last executing test programs:

4.839824652s ago: executing program 0 (id=752):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
r2 = open$dir(&(0x7f0000000100)='./file0\x00', 0x149800, 0x0)
io_setup(0x1, &(0x7f0000000b80)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000001d00)=[&(0x7f0000001a80)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}])
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x0)
remap_file_pages(&(0x7f0000237000/0x3000)=nil, 0x3000, 0x0, 0x40, 0x8000)

4.663228761s ago: executing program 0 (id=755):
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newlink={0x28, 0x10, 0x1, 0x1, 0x0, {0x0, 0x0, 0x0, 0x0, 0x20820}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
r3 = openat$fuse(0xffffff9c, &(0x7f00000001c0), 0x2, 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000480)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000002100), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYRESDEC=0x0, @ANYBLOB="0700727d45025f29643d17edac4f26753570bf5c98011f743419d10fc19c", @ANYRESDEC=r1])
read$FUSE(r4, &(0x7f0000006180)={0x2020, 0x0, 0x0, <r5=>0x0, <r6=>0x0}, 0x2020)
syz_fuse_handle_req(r4, &(0x7f0000004180)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x1, {0x6, 0x8002, 0xffffffffffffeffe, 0xfffffffffffffffd, 0x0, 0x0, {0x40, 0x8, 0xb, 0xffff, 0x0, 0x1, 0x0, 0x0, 0x120, 0x2000, 0x0, r5, r6, 0x501, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
read$FUSE(0xffffffffffffffff, &(0x7f0000000740)={0x2020, 0x0, 0x0, <r7=>0x0}, 0x2020)
socket$nl_netfilter(0x10, 0x3, 0xc)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
mlock2(&(0x7f0000247000/0x1000)=nil, 0x1000, 0x0)
munlockall()
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x19)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000540)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r8}, 0x10)
mount(&(0x7f0000000080)=@nullb, &(0x7f0000000180)='./cgroup\x00', &(0x7f00000001c0)='btrfs\x00', 0xa00001, 0x0)
mount$fuse(0x0, &(0x7f00000000c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000140), 0x10, &(0x7f00000002c0)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x1000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, r6}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x1800}}, {@blksize={'blksize', 0x3d, 0x1400}}], [{@fsname={'fsname', 0x3d, '\x1e&\\$'}}, {@uid_eq={'uid', 0x3d, r7}}]}})
syz_usb_connect(0x3, 0x0, 0x0, 0x0)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000440)={0x34, r2, 0x1, 0x8000, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)

2.805370999s ago: executing program 2 (id=775):
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x100004, 0xffff, 0xb, 0x1, 0x1, 0x1}, 0x50)
r2 = syz_open_procfs(0xffffffffffffffff, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000004c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x44, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x4}]}, @NFT_MSG_NEWSETELEM={0x40, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x14, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "d103"}]}]}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xac}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'geneve1\x00', <r5=>0x0})
r6 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000600)={0xffffffffffffffff, 0x9, 0x10}, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x15, 0x6, &(0x7f0000000300)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffff7}, [@generic={0x3, 0x7, 0x8, 0x1, 0x3}, @btf_id={0x18, 0x3, 0x3, 0x0, 0x1}]}, &(0x7f0000000340)='GPL\x00', 0x0, 0x6b, &(0x7f00000003c0)=""/107, 0x41100, 0x30, '\x00', r5, @fallback=0x14, 0xffffffffffffffff, 0x8, &(0x7f0000000480)={0x0, 0x4}, 0x8, 0x10, &(0x7f00000005c0)={0x3, 0x7, 0x8, 0x2}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000640)=[r2, r2, r1, r1, r6, r1], 0x0, 0x10, 0xfe7f}, 0x94)
sendmsg$nl_route(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000000c0)=@newlink={0x60, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x4, 0x0, 0x300, 0x8002}, [@IFLA_LINKINFO={0x38, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x28, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6, 0x1, 0x12}, @IFLA_VLAN_EGRESS_QOS={0x1c, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x82}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x9}}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}]}, 0x60}}, 0x0)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1, r1}, 0x38)
r7 = geteuid()
r8 = getegid()
lchown(&(0x7f0000000040)='./file0\x00', r7, r8)
r9 = socket(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_PORT_SPLIT(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x44, 0x0, 0x20, 0x70bd2d, 0x25dfdbfc, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}, {0x8, 0x9, 0x3}}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x1)
sendmsg$nl_generic(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000100)=ANY=[@ANYBLOB="b40000001900010000000000000000001d0109004d0011806f9886ff8308eb1d7c03414adb7fa1c790a421ea2a089f6ab00ada4e5605b2e72655b3cc4c48e609000cf5329cb7f1821ec7ecca1db0eb2d7144f29af11fe655838a74d923d12c78e80000004d0010"], 0xb4}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

2.49211075s ago: executing program 2 (id=777):
r0 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
ioctl$USBDEVFS_ALLOW_SUSPEND(r0, 0x5522)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e23, 0xb9, @loopback}, 0x1c)
listen(r1, 0x5)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000200)={0x0, 0x2, 0xc, 0x8, 0x0, 0x1}, 0x14)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
sendto$inet6(r2, &(0x7f0000000400)="ea", 0xfef4, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback, 0x9}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x4, 0x10, &(0x7f00000008c0)=ANY=[@ANYRESDEC=r1, @ANYRES8=r0, @ANYRESHEX=r0], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
ptrace(0x10, r3)
shmctl$IPC_INFO(0x0, 0x3, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ptrace$getsig(0x4202, r3, 0x1, &(0x7f0000000500))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp512\x00'}, 0x58)
r5 = accept4(r1, 0x0, 0x0, 0x80800)
readv(r5, &(0x7f0000000140)=[{&(0x7f0000000600)=""/152, 0x98}], 0x1)
keyctl$KEYCTL_WATCH_KEY(0x20, 0x0, 0xffffffffffffffff, 0x10003fe)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x80a02, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000080), 0x2, 0x141102)
r6 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r6, 0xc0045516, &(0x7f00000001c0)=0x7)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r6, 0xc1105517, &(0x7f0000000340)={{0xfffffffe, 0x0, 0xfffffffc, 0xb153, 'syz0\x00'}, 0x4, 0x20000000, 0x4, 0x0, 0x0, 0x0, 'syz1\x00', 0x0})
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xa, 0x0, 0x0)
setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x770, 0x0, 0xbac1}, 0x1c)

1.869731097s ago: executing program 0 (id=781):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)={0x28, 0x0, 0xc4fc9e906872338b, 0x70bd2e, 0x0, {{0x15}, {@void, @val={0xc, 0x99, {0x0, 0x3a}}}}, [@NL80211_ATTR_TID_CONFIG={0x8, 0x11d, 0x0, 0x1, [{0x4}]}]}, 0x28}}, 0x40000)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write(r3, &(0x7f0000000000)='-\x00\x00\x00', 0x4)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=ANY=[@ANYBLOB="4400000010001fff000000000100000000000000", @ANYRES32=0x0, @ANYBLOB="08400000000004001c0012800e00010069703665727370616e0000000100dd07596e380000000000", @ANYRES32, @ANYBLOB], 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

1.789493541s ago: executing program 0 (id=782):
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21}, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000440)='./file0\x00', &(0x7f0000000400), 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1400000010000400000a20000000000a05000000000000000000070000010900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a300000000008000540000000218c0000000c0a01030000000000000000070000080940020073797a310000000009000100737932fe1eb0884cf7d2354e16477a3000000000600003805c000080080003400000000250000b802c0001800a0001006c696d69740000001c0002800c00014000000000000000030c0002400000000000000010200001800e000100636f6e6e6c696d69740000000c000280080001400fff140000001000010000000000000000000084000a000000f3ffffffffffffff00"], 0x110}}, 0x0)
r1 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000003c0)={0x0, &(0x7f0000000300)=[0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r1, 0xc00c643c, &(0x7f0000000300)={0x0, 0x0, r1})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
mremap(&(0x7f00002d7000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)
chdir(&(0x7f0000000100)='./file0\x00')
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)={0x64, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0xd3}, @IPSET_ATTR_TIMEOUT={0x8}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x2002c0c4}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000040), 0x208e24b)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000006442, 0x0)
io_setup(0x20005, &(0x7f0000000140)=<r5=>0x0)
io_submit(r5, 0x3f, &(0x7f00000000c0)=[&(0x7f0000000200)={0x0, 0x0, 0x20, 0x1, 0x0, r4, 0x0, 0xfe00}])
ioctl$sock_SIOCGSKNS(r0, 0x894c, &(0x7f0000000180)=0x1400000)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x32b, 0x120}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GENEVE_TTL={0x5, 0x3, 0x2}, @IFLA_GENEVE_COLLECT_METADATA={0x4}]}}}]}, 0x40}}, 0x0)

1.646640873s ago: executing program 1 (id=783):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000080), r1)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f00000002c0)={'wg2\x00', <r3=>0x0})
sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000840)=ANY=[@ANYBLOB="e0100000", @ANYRES16=r2, @ANYBLOB="0500000000000000000001000000060006004e240000901008809005008024000100d1732899f611cd8994034d7f413dc957630e5493c285aca40065cb6311be696b24000100000000000000000000000000000000000000000000000000000000000000000024000200fcbefe9641719404cc5c9ab2766dd4793e367b0ea55e65e2e3416ac9d4e68841240002001171ee8da334a5099295af229a5d237a7f4102f01f28b34347d6cbbe135d83ec24000100975c9d81c983c8209ee781254b899f8ed925ae9f0923c23c62f53c57cdbf691cb40409807c000080060001000a00000014000200000000000000000000000000000000010500030002000000060001000200000008000200ac1414aa0500030001000000060001000a00000014000200ff0100000000000000000000000000010500030001000000060001000200000008000200e00000010500030000000000f4000080060001000a00000014000200fc0000000000000000000000000000000500030001000000060001000a00000014000200fc0200000000000000000000000000010500030000000000060001000200000008000200e00000020500030003000000060001000200000008000200000000000500030000000000060001000200000008000200ac1414bb0500030001000000060001000200000008000200ac1414bb0500030000000000060001000a00000014000200000000000000000000000000000000010500030002000000060001000a00000014000200fc0200000000000000000000000000000500030003000000340000800600010002000000080002000a0101010500030004000000060001000200000008000200ac1414aa050003000300000064000080060001000a00000014000200200100000000000000000000000000000500030002000000060001000200000008000200ac1414aa0500030001000000060001000a00000014000200ff010000000000000000000000000001050003000200000094000080060001000200000008000200ac1e00010500030002000000060001000200000008000200e00000010500030002000000060001000a00000014000200fc0000000000000000000000000000000500030002000000060001000200000008000200000000000500030003000000060001000a00000014000200fe80000000000000000000000000000e050003000000000040000080060001000a00000014000200fc0200000000000000000000000000000500030002000000060001000200000008000200ac1414aa050003000000000064000080060001000a00000014000200200100000000000000000000000000020500030001000000060001000a00000014000200fc02000000000000000000000000000105000300020000000600010002000000080002000a010100050003000200000070000080060001000a00000014000200ff0200000000000000000000000000010500030000000000060001000a00000014000200000000000000000000000000000000000500030002000000060001000a0000001400020000000000000000000000000000000001050003000000000000010080060001000a00000014000200ff0200000000000000000000000000010500030000000000060001000200000008000200000000000500030003000000060001000200000008000200640101000500030002000000060001000200000008000200640101010500030001000000060001000200000008000200ac1414aa0500030002000000060001000a00000014000200fe8000000000000000000000000000bb05000300020000000600010002000000080002007f0000010500030002000000060001000a00000014000200fc0200000000000000000000000000010500030003000000060001000200000008000200640101010500030001000000240002005da952055e5857d673cddd36909746c80efa3ff95c317de1063db32bc80a0b3e1803008024000100f44da367a88ee6564f020211456727082f5cebee8b1bf5eb7337341b459b39220600050005000000e802098058000080060001000200000008000200ac1e00010500030001000000060001000a00000014000200000000000000000000000000000000010500030000000000060001000200000008000200ffffffff05000300010000007c000080060001000a00000014000200000000000000000000000000000000010500030002000000060001000200000008000200ac1414bb0500030002000000060001000a000000140002000000000000000000000000000000000105000300020000000600010002000000080002000a0101010500030003000000f4000080060001000a0000001400020000000000000000000000ffffac1414aa0500030003000000060001000200000008000200ac1414aa05000300000000000600010002000000080002000a01010205000300020000000600010002000000080002007f00000105000300000000000600010002000000080002000a0101010500030003000000060001000200000008000200e00000010500030003000000060001000a00000014000200fc01000000000000000000000000000005000300010000000600010002000000080002000a0101000500030000000000060001000200000008000200ac1e0101050003000200000094000080060001000a00000014000200fc0200000000000000000000000000010500030002000000060001000a00000014000200ff0100000000000000000000000000010500030001000000060001000200000008000200e00000010500030002000000060001000200000008000200ac1414bb0500030001000000060001000200000008000200ffffffff050003000200000088000080060001000a00000014000200fe8000000000000000000000000000aa0500030001000000060001000200000008000200ac1414aa0500030002000000060001000a00000014000200fe8800000000000000000000000001010500030002000000060001000a00000014000200ff02000000000000000000000000000105000300020000007c000080200004000a004e2100000006fc0100000000000000000000000000010400000008000a000100000024000100f44da367a88ee6564f020211456727082f5debee8b1bf5eb7337341b459b3922080003000300000024000200379aa288b2244a5b504ba04bea45625d328fb93b62e607a1b2e4da2f7f76a549780000800800030001000000080003000400000024000100f44da367a88ee6564f020211456727082f5cebee8b1bf5eb7337341b459b3922080003000000000024000100d1732899f611cd8994034d7f413dc957630e5493c285aca40065cb6311be696b1400040002004e22000000000000000000000000e4060080dc020980f4000080060001000a00000014000200000000000000000000000000000000000500030002000000060001000a00000014000200fc0000000000000000000000000000000500030001000000060001000200000008000200ffffffff0500030001000000060001000200000008000200ac1e00010500030001000000060001000200000008000200e000000105000300020000000600010002000000080002007f0000010500030002000000060001000a00000014000200000000000000000000000000000000010500030001000000060001000a00000014000200fc010000000000000000000000000001050003000300000034000080060001000200000008000200640101000500030001000000060001000200000008000200ac1414bb050003000200000000010080060001000a00000014000200200100000000000000000000000000010500030000000000060001000200000008000200e000000205000300020000000600010002000000080002006401010005000300020000000600010002000000080002007f00000105000300010000000600010002000000080002007f0000010500030001000000060001000a00000014000200fe8000000000000000000000000000bb0500030000000000060001000200000008000200ffffffff0500030000000000060001000200000008000200e00000010500030003000000060001000a00000014000200fc0100000000000000000000000000010500030000000000940000800600010002000000080002006401010005000300010000000600010002000000080002006401010205000300000000000600010002000000080002007f0000010500030003000000060001000200000008000200e00000020500030003000000060001000200000008000200ac1414120500030002000000060001000200000008000200ac14142d05000300020000001c000080060001000200000008000200ffffffff05000300030000000800030002000000200004000a004e2000000005fc010000000000000000000000000001000000009403098094000080060001000a0000001400020000000000000000000000ffffac1414bb0500030003000000060001000a00000014000200fe8800000000000000000000000000010500030002000000060001000a00000014000200ff0100000000000000000000000000010500030003000000060001000a00000014000200fe880000000000000000000000000101050003000100000064000080060001000a00000014000200fe8000000000000000000000000000bb0500030000000000060001000200000008000200ac1414bb0500030001000000060001000a0000001400020000000000000000000000ffffe00000020500030003000000f4000080060001000200000008000200000000000500030001000000060001000a00000014000200000000000000000000000000000000010500030003000000060001000200000008000200ac1414aa0500030001000000060001000a00000014000200fe80000000000000000000000000003e05000300010000000600010002000000080002007f0000010500030001000000060001000a00000014000200ff0200000000000000000000000000010500030001000000060001000a00000014000200000000000000000000000000000000010500030000000000060001000200000008000200e0000001050003000000000058000080060001000a00000014000200fe8000000000000000000000000000bb0500030000000000060001000200000008000200ac1414410500030010000000060001000200000008000200ac1e00010500030001000000f4000080060001000200000008000200640101000500030002000000060001000a00000014000200200100000000000000000000000000000500030000000000060001000a00000014000200fc0200000000000000000000000000010500030003000000060001000a00000014000200fe8000000000000000000000000000aa0500030003000000060001000200000008000200ac1414aa0500030000000000060001000200000008000200000000000500030000000000060001000200000008000200ac1414270500030000000000060001000a0000001400020020010000000000000000000000000002050003000100000058000080060001000200000008000200ac1414aa0500030001000000060001000a00000014000200fe8000000000000000000000000000140500030000000000060001000200000008000200e0000001050003000000000024000100d1732899f611cd8994034d7f413dc957630e5493c285aca40065cb6311be696b240002000f1b8b82264208ab1a2dce776c03b9f348f500ef8e7606466943f5ba2ae2881e0c0000800800030006000000060006004e24000008000100", @ANYRES32=r3, @ANYBLOB="240003"], 0x10e0}}, 0x0)
bind$packet(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r4, 0x8933, &(0x7f0000001480)={'wg2\x00', <r6=>0x0})
sendmsg$WG_CMD_SET_DEVICE(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000002040)=ANY=[@ANYBLOB='@\r\x00\x00', @ANYRES16=r5, @ANYBLOB="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", @ANYRES32=r6, @ANYBLOB="24000300000000000000000000000000000000000000000000000000000000000000000024000300a05ca84f6c9c8e3853e2fd7a7cae0fb20fa152600cb00845174f08076f8d7843080007"], 0xd40}}, 0x0)

1.606576842s ago: executing program 1 (id=784):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4001, @dev={0xac, 0x14, 0x14, 0xd}}, 0x10)
socket$inet_udp(0x2, 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
socket(0x10, 0x803, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
bind$bt_l2cap(r1, &(0x7f00000021c0)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}}, 0xe)
listen(r1, 0x9)
getsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0x7, &(0x7f0000000000), &(0x7f0000000040)=0x4)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x20000000000, 0xfffffffffffffffd, 0x0, 0xffffffffffffffff, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3fb, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0)
shutdown(r0, 0x1)

1.591116456s ago: executing program 2 (id=785):
timer_create(0x4, &(0x7f0000000040)={0x0, 0x3a, 0x0, @thr={&(0x7f0000000300)="9da849bef11d1b59d7a1f7eabf602ef59ca1caa444f2c634ecf8448f1547bd8c421b8015225f0a5098bc6dd841151396ad6f32119431e35c2ffe95b6c70a83a10a0b6ddad8e63c1f0b4632e21087b463b21292853f6b4450411b3f64ba9fb5b8d15c34587aec51f36f1ac5d6324c6ac2ba5d9f", &(0x7f00000003c0)="d9b2a5719d2fdcda94d7b0d38787e7756fda2d747fc80a28c96ee83f7541c170b81027e040e0af42b459816211cec5759c0f58355a2e782f1cd8f305f48d4278e116d9b1f2200813f9456629129987"}}, &(0x7f0000000140)=<r0=>0x0)
timer_settime(r0, 0x1, &(0x7f0000000280)={{0x0, 0x3938700}}, &(0x7f0000000440))
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
ppoll(&(0x7f0000000040)=[{r1}], 0x1, 0x0, 0x0, 0x0)
mount$binderfs(0x0, &(0x7f0000000700)='./binderfs\x00', 0x0, 0x20, 0x0)
r2 = socket$key(0xf, 0x3, 0x2)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="05000000810000000200000009"], 0x48)
bpf$MAP_DELETE_BATCH(0x18, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x5, r4, 0x0, 0x20}, 0x38)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/custom1\x00', 0x802, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r6 = dup(r5)
write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0xfffffd2c)
r7 = syz_io_uring_setup(0x354a, &(0x7f00000005c0)={0x0, 0x26c2, 0x100, 0x80020003, 0x0, 0x0, r1}, &(0x7f0000000180)=<r8=>0x0, &(0x7f0000000480)=<r9=>0x0)
syz_io_uring_submit(r8, r9, 0x0)
io_uring_enter(r7, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r10 = syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
ppoll(&(0x7f0000000500)=[{}], 0x1, 0x0, 0x0, 0x0)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(0xffffffffffffffff, 0x6, 0x21, &(0x7f0000000040)="5766b1b827f600333b09d3748ee7d700", 0x10)
ioprio_get$uid(0x3, 0x0)
ioctl$HCIINQUIRY(r3, 0x400448ca, 0x0)
bind$bt_hci(r3, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6)
write$bt_hci(r3, &(0x7f0000000200)=ANY=[@ANYRES8=r10, @ANYRESDEC=r2], 0xb)
r11 = syz_open_dev$vim2m(&(0x7f0000000580), 0x4, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r11, 0xc0145608, &(0x7f00000002c0)={0x2, 0x1, 0x1})
ioctl$vim2m_VIDIOC_STREAMOFF(r11, 0x40045612, &(0x7f0000000100)=0x1)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)

1.165561691s ago: executing program 0 (id=786):
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c09425, &(0x7f0000000380)={"b8e50a31a002b94fcd8fc4db3056309d", 0x0, 0x0, {0x7, 0x100}, {0xffffffffffffff7f, 0x5}, 0x51, [0x7, 0x3, 0xe, 0x2, 0x9, 0x8, 0xd8e, 0x7fc0000, 0x5, 0x0, 0x6, 0x3, 0x5, 0x49, 0xfffffffffffffffe, 0xc]})
openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0xffffffffffffff7c, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee7, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0xfffffffffffffeef, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)

715.515392ms ago: executing program 1 (id=787):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000c40)={{0x14, 0x10, 0x4}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x7, 0x0, 0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}]}, @NFT_MSG_NEWSETELEM={0x60, 0xc, 0xa, 0x301, 0x0, 0x0, {0x7, 0x0, 0x8}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x34, 0x3, 0x0, 0x1, [{0x30, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x24, 0xb, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x10, 0x2, 0x0, 0x1, [@NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x3}]}}}]}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xe4}}, 0x0) (fail_nth: 13)

503.768946ms ago: executing program 3 (id=788):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r0, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
r1 = open$dir(&(0x7f0000000100)='./file0\x00', 0x149800, 0x0)
io_setup(0x1, &(0x7f0000000b80)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000001d00)=[&(0x7f0000001a80)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0}])
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x0)
remap_file_pages(&(0x7f0000237000/0x3000)=nil, 0x3000, 0x0, 0x40, 0x8000)

499.263241ms ago: executing program 1 (id=789):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000019280)=@ipv6_newrule={0x44, 0x1a, 0x1, 0x0, 0x0, {0x81, 0x80, 0x80}, [@FRA_SRC={0x14, 0x2, @remote}, @FRA_DST={0x14, 0x1, @private0}]}, 0x44}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f00000001c0)=ANY=[@ANYBLOB="02030003100000002dbd7000000000000200090008000000030000000000000005000600000000000a004e200000000100000100000000000000ffff00000000050000000000000002000100000004d302000002fbffffff05000500000000000a004e2400000000000000000000000000000000011c1b000000000000000000"], 0x80}, 0x1, 0x7}, 0x0)
sendmsg$nl_xfrm(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=@updpolicy={0xb4, 0x19, 0x1, 0x0, 0x0, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @in6=@mcast1, 0x0, 0xe, 0x4e20, 0x0, 0x2}, {0x1, 0x7, 0x0, 0x0, 0xfffffffffffffffe, 0x2, 0x10000}, {0x0, 0x0, 0x200000000000}, 0x0, 0x0, 0x1}}, 0xb4}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)

459.373448ms ago: executing program 2 (id=790):
syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
r0 = openat$null(0xffffff9c, &(0x7f0000000080), 0x82102, 0x0)
write$char_usb(r0, &(0x7f0000000140)="cd32675c6a8adb", 0x7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sched_switch\x00'}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
waitid$P_PIDFD(0x3, r0, 0x0, 0x8, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)={{0x14}, [@NFT_MSG_NEWRULE={0x48, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2, 0x0, 0x3}, [@NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @log={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_LOG_FLAGS={0x8, 0x6, 0x1, 0x0, 0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x70}, 0x1, 0x0, 0x0, 0x40010}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$tipc(0x1e, 0x5, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_NAME(0xf, 0x0)
bind$tipc(r3, 0x0, 0x0)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x1}, 0x10)
r4 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi4\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r4, 0x40946400, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5452, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

408.508525ms ago: executing program 3 (id=791):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000c40)={{0x14, 0x10, 0x4, 0x0, 0x1000000}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x7, 0x0, 0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}]}, @NFT_MSG_NEWSETELEM={0x60, 0xc, 0xa, 0x301, 0x0, 0x0, {0x7, 0x0, 0x8}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x34, 0x3, 0x0, 0x1, [{0x30, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x24, 0xb, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x10, 0x2, 0x0, 0x1, [@NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x3}]}}}]}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xe4}}, 0x0)

347.358311ms ago: executing program 1 (id=792):
r0 = socket$netlink(0x10, 0x3, 0x9)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000440)='loginuid\x00')
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000100))
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000100)={&(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff6000/0xa000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ff6000/0x4000)=nil, &(0x7f0000000040)="225a2795f15ba697134e6a81346690013d9d794c130e2973668fbfcefa23c1a3876f9614090182e9e4c417f3acb9f9fb83a41a0cbb816253e4921123c6a0e509acdfa9dbd0e190e761d9346a5f9adb8eb23e91", 0x53}, 0x64)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000080)={0x0, 0x0, 0xa294})
pwritev(r1, &(0x7f0000000500)=[{&(0x7f0000000000)='0', 0x1}, {&(0x7f00000002c0)='2', 0x1}], 0x2, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@newlink={0x38, 0x10, 0xffffff1f, 0x0, 0x1, {}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gtp={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GTP_PDP_HASHSIZE={0x8, 0x3, 0x4040000}]}}}]}, 0x38}}, 0x0)

277.685892ms ago: executing program 3 (id=793):
r0 = syz_io_uring_setup(0x5ef9, &(0x7f0000000280)={0x0, 0x3b4f, 0x4, 0x3, 0x14}, &(0x7f0000000240)=<r1=>0x0, &(0x7f0000000600))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r0, 0x7dd6, 0x8029, 0x1, 0x0, 0x0)
io_uring_enter(r0, 0x0, 0xe876, 0x3, 0x0, 0x0)

276.600767ms ago: executing program 1 (id=794):
syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000300), 0x40100001, 0x189002)
r1 = syz_socket_connect_nvme_tcp()
sendto$inet_nvme_pdu(r1, &(0x7f0000000240)=@icresp={{0x1, 0x2, 0x80, 0x0, 0x8}, 0x0, 0x0, 0x0, 0xfff}, 0x80, 0x0, 0x0, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x5, 0x2})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
ioctl$DRM_IOCTL_MODE_CURSOR(r0, 0xc01c64a3, &(0x7f00000006c0)={0x5, 0x0, 0x2, 0x35, 0x5, 0x80, 0x80000000})
r3 = io_uring_setup(0x167c, &(0x7f00000003c0)={0x0, 0x800000, 0x400, 0x2, 0x131})
io_uring_register$IORING_REGISTER_PBUF_RING(r3, 0x16, &(0x7f0000000740)={&(0x7f0000002000)={[{0x0, 0x0, 0x3}, {0x0}, {0x0, 0x0, 0xfffe}, {0x0}]}, 0x4}, 0x1)
io_uring_register$IORING_REGISTER_PBUF_STATUS(r3, 0x1a, &(0x7f0000000000), 0x1)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001b00)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0xe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix={0x8, 0x2, 0x38416761, 0x6, 0x30000, 0x6, 0xa, 0x6b30, 0x1, 0x7, 0x1}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
recvmmsg(r6, &(0x7f0000001f40)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000040)}, {&(0x7f0000000500)=""/190, 0xbe}, {&(0x7f0000000600)=""/143, 0x8f}, {&(0x7f0000000340)=""/107, 0x6b}], 0x4, &(0x7f0000000040)=""/14, 0xe}}, {{&(0x7f0000006000)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @private1}}}, 0x80, &(0x7f0000000840)=[{&(0x7f0000000940)=""/206, 0xce}], 0x1, &(0x7f0000000a40)=""/40, 0x28}, 0x7}, {{&(0x7f0000000a80)=@sco, 0x80, &(0x7f0000001dc0)=[{&(0x7f0000000b00)=""/4096, 0x1000}, {&(0x7f0000003000)=""/4096, 0x1000}, {&(0x7f0000006080)=""/226, 0xe2}, {&(0x7f0000001c00)}, {&(0x7f0000004000)=""/4096, 0xffffffffffffff19}, {&(0x7f0000001c40)}, {&(0x7f0000006180)=""/4099, 0x1003}, {&(0x7f0000001c80)=""/255, 0xff}, {&(0x7f0000001d80)=""/47, 0x2f}], 0x9, &(0x7f0000001e40)=""/251, 0xfb}, 0x4}], 0x3, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_BSS(0xffffffffffffffff, 0x0, 0x0)
pipe(&(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
write(r8, &(0x7f0000000340), 0x11000)
vmsplice(r7, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r9 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x1)
ioctl$KVM_SET_MSRS(r10, 0x4008ae89, &(0x7f0000000000)={0x1, 0x0, [{0xc0000103, 0x0, 0x8000000000005}]})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r4, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[0x0], 0x1})
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$inet(0x2, 0x2, 0x0)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000100))

276.041362ms ago: executing program 3 (id=795):
r0 = fsopen(&(0x7f00000001c0)='bpf\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030041000b05d25a806c8c6394f90324fc60100000000a000200053582c137153e3704020180fc5409000c00", 0x33fe0}], 0x1}, 0x0)
r2 = fsmount(r0, 0x1, 0x0)
fchdir(r2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000180)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})

243.422136ms ago: executing program 2 (id=796):
r0 = syz_open_dev$vim2m(&(0x7f0000000480), 0x5a0c, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000040)={0x80000001, 0x1, 0x2})
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405668, &(0x7f0000000000)={0x2, 0x1, 0x1, "4a37f6c000190000000000000020000000000000000000000100", 0x31435641}) (fail_nth: 2)

214.162318ms ago: executing program 3 (id=797):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001d80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe, 0x6000002c, &(0x7f0000000100)="b9ff03316844268cb89e14f0080048e0050000000000138877fbac141516e0000001440404feb180008903040000845013f2325f003901050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0103461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014c0000c0adc043084617d7ecf41effff38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a2283a0bb7e1d235f3df126c3acc240d7da058f6efa6d1f5f7ff400"/254, 0x0, 0xfe, 0x60000000, 0x0, 0xfffffffe}, 0x2c)

116.772332ms ago: executing program 3 (id=798):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000003c0)=ANY=[@ANYRESDEC=r0, @ANYRES64=<r3=>r0], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x2}, 0x94)
pipe(&(0x7f00000000c0)={<r4=>0xffffffffffffffff})
io_setup(0x3ff, &(0x7f0000000500)=<r5=>0x0)
io_submit(r5, 0x2, &(0x7f0000000300)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0}, &(0x7f0000000080)={0x0, 0x0, 0x8, 0x0, 0x0, r2, 0x0}])
getsockopt$bt_BT_CHANNEL_POLICY(r1, 0x112, 0xa, &(0x7f00000000c0)=0xd9, &(0x7f0000000100)=0x4)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r6 = getpid()
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRESHEX=r3, @ANYBLOB="2da7541d3718a35cd68f8200"/31, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x16, 0x14, &(0x7f00000003c0)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000400)={r7, 0x0, 0x10, 0xffffffffffffff29, &(0x7f00000006c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000700), 0x60ff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xfffffef4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x10010, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
connect$unix(r8, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r9, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r6, 0x8, &(0x7f0000000340)=0x2)
recvmmsg(r8, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r10 = syz_usbip_server_init(0x6)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
setgroups(0x0, 0x0)
ioctl$int_out(r10, 0x5460, &(0x7f0000000240))
r11 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000080), 0x3001, 0x0)
ioctl$FBIOPUT_CON2FBMAP(r11, 0x4610, &(0x7f0000000180)={0x1})
r12 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r12, 0x560a, &(0x7f0000000040)={0x0, 0x8, 0x0, 0x4})

116.542098ms ago: executing program 2 (id=799):
syz_genetlink_get_family_id$ethtool(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={0x0, 0x40}}, 0x0)
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x1, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x0, 0x2, 0x0, 0x4002004c4, 0x1004, 0x45c5, 0xc595, 0x7, 0x2, 0xffffffffffffffff, 0x2000000000000000, 0x80000004000000, 0xc], 0x8000000, 0x2010d3})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000200)="440f20c0350b000000440f22c0360f09c4217d700c9d0000000028b8010000000f01c166b82e000f00d80f20d835080000000f22d82e0f019885000000b9b1060000b86f8d0000ba0000000066b8b5008ec036363ef3420f51a600000000b9e30b0000b8f233278fba000000000f30", 0x6f}], 0x1, 0x13, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-twofish-3way\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r4 = accept4(r3, 0x0, 0x0, 0x80800)
sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e005", 0x26}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe9", 0x2a}], 0x2}], 0x1, 0x40800)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x51}], 0x1}, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'vlan1\x00'})
syz_emit_ethernet(0x3e, &(0x7f0000000200)={@local, @link_local, @void, {@ipv6={0x86dd, @generic={0x4, 0x6, "45cc07", 0x8, 0x2b, 0x0, @dev={0xfe, 0x80, '\x00', 0x25}, @local, {[@fragment={0x29, 0x0, 0xa, 0x1, 0x0, 0xf, 0x68}]}}}}}, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000900), r5)
sendmsg$NL802154_CMD_SET_CHANNEL(r5, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000940)={0x2c, r6, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@NL802154_ATTR_CHANNEL={0x5, 0x8, 0x7}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x1}]}, 0x2c}}, 0x64000)
r7 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NLBL_UNLABEL_C_STATICADD(r5, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)={0xc8, r7, 0x300, 0x70bd2b, 0x25dfdbfe, {}, [@NLBL_UNLABEL_A_SECCTX={0x24, 0x7, 'system_u:object_r:var_auth_t:s0\x00'}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @loopback}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @initdev={0xac, 0x1e, 0x1, 0x0}}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @private0={0xfc, 0x0, '\x00', 0x1}}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @multicast1}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @private0}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}}, @NLBL_UNLABEL_A_ACPTFLG={0x5}, @NLBL_UNLABEL_A_SECCTX={0x2a, 0x7, 'system_u:object_r:urandom_device_t:s0\x00'}]}, 0xc8}, 0x1, 0x0, 0x0, 0x10}, 0x80)
r8 = socket(0x848000000015, 0x805, 0x0)
bind$inet6(r8, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x1a}}, 0x1c)
sendmsg$IPSET_CMD_ADD(r8, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000340)={&(0x7f00000003c0)=ANY=[@ANYBLOB="b80000000906010200000000000000000300000430000780140017006d6163766c616e31000000000000000005001500050000000500030004000000060004404e240000180007800c001680080001407f00000108000840000000915400078008000b400000000906001d40c7f8000008000a4000000000050003000500000008000940000000010c00168008000140ac1414bb0900130073797a310000000006ec03404e220000080008400000000008000940ffb489042414012dcc10c5b33468d6d162717187eb53013c"], 0xb8}, 0x1, 0x0, 0x0, 0xc000}, 0x4020)

0s ago: executing program 0 (id=800):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r0, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
r1 = open$dir(&(0x7f0000000100)='./file0\x00', 0x149800, 0x0)
io_setup(0x1, &(0x7f0000000b80)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000001d00)=[&(0x7f0000001a80)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0}])
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x0)
remap_file_pages(&(0x7f0000237000/0x3000)=nil, 0x3000, 0x0, 0x40, 0x8000)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:53160' (ED25519) to the list of known hosts.
[   42.051067][ T5851] cgroup: Unknown subsys name 'net'
[   42.241979][ T5851] cgroup: Unknown subsys name 'cpuset'
[   42.248727][ T5851] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   43.380183][ T5851] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   48.007325][   T64] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   48.010606][   T64] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   48.014890][   T64] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   48.018101][   T64] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   48.026175][ T5943] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   48.029689][ T5943] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   48.032582][ T5943] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   48.035068][ T5943] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   48.047047][ T5946] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   48.047778][ T5936] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   48.048919][ T5947] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   48.049305][ T5947] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   48.050773][ T5946] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   48.052718][ T5936] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   48.054875][ T5946] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   48.056783][ T5936] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   48.059295][ T5946] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   48.061969][ T5936] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   48.063706][ T5946] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   48.065548][ T5936] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   48.379230][ T5939] chnl_net:caif_netlink_parms(): no params data found
[   48.445921][ T5948] chnl_net:caif_netlink_parms(): no params data found
[   48.450886][ T5935] chnl_net:caif_netlink_parms(): no params data found
[   48.479744][ T5942] chnl_net:caif_netlink_parms(): no params data found
[   48.634175][ T5939] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.636559][ T5939] bridge0: port 1(bridge_slave_0) entered disabled state
[   48.639712][ T5939] bridge_slave_0: entered allmulticast mode
[   48.643677][ T5939] bridge_slave_0: entered promiscuous mode
[   48.724821][ T5948] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.727954][ T5948] bridge0: port 1(bridge_slave_0) entered disabled state
[   48.730993][ T5948] bridge_slave_0: entered allmulticast mode
[   48.734735][ T5948] bridge_slave_0: entered promiscuous mode
[   48.739778][ T5939] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.742781][ T5939] bridge0: port 2(bridge_slave_1) entered disabled state
[   48.745618][ T5939] bridge_slave_1: entered allmulticast mode
[   48.757521][ T5939] bridge_slave_1: entered promiscuous mode
[   48.783722][ T5948] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.785800][ T5948] bridge0: port 2(bridge_slave_1) entered disabled state
[   48.788338][ T5948] bridge_slave_1: entered allmulticast mode
[   48.791048][ T5948] bridge_slave_1: entered promiscuous mode
[   48.894067][ T5939] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   48.916678][ T5948] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   48.920237][ T5935] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.922830][ T5935] bridge0: port 1(bridge_slave_0) entered disabled state
[   48.925140][ T5935] bridge_slave_0: entered allmulticast mode
[   48.928736][ T5935] bridge_slave_0: entered promiscuous mode
[   48.933212][ T5939] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   48.936217][ T5942] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.938614][ T5942] bridge0: port 1(bridge_slave_0) entered disabled state
[   48.940887][ T5942] bridge_slave_0: entered allmulticast mode
[   48.943490][ T5942] bridge_slave_0: entered promiscuous mode
[   48.946742][ T5942] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.948960][ T5942] bridge0: port 2(bridge_slave_1) entered disabled state
[   48.951216][ T5942] bridge_slave_1: entered allmulticast mode
[   48.953800][ T5942] bridge_slave_1: entered promiscuous mode
[   48.959386][ T5948] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   48.979683][ T5935] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.981998][ T5935] bridge0: port 2(bridge_slave_1) entered disabled state
[   48.984346][ T5935] bridge_slave_1: entered allmulticast mode
[   48.988322][ T5935] bridge_slave_1: entered promiscuous mode
[   49.091398][ T5935] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   49.095598][ T5939] team0: Port device team_slave_0 added
[   49.100917][ T5939] team0: Port device team_slave_1 added
[   49.104238][ T5942] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   49.108772][ T5948] team0: Port device team_slave_0 added
[   49.112755][ T5935] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   49.171722][ T5942] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   49.198691][ T5948] team0: Port device team_slave_1 added
[   49.220338][ T5939] batman_adv: batadv0: Adding interface: batadv_slave_0
[   49.222525][ T5939] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   49.230676][ T5939] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   49.308135][ T5939] batman_adv: batadv0: Adding interface: batadv_slave_1
[   49.310489][ T5939] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   49.318893][ T5939] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   49.323441][ T5942] team0: Port device team_slave_0 added
[   49.352893][ T5948] batman_adv: batadv0: Adding interface: batadv_slave_0
[   49.355820][ T5948] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   49.368413][ T5948] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   49.375009][ T5935] team0: Port device team_slave_0 added
[   49.390788][ T5942] team0: Port device team_slave_1 added
[   49.394037][ T5948] batman_adv: batadv0: Adding interface: batadv_slave_1
[   49.397425][ T5948] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   49.407777][ T5948] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   49.413678][ T5935] team0: Port device team_slave_1 added
[   49.520718][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_0
[   49.523589][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   49.533973][ T5942] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   49.556942][ T5935] batman_adv: batadv0: Adding interface: batadv_slave_0
[   49.559811][ T5935] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   49.570778][ T5935] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   49.575847][ T5935] batman_adv: batadv0: Adding interface: batadv_slave_1
[   49.578223][ T5935] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   49.586631][ T5935] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   49.591274][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_1
[   49.594239][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   49.604910][ T5942] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   49.685776][ T5948] hsr_slave_0: entered promiscuous mode
[   49.689077][ T5948] hsr_slave_1: entered promiscuous mode
[   49.695268][ T5939] hsr_slave_0: entered promiscuous mode
[   49.698939][ T5939] hsr_slave_1: entered promiscuous mode
[   49.701020][ T5939] debugfs: 'hsr0' already exists in 'hsr'
[   49.702881][ T5939] Cannot create hsr debugfs directory
[   49.818542][ T5942] hsr_slave_0: entered promiscuous mode
[   49.821158][ T5942] hsr_slave_1: entered promiscuous mode
[   49.823310][ T5942] debugfs: 'hsr0' already exists in 'hsr'
[   49.825144][ T5942] Cannot create hsr debugfs directory
[   49.834557][ T5935] hsr_slave_0: entered promiscuous mode
[   49.837628][ T5935] hsr_slave_1: entered promiscuous mode
[   49.840106][ T5935] debugfs: 'hsr0' already exists in 'hsr'
[   49.841907][ T5935] Cannot create hsr debugfs directory
[   50.046856][ T5936] Bluetooth: hci1: command tx timeout
[   50.126942][ T5936] Bluetooth: hci2: command tx timeout
[   50.136463][ T5936] Bluetooth: hci0: command tx timeout
[   50.136495][ T5943] Bluetooth: hci3: command tx timeout
[   50.235211][ T5939] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   50.242705][ T5939] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   50.248009][ T5939] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   50.259406][ T5939] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   50.286787][ T5935] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   50.291889][ T5935] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   50.296054][ T5935] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   50.301076][ T5935] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   50.345840][ T5942] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   50.351423][ T5942] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   50.368651][ T5942] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   50.390970][ T5942] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   50.418991][ T5948] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   50.425730][ T5948] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   50.432009][ T5948] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   50.438415][ T5948] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   50.451831][ T5939] 8021q: adding VLAN 0 to HW filter on device bond0
[   50.514771][ T5939] 8021q: adding VLAN 0 to HW filter on device team0
[   50.525548][ T5935] 8021q: adding VLAN 0 to HW filter on device bond0
[   50.532962][  T163] bridge0: port 1(bridge_slave_0) entered blocking state
[   50.535341][  T163] bridge0: port 1(bridge_slave_0) entered forwarding state
[   50.542783][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   50.545883][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   50.578535][ T5935] 8021q: adding VLAN 0 to HW filter on device team0
[   50.610592][  T163] bridge0: port 1(bridge_slave_0) entered blocking state
[   50.612998][  T163] bridge0: port 1(bridge_slave_0) entered forwarding state
[   50.627514][ T1153] bridge0: port 2(bridge_slave_1) entered blocking state
[   50.630070][ T1153] bridge0: port 2(bridge_slave_1) entered forwarding state
[   50.649672][ T5942] 8021q: adding VLAN 0 to HW filter on device bond0
[   50.660671][ T5948] 8021q: adding VLAN 0 to HW filter on device bond0
[   50.689757][ T5942] 8021q: adding VLAN 0 to HW filter on device team0
[   50.699343][ T5948] 8021q: adding VLAN 0 to HW filter on device team0
[   50.709946][   T80] bridge0: port 1(bridge_slave_0) entered blocking state
[   50.712564][   T80] bridge0: port 1(bridge_slave_0) entered forwarding state
[   50.723496][   T80] bridge0: port 2(bridge_slave_1) entered blocking state
[   50.725792][   T80] bridge0: port 2(bridge_slave_1) entered forwarding state
[   50.738700][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   50.740942][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   50.744196][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   50.746565][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   50.820282][ T5939] 8021q: adding VLAN 0 to HW filter on device batadv0
[   50.848971][ T5935] 8021q: adding VLAN 0 to HW filter on device batadv0
[   50.869078][ T5939] veth0_vlan: entered promiscuous mode
[   50.881848][ T5939] veth1_vlan: entered promiscuous mode
[   50.902025][ T5948] 8021q: adding VLAN 0 to HW filter on device batadv0
[   50.906278][ T5935] veth0_vlan: entered promiscuous mode
[   50.920192][ T5935] veth1_vlan: entered promiscuous mode
[   50.927340][ T5939] veth0_macvtap: entered promiscuous mode
[   50.933040][ T5942] 8021q: adding VLAN 0 to HW filter on device batadv0
[   50.940575][ T5939] veth1_macvtap: entered promiscuous mode
[   50.960567][ T5948] veth0_vlan: entered promiscuous mode
[   50.972808][ T5939] batman_adv: batadv0: Interface activated: batadv_slave_0
[   50.978772][ T5948] veth1_vlan: entered promiscuous mode
[   50.987709][ T5935] veth0_macvtap: entered promiscuous mode
[   50.990982][ T5939] batman_adv: batadv0: Interface activated: batadv_slave_1
[   51.004720][ T5935] veth1_macvtap: entered promiscuous mode
[   51.008388][   T60] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   51.011283][   T60] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   51.020232][   T60] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   51.029288][   T60] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   51.032394][ T5942] veth0_vlan: entered promiscuous mode
[   51.039463][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_0
[   51.057106][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_1
[   51.065889][ T5948] veth0_macvtap: entered promiscuous mode
[   51.070961][ T5942] veth1_vlan: entered promiscuous mode
[   51.076833][   T60] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   51.085526][ T5948] veth1_macvtap: entered promiscuous mode
[   51.092522][   T60] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   51.109049][   T60] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   51.112653][   T60] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   51.132223][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   51.134908][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   51.152753][ T5948] batman_adv: batadv0: Interface activated: batadv_slave_0
[   51.158569][ T5948] batman_adv: batadv0: Interface activated: batadv_slave_1
[   51.189135][   T12] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   51.196479][   T12] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   51.202432][   T12] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   51.209050][ T1258] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   51.212679][ T1258] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   51.228593][   T12] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   51.238062][ T5942] veth0_macvtap: entered promiscuous mode
[   51.242090][  T163] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   51.244616][  T163] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   51.260539][ T5942] veth1_macvtap: entered promiscuous mode
[   51.272511][ T5939] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   51.294904][   T80] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   51.306740][   T80] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   51.307561][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_0
[   51.320980][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_1
[   51.333974][  T163] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   51.337250][   T60] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   51.337968][  T163] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   51.348295][   T60] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   51.352970][   T60] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   51.379865][   T60] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   51.391795][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   51.396085][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   51.426591][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   51.520806][   T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   51.521643][  T163] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   51.530011][  T163] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   51.533923][   T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   51.755202][ T6033] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[   51.757999][ T6033] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   51.766280][ T6033] vhci_hcd vhci_hcd.0: Device attached
[   52.125297][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   52.125584][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   52.125835][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   52.126092][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   52.127021][ T5943] Bluetooth: hci1: command tx timeout
[   52.178400][ T6018] usb 38-1: SetAddress Request (2) to port 0
[   52.178522][ T6018] usb 38-1: new SuperSpeed USB device number 2 using vhci_hcd
[   52.209097][ T5943] Bluetooth: hci0: command tx timeout
[   52.209152][   T64] Bluetooth: hci3: command tx timeout
[   52.213289][ T5936] Bluetooth: hci2: command tx timeout
[   52.506561][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   52.516446][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   52.526513][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   52.534905][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   52.534965][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   52.996798][ T6051] block device autoloading is deprecated and will be removed.
[   54.216528][ T5936] Bluetooth: hci1: command tx timeout
[   54.286991][ T5936] Bluetooth: hci2: command tx timeout
[   54.287035][   T64] Bluetooth: hci3: command tx timeout
[   54.291171][ T5943] Bluetooth: hci0: command tx timeout
[   54.327785][ T6036] vhci_hcd: connection reset by peer
[   54.331397][   T60] vhci_hcd: stop threads
[   54.333003][   T60] vhci_hcd: release socket
[   54.335581][   T60] vhci_hcd: disconnect device
[   54.916498][ T6063] capability: warning: `syz.3.11' uses 32-bit capabilities (legacy support in use)
[   55.192482][ T6077] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   55.270666][ T6079] random: crng reseeded on system resumption
[   55.282380][ T6079] netlink: 32 bytes leftover after parsing attributes in process `syz.2.13'.
[   55.285412][ T6079] netlink: 32 bytes leftover after parsing attributes in process `syz.2.13'.
[   55.353028][ T6072] netlink: 'syz.0.14': attribute type 10 has an invalid length.
[   55.363473][ T6072] bond0: (slave wlan1): Enslaving as an active interface with an up link
[   55.445019][ T6079] netlink: 32 bytes leftover after parsing attributes in process `syz.2.13'.
[   55.449259][ T6079] netlink: 32 bytes leftover after parsing attributes in process `syz.2.13'.
[   55.582170][ T6079] netlink: 32 bytes leftover after parsing attributes in process `syz.2.13'.
[   55.585697][ T6079] netlink: 32 bytes leftover after parsing attributes in process `syz.2.13'.
[   55.967298][ T6077] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.072849][ T6077] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.143919][ T6077] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.289897][ T5943] Bluetooth: hci1: command tx timeout
[   56.367500][ T5943] Bluetooth: hci3: command tx timeout
[   56.377246][ T5943] Bluetooth: hci0: command tx timeout
[   56.377376][   T64] Bluetooth: hci2: command tx timeout
[   56.408859][  T163] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.438103][  T163] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.537429][  T163] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.540977][  T163] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.678339][ T6104] capability: warning: `syz.0.19' uses deprecated v2 capabilities in a way that may be insecure
[   57.257110][ T6018] usb 38-1: device descriptor read/8, error -110
[   57.708450][ T6018] usb usb38-port1: attempt power cycle
[   57.829174][ T6098] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   57.831493][ T6098] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   57.838771][ T6098] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   57.850997][ T6098] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   57.853708][ T6098] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   57.876834][ T6098] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   57.889138][ T6098] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   57.898622][ T6098] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   57.905765][ T6098] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   57.921792][ T6098] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   57.924494][ T6098] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   57.935941][ T6098] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   58.391436][ T6018] usb usb38-port1: unable to enumerate USB device
[   59.031983][ T6145] netlink: 4 bytes leftover after parsing attributes in process `syz.0.24'.
[   59.887010][   T64] Bluetooth: hci1: command 0x0c1a tx timeout
[   59.968220][   T64] Bluetooth: hci3: command 0x0c1a tx timeout
[   59.968270][ T5943] Bluetooth: hci2: command 0x0c1a tx timeout
[   60.126940][ T6150] netlink: 20 bytes leftover after parsing attributes in process `syz.2.26'.
[   60.286949][ T5943] Bluetooth: hci0: command 0x0c1a tx timeout
[   60.296903][ T6125] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[   60.603929][ T6172] netlink: 'syz.0.27': attribute type 1 has an invalid length.
[   60.606376][ T6168] mmap: syz.1.28 (6168) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   60.657615][ T6172] mac80211_hwsim hwsim2 wlan0: entered promiscuous mode
[   61.016416][ T6125] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   61.018657][ T6125] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   61.020583][ T6125] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   61.353906][ T6199] netlink: 4 bytes leftover after parsing attributes in process `syz.0.31'.
[   62.086453][ T6236] netlink: 456 bytes leftover after parsing attributes in process `syz.1.35'.
[   62.366567][ T5936] Bluetooth: hci0: command 0x0c1a tx timeout
[   62.369225][ T5943] Bluetooth: hci1: command 0x0c1a tx timeout
[   62.626261][ T6204] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   62.633671][ T6204] xt_CT: You must specify a L4 protocol and not use inversions on it
[   63.094420][ T6259] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[   63.097143][ T6259] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   63.100557][ T5943] Bluetooth: hci3: command 0x0c1a tx timeout
[   63.103295][ T5943] Bluetooth: hci2: command 0x0c1a tx timeout
[   63.154374][ T6259] vhci_hcd vhci_hcd.0: Device attached
[   63.212942][ T5938] udevd[5938]: inotify_add_watch(7, /dev/pmem0p13, 10) failed: No such file or directory
[   63.373934][ T6269] process 'syz.3.40' launched './file1' with NULL argv: empty string added
[   63.477300][ T6251] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   63.483632][ T6251] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   63.491157][ T6251] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   63.499963][ T6251] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   63.566444][ T6018] usb 42-1: SetAddress Request (2) to port 0
[   63.569288][ T6018] usb 42-1: new SuperSpeed USB device number 2 using vhci_hcd
[   63.716664][   T40] audit: type=1326 audit(1761804664.730:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6273 comm="syz.0.43" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x0
[   63.849585][ T6275] =======================================================
[   63.849585][ T6275] WARNING: The mand mount option has been deprecated and
[   63.849585][ T6275]          and is ignored by this kernel. Remove the mand
[   63.849585][ T6275]          option from the mount to silence this warning.
[   63.849585][ T6275] =======================================================
[   64.352494][ T6260] vhci_hcd: connection reset by peer
[   64.355495][   T12] vhci_hcd: stop threads
[   64.357393][   T12] vhci_hcd: release socket
[   64.359983][   T12] vhci_hcd: disconnect device
[   64.686505][ T5943] Bluetooth: hci0: command 0x0c1a tx timeout
[   65.373474][ T6296] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[   65.376125][ T6296] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   65.380060][ T6296] vhci_hcd vhci_hcd.0: Device attached
[   65.576563][ T5943] Bluetooth: hci3: command 0x0c1a tx timeout
[   65.576596][ T5936] Bluetooth: hci2: command 0x0c1a tx timeout
[   65.576614][   T64] Bluetooth: hci1: command 0x0c1a tx timeout
[   65.658656][   T29] usb 40-1: SetAddress Request (2) to port 0
[   65.661087][   T29] usb 40-1: new SuperSpeed USB device number 2 using vhci_hcd
[   65.901907][ T6299] netlink: 8 bytes leftover after parsing attributes in process `syz.0.46'.
[   65.983939][ T6299] netlink: 4 bytes leftover after parsing attributes in process `syz.0.46'.
[   66.012955][ T6297] vhci_hcd: connection reset by peer
[   66.015294][  T163] vhci_hcd: stop threads
[   66.016966][  T163] vhci_hcd: release socket
[   66.018575][  T163] vhci_hcd: disconnect device
[   66.151939][ T6307] ubi31: attaching mtd0
[   66.156233][ T6307] ubi31: scanning is finished
[   66.159993][ T6307] ubi31: empty MTD device detected
[   66.776476][ T6307] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[   66.778859][ T6307] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[   66.781110][ T6307] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[   66.783326][ T6307] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[   66.785622][ T6307] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[   66.796850][ T6307] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[   66.799909][ T6307] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 1744183392
[   66.803777][ T6307] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[   66.836534][ T6311] ubi31: background thread "ubi_bgt31d" started, PID 6311
[   67.072227][ T6321] isofs_fill_super: bread failed, dev=sr0, iso_blknum=32, block=32
[   68.242587][ T6344] xt_CT: You must specify a L4 protocol and not use inversions on it
[   68.579028][ T6355] usb 1-1: USB disconnect, device number 2
[   68.616405][ T6018] usb 42-1: device descriptor read/8, error -110
[   68.629246][ T6355] hub 1-0:1.0: USB hub found
[   68.630897][ T6355] hub 1-0:1.0: 6 ports detected
[   68.836421][   T61] usb 1-1: new high-speed USB device number 3 using ehci-pci
[   69.029467][   T61] usb 1-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[   69.039218][ T6018] usb usb42-port1: attempt power cycle
[   69.046625][   T61] usb 1-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[   69.049555][   T61] usb 1-1: Product: QEMU USB Tablet
[   69.051538][   T61] usb 1-1: Manufacturer: QEMU
[   69.061264][   T61] usb 1-1: SerialNumber: 28754-0000:00:1d.7-1
[   69.151835][   T61] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb1/1-1/1-1:1.0/0003:0627:0001.0002/input/input5
[   69.269871][   T61] hid-generic 0003:0627:0001.0002: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[   69.748756][ T6018] usb usb42-port1: unable to enumerate USB device
[   70.252425][ T6386] xt_CT: You must specify a L4 protocol and not use inversions on it
[   70.300010][ T6396] program syz.1.71 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   70.686499][   T29] usb 40-1: device descriptor read/8, error -110
[   70.850679][ T1418] ieee802154 phy0 wpan0: encryption failed: -22
[   70.853240][ T1418] ieee802154 phy1 wpan1: encryption failed: -22
[   71.110071][   T29] usb usb40-port1: attempt power cycle
[   71.813959][ T6389] syzkaller0: entered promiscuous mode
[   71.815555][ T6389] syzkaller0: entered allmulticast mode
[   71.822819][ T6391] kthread_run failed with err -4
[   72.596819][   T29] usb usb40-port1: unable to enumerate USB device
[   72.815981][ T5943] Bluetooth: hci2: ACL packet for unknown connection handle 200
[   73.077329][ T6421] usb 1-1: USB disconnect, device number 3
[   73.558225][ T6427] netlink: 4 bytes leftover after parsing attributes in process `syz.1.79'.
[   73.562132][ T6427] bridge_slave_1: left allmulticast mode
[   73.564583][ T6427] bridge_slave_1: left promiscuous mode
[   73.567935][ T6427] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.575098][ T6427] bridge_slave_0: left allmulticast mode
[   73.579620][ T6427] bridge_slave_0: left promiscuous mode
[   73.581554][ T6427] bridge0: port 1(bridge_slave_0) entered disabled state
[   73.870323][ T6432] hub 1-0:1.0: USB hub found
[   73.873511][ T6432] hub 1-0:1.0: 6 ports detected
[   74.086597][   T61] usb 1-1: new high-speed USB device number 4 using ehci-pci
[   74.194010][ T6454] binder: 6449:6454 ioctl 400854d5 80000240 returned -22
[   74.209360][ T6454] bridge_slave_0: left allmulticast mode
[   74.211898][ T6454] bridge_slave_0: left promiscuous mode
[   74.214593][ T6454] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.224687][ T6454] bridge_slave_1: left allmulticast mode
[   74.228597][ T6454] bridge_slave_1: left promiscuous mode
[   74.230673][ T6454] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.288185][ T6454] bond0: (slave bond_slave_0): Releasing backup interface
[   74.327148][ T6454] bond0: (slave bond_slave_1): Releasing backup interface
[   74.369207][ T6454] team0: Port device team_slave_0 removed
[   74.380985][   T61] usb 1-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[   74.384657][   T61] usb 1-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[   74.388192][   T61] usb 1-1: Product: QEMU USB Tablet
[   74.390380][   T61] usb 1-1: Manufacturer: QEMU
[   74.392370][   T61] usb 1-1: SerialNumber: 28754-0000:00:1d.7-1
[   74.395143][ T6454] team0: Port device team_slave_1 removed
[   74.415023][ T6454] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   74.420101][ T6454] batman_adv: batadv0: Removing interface: batadv_slave_0
[   74.464694][ T6454] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   74.475111][ T6454] batman_adv: batadv0: Removing interface: batadv_slave_1
[   74.500059][ T6454] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[   74.765183][   T61] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb1/1-1/1-1:1.0/0003:0627:0001.0003/input/input6
[   74.934494][   T61] hid-generic 0003:0627:0001.0003: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[   75.088198][ T6471] usb usb1: usbfs: interface 0 claimed by hub while 'syz.2.93' sets config #1
[   75.203155][ T6475] fuse: Bad value for 'fd'
[   75.207051][ T6475] syz.3.95 uses obsolete (PF_INET,SOCK_PACKET)
[   75.618334][ T6497] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.102' sets config #1
[   76.156008][ T6499] xt_CT: You must specify a L4 protocol and not use inversions on it
[   76.279197][ T6508] input: syz0 as /devices/virtual/input/input7
[   76.281956][ T6508] input: failed to attach handler leds to device input7, error: -6
[   76.738491][ T6518] lo speed is unknown, defaulting to 1000
[   76.738541][ T6518] lo speed is unknown, defaulting to 1000
[   76.739466][ T6518] lo speed is unknown, defaulting to 1000
[   76.741541][ T6518] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   76.795966][ T6516] netlink: 8 bytes leftover after parsing attributes in process `syz.3.104'.
[   76.797310][ T6518] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[   77.052307][ T6518] lo speed is unknown, defaulting to 1000
[   77.053090][ T6518] lo speed is unknown, defaulting to 1000
[   77.053797][ T6518] lo speed is unknown, defaulting to 1000
[   77.054515][ T6518] lo speed is unknown, defaulting to 1000
[   77.291442][ T6531] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.111' sets config #1
[   77.725921][ T6542] bridge1: entered promiscuous mode
[   77.841161][ T6544] bridge1: entered promiscuous mode
[   79.623194][ T6576] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[   79.625327][ T6576] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   79.636393][ T6576] vhci_hcd vhci_hcd.0: Device attached
[   79.971349][ T6579] vhci_hcd: connection closed
[   80.006733][   T61] usb 38-1: SetAddress Request (6) to port 0
[   80.011731][   T61] usb 38-1: new SuperSpeed USB device number 6 using vhci_hcd
[   80.027178][ T6580] vhci_hcd: sendmsg failed!, ret=-32 for 48
[   80.030197][  T163] vhci_hcd: stop threads
[   80.031944][  T163] vhci_hcd: release socket
[   80.057843][  T163] vhci_hcd: disconnect device
[   80.297617][ T6589] netlink: 12 bytes leftover after parsing attributes in process `syz.2.127'.
[   80.300471][ T6589] netlink: 4 bytes leftover after parsing attributes in process `syz.2.127'.
[   80.680399][ T6600] binder: 6599:6600 ioctl c018937b 8000b300 returned -22
[   81.212568][   T53] cfg80211: failed to load regulatory.db
[   81.348072][ T6608] lo speed is unknown, defaulting to 1000
[   81.754603][ T6621] netlink: 'syz.3.135': attribute type 10 has an invalid length.
[   81.763689][ T6621] bond0: (slave wlan1): Opening slave failed
[   81.826371][ T6621] netlink: 4 bytes leftover after parsing attributes in process `syz.3.135'.
[   81.980847][ T6625] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   82.594100][ T6619] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   83.022922][ T6645] input: syz0 as /devices/virtual/input/input8
[   83.026067][ T6645] input: failed to attach handler leds to device input8, error: -6
[   84.110025][ T6665] tmpfs: Bad value for 'mpol'
[   84.215187][ T6656] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   84.218159][ T6656] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   84.223444][ T6656] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   84.226283][ T6656] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   84.317531][ T6667] xt_CT: You must specify a L4 protocol and not use inversions on it
[   84.404866][ T6673] bridge1: entered promiscuous mode
[   84.488949][ T6684] input: syz0 as /devices/virtual/input/input9
[   84.494750][ T6684] input: failed to attach handler leds to device input9, error: -6
[   84.549074][ T6690] netlink: 4 bytes leftover after parsing attributes in process `syz.0.154'.
[   85.172661][ T6705] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   85.188292][   T61] usb 38-1: device descriptor read/8, error -110
[   85.395766][ T6707] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[   85.398577][ T6707] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   85.402458][ T6707] vhci_hcd vhci_hcd.0: Device attached
[   85.566619][ T5936] Bluetooth: hci1: command 0x0c1a tx timeout
[   85.610991][   T61] usb usb38-port1: attempt power cycle
[   86.016711][ T6018] usb 44-1: SetAddress Request (2) to port 0
[   86.025907][ T6018] usb 44-1: new SuperSpeed USB device number 2 using vhci_hcd
[   86.082210][ T6729] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[   86.084306][ T6729] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   86.088617][ T6729] vhci_hcd vhci_hcd.0: Device attached
[   86.286485][ T5943] Bluetooth: hci2: command 0x0c1a tx timeout
[   86.289107][ T5936] Bluetooth: hci3: command 0x0c1a tx timeout
[   86.366045][ T6708] vhci_hcd: connection reset by peer
[   86.368975][   T46] vhci_hcd: stop threads
[   86.370806][   T46] vhci_hcd: release socket
[   86.372732][   T46] vhci_hcd: disconnect device
[   86.506414][ T6712] usb 42-1: SetAddress Request (6) to port 0
[   86.508474][ T6712] usb 42-1: new SuperSpeed USB device number 6 using vhci_hcd
[   86.532170][ T6730] vhci_hcd: connection closed
[   86.533002][ T1153] vhci_hcd: stop threads
[   86.536585][ T1153] vhci_hcd: release socket
[   86.538394][ T1153] vhci_hcd: disconnect device
[   86.656868][   T61] usb usb38-port1: unable to enumerate USB device
[   87.102440][ T6744] Zero length message leads to an empty skb
[   87.195262][ T6748] netlink: 40 bytes leftover after parsing attributes in process `syz.3.170'.
[   87.430631][ T6753] bridge2: entered allmulticast mode
[   87.456855][ T6753] ªªªªª»: renamed from hsr0 (while UP)
[   87.646544][ T5936] Bluetooth: hci1: command 0x0c1a tx timeout
[   87.921069][ T6761] input: syz0 as /devices/virtual/input/input10
[   87.923854][ T6761] input: failed to attach handler leds to device input10, error: -6
[   88.179998][ T6767] netlink: 20 bytes leftover after parsing attributes in process `syz.0.176'.
[   88.196712][ T6766] netlink: 8 bytes leftover after parsing attributes in process `syz.0.176'.
[   88.257643][ T6767] netlink: 8 bytes leftover after parsing attributes in process `syz.0.176'.
[   89.421888][ T6801] FAULT_INJECTION: forcing a failure.
[   89.421888][ T6801] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   89.426934][ T6801] CPU: 2 UID: 0 PID: 6801 Comm: syz.2.186 Not tainted syzkaller #0 PREEMPT(full) 
[   89.426955][ T6801] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   89.426965][ T6801] Call Trace:
[   89.426970][ T6801]  <TASK>
[   89.426977][ T6801]  dump_stack_lvl+0x16c/0x1f0
[   89.427000][ T6801]  should_fail_ex+0x512/0x640
[   89.427024][ T6801]  _copy_from_iter+0x29f/0x1720
[   89.427051][ T6801]  ? __alloc_skb+0x200/0x380
[   89.427076][ T6801]  ? __pfx__copy_from_iter+0x10/0x10
[   89.427099][ T6801]  ? netlink_autobind.isra.0+0x158/0x370
[   89.427126][ T6801]  netlink_sendmsg+0x820/0xdd0
[   89.427147][ T6801]  ? __pfx_netlink_sendmsg+0x10/0x10
[   89.427168][ T6801]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[   89.427196][ T6801]  ____sys_sendmsg+0xa98/0xc70
[   89.427219][ T6801]  ? __pfx_____sys_sendmsg+0x10/0x10
[   89.427236][ T6801]  ? get_compat_msghdr+0x11a/0x170
[   89.427268][ T6801]  ___sys_sendmsg+0x134/0x1d0
[   89.427286][ T6801]  ? __pfx____sys_sendmsg+0x10/0x10
[   89.427312][ T6801]  ? find_held_lock+0x2b/0x80
[   89.427339][ T6801]  __sys_sendmsg+0x16d/0x220
[   89.427355][ T6801]  ? __pfx___sys_sendmsg+0x10/0x10
[   89.427381][ T6801]  ? rcu_is_watching+0x12/0xc0
[   89.427401][ T6801]  __do_fast_syscall_32+0x7c/0x300
[   89.427418][ T6801]  do_fast_syscall_32+0x32/0x80
[   89.427437][ T6801]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   89.427456][ T6801] RIP: 0023:0xf709d579
[   89.427469][ T6801] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   89.427483][ T6801] RSP: 002b:00000000f548d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   89.427499][ T6801] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000180
[   89.427509][ T6801] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   89.427516][ T6801] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   89.427522][ T6801] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   89.427531][ T6801] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   89.427554][ T6801]  </TASK>
[   89.521507][ T6797] xt_CT: You must specify a L4 protocol and not use inversions on it
[   89.544627][ T6804] input: syz0 as /devices/virtual/input/input11
[   89.547316][ T6804] input: failed to attach handler leds to device input11, error: -6
[   89.835853][ T6822] usb usb1: usbfs: interface 0 claimed by hub while 'syz.2.193' sets config #1
[   90.031129][ T6830] xt_CT: You must specify a L4 protocol and not use inversions on it
[   90.143777][    T9] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   90.320567][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   90.332829][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   90.343801][    T9] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   90.548600][    T9] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   90.552390][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   90.576937][ T6841] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[   90.579818][ T6841] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   90.583742][    T9] usb 6-1: config 0 descriptor??
[   90.596899][ T6841] vhci_hcd vhci_hcd.0: Device attached
[   90.668358][ T6846] ubi31: detaching mtd0
[   90.685299][ T6846] ubi31: mtd0 is detached
[   91.174846][    T9] plantronics 0003:047F:FFFF.0004: reserved main item tag 0xd
[   91.203336][    T9] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[   91.577477][ T6712] usb 42-1: device descriptor read/8, error -110
[   91.697588][ T6815] netlink: 20 bytes leftover after parsing attributes in process `syz.1.191'.
[   91.854087][ T6842] vhci_hcd: connection reset by peer
[   91.858502][ T1143] vhci_hcd: stop threads
[   91.859882][ T1143] vhci_hcd: release socket
[   91.862247][ T1143] vhci_hcd: disconnect device
[   91.862267][ T6018] usb 44-1: device descriptor read/8, error -110
[   91.915512][ T5938] udevd[5938]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[   92.101497][ T6712] usb usb42-port1: attempt power cycle
[   92.280757][ T6018] usb usb44-port1: attempt power cycle
[   92.519114][ T6866] usb 1-1: USB disconnect, device number 4
[   92.566140][   T53] usb 6-1: reset high-speed USB device number 2 using dummy_hcd
[   92.712596][ T6712] usb usb42-port1: unable to enumerate USB device
[   92.855538][ T6884] input: syz0 as /devices/virtual/input/input13
[   92.859311][ T6884] input: failed to attach handler leds to device input13, error: -6
[   92.927216][ T6018] usb usb44-port1: unable to enumerate USB device
[   92.992283][ T6885] : entered promiscuous mode
[   93.053210][ T6890] FAULT_INJECTION: forcing a failure.
[   93.053210][ T6890] name failslab, interval 1, probability 0, space 0, times 0
[   93.058271][ T6890] CPU: 3 UID: 0 PID: 6890 Comm: syz.1.209 Not tainted syzkaller #0 PREEMPT(full) 
[   93.058287][ T6890] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   93.058293][ T6890] Call Trace:
[   93.058298][ T6890]  <TASK>
[   93.058302][ T6890]  dump_stack_lvl+0x16c/0x1f0
[   93.058318][ T6890]  should_fail_ex+0x512/0x640
[   93.058338][ T6890]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[   93.058358][ T6890]  should_failslab+0xc2/0x120
[   93.058380][ T6890]  kmem_cache_alloc_node_noprof+0x78/0x770
[   93.058392][ T6890]  ? kasan_save_track+0x14/0x30
[   93.058405][ T6890]  ? __alloc_skb+0x2b2/0x380
[   93.058421][ T6890]  ? genl_start+0x1e8/0x980
[   93.058437][ T6890]  ? __alloc_skb+0x2b2/0x380
[   93.058452][ T6890]  __alloc_skb+0x2b2/0x380
[   93.058469][ T6890]  ? __pfx___alloc_skb+0x10/0x10
[   93.058491][ T6890]  netlink_dump+0x19b/0xd30
[   93.058503][ T6890]  ? __pfx_netlink_dump+0x10/0x10
[   93.058520][ T6890]  ? __asan_memset+0x23/0x50
[   93.058531][ T6890]  ? genl_start+0x67f/0x980
[   93.058545][ T6890]  __netlink_dump_start+0x6d6/0x990
[   93.058559][ T6890]  genl_family_rcv_msg_dumpit+0x1e2/0x2e0
[   93.058574][ T6890]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[   93.058588][ T6890]  ? find_held_lock+0x2b/0x80
[   93.058602][ T6890]  ? __pfx_genl_get_cmd+0x10/0x10
[   93.058613][ T6890]  ? __pfx_genl_start+0x10/0x10
[   93.058625][ T6890]  ? __pfx_genl_dumpit+0x10/0x10
[   93.058637][ T6890]  ? __pfx_genl_done+0x10/0x10
[   93.058651][ T6890]  ? __radix_tree_lookup+0x21f/0x2c0
[   93.058672][ T6890]  genl_rcv_msg+0x46e/0x800
[   93.058687][ T6890]  ? __pfx_genl_rcv_msg+0x10/0x10
[   93.058701][ T6890]  ? __pfx_netdev_nl_page_pool_get_dumpit+0x10/0x10
[   93.058725][ T6890]  netlink_rcv_skb+0x158/0x420
[   93.058736][ T6890]  ? __pfx_genl_rcv_msg+0x10/0x10
[   93.058750][ T6890]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   93.058768][ T6890]  ? netlink_deliver_tap+0x1ae/0xd30
[   93.058781][ T6890]  genl_rcv+0x28/0x40
[   93.058792][ T6890]  netlink_unicast+0x5aa/0x870
[   93.058806][ T6890]  ? __pfx_netlink_unicast+0x10/0x10
[   93.058823][ T6890]  netlink_sendmsg+0x8c8/0xdd0
[   93.058837][ T6890]  ? __pfx_netlink_sendmsg+0x10/0x10
[   93.058850][ T6890]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[   93.058876][ T6890]  ____sys_sendmsg+0xa98/0xc70
[   93.058892][ T6890]  ? __pfx_____sys_sendmsg+0x10/0x10
[   93.058905][ T6890]  ? get_compat_msghdr+0x11a/0x170
[   93.058929][ T6890]  ___sys_sendmsg+0x134/0x1d0
[   93.058941][ T6890]  ? __pfx____sys_sendmsg+0x10/0x10
[   93.058959][ T6890]  ? find_held_lock+0x2b/0x80
[   93.058980][ T6890]  __sys_sendmsg+0x16d/0x220
[   93.058990][ T6890]  ? __pfx___sys_sendmsg+0x10/0x10
[   93.059007][ T6890]  ? rcu_is_watching+0x12/0xc0
[   93.059021][ T6890]  __do_fast_syscall_32+0x7c/0x300
[   93.059036][ T6890]  do_fast_syscall_32+0x32/0x80
[   93.059050][ T6890]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   93.059063][ T6890] RIP: 0023:0xf7f46579
[   93.059072][ T6890] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   93.059083][ T6890] RSP: 002b:00000000f543655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   93.059093][ T6890] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000180
[   93.059100][ T6890] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   93.059105][ T6890] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   93.059112][ T6890] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   93.059119][ T6890] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   93.059133][ T6890]  </TASK>
[   93.389731][ T6899] bridge2: entered promiscuous mode
[   93.497691][ T6883] netlink: 8 bytes leftover after parsing attributes in process `syz.2.207'.
[   93.579288][ T6901] lo speed is unknown, defaulting to 1000
[   93.791171][   T24] usb 6-1: USB disconnect, device number 2
syz1²˜3j](’Àݼ\syz0?1ÎÞXåtîsyz1
	¼¥;[   94.396002][ T6921] input: syz0 as /devices/virtual/input/input14
[   94.398093][ T6921] input: failed to attach handler leds to device input14, error: -6
[   94.943546][ T6934] input: syz0 as /devices/virtual/input/input15
[   94.947936][ T6936] netlink: 4 bytes leftover after parsing attributes in process `syz.3.221'.
[   94.950543][ T6934] input: failed to attach handler leds to device input15, error: -6
[   95.090209][ T6943] netlink: 4 bytes leftover after parsing attributes in process `syz.3.223'.
[   95.280788][ T6943] tmpfs: Bad value for 'mpol'
[   95.985234][ T6957] mkiss: ax0: crc mode is auto.
[   96.433109][ T6964] bridge0: entered promiscuous mode
[   96.695354][ T6962] Bluetooth: MGMT ver 1.23
[   97.128170][ T6971] netlink: 4 bytes leftover after parsing attributes in process `syz.2.231'.
[   97.135299][ T6974] erofs (device nbd1): cannot find valid erofs superblock
[   97.823028][ T6993] input: syz0 as /devices/virtual/input/input16
[   97.825775][ T6993] input: failed to attach handler leds to device input16, error: -6
[   98.278152][ T7000] FAULT_INJECTION: forcing a failure.
[   98.278152][ T7000] name failslab, interval 1, probability 0, space 0, times 0
[   98.282485][ T7000] CPU: 2 UID: 0 PID: 7000 Comm: syz.0.238 Not tainted syzkaller #0 PREEMPT(full) 
[   98.282500][ T7000] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   98.282506][ T7000] Call Trace:
[   98.282511][ T7000]  <TASK>
[   98.282515][ T7000]  dump_stack_lvl+0x16c/0x1f0
[   98.282532][ T7000]  should_fail_ex+0x512/0x640
[   98.282549][ T7000]  ? fs_reclaim_acquire+0xae/0x150
[   98.282566][ T7000]  should_failslab+0xc2/0x120
[   98.282581][ T7000]  __kmalloc_noprof+0xdd/0x880
[   98.282599][ T7000]  ? tomoyo_encode2+0x100/0x3e0
[   98.282613][ T7000]  ? tomoyo_encode2+0x100/0x3e0
[   98.282625][ T7000]  tomoyo_encode2+0x100/0x3e0
[   98.282639][ T7000]  tomoyo_encode+0x29/0x50
[   98.282650][ T7000]  tomoyo_realpath_from_path+0x18f/0x6e0
[   98.282667][ T7000]  tomoyo_path_number_perm+0x245/0x580
[   98.282684][ T7000]  ? tomoyo_path_number_perm+0x237/0x580
[   98.282703][ T7000]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   98.282736][ T7000]  ? find_held_lock+0x2b/0x80
[   98.282748][ T7000]  ? hook_file_ioctl_common+0x145/0x410
[   98.282762][ T7000]  ? __fget_files+0x20e/0x3c0
[   98.282776][ T7000]  security_file_ioctl_compat+0x9b/0x240
[   98.282788][ T7000]  __ia32_compat_sys_ioctl+0xc3/0x370
[   98.282807][ T7000]  __do_fast_syscall_32+0x7c/0x300
[   98.282825][ T7000]  do_fast_syscall_32+0x32/0x80
[   98.282839][ T7000]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   98.282857][ T7000] RIP: 0023:0xf701d579
[   98.282866][ T7000] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   98.282877][ T7000] RSP: 002b:00000000f540d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   98.282888][ T7000] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080045505
[   98.282894][ T7000] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[   98.282900][ T7000] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   98.282906][ T7000] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   98.282912][ T7000] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   98.282926][ T7000]  </TASK>
[   98.282937][ T7000] ERROR: Out of memory at tomoyo_realpath_from_path.
[   98.438505][ T7006] netlink: 4 bytes leftover after parsing attributes in process `syz.2.240'.
[   98.482785][ T6018] hid-generic 0000:0800:FFFFFFFE.0005: unknown main item tag 0x0
[   98.492343][ T6018] hid-generic 0000:0800:FFFFFFFE.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   98.553819][ T7011] netlink: 8 bytes leftover after parsing attributes in process `syz.0.242'.
[   99.989746][ T7043] netlink: 4 bytes leftover after parsing attributes in process `syz.1.250'.
[  100.174007][ T7053] FAULT_INJECTION: forcing a failure.
[  100.174007][ T7053] name failslab, interval 1, probability 0, space 0, times 0
[  100.179598][ T7053] CPU: 3 UID: 0 PID: 7053 Comm: syz.0.253 Not tainted syzkaller #0 PREEMPT(full) 
[  100.179614][ T7053] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  100.179621][ T7053] Call Trace:
[  100.179626][ T7053]  <TASK>
[  100.179630][ T7053]  dump_stack_lvl+0x16c/0x1f0
[  100.179662][ T7053]  should_fail_ex+0x512/0x640
[  100.179681][ T7053]  ? fs_reclaim_acquire+0xae/0x150
[  100.179699][ T7053]  should_failslab+0xc2/0x120
[  100.179715][ T7053]  __kmalloc_cache_noprof+0x72/0x780
[  100.179734][ T7053]  ? rcu_is_watching+0x12/0xc0
[  100.179746][ T7053]  ? usb_control_msg+0xbc/0x4a0
[  100.179766][ T7053]  ? usb_control_msg+0xbc/0x4a0
[  100.179781][ T7053]  usb_control_msg+0xbc/0x4a0
[  100.179798][ T7053]  ? __pfx_usb_control_msg+0x10/0x10
[  100.179814][ T7053]  ? __pfx___mutex_lock+0x10/0x10
[  100.179828][ T7053]  ? __pfx_ehci_endpoint_disable+0x10/0x10
[  100.179842][ T7053]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  100.179856][ T7053]  usb_control_msg_send+0xca/0x130
[  100.179876][ T7053]  usb_reset_configuration+0x1aa/0x720
[  100.179897][ T7053]  ? __might_fault+0xe3/0x190
[  100.179914][ T7053]  usbdev_ioctl+0x3279/0x4070
[  100.179932][ T7053]  ? __pfx_usbdev_ioctl+0x10/0x10
[  100.179953][ T7053]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  100.179974][ T7053]  ? do_vfs_ioctl+0x128/0x14f0
[  100.179991][ T7053]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  100.180013][ T7053]  ? find_held_lock+0x2b/0x80
[  100.180025][ T7053]  ? hook_file_ioctl_common+0x145/0x410
[  100.180041][ T7053]  ? __fget_files+0x20e/0x3c0
[  100.180053][ T7053]  ? __pfx_usbdev_ioctl+0x10/0x10
[  100.180068][ T7053]  compat_ptr_ioctl+0x6e/0xa0
[  100.180084][ T7053]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[  100.180106][ T7053]  __ia32_compat_sys_ioctl+0x242/0x370
[  100.180126][ T7053]  __do_fast_syscall_32+0x7c/0x300
[  100.180142][ T7053]  do_fast_syscall_32+0x32/0x80
[  100.180156][ T7053]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  100.180170][ T7053] RIP: 0023:0xf701d579
[  100.180179][ T7053] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  100.180190][ T7053] RSP: 002b:00000000f540d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  100.180202][ T7053] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080045505
[  100.180209][ T7053] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[  100.180215][ T7053] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  100.180222][ T7053] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  100.180228][ T7053] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  100.180243][ T7053]  </TASK>
[  100.495572][ T7061] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  100.497724][ T7061] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  100.500672][ T7061] vhci_hcd vhci_hcd.0: Device attached
[  100.819491][ T7064] tipc: Started in network mode
[  100.821106][ T7064] tipc: Node identity 4, cluster identity 4711
[  100.823073][ T7064] tipc: Node number set to 4
[  100.946396][ T6018] usb 44-1: SetAddress Request (6) to port 0
[  100.948502][ T6018] usb 44-1: new SuperSpeed USB device number 6 using vhci_hcd
[  101.037836][ T7062] vhci_hcd: connection reset by peer
[  101.041257][   T46] vhci_hcd: stop threads
[  101.043145][   T46] vhci_hcd: release socket
[  101.045512][   T46] vhci_hcd: disconnect device
[  101.480103][ T7070] lo speed is unknown, defaulting to 1000
[  101.794140][ T7072] netfs: Couldn't get user pages (rc=-14)
[  102.224992][ T7084] vxfs: unable to read disk superblock at 1
[  102.227538][ T7084] vxfs: unable to read disk superblock at 8
[  102.229660][ T7084] vxfs: can't find superblock.
[  102.597749][ T7086] input: syz0 as /devices/virtual/input/input17
[  102.600402][ T7086] input: failed to attach handler leds to device input17, error: -6
[  102.865720][ T7089] tmpfs: Bad value for 'grpquota_block_hardlimit'
[  103.762330][ T5999] libceph: connect (1)[c::]:6789 error -101
[  103.765259][ T5999] libceph: mon0 (1)[c::]:6789 connect error
[  104.068063][ T6712] libceph: connect (1)[c::]:6789 error -101
[  104.070754][ T6712] libceph: mon0 (1)[c::]:6789 connect error
[  104.157495][ T7106] ceph: No mds server is up or the cluster is laggy
[  104.163777][ T7110] input: syz0 as /devices/virtual/input/input18
[  104.172227][ T7110] input: failed to attach handler leds to device input18, error: -6
[  104.621599][ T5936] Bluetooth: hci2: SCO packet for unknown connection handle 200
[  104.848461][ T7130] FAULT_INJECTION: forcing a failure.
[  104.848461][ T7130] name failslab, interval 1, probability 0, space 0, times 0
[  104.855712][ T7130] CPU: 2 UID: 0 PID: 7130 Comm: syz.0.273 Not tainted syzkaller #0 PREEMPT(full) 
[  104.855726][ T7130] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  104.855733][ T7130] Call Trace:
[  104.855737][ T7130]  <TASK>
[  104.855741][ T7130]  dump_stack_lvl+0x16c/0x1f0
[  104.855758][ T7130]  should_fail_ex+0x512/0x640
[  104.855776][ T7130]  ? __kmalloc_noprof+0xca/0x880
[  104.855800][ T7130]  should_failslab+0xc2/0x120
[  104.855815][ T7130]  __kmalloc_noprof+0xdd/0x880
[  104.855833][ T7130]  ? usb_hcd_submit_urb+0x5cf/0x1c60
[  104.855849][ T7130]  ? usb_hcd_submit_urb+0x5cf/0x1c60
[  104.855861][ T7130]  usb_hcd_submit_urb+0x5cf/0x1c60
[  104.855878][ T7130]  usb_submit_urb+0x89f/0x1990
[  104.855896][ T7130]  ? __init_swait_queue_head+0xca/0x150
[  104.855916][ T7130]  usb_start_wait_urb+0x104/0x4b0
[  104.855932][ T7130]  ? __pfx_usb_start_wait_urb+0x10/0x10
[  104.855953][ T7130]  ? __asan_memset+0x23/0x50
[  104.855967][ T7130]  usb_control_msg+0x326/0x4a0
[  104.855983][ T7130]  ? __pfx_usb_control_msg+0x10/0x10
[  104.856002][ T7130]  usb_control_msg_send+0xca/0x130
[  104.856022][ T7130]  usb_reset_configuration+0x1aa/0x720
[  104.856042][ T7130]  ? __might_fault+0xe3/0x190
[  104.856059][ T7130]  usbdev_ioctl+0x3279/0x4070
[  104.856076][ T7130]  ? __pfx_usbdev_ioctl+0x10/0x10
[  104.856095][ T7130]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  104.856115][ T7130]  ? do_vfs_ioctl+0x128/0x14f0
[  104.856132][ T7130]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  104.856153][ T7130]  ? find_held_lock+0x2b/0x80
[  104.856164][ T7130]  ? hook_file_ioctl_common+0x145/0x410
[  104.856179][ T7130]  ? __fget_files+0x20e/0x3c0
[  104.856191][ T7130]  ? __pfx_usbdev_ioctl+0x10/0x10
[  104.856205][ T7130]  compat_ptr_ioctl+0x6e/0xa0
[  104.856221][ T7130]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[  104.856236][ T7130]  __ia32_compat_sys_ioctl+0x242/0x370
[  104.856255][ T7130]  __do_fast_syscall_32+0x7c/0x300
[  104.856271][ T7130]  do_fast_syscall_32+0x32/0x80
[  104.856296][ T7130]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  104.856311][ T7130] RIP: 0023:0xf701d579
[  104.856320][ T7130] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  104.856330][ T7130] RSP: 002b:00000000f540d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  104.856341][ T7130] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080045505
[  104.856347][ T7130] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[  104.856353][ T7130] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  104.856359][ T7130] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  104.856365][ T7130] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  104.856379][ T7130]  </TASK>
[  105.452017][ T5999] IPVS: starting estimator thread 0...
[  105.536580][ T7143] IPVS: using max 44 ests per chain, 105600 per kthread
[  105.807943][ T7145] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  105.819211][ T7145] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  105.923303][ T6512] udevd[6512]: inotify_add_watch(7, /dev/pmem0p13, 10) failed: No such file or directory
[  105.963678][ T7145] bridge0: left promiscuous mode
[  105.967833][   T12] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  105.970631][   T12] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  105.973462][   T12] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  105.976216][   T12] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  106.048294][ T7156] Illegal XDP return value 7156 on prog  (id 90) dev N/A, expect packet loss!
[  106.102929][ T6018] usb 44-1: device descriptor read/8, error -110
[  106.107417][ T7160] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  106.456432][    T9] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  106.492036][ T6018] usb usb44-port1: attempt power cycle
[  106.606562][    T9] usb 8-1: Using ep0 maxpacket: 8
[  106.610686][    T9] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  106.613861][    T9] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 2
[  106.616767][    T9] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  106.620192][    T9] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  106.623790][    T9] usb 8-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  106.626885][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  106.635022][    T9] hub 8-1:1.0: bad descriptor, ignoring hub
[  106.637491][    T9] hub 8-1:1.0: probe with driver hub failed with error -5
[  106.640778][    T9] cdc_wdm 8-1:1.0: skipping garbage
[  106.642956][    T9] cdc_wdm 8-1:1.0: skipping garbage
[  106.650593][    T9] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  106.653115][    T9] cdc_wdm 8-1:1.0: Unknown control protocol
[  107.067120][ T6018] usb usb44-port1: unable to enumerate USB device
[  107.958181][ T6158] usb 8-1: USB disconnect, device number 2
[  108.377321][ T7199] bridge1: entered promiscuous mode
[  108.428168][   T24] Process accounting resumed
[  108.437316][ T7201] input: syz0 as /devices/virtual/input/input19
[  108.620334][ T7204] ubi31: attaching mtd0
[  108.632488][ T7204] ubi31: scanning is finished
[  108.733751][ T7211] Bluetooth: hci0: Opcode 0x0401 failed: -22
[  108.890253][ T7204] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[  108.893548][ T7204] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  108.895870][ T7204] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[  108.898580][ T7204] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[  108.901106][ T7204] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  108.903456][ T7204] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[  108.906192][ T7204] ubi31: max/mean erase counter: 1/1, WL threshold: 4096, image sequence number: 1744183392
[  108.909896][ T7204] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  108.913361][ T7213] ubi31: background thread "ubi_bgt31d" started, PID 7213
[  108.919063][ T6158] usb 5-1: new low-speed USB device number 2 using dummy_hcd
[  109.159681][ T6158] usb 5-1: config 1 interface 0 altsetting 7 endpoint 0x81 has invalid maxpacket 64, setting to 8
[  109.163760][ T6158] usb 5-1: config 1 interface 0 altsetting 7 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  109.168665][ T6158] usb 5-1: config 1 interface 0 has no altsetting 0
[  109.173630][ T6158] usb 5-1: string descriptor 0 read error: -22
[  109.175909][ T6158] usb 5-1: New USB device found, idVendor=04f2, idProduct=1421, bcdDevice= 0.40
[  109.179438][ T6158] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  109.185028][ T7206] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  109.401988][ T6158] usbhid 5-1:1.0: can't add hid device: -71
[  109.408428][ T6158] usbhid 5-1:1.0: probe with driver usbhid failed with error -71
[  109.420764][ T6158] usb 5-1: USB disconnect, device number 2
[  109.584058][  T843] IPVS: starting estimator thread 0...
[  109.687252][ T7219] IPVS: using max 45 ests per chain, 108000 per kthread
[  109.802412][ T7229] netlink: 4 bytes leftover after parsing attributes in process `syz.1.299'.
[  109.803399][   T40] audit: type=1326 audit(1761804710.820:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7223 comm="syz.3.298" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fa1579 code=0xffff0000
[  109.985404][ T7234] 9pnet_fd: Insufficient options for proto=fd
[  110.104851][ T7238] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  110.107748][ T7238] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  110.108028][ T7238] vhci_hcd vhci_hcd.0: Device attached
[  110.330692][ T7245] input: syz0 as /devices/virtual/input/input21
[  110.333098][ T7245] input: failed to attach handler leds to device input21, error: -6
[  110.426227][ T7248] input: syz0 as /devices/virtual/input/input22
[  110.431335][ T7248] input: failed to attach handler leds to device input22, error: -6
[  110.466439][ T6018] usb 40-1: SetAddress Request (6) to port 0
[  110.468851][ T6018] usb 40-1: new SuperSpeed USB device number 6 using vhci_hcd
[  110.707156][ T7239] vhci_hcd: connection reset by peer
[  110.709752][   T12] vhci_hcd: stop threads
[  110.722181][   T12] vhci_hcd: release socket
[  110.723759][   T12] vhci_hcd: disconnect device
[  110.766394][ T5936] Bluetooth: hci0: command tx timeout
[  110.845440][ T7256] netlink: 4 bytes leftover after parsing attributes in process `syz.0.308'.
[  110.869214][ T7259] netlink: 20 bytes leftover after parsing attributes in process `syz.2.309'.
[  111.072659][   T40] audit: type=1326 audit(1761804712.090:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7266 comm="syz.2.312" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d579 code=0x7ffc0000
[  111.083392][   T40] audit: type=1326 audit(1761804712.090:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7266 comm="syz.2.312" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d579 code=0x7ffc0000
[  111.092167][   T40] audit: type=1326 audit(1761804712.090:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7266 comm="syz.2.312" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf709d579 code=0x7ffc0000
[  111.104471][   T40] audit: type=1326 audit(1761804712.090:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7266 comm="syz.2.312" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d579 code=0x7ffc0000
[  111.113474][   T40] audit: type=1326 audit(1761804712.090:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7266 comm="syz.2.312" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d579 code=0x7ffc0000
[  111.122565][   T40] audit: type=1326 audit(1761804712.090:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7266 comm="syz.2.312" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf709d579 code=0x7ffc0000
[  111.131255][   T40] audit: type=1326 audit(1761804712.090:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7266 comm="syz.2.312" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d579 code=0x7ffc0000
[  111.146633][   T40] audit: type=1326 audit(1761804712.090:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7266 comm="syz.2.312" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d579 code=0x7ffc0000
[  111.156912][   T40] audit: type=1326 audit(1761804712.090:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7266 comm="syz.2.312" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf709d579 code=0x7ffc0000
[  111.684540][ T7277] xt_CT: You must specify a L4 protocol and not use inversions on it
[  111.735448][ T7287] input: syz0 as /devices/virtual/input/input23
[  111.737826][ T7287] input: failed to attach handler leds to device input23, error: -6
[  111.761195][ T7274] /dev/sr0: Can't open blockdev
[  112.084726][ T7300] input: syz0 as /devices/virtual/input/input24
[  112.087906][ T7300] input: failed to attach handler leds to device input24, error: -6
[  112.873118][ T7318] input: syz0 as /devices/virtual/input/input25
[  112.878870][ T7318] input: failed to attach handler leds to device input25, error: -6
[  113.426464][   T24] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  113.604007][ T7334] ip6t_srh: unknown srh invflags 7160
[  113.611689][   T24] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
[  113.614904][   T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8224, setting to 64
[  113.621469][   T24] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  113.624710][   T24] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  113.628002][   T24] usb 5-1: Manufacturer: syz
[  113.632133][   T24] usb 5-1: config 0 descriptor??
[  113.686452][   T24] rc_core: IR keymap rc-hauppauge not found
[  113.689028][   T24] Registered IR keymap rc-empty
[  113.693537][   T24] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0
[  113.700918][   T24] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input26
[  113.905425][   T24] usb 5-1: USB disconnect, device number 3
[  113.926114][ T7341] netlink: 16 bytes leftover after parsing attributes in process `syz.2.330'.
[  114.019870][ T7337] infiniband syz1: set active
[  114.021583][ T7337] infiniband syz1: added syz_tun
[  114.070726][ T7337] RDS/IB: syz1: added
[  114.072440][ T7337] smc: adding ib device syz1 with port count 1
[  114.074878][ T7337] smc:    ib device syz1 port 1 has no pnetid
[  114.548809][ T7353] afs: Unknown parameter 'š²¨¡'
[  114.602237][ T7357] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  114.605028][ T7357] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  114.617488][ T7357] vhci_hcd vhci_hcd.0: Device attached
[  114.686758][ T7360] lo speed is unknown, defaulting to 1000
[  114.887538][ T7358] vhci_hcd: connection closed
[  114.888961][   T46] vhci_hcd: stop threads
[  114.892007][   T46] vhci_hcd: release socket
[  114.894303][   T46] vhci_hcd: disconnect device
[  115.566481][ T6018] usb 40-1: device descriptor read/8, error -110
[  116.055912][ T7386] input: syz0 as /devices/virtual/input/input27
[  116.058660][ T7386] input: failed to attach handler leds to device input27, error: -6
[  116.159687][ T6018] usb usb40-port1: attempt power cycle
[  116.796939][ T6018] usb usb40-port1: unable to enumerate USB device
[  116.822407][ T7404] binder_alloc: 7403: binder_alloc_buf, no vma
[  117.136467][   T24] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  117.296479][   T24] usb 6-1: Using ep0 maxpacket: 16
[  117.300375][   T24] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  117.304895][   T24] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  117.309512][   T24] usb 6-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00
[  117.313360][   T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  117.319740][   T24] usb 6-1: config 0 descriptor??
[  117.735976][ T7416] lo speed is unknown, defaulting to 1000
[  117.740165][   T24] usbhid 6-1:0.0: can't add hid device: -32
[  117.740511][ T7404] netlink: 12 bytes leftover after parsing attributes in process `syz.1.348'.
[  117.742820][   T24] usbhid 6-1:0.0: probe with driver usbhid failed with error -32
[  117.765193][ T7404] 8021q: adding VLAN 0 to HW filter on device bond4
[  117.781226][ T7420] IPVS: ip_vs_add_dest(): lower threshold is higher than upper threshold
[  117.784003][ T6018] IPVS: starting estimator thread 0...
[  117.788974][ T7404] 8021q: adding VLAN 0 to HW filter on device batadv1
[  117.792940][ T7404] bond4: (slave batadv1): Enslaving as an active interface with an up link
[  117.798295][ T7404] netlink: 4 bytes leftover after parsing attributes in process `syz.1.348'.
[  117.866461][ T7421] IPVS: using max 44 ests per chain, 105600 per kthread
[  117.877026][ T7404] bond4 (unregistering): (slave batadv1): Releasing backup interface
[  117.881579][ T7404] bond4 (unregistering): Released all slaves
[  117.958446][ T6018] usb 6-1: USB disconnect, device number 3
[  118.001238][ T7425] xt_CT: You must specify a L4 protocol and not use inversions on it
[  118.030248][   T24] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  118.186448][   T24] usb 7-1: Using ep0 maxpacket: 8
[  118.189830][   T24] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  118.196390][   T24] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  118.200997][   T24] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  118.207246][   T24] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  118.211381][   T24] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  118.216600][   T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  118.568366][   T24] usb 7-1: GET_CAPABILITIES returned 0
[  118.570246][   T24] usbtmc 7-1:16.0: can't read capabilities
[  118.671349][ T7435] syzkaller0: entered promiscuous mode
[  118.673607][ T7435] syzkaller0: entered allmulticast mode
[  118.698599][ T6018] lo speed is unknown, defaulting to 1000
[  118.912680][  T843] usb 7-1: USB disconnect, device number 2
[  120.498942][ T7460] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  120.528982][ T7463] FAULT_INJECTION: forcing a failure.
[  120.528982][ T7463] name failslab, interval 1, probability 0, space 0, times 0
[  120.534156][ T7463] CPU: 1 UID: 0 PID: 7463 Comm: syz.0.364 Not tainted syzkaller #0 PREEMPT(full) 
[  120.534177][ T7463] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  120.534183][ T7463] Call Trace:
[  120.534188][ T7463]  <TASK>
[  120.534193][ T7463]  dump_stack_lvl+0x16c/0x1f0
[  120.534209][ T7463]  should_fail_ex+0x512/0x640
[  120.534226][ T7463]  ? __kvmalloc_node_noprof+0x12e/0x9c0
[  120.534242][ T7463]  should_failslab+0xc2/0x120
[  120.534257][ T7463]  __kvmalloc_node_noprof+0x141/0x9c0
[  120.534271][ T7463]  ? traverse.part.0.constprop.0+0x397/0x650
[  120.534293][ T7463]  ? traverse.part.0.constprop.0+0x397/0x650
[  120.534310][ T7463]  traverse.part.0.constprop.0+0x397/0x650
[  120.534332][ T7463]  seq_read_iter+0x93c/0x12d0
[  120.534355][ T7463]  proc_reg_read_iter+0x220/0x310
[  120.534372][ T7463]  do_iter_readv_writev+0x743/0x9e0
[  120.534384][ T7463]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  120.534400][ T7463]  ? rw_verify_area+0xcf/0x6c0
[  120.534411][ T7463]  vfs_readv+0x4cb/0x8b0
[  120.534425][ T7463]  ? __pfx_vfs_readv+0x10/0x10
[  120.534436][ T7463]  ? find_held_lock+0x2b/0x80
[  120.534456][ T7463]  ? __fget_files+0x20e/0x3c0
[  120.534471][ T7463]  ? do_preadv+0x1a6/0x270
[  120.534481][ T7463]  do_preadv+0x1a6/0x270
[  120.534491][ T7463]  ? __pfx_do_preadv+0x10/0x10
[  120.534503][ T7463]  ? rcu_is_watching+0x12/0xc0
[  120.534517][ T7463]  __do_fast_syscall_32+0x7c/0x300
[  120.534532][ T7463]  do_fast_syscall_32+0x32/0x80
[  120.534545][ T7463]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  120.534559][ T7463] RIP: 0023:0xf701d579
[  120.534568][ T7463] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  120.534578][ T7463] RSP: 002b:00000000f540d55c EFLAGS: 00000296 ORIG_RAX: 000000000000014d
[  120.534589][ T7463] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800001c0
[  120.534596][ T7463] RDX: 0000000000000001 RSI: 00000000000007ff RDI: 0000000000000000
[  120.534602][ T7463] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  120.534608][ T7463] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  120.534613][ T7463] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  120.534627][ T7463]  </TASK>
[  120.668373][ T7471] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  120.727994][ T7474] trusted_key: encrypted_key: insufficient parameters specified
[  120.750520][ T7474] netlink: 4 bytes leftover after parsing attributes in process `syz.3.368'.
[  120.765676][ T7474] netlink: 12 bytes leftover after parsing attributes in process `syz.3.368'.
[  120.822657][ T7480] netlink: 4 bytes leftover after parsing attributes in process `syz.2.372'.
[  120.945280][ T7484] input: syz0 as /devices/virtual/input/input28
[  120.947440][ T7484] input: failed to attach handler leds to device input28, error: -6
[  121.534316][ T7493] netfs: Couldn't get user pages (rc=-14)
[  122.359739][ T7513] xt_CT: You must specify a L4 protocol and not use inversions on it
[  122.416462][ T7528] 9pnet_virtio: no channels available for device syz
[  123.435332][ T7550] netlink: 8 bytes leftover after parsing attributes in process `syz.2.387'.
[  123.814444][ T7551] cgroup: fork rejected by pids controller in /syz3
[  124.150350][   T40] kauditd_printk_skb: 30 callbacks suppressed
[  124.150436][   T40] audit: type=1326 audit(1761804725.170:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.2.392" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d579 code=0x7ffc0000
[  124.166618][   T40] audit: type=1326 audit(1761804725.180:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.2.392" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d579 code=0x7ffc0000
[  124.174007][   T40] audit: type=1326 audit(1761804725.180:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.2.392" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf709d579 code=0x7ffc0000
[  124.181930][   T40] audit: type=1326 audit(1761804725.180:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.2.392" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d579 code=0x7ffc0000
[  124.189925][   T40] audit: type=1326 audit(1761804725.180:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.2.392" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d579 code=0x7ffc0000
[  124.204292][   T40] audit: type=1326 audit(1761804725.180:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.2.392" exe="/syz-executor" sig=0 arch=40000003 syscall=104 compat=1 ip=0xf709d579 code=0x7ffc0000
[  124.212316][   T40] audit: type=1326 audit(1761804725.180:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.2.392" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d579 code=0x7ffc0000
[  124.219764][   T40] audit: type=1326 audit(1761804725.180:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.2.392" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d579 code=0x7ffc0000
[  124.227761][   T40] audit: type=1326 audit(1761804725.180:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.2.392" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf709d579 code=0x7ffc0000
[  124.235383][   T40] audit: type=1326 audit(1761804725.180:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.2.392" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d579 code=0x7ffc0000
[  124.332401][ T7755] syz.2.392 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  124.440031][ T7755] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(11)
[  124.442884][ T7755] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  124.448088][ T7755] vhci_hcd vhci_hcd.0: Device attached
[  124.452943][ T7895] vhci_hcd: connection closed
[  124.458108][ T1143] vhci_hcd: stop threads
[  124.463491][ T1143] vhci_hcd: release socket
[  124.465377][ T1143] vhci_hcd: disconnect device
[  124.469067][ T7897] input: syz1 as /devices/virtual/input/input29
[  124.799710][ T7903] netlink: 12 bytes leftover after parsing attributes in process `syz.0.393'.
[  124.820126][ T7899] netfs: Couldn't get user pages (rc=-14)
[  124.857719][ T7905] 9pnet_virtio: no channels available for device syz
[  125.127332][ T7915] input: syz0 as /devices/virtual/input/input30
[  125.130101][ T7915] input: failed to attach handler leds to device input30, error: -6
[  125.242618][ T7921] bridge4: entered promiscuous mode
[  126.320984][ T7938] binder: 7936:7938 ioctl 0 80000040 returned -22
[  126.590035][ T7945] CUSE: DEVNAME unspecified
[  127.072591][ T7952] input: syz0 as /devices/virtual/input/input31
[  127.075416][ T7952] input: failed to attach handler leds to device input31, error: -6
[  127.276110][ T7956] lo speed is unknown, defaulting to 1000
[  127.719141][ T7967] bridge5: entered promiscuous mode
[  128.119279][ T7985] fuse: Bad value for 'fd'
[  128.121447][ T7985] fuseblk: Bad value for 'fd'
[  128.121457][ T7987] fuseblk: Bad value for 'fd'
[  128.122430][ T7978] 8021q: VLANs not supported on ip_vti0
[  128.406539][ T7999] pim6reg: entered allmulticast mode
[  129.898490][ T8032] bridge2: entered promiscuous mode
[  130.244798][ T8039] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  130.246943][ T8039] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  130.250018][ T8039] vhci_hcd vhci_hcd.0: Device attached
[  130.597439][ T5999] usb 44-1: SetAddress Request (10) to port 0
[  130.600199][ T5999] usb 44-1: new SuperSpeed USB device number 10 using vhci_hcd
[  130.763807][ T8057] xt_CT: You must specify a L4 protocol and not use inversions on it
[  130.854172][ T8040] vhci_hcd: connection reset by peer
[  130.856234][  T163] vhci_hcd: stop threads
[  130.865454][  T163] vhci_hcd: release socket
[  130.867201][  T163] vhci_hcd: disconnect device
[  131.091577][ T8063] netfs: Couldn't get user pages (rc=-14)
[  131.741793][ T8099] netlink: 4 bytes leftover after parsing attributes in process `syz.3.448'.
[  131.981122][ T8087] syz.2.444 (8087) used greatest stack depth: 19528 bytes left
[  132.291795][ T1418] ieee802154 phy0 wpan0: encryption failed: -22
[  132.294460][ T1418] ieee802154 phy1 wpan1: encryption failed: -22
[  133.979317][ T8136] IPv6: sit1: Disabled Multicast RS
[  134.332069][ T8146] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  134.482434][ T8148] netlink: 'syz.3.460': attribute type 2 has an invalid length.
[  134.486899][ T8148] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  135.117690][ T8153] input: syz0 as /devices/virtual/input/input32
[  135.125391][ T8153] input: failed to attach handler leds to device input32, error: -6
[  135.648537][ T5999] usb 44-1: device descriptor read/8, error -110
[  135.789091][ T8169] netlink: 20 bytes leftover after parsing attributes in process `syz.0.467'.
[  136.038951][ T5999] usb usb44-port1: attempt power cycle
[  136.303467][ T8182] program syz.2.471 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  136.758442][ T8189] xt_CT: You must specify a L4 protocol and not use inversions on it
[  136.761225][ T5999] usb usb44-port1: unable to enumerate USB device
[  137.100518][ T8197] input: syz0 as /devices/virtual/input/input33
[  137.102498][ T8197] input: failed to attach handler leds to device input33, error: -6
[  138.965291][ T8244] netlink: 14560 bytes leftover after parsing attributes in process `syz.0.491'.
[  141.524176][ T8287] netfs: Couldn't get user pages (rc=-14)
[  141.539757][ T8292] 9pnet_virtio: no channels available for device syz
[  141.938417][ T8305] Cannot find del_set index 65533 as target
[  141.941799][ T8303] input: syz0 as /devices/virtual/input/input34
[  141.943783][ T8303] input: failed to attach handler leds to device input34, error: -6
[  142.614768][ T8327] netlink: 4 bytes leftover after parsing attributes in process `syz.1.515'.
[  143.101443][ T8336] input: syz0 as /devices/virtual/input/input35
[  143.103929][ T8336] input: failed to attach handler leds to device input35, error: -6
[  143.526560][   T34] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  143.688760][   T34] usb 5-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  143.692381][   T34] usb 5-1: config 1 has an invalid descriptor of length 170, skipping remainder of the config
[  143.696668][   T34] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  143.702219][   T34] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  143.706013][   T34] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  143.709360][   T34] usb 5-1: Product: 邅庀�虭첷⾜袂ꡠ쥉⿞�턵ῤ縑귩�ႃᲹ蓊맀啕㪻粙幑ጆ햿�ﴨﻧ랎늺䓗ⴽ��ퟥ콣ᗅ沢箖蓩匢麽ꀬ�ꛭ縗뼊똯앿꾾뒅ῶ
[  143.717091][   T34] usb 5-1: Manufacturer: �
[  143.718885][   T34] usb 5-1: SerialNumber: syz
[  144.137118][   T34] usb 5-1: 0:2 : does not exist
[  144.156061][   T34] usb 5-1: USB disconnect, device number 4
[  144.202070][ T5938] udevd[5938]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  144.358008][ T8365] netlink: 4 bytes leftover after parsing attributes in process `syz.2.528'.
[  144.468521][   T40] kauditd_printk_skb: 60 callbacks suppressed
[  144.468532][   T40] audit: type=1804 audit(1761804745.490:113): pid=8369 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.529" name="/newroot/135/file0" dev="tmpfs" ino=728 res=1 errno=0
[  144.471199][ T8369] ref_ctr going negative. vaddr: 0x80ffd002, curr val: -14123, delta: 1
[  144.482930][ T8369] ref_ctr increment failed for inode: 0x2d8 offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff8880244ec080
[  144.489597][ T8369] ref_ctr going negative. vaddr: 0x80ffd002, curr val: -14123, delta: -1
[  144.492363][ T8369] ref_ctr decrement failed for inode: 0x2d8 offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff8880244ec080
[  144.495861][ T8369] uprobe: syz.2.529:8369 failed to unregister, leaking uprobe
[  144.515940][ T8371] syzkaller1: entered promiscuous mode
[  144.517849][ T8371] syzkaller1: entered allmulticast mode
[  145.068267][ T8385] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  145.070347][ T8385] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  145.073633][ T8385] vhci_hcd vhci_hcd.0: Device attached
[  145.191060][ T8390] netlink: 24 bytes leftover after parsing attributes in process `syz.1.532'.
[  145.421448][ T8387] vhci_hcd: connection closed
[  145.421753][   T12] vhci_hcd: stop threads
[  145.425455][   T12] vhci_hcd: release socket
[  145.427118][ T6018] usb 40-1: SetAddress Request (10) to port 0
[  145.429537][ T6018] usb 40-1: new SuperSpeed USB device number 10 using vhci_hcd
[  145.436413][   T12] vhci_hcd: disconnect device
[  145.448321][ T6018] usb 40-1: enqueue for inactive port 0
[  145.476407][  T843] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  145.635701][ T8396] netlink: 20 bytes leftover after parsing attributes in process `syz.2.537'.
[  145.709633][  T843] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  145.712795][  T843] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  145.715862][  T843] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  145.722119][  T843] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice=20.41
[  145.725045][  T843] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[  145.728016][  T843] usb 5-1: Product: syz
[  145.729340][  T843] usb 5-1: Manufacturer: syz
[  145.730804][  T843] usb 5-1: SerialNumber: syz
[  145.861791][ T6018] usb usb40-port1: attempt power cycle
[  145.952490][  T843] usblp 5-1:1.0: usblp0: USB Unidirectional printer dev 5 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  146.215663][  T843] usb 5-1: USB disconnect, device number 5
[  146.219025][  T843] usblp0: removed
[  146.601512][ T6018] usb usb40-port1: unable to enumerate USB device
[  146.978359][ T8436] netlink: 'syz.0.548': attribute type 11 has an invalid length.
[  146.999719][ T8436] netlink: 8 bytes leftover after parsing attributes in process `syz.0.548'.
[  148.177772][ T8462] netlink: 8 bytes leftover after parsing attributes in process `syz.3.557'.
[  148.181320][ T8462] netlink: 8 bytes leftover after parsing attributes in process `syz.3.557'.
[  148.357849][ T8470] input: syz0 as /devices/virtual/input/input36
[  148.360113][ T8470] input: failed to attach handler leds to device input36, error: -6
[  148.498088][ T8468] netlink: 4 bytes leftover after parsing attributes in process `syz.3.559'.
[  149.005055][ T8481] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  149.007153][ T8481] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  149.018849][ T8481] vhci_hcd vhci_hcd.0: Device attached
[  149.306564][ T6018] usb 38-1: SetAddress Request (11) to port 0
[  149.308982][ T6018] usb 38-1: new SuperSpeed USB device number 11 using vhci_hcd
[  149.646389][ T8482] vhci_hcd: connection reset by peer
[  149.649830][   T46] vhci_hcd: stop threads
[  149.651132][   T46] vhci_hcd: release socket
[  149.652575][   T46] vhci_hcd: disconnect device
[  149.830670][ T8499] batman_adv: batadv0: Adding interface: gretap1
[  149.833334][ T8499] batman_adv: batadv0: The MTU of interface gretap1 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  149.844587][ T8499] batman_adv: batadv0: Interface activated: gretap1
[  149.922377][ T8504] input: syz0 as /devices/virtual/input/input37
[  149.925088][ T8504] input: failed to attach handler leds to device input37, error: -6
[  150.245895][ T8513] input: syz0 as /devices/virtual/input/input38
[  150.248239][ T8513] input: failed to attach handler leds to device input38, error: -6
[  150.549601][ T8522] netlink: 72 bytes leftover after parsing attributes in process `syz.2.579'.
[  150.552217][ T8522] netlink: 72 bytes leftover after parsing attributes in process `syz.2.579'.
[  150.642437][ T8526] input: syz0 as /devices/virtual/input/input39
[  150.644628][ T8526] input: failed to attach handler leds to device input39, error: -6
[  150.678173][ T8530] mkiss: ax0: crc mode is auto.
[  150.690690][ T8530] netlink: 'syz.0.582': attribute type 1 has an invalid length.
[  150.791888][ T8535] FAULT_INJECTION: forcing a failure.
[  150.791888][ T8535] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  150.796024][ T8535] CPU: 3 UID: 0 PID: 8535 Comm: syz.3.583 Not tainted syzkaller #0 PREEMPT(full) 
[  150.796039][ T8535] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  150.796045][ T8535] Call Trace:
[  150.796049][ T8535]  <TASK>
[  150.796053][ T8535]  dump_stack_lvl+0x16c/0x1f0
[  150.796070][ T8535]  should_fail_ex+0x512/0x640
[  150.796090][ T8535]  _copy_from_user+0x2e/0xd0
[  150.796108][ T8535]  copy_from_sockptr_offset.constprop.0+0x153/0x1a0
[  150.796126][ T8535]  ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10
[  150.796148][ T8535]  packet_setsockopt+0xbbd/0x33c0
[  150.796158][ T8535]  ? find_held_lock+0x2b/0x80
[  150.796170][ T8535]  ? __pfx___might_resched+0x10/0x10
[  150.796184][ T8535]  ? __pfx_packet_setsockopt+0x10/0x10
[  150.796201][ T8535]  ? aa_sk_perm+0x2f4/0xb10
[  150.796212][ T8535]  ? ksys_write+0x190/0x250
[  150.796225][ T8535]  ? __pfx_aa_sk_perm+0x10/0x10
[  150.796237][ T8535]  ? find_held_lock+0x2b/0x80
[  150.796249][ T8535]  ? aa_sock_opt_perm+0xfd/0x1c0
[  150.796264][ T8535]  ? __pfx_packet_setsockopt+0x10/0x10
[  150.796294][ T8535]  do_sock_setsockopt+0xf3/0x1d0
[  150.796311][ T8535]  __sys_setsockopt+0x120/0x1a0
[  150.796331][ T8535]  __ia32_sys_setsockopt+0xbc/0x160
[  150.796348][ T8535]  ? lockdep_hardirqs_on+0x7c/0x110
[  150.796360][ T8535]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  150.796373][ T8535]  __do_fast_syscall_32+0x7c/0x300
[  150.796388][ T8535]  do_fast_syscall_32+0x32/0x80
[  150.796401][ T8535]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  150.796431][ T8535] RIP: 0023:0xf7fa1579
[  150.796440][ T8535] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  150.796450][ T8535] RSP: 002b:00000000f549655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  150.796461][ T8535] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000107
[  150.796468][ T8535] RDX: 0000000000000012 RSI: 0000000080000000 RDI: 0000000000000004
[  150.796474][ T8535] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  150.796480][ T8535] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  150.796486][ T8535] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  150.796500][ T8535]  </TASK>
[  151.012062][ T8548] netlink: 20 bytes leftover after parsing attributes in process `syz.2.588'.
[  151.089546][ T8549] syz.2.588: vmalloc error: size 2147483264, exceeds total pages, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  151.095065][ T8549] CPU: 2 UID: 0 PID: 8549 Comm: syz.2.588 Not tainted syzkaller #0 PREEMPT(full) 
[  151.095091][ T8549] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  151.095098][ T8549] Call Trace:
[  151.095102][ T8549]  <TASK>
[  151.095107][ T8549]  dump_stack_lvl+0x16c/0x1f0
[  151.095124][ T8549]  warn_alloc+0x248/0x3a0
[  151.095137][ T8549]  ? __pfx_warn_alloc+0x10/0x10
[  151.095148][ T8549]  ? __pfx___schedule+0x10/0x10
[  151.095158][ T8549]  ? __pfx_stack_trace_save+0x10/0x10
[  151.095182][ T8549]  ? do_replace+0x1c3/0x480
[  151.095200][ T8549]  __vmalloc_node_range_noprof+0xfbc/0x1480
[  151.095223][ T8549]  ? do_replace+0x1c3/0x480
[  151.095237][ T8549]  ? find_held_lock+0x2b/0x80
[  151.095249][ T8549]  ? __might_fault+0xe3/0x190
[  151.095259][ T8549]  ? __might_fault+0x13b/0x190
[  151.095271][ T8549]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  151.095289][ T8549]  ? _copy_from_user+0x59/0xd0
[  151.095307][ T8549]  ? copy_from_sockptr_offset.constprop.0+0xe5/0x170
[  151.095324][ T8549]  ? do_replace+0x1c3/0x480
[  151.095338][ T8549]  __vmalloc_node_noprof+0xad/0xf0
[  151.095354][ T8549]  ? do_replace+0x1c3/0x480
[  151.095376][ T8549]  do_replace+0x1c3/0x480
[  151.095392][ T8549]  ? __pfx_do_replace+0x10/0x10
[  151.095413][ T8549]  ? lockdep_hardirqs_on+0x7c/0x110
[  151.095429][ T8549]  compat_do_replace+0x585/0x7c0
[  151.095445][ T8549]  ? __pfx___bpf_trace_contention_begin+0x10/0x10
[  151.095464][ T8549]  ? __pfx_compat_do_replace+0x10/0x10
[  151.095481][ T8549]  ? preempt_schedule_common+0x44/0xc0
[  151.095500][ T8549]  ? bpf_lsm_capable+0x9/0x10
[  151.095517][ T8549]  ? security_capable+0x7e/0x260
[  151.095534][ T8549]  do_ebt_set_ctl+0x2f5/0x3c0
[  151.095551][ T8549]  ? __pfx_do_ebt_set_ctl+0x10/0x10
[  151.095568][ T8549]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  151.095587][ T8549]  ? nf_sockopt_find.constprop.0+0x222/0x290
[  151.095602][ T8549]  nf_setsockopt+0x8d/0xf0
[  151.095616][ T8549]  ip_setsockopt+0xcb/0xf0
[  151.095632][ T8549]  tcp_setsockopt+0xa7/0x100
[  151.095650][ T8549]  smc_setsockopt+0x1b6/0xa00
[  151.095666][ T8549]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  151.095682][ T8549]  ? __pfx_smc_setsockopt+0x10/0x10
[  151.095699][ T8549]  ? aa_sock_opt_perm+0xfd/0x1c0
[  151.095715][ T8549]  ? __pfx_smc_setsockopt+0x10/0x10
[  151.095732][ T8549]  do_sock_setsockopt+0xf3/0x1d0
[  151.095747][ T8549]  __sys_setsockopt+0x120/0x1a0
[  151.095767][ T8549]  __ia32_sys_setsockopt+0xbc/0x160
[  151.095783][ T8549]  ? lockdep_hardirqs_on+0x7c/0x110
[  151.095794][ T8549]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  151.095807][ T8549]  __do_fast_syscall_32+0x7c/0x300
[  151.095822][ T8549]  do_fast_syscall_32+0x32/0x80
[  151.095835][ T8549]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  151.095848][ T8549] RIP: 0023:0xf709d579
[  151.095857][ T8549] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  151.095867][ T8549] RSP: 002b:00000000f546c55c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  151.095877][ T8549] RAX: ffffffffffffffda RBX: 000000000000000e RCX: 0000000000000000
[  151.095884][ T8549] RDX: 0000000000000080 RSI: 0000000080001680 RDI: 0000000000000108
[  151.095890][ T8549] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  151.095895][ T8549] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  151.095901][ T8549] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  151.095915][ T8549]  </TASK>
[  151.096006][ T8549] Mem-Info:
[  151.206622][ T8549] active_anon:11224 inactive_anon:1887 isolated_anon:35
[  151.206622][ T8549]  active_file:9406 inactive_file:42677 isolated_file:0
[  151.206622][ T8549]  unevictable:1768 dirty:758 writeback:0
[  151.206622][ T8549]  slab_reclaimable:7914 slab_unreclaimable:64076
[  151.206622][ T8549]  mapped:28263 shmem:9064 pagetables:1498
[  151.206622][ T8549]  sec_pagetables:314 bounce:0
[  151.206622][ T8549]  kernel_misc_reclaimable:0
[  151.206622][ T8549]  free:30394 free_pcp:13232 free_cma:0
[  151.220973][ T8549] Node 0 active_anon:148kB inactive_anon:120kB active_file:372kB inactive_file:164kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:260kB dirty:0kB writeback:0kB shmem:3540kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:9136kB pagetables:1680kB sec_pagetables:1124kB all_unreclaimable? yes Balloon:0kB
[  151.230809][ T8549] Node 1 active_anon:44704kB inactive_anon:7428kB active_file:37252kB inactive_file:170544kB unevictable:3536kB isolated(anon):100kB isolated(file):0kB mapped:114668kB dirty:3032kB writeback:0kB shmem:32768kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:5288kB pagetables:4280kB sec_pagetables:132kB all_unreclaimable? no Balloon:0kB
[  151.240942][ T8549] Node 0 DMA free:2100kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:488kB local_pcp:60kB free_cma:0kB
[  151.250171][ T8549] lowmem_reserve[]: 0 294 294 294 294
[  151.252101][ T8549] Node 0 DMA32 free:16644kB boost:0kB min:13448kB low:16808kB high:20168kB reserved_highatomic:0KB free_highatomic:0KB active_anon:132kB inactive_anon:120kB active_file:372kB inactive_file:164kB unevictable:3536kB writepending:0kB zspages:0kB present:1032196kB managed:301168kB mlocked:0kB bounce:0kB free_pcp:14068kB local_pcp:2724kB free_cma:0kB
[  151.263351][ T8549] lowmem_reserve[]: 0 0 0 0 0
[  151.265256][ T8549] Node 1 DMA32 free:106936kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44420kB inactive_anon:7428kB active_file:37252kB inactive_file:170544kB unevictable:3536kB writepending:3040kB zspages:1984kB present:1048432kB managed:948220kB mlocked:0kB bounce:0kB free_pcp:34980kB local_pcp:14832kB free_cma:0kB
[  151.278375][ T8549] lowmem_reserve[]: 0 0 0 0 0
[  151.280177][ T8549] Node 0 DMA: 13*4kB (UM) 28*8kB (UM) 10*16kB (UM) 4*32kB (U) 2*64kB (UM) 1*128kB (M) 1*256kB (M) 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2100kB
[  151.285642][ T8549] Node 0 DMA32: 215*4kB (UME) 101*8kB (UME) 32*16kB (UME) 24*32kB (UME) 28*64kB (UME) 11*128kB (UME) 7*256kB (ME) 5*512kB (UME) 4*1024kB (UM) 1*2048kB (U) 0*4096kB = 16644kB
[  151.291824][ T8549] Node 1 DMA32: 243*4kB (UM) 192*8kB (UME) 154*16kB (UME) 127*32kB (ME) 82*64kB (UME) 90*128kB (UME) 39*256kB (UME) 25*512kB (UME) 17*1024kB (M) 11*2048kB (UM) 4*4096kB (M) = 104908kB
[  151.298567][ T8549] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  151.301655][ T8549] Node 0 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  151.304935][ T8549] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  151.308004][ T8549] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[  151.311093][ T8549] 61682 total pagecache pages
[  151.312767][ T8549] 273 pages in swap cache
[  151.314233][ T8549] Free swap  = 121400kB
[  151.315638][ T8549] Total swap = 124996kB
[  151.317101][ T8549] 524155 pages RAM
[  151.318434][ T8549] 0 pages HighMem/MovableOnly
[  151.320023][ T8549] 207968 pages reserved
[  151.321669][ T8549] 0 pages cma reserved
[  152.083512][ T8562] xt_CT: You must specify a L4 protocol and not use inversions on it
[  152.332367][ T8571] evm: overlay not supported
[  152.847763][ T8595] netlink: 8 bytes leftover after parsing attributes in process `syz.3.605'.
[  152.851711][ T8595] netlink: 8 bytes leftover after parsing attributes in process `syz.3.605'.
[  153.754714][ T8628] netlink: 24 bytes leftover after parsing attributes in process `syz.0.613'.
[  153.811610][ T8631] PKCS7: Unknown OID: [4] 2.19.13055.1334505.0.0.0.0
[  153.822111][ T8631] PKCS7: Only support pkcs7_signedData type
[  153.969775][ T8640] overlayfs: missing 'workdir'
[  154.122688][ T8668] FAULT_INJECTION: forcing a failure.
[  154.122688][ T8668] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  154.128939][ T8668] CPU: 0 UID: 0 PID: 8668 Comm: syz.0.626 Not tainted syzkaller #0 PREEMPT(full) 
[  154.128962][ T8668] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  154.128972][ T8668] Call Trace:
[  154.128978][ T8668]  <TASK>
[  154.128985][ T8668]  dump_stack_lvl+0x16c/0x1f0
[  154.129010][ T8668]  should_fail_ex+0x512/0x640
[  154.129041][ T8668]  _copy_from_user+0x2e/0xd0
[  154.129069][ T8668]  get_compat_msghdr+0xa7/0x170
[  154.129096][ T8668]  ? __pfx_get_compat_msghdr+0x10/0x10
[  154.129132][ T8668]  ___sys_sendmsg+0x1ae/0x1d0
[  154.129165][ T8668]  ? __pfx____sys_sendmsg+0x10/0x10
[  154.129195][ T8668]  ? find_held_lock+0x2b/0x80
[  154.129234][ T8668]  __sys_sendmsg+0x16d/0x220
[  154.129252][ T8668]  ? __pfx___sys_sendmsg+0x10/0x10
[  154.129281][ T8668]  ? rcu_is_watching+0x12/0xc0
[  154.129303][ T8668]  __do_fast_syscall_32+0x7c/0x300
[  154.129327][ T8668]  do_fast_syscall_32+0x32/0x80
[  154.129348][ T8668]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  154.129368][ T8668] RIP: 0023:0xf701d579
[  154.129393][ T8668] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  154.129409][ T8668] RSP: 002b:00000000f540d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  154.129427][ T8668] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[  154.129438][ T8668] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  154.129448][ T8668] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  154.129458][ T8668] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  154.129469][ T8668] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  154.129493][ T8668]  </TASK>
[  154.130007][ T8669] netlink: 60 bytes leftover after parsing attributes in process `syz.2.625'.
[  154.264921][ T8656] netfs: Couldn't get user pages (rc=-14)
[  154.376528][ T6018] usb 38-1: device descriptor read/8, error -110
[  154.796412][ T6018] usb usb38-port1: attempt power cycle
[  155.439817][ T6018] usb usb38-port1: unable to enumerate USB device
[  155.895164][ T8715] ref_ctr increment failed for inode: 0x352 offset: 0x7 ref_ctr_offset: 0x2710 of mm: 0xffff88804efa8ac0
[  157.228621][ T8744] netlink: 16 bytes leftover after parsing attributes in process `syz.1.645'.
[  157.331309][ T8744] mkiss: ax0: crc mode is auto.
[  157.679302][ T8762] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  157.681676][ T8762] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  157.684100][ T8762] vhci_hcd vhci_hcd.0: Device attached
[  157.866446][   T34] vhci_hcd: vhci_device speed not set
[  157.928243][   T34] usb 37-1: new full-speed USB device number 2 using vhci_hcd
[  157.956419][  T843] usb 5-1: new low-speed USB device number 6 using dummy_hcd
[  158.108009][  T843] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  158.110565][  T843] usb 5-1: config 0 has no interface number 0
[  158.112565][  T843] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  158.116067][  T843] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  158.126509][  T843] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  158.134669][  T843] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  158.143655][ T8772] xt_CT: You must specify a L4 protocol and not use inversions on it
[  158.173098][  T843] usb 5-1: config 0 descriptor??
[  158.206877][ T8762] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  158.219576][  T843] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  158.450641][   T53] usb 5-1: USB disconnect, device number 6
[  158.516118][ T8764] vhci_hcd: connection reset by peer
[  158.518227][   T12] vhci_hcd: stop threads
[  158.519470][   T12] vhci_hcd: release socket
[  158.520836][   T12] vhci_hcd: disconnect device
[  160.347311][ T8832] netlink: 4 bytes leftover after parsing attributes in process `syz.3.671'.
[  161.301170][ T8853] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  161.303325][ T8853] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  161.307037][ T8853] vhci_hcd vhci_hcd.0: Device attached
[  161.439362][ T8852] netfs: Couldn't get user pages (rc=-14)
[  161.751991][  T843] hid-generic 0000:0003:0001.0006: unknown main item tag 0x0
[  161.755893][  T843] hid-generic 0000:0003:0001.0006: unknown main item tag 0x0
[  161.762856][  T843] hid-generic 0000:0003:0001.0006: hidraw0: <UNKNOWN> HID v0.03 Device [syz0] on syz1
[  161.845306][ T8860] fido_id[8860]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  161.883848][ T8862] netlink: 4 bytes leftover after parsing attributes in process `syz.3.681'.
[  162.073560][ T8854] vhci_hcd: connection closed
[  162.074355][   T12] vhci_hcd: stop threads
[  162.081083][   T12] vhci_hcd: release socket
[  162.083225][   T12] vhci_hcd: disconnect device
[  162.719939][ T8882] netlink: 8 bytes leftover after parsing attributes in process `syz.2.684'.
[  162.724479][ T8882] netlink: 8 bytes leftover after parsing attributes in process `syz.2.684'.
[  163.086448][   T34] vhci_hcd: vhci_device speed not set
[  163.589286][ T8906] xt_CT: You must specify a L4 protocol and not use inversions on it
[  164.004704][ T8922] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  164.007499][ T8922] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  164.020047][ T8922] vhci_hcd vhci_hcd.0: Device attached
[  164.368439][ T8938] IPVS: set_ctl: invalid protocol: 92 100.1.1.0:20003
[  164.430626][ T5999] usb usb38-port1: attempt power cycle
[  164.504294][ T8942] netlink: 112 bytes leftover after parsing attributes in process `syz.3.704'.
[  164.542095][ T8926] vhci_hcd: connection closed
[  164.542273][   T46] vhci_hcd: stop threads
[  164.546098][   T46] vhci_hcd: release socket
[  164.548812][   T46] vhci_hcd: disconnect device
[  164.566573][ T6018] usb 37-1: new low-speed USB device number 3 using vhci_hcd
[  164.569999][ T6018] usb 37-1: enqueue for inactive port 0
[  164.636437][ T6018] vhci_hcd: vhci_device speed not set
[  164.659539][   T24] libceph: connect (1)[c::]:6789 error -101
[  164.661751][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  164.917349][   T24] libceph: connect (1)[c::]:6789 error -101
[  164.919580][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  164.960384][ T8954] FAULT_INJECTION: forcing a failure.
[  164.960384][ T8954] name failslab, interval 1, probability 0, space 0, times 0
[  164.964954][ T8954] CPU: 3 UID: 0 PID: 8954 Comm: syz.1.708 Not tainted syzkaller #0 PREEMPT(full) 
[  164.964972][ T8954] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  164.964980][ T8954] Call Trace:
[  164.964986][ T8954]  <TASK>
[  164.964991][ T8954]  dump_stack_lvl+0x16c/0x1f0
[  164.965011][ T8954]  should_fail_ex+0x512/0x640
[  164.965031][ T8954]  ? __kmalloc_noprof+0xca/0x880
[  164.965055][ T8954]  should_failslab+0xc2/0x120
[  164.965074][ T8954]  __kmalloc_noprof+0xdd/0x880
[  164.965096][ T8954]  ? nla_strdup+0xc6/0x150
[  164.965112][ T8954]  ? nla_strdup+0xc6/0x150
[  164.965123][ T8954]  ? kasan_save_track+0x14/0x30
[  164.965138][ T8954]  nla_strdup+0xc6/0x150
[  164.965152][ T8954]  nf_tables_newtable+0xdfe/0x1b50
[  164.965174][ T8954]  ? __pfx___nla_validate_parse+0x10/0x10
[  164.965196][ T8954]  ? __pfx_nf_tables_newtable+0x10/0x10
[  164.965220][ T8954]  ? __nla_parse+0x40/0x60
[  164.965238][ T8954]  nfnetlink_rcv_batch+0x190d/0x2350
[  164.965270][ T8954]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[  164.965292][ T8954]  ? kasan_save_stack+0x33/0x60
[  164.965306][ T8954]  ? kasan_save_track+0x14/0x30
[  164.965320][ T8954]  ? __kasan_slab_alloc+0x89/0x90
[  164.965336][ T8954]  ? kmem_cache_alloc_node_noprof+0x28a/0x770
[  164.965349][ T8954]  ? kmalloc_reserve+0x18b/0x2c0
[  164.965399][ T8954]  ? __nla_parse+0x40/0x60
[  164.965417][ T8954]  nfnetlink_rcv+0x3c1/0x430
[  164.965435][ T8954]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  164.965460][ T8954]  netlink_unicast+0x5aa/0x870
[  164.965478][ T8954]  ? __pfx_netlink_unicast+0x10/0x10
[  164.965501][ T8954]  netlink_sendmsg+0x8c8/0xdd0
[  164.965519][ T8954]  ? __pfx_netlink_sendmsg+0x10/0x10
[  164.965537][ T8954]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  164.965561][ T8954]  ____sys_sendmsg+0xa98/0xc70
[  164.965581][ T8954]  ? __pfx_____sys_sendmsg+0x10/0x10
[  164.965596][ T8954]  ? get_compat_msghdr+0x11a/0x170
[  164.965628][ T8954]  ___sys_sendmsg+0x134/0x1d0
[  164.965643][ T8954]  ? __pfx____sys_sendmsg+0x10/0x10
[  164.965668][ T8954]  ? find_held_lock+0x2b/0x80
[  164.965698][ T8954]  __sys_sendmsg+0x16d/0x220
[  164.965730][ T8954]  ? __pfx___sys_sendmsg+0x10/0x10
[  164.965752][ T8954]  ? rcu_is_watching+0x12/0xc0
[  164.965770][ T8954]  __do_fast_syscall_32+0x7c/0x300
[  164.965789][ T8954]  do_fast_syscall_32+0x32/0x80
[  164.965804][ T8954]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  164.965822][ T8954] RIP: 0023:0xf7f46579
[  164.965833][ T8954] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  164.965845][ T8954] RSP: 002b:00000000f543655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  164.965859][ T8954] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[  164.965868][ T8954] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  164.965875][ T8954] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  164.965883][ T8954] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  164.965891][ T8954] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  164.965909][ T8954]  </TASK>
[  165.141752][ T8959] netlink: 25 bytes leftover after parsing attributes in process `syz.0.710'.
[  165.174928][ T8957] xt_CT: You must specify a L4 protocol and not use inversions on it
[  165.198630][ T8969] netlink: 8 bytes leftover after parsing attributes in process `syz.3.713'.
[  165.201401][ T8969] netlink: 8 bytes leftover after parsing attributes in process `syz.3.713'.
[  165.274902][ T8978] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  165.286578][ T8978] netlink: 24 bytes leftover after parsing attributes in process `syz.0.717'.
[  165.323248][ T8946] ceph: No mds server is up or the cluster is laggy
[  165.414932][ T8988] loop7: detected capacity change from 0 to 7
[  165.421197][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  165.425031][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[  165.429125][    C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  165.432866][    C2] Buffer I/O error on dev loop7, logical block 0, async page read
[  165.438697][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  165.441542][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  165.444179][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  165.447054][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  165.449621][    C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  165.453670][    C3] Buffer I/O error on dev loop7, logical block 0, async page read
[  165.459367][    C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  165.463309][    C3] Buffer I/O error on dev loop7, logical block 0, async page read
[  165.468472][    C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  165.472561][    C3] Buffer I/O error on dev loop7, logical block 0, async page read
[  165.477463][ T8988] ldm_validate_partition_table(): Disk read failed.
[  165.481292][    C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  165.485221][    C3] Buffer I/O error on dev loop7, logical block 0, async page read
[  165.489772][    C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  165.493731][    C3] Buffer I/O error on dev loop7, logical block 0, async page read
[  165.499573][    C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  165.503524][    C3] Buffer I/O error on dev loop7, logical block 0, async page read
[  165.507174][ T8988] Dev loop7: unable to read RDB block 0
[  165.509914][ T8988]  loop7: unable to read partition table
[  165.512408][ T8988] loop7: partition table beyond EOD, truncated
[  165.518482][ T8988] loop_reread_partitions: partition scan of loop7 () failed (rc=-5)
[  165.575686][ T8999] netlink: 8 bytes leftover after parsing attributes in process `syz.0.724'.
[  165.579550][ T8999] netlink: 8 bytes leftover after parsing attributes in process `syz.0.724'.
[  165.624052][ T9002] netlink: 4 bytes leftover after parsing attributes in process `syz.3.726'.
[  165.726763][ T9004] xt_CT: You must specify a L4 protocol and not use inversions on it
[  165.927026][ T5999] usb usb38-port1: unable to enumerate USB device
[  166.080081][ T9028] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  167.050982][ T9045] xt_CT: You must specify a L4 protocol and not use inversions on it
[  167.089062][ T9040] netfs: Couldn't get user pages (rc=-14)
[  167.282324][ T9060] 9pnet_virtio: no channels available for device syz
[  168.759733][ T9095] bridge0: port 2(bridge_slave_1) entered disabled state
[  168.762248][ T9095] bridge0: port 1(bridge_slave_0) entered disabled state
[  168.869262][ T9095] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  168.879590][ T9095] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  168.975095][ T9095] mac80211_hwsim hwsim2 wlan0: left promiscuous mode
[  168.979632][ T9095] bridge1: left promiscuous mode
[  168.989655][ T9095] bridge2: left promiscuous mode
[  169.101677][   T46] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  169.104778][   T46] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  169.110111][   T46] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  169.112983][   T46] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  169.292271][ T9108] netlink: 'syz.2.757': attribute type 1 has an invalid length.
[  169.328221][ T9108] 8021q: adding VLAN 0 to HW filter on device bond6
[  169.555471][ T6002] lo speed is unknown, defaulting to 1000
[  169.557598][ T9116] netlink: 'syz.3.759': attribute type 4 has an invalid length.
[  169.557930][ T6002] syz2: Port: 1 Link DOWN
[  169.573654][   T53] lo speed is unknown, defaulting to 1000
[  169.575918][   T53] syz2: Port: 1 Link ACTIVE
[  169.747939][ T9129] kernel read not supported for file /eth0 (pid: 9129 comm: syz.2.765)
[  169.751481][   T40] audit: type=1800 audit(1761804770.770:114): pid=9129 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.765" name="eth0" dev="mqueue" ino=13082 res=0 errno=0
[  169.814510][ T9133] __nla_validate_parse: 2 callbacks suppressed
[  169.814522][ T9133] netlink: 4 bytes leftover after parsing attributes in process `syz.1.767'.
[  171.023781][   T40] audit: type=1326 audit(1761804772.040:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9160 comm="syz.2.777" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf709d579 code=0x0
[  171.503109][ T9175] netlink: 8 bytes leftover after parsing attributes in process `syz.0.781'.
[  171.507759][ T9175] netlink: 8 bytes leftover after parsing attributes in process `syz.0.781'.
[  172.060635][ T9189] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  172.655521][ T9194] FAULT_INJECTION: forcing a failure.
[  172.655521][ T9194] name failslab, interval 1, probability 0, space 0, times 0
[  172.661179][ T9194] CPU: 0 UID: 0 PID: 9194 Comm: syz.1.787 Not tainted syzkaller #0 PREEMPT(full) 
[  172.661203][ T9194] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  172.661214][ T9194] Call Trace:
[  172.661220][ T9194]  <TASK>
[  172.661227][ T9194]  dump_stack_lvl+0x16c/0x1f0
[  172.661251][ T9194]  should_fail_ex+0x512/0x640
[  172.661277][ T9194]  ? __kmalloc_noprof+0xca/0x880
[  172.661307][ T9194]  should_failslab+0xc2/0x120
[  172.661348][ T9194]  __kmalloc_noprof+0xdd/0x880
[  172.661373][ T9194]  ? trace_kmalloc+0x2b/0xd0
[  172.661393][ T9194]  ? __kvmalloc_node_noprof+0x3c0/0x9c0
[  172.661413][ T9194]  ? nla_strdup+0xc6/0x150
[  172.661441][ T9194]  ? nla_strdup+0xc6/0x150
[  172.661456][ T9194]  nla_strdup+0xc6/0x150
[  172.661474][ T9194]  nf_tables_newset+0x253a/0x4320
[  172.661514][ T9194]  ? __pfx_nf_tables_newset+0x10/0x10
[  172.661549][ T9194]  ? __nla_validate_parse+0x600/0x2880
[  172.661589][ T9194]  ? __nla_parse+0x40/0x60
[  172.661614][ T9194]  nfnetlink_rcv_batch+0x190d/0x2350
[  172.661654][ T9194]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[  172.661682][ T9194]  ? kasan_save_stack+0x33/0x60
[  172.661701][ T9194]  ? kasan_save_track+0x14/0x30
[  172.661719][ T9194]  ? __kasan_slab_alloc+0x89/0x90
[  172.661740][ T9194]  ? kmem_cache_alloc_node_noprof+0x28a/0x770
[  172.661757][ T9194]  ? kmalloc_reserve+0x18b/0x2c0
[  172.661818][ T9194]  ? __nla_parse+0x40/0x60
[  172.661838][ T9194]  nfnetlink_rcv+0x3c1/0x430
[  172.661864][ T9194]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  172.661889][ T9194]  netlink_unicast+0x5aa/0x870
[  172.661908][ T9194]  ? __pfx_netlink_unicast+0x10/0x10
[  172.661936][ T9194]  netlink_sendmsg+0x8c8/0xdd0
[  172.661956][ T9194]  ? __pfx_netlink_sendmsg+0x10/0x10
[  172.661975][ T9194]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  172.662002][ T9194]  ____sys_sendmsg+0xa98/0xc70
[  172.662025][ T9194]  ? __pfx_____sys_sendmsg+0x10/0x10
[  172.662042][ T9194]  ? get_compat_msghdr+0x11a/0x170
[  172.662075][ T9194]  ___sys_sendmsg+0x134/0x1d0
[  172.662090][ T9194]  ? __pfx____sys_sendmsg+0x10/0x10
[  172.662117][ T9194]  ? find_held_lock+0x2b/0x80
[  172.662147][ T9194]  __sys_sendmsg+0x16d/0x220
[  172.662161][ T9194]  ? __pfx___sys_sendmsg+0x10/0x10
[  172.662184][ T9194]  ? rcu_is_watching+0x12/0xc0
[  172.662203][ T9194]  __do_fast_syscall_32+0x7c/0x300
[  172.662224][ T9194]  do_fast_syscall_32+0x32/0x80
[  172.662244][ T9194]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  172.662263][ T9194] RIP: 0023:0xf7f46579
[  172.662275][ T9194] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  172.662289][ T9194] RSP: 002b:00000000f543655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  172.662305][ T9194] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[  172.662315][ T9194] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  172.662324][ T9194] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  172.662333][ T9194] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  172.662342][ T9194] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  172.662363][ T9194]  </TASK>
[  173.051401][ T9214] program syz.1.792 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  173.124549][ T9221] netlink: 212408 bytes leftover after parsing attributes in process `syz.3.795'.
[  173.132981][ T9221] overlayfs: upper fs does not support tmpfile.
[  173.144337][ T9224] FAULT_INJECTION: forcing a failure.
[  173.144337][ T9224] name failslab, interval 1, probability 0, space 0, times 0
[  173.148994][ T9224] CPU: 0 UID: 0 PID: 9224 Comm: syz.2.796 Not tainted syzkaller #0 PREEMPT(full) 
[  173.149011][ T9224] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  173.149017][ T9224] Call Trace:
[  173.149021][ T9224]  <TASK>
[  173.149025][ T9224]  dump_stack_lvl+0x16c/0x1f0
[  173.149040][ T9224]  should_fail_ex+0x512/0x640
[  173.149057][ T9224]  ? fs_reclaim_acquire+0xae/0x150
[  173.149074][ T9224]  should_failslab+0xc2/0x120
[  173.149089][ T9224]  __kmalloc_noprof+0xdd/0x880
[  173.149107][ T9224]  ? tomoyo_encode2+0x100/0x3e0
[  173.149122][ T9224]  ? tomoyo_encode2+0x100/0x3e0
[  173.149134][ T9224]  tomoyo_encode2+0x100/0x3e0
[  173.149155][ T9224]  tomoyo_encode+0x29/0x50
[  173.149167][ T9224]  tomoyo_realpath_from_path+0x18f/0x6e0
[  173.149184][ T9224]  tomoyo_path_number_perm+0x245/0x580
[  173.149201][ T9224]  ? tomoyo_path_number_perm+0x237/0x580
[  173.149220][ T9224]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  173.149253][ T9224]  ? find_held_lock+0x2b/0x80
[  173.149283][ T9224]  ? hook_file_ioctl_common+0x145/0x410
[  173.149299][ T9224]  ? __fget_files+0x20e/0x3c0
[  173.149313][ T9224]  security_file_ioctl_compat+0x9b/0x240
[  173.149326][ T9224]  __ia32_compat_sys_ioctl+0xc3/0x370
[  173.149345][ T9224]  __do_fast_syscall_32+0x7c/0x300
[  173.149360][ T9224]  do_fast_syscall_32+0x32/0x80
[  173.149373][ T9224]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  173.149388][ T9224] RIP: 0023:0xf709d579
[  173.149396][ T9224] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  173.149407][ T9224] RSP: 002b:00000000f548d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  173.149417][ T9224] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0405668
[  173.149424][ T9224] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[  173.149430][ T9224] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  173.149436][ T9224] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  173.149442][ T9224] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  173.149456][ T9224]  </TASK>
[  173.149466][ T9224] ERROR: Out of memory at tomoyo_realpath_from_path.
[  173.274337][ T9233] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(9)
[  173.276614][ T9233] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  173.279658][ T9233] vhci_hcd vhci_hcd.0: Device attached
[  173.496490][ T6018] ==================================================================
[  173.496499][ T6018] BUG: KASAN: vmalloc-out-of-bounds in sys_imageblit+0x1a6f/0x1e60
[  173.496518][ T6018] Write of size 8 at addr ffffc90004cb1060 by task kworker/1:4/6018
[  173.496527][ T6018] 
[  173.496532][ T6018] CPU: 1 UID: 0 PID: 6018 Comm: kworker/1:4 Not tainted syzkaller #0 PREEMPT(full) 
[  173.496546][ T6018] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  173.496553][ T6018] Workqueue: events_power_efficient fb_flashcursor
[  173.496569][ T6018] Call Trace:
[  173.496573][ T6018]  <TASK>
[  173.496577][ T6018]  dump_stack_lvl+0x116/0x1f0
[  173.496591][ T6018]  print_report+0xcd/0x630
[  173.496609][ T6018]  ? __virt_addr_valid+0x81/0x610
[  173.496630][ T6018]  ? sys_imageblit+0x1a6f/0x1e60
[  173.496648][ T6018]  kasan_report+0xe0/0x110
[  173.496667][ T6018]  ? sys_imageblit+0x1a6f/0x1e60
[  173.496685][ T6018]  sys_imageblit+0x1a6f/0x1e60
[  173.496708][ T6018]  ? __pfx_sys_imageblit+0x10/0x10
[  173.496733][ T6018]  ? trace_kmalloc+0x2b/0xd0
[  173.496752][ T6018]  ? __kmalloc_noprof+0x34f/0x880
[  173.496778][ T6018]  ? kfree+0x252/0x6d0
[  173.496792][ T6018]  drm_fbdev_shmem_defio_imageblit+0x20/0x130
[  173.496808][ T6018]  soft_cursor+0x524/0xa10
[  173.496827][ T6018]  bit_cursor+0xe8c/0x17e0
[  173.496846][ T6018]  ? __pfx_bit_cursor+0x10/0x10
[  173.496865][ T6018]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  173.496885][ T6018]  ? get_color+0x1da/0x450
[  173.496899][ T6018]  ? __pfx_bit_cursor+0x10/0x10
[  173.496915][ T6018]  fb_flashcursor+0x310/0x400
[  173.496931][ T6018]  process_one_work+0x9cf/0x1b70
[  173.496951][ T6018]  ? __pfx_process_one_work+0x10/0x10
[  173.496970][ T6018]  ? assign_work+0x1a0/0x250
[  173.496987][ T6018]  worker_thread+0x6c8/0xf10
[  173.497006][ T6018]  ? __kthread_parkme+0x19e/0x250
[  173.497019][ T6018]  ? __pfx_worker_thread+0x10/0x10
[  173.497036][ T6018]  kthread+0x3c5/0x780
[  173.497052][ T6018]  ? __pfx_kthread+0x10/0x10
[  173.497067][ T6018]  ? rcu_is_watching+0x12/0xc0
[  173.497080][ T6018]  ? __pfx_kthread+0x10/0x10
[  173.497096][ T6018]  ret_from_fork+0x675/0x7d0
[  173.497112][ T6018]  ? __pfx_kthread+0x10/0x10
[  173.497127][ T6018]  ret_from_fork_asm+0x1a/0x30
[  173.497149][ T6018]  </TASK>
[  173.497153][ T6018] 
[  173.497156][ T6018] The buggy address belongs to a vmalloc virtual mapping
[  173.497165][ T6018] Memory state around the buggy address:
[  173.497170][ T6018]  ffffc90004cb0f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  173.497178][ T6018]  ffffc90004cb0f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  173.497186][ T6018] >ffffc90004cb1000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  173.497191][ T6018]                                                        ^
[  173.497197][ T6018]  ffffc90004cb1080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  173.497205][ T6018]  ffffc90004cb1100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  173.497211][ T6018] ==================================================================
[  173.497217][ T6018] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  173.497223][ T6018] CPU: 1 UID: 0 PID: 6018 Comm: kworker/1:4 Not tainted syzkaller #0 PREEMPT(full) 
[  173.497235][ T6018] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  173.497243][ T6018] Workqueue: events_power_efficient fb_flashcursor
[  173.497258][ T6018] Call Trace:
[  173.497261][ T6018]  <TASK>
[  173.497265][ T6018]  dump_stack_lvl+0x3d/0x1f0
[  173.497277][ T6018]  vpanic+0x640/0x6f0
[  173.497293][ T6018]  panic+0xca/0xd0
[  173.497308][ T6018]  ? __pfx_panic+0x10/0x10
[  173.497325][ T6018]  ? check_panic_on_warn+0x1f/0xb0
[  173.497342][ T6018]  check_panic_on_warn+0xab/0xb0
[  173.497358][ T6018]  end_report+0x107/0x170
[  173.497372][ T6018]  kasan_report+0xee/0x110
[  173.497392][ T6018]  ? sys_imageblit+0x1a6f/0x1e60
[  173.497406][ T6018]  sys_imageblit+0x1a6f/0x1e60
[  173.497420][ T6018]  ? __pfx_sys_imageblit+0x10/0x10
[  173.497436][ T6018]  ? trace_kmalloc+0x2b/0xd0
[  173.497449][ T6018]  ? __kmalloc_noprof+0x34f/0x880
[  173.497466][ T6018]  ? kfree+0x252/0x6d0
[  173.497475][ T6018]  drm_fbdev_shmem_defio_imageblit+0x20/0x130
[  173.497487][ T6018]  soft_cursor+0x524/0xa10
[  173.497507][ T6018]  bit_cursor+0xe8c/0x17e0
[  173.497525][ T6018]  ? __pfx_bit_cursor+0x10/0x10
[  173.497543][ T6018]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  173.497562][ T6018]  ? get_color+0x1da/0x450
[  173.497576][ T6018]  ? __pfx_bit_cursor+0x10/0x10
[  173.497593][ T6018]  fb_flashcursor+0x310/0x400
[  173.497633][ T6018]  process_one_work+0x9cf/0x1b70
[  173.497653][ T6018]  ? __pfx_process_one_work+0x10/0x10
[  173.497673][ T6018]  ? assign_work+0x1a0/0x250
[  173.497689][ T6018]  worker_thread+0x6c8/0xf10
[  173.497708][ T6018]  ? __kthread_parkme+0x19e/0x250
[  173.497721][ T6018]  ? __pfx_worker_thread+0x10/0x10
[  173.497738][ T6018]  kthread+0x3c5/0x780
[  173.497754][ T6018]  ? __pfx_kthread+0x10/0x10
[  173.497770][ T6018]  ? rcu_is_watching+0x12/0xc0
[  173.497781][ T6018]  ? __pfx_kthread+0x10/0x10
[  173.497797][ T6018]  ret_from_fork+0x675/0x7d0
[  173.497813][ T6018]  ? __pfx_kthread+0x10/0x10
[  173.497829][ T6018]  ret_from_fork_asm+0x1a/0x30
[  173.497847][ T6018]  </TASK>
[  173.498579][ T6018] Kernel Offset: disabled

VM DIAGNOSIS:
06:12:54  Registers:
info registers vcpu 0

CPU#0
RAX=0000000080010002 RBX=0000000000000000 RCX=ffffffff81613573 RDX=ffff8880762b4900
RSI=ffffffff816135bb RDI=ffffffff93a61fe0 RBP=ffff88802b220000 RSP=ffffc90000007fd0
R8 =0000000000000001 R9 =fffffbfff274c3fc R10=ffffffff93a61fe7 R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff816135bc RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097810000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000005774f4c0 CR3=0000000024a77000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000003000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff85267010 RDI=ffffffff9adc2da0 RBP=ffffffff9adc2d60 RSP=ffffc9000459f2f8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3030303963666657
R12=0000000000000000 R13=0000000000000020 R14=fffffbfff35b8606 R15=dffffc0000000000
RIP=ffffffff85267037 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097910000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c576235 CR3=00000000683ba000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000080010101 RBX=0000000000000000 RCX=ffffffff81613573 RDX=ffff8880283b4900
RSI=ffffffff816135bb RDI=ffffffff93a61fe0 RBP=ffff88802b420000 RSP=ffffc90000538418
R8 =0000000000000001 R9 =fffffbfff274c3fc R10=ffffffff93a61fe7 R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff816135bc RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f7b925c2300 ffffffff 00c00000
GS =0000 ffff888097a10000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f203fc44 CR3=000000004ba83000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3038ffffffff8b59 3de4ffffffff8b59 3cc7ffffffff8b59 3277ffffffff8b59
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 8d8bffffffff8b5a 8599ffffffff8b59 3804ffffffff8b59 3cf8ffffffff8b59
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 943fffffffff8b5a 8e53ffffffff8b5a 8e09ffffffff8b5a 889effffffff8b5a
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 d109ffffffff8456 d67bffffffff8456 d27dffffffff8456 d521ffffffff8457
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a2effffffff8458 476effffffff8458 49f9ffffffff8458 45f8ffffffff8458
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 40e8ffffffff8b5a 9c8effffffff8b5a 7e6bffffffff8b59 9ecfffffffff8b59
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 94f6ffffffff8b59 938affffffff8b59 971affffffff8b59 912dffffffff8b59
ZMM24=223fbdd3223fbdd3 223fbdd3223fbdd3 223fbdd3223fbdd3 223fbdd3223fbdd3 223fbdd3223fbdd3 223fbdd3223fbdd3 223fbdd3223fbdd3 223fbdd3223fbdd3
ZMM25=8406b6468406b646 8406b6468406b646 8406b6468406b646 8406b6468406b646 8406b6468406b646 8406b6468406b646 8406b6468406b646 8406b6468406b646
ZMM26=6a83bbfd6a83bbfd 6a83bbfd6a83bbfd 6a83bbfd6a83bbfd 6a83bbfd6a83bbfd 6a83bbfd6a83bbfd 6a83bbfd6a83bbfd 6a83bbfd6a83bbfd 6a83bbfd6a83bbfd
ZMM27=8e600c1c8e600c1c 8e600c1c8e600c1c 8e600c1c8e600c1c 8e600c1c8e600c1c 8e600c1c8e600c1c 8e600c1c8e600c1c 8e600c1c8e600c1c 8e600c1c8e600c1c
ZMM28=00000200000001ff 000001fe000001fd 000001fc000001fb 000001fa000001f9 000001f8000001f7 000001f6000001f5 000001f4000001f3 000001f2000001f1
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=cc120000cc120000 cc120000cc120000 cc120000cc120000 cc120000cc120000 cc120000cc120000 cc120000cc120000 cc120000cc120000 cc120000cc120000
info registers vcpu 3

CPU#3
RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff81613573 RDX=ffff88806c318000
RSI=ffffffff816135bb RDI=ffffffff93a61fe0 RBP=ffff88802b520000 RSP=ffffc900005e8fd0
R8 =0000000000000001 R9 =fffffbfff274c3fc R10=ffffffff93a61fe7 R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff816135bc RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097b10000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002fb10ff8 CR3=000000004d50b000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000