[  540.297183][ T8915] netlink: 4 bytes leftover after parsing attributes in process `syz.0.847'.
[  540.298485][ T8913] tap0: tun_chr_ioctl cmd 1074025675
[  540.304657][ T8913] tap0: persist disabled
[  540.940091][ T8925] netlink: 112 bytes leftover after parsing attributes in process `syz.2.850'.
[  540.948837][ T8925] netlink: 112 bytes leftover after parsing attributes in process `syz.2.850'.
[  541.377674][ T8939] netlink: 16 bytes leftover after parsing attributes in process `syz.2.855'.
[  541.435435][ T8939] IPVS: stopping master sync thread 8941 ...
[  541.457058][ T8941] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 0, id = 0
[  541.557000][ T8939] o2cb: This node has not been configured.
[  541.579658][    C0] vkms_vblank_simulate: vblank timer overrun
[  541.621015][ T8939] o2cb: Cluster check failed. Fix errors before retrying.
[  541.636935][ T8939] (syz.2.855,8939,1):user_dlm_register:674 ERROR: status = -22
[  541.641735][ T8939] (syz.2.855,8939,1):dlmfs_mkdir:437 ERROR: Error -22 could not register domain "file0"
[  541.753810][    C0] vkms_vblank_simulate: vblank timer overrun
[  541.967166][ T8950] netlink: 112 bytes leftover after parsing attributes in process `syz.0.859'.
[  541.973133][ T8950] netlink: 112 bytes leftover after parsing attributes in process `syz.0.859'.
[  542.253768][    C0] vkms_vblank_simulate: vblank timer overrun
[  542.358454][ T8961] random: crng reseeded on system resumption
[  542.512581][   T57] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  542.602911][ T8968] netlink: 24 bytes leftover after parsing attributes in process `syz.1.864'.
[  542.720624][   T57] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  542.725275][   T57] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  542.741080][   T57] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  542.746502][   T57] usb 7-1: config 1 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  542.756288][   T57] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  542.765232][   T57] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  542.768774][   T57] usb 7-1: Product: syz
[  542.771033][   T57] usb 7-1: Manufacturer: syz
[  542.777443][   T57] cdc_wdm 7-1:1.0: skipping garbage
[  542.780696][   T57] cdc_wdm 7-1:1.0: skipping garbage
[  542.783052][   T57] cdc_wdm 7-1:1.0: probe with driver cdc_wdm failed with error -22
[  542.928276][ T8974] netlink: 4 bytes leftover after parsing attributes in process `syz.1.865'.
[  542.931934][ T8974] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  542.936277][ T8974] batman_adv: batadv0: Removing interface: batadv_slave_0
[  542.998572][ T6637] usb 7-1: USB disconnect, device number 8
[  543.073466][ T8974] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  543.079363][ T8974] batman_adv: batadv0: Removing interface: batadv_slave_1
[  543.372265][ T8981] netlink: 112 bytes leftover after parsing attributes in process `syz.0.868'.
[  543.380814][ T8981] netlink: 112 bytes leftover after parsing attributes in process `syz.0.868'.
[  543.795927][ T8990] netlink: 'syz.1.872': attribute type 10 has an invalid length.
[  543.797242][ T8991] netlink: 48 bytes leftover after parsing attributes in process `syz.0.873'.
[  543.825500][ T8990] IPv6: NLM_F_CREATE should be specified when creating new route
[  544.244430][ T6058] usb 9-1: new full-speed USB device number 4 using dummy_hcd
[  544.455078][ T6058] usb 9-1: config 0 has an invalid interface number: 50 but max is 0
[  544.458610][ T6058] usb 9-1: config 0 has no interface number 0
[  544.460988][ T6058] usb 9-1: config 0 interface 50 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  544.481983][ T6058] usb 9-1: config 0 interface 50 altsetting 0 endpoint 0x82 has invalid maxpacket 1023, setting to 64
[  544.541682][ T6058] usb 9-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[  544.545327][ T6058] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  544.560652][ T6058] usb 9-1: Product: syz
[  544.563452][ T6058] usb 9-1: Manufacturer: syz
[  544.569698][ T6058] usb 9-1: SerialNumber: syz
[  544.576713][ T6058] usb 9-1: config 0 descriptor??
[  544.587464][ T9006] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  544.592262][ T9000] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  544.611565][ T9006] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  544.638493][ T6058] yurex 9-1:0.50: USB YUREX device now attached to Yurex #0
[  544.652430][ T9006] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  544.716171][    C0] vkms_vblank_simulate: vblank timer overrun
[  544.881267][ T1451] usb 9-1: USB disconnect, device number 4
[  544.887732][ T1451] yurex 9-1:0.50: USB YUREX #0 now disconnected
[  545.317576][ T9018] fuse: Bad value for 'fd'
[  545.329043][   T40] audit: type=1800 audit(1738781767.144:173): pid=9018 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.882" name="file1" dev="tmpfs" ino=1287 res=0 errno=0
[  545.608368][    C0] vkms_vblank_simulate: vblank timer overrun
[  546.458419][ T9042] __nla_validate_parse: 1 callbacks suppressed
[  546.458482][ T9042] netlink: 12 bytes leftover after parsing attributes in process `syz.2.889'.
[  546.472405][ T9042] netlink: 12 bytes leftover after parsing attributes in process `syz.2.889'.
[  546.660803][   T66] Bluetooth: hci1: command 0x0406 tx timeout
[  546.817021][   T66] Bluetooth: hci2: command 0x0406 tx timeout
[  546.820140][ T5998] Bluetooth: hci3: command 0x0405 tx timeout
[  547.109489][ T9052] netlink: 112 bytes leftover after parsing attributes in process `syz.1.891'.
[  547.113888][ T9052] netlink: 112 bytes leftover after parsing attributes in process `syz.1.891'.
[  547.340154][    C0] vkms_vblank_simulate: vblank timer overrun
[  547.636167][    C0] vkms_vblank_simulate: vblank timer overrun
[  547.693895][ T9049] fuse: Bad value for 'fd'
[  547.960754][ T9068] netlink: 4 bytes leftover after parsing attributes in process `syz.1.897'.
[  548.053608][ T9066] random: crng reseeded on system resumption
[  548.132599][    C0] vkms_vblank_simulate: vblank timer overrun
[  549.133538][ T6205] Bluetooth: Error in BCSP hdr checksum
[  549.311584][ T9085] netlink: 112 bytes leftover after parsing attributes in process `syz.1.903'.
[  549.336190][ T9085] netlink: 112 bytes leftover after parsing attributes in process `syz.1.903'.
[  549.406924][ T6022] Bluetooth: Error in BCSP hdr checksum
[  549.676074][    C0] vkms_vblank_simulate: vblank timer overrun
[  549.691803][ T6022] Bluetooth: Error in BCSP hdr checksum
[  550.414416][ T9108] nvme_fabrics: missing parameter 'transport=%s'
[  550.420268][ T9108] nvme_fabrics: missing parameter 'nqn=%s'
[  550.813981][ T5998] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  551.017192][   T66] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  551.017985][ T5998] Bluetooth: hci5: command 0x1003 tx timeout
[  551.020137][    C0] vkms_vblank_simulate: vblank timer overrun
[  551.060121][    C0] vkms_vblank_simulate: vblank timer overrun
[  552.073372][ T9142] netlink: 4 bytes leftover after parsing attributes in process `syz.1.919'.
[  552.129073][    C0] vkms_vblank_simulate: vblank timer overrun
[  552.149001][ T9148] fuse: Bad value for 'fd'
[  552.172294][   T40] audit: type=1800 audit(1738781773.552:174): pid=9148 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.920" name="file1" dev="tmpfs" ino=1413 res=0 errno=0
[  552.200585][    C0] vkms_vblank_simulate: vblank timer overrun
[  552.748502][   T66] Bluetooth: hci1: unexpected event for opcode 0x2041
[  552.988721][ T9172] netlink: 112 bytes leftover after parsing attributes in process `syz.4.928'.
[  553.000960][ T9172] netlink: 112 bytes leftover after parsing attributes in process `syz.4.928'.
[  553.044448][ T9174] fuse: Invalid rootmode
[  553.050705][   T40] audit: type=1800 audit(1738781774.375:175): pid=9174 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.929" name="file1" dev="tmpfs" ino=1363 res=0 errno=0
[  553.153235][ T9176] netlink: 12 bytes leftover after parsing attributes in process `syz.4.931'.
[  553.244713][   T66] block nbd0: Receive control failed (result -32)
[  553.260337][ T5998] block nbd0: Receive control failed (result -32)
[  553.268315][ T9159] block nbd0: shutting down sockets
[  553.320570][ T9184] loop9: detected capacity change from 0 to 1
[  553.348573][ T9184] Dev loop9: unable to read RDB block 1
[  553.351754][ T9184]  loop9: unable to read partition table
[  553.355386][ T9184] loop9: partition table beyond EOD, truncated
[  553.376225][ T9184] loop_reread_partitions: partition scan of loop9 (þ被xü—ŸÑà– ) failed (rc=-5)
[  553.401137][    C0] vkms_vblank_simulate: vblank timer overrun
[  553.466937][ T6032] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  553.716154][    C0] vkms_vblank_simulate: vblank timer overrun
[  553.741049][ T6032] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  553.755819][ T6032] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  553.780658][ T6032] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  553.811127][ T6032] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  553.872697][ T6032] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  553.886807][ T6032] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  553.901153][ T6032] usb 6-1: Manufacturer: syz
[  553.938106][ T6032] usb 6-1: config 0 descriptor??
[  553.976180][    C0] vkms_vblank_simulate: vblank timer overrun
[  554.404446][ T6032] appleir 0003:05AC:8243.0006: unknown main item tag 0x0
[  554.425046][ T6032] appleir 0003:05AC:8243.0006: No inputs registered, leaving
[  554.440146][ T6032] appleir 0003:05AC:8243.0006: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.1-1/input0
[  554.459676][ T6637] usb 9-1: new full-speed USB device number 5 using dummy_hcd
[  554.633215][ T6637] usb 9-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  554.637262][ T6637] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84
[  554.642206][ T6637] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  554.658749][ T6637] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  554.683365][ T6637] usb 9-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  554.708158][ T6637] usb 9-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[  554.715449][ T6637] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  554.728719][ T6637] usb 9-1: Product: syz
[  554.744139][ T6637] usb 9-1: Manufacturer: syz
[  554.751598][ T6637] usb 9-1: SerialNumber: syz
[  554.758050][ T6637] usb 9-1: config 0 descriptor??
[  554.784140][ T6637] input: KB Gear Tablet as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/input/input15
[  554.939486][    C0] vkms_vblank_simulate: vblank timer overrun
[  555.156511][    C0] vkms_vblank_simulate: vblank timer overrun
[  555.557385][ T9210] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  555.561438][ T9210] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  556.755096][   T30] usb 6-1: USB disconnect, device number 10
[  557.060248][ T5998] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  557.069998][ T5998] Bluetooth: hci1: Injecting HCI hardware error event
[  557.088254][ T5998] Bluetooth: hci1: hardware error 0x00
[  557.183677][ T9232] trusted_key: syz.1.948 sent an empty control message without MSG_MORE.
[  557.641479][   T30] usb 9-1: USB disconnect, device number 5
[  557.761391][ T5313] Bluetooth: hci2: command 0x0406 tx timeout
[  559.223092][ T9259] 9pnet_virtio: no channels available for device syz
[  559.297090][ T5998] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  559.494696][ T6058] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  559.545019][ T9261] sg_write: data in/out 11/14 bytes for SCSI command 0x0-- guessing data in;
[  559.545019][ T9261]    program syz.2.955 not setting count and/or reply_len properly
[  559.696900][ T6058] usb 9-1: Using ep0 maxpacket: 8
[  559.733646][ T6058] usb 9-1: config 0 has no interfaces?
[  559.801148][ T6058] usb 9-1: New USB device found, idVendor=05e1, idProduct=0893, bcdDevice=fd.5b
[  559.826582][    C0] vkms_vblank_simulate: vblank timer overrun
[  559.830651][ T6058] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  559.848975][ T6058] usb 9-1: Product: syz
[  559.856296][ T6058] usb 9-1: Manufacturer: syz
[  559.859448][ T6058] usb 9-1: SerialNumber: syz
[  559.889081][ T6058] usb 9-1: config 0 descriptor??
[  560.129548][   T57] usb 9-1: USB disconnect, device number 6
[  560.231721][ T9269] netlink: 28 bytes leftover after parsing attributes in process `syz.1.960'.
[  560.237269][ T9269] netlink: 'syz.1.960': attribute type 7 has an invalid length.
[  560.248534][ T9269] netlink: 'syz.1.960': attribute type 8 has an invalid length.
[  560.260807][ T9269] netlink: 4 bytes leftover after parsing attributes in process `syz.1.960'.
[  560.362146][ T9277] random: crng reseeded on system resumption
[  560.385106][ T9277] Restarting kernel threads ... done.
[  560.422160][   T40] audit: type=1326 audit(1738781781.269:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9276 comm="syz.1.964" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f85579 code=0x0
[  560.606381][   T40] audit: type=1326 audit(1738781781.418:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9274 comm="syz.0.962" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f47579 code=0x0
[  561.051370][ T9289] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  561.051394][ T9289] UDF-fs: Scanning with blocksize 2048 failed
[  561.063253][ T9289] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  561.063275][ T9289] UDF-fs: Scanning with blocksize 4096 failed
[  561.300093][    C0] vkms_vblank_simulate: vblank timer overrun
[  561.567911][    C0] vkms_vblank_simulate: vblank timer overrun
[  561.879586][    C0] vkms_vblank_simulate: vblank timer overrun
[  561.916414][   T40] audit: type=1326 audit(1738781782.663:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9301 comm="syz.1.968" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000
[  561.931469][   T40] audit: type=1326 audit(1738781782.663:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9301 comm="syz.1.968" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000
[  562.007347][   T40] audit: type=1326 audit(1738781782.663:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9301 comm="syz.1.968" exe="/syz-executor" sig=0 arch=40000003 syscall=375 compat=1 ip=0xf7f85579 code=0x7ffc0000
[  562.011527][ T9318] netlink: 260 bytes leftover after parsing attributes in process `syz.4.974'.
[  562.020696][ T9318] netlink: 260 bytes leftover after parsing attributes in process `syz.4.974'.
[  562.026300][   T40] audit: type=1326 audit(1738781782.728:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9301 comm="syz.1.968" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000
[  562.065472][    C0] vkms_vblank_simulate: vblank timer overrun
[  562.087440][   T40] audit: type=1326 audit(1738781782.728:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9301 comm="syz.1.968" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000
[  562.121358][    C0] vkms_vblank_simulate: vblank timer overrun
[  562.243846][   T40] audit: type=1326 audit(1738781782.747:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9301 comm="syz.1.968" exe="/syz-executor" sig=0 arch=40000003 syscall=430 compat=1 ip=0xf7f85579 code=0x7ffc0000
[  562.259287][   T40] audit: type=1326 audit(1738781782.747:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9301 comm="syz.1.968" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000
[  562.282945][   T40] audit: type=1326 audit(1738781782.747:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9301 comm="syz.1.968" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000
[  562.737385][ T9327] befs: (nullb0): No write support. Marking filesystem read-only
[  562.754467][ T9327] befs: (nullb0): invalid magic header
[  563.905548][ T6058] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  564.080797][ T6058] usb 5-1: Using ep0 maxpacket: 8
[  564.116499][ T6058] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  564.120158][ T6058] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  564.123846][ T6058] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  564.156576][ T6058] usb 5-1: config 0 descriptor??
[  564.175516][ T6058] iowarrior 5-1:0.0: no interrupt-in endpoint found
[  564.789689][ T9351] can0: slcan on ttyS3.
[  565.030968][   T57] usb 5-1: USB disconnect, device number 12
[  565.337738][    C0] vkms_vblank_simulate: vblank timer overrun
[  565.528093][    C0] vkms_vblank_simulate: vblank timer overrun
[  565.662388][ T9344] can0 (unregistered): slcan off ttyS3.
[  565.950735][    C0] vkms_vblank_simulate: vblank timer overrun
[  566.368154][    C0] vkms_vblank_simulate: vblank timer overrun
[  566.514008][    C0] vkms_vblank_simulate: vblank timer overrun
[  566.625814][ T9393] lo speed is unknown, defaulting to 1000
[  566.629314][ T9393] lo speed is unknown, defaulting to 1000
[  566.692320][ T9393] lo speed is unknown, defaulting to 1000
[  566.709054][ T9393] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  566.771063][ T9393] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  566.915067][    C0] vkms_vblank_simulate: vblank timer overrun
[  566.972068][    C0] vkms_vblank_simulate: vblank timer overrun
[  567.003870][    C0] vkms_vblank_simulate: vblank timer overrun
[  567.075423][ T9393] lo speed is unknown, defaulting to 1000
[  567.084215][ T9394] lo speed is unknown, defaulting to 1000
[  567.126723][    C0] vkms_vblank_simulate: vblank timer overrun
[  567.220813][ T9393] lo speed is unknown, defaulting to 1000
[  567.236181][ T9393] lo speed is unknown, defaulting to 1000
[  567.250475][ T9393] lo speed is unknown, defaulting to 1000
[  567.283369][ T9393] lo speed is unknown, defaulting to 1000
[  567.332043][    C0] vkms_vblank_simulate: vblank timer overrun
[  568.828037][    C0] vkms_vblank_simulate: vblank timer overrun
[  569.090567][    C0] vkms_vblank_simulate: vblank timer overrun
[  569.182931][    C0] vkms_vblank_simulate: vblank timer overrun
[  569.602776][    C0] vkms_vblank_simulate: vblank timer overrun
[  569.784499][    C0] vkms_vblank_simulate: vblank timer overrun
[  570.020196][    C0] vkms_vblank_simulate: vblank timer overrun
[  570.358536][    C0] vkms_vblank_simulate: vblank timer overrun
[  570.581362][    C0] vkms_vblank_simulate: vblank timer overrun
[  570.656842][    C0] vkms_vblank_simulate: vblank timer overrun
[  570.873544][    C0] vkms_vblank_simulate: vblank timer overrun
[  571.027047][    C0] vkms_vblank_simulate: vblank timer overrun
[  571.075268][    C0] vkms_vblank_simulate: vblank timer overrun
[  571.463272][ T9406] netlink: 'syz.4.995': attribute type 5 has an invalid length.
[  571.557679][ T9408] fuse: Unknown parameter 'use00000000000000000000'
[  571.572426][   T40] kauditd_printk_skb: 10 callbacks suppressed
[  571.572546][   T40] audit: type=1800 audit(1738781791.689:196): pid=9408 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.996" name="file1" dev="tmpfs" ino=513 res=0 errno=0
[  572.383818][    C0] vkms_vblank_simulate: vblank timer overrun
[  572.455981][    C0] vkms_vblank_simulate: vblank timer overrun
[  572.577674][    C0] vkms_vblank_simulate: vblank timer overrun
[  572.614053][    C0] vkms_vblank_simulate: vblank timer overrun
[  572.773227][ T9418] openvswitch: netlink: Mixed IPv4 and IPv6 tunnel attributes
[  572.923433][ T5998] Bluetooth: hci3: unexpected event for opcode 0x2040
[  573.026546][    C0] vkms_vblank_simulate: vblank timer overrun
[  573.524023][    C0] vkms_vblank_simulate: vblank timer overrun
[  573.787434][    C0] vkms_vblank_simulate: vblank timer overrun
[  573.915779][ T9431] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1002'.
[  573.966180][ T9431] batman_adv: batadv0: Removing interface: dummy0
[  573.969579][    C0] vkms_vblank_simulate: vblank timer overrun
[  573.995767][ T9431] batman_adv: batadv0: Removing interface: batadv_slave_0
[  574.004135][    C0] vkms_vblank_simulate: vblank timer overrun
[  574.024643][ T9431] batman_adv: batadv0: Removing interface: batadv_slave_1
[  574.114508][    C0] vkms_vblank_simulate: vblank timer overrun
[  574.172629][    C0] vkms_vblank_simulate: vblank timer overrun
[  574.325830][    C0] vkms_vblank_simulate: vblank timer overrun
[  574.504459][    C0] vkms_vblank_simulate: vblank timer overrun
[  574.575975][    C0] vkms_vblank_simulate: vblank timer overrun
[  574.681671][    C0] vkms_vblank_simulate: vblank timer overrun
[  574.762175][    C0] vkms_vblank_simulate: vblank timer overrun
[  575.233544][    C0] vkms_vblank_simulate: vblank timer overrun
[  575.361129][    C0] vkms_vblank_simulate: vblank timer overrun
[  575.430261][    C0] vkms_vblank_simulate: vblank timer overrun
[  575.492322][ T9440] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  575.502935][ T9440] overlayfs: failed to set xattr on upper
[  575.525819][ T9440] overlayfs: ...falling back to redirect_dir=nofollow.
[  575.554011][ T9440] overlayfs: ...falling back to index=off.
[  575.566189][ T9441] bond0: up delay (5) is not a multiple of miimon (4), value rounded to 4 ms
[  575.579707][ T9440] overlayfs: ...falling back to uuid=null.
[  575.600313][ T9441] netlink: 'syz.4.1005': attribute type 10 has an invalid length.
[  575.608931][ T9441] bridge0: port 2(bridge_slave_1) entered disabled state
[  575.612889][ T9441] bridge0: port 1(bridge_slave_0) entered disabled state
[  575.629573][ T9441] bridge0: port 2(bridge_slave_1) entered blocking state
[  575.633871][ T9441] bridge0: port 2(bridge_slave_1) entered forwarding state
[  575.639221][ T9441] bridge0: port 1(bridge_slave_0) entered blocking state
[  575.646551][ T9441] bridge0: port 1(bridge_slave_0) entered forwarding state
[  575.655637][ T9441] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  575.714944][ T1134] bond0: (slave bridge0): link status definitely up, 0 Mbps full duplex
[  575.890319][    C0] vkms_vblank_simulate: vblank timer overrun
[  575.921985][ T9440] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  575.926587][ T9440] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[  575.935745][ T9440] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  575.951524][ T9440] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[  576.981037][    C0] vkms_vblank_simulate: vblank timer overrun
[  577.028463][ T9459] ptrace attach of ""[9460] was attempted by "/syz-executor exec"[9459]
[  577.650663][ T9465] 
[  577.837133][ T9471] netlink: 'syz.1.1013': attribute type 8 has an invalid length.
[  578.253694][ T9479] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1016'.
[  578.257906][ T9479] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1016'.
[  578.716933][ T9488] syzkaller1: entered promiscuous mode
[  578.718581][ T9488] syzkaller1: entered allmulticast mode
[  579.032131][ T9497] lo speed is unknown, defaulting to 1000
[  579.278454][ T9513] loop6: detected capacity change from 0 to 524287999
[  579.306844][    C1] blk_print_req_error: 25 callbacks suppressed
[  579.306857][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  579.312201][    C1] buffer_io_error: 25 callbacks suppressed
[  579.312208][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  579.318109][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  579.321561][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  579.327031][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  579.330640][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  579.336679][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  579.340136][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  579.344200][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  579.347501][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  579.350528][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  579.353193][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  579.394067][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  579.397510][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  579.402058][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  579.405551][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  579.410879][ T9513] ldm_validate_partition_table(): Disk read failed.
[  579.469814][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  579.473749][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  579.477672][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  579.480778][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  579.487450][ T9513] Dev loop6: unable to read RDB block 0
[  579.492882][ T9513]  loop6: unable to read partition table
[  579.494648][ T9513] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[  579.506677][ T9515] ldm_validate_partition_table(): Disk read failed.
[  579.509813][ T9515] Dev loop6: unable to read RDB block 0
[  579.517479][ T9515]  loop6: unable to read partition table
[  579.519497][ T9515] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[  580.366014][ T9534] vivid-000: disconnect
[  580.367875][ T9535] FAULT_INJECTION: forcing a failure.
[  580.367875][ T9535] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  580.372864][ T9535] CPU: 3 UID: 0 PID: 9535 Comm: syz.1.1033 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[  580.372876][ T9535] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  580.372881][ T9535] Call Trace:
[  580.372885][ T9535]  <TASK>
[  580.372889][ T9535]  dump_stack_lvl+0x16c/0x1f0
[  580.372907][ T9535]  should_fail_ex+0x50a/0x650
[  580.372927][ T9535]  _copy_to_user+0x32/0xd0
[  580.372950][ T9535]  simple_read_from_buffer+0xd0/0x160
[  580.372976][ T9535]  proc_fail_nth_read+0x198/0x270
[  580.373000][ T9535]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  580.373024][ T9535]  ? rw_verify_area+0xcf/0x680
[  580.373048][ T9535]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  580.373071][ T9535]  vfs_read+0x1df/0xbf0
[  580.373087][ T9535]  ? __fget_files+0x1fc/0x3a0
[  580.373105][ T9535]  ? __pfx___mutex_lock+0x10/0x10
[  580.373143][ T9535]  ? __pfx_vfs_read+0x10/0x10
[  580.373166][ T9535]  ? __fget_files+0x206/0x3a0
[  580.373189][ T9535]  ksys_read+0x12b/0x250
[  580.373215][ T9535]  ? __pfx_ksys_read+0x10/0x10
[  580.373227][ T9535]  ? rcu_is_watching+0x12/0xc0
[  580.373243][ T9535]  __do_fast_syscall_32+0x73/0x120
[  580.373259][ T9535]  do_fast_syscall_32+0x32/0x80
[  580.373273][ T9535]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  580.373288][ T9535] RIP: 0023:0xf7f85579
[  580.373296][ T9535] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  580.373305][ T9535] RSP: 002b:00000000f50a6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  580.373314][ T9535] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f50a6620
[  580.373320][ T9535] RDX: 000000000000000f RSI: 00000000f740cff4 RDI: 0000000000000000
[  580.373325][ T9535] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  580.373330][ T9535] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  580.373335][ T9535] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  580.373346][ T9535]  </TASK>
[  580.435042][ T9532] vivid-000: reconnect
[  580.544823][   T40] audit: type=1326 audit(1738781800.089:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9548 comm="syz.4.1038" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f01579 code=0x7ffc0000
[  580.552397][ T9547] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  580.561450][   T40] audit: type=1326 audit(1738781800.089:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9548 comm="syz.4.1038" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f01579 code=0x7ffc0000
[  580.572193][   T40] audit: type=1326 audit(1738781800.089:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9548 comm="syz.4.1038" exe="/syz-executor" sig=0 arch=40000003 syscall=332 compat=1 ip=0xf7f01579 code=0x7ffc0000
[  580.578562][   T40] audit: type=1326 audit(1738781800.089:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9548 comm="syz.4.1038" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f01579 code=0x7ffc0000
[  580.586311][   T40] audit: type=1326 audit(1738781800.089:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9548 comm="syz.4.1038" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f01579 code=0x7ffc0000
[  580.594244][   T40] audit: type=1326 audit(1738781800.089:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9548 comm="syz.4.1038" exe="/syz-executor" sig=0 arch=40000003 syscall=292 compat=1 ip=0xf7f01579 code=0x7ffc0000
[  580.602620][   T40] audit: type=1326 audit(1738781800.089:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9548 comm="syz.4.1038" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f01579 code=0x7ffc0000
[  580.610819][   T40] audit: type=1326 audit(1738781800.089:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9548 comm="syz.4.1038" exe="/syz-executor" sig=0 arch=40000003 syscall=41 compat=1 ip=0xf7f01579 code=0x7ffc0000
[  580.617070][   T40] audit: type=1326 audit(1738781800.089:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9548 comm="syz.4.1038" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f01579 code=0x7ffc0000
[  580.624641][   T40] audit: type=1326 audit(1738781800.089:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9548 comm="syz.4.1038" exe="/syz-executor" sig=0 arch=40000003 syscall=293 compat=1 ip=0xf7f01579 code=0x7ffc0000
[  580.684584][ T9557] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1038'.
[  580.687237][ T9557] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1038'.
[  581.142008][ T9567] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  581.180042][ T9567] overlay: filesystem on ./bus not supported as upperdir
[  581.629861][ T9580] overlay: ./file0 is not a directory
[  581.696974][ T9584] input: syz0 as /devices/virtual/input/input16
[  581.834208][ T9585] tmpfs: Bad value for 'huge'
[  582.452855][ T9594] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1052'.
[  582.476556][ T9598] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1054'.
[  582.488338][ T9598] bridge0: port 1(bridge_slave_0) entered disabled state
[  582.589930][ T9611] FAULT_INJECTION: forcing a failure.
[  582.589930][ T9611] name failslab, interval 1, probability 0, space 0, times 0
[  582.595145][ T9611] CPU: 2 UID: 0 PID: 9611 Comm: syz.1.1058 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[  582.595165][ T9611] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  582.595174][ T9611] Call Trace:
[  582.595180][ T9611]  <TASK>
[  582.595187][ T9611]  dump_stack_lvl+0x16c/0x1f0
[  582.595216][ T9611]  should_fail_ex+0x50a/0x650
[  582.595236][ T9611]  ? fs_reclaim_acquire+0xae/0x150
[  582.595265][ T9611]  should_failslab+0xc2/0x120
[  582.595301][ T9611]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  582.595321][ T9611]  ? __alloc_skb+0x2b3/0x380
[  582.595351][ T9611]  __alloc_skb+0x2b3/0x380
[  582.595376][ T9611]  ? __pfx___alloc_skb+0x10/0x10
[  582.595401][ T9611]  ? lock_acquire+0x2f/0xb0
[  582.595427][ T9611]  netlink_alloc_large_skb+0x69/0x130
[  582.595453][ T9611]  netlink_sendmsg+0x689/0xd70
[  582.595480][ T9611]  ? __pfx_netlink_sendmsg+0x10/0x10
[  582.595512][ T9611]  ____sys_sendmsg+0x9ae/0xb40
[  582.595536][ T9611]  ? __pfx_____sys_sendmsg+0x10/0x10
[  582.595556][ T9611]  ? get_compat_msghdr+0x11b/0x170
[  582.595587][ T9611]  ___sys_sendmsg+0x135/0x1e0
[  582.595606][ T9611]  ? __pfx____sys_sendmsg+0x10/0x10
[  582.595638][ T9611]  ? __pfx_lock_release+0x10/0x10
[  582.595657][ T9611]  ? trace_lock_acquire+0x14e/0x1f0
[  582.595682][ T9611]  ? __fget_files+0x206/0x3a0
[  582.595706][ T9611]  __sys_sendmsg+0x16e/0x220
[  582.595740][ T9611]  ? __pfx___sys_sendmsg+0x10/0x10
[  582.595775][ T9598] bridge_slave_0 (unregistering): left allmulticast mode
[  582.595774][ T9611]  __do_fast_syscall_32+0x73/0x120
[  582.595801][ T9611]  do_fast_syscall_32+0x32/0x80
[  582.595826][ T9611]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  582.595852][ T9611] RIP: 0023:0xf7f85579
[  582.595865][ T9611] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  582.595881][ T9611] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  582.595897][ T9611] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000000
[  582.595908][ T9611] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000000
[  582.595918][ T9611] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  582.595927][ T9611] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  582.595937][ T9611] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  582.595958][ T9611]  </TASK>
[  582.665021][ T9598] bridge_slave_0 (unregistering): left promiscuous mode
[  582.667166][ T9598] bridge0: port 1(bridge_slave_0) entered disabled state
[  582.929364][ T9627] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  582.933251][ T9631] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1064'.
[  583.113388][ T9638] netlink: 'syz.1.1066': attribute type 21 has an invalid length.
[  583.116561][ T9638] netlink: 128 bytes leftover after parsing attributes in process `syz.1.1066'.
[  583.120288][ T9638] netlink: 'syz.1.1066': attribute type 4 has an invalid length.
[  583.125412][ T9638] netlink: 'syz.1.1066': attribute type 3 has an invalid length.
[  583.128567][ T9638] netlink: 3 bytes leftover after parsing attributes in process `syz.1.1066'.
[  583.171330][ T9640] FAULT_INJECTION: forcing a failure.
[  583.171330][ T9640] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  583.175757][ T9640] CPU: 2 UID: 0 PID: 9640 Comm: syz.1.1067 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[  583.175770][ T9640] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  583.175776][ T9640] Call Trace:
[  583.175779][ T9640]  <TASK>
[  583.175784][ T9640]  dump_stack_lvl+0x16c/0x1f0
[  583.175802][ T9640]  should_fail_ex+0x50a/0x650
[  583.175815][ T9640]  _copy_to_user+0x32/0xd0
[  583.175829][ T9640]  simple_read_from_buffer+0xd0/0x160
[  583.175845][ T9640]  proc_fail_nth_read+0x198/0x270
[  583.175859][ T9640]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  583.175873][ T9640]  ? rw_verify_area+0xcf/0x680
[  583.175887][ T9640]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  583.175900][ T9640]  vfs_read+0x1df/0xbf0
[  583.175909][ T9640]  ? __fget_files+0x1fc/0x3a0
[  583.175919][ T9640]  ? __pfx___mutex_lock+0x10/0x10
[  583.175933][ T9640]  ? __pfx_vfs_read+0x10/0x10
[  583.175945][ T9640]  ? __fget_files+0x206/0x3a0
[  583.175958][ T9640]  ksys_read+0x12b/0x250
[  583.175967][ T9640]  ? __pfx_ksys_read+0x10/0x10
[  583.175977][ T9640]  ? __secure_computing+0x273/0x3f0
[  583.175989][ T9640]  __do_fast_syscall_32+0x73/0x120
[  583.176004][ T9640]  do_fast_syscall_32+0x32/0x80
[  583.176018][ T9640]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  583.176033][ T9640] RIP: 0023:0xf7f85579
[  583.176041][ T9640] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  583.176050][ T9640] RSP: 002b:00000000f50a6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  583.176059][ T9640] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f50a6620
[  583.176065][ T9640] RDX: 000000000000000f RSI: 00000000f740cff4 RDI: 0000000000000000
[  583.176070][ T9640] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  583.176075][ T9640] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  583.176080][ T9640] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  583.176091][ T9640]  </TASK>
[  583.391758][ T9646] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1070'.
[  583.511494][ T9655] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1072'.
[  583.525025][ T9658] random: crng reseeded on system resumption
[  583.609561][ T9662] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1077'.
[  583.701156][ T9664] ufs: You didn't specify the type of your ufs filesystem
[  583.701156][ T9664] 
[  583.701156][ T9664] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  583.701156][ T9664] 
[  583.701156][ T9664] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  583.714583][ T9664] ufs: ufstype=old is supported read-only
[  583.718720][ T9664] bio_check_eod: 2 callbacks suppressed
[  583.718733][ T9664] syz.0.1078: attempt to access beyond end of device
[  583.718733][ T9664] loop1: rw=0, sector=16, nr_sectors = 2 limit=0
[  584.294001][ T9683] unsupported nlmsg_type 40
[  584.796382][ T9691] 9pnet: Could not find request transport: fd0x0000000000000003
[  585.035334][ T9709] input: syz1 as /devices/virtual/input/input17
[  585.290269][ T9721] overlayfs: conflicting lowerdir path
[  586.014275][ T9727] netlink: 'syz.1.1100': attribute type 4 has an invalid length.
[  586.118186][ T9727] netlink: 'syz.1.1100': attribute type 4 has an invalid length.
[  586.444469][ T9742] netlink: 'syz.0.1105': attribute type 1 has an invalid length.
[  586.462923][ T9742] bond1: entered promiscuous mode
[  586.464586][ T9742] 8021q: adding VLAN 0 to HW filter on device bond1
[  586.502121][ T9742] 8021q: adding VLAN 0 to HW filter on device bond1
[  586.504810][ T9742] bond1: (slave ip6gre1): The slave device specified does not support setting the MAC address
[  586.520333][ T9742] bond1: (slave ip6gre1): Setting fail_over_mac to active for active-backup mode
[  586.524178][ T9742] bond1: (slave ip6gre1): making interface the new active one
[  586.526415][ T9742] ip6gre1: entered promiscuous mode
[  586.529031][ T9742] bond1: (slave ip6gre1): Enslaving as an active interface with an up link
[  586.531938][ T9748] __nla_validate_parse: 6 callbacks suppressed
[  586.531947][ T9748] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1107'.
[  586.569506][ T9742] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1105'.
[  586.779498][ T9742] bond1 (unregistering): (slave ip6gre1): Releasing backup interface
[  586.781984][ T9742] ip6gre1: left promiscuous mode
[  586.786591][ T9742] bond1 (unregistering): Released all slaves
[  586.792992][ T9746] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1104'.
[  586.987705][ T9761] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1109'.
[  587.001387][    C0] vkms_vblank_simulate: vblank timer overrun
[  587.531902][ T9776] FAULT_INJECTION: forcing a failure.
[  587.531902][ T9776] name failslab, interval 1, probability 0, space 0, times 0
[  587.535542][ T9776] CPU: 2 UID: 0 PID: 9776 Comm: syz.4.1116 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[  587.535555][ T9776] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  587.535561][ T9776] Call Trace:
[  587.535564][ T9776]  <TASK>
[  587.535568][ T9776]  dump_stack_lvl+0x16c/0x1f0
[  587.535586][ T9776]  should_fail_ex+0x50a/0x650
[  587.535599][ T9776]  ? fs_reclaim_acquire+0xae/0x150
[  587.535614][ T9776]  should_failslab+0xc2/0x120
[  587.535627][ T9776]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  587.535643][ T9776]  ? __alloc_skb+0x2b3/0x380
[  587.535660][ T9776]  __alloc_skb+0x2b3/0x380
[  587.535674][ T9776]  ? __pfx___alloc_skb+0x10/0x10
[  587.535705][ T9776]  ? lock_acquire+0x2f/0xb0
[  587.535720][ T9776]  netlink_alloc_large_skb+0x69/0x130
[  587.535735][ T9776]  netlink_sendmsg+0x689/0xd70
[  587.535749][ T9776]  ? __pfx_netlink_sendmsg+0x10/0x10
[  587.535766][ T9776]  ____sys_sendmsg+0x9ae/0xb40
[  587.535780][ T9776]  ? __pfx_____sys_sendmsg+0x10/0x10
[  587.535791][ T9776]  ? get_compat_msghdr+0x11b/0x170
[  587.535808][ T9776]  ___sys_sendmsg+0x135/0x1e0
[  587.535819][ T9776]  ? __pfx____sys_sendmsg+0x10/0x10
[  587.535832][ T9776]  ? __pfx_lock_release+0x10/0x10
[  587.535843][ T9776]  ? trace_lock_acquire+0x14e/0x1f0
[  587.535867][ T9776]  ? __fget_files+0x206/0x3a0
[  587.535881][ T9776]  __sys_sendmsg+0x16e/0x220
[  587.535890][ T9776]  ? __pfx___sys_sendmsg+0x10/0x10
[  587.535906][ T9776]  __do_fast_syscall_32+0x73/0x120
[  587.535921][ T9776]  do_fast_syscall_32+0x32/0x80
[  587.535935][ T9776]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  587.535951][ T9776] RIP: 0023:0xf7f01579
[  587.535958][ T9776] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  587.535967][ T9776] RSP: 002b:00000000f502655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  587.535976][ T9776] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000b40
[  587.535982][ T9776] RDX: 0000000020005014 RSI: 0000000000000000 RDI: 0000000000000000
[  587.535987][ T9776] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  587.535992][ T9776] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  587.535997][ T9776] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  587.536008][ T9776]  </TASK>
[  587.948588][ T9790] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1118'.
[  588.344361][ T9777] overlayfs: statfs failed on './file0'
[  588.548160][ T9818] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1120'.
[  588.680188][ T9832] IPVS: set_ctl: invalid protocol: 116 172.20.20.187:20000
[  588.723478][ T9826] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1123'.
[  589.406416][ T9870] fuse: Unknown parameter '0x0000000000000004'
[  589.411405][   T40] kauditd_printk_skb: 28 callbacks suppressed
[  589.411418][   T40] audit: type=1800 audit(1738781808.386:235): pid=9870 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1129" name="file1" dev="tmpfs" ino=1263 res=0 errno=0
[  590.385490][ T1451] hid-generic 0000:0000:0000.0007: item fetching failed at offset 0/1
[  590.395756][ T1451] hid-generic 0000:0000:0000.0007: probe with driver hid-generic failed with error -22
[  591.162522][ T9887] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  591.165049][ T9887] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000003: 0000 [#1] PREEMPT SMP KASAN NOPTI
SYZFAIL: failed to recv rpc
[  591.168732][ T9887] KASAN: null-ptr-deref in range [0x0000000000000018-0x000000000000001f]
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  591.171758][ T9887] CPU: 0 UID: 0 PID: 9887 Comm: syz.2.1133 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[  591.175320][ T9887] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  591.178420][ T9887] RIP: 0010:__lock_acquire+0xe4/0x3c40
[  591.180060][ T9887] Code: 08 84 d2 0f 85 15 14 00 00 44 8b 0d 3a 1d ca 0e 45 85 c9 0f 84 b4 0e 00 00 48 b8 00 00 00 00 00 fc ff df 4c 89 e2 48 c1 ea 03 <80> 3c 02 00 0f 85 96 2c 00 00 49 8b 04 24 48 3d a0 f7 78 93 0f 84
[  591.186118][ T9887] RSP: 0018:ffffc900234d7978 EFLAGS: 00010006
[  591.187887][ T9887] RAX: dffffc0000000000 RBX: 0000000000000001 RCX: 0000000000000000
[  591.190153][ T9887] RDX: 0000000000000003 RSI: 1ffff9200469af41 RDI: 0000000000000018
[  591.192444][ T9887] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000001
[  591.194715][ T9887] R10: ffffffff905fc517 R11: 0000000000000006 R12: 0000000000000018
[  591.197013][ T9887] R13: ffff88802345c880 R14: 0000000000000000 R15: 0000000000000000
[  591.199754][ T9887] FS:  0000000000000000(0000) GS:ffff88802b400000(0063) knlGS:00000000f5106b40
[  591.202417][ T9887] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  591.205200][ T9887] CR2: 000000000c3d83a6 CR3: 00000000120aa000 CR4: 0000000000352ef0
[  591.207599][ T9887] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  591.209890][ T9887] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  591.212174][ T9887] Call Trace:
[  591.213222][ T9887]  <TASK>
[  591.214099][ T9887]  ? die_addr+0x3b/0xa0
[  591.215463][ T9887]  ? exc_general_protection+0x155/0x230
[  591.217075][ T9887]  ? asm_exc_general_protection+0x26/0x30
[  591.218690][ T9887]  ? __lock_acquire+0xe4/0x3c40
[  591.220122][ T9887]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  591.221814][ T9887]  ? find_held_lock+0x2d/0x110
[  591.223616][ T9887]  ? __pfx_mark_lock+0x10/0x10
[  591.225460][ T9887]  ? __queue_work+0x431/0x1080
[  591.226858][ T9887]  ? __pfx_lock_release+0x10/0x10
[  591.228344][ T9887]  ? __pfx___lock_acquire+0x10/0x10
[  591.229860][ T9887]  lock_acquire.part.0+0x11b/0x380
[  591.231385][ T9887]  ? add_wait_queue+0x45/0x230
[  591.232815][ T9887]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  591.234455][ T9887]  ? rcu_is_watching+0x12/0xc0
[  591.235952][ T9887]  ? trace_lock_acquire+0x14e/0x1f0
[  591.237459][ T9887]  ? queue_work_on+0x9d/0x140
[  591.238836][ T9887]  ? add_wait_queue+0x45/0x230
[  591.240236][ T9887]  ? lock_acquire+0x2f/0xb0
[  591.241566][ T9887]  ? add_wait_queue+0x45/0x230
[  591.243552][ T9887]  _raw_spin_lock_irqsave+0x3a/0x60
[  591.245463][ T9887]  ? add_wait_queue+0x45/0x230
[  591.246835][ T9887]  add_wait_queue+0x45/0x230
[  591.248187][ T9887]  virtio_transport_release+0x644/0xa40
[  591.249788][ T9887]  ? find_held_lock+0x2d/0x110
[  591.251181][ T9887]  ? __pfx_virtio_transport_release+0x10/0x10
[  591.253102][ T9887]  ? __pfx_lock_release+0x10/0x10
[  591.254545][ T9887]  ? __pfx_woken_wake_function+0x10/0x10
[  591.256204][ T9887]  ? mark_held_locks+0x9f/0xe0
[  591.257599][ T9887]  ? __local_bh_enable_ip+0xa4/0x120
[  591.259276][ T9887]  __vsock_release+0x109/0x580
[  591.260690][ T9887]  ? __pfx_down_write+0x10/0x10
[  591.262113][ T9887]  vsock_release+0x99/0x130
[  591.263547][ T9887]  __sock_release+0xb0/0x270
[  591.264992][ T9887]  ? __pfx_sock_close+0x10/0x10
[  591.266453][ T9887]  sock_close+0x1c/0x30
[  591.267727][ T9887]  __fput+0x3ff/0xb70
[  591.268903][ T9887]  ? _raw_spin_unlock_irq+0x23/0x50
[  591.270389][ T9887]  task_work_run+0x14e/0x250
[  591.271779][ T9887]  ? __pfx_task_work_run+0x10/0x10
[  591.273330][ T9887]  syscall_exit_to_user_mode+0x27b/0x2a0
[  591.275038][ T9887]  __do_fast_syscall_32+0x80/0x120
[  591.276564][ T9887]  do_fast_syscall_32+0x32/0x80
[  591.278015][ T9887]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  591.279935][ T9887] RIP: 0023:0xf7fe3579
[  591.281163][ T9887] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  591.287089][ T9887] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 000000000000003f
[  591.289592][ T9887] RAX: 0000000000000005 RBX: 0000000000000007 RCX: 0000000000000005
[  591.291919][ T9887] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  591.294327][ T9887] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  591.296741][ T9887] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  591.299078][ T9887] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  591.301596][ T9887]  </TASK>
[  591.302550][ T9887] Modules linked in:
[  591.303859][ T9887] ---[ end trace 0000000000000000 ]---
[  591.305506][ T9887] RIP: 0010:__lock_acquire+0xe4/0x3c40
[  591.307175][ T9887] Code: 08 84 d2 0f 85 15 14 00 00 44 8b 0d 3a 1d ca 0e 45 85 c9 0f 84 b4 0e 00 00 48 b8 00 00 00 00 00 fc ff df 4c 89 e2 48 c1 ea 03 <80> 3c 02 00 0f 85 96 2c 00 00 49 8b 04 24 48 3d a0 f7 78 93 0f 84
[  591.312870][ T9887] RSP: 0018:ffffc900234d7978 EFLAGS: 00010006
[  591.314700][ T9887] RAX: dffffc0000000000 RBX: 0000000000000001 RCX: 0000000000000000
[  591.317038][ T9887] RDX: 0000000000000003 RSI: 1ffff9200469af41 RDI: 0000000000000018
[  591.319364][ T9887] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000001
[  591.321721][ T9887] R10: ffffffff905fc517 R11: 0000000000000006 R12: 0000000000000018
[  591.324145][ T9887] R13: ffff88802345c880 R14: 0000000000000000 R15: 0000000000000000
[  591.326495][ T9887] FS:  0000000000000000(0000) GS:ffff88802b400000(0063) knlGS:00000000f5106b40
[  591.329133][ T9887] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  591.331106][ T9887] CR2: 000000000c3d83a6 CR3: 00000000120aa000 CR4: 0000000000352ef0
[  591.333782][ T9887] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  591.336184][ T9887] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  591.338523][ T9887] Kernel panic - not syncing: Fatal exception
[  591.340954][ T9887] Kernel Offset: disabled
[  591.342278][ T9887] Rebooting in 86400 seconds..

VM DIAGNOSIS:
18:03:33  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff853824b5 RDI=ffffffff9aacfea0 RBP=ffffffff9aacfe60 RSP=ffffc900234d7370
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=000000004153414b
R12=0000000000000000 R13=0000000000000030 R14=ffffffff9aacfe60 R15=0000000000000000
RIP=ffffffff853824df RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c3d83a6 CR3=00000000120aa000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2323232323232323 2323232323232323
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=0000000000000002 RCX=ffffffff84c2b833 RDX=0000000000000010
RSI=0000000000000020 RDI=0000000000000001 RBP=ffffffff8bd31300 RSP=ffffc9000395f2d8
R8 =0000000000000001 R9 =0000000000000010 R10=0000000000000010 R11=1ffffffff1c38dc9
R12=0000000000000010 R13=0000000000000001 R14=0000000000000003 R15=0000000000000010
RIP=ffffffff81b8d500 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007ffce97eabdc CR3=000000001d6fe000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=5b2732025b273202 5b2732025b273202 5b2732025b273202 5b2732025b273202 5b2732025b273202 5b2732025b273202 5b2732025b273202 5b2732025b273202
ZMM22=8138a62a8138a62a 8138a62a8138a62a 8138a62a8138a62a 8138a62a8138a62a 8138a62a8138a62a 8138a62a8138a62a 8138a62a8138a62a 8138a62a8138a62a
ZMM23=d3aca671d3aca671 d3aca671d3aca671 d3aca671d3aca671 d3aca671d3aca671 d3aca671d3aca671 d3aca671d3aca671 d3aca671d3aca671 d3aca671d3aca671
ZMM24=b850ef06b850ef06 b850ef06b850ef06 b850ef06b850ef06 b850ef06b850ef06 b850ef06b850ef06 b850ef06b850ef06 b850ef06b850ef06 b850ef06b850ef06
ZMM25=f503a44bf503a44b f503a44bf503a44b f503a44bf503a44b f503a44bf503a44b f503a44bf503a44b f503a44bf503a44b f503a44bf503a44b f503a44bf503a44b
ZMM26=8c85d1ce8c85d1ce 8c85d1ce8c85d1ce 8c85d1ce8c85d1ce 8c85d1ce8c85d1ce 8c85d1ce8c85d1ce 8c85d1ce8c85d1ce 8c85d1ce8c85d1ce 8c85d1ce8c85d1ce
ZMM27=05e61c3b05e61c3b 05e61c3b05e61c3b 05e61c3b05e61c3b 05e61c3b05e61c3b 05e61c3b05e61c3b 05e61c3b05e61c3b 05e61c3b05e61c3b 05e61c3b05e61c3b
ZMM28=000001800000017f 0000017e0000017d 0000017c0000017b 0000017a00000179 0000017800000177 0000017600000175 0000017400000173 0000017200000171
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=500c0000500c0000 500c0000500c0000 500c0000500c0000 500c0000500c0000 500c0000500c0000 500c0000500c0000 500c0000500c0000 500c0000500c0000
info registers vcpu 2

CPU#2
RAX=0000000080000000 RBX=ffff888042580c98 RCX=ffffffff823022b2 RDX=ffff88802278a440
RSI=ffffffff84725f63 RDI=ffff888042580c98 RBP=ffff888042580c98 RSP=ffffc90003ecfae0
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000
R12=0000000000000081 R13=0000000000000000 R14=0000000000000000 R15=ffff888042580c9a
RIP=ffffffff81b8dbfb RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fe134bae280 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020010000 CR3=00000000260c4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000e0020000 Opmask01=00000000000000ff Opmask02=000000000000feff Opmask03=2040000404420020
Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 3030623a64696800 5341494c41444f4d
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055af448848e0 000055af44871be0
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000ff00000000ff 00000000ff000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ff000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffff00 ffffffffffffffff
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 46ffb649c7bb4b1f 737326d96d01f8a3
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 73737373737373e2 7373737373737373
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3d3d3d3d3d3d3d3d 3d3d3d3d3d3d3d3d 3d3d3d3d3d3d3d3d 3d3d3d3d3d3d3d3d
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7631303030673030 3030623a6469683d 5341494c41444f4d 00007fe1347f1aa0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4b0c0d0d0d5a0d0d 0d0d5f0759545500 5341494c41444f4d 000042dc09421a9d
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000003730 30302e303030303a 303030303a303030
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055aa1e726d60 0000000000000021 0000000000003730
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe1347f21f0 00007fe1347f21f0 0000000000002aa1 0000003177617264
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a3a263e383a3a26 39383a3a2638383a 3a263b383a3a263a 383a3a26493b3a3a
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692054524f50202c 2064696c61696d20 0070253a20252054 524f504d49005452
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692020520050202c 2025204f504d4900 0061253a20252000 2527204d49005452
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=ffff88802191c880 RCX=ffffffff81c46d38 RDX=ffff88802191c880
RSI=0000000000000000 RDI=0000000000000005 RBP=ffff88802b735860 RSP=ffffc9000e4cf8f8
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=1ffff92001c99f23 R13=0000000000000001 R14=0000000000000012 R15=ffffc9000e4cf948
RIP=ffffffff81b8d58b RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fe134bae280 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f5085da4 CR3=000000005b3d6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000c0fffffe Opmask01=00000000000000ff Opmask02=00000000fffffeff Opmask03=2040000404420020
Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 69253a6925632500 3d45444f4d564544
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffff491e5d0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff0f0e0d0c0b0a 0908070605040302
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00204b4e494c0020
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffff00ff000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffff00 ffff000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffff00ff000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffff00 ffffffffffffffff
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 46ffb649c7bb4b1f 737326d96d01f8a3
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 73737373737373e2 7373737373737373
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3030303030303030 7631303030673030 3030623a64696800 5341494c41444f4d
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3030303030303030 7631303030673030 3030623a6469683d 5341494c41444f4d
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0d0d0d0d0d0d0d0d 4b0c0d0d0d5a0d0d 0d0d5f0759545500 5341494c41444f4d
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000003730 30302e303030303a 303030303a303030
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055af44888aeb 000055af449949b0 000055af44003730 30302e303030303a
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe1347f21f0 00007fe1347f21f0 0000000000002aa1 0000003177617264
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a3a263e383a3a26 39383a3a2638383a 3a263b383a3a263a 383a3a26493b3a3a
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692054524f50202c 2064696c61696d20 0070253a20252054 524f504d49005452
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692020520050202c 2025204f504d4900 0061253a20252000 2527204d49005452
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000