last executing test programs:

3m42.617071872s ago: executing program 1 (id=6127):
unshare(0x62040200)
socket$inet6_sctp(0xa, 0x1, 0x84)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r0 = syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8b}, 0x0)
mmap(&(0x7f00003b5000/0x3000)=nil, 0x3000, 0xb635773f07ebbeea, 0x8031, 0xffffffffffffffff, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet(0xa, 0x801, 0x84)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000180)=ANY=[@ANYRES16=r0], 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={0xffffffffffffffff, 0x0, 0x8, 0xfffffffffffffdac, &(0x7f00000006c0)='\x00\x00\x00\x00\r\x00\x00\x00', &(0x7f0000000700)=""/8, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x421}, 0x4c)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040ed5000410"], 0x11)
socket$inet6(0xa, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
socket$igmp6(0xa, 0x3, 0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x40c}, 0x0)
syz_usb_connect(0x0, 0x5f, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
syz_open_dev$sndmidi(0x0, 0x80000001, 0x439143)
r3 = dup(0xffffffffffffffff)
ioctl$DRM_IOCTL_GET_MAP(r3, 0xc0286404, &(0x7f0000000140)={&(0x7f0000329000/0x4000)=nil})
ioctl$VIDIOC_S_INPUT(0xffffffffffffffff, 0xc0045627, &(0x7f0000000000)=0x3)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r4, 0x6, 0x13, 0x0, 0x0)

3m41.99331846s ago: executing program 1 (id=6134):
r0 = syz_usb_connect(0x5, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="120100000cb768405e0483020b9901e4020109021b000100000000090400fb015c291d00090509"], 0x0)
syz_open_dev$sndpcmp(&(0x7f0000000000), 0x3, 0x181a00)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, 0x0, 0x0, 0x0, 0x0)
syz_usb_disconnect(r0)
r1 = fsopen(&(0x7f0000000280)='ocfs2_dlmfs\x00', 0x1)
close_range(r1, 0xffffffffffffffff, 0x0)

3m40.282121493s ago: executing program 1 (id=6148):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$nmem0(0xffffff9c, &(0x7f0000000040), 0x4280, 0x0)
setsockopt$inet6_tcp_TLS_RX(r2, 0x6, 0x2, &(0x7f0000000080)=@gcm_256={{0x304}, "a0f650fd28efdfab", "3aa1d37ee833594737e7ab28d61827a955b7805bc1b376a1c3e083b0eed43991", "dbe61109", "bc9d4678701f4b53"}, 0x38)
r3 = gettid()
timer_create(0x0, &(0x7f00000003c0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000000380))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_PRE_FAULT_MEMORY(r4, 0xc040aed5, &(0x7f0000000000)={0x2000, 0x19c000})

3m40.19077262s ago: executing program 1 (id=6149):
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0x2}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x3)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
io_uring_register$IORING_REGISTER_SYNC_CANCEL(0xffffffffffffffff, 0x18, 0x0, 0x1)
ioctl$KVM_REINJECT_CONTROL(0xffffffffffffffff, 0xae71, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
r4 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r4, 0xc0045005, &(0x7f0000000000)=0x1000)
ppoll(&(0x7f0000000040)=[{r4, 0x9620}], 0x1, 0x0, 0x0, 0x0)
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
r5 = syz_io_uring_setup(0x275c, &(0x7f0000001280)={0x0, 0xae67, 0x8, 0xffffffff, 0xc0001c8}, &(0x7f0000001300), &(0x7f0000001180))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0xf4, 0x0)
sendmsg$kcm(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="2e00000010008188040f80ec59acbc0413a1f848100000005e0c00f0ffffff180e000a001400000002801687121f", 0x2e}], 0x1}, 0x0)

3m39.238158795s ago: executing program 1 (id=6153):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f0000"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
socket$nl_netfilter(0x10, 0x3, 0xc)
fsopen(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x2, &(0x7f0000000100)=[{0x81, 0x6, 0x1, 0xe7}, {0x2, 0xcc, 0x5, 0xd}]})
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000380), r2)
sendmsg$L2TP_CMD_SESSION_DELETE(0xffffffffffffffff, 0x0, 0x20000041)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r3, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10)
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x8)
listen(r4, 0x80000001)
syz_genetlink_get_family_id$tipc(0x0, r4)
writev(r3, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1)

3m38.330704768s ago: executing program 1 (id=6157):
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0) (async, rerun: 64)
sendmsg$inet6(0xffffffffffffffff, 0x0, 0x4048043) (rerun: 64)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x40000002) (async)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r1}}) (async)
getsockopt$SO_J1939_SEND_PRIO(r1, 0x6b, 0x3, &(0x7f00000000c0), &(0x7f0000000180)=0x4) (async)
write$rfkill(r0, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x41}, 0x8)

3m23.070511368s ago: executing program 32 (id=6157):
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0) (async, rerun: 64)
sendmsg$inet6(0xffffffffffffffff, 0x0, 0x4048043) (rerun: 64)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x40000002) (async)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r1}}) (async)
getsockopt$SO_J1939_SEND_PRIO(r1, 0x6b, 0x3, &(0x7f00000000c0), &(0x7f0000000180)=0x4) (async)
write$rfkill(r0, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x41}, 0x8)

5.440263781s ago: executing program 3 (id=7426):
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
shutdown(r2, 0x2000000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x2, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
inotify_init()
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000100), 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000002080)={0x2020}, 0x2020)
sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x402423}, 0xc, &(0x7f0000000480)={&(0x7f00000005c0)={0x1c, 0x0, 0x2, 0x801, 0x0, 0x0, {0x0, 0x0, 0x9}, [@CTA_EXPECT_FLAGS={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20008000}, 0x40084)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r4 = syz_open_dev$swradio(0x0, 0x0, 0x2)
ioctl$VIDIOC_UNSUBSCRIBE_EVENT(r4, 0x4020565b, &(0x7f00000003c0)={0x4, 0x0, 0x2})
ioctl$USBDEVFS_CLAIM_PORT(0xffffffffffffffff, 0x80045518, &(0x7f0000000340)=0x8001)
socket$nl_route(0x10, 0x3, 0x0)
r5 = openat$sr(0xffffff9c, 0x0, 0x40, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000ec0)={0x1, 0xe, &(0x7f00000007c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x4}, [@map_fd={0x18, 0x7}, @call={0x85, 0x0, 0x0, 0x80}, @generic={0x9, 0x7, 0x1, 0x2, 0x1c0000}, @map_idx={0x18, 0xa, 0x5, 0x0, 0x2}, @tail_call]}, &(0x7f0000000900)='GPL\x00', 0x0, 0x1000, &(0x7f0000001600)=""/4096, 0x41100, 0x34, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000940)={0x2, 0x9, 0x1a1e, 0x5}, 0x10, 0x0, 0xffffffffffffffff, 0x6, &(0x7f0000000e00)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r5, 0xffffffffffffffff], &(0x7f0000000e40)=[{0x1, 0x5, 0x6, 0xb}, {0x5, 0x2, 0x6, 0xe}, {0x1, 0x2, 0x2, 0x8}, {0x5, 0x3, 0x8, 0x5}, {0x3, 0x3, 0x4, 0x8}, {0x0, 0x2, 0x1, 0x4}], 0x10, 0x9}, 0x94)
syz_emit_vhci(0x0, 0x7)
r6 = socket$key(0xf, 0x3, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x6, 0x6, 0x3d6d}, 0x50)
sendmsg$key(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="0218000014000000000000000000000005000500000000000a00000000000000fe8000000000000000000000000000bb000000000000000005000600002000000a00000000000000000000000000000000000000000000000700000000000000080012"], 0xa0}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x12, 0x7, 0x8, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x50)

4.570415373s ago: executing program 3 (id=7429):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x0, 0xa}}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x3}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$evdev(0x0, 0x0, 0x200100)
ioctl$EVIOCGREP(r2, 0x80084522, 0x0)
lsm_set_self_attr(0x68, 0x0, 0x20, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/wakeup_count', 0x101a02, 0x0)
sendfile(r5, r5, 0x0, 0x101)
mkdir(&(0x7f0000000300)='./bus\x00', 0x40)
mount$9p_virtio(0x0, 0x0, &(0x7f00000003c0), 0x814004, 0x0)
setxattr$system_posix_acl(&(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='system.posix_acl_access\x00', &(0x7f0000000680)={{}, {}, [], {}, [], {0x10, 0x1}}, 0x24, 0x3)
setxattr$system_posix_acl(0x0, &(0x7f0000000080)='system.posix_acl_access\x00', 0x0, 0x0, 0x3)
r6 = memfd_create(&(0x7f0000000300)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xae\xd1md\xc8\x85\x00\x00\xfb\xff\x00\x18\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;2\xb5\xe1jS\xeb\xbf%||\xa0\x8e\x01\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x4)
execveat(r6, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
symlink(&(0x7f00000049c0)='.\x00', 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r7 = accept4$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000080)=0x14, 0x80000)
sendto$packet(r7, &(0x7f0000000100)="9585c372a4929bcbdb95902c95149c6d08085265f58ed5d0eb1fab8780f9e57182a308dadeb70a43b13a20eb15ec665239dc2f06f868a3811af78fd9566e58ba2288d37acc136ea9aaee0cd9ff75d85cfdba4004a92ab5d863e28754bce8734a090a883d03a2a6eac256e7720892849b073c595ec5d963703d65a6351bfd9b48f4c9245cfc13be2ed09981aa8142c1f084b134425cc8e8fabc1f87ce242a0f22eef5db7fd7f46462ce5cdf26ed497ba168382ee15e323e70bf4c2109f8142e587547331d44378f4b8594cf755dcbe4fdd4324f194790fd984761", 0xda, 0x40, &(0x7f0000000200)={0x11, 0x6, 0x0, 0x1, 0x3, 0x6, @random="93c8e6cd51ab"}, 0x14)
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}})

4.36870665s ago: executing program 0 (id=7434):
r0 = socket$nl_crypto(0x10, 0x3, 0x15)
accept4(r0, &(0x7f0000000100)=@ieee802154={0x24, @long}, &(0x7f0000000180)=0x80, 0x800)
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080))
r1 = getpid()
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg(r3, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
syz_open_dev$dri(0x0, 0xd21, 0x4000)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_open_dev$usbmon(0x0, 0x0, 0x0)
syz_open_dev$vbi(0x0, 0x0, 0x2)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
gettid()
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4000)
recvmmsg(r4, &(0x7f0000002c00)=[{{0x0, 0x0, 0x0}, 0x200001}, {{0x0, 0x0, 0x0}, 0x200}, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300}, 0x401}, {{0x0, 0x0, 0x0}, 0x101}, {{0x0, 0x0, 0x0}, 0x40}, {{0x0, 0x0, 0x0}, 0x409}, {{0x0, 0x0, 0x0}, 0x8}], 0x7, 0x0, 0x0)
r5 = openat$sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
sendfile(r5, 0xffffffffffffffff, &(0x7f0000002080)=0x64, 0x21c)
syz_pidfd_open(r1, 0x0)
syz_open_dev$swradio(&(0x7f0000000100), 0x0, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)

3.555665913s ago: executing program 3 (id=7439):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x0, 0xa}}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x3}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$evdev(0x0, 0x0, 0x200100)
ioctl$EVIOCGREP(r2, 0x80084522, 0x0)
lsm_set_self_attr(0x68, 0x0, 0x20, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/wakeup_count', 0x101a02, 0x0)
sendfile(r5, r5, 0x0, 0x101)
mkdir(&(0x7f0000000300)='./bus\x00', 0x40)
mount$9p_virtio(0x0, 0x0, &(0x7f00000003c0), 0x814004, 0x0)
setxattr$system_posix_acl(0x0, &(0x7f0000000080)='system.posix_acl_access\x00', 0x0, 0x0, 0x3)
memfd_create(&(0x7f0000000300)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xae\xd1md\xc8\x85\x00\x00\xfb\xff\x00\x18\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;2\xb5\xe1jS\xeb\xbf%||\xa0\x8e\x01\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x4)
symlink(&(0x7f00000049c0)='.\x00', 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
accept4$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000080)=0x14, 0x80000)
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}})

3.4590239s ago: executing program 0 (id=7440):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="180000000000000000"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sched_process_wait\x00', r0}, 0x10)
r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8)
setns(r2, 0x38000000)

3.458804111s ago: executing program 0 (id=7441):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000003c0)={0x20, 0x0, &(0x7f00000004c0)=[@request_death, @clear_death], 0x0, 0x0, 0x0})

3.458427543s ago: executing program 3 (id=7442):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x200, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r4)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0xfffffffc}, 0x10}, 0x94)
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
write$UHID_CREATE2(r6, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x70f9a000)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000480)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305-sse2\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, &(0x7f0000000000)="8a", 0x440)
r8 = accept4(r7, 0x0, 0x0, 0x0)
r9 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r9, &(0x7f0000000540)={0x26, 'skcipher\x00', 0x0, 0x0, 'pcbc(blowfish-generic)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r9, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5", 0x4)
r10 = accept4(r9, 0x0, 0x0, 0x800)
sendmmsg$alg(r10, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=[@op={0x10, 0x117, 0x3, 0x1}], 0x10}], 0x1, 0x40800)
recvmsg(r10, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/71, 0x47}], 0x1}, 0x0)
sendmmsg$alg(r8, &(0x7f0000004140)=[{0x0, 0x0, &(0x7f0000000600)=[{&(0x7f00000001c0)="14", 0x1}, {&(0x7f0000000280)="3b942cdf3dbb4d708446209c8a7a9893c711167b6aee1ac4a8cc59d92a394f460b20f21b9add9e84d2dba9e6df8034c449e64138a4aea2a8df6d35031bd3263f", 0x7fffefff}], 0x2}], 0x1, 0x0)
r11 = syz_open_dev$hidraw(&(0x7f0000000000), 0x0, 0x81)
ioctl$HIDIOCGFIELDINFO(r11, 0xc038480a, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})

3.408711864s ago: executing program 0 (id=7443):
r0 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f00000034c0)={0x2020}, 0x2020)

3.408253723s ago: executing program 0 (id=7444):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f0000"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x3, &(0x7f0000000540)=ANY=[@ANYRESDEC, @ANYBLOB, @ANYRES16, @ANYRESDEC, @ANYRESOCT], &(0x7f0000000280)='GPL\x00', 0xa, 0xb9, &(0x7f0000000140)=""/185, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
fsopen(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x0, 0x0})
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000380), r2)
sendmsg$L2TP_CMD_SESSION_DELETE(0xffffffffffffffff, 0x0, 0x20000041)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r3, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10)
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x8)
listen(r4, 0x80000001)
syz_genetlink_get_family_id$tipc(0x0, r4)
writev(r3, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1)

3.074410277s ago: executing program 2 (id=7445):
socket$igmp(0x2, 0x3, 0x2)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000180)=0x80000079b0, 0x4)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x311000, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100000b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, 0x0)
io_setup(0x8, &(0x7f0000000540))
syz_usbip_server_init(0x3)
pselect6(0x40, &(0x7f00000001c0)={0x2, 0x0, 0x20000000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x820}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0xfffffffffffffffb, 0x0, 0x0, 0x200000000008, 0x80000006}, 0x0, 0x0)

3.019298104s ago: executing program 3 (id=7446):
socket(0x2b, 0x80801, 0x1)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x800}, 0x40010)
prlimit64(0x0, 0xe, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000002140)=ANY=[])
socket$can_bcm(0x1d, 0x2, 0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket(0x10, 0x2, 0x0)
write(r0, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)
recvmmsg(r0, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400})
socket$nl_rdma(0x10, 0x3, 0x14)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000380)={0x50, 0xfffffffffffffffe, 0x0, {0x7, 0x27, 0x0, 0xa81001a, 0x66d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)={0x90, 0x0, 0x40000008, {0x3, 0x3, 0x100000003, 0x10, 0x2, 0x3881ffec, {0x5, 0xfffffffffffff738, 0x11, 0xfffffffffffffffe, 0x3, 0x2, 0x1000ffff, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x8, 0x8009}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0)
socket(0x2c, 0x4, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000003c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)

2.960298805s ago: executing program 3 (id=7447):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0)
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)}, 0x0)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
recvmmsg(r3, &(0x7f00000002c0), 0x220, 0x100, 0x0)
r4 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r5 = fcntl$dupfd(r4, 0x406, r4)
write$sndseq(r5, 0x0, 0x0)
ioctl$SG_GET_REQUEST_TABLE(r5, 0x2286, &(0x7f00000018c0))
syz_usb_connect$hid(0x2, 0x36, 0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0)
openat$sndtimer(0xffffffffffffff9c, &(0x7f00000001c0), 0x22000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))
prctl$PR_MCE_KILL(0x4e, 0x1, 0x4000)
prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0xa)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
r7 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000180)={'wlan0\x00', <r8=>0x0})
r9 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet_int(r9, 0x0, 0xf, &(0x7f0000d10ffc)=0xfffffffffffffff9, 0x4)
bind$inet6(r9, &(0x7f0000000040)={0xa, 0x4e23, 0xb430, @mcast2, 0x1}, 0x1c)
sendmsg$NL80211_CMD_NEW_STATION(r6, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000010c0)=ANY=[@ANYBLOB, @ANYBLOB="cf0300000000000000000000000002000000", @ANYRES32=r8, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x20000800}, 0x0)

2.469971312s ago: executing program 0 (id=7449):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0)
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)}, 0x0)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
recvmmsg(r3, &(0x7f00000002c0), 0x220, 0x100, 0x0)
r4 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r5 = fcntl$dupfd(r4, 0x406, r4)
write$sndseq(r5, 0x0, 0x0)
ioctl$SG_GET_REQUEST_TABLE(r5, 0x2286, &(0x7f00000018c0))
syz_usb_connect$hid(0x2, 0x36, 0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0)
openat$sndtimer(0xffffffffffffff9c, &(0x7f00000001c0), 0x22000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))
prctl$PR_MCE_KILL(0x4e, 0x1, 0x4000) (fail_nth: 1)
prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0xa)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
r7 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000180)={'wlan0\x00', <r8=>0x0})
r9 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet_int(r9, 0x0, 0xf, &(0x7f0000d10ffc)=0xfffffffffffffff9, 0x4)
bind$inet6(r9, &(0x7f0000000040)={0xa, 0x4e23, 0xb430, @mcast2, 0x1}, 0x1c)
sendmsg$NL80211_CMD_NEW_STATION(r6, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000010c0)=ANY=[@ANYBLOB, @ANYBLOB="cf0300000000000000000000000002000000", @ANYRES32=r8, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x20000800}, 0x0)

1.449936762s ago: executing program 4 (id=7451):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x0, 0xa}}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x3}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$evdev(0x0, 0x0, 0x200100)
ioctl$EVIOCGREP(r2, 0x80084522, 0x0)
lsm_set_self_attr(0x68, 0x0, 0x20, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/wakeup_count', 0x101a02, 0x0)
sendfile(r5, r5, 0x0, 0x101)
mkdir(&(0x7f0000000300)='./bus\x00', 0x40)
mount$9p_virtio(0x0, 0x0, &(0x7f00000003c0), 0x814004, 0x0)
setxattr$system_posix_acl(0x0, &(0x7f0000000080)='system.posix_acl_access\x00', 0x0, 0x0, 0x3)
memfd_create(&(0x7f0000000300)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xae\xd1md\xc8\x85\x00\x00\xfb\xff\x00\x18\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;2\xb5\xe1jS\xeb\xbf%||\xa0\x8e\x01\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x4)
symlink(&(0x7f00000049c0)='.\x00', 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
accept4$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000080)=0x14, 0x80000)
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}})

1.449624387s ago: executing program 4 (id=7452):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000003c0)={0x20, 0x0, &(0x7f00000004c0)=[@request_death, @clear_death], 0x0, 0x0, 0x0})

1.428125289s ago: executing program 4 (id=7453):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f00000000c0)=0x6, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000001500)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
r1 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000240)='/proc/asound/card0/oss_mixer\x00', 0x298f3cc22e12b39a, 0x0)
write$proc_mixer(r1, &(0x7f00000008c0)=ANY=[@ANYBLOB="53594e544820274d6173746572204361707475726520537769746368272030303030303030303030303030303030303030300a50484f4e4549ce0a4d4f4e49544f5220274361707475726520566f6c756d6527203030b03030303030303030303030"], 0x94)

1.423347918s ago: executing program 2 (id=7454):
r0 = socket(0x10, 0x803, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=@bridge_delneigh={0x1c, 0x1e, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, 0x0, 0x0, 0x2}}, 0x1c}}, 0x0)
sendto(r0, &(0x7f0000000740), 0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = socket$inet(0x2, 0x3, 0x4)
setsockopt$inet_opts(r4, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f00000000c0)='ip6_vti0\x00', 0x10)
connect$inet(r4, &(0x7f0000000080)={0x2, 0x4e20, @private=0xa010100}, 0x10)
r5 = syz_io_uring_setup(0x17b3, &(0x7f0000000500)={0x0, 0x18f9, 0x13290, 0x0, 0x1e1}, &(0x7f0000000300), &(0x7f0000000340))
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), 0x0, 0x0, 0xfffffffffffffffe)
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000100)=ANY=[], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r6}, 0x4)
io_uring_enter(r5, 0x1, 0x2, 0x1, 0x0, 0x0)
sendmmsg$inet(r4, &(0x7f0000000f40)=[{{&(0x7f0000000040)={0x2, 0x0, @broadcast}, 0x10, 0x0}}], 0x68000, 0xe000)
creat(&(0x7f00000001c0)='./file0\x00', 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x180884c, &(0x7f0000000100)=ANY=[])

1.380187356s ago: executing program 4 (id=7455):
socket(0x2b, 0x80801, 0x1)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x800}, 0x40010)
prlimit64(0x0, 0xe, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000002140)=ANY=[])
socket$can_bcm(0x1d, 0x2, 0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket(0x10, 0x2, 0x0)
write(r0, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)
recvmmsg(r0, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400})
socket$nl_rdma(0x10, 0x3, 0x14)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000380)={0x50, 0xfffffffffffffffe, 0x0, {0x7, 0x27, 0x0, 0xa81001a, 0x66d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)={0x90, 0x0, 0x40000008, {0x3, 0x3, 0x100000003, 0x10, 0x2, 0x3881ffec, {0x5, 0xfffffffffffff738, 0x11, 0xfffffffffffffffe, 0x3, 0x2, 0x1000ffff, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x8, 0x8009}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0)
socket(0x2c, 0x4, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000003c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)

1.282243574s ago: executing program 4 (id=7456):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f0000"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x3, &(0x7f0000000540)=ANY=[@ANYRESDEC, @ANYBLOB, @ANYRES16, @ANYRESDEC, @ANYRESOCT], &(0x7f0000000280)='GPL\x00', 0xa, 0xb9, &(0x7f0000000140)=""/185, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
fsopen(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000380), r2)
sendmsg$L2TP_CMD_SESSION_DELETE(0xffffffffffffffff, 0x0, 0x20000041)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r3, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10)
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x8)
listen(r4, 0x80000001)
syz_genetlink_get_family_id$tipc(0x0, r4)
writev(r3, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1)

1.276576264s ago: executing program 2 (id=7457):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f0000"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x3, &(0x7f0000000540)=ANY=[@ANYRESDEC, @ANYBLOB, @ANYRES16, @ANYRESDEC, @ANYRESOCT], &(0x7f0000000280)='GPL\x00', 0xa, 0xb9, &(0x7f0000000140)=""/185, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
fsopen(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x0, 0x0})
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000380), r2)
sendmsg$L2TP_CMD_SESSION_DELETE(0xffffffffffffffff, 0x0, 0x20000041)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r3, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10)
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x8)
listen(r4, 0x80000001)
syz_genetlink_get_family_id$tipc(0x0, r4)
writev(r3, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1)

408.395542ms ago: executing program 4 (id=7458):
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
shutdown(r2, 0x2000000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x2, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
inotify_init()
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000100), 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000002080)={0x2020}, 0x2020)
sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x402423}, 0xc, &(0x7f0000000480)={&(0x7f00000005c0)={0x1c, 0x0, 0x2, 0x801, 0x0, 0x0, {0x0, 0x0, 0x9}, [@CTA_EXPECT_FLAGS={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20008000}, 0x40084)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r4 = syz_open_dev$swradio(0x0, 0x0, 0x2)
ioctl$VIDIOC_UNSUBSCRIBE_EVENT(r4, 0x4020565b, &(0x7f00000003c0)={0x4, 0x0, 0x2})
ioctl$USBDEVFS_CLAIM_PORT(0xffffffffffffffff, 0x80045518, &(0x7f0000000340)=0x8001)
socket$nl_route(0x10, 0x3, 0x0)
r5 = openat$sr(0xffffff9c, 0x0, 0x40, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000ec0)={0x1, 0xe, &(0x7f00000007c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x4}, [@map_fd={0x18, 0x7}, @call={0x85, 0x0, 0x0, 0x80}, @generic={0x9, 0x7, 0x1, 0x2, 0x1c0000}, @map_idx={0x18, 0xa, 0x5, 0x0, 0x2}, @tail_call]}, &(0x7f0000000900)='GPL\x00', 0x0, 0x1000, &(0x7f0000001600)=""/4096, 0x41100, 0x34, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000940)={0x2, 0x9, 0x1a1e, 0x5}, 0x10, 0x0, 0xffffffffffffffff, 0x6, &(0x7f0000000e00)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r5, 0xffffffffffffffff], &(0x7f0000000e40)=[{0x1, 0x5, 0x6, 0xb}, {0x5, 0x2, 0x6, 0xe}, {0x1, 0x2, 0x2, 0x8}, {0x5, 0x3, 0x8, 0x5}, {0x3, 0x3, 0x4, 0x8}, {0x0, 0x2, 0x1, 0x4}], 0x10, 0x9}, 0x94)
syz_emit_vhci(0x0, 0x7)
r6 = socket$key(0xf, 0x3, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x6, 0x6, 0x3d6d}, 0x50)
sendmsg$key(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="0218000014000000000000000000000005000500000000000a00000000000000fe8000000000000000000000000000bb000000000000000005000600002000000a00000000000000000000000000000000000000000000000700000000000000080012"], 0xa0}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x12, 0x7, 0x8, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x50)

320.05729ms ago: executing program 2 (id=7459):
r0 = socket(0x10, 0x803, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b000000000000", 0x10, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = socket$inet(0x2, 0x3, 0x4)
setsockopt$inet_opts(r3, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f00000000c0)='ip6_vti0\x00', 0x10)
connect$inet(r3, &(0x7f0000000080)={0x2, 0x4e20, @private=0xa010100}, 0x10)
r4 = syz_io_uring_setup(0x17b3, &(0x7f0000000500)={0x0, 0x18f9, 0x13290, 0x0, 0x1e1}, 0x0, &(0x7f0000000340))
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480), 0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="020000000400000004000000080000001c000000d945ec7211aa1656a221b5c55b8e78ab400a354a09f2a2ea41aea83949c9238eed78bed8c08ea691e3d70b0f47be1a49949887f5bd7f856217ac6d59c04770a932c9bf1b6f24a73d9398c1984662f9c46486ca8d900eb62e", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bind$bt_l2cap(r5, &(0x7f0000000040)={0x1f, 0x3, @none, 0x0, 0x2}, 0xe)
io_uring_enter(r4, 0x1, 0x2, 0x1, 0x0, 0x0)
sendmmsg$inet(r3, &(0x7f0000000f40)=[{{&(0x7f0000000040)={0x2, 0x0, @broadcast}, 0x10, 0x0}}], 0x68000, 0xe000)
creat(&(0x7f00000001c0)='./file0\x00', 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x180884c, &(0x7f0000000100)=ANY=[])

386.758µs ago: executing program 2 (id=7460):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="180000000000000000"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sched_process_wait\x00', r0}, 0x10)
r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8)
setns(r2, 0x38000000)

0s ago: executing program 2 (id=7461):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x0, 0xa}}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x3}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$evdev(0x0, 0x0, 0x200100)
ioctl$EVIOCGREP(r2, 0x80084522, 0x0)
lsm_set_self_attr(0x68, 0x0, 0x20, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/wakeup_count', 0x101a02, 0x0)
sendfile(r5, r5, 0x0, 0x101)
mkdir(&(0x7f0000000300)='./bus\x00', 0x40)
mount$9p_virtio(0x0, 0x0, &(0x7f00000003c0), 0x814004, 0x0)
setxattr$system_posix_acl(0x0, &(0x7f0000000080)='system.posix_acl_access\x00', 0x0, 0x0, 0x3)
memfd_create(&(0x7f0000000300)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xae\xd1md\xc8\x85\x00\x00\xfb\xff\x00\x18\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;2\xb5\xe1jS\xeb\xbf%||\xa0\x8e\x01\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x4)
symlink(&(0x7f00000049c0)='.\x00', 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
accept4$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000080)=0x14, 0x80000)
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}})

kernel console output (not intermixed with test programs):

alid OSS volume 'PHONEIÎ'
[ 1114.627467][T13750] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1114.896835][T13761] binder: 13760:13761 ioctl c0306201 800003c0 returned -14
[ 1115.424072][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[ 1115.630704][T13769] binder: 13768:13769 ioctl c0306201 800003c0 returned -14
[ 1116.113474][T13776] trusted_key: encrypted_key: insufficient parameters specified
[ 1116.144335][T13779] input: syz0 as /devices/virtual/input/input42
[ 1116.217370][T13780] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(11)
[ 1116.219977][T13780] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1116.223833][T13780] vhci_hcd vhci_hcd.0: Device attached
[ 1116.691815][T13790] input: syz0 as /devices/virtual/input/input43
[ 1116.954864][T13791] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(11)
[ 1116.957441][T13791] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1117.209890][T13791] vhci_hcd vhci_hcd.0: Device attached
[ 1117.403581][T13781] vhci_hcd: connection reset by peer
[ 1117.433703][ T8320] vhci_hcd: stop threads
[ 1117.435559][ T8320] vhci_hcd: release socket
[ 1117.437916][ T8320] vhci_hcd: disconnect device
[ 1117.489986][T13797] vhci_hcd: connection closed
[ 1117.491033][ T8320] vhci_hcd: stop threads
[ 1117.496361][ T8320] vhci_hcd: release socket
[ 1117.498072][ T8320] vhci_hcd: disconnect device
[ 1117.502864][ T6057] vhci_hcd: vhci_device speed not set
[ 1117.871095][T13807] trusted_key: encrypted_key: insufficient parameters specified
[ 1118.035459][T13810] netlink: 48 bytes leftover after parsing attributes in process `syz.4.6894'.
[ 1118.533981][T13819] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1118.602935][T15590] usb 7-1: new high-speed USB device number 89 using dummy_hcd
[ 1118.778331][T15590] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 1118.783089][T15590] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1118.786815][T15590] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1118.791041][T15590] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[ 1118.799758][T15590] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 1118.804785][T15590] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 1118.808212][T15590] usb 7-1: Manufacturer: syz
[ 1118.811818][T15590] usb 7-1: config 0 descriptor??
[ 1118.988170][T13829] input: syz0 as /devices/virtual/input/input44
[ 1119.086200][T13837] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(12)
[ 1119.088913][T13837] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1119.092292][T13837] vhci_hcd vhci_hcd.0: Device attached
[ 1119.206155][T13838] ALSA: mixer_oss: invalid OSS volume 'PHONEIÎ'
[ 1119.208766][T13838] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1119.305318][T15590] appleir 0003:05AC:8243.0020: unknown main item tag 0x0
[ 1119.310324][T15590] appleir 0003:05AC:8243.0020: hiddev1,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.2-1/input0
[ 1119.352888][ T6057] usb 45-1: new high-speed USB device number 5 using vhci_hcd
[ 1119.879209][T13840] vhci_hcd: connection reset by peer
[ 1119.881560][ T8340] vhci_hcd: stop threads
[ 1119.883215][ T8340] vhci_hcd: release socket
[ 1119.885421][ T8340] vhci_hcd: disconnect device
[ 1120.222714][T13846] netlink: 'syz.0.6905': attribute type 10 has an invalid length.
[ 1121.169858][   T10] usb 7-1: USB disconnect, device number 89
[ 1121.582704][T13876] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1122.814880][T13909] trusted_key: encrypted_key: insufficient parameters specified
[ 1123.301882][T13919] vivid-007: =================  START STATUS  =================
[ 1123.305322][T13919] vivid-007: Enable Output Cropping: true
[ 1123.307757][T13919] vivid-007: Enable Output Composing: true
[ 1123.310220][T13919] vivid-007: Enable Output Scaler: true
[ 1123.312565][T13919] vivid-007: Tx RGB Quantization Range: Automatic
[ 1123.315480][T13919] vivid-007: Transmit Mode: HDMI
[ 1123.317649][T13919] vivid-007: Hotplug Present: 0x00000000
[ 1123.320170][T13919] vivid-007: RxSense Present: 0x00000000
[ 1123.322650][T13919] vivid-007: EDID Present: 0x00000000
[ 1123.324894][T13919] vivid-007: ==================  END STATUS  ==================
[ 1123.357806][T13923] FAULT_INJECTION: forcing a failure.
[ 1123.357806][T13923] name failslab, interval 1, probability 0, space 0, times 0
[ 1123.363074][T13923] CPU: 3 UID: 0 PID: 13923 Comm: syz.0.6927 Not tainted syzkaller #0 PREEMPT(full) 
[ 1123.363091][T13923] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1123.363098][T13923] Call Trace:
[ 1123.363102][T13923]  <TASK>
[ 1123.363106][T13923]  dump_stack_lvl+0x16c/0x1f0
[ 1123.363141][T13923]  should_fail_ex+0x512/0x640
[ 1123.363157][T13923]  should_failslab+0xc2/0x120
[ 1123.363172][T13923]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1123.363185][T13923]  ? rcu_is_watching+0x12/0xc0
[ 1123.363196][T13923]  ? getname_flags.part.0+0x4c/0x550
[ 1123.363213][T13923]  getname_flags.part.0+0x4c/0x550
[ 1123.363229][T13923]  getname_flags+0x93/0xf0
[ 1123.363240][T13923]  user_path_at+0x24/0x60
[ 1123.363251][T13923]  __ia32_compat_sys_truncate+0xf6/0x1e0
[ 1123.363265][T13923]  ? __pfx___ia32_compat_sys_truncate+0x10/0x10
[ 1123.363279][T13923]  ? rcu_is_watching+0x12/0xc0
[ 1123.363290][T13923]  __do_fast_syscall_32+0x7c/0x3a0
[ 1123.363305][T13923]  do_fast_syscall_32+0x32/0x80
[ 1123.363318][T13923]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1123.363332][T13923] RIP: 0023:0xf7f35579
[ 1123.363341][T13923] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1123.363352][T13923] RSP: 002b:00000000f545655c EFLAGS: 00000296 ORIG_RAX: 000000000000005c
[ 1123.363362][T13923] RAX: ffffffffffffffda RBX: 0000000080000040 RCX: 0000000001000101
[ 1123.363369][T13923] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1123.363375][T13923] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1123.363381][T13923] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1123.363387][T13923] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1123.363396][T13923]  </TASK>
[ 1123.435309][T13929] fuse: Bad value for 'fd'
[ 1123.451989][T13928] netlink: 'syz.4.6925': attribute type 10 has an invalid length.
[ 1124.443030][ T6057] vhci_hcd: vhci_device speed not set
[ 1124.569086][T13950] input: syz0 as /devices/virtual/input/input45
[ 1124.639366][T13951] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(11)
[ 1124.642194][T13951] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1124.645846][T13951] vhci_hcd vhci_hcd.0: Device attached
[ 1124.892821][T15590] usb 43-1: new high-speed USB device number 8 using vhci_hcd
[ 1125.502837][T13952] vhci_hcd: connection reset by peer
[ 1125.505790][ T8340] vhci_hcd: stop threads
[ 1125.507927][ T8340] vhci_hcd: release socket
[ 1125.510157][ T8340] vhci_hcd: disconnect device
[ 1125.919157][T13968] trusted_key: encrypted_key: insufficient parameters specified
[ 1126.477037][T13985] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1127.021105][T13995] ALSA: mixer_oss: invalid OSS volume 'PHONEIÎ'
[ 1127.135128][T14001] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1127.141501][T14001] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1127.350933][T14010] FAULT_INJECTION: forcing a failure.
[ 1127.350933][T14010] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1127.356950][T14010] CPU: 1 UID: 0 PID: 14010 Comm: syz.4.6952 Not tainted syzkaller #0 PREEMPT(full) 
[ 1127.356983][T14010] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1127.356995][T14010] Call Trace:
[ 1127.357001][T14010]  <TASK>
[ 1127.357008][T14010]  dump_stack_lvl+0x16c/0x1f0
[ 1127.357035][T14010]  should_fail_ex+0x512/0x640
[ 1127.357061][T14010]  _copy_to_user+0x32/0xd0
[ 1127.357086][T14010]  simple_read_from_buffer+0xcb/0x170
[ 1127.357105][T14010]  proc_fail_nth_read+0x197/0x240
[ 1127.357130][T14010]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1127.357149][T14010]  ? security_file_permission+0x71/0x210
[ 1127.357175][T14010]  ? rw_verify_area+0xcf/0x6c0
[ 1127.357192][T14010]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1127.357211][T14010]  vfs_read+0x1e4/0xcf0
[ 1127.357230][T14010]  ? __pfx_sock_write_iter+0x10/0x10
[ 1127.357260][T14010]  ? __pfx_vfs_read+0x10/0x10
[ 1127.357278][T14010]  ? rcu_is_watching+0x12/0xc0
[ 1127.357298][T14010]  ? __fget_files+0x20e/0x3c0
[ 1127.357320][T14010]  ksys_read+0x12a/0x250
[ 1127.357345][T14010]  ? __pfx_ksys_read+0x10/0x10
[ 1127.357365][T14010]  ? rcu_is_watching+0x12/0xc0
[ 1127.357384][T14010]  __do_fast_syscall_32+0x7c/0x3a0
[ 1127.357410][T14010]  do_fast_syscall_32+0x32/0x80
[ 1127.357435][T14010]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1127.357458][T14010] RIP: 0023:0xf7fa2579
[ 1127.357472][T14010] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1127.357494][T14010] RSP: 002b:00000000f54a5590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 1127.357515][T14010] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f54a5620
[ 1127.357527][T14010] RDX: 000000000000000f RSI: 00000000f7434ff4 RDI: 0000000000000000
[ 1127.357538][T14010] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1127.357549][T14010] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1127.357560][T14010] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1127.357576][T14010]  </TASK>
[ 1127.431695][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1127.458836][T14014] lo speed is unknown, defaulting to 1000
[ 1127.484970][T14013] IPVS: length: 8 != 259378896304
[ 1127.631133][T14020] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1127.687150][T14030] FAULT_INJECTION: forcing a failure.
[ 1127.687150][T14030] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1127.691144][T14030] CPU: 3 UID: 0 PID: 14030 Comm: syz.0.6958 Not tainted syzkaller #0 PREEMPT(full) 
[ 1127.691160][T14030] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1127.691167][T14030] Call Trace:
[ 1127.691172][T14030]  <TASK>
[ 1127.691176][T14030]  dump_stack_lvl+0x16c/0x1f0
[ 1127.691194][T14030]  should_fail_ex+0x512/0x640
[ 1127.691210][T14030]  _copy_to_user+0x32/0xd0
[ 1127.691234][T14030]  simple_read_from_buffer+0xcb/0x170
[ 1127.691246][T14030]  proc_fail_nth_read+0x197/0x240
[ 1127.691262][T14030]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1127.691277][T14030]  ? security_file_permission+0x71/0x210
[ 1127.691297][T14030]  ? rw_verify_area+0xcf/0x6c0
[ 1127.691312][T14030]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1127.691330][T14030]  vfs_read+0x1e4/0xcf0
[ 1127.691346][T14030]  ? trace_irq_enable.constprop.0+0xd4/0x120
[ 1127.691378][T14030]  ? __pfx_vfs_read+0x10/0x10
[ 1127.691390][T14030]  ? rcu_is_watching+0x12/0xc0
[ 1127.691402][T14030]  ? __fget_files+0x20e/0x3c0
[ 1127.691418][T14030]  ksys_read+0x12a/0x250
[ 1127.691430][T14030]  ? __pfx_ksys_read+0x10/0x10
[ 1127.691441][T14030]  ? rcu_is_watching+0x12/0xc0
[ 1127.691452][T14030]  __do_fast_syscall_32+0x7c/0x3a0
[ 1127.691467][T14030]  do_fast_syscall_32+0x32/0x80
[ 1127.691480][T14030]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1127.691494][T14030] RIP: 0023:0xf7f35579
[ 1127.691503][T14030] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1127.691513][T14030] RSP: 002b:00000000f5456590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 1127.691523][T14030] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5456620
[ 1127.691530][T14030] RDX: 000000000000000f RSI: 00000000f73c4ff4 RDI: 0000000000000000
[ 1127.691536][T14030] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1127.691542][T14030] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1127.691549][T14030] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1127.691558][T14030]  </TASK>
[ 1127.860128][T14038] trusted_key: encrypted_key: insufficient parameters specified
[ 1128.089059][T14042] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1128.630585][T14053] bond0: (slave caif0): Error: Device type is different from other slaves
[ 1128.722778][T14052] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1128.774448][T14058] netlink: 'syz.4.6967': attribute type 11 has an invalid length.
[ 1129.697565][T14077] trusted_key: encrypted_key: insufficient parameters specified
[ 1129.745104][T14070] ALSA: mixer_oss: invalid OSS volume 'PHONEIÎ'
[ 1129.747281][T14070] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1129.887478][T14082] trusted_key: encrypted_key: insufficient parameters specified
[ 1130.062839][T15590] vhci_hcd: vhci_device speed not set
[ 1130.093648][T14083] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1130.204202][T14095] ALSA: mixer_oss: invalid OSS volume 'PHONEIÎ'
[ 1130.206590][T14095] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1130.359983][T14107] netlink: 240 bytes leftover after parsing attributes in process `syz.4.6977'.
[ 1130.378415][T14087] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6977'.
[ 1130.698251][T14118] trusted_key: encrypted_key: insufficient parameters specified
[ 1130.940288][T14093] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1130.942546][T14093] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 1131.190643][T14129] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[ 1131.193498][T14129] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1131.197500][T14129] vhci_hcd vhci_hcd.0: Device attached
[ 1131.234071][T14137] FAULT_INJECTION: forcing a failure.
[ 1131.234071][T14137] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1131.238319][T14137] CPU: 0 UID: 0 PID: 14137 Comm: syz.2.6990 Not tainted syzkaller #0 PREEMPT(full) 
[ 1131.238335][T14137] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1131.238342][T14137] Call Trace:
[ 1131.238346][T14137]  <TASK>
[ 1131.238351][T14137]  dump_stack_lvl+0x16c/0x1f0
[ 1131.238380][T14137]  should_fail_ex+0x512/0x640
[ 1131.238396][T14137]  _copy_from_user+0x2e/0xd0
[ 1131.238412][T14137]  get_compat_msghdr+0xa7/0x170
[ 1131.238426][T14137]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 1131.238439][T14137]  ? kstrtouint_from_user+0x13c/0x1d0
[ 1131.238453][T14137]  ___sys_sendmsg+0x1ae/0x1d0
[ 1131.238467][T14137]  ? get_pid_task+0xfc/0x250
[ 1131.238482][T14137]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1131.238497][T14137]  ? rcu_is_watching+0x12/0xc0
[ 1131.238513][T14137]  __sys_sendmsg+0x16d/0x220
[ 1131.238526][T14137]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1131.238543][T14137]  ? rcu_is_watching+0x12/0xc0
[ 1131.238555][T14137]  __do_fast_syscall_32+0x7c/0x3a0
[ 1131.238576][T14137]  do_fast_syscall_32+0x32/0x80
[ 1131.238592][T14137]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1131.238607][T14137] RIP: 0023:0xf7f82579
[ 1131.238616][T14137] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1131.238628][T14137] RSP: 002b:00000000f54a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1131.238640][T14137] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000180
[ 1131.238648][T14137] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1131.238655][T14137] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1131.238661][T14137] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1131.238668][T14137] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1131.238679][T14137]  </TASK>
[ 1131.482855][ T6050] usb 38-1: SetAddress Request (2) to port 0
[ 1131.484958][ T6050] usb 38-1: new SuperSpeed USB device number 2 using vhci_hcd
[ 1132.243797][T14169] trusted_key: encrypted_key: insufficient parameters specified
[ 1132.324167][ T7786] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1132.504129][T14130] vhci_hcd: connection reset by peer
[ 1132.506455][T11235] vhci_hcd: stop threads
[ 1132.508079][T11235] vhci_hcd: release socket
[ 1132.509623][T11235] vhci_hcd: disconnect device
[ 1133.096080][ T6057] hid-generic 0005:0009:0401.0021: item fetching failed at offset 4/20
[ 1133.101500][ T6057] hid-generic 0005:0009:0401.0021: probe with driver hid-generic failed with error -22
[ 1133.126139][T14184] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1133.130253][T14184] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1133.141967][T14186] FAULT_INJECTION: forcing a failure.
[ 1133.141967][T14186] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1133.146866][T14186] CPU: 2 UID: 0 PID: 14186 Comm: syz.4.7004 Not tainted syzkaller #0 PREEMPT(full) 
[ 1133.146883][T14186] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1133.146890][T14186] Call Trace:
[ 1133.146894][T14186]  <TASK>
[ 1133.146899][T14186]  dump_stack_lvl+0x16c/0x1f0
[ 1133.146916][T14186]  should_fail_ex+0x512/0x640
[ 1133.146932][T14186]  _copy_from_user+0x2e/0xd0
[ 1133.146948][T14186]  get_compat_msghdr+0xa7/0x170
[ 1133.146961][T14186]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 1133.146975][T14186]  ? kstrtouint_from_user+0x13c/0x1d0
[ 1133.146988][T14186]  ___sys_sendmsg+0x1ae/0x1d0
[ 1133.147001][T14186]  ? get_pid_task+0xfc/0x250
[ 1133.147022][T14186]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1133.147038][T14186]  ? rcu_is_watching+0x12/0xc0
[ 1133.147053][T14186]  __sys_sendmsg+0x16d/0x220
[ 1133.147066][T14186]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1133.147081][T14186]  ? rcu_is_watching+0x12/0xc0
[ 1133.147093][T14186]  __do_fast_syscall_32+0x7c/0x3a0
[ 1133.147108][T14186]  do_fast_syscall_32+0x32/0x80
[ 1133.147121][T14186]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1133.147135][T14186] RIP: 0023:0xf7fa2579
[ 1133.147143][T14186] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1133.147154][T14186] RSP: 002b:00000000f54c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1133.147165][T14186] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800003c0
[ 1133.147172][T14186] RDX: 0000000000001050 RSI: 0000000000000000 RDI: 0000000000000000
[ 1133.147178][T14186] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1133.147184][T14186] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1133.147190][T14186] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1133.147199][T14186]  </TASK>
[ 1133.279975][T14190] netlink: 76 bytes leftover after parsing attributes in process `syz.2.7006'.
[ 1133.316451][T14192] ALSA: mixer_oss: invalid OSS volume 'PHONEIÎ'
[ 1133.318888][T14192] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1133.342387][T14195] FAULT_INJECTION: forcing a failure.
[ 1133.342387][T14195] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1133.347230][T14195] CPU: 1 UID: 0 PID: 14195 Comm: syz.2.7008 Not tainted syzkaller #0 PREEMPT(full) 
[ 1133.347246][T14195] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1133.347253][T14195] Call Trace:
[ 1133.347257][T14195]  <TASK>
[ 1133.347261][T14195]  dump_stack_lvl+0x16c/0x1f0
[ 1133.347285][T14195]  should_fail_ex+0x512/0x640
[ 1133.347311][T14195]  should_fail_alloc_page+0xe7/0x130
[ 1133.347333][T14195]  prepare_alloc_pages+0x3c2/0x610
[ 1133.347360][T14195]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[ 1133.347382][T14195]  ? css_rstat_updated+0x1c2/0x510
[ 1133.347400][T14195]  ? __pfx_css_rstat_updated+0x10/0x10
[ 1133.347417][T14195]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1133.347437][T14195]  ? rcu_is_watching+0x12/0xc0
[ 1133.347454][T14195]  ? mod_memcg_lruvec_state+0x389/0x5f0
[ 1133.347480][T14195]  ? __mod_zone_page_state+0xcc/0x1a0
[ 1133.347497][T14195]  ? lru_gen_update_size+0x543/0xe10
[ 1133.347516][T14195]  ? rcu_is_watching+0x12/0xc0
[ 1133.347530][T14195]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1133.347554][T14195]  ? policy_nodemask+0xea/0x4e0
[ 1133.347574][T14195]  alloc_pages_mpol+0x1fb/0x550
[ 1133.347588][T14195]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1133.347601][T14195]  ? _raw_spin_unlock_irq+0x2e/0x50
[ 1133.347613][T14195]  ? folio_isolate_lru+0xa2/0x900
[ 1133.347625][T14195]  folio_alloc_mpol_noprof+0x36/0x2f0
[ 1133.347640][T14195]  alloc_migration_target_by_mpol+0x246/0x500
[ 1133.347657][T14195]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[ 1133.347673][T14195]  ? __pfx___might_resched+0x10/0x10
[ 1133.347684][T14195]  ? __pfx_queue_folios_pte_range+0x10/0x10
[ 1133.347700][T14195]  migrate_pages_batch+0x39c/0x3bd0
[ 1133.347716][T14195]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[ 1133.347734][T14195]  ? __pfx_migrate_pages_batch+0x10/0x10
[ 1133.347767][T14195]  ? __pfx_walk_pgd_range+0x10/0x10
[ 1133.347780][T14195]  migrate_pages_sync+0x12d/0x8a0
[ 1133.347795][T14195]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[ 1133.347813][T14195]  ? queue_pages_test_walk+0x279/0x410
[ 1133.347827][T14195]  ? __pfx_migrate_pages_sync+0x10/0x10
[ 1133.347842][T14195]  ? walk_page_test+0x9b/0x180
[ 1133.347854][T14195]  ? walk_page_range_mm+0x235/0xb40
[ 1133.347866][T14195]  ? mas_ascend+0x4f6/0x900
[ 1133.347880][T14195]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1133.347895][T14195]  migrate_pages+0x1b67/0x23b0
[ 1133.347911][T14195]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[ 1133.347929][T14195]  ? __pfx_migrate_pages+0x10/0x10
[ 1133.347944][T14195]  ? mas_next_slot+0x12d3/0x21b0
[ 1133.347957][T14195]  ? mas_prev_setup.constprop.0+0xb6/0x9d0
[ 1133.347970][T14195]  ? rcu_is_watching+0x12/0xc0
[ 1133.347981][T14195]  ? up_write+0x1b2/0x520
[ 1133.347996][T14195]  do_mbind+0x6f0/0xf30
[ 1133.348012][T14195]  ? __pfx_do_mbind+0x10/0x10
[ 1133.348027][T14195]  ? ksys_write+0x190/0x250
[ 1133.348038][T14195]  ? lock_release+0x201/0x2f0
[ 1133.348054][T14195]  ? __pfx_get_nodes+0x10/0x10
[ 1133.348065][T14195]  ? __fget_files+0x20e/0x3c0
[ 1133.348077][T14195]  kernel_mbind+0x1e3/0x1f0
[ 1133.348093][T14195]  ? __pfx_kernel_mbind+0x10/0x10
[ 1133.348113][T14195]  ? rcu_is_watching+0x12/0xc0
[ 1133.348137][T14195]  __do_fast_syscall_32+0x7c/0x3a0
[ 1133.348162][T14195]  do_fast_syscall_32+0x32/0x80
[ 1133.348182][T14195]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1133.348205][T14195] RIP: 0023:0xf7f82579
[ 1133.348215][T14195] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1133.348226][T14195] RSP: 002b:00000000f54a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000112
[ 1133.348236][T14195] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000000c00000
[ 1133.348243][T14195] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1133.348250][T14195] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[ 1133.348256][T14195] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1133.348262][T14195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1133.348272][T14195]  </TASK>
[ 1133.485218][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1134.372939][ T7786] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1134.891088][T14225] FAULT_INJECTION: forcing a failure.
[ 1134.891088][T14225] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1134.897458][T14225] CPU: 0 UID: 0 PID: 14225 Comm: syz.0.7016 Not tainted syzkaller #0 PREEMPT(full) 
[ 1134.897483][T14225] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1134.897495][T14225] Call Trace:
[ 1134.897502][T14225]  <TASK>
[ 1134.897510][T14225]  dump_stack_lvl+0x16c/0x1f0
[ 1134.897537][T14225]  should_fail_ex+0x512/0x640
[ 1134.897561][T14225]  _copy_from_user+0x2e/0xd0
[ 1134.897606][T14225]  get_compat_msghdr+0xa7/0x170
[ 1134.897626][T14225]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 1134.897649][T14225]  ? __pfx__kstrtoull+0x10/0x10
[ 1134.897670][T14225]  ? rcu_is_watching+0x12/0xc0
[ 1134.897688][T14225]  ___sys_sendmsg+0x1ae/0x1d0
[ 1134.897708][T14225]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1134.897727][T14225]  ? __pfx_kstrtouint+0x10/0x10
[ 1134.897748][T14225]  ? rcu_is_watching+0x12/0xc0
[ 1134.897770][T14225]  __sys_sendmmsg+0x2f9/0x420
[ 1134.897794][T14225]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1134.897820][T14225]  ? lock_release+0x201/0x2f0
[ 1134.897843][T14225]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1134.897868][T14225]  ? fput+0x9b/0xd0
[ 1134.897890][T14225]  ? ksys_write+0x1ac/0x250
[ 1134.897907][T14225]  ? __pfx_ksys_write+0x10/0x10
[ 1134.897926][T14225]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[ 1134.897949][T14225]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[ 1134.897973][T14225]  __do_fast_syscall_32+0x7c/0x3a0
[ 1134.897994][T14225]  do_fast_syscall_32+0x32/0x80
[ 1134.898013][T14225]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1134.898033][T14225] RIP: 0023:0xf7f35579
[ 1134.898045][T14225] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1134.898061][T14225] RSP: 002b:00000000f545655c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[ 1134.898077][T14225] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000240
[ 1134.898090][T14225] RDX: 000000000000010e RSI: 0000000000008001 RDI: 0000000000000000
[ 1134.898102][T14225] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1134.898114][T14225] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1134.898124][T14225] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1134.898139][T14225]  </TASK>
[ 1135.075110][T14231] fuse: Unknown parameter 'ÿ0x0000000000000003'
[ 1135.794030][T14237] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[ 1135.799742][T14239] Bluetooth: MGMT ver 1.23
[ 1135.816793][T14239] netlink: 'syz.2.7021': attribute type 1 has an invalid length.
[ 1135.967670][T14247] trusted_key: encrypted_key: insufficient parameters specified
[ 1136.358922][T14259] trusted_key: encrypted_key: insufficient parameters specified
[ 1136.613010][ T6050] usb 38-1: device descriptor read/8, error -110
[ 1136.624263][T14268] ALSA: mixer_oss: invalid OSS volume 'PHONEIÎ'
[ 1136.627653][T14237] ceph: No mds server is up or the cluster is laggy
[ 1136.627945][T14268] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1136.659535][T14273] FAULT_INJECTION: forcing a failure.
[ 1136.659535][T14273] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1136.663805][T14273] CPU: 2 UID: 0 PID: 14273 Comm: syz.4.7031 Not tainted syzkaller #0 PREEMPT(full) 
[ 1136.663821][T14273] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1136.663828][T14273] Call Trace:
[ 1136.663832][T14273]  <TASK>
[ 1136.663837][T14273]  dump_stack_lvl+0x16c/0x1f0
[ 1136.663854][T14273]  should_fail_ex+0x512/0x640
[ 1136.663870][T14273]  _copy_from_user+0x2e/0xd0
[ 1136.663886][T14273]  get_compat_msghdr+0xa7/0x170
[ 1136.663900][T14273]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 1136.663913][T14273]  ? kstrtouint_from_user+0x13c/0x1d0
[ 1136.663927][T14273]  ___sys_sendmsg+0x1ae/0x1d0
[ 1136.663941][T14273]  ? get_pid_task+0xfc/0x250
[ 1136.663955][T14273]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1136.663971][T14273]  ? rcu_is_watching+0x12/0xc0
[ 1136.663986][T14273]  __sys_sendmsg+0x16d/0x220
[ 1136.663999][T14273]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1136.664014][T14273]  ? rcu_is_watching+0x12/0xc0
[ 1136.664025][T14273]  __do_fast_syscall_32+0x7c/0x3a0
[ 1136.664039][T14273]  do_fast_syscall_32+0x32/0x80
[ 1136.664057][T14273]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1136.664071][T14273] RIP: 0023:0xf7fa2579
[ 1136.664080][T14273] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1136.664091][T14273] RSP: 002b:00000000f54c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1136.664101][T14273] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[ 1136.664108][T14273] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1136.664114][T14273] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1136.664120][T14273] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1136.664126][T14273] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1136.664135][T14273]  </TASK>
[ 1136.747237][T14275] trusted_key: encrypted_key: insufficient parameters specified
[ 1137.004753][ T6050] usb usb38-port1: attempt power cycle
[ 1137.838550][T14297] ALSA: mixer_oss: invalid OSS volume 'PHONEIÎ'
[ 1137.840814][T14297] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1137.863792][T14301] FAULT_INJECTION: forcing a failure.
[ 1137.863792][T14301] name failslab, interval 1, probability 0, space 0, times 0
[ 1137.868245][T14301] CPU: 3 UID: 0 PID: 14301 Comm: syz.2.7039 Not tainted syzkaller #0 PREEMPT(full) 
[ 1137.868275][T14301] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1137.868283][T14301] Call Trace:
[ 1137.868288][T14301]  <TASK>
[ 1137.868293][T14301]  dump_stack_lvl+0x16c/0x1f0
[ 1137.868312][T14301]  should_fail_ex+0x512/0x640
[ 1137.868344][T14301]  should_failslab+0xc2/0x120
[ 1137.868360][T14301]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1137.868374][T14301]  ? lock_release+0x201/0x2f0
[ 1137.868389][T14301]  ? getname_flags.part.0+0x4c/0x550
[ 1137.868408][T14301]  getname_flags.part.0+0x4c/0x550
[ 1137.868427][T14301]  getname_flags+0x93/0xf0
[ 1137.868439][T14301]  user_path_at+0x24/0x60
[ 1137.868452][T14301]  do_utimes+0x102/0x2a0
[ 1137.868466][T14301]  ? __pfx_do_utimes+0x10/0x10
[ 1137.868481][T14301]  ? __fget_files+0x20e/0x3c0
[ 1137.868495][T14301]  __ia32_sys_utimensat_time32+0x1c8/0x290
[ 1137.868511][T14301]  ? __pfx___ia32_sys_utimensat_time32+0x10/0x10
[ 1137.868529][T14301]  ? rcu_is_watching+0x12/0xc0
[ 1137.868542][T14301]  __do_fast_syscall_32+0x7c/0x3a0
[ 1137.868559][T14301]  do_fast_syscall_32+0x32/0x80
[ 1137.868574][T14301]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1137.868590][T14301] RIP: 0023:0xf7f82579
[ 1137.868599][T14301] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1137.868611][T14301] RSP: 002b:00000000f54a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000140
[ 1137.868623][T14301] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000140
[ 1137.868630][T14301] RDX: 0000000000000000 RSI: 0000000000000100 RDI: 0000000000000000
[ 1137.868637][T14301] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1137.868644][T14301] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1137.868651][T14301] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1137.868661][T14301]  </TASK>
[ 1137.963657][ T6050] usb usb38-port1: unable to enumerate USB device
[ 1138.115488][T14308] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7042'.
[ 1138.256107][T14305] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1138.532930][T15590] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[ 1138.682873][T15590] usb 9-1: Using ep0 maxpacket: 32
[ 1138.686249][T15590] usb 9-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[ 1138.690167][T15590] usb 9-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[ 1138.694303][T15590] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1138.699346][T15590] usb 9-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1138.703468][T15590] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1138.707137][T15590] usb 9-1: Product: syz
[ 1138.708607][T15590] usb 9-1: Manufacturer: syz
[ 1138.710303][T15590] usb 9-1: SerialNumber: syz
[ 1138.921321][T15590] usb 9-1: 0:2 : does not exist
[ 1138.927692][T15590] usb 9-1: USB disconnect, device number 9
[ 1138.939852][T14316] udevd[14316]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb9/9-1/9-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1139.040660][T14313] syz.0.7041 (14313) used greatest stack depth: 18312 bytes left
[ 1139.390204][T14334] ALSA: mixer_oss: invalid OSS volume 'PHONEIÎ'
[ 1139.392611][T14334] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1139.652601][T14347] trusted_key: encrypted_key: insufficient parameters specified
[ 1139.872050][T14351] trusted_key: encrypted_key: insufficient parameters specified
[ 1140.040864][T14353] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1140.077302][T14361] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7057'.
[ 1140.162334][T14366] ALSA: mixer_oss: invalid OSS volume 'PHONEIÎ'
[ 1140.165278][T14366] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1140.323722][T14376] netlink: 'syz.3.7058': attribute type 10 has an invalid length.
[ 1140.456415][T14378] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 1141.148651][T14384] netlink: 52 bytes leftover after parsing attributes in process `syz.0.7064'.
[ 1141.175948][T14386] FAULT_INJECTION: forcing a failure.
[ 1141.175948][T14386] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1141.181168][T14386] CPU: 3 UID: 0 PID: 14386 Comm: syz.0.7065 Not tainted syzkaller #0 PREEMPT(full) 
[ 1141.181184][T14386] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1141.181191][T14386] Call Trace:
[ 1141.181196][T14386]  <TASK>
[ 1141.181201][T14386]  dump_stack_lvl+0x16c/0x1f0
[ 1141.181219][T14386]  should_fail_ex+0x512/0x640
[ 1141.181235][T14386]  _copy_from_user+0x2e/0xd0
[ 1141.181251][T14386]  get_compat_msghdr+0xa7/0x170
[ 1141.181265][T14386]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 1141.181291][T14386]  ? kstrtouint_from_user+0x13c/0x1d0
[ 1141.181305][T14386]  ___sys_sendmsg+0x1ae/0x1d0
[ 1141.181319][T14386]  ? get_pid_task+0xfc/0x250
[ 1141.181334][T14386]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1141.181349][T14386]  ? rcu_is_watching+0x12/0xc0
[ 1141.181364][T14386]  __sys_sendmsg+0x16d/0x220
[ 1141.181377][T14386]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1141.181393][T14386]  ? rcu_is_watching+0x12/0xc0
[ 1141.181403][T14386]  __do_fast_syscall_32+0x7c/0x3a0
[ 1141.181418][T14386]  do_fast_syscall_32+0x32/0x80
[ 1141.181432][T14386]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1141.181446][T14386] RIP: 0023:0xf7f35579
[ 1141.181454][T14386] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1141.181465][T14386] RSP: 002b:00000000f545655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1141.181476][T14386] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080004bc0
[ 1141.181482][T14386] RDX: 0000000000044084 RSI: 0000000000000000 RDI: 0000000000000000
[ 1141.181489][T14386] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1141.181495][T14386] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1141.181501][T14386] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1141.181526][T14386]  </TASK>
[ 1141.589405][T14392] netlink: 'syz.0.7067': attribute type 10 has an invalid length.
[ 1141.623413][T14394] netlink: 120 bytes leftover after parsing attributes in process `syz.2.7068'.
[ 1141.651686][T14395] ALSA: mixer_oss: invalid OSS volume 'PHONEIÎ'
[ 1141.654469][T14395] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1141.706088][T14400] trusted_key: encrypted_key: insufficient parameters specified
[ 1141.706682][T14402] FAULT_INJECTION: forcing a failure.
[ 1141.706682][T14402] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1141.713064][T14402] CPU: 2 UID: 0 PID: 14402 Comm: syz.4.7072 Not tainted syzkaller #0 PREEMPT(full) 
[ 1141.713080][T14402] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1141.713087][T14402] Call Trace:
[ 1141.713091][T14402]  <TASK>
[ 1141.713095][T14402]  dump_stack_lvl+0x16c/0x1f0
[ 1141.713112][T14402]  should_fail_ex+0x512/0x640
[ 1141.713128][T14402]  _copy_from_user+0x2e/0xd0
[ 1141.713145][T14402]  get_compat_msghdr+0xa7/0x170
[ 1141.713158][T14402]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 1141.713171][T14402]  ? kstrtouint_from_user+0x13c/0x1d0
[ 1141.713184][T14402]  ___sys_sendmsg+0x1ae/0x1d0
[ 1141.713197][T14402]  ? get_pid_task+0xfc/0x250
[ 1141.713212][T14402]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1141.713227][T14402]  ? rcu_is_watching+0x12/0xc0
[ 1141.713244][T14402]  __sys_sendmsg+0x16d/0x220
[ 1141.713257][T14402]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1141.713272][T14402]  ? rcu_is_watching+0x12/0xc0
[ 1141.713283][T14402]  __do_fast_syscall_32+0x7c/0x3a0
[ 1141.713298][T14402]  do_fast_syscall_32+0x32/0x80
[ 1141.713311][T14402]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1141.713325][T14402] RIP: 0023:0xf7fa2579
[ 1141.713334][T14402] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1141.713345][T14402] RSP: 002b:00000000f54c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1141.713356][T14402] RAX: ffffffffffffffda RBX: 000000000000000c RCX: 0000000080000540
[ 1141.713377][T14402] RDX: 0000000000088010 RSI: 0000000000000000 RDI: 0000000000000000
[ 1141.713383][T14402] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1141.713389][T14402] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1141.713395][T14402] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1141.713405][T14402]  </TASK>
[ 1141.864490][T14409] kAFS: No cell specified
[ 1141.974053][ T7786] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1141.977462][T14413] siw: device registration error -23
[ 1142.612684][T14415] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1142.680996][T14420] loop2: detected capacity change from 0 to 7
[ 1142.684772][T14420] Dev loop2: unable to read RDB block 7
[ 1142.686578][T14420]  loop2: unable to read partition table
[ 1142.688475][T14420] loop2: partition table beyond EOD, truncated
[ 1142.696704][T14420] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[ 1142.723122][T14421] ALSA: mixer_oss: invalid OSS volume 'PHONEIÎ'
[ 1142.725755][T14421] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1142.950213][T14434] FAULT_INJECTION: forcing a failure.
[ 1142.950213][T14434] name failslab, interval 1, probability 0, space 0, times 0
[ 1142.954605][T14434] CPU: 2 UID: 0 PID: 14434 Comm: syz.2.7083 Not tainted syzkaller #0 PREEMPT(full) 
[ 1142.954621][T14434] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1142.954628][T14434] Call Trace:
[ 1142.954633][T14434]  <TASK>
[ 1142.954637][T14434]  dump_stack_lvl+0x16c/0x1f0
[ 1142.954655][T14434]  should_fail_ex+0x512/0x640
[ 1142.954670][T14434]  should_failslab+0xc2/0x120
[ 1142.954685][T14434]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[ 1142.954698][T14434]  ? __alloc_skb+0x2b2/0x380
[ 1142.954717][T14434]  __alloc_skb+0x2b2/0x380
[ 1142.954729][T14434]  ? __pfx___alloc_skb+0x10/0x10
[ 1142.954741][T14434]  ? __pfx___might_resched+0x10/0x10
[ 1142.954752][T14434]  ? rcu_is_watching+0x12/0xc0
[ 1142.954764][T14434]  netlink_alloc_large_skb+0x69/0x130
[ 1142.954780][T14434]  netlink_sendmsg+0x6a1/0xdd0
[ 1142.954794][T14434]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1142.954808][T14434]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[ 1142.954821][T14434]  sock_write_iter+0x4ff/0x5b0
[ 1142.954837][T14434]  ? __pfx_sock_write_iter+0x10/0x10
[ 1142.954853][T14434]  ? lock_release+0x201/0x2f0
[ 1142.954868][T14434]  ? bpf_lsm_file_permission+0x9/0x10
[ 1142.954883][T14434]  ? security_file_permission+0x71/0x210
[ 1142.954898][T14434]  ? rw_verify_area+0xcf/0x6c0
[ 1142.954909][T14434]  vfs_write+0x7d0/0x11d0
[ 1142.954921][T14434]  ? __pfx_sock_write_iter+0x10/0x10
[ 1142.954938][T14434]  ? __pfx_vfs_write+0x10/0x10
[ 1142.954950][T14434]  ? lock_release+0x201/0x2f0
[ 1142.954968][T14434]  ksys_write+0x1f8/0x250
[ 1142.954979][T14434]  ? __pfx_ksys_write+0x10/0x10
[ 1142.954991][T14434]  ? rcu_is_watching+0x12/0xc0
[ 1142.955002][T14434]  __do_fast_syscall_32+0x7c/0x3a0
[ 1142.955018][T14434]  do_fast_syscall_32+0x32/0x80
[ 1142.955031][T14434]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1142.955044][T14434] RIP: 0023:0xf7f82579
[ 1142.955066][T14434] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1142.955078][T14434] RSP: 002b:00000000f54a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[ 1142.955099][T14434] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[ 1142.955106][T14434] RDX: 0000000000000014 RSI: 0000000000000000 RDI: 0000000000000000
[ 1142.955113][T14434] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1142.955119][T14434] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1142.955125][T14434] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1142.955134][T14434]  </TASK>
[ 1143.061867][T14436] net_ratelimit: 73 callbacks suppressed
[ 1143.061878][T14436] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1144.532957][ T7786] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1144.979829][T14456] hub 6-0:1.0: USB hub found
[ 1144.981875][T14456] hub 6-0:1.0: 1 port detected
[ 1145.151358][T14460] netlink: 20 bytes leftover after parsing attributes in process `syz.2.7089'.
[ 1145.159986][T14457] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1146.205399][T14479] trusted_key: encrypted_key: insufficient parameters specified
[ 1147.383637][    T9] usb 7-1: new high-speed USB device number 90 using dummy_hcd
[ 1147.442944][T14496] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1147.552863][    T9] usb 7-1: Using ep0 maxpacket: 32
[ 1147.683482][    T9] usb 7-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[ 1147.686403][    T9] usb 7-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[ 1147.689600][    T9] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1147.695447][    T9] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1147.696465][T14506] trusted_key: encrypted_key: insufficient parameters specified
[ 1147.698370][    T9] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1147.703664][    T9] usb 7-1: Product: syz
[ 1147.705172][    T9] usb 7-1: Manufacturer: syz
[ 1147.707145][    T9] usb 7-1: SerialNumber: syz
[ 1147.929589][    T9] usb 7-1: 0:2 : does not exist
[ 1147.934942][    T9] usb 7-1: USB disconnect, device number 90
[ 1147.945214][T14316] udevd[14316]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1149.217690][T14536] FAULT_INJECTION: forcing a failure.
[ 1149.217690][T14536] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1149.223564][T14536] CPU: 2 UID: 0 PID: 14536 Comm: syz.4.7110 Not tainted syzkaller #0 PREEMPT(full) 
[ 1149.223591][T14536] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1149.223603][T14536] Call Trace:
[ 1149.223609][T14536]  <TASK>
[ 1149.223616][T14536]  dump_stack_lvl+0x16c/0x1f0
[ 1149.223643][T14536]  should_fail_ex+0x512/0x640
[ 1149.223671][T14536]  _copy_from_user+0x2e/0xd0
[ 1149.223699][T14536]  get_compat_msghdr+0xa7/0x170
[ 1149.223722][T14536]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 1149.223745][T14536]  ? __pfx__kstrtoull+0x10/0x10
[ 1149.223766][T14536]  ? rcu_is_watching+0x12/0xc0
[ 1149.223787][T14536]  ___sys_sendmsg+0x1ae/0x1d0
[ 1149.223811][T14536]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1149.223833][T14536]  ? __pfx_kstrtouint+0x10/0x10
[ 1149.223858][T14536]  ? rcu_is_watching+0x12/0xc0
[ 1149.223888][T14536]  __sys_sendmmsg+0x2f9/0x420
[ 1149.223910][T14536]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1149.223931][T14536]  ? lock_release+0x201/0x2f0
[ 1149.223958][T14536]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1149.223985][T14536]  ? fput+0x9b/0xd0
[ 1149.224009][T14536]  ? ksys_write+0x1ac/0x250
[ 1149.224044][T14536]  ? __pfx_ksys_write+0x10/0x10
[ 1149.224067][T14536]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[ 1149.224090][T14536]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[ 1149.224114][T14536]  __do_fast_syscall_32+0x7c/0x3a0
[ 1149.224139][T14536]  do_fast_syscall_32+0x32/0x80
[ 1149.224162][T14536]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1149.224184][T14536] RIP: 0023:0xf7fa2579
[ 1149.224197][T14536] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1149.224215][T14536] RSP: 002b:00000000f54c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[ 1149.224232][T14536] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800001c0
[ 1149.224244][T14536] RDX: 0000000000000001 RSI: 0000000000000040 RDI: 0000000000000000
[ 1149.224254][T14536] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1149.224265][T14536] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1149.224276][T14536] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1149.224292][T14536]  </TASK>
[ 1149.544561][T14524] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1149.862916][    T9] usb 8-1: new high-speed USB device number 64 using dummy_hcd
[ 1150.022984][    T9] usb 8-1: Using ep0 maxpacket: 32
[ 1150.040376][    T9] usb 8-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[ 1150.043333][    T9] usb 8-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[ 1150.046447][    T9] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1150.050673][    T9] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1150.053841][    T9] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1150.056291][    T9] usb 8-1: Product: syz
[ 1150.057596][    T9] usb 8-1: Manufacturer: syz
[ 1150.059079][    T9] usb 8-1: SerialNumber: syz
[ 1150.267547][    T9] usb 8-1: 0:2 : does not exist
[ 1150.446365][    T9] usb 8-1: USB disconnect, device number 64
[ 1150.603136][T14564] FAULT_INJECTION: forcing a failure.
[ 1150.603136][T14564] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1150.609053][T14564] CPU: 2 UID: 0 PID: 14564 Comm: syz.0.7118 Not tainted syzkaller #0 PREEMPT(full) 
[ 1150.609079][T14564] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1150.609090][T14564] Call Trace:
[ 1150.609097][T14564]  <TASK>
[ 1150.609104][T14564]  dump_stack_lvl+0x16c/0x1f0
[ 1150.609132][T14564]  should_fail_ex+0x512/0x640
[ 1150.609157][T14564]  _copy_from_user+0x2e/0xd0
[ 1150.609185][T14564]  move_addr_to_kernel+0x65/0x170
[ 1150.609202][T14564]  __sys_connect+0xb1/0x160
[ 1150.609220][T14564]  ? __pfx___sys_connect+0x10/0x10
[ 1150.609242][T14564]  ? __pfx_ksys_write+0x10/0x10
[ 1150.609265][T14564]  __ia32_sys_connect+0x71/0xb0
[ 1150.609282][T14564]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[ 1150.609306][T14564]  __do_fast_syscall_32+0x7c/0x3a0
[ 1150.609329][T14564]  do_fast_syscall_32+0x32/0x80
[ 1150.609351][T14564]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1150.609372][T14564] RIP: 0023:0xf7f35579
[ 1150.609385][T14564] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1150.609407][T14564] RSP: 002b:00000000f545655c EFLAGS: 00000296 ORIG_RAX: 000000000000016a
[ 1150.609444][T14564] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000080
[ 1150.609457][T14564] RDX: 000000000000001c RSI: 0000000000000000 RDI: 0000000000000000
[ 1150.609478][T14564] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1150.609489][T14564] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1150.609499][T14564] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1150.609516][T14564]  </TASK>
[ 1150.932922][ T7786] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1151.128076][T14576] ptrace attach of "/syz-executor exec"[14577] was attempted by "/syz-executor exec"[14576]
[ 1152.489441][T14579] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1152.495379][ T5977] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1152.499040][ T5977] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1152.501744][ T5977] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1152.504806][ T5977] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1152.508546][ T5977] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1152.526571][T14582] lo speed is unknown, defaulting to 1000
[ 1152.530489][   T40] audit: type=1326 audit(1755649496.813:2808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14595 comm="syz.0.7127" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35579 code=0x7ffc0000
[ 1152.537789][   T40] audit: type=1326 audit(1755649496.813:2809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14595 comm="syz.0.7127" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35579 code=0x7ffc0000
[ 1152.546824][   T40] audit: type=1326 audit(1755649496.813:2810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14595 comm="syz.0.7127" exe="/syz-executor" sig=0 arch=40000003 syscall=245 compat=1 ip=0xf7f35579 code=0x7ffc0000
[ 1152.555522][   T40] audit: type=1326 audit(1755649496.813:2811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14595 comm="syz.0.7127" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35579 code=0x7ffc0000
[ 1152.567490][   T40] audit: type=1326 audit(1755649496.813:2812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14595 comm="syz.0.7127" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35579 code=0x7ffc0000
[ 1152.576212][   T40] audit: type=1326 audit(1755649496.813:2813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14595 comm="syz.0.7127" exe="/syz-executor" sig=0 arch=40000003 syscall=385 compat=1 ip=0xf7f35579 code=0x7ffc0000
[ 1152.586663][   T40] audit: type=1326 audit(1755649496.833:2814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14595 comm="syz.0.7127" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35579 code=0x7ffc0000
[ 1152.595319][   T40] audit: type=1326 audit(1755649496.833:2815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14595 comm="syz.0.7127" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35579 code=0x7ffc0000
[ 1152.604064][   T40] audit: type=1326 audit(1755649496.833:2816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14595 comm="syz.0.7127" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f35579 code=0x7ffc0000
[ 1152.613289][   T40] audit: type=1326 audit(1755649496.833:2817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14595 comm="syz.0.7127" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35579 code=0x7ffc0000
[ 1152.616968][T14582] chnl_net:caif_netlink_parms(): no params data found
[ 1152.749396][T14582] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1152.752531][T14582] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1152.755743][T14582] bridge_slave_0: entered allmulticast mode
[ 1152.759299][T14582] bridge_slave_0: entered promiscuous mode
[ 1152.763406][T14582] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1152.766421][T14582] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1152.769522][T14582] bridge_slave_1: entered allmulticast mode
[ 1152.774412][T14582] bridge_slave_1: entered promiscuous mode
[ 1152.797677][T14582] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1152.803200][T14582] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1152.820597][T14582] team0: Port device team_slave_0 added
[ 1152.823895][T14582] team0: Port device team_slave_1 added
[ 1152.840160][T14582] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1152.842404][T14582] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1152.857801][T14582] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1152.871049][T14582] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1152.873562][T14582] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1152.873827][T14605] ALSA: mixer_oss: invalid OSS volume 'PHONEIÎ'
[ 1152.881418][T14582] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1152.915367][T14582] hsr_slave_0: entered promiscuous mode
[ 1152.917513][T14582] hsr_slave_1: entered promiscuous mode
[ 1152.923335][T14582] debugfs: 'hsr0' already exists in 'hsr'
[ 1152.925288][T14582] Cannot create hsr debugfs directory
[ 1152.989330][ T8340] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[ 1153.104710][ T8340] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[ 1153.307253][ T8340] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[ 1153.354524][ T8340] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[ 1153.447575][ T8340] bridge_slave_1: left allmulticast mode
[ 1153.450069][ T8340] bridge_slave_1: left promiscuous mode
[ 1153.452096][ T8340] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1153.456973][ T8340] bridge_slave_0: left allmulticast mode
[ 1153.458829][ T8340] bridge_slave_0: left promiscuous mode
[ 1153.460767][ T8340] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1153.617443][ T8340] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1153.621788][ T8340] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1153.626613][ T8340] bond0 (unregistering): Released all slaves
[ 1153.814394][ T5977] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1153.901726][T14631] netlink: 'syz.2.7132': attribute type 13 has an invalid length.
[ 1154.065597][T14631] 8021q: adding VLAN 0 to HW filter on device team0
[ 1154.068320][T14631] batman_adv: batadv0: Interface activated: team0
[ 1154.072354][T14631] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1154.093709][ T8340] hsr_slave_0: left promiscuous mode
[ 1154.111852][ T8340] hsr_slave_1: left promiscuous mode
[ 1154.114043][ T8340] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1154.117878][ T8340] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1154.372218][T14648] FAULT_INJECTION: forcing a failure.
[ 1154.372218][T14648] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1154.377188][T14648] CPU: 3 UID: 0 PID: 14648 Comm: syz.4.7136 Not tainted syzkaller #0 PREEMPT(full) 
[ 1154.377203][T14648] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1154.377210][T14648] Call Trace:
[ 1154.377214][T14648]  <TASK>
[ 1154.377218][T14648]  dump_stack_lvl+0x16c/0x1f0
[ 1154.377235][T14648]  should_fail_ex+0x512/0x640
[ 1154.377251][T14648]  _copy_from_user+0x2e/0xd0
[ 1154.377267][T14648]  get_compat_msghdr+0xa7/0x170
[ 1154.377281][T14648]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 1154.377304][T14648]  ? kstrtouint_from_user+0x13c/0x1d0
[ 1154.377320][T14648]  ___sys_sendmsg+0x1ae/0x1d0
[ 1154.377333][T14648]  ? get_pid_task+0xfc/0x250
[ 1154.377348][T14648]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1154.377364][T14648]  ? rcu_is_watching+0x12/0xc0
[ 1154.377379][T14648]  __sys_sendmsg+0x16d/0x220
[ 1154.377407][T14648]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1154.377424][T14648]  ? rcu_is_watching+0x12/0xc0
[ 1154.377435][T14648]  __do_fast_syscall_32+0x7c/0x3a0
[ 1154.377450][T14648]  do_fast_syscall_32+0x32/0x80
[ 1154.377463][T14648]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1154.377477][T14648] RIP: 0023:0xf7fa2579
[ 1154.377485][T14648] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1154.377496][T14648] RSP: 002b:00000000f54c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1154.377506][T14648] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000040
[ 1154.377513][T14648] RDX: 0000000004048080 RSI: 0000000000000000 RDI: 0000000000000000
[ 1154.377519][T14648] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1154.377524][T14648] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1154.377530][T14648] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1154.377539][T14648]  </TASK>
[ 1154.479181][   T10] lo speed is unknown, defaulting to 1000
[ 1154.481729][   T10] infiniband syz2: ib_query_port failed (-19)
[ 1154.497903][T14650] trusted_key: encrypted_key: insufficient parameters specified
[ 1154.506664][T14655] FAULT_INJECTION: forcing a failure.
[ 1154.506664][T14655] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1154.511939][T14655] CPU: 1 UID: 0 PID: 14655 Comm: syz.0.7138 Not tainted syzkaller #0 PREEMPT(full) 
[ 1154.511961][T14655] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1154.511971][T14655] Call Trace:
[ 1154.511978][T14655]  <TASK>
[ 1154.511984][T14655]  dump_stack_lvl+0x16c/0x1f0
[ 1154.512008][T14655]  should_fail_ex+0x512/0x640
[ 1154.512031][T14655]  _copy_from_user+0x2e/0xd0
[ 1154.512054][T14655]  get_compat_msghdr+0xa7/0x170
[ 1154.512073][T14655]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 1154.512091][T14655]  ? kstrtouint_from_user+0x13c/0x1d0
[ 1154.512111][T14655]  ___sys_sendmsg+0x1ae/0x1d0
[ 1154.512130][T14655]  ? get_pid_task+0xfc/0x250
[ 1154.512151][T14655]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1154.512173][T14655]  ? rcu_is_watching+0x12/0xc0
[ 1154.512195][T14655]  __sys_sendmsg+0x16d/0x220
[ 1154.512213][T14655]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1154.512236][T14655]  ? rcu_is_watching+0x12/0xc0
[ 1154.512251][T14655]  __do_fast_syscall_32+0x7c/0x3a0
[ 1154.512273][T14655]  do_fast_syscall_32+0x32/0x80
[ 1154.512292][T14655]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1154.512312][T14655] RIP: 0023:0xf7f35579
[ 1154.512324][T14655] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1154.512339][T14655] RSP: 002b:00000000f545655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1154.512354][T14655] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800010c0
[ 1154.512364][T14655] RDX: 0000000000008000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1154.512374][T14655] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1154.512383][T14655] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1154.512392][T14655] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1154.512406][T14655]  </TASK>
[ 1154.532911][ T5977] Bluetooth: hci1: command tx timeout
[ 1154.641136][T14665] trusted_key: encrypted_key: insufficient parameters specified
[ 1154.678247][T14582] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1154.702064][T14582] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1154.708169][T14582] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1154.736101][T14582] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1154.789339][T14582] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1154.801312][T14582] 8021q: adding VLAN 0 to HW filter on device team0
[ 1154.807265][T12005] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1154.809505][T12005] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1154.815532][T12005] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1154.817834][T12005] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1154.961496][ T8340] IPVS: stop unused estimator thread 0...
[ 1155.004447][T14582] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1155.034330][T14582] veth0_vlan: entered promiscuous mode
[ 1155.038187][T14582] veth1_vlan: entered promiscuous mode
[ 1155.047147][T14582] veth0_macvtap: entered promiscuous mode
[ 1155.050107][T14582] veth1_macvtap: entered promiscuous mode
[ 1155.058089][T14582] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1155.062248][T14582] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1155.067352][T11235] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1155.070422][T11235] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1155.074185][T11235] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1155.077154][T11235] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1155.081280][T14688] FAULT_INJECTION: forcing a failure.
[ 1155.081280][T14688] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1155.086138][T14688] CPU: 3 UID: 0 PID: 14688 Comm: syz.0.7143 Not tainted syzkaller #0 PREEMPT(full) 
[ 1155.086154][T14688] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1155.086172][T14688] Call Trace:
[ 1155.086176][T14688]  <TASK>
[ 1155.086180][T14688]  dump_stack_lvl+0x16c/0x1f0
[ 1155.086197][T14688]  should_fail_ex+0x512/0x640
[ 1155.086213][T14688]  _copy_from_user+0x2e/0xd0
[ 1155.086230][T14688]  get_compat_msghdr+0xa7/0x170
[ 1155.086243][T14688]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 1155.086257][T14688]  ___sys_sendmsg+0x1ae/0x1d0
[ 1155.086271][T14688]  ? get_pid_task+0xfc/0x250
[ 1155.086290][T14688]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1155.086312][T14688]  ? rcu_is_watching+0x12/0xc0
[ 1155.086336][T14688]  __sys_sendmsg+0x16d/0x220
[ 1155.086355][T14688]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1155.086380][T14688]  ? rcu_is_watching+0x12/0xc0
[ 1155.086395][T14688]  __do_fast_syscall_32+0x7c/0x3a0
[ 1155.086410][T14688]  do_fast_syscall_32+0x32/0x80
[ 1155.086423][T14688]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1155.086437][T14688] RIP: 0023:0xf7f35579
[ 1155.086445][T14688] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1155.086456][T14688] RSP: 002b:00000000f545655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1155.086466][T14688] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000140
[ 1155.086473][T14688] RDX: 0000000000040084 RSI: 0000000000000000 RDI: 0000000000000000
[ 1155.086479][T14688] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1155.086485][T14688] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1155.086491][T14688] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1155.086501][T14688]  </TASK>
[ 1155.171918][T11235] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1155.174841][T11235] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1155.186317][ T8340] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1155.189355][ T8340] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1155.705238][T14705] syzkaller0: left promiscuous mode
[ 1155.707220][T14705] syzkaller0: left allmulticast mode
[ 1155.709626][T14705] FAULT_INJECTION: forcing a failure.
[ 1155.709626][T14705] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1155.714213][T14705] CPU: 1 UID: 0 PID: 14705 Comm: syz.4.7147 Not tainted syzkaller #0 PREEMPT(full) 
[ 1155.714229][T14705] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1155.714236][T14705] Call Trace:
[ 1155.714240][T14705]  <TASK>
[ 1155.714245][T14705]  dump_stack_lvl+0x16c/0x1f0
[ 1155.714261][T14705]  should_fail_ex+0x512/0x640
[ 1155.714277][T14705]  _copy_from_iter+0x29f/0x16f0
[ 1155.714293][T14705]  ? rcu_is_watching+0x12/0xc0
[ 1155.714305][T14705]  ? lock_acquire+0x2cd/0x350
[ 1155.714318][T14705]  ? __pfx__copy_from_iter+0x10/0x10
[ 1155.714334][T14705]  ? _parse_integer_limit+0x17f/0x1d0
[ 1155.714348][T14705]  ? rcu_is_watching+0x12/0xc0
[ 1155.714359][T14705]  tun_get_user+0x3d3/0x3ce0
[ 1155.714372][T14705]  ? __pfx_tun_get_user+0x10/0x10
[ 1155.714382][T14705]  ? __pfx_ref_tracker_alloc+0x10/0x10
[ 1155.714400][T14705]  ? tun_get+0x191/0x370
[ 1155.714414][T14705]  ? rcu_is_watching+0x12/0xc0
[ 1155.714424][T14705]  ? lock_release+0x201/0x2f0
[ 1155.714439][T14705]  tun_chr_write_iter+0xdc/0x210
[ 1155.714449][T14705]  vfs_write+0x7d0/0x11d0
[ 1155.714462][T14705]  ? __pfx_tun_chr_write_iter+0x10/0x10
[ 1155.714473][T14705]  ? __pfx_vfs_write+0x10/0x10
[ 1155.714485][T14705]  ? lock_release+0x201/0x2f0
[ 1155.714500][T14705]  ksys_write+0x12a/0x250
[ 1155.714512][T14705]  ? __pfx_ksys_write+0x10/0x10
[ 1155.714524][T14705]  ? rcu_is_watching+0x12/0xc0
[ 1155.714535][T14705]  __do_fast_syscall_32+0x7c/0x3a0
[ 1155.714549][T14705]  do_fast_syscall_32+0x32/0x80
[ 1155.714563][T14705]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1155.714577][T14705] RIP: 0023:0xf7fa2579
[ 1155.714585][T14705] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1155.714596][T14705] RSP: 002b:00000000f54c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[ 1155.714606][T14705] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000280
[ 1155.714619][T14705] RDX: 000000000000ffdd RSI: 0000000000000000 RDI: 0000000000000000
[ 1155.714625][T14705] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1155.714632][T14705] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1155.714638][T14705] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1155.714647][T14705]  </TASK>
[ 1155.797107][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1156.612971][ T5977] Bluetooth: hci1: command tx timeout
[ 1158.244573][T14750] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1158.247254][T14750] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1158.249881][T14750] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1158.258771][T14750] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1158.728810][T14759] vivid-000: =================  START STATUS  =================
[ 1158.731345][T14759] vivid-000: Generate PTS: true
[ 1158.733714][T14759] vivid-000: Generate SCR: true
[ 1158.735343][T14759] tpg source WxH: 1280x720 (R'G'B)
[ 1158.737587][T14759] tpg field: 1
[ 1158.739082][T14759] tpg crop: (0,0)/1280x720
[ 1158.741042][T14759] tpg compose: (0,0)/1280x720
[ 1158.743733][T14759] tpg colorspace: 3
[ 1158.745499][T14759] tpg transfer function: 0/0
[ 1158.747635][T14759] tpg quantization: 0/0
[ 1158.749226][T14759] tpg RGB range: 0/1
[ 1158.750797][T14759] vivid-000: ==================  END STATUS  ==================
[ 1159.303777][T14770] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7167'.
[ 1159.500182][T14775] bochs-drm 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem
[ 1159.505390][T14775] netlink: 360 bytes leftover after parsing attributes in process `syz.3.7167'.
[ 1159.591159][T14781] trusted_key: encrypted_key: insufficient parameters specified
[ 1160.213135][ T5977] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1160.219172][T14797] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(11)
[ 1160.221686][T14797] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1160.225009][T14797] vhci_hcd vhci_hcd.0: Device attached
[ 1160.293134][ T5977] Bluetooth: hci1: command 0x0419 tx timeout
[ 1160.472810][T15590] usb 43-1: new high-speed USB device number 9 using vhci_hcd
[ 1160.766598][T14806] IPVS: persistence engine module ip_vs_pe_s not found
[ 1160.799869][T14812] netlink: 16 bytes leftover after parsing attributes in process `syz.2.7177'.
[ 1161.014357][T14798] vhci_hcd: connection reset by peer
[ 1161.016441][ T8326] vhci_hcd: stop threads
[ 1161.018254][ T8326] vhci_hcd: release socket
[ 1161.020233][ T8326] vhci_hcd: disconnect device
[ 1162.372939][ T5977] Bluetooth: hci1: command 0x0419 tx timeout
[ 1162.917514][T14835] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(10)
[ 1162.920314][T14835] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1162.923910][T14835] vhci_hcd vhci_hcd.0: Device attached
[ 1162.959088][T14841] FAULT_INJECTION: forcing a failure.
[ 1162.959088][T14841] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1162.964243][T14841] CPU: 3 UID: 0 PID: 14841 Comm: syz.2.7186 Not tainted syzkaller #0 PREEMPT(full) 
[ 1162.964260][T14841] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1162.964267][T14841] Call Trace:
[ 1162.964271][T14841]  <TASK>
[ 1162.964276][T14841]  dump_stack_lvl+0x16c/0x1f0
[ 1162.964293][T14841]  should_fail_ex+0x512/0x640
[ 1162.964309][T14841]  _copy_to_user+0x32/0xd0
[ 1162.964319][T14841]  simple_read_from_buffer+0xcb/0x170
[ 1162.964331][T14841]  proc_fail_nth_read+0x197/0x240
[ 1162.964342][T14841]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1162.964353][T14841]  ? security_file_permission+0x71/0x210
[ 1162.964368][T14841]  ? rw_verify_area+0xcf/0x6c0
[ 1162.964378][T14841]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1162.964389][T14841]  vfs_read+0x1e4/0xcf0
[ 1162.964401][T14841]  ? __pfx_vfs_read+0x10/0x10
[ 1162.964412][T14841]  ? rcu_is_watching+0x12/0xc0
[ 1162.964425][T14841]  ? __fget_files+0x20e/0x3c0
[ 1162.964438][T14841]  ksys_read+0x12a/0x250
[ 1162.964449][T14841]  ? __pfx_ksys_read+0x10/0x10
[ 1162.964461][T14841]  ? rcu_is_watching+0x12/0xc0
[ 1162.964472][T14841]  __do_fast_syscall_32+0x7c/0x3a0
[ 1162.964487][T14841]  do_fast_syscall_32+0x32/0x80
[ 1162.964500][T14841]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1162.964514][T14841] RIP: 0023:0xf7f82579
[ 1162.964522][T14841] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1162.964533][T14841] RSP: 002b:00000000f54a6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 1162.964543][T14841] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f54a6620
[ 1162.964550][T14841] RDX: 000000000000000f RSI: 00000000f7414ff4 RDI: 0000000000000000
[ 1162.964556][T14841] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1162.964562][T14841] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1162.964568][T14841] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1162.964577][T14841]  </TASK>
[ 1163.844484][T14838] vhci_hcd: connection closed
[ 1163.844706][ T8326] vhci_hcd: stop threads
[ 1163.847650][ T8326] vhci_hcd: release socket
[ 1163.852922][ T8326] vhci_hcd: disconnect device
[ 1164.016780][T14859] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1164.019000][T14859] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1165.325969][T14867] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1165.328101][T14867] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1165.420295][   T34] IPVS: starting estimator thread 0...
[ 1165.513109][T14878] IPVS: using max 57 ests per chain, 136800 per kthread
[ 1165.563074][T15590] vhci_hcd: vhci_device speed not set
[ 1165.656889][   T34] IPVS: starting estimator thread 0...
[ 1165.742954][T14884] IPVS: using max 57 ests per chain, 136800 per kthread
[ 1165.778644][ T8320] IPVS: stop unused estimator thread 0...
[ 1166.063576][T14896] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7202'.
[ 1166.107220][T14903] trusted_key: encrypted_key: insufficient parameters specified
[ 1166.287634][T14905] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1166.352150][T14910] trusted_key: encrypted_key: insufficient parameters specified
[ 1166.567288][ T7453] IPVS: stop unused estimator thread 0...
[ 1166.976545][T14920] FAULT_INJECTION: forcing a failure.
[ 1166.976545][T14920] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1166.980839][T14920] CPU: 3 UID: 0 PID: 14920 Comm: syz.0.7209 Not tainted syzkaller #0 PREEMPT(full) 
[ 1166.980855][T14920] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1166.980861][T14920] Call Trace:
[ 1166.980867][T14920]  <TASK>
[ 1166.980872][T14920]  dump_stack_lvl+0x16c/0x1f0
[ 1166.980896][T14920]  should_fail_ex+0x512/0x640
[ 1166.980935][T14920]  _copy_from_user+0x2e/0xd0
[ 1166.980962][T14920]  get_compat_msghdr+0xa7/0x170
[ 1166.980984][T14920]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 1166.980998][T14920]  ? kstrtouint_from_user+0x13c/0x1d0
[ 1166.981011][T14920]  ___sys_sendmsg+0x1ae/0x1d0
[ 1166.981024][T14920]  ? get_pid_task+0xfc/0x250
[ 1166.981039][T14920]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1166.981055][T14920]  ? rcu_is_watching+0x12/0xc0
[ 1166.981070][T14920]  __sys_sendmsg+0x16d/0x220
[ 1166.981083][T14920]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1166.981098][T14920]  ? rcu_is_watching+0x12/0xc0
[ 1166.981109][T14920]  __do_fast_syscall_32+0x7c/0x3a0
[ 1166.981124][T14920]  do_fast_syscall_32+0x32/0x80
[ 1166.981138][T14920]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1166.981152][T14920] RIP: 0023:0xf7f35579
[ 1166.981161][T14920] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1166.981171][T14920] RSP: 002b:00000000f545655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1166.981182][T14920] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[ 1166.981189][T14920] RDX: 00000000000040c0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1166.981195][T14920] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1166.981201][T14920] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1166.981207][T14920] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1166.981217][T14920]  </TASK>
[ 1167.141058][T14908] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1167.144187][T14908] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1167.197755][T14927] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1167.205326][T14927] netlink: 'syz.0.7210': attribute type 29 has an invalid length.
[ 1167.208240][T14927] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7210'.
[ 1167.326684][T14932] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1167.372702][T14937] trusted_key: encrypted_key: insufficient parameters specified
[ 1168.033469][T15590] usb 7-1: new high-speed USB device number 91 using dummy_hcd
[ 1168.182822][T15590] usb 7-1: Using ep0 maxpacket: 32
[ 1168.204123][T15590] usb 7-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[ 1168.207732][T15590] usb 7-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[ 1168.211916][T15590] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1168.233167][T15590] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1168.236906][T15590] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1168.241065][T15590] usb 7-1: Product: syz
[ 1168.243216][T15590] usb 7-1: Manufacturer: syz
[ 1168.245169][T15590] usb 7-1: SerialNumber: syz
[ 1168.385307][T14958] FAULT_INJECTION: forcing a failure.
[ 1168.385307][T14958] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1168.390587][T14958] CPU: 2 UID: 0 PID: 14958 Comm: syz.3.7222 Not tainted syzkaller #0 PREEMPT(full) 
[ 1168.390609][T14958] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1168.390620][T14958] Call Trace:
[ 1168.390626][T14958]  <TASK>
[ 1168.390633][T14958]  dump_stack_lvl+0x16c/0x1f0
[ 1168.390661][T14958]  should_fail_ex+0x512/0x640
[ 1168.390699][T14958]  _copy_to_user+0x32/0xd0
[ 1168.390716][T14958]  simple_read_from_buffer+0xcb/0x170
[ 1168.390732][T14958]  proc_fail_nth_read+0x197/0x240
[ 1168.390749][T14958]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1168.390765][T14958]  ? security_file_permission+0x71/0x210
[ 1168.390786][T14958]  ? rw_verify_area+0xcf/0x6c0
[ 1168.390803][T14958]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1168.390822][T14958]  vfs_read+0x1e4/0xcf0
[ 1168.390844][T14958]  ? __pfx_vfs_read+0x10/0x10
[ 1168.390861][T14958]  ? rcu_is_watching+0x12/0xc0
[ 1168.390879][T14958]  ? __fget_files+0x20e/0x3c0
[ 1168.390898][T14958]  ksys_read+0x12a/0x250
[ 1168.390915][T14958]  ? __pfx_ksys_read+0x10/0x10
[ 1168.390933][T14958]  ? rcu_is_watching+0x12/0xc0
[ 1168.390950][T14958]  __do_fast_syscall_32+0x7c/0x3a0
[ 1168.390975][T14958]  do_fast_syscall_32+0x32/0x80
[ 1168.390997][T14958]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1168.391018][T14958] RIP: 0023:0xf7f66579
[ 1168.391029][T14958] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1168.391044][T14958] RSP: 002b:00000000f5486590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 1168.391060][T14958] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000f5486620
[ 1168.391070][T14958] RDX: 000000000000000f RSI: 00000000f73f4ff4 RDI: 0000000000000000
[ 1168.391079][T14958] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1168.391088][T14958] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1168.391097][T14958] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1168.391115][T14958]  </TASK>
[ 1168.487683][T15590] usb 7-1: 0:2 : does not exist
[ 1168.493762][T15590] usb 7-1: USB disconnect, device number 91
[ 1168.520199][T14960] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1168.528671][T14316] udevd[14316]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1168.553132][T14963] tmpfs: Unknown parameter 'ÿÿÿÿX'
[ 1168.574253][T14963] kAFS: unable to lookup cell ''
[ 1168.604938][T14967] trusted_key: encrypted_key: insufficient parameters specified
[ 1169.000644][T14977] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[ 1169.003792][T14977] overlayfs: missing 'lowerdir'
[ 1169.058846][T14951] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1169.061168][T14951] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1169.094746][T14980] ALSA: mixer_oss: invalid OSS volume 'PHONEIÎ'
[ 1169.097226][T14980] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1169.127320][T14985] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1169.225190][T14988] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1169.784676][T14994] trusted_key: encrypted_key: insufficient parameters specified
[ 1169.855191][T14998] trusted_key: encrypted_key: insufficient parameters specified
[ 1170.132013][T15006] syz.2.7237 (15006): drop_caches: 2
[ 1170.134383][T15006] syz.2.7237 (15006): drop_caches: 2
[ 1170.189944][T15010] netlink: 16 bytes leftover after parsing attributes in process `syz.3.7239'.
[ 1170.249129][T15011] syz.3.7239 (15011): drop_caches: 2
[ 1170.252221][T15011] syz.3.7239 (15011): drop_caches: 2
[ 1170.696818][T15012] ALSA: mixer_oss: invalid OSS volume 'PHONEIÎ'
[ 1170.698926][T15012] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1170.720011][T15014] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1170.779674][T15019] FAULT_INJECTION: forcing a failure.
[ 1170.779674][T15019] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1170.785590][T15019] CPU: 1 UID: 0 PID: 15019 Comm: syz.2.7243 Not tainted syzkaller #0 PREEMPT(full) 
[ 1170.785606][T15019] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1170.785613][T15019] Call Trace:
[ 1170.785618][T15019]  <TASK>
[ 1170.785622][T15019]  dump_stack_lvl+0x16c/0x1f0
[ 1170.785639][T15019]  should_fail_ex+0x512/0x640
[ 1170.785654][T15019]  ? __pfx_sock_common_getsockopt+0x10/0x10
[ 1170.785671][T15019]  ? __pfx_sock_common_getsockopt+0x10/0x10
[ 1170.785686][T15019]  _copy_from_user+0x2e/0xd0
[ 1170.785702][T15019]  sctp_getsockopt+0x4bc/0x69b0
[ 1170.785718][T15019]  ? kstrtouint+0xdd/0x130
[ 1170.785730][T15019]  ? __pfx_kstrtouint+0x10/0x10
[ 1170.785746][T15019]  ? __pfx_sctp_getsockopt+0x10/0x10
[ 1170.785763][T15019]  ? kstrtouint_from_user+0x13c/0x1d0
[ 1170.785776][T15019]  ? __pfx___might_resched+0x10/0x10
[ 1170.785787][T15019]  ? rcu_is_watching+0x12/0xc0
[ 1170.785803][T15019]  ? lock_release+0x201/0x2f0
[ 1170.785992][T15019]  ? proc_fail_nth_write+0x9f/0x220
[ 1170.786016][T15019]  ? __pfx_aa_sk_perm+0x10/0x10
[ 1170.786036][T15019]  ? ksys_write+0x12a/0x250
[ 1170.786054][T15019]  ? rcu_is_watching+0x12/0xc0
[ 1170.786069][T15019]  ? lock_release+0x201/0x2f0
[ 1170.786084][T15019]  ? aa_sock_opt_perm+0xfd/0x1c0
[ 1170.786095][T15019]  ? __pfx_sock_common_getsockopt+0x10/0x10
[ 1170.786110][T15019]  do_sock_getsockopt+0x34a/0x440
[ 1170.786127][T15019]  ? __pfx_do_sock_getsockopt+0x10/0x10
[ 1170.786142][T15019]  ? lock_release+0x201/0x2f0
[ 1170.786157][T15019]  __sys_getsockopt+0x123/0x1b0
[ 1170.786171][T15019]  __ia32_sys_getsockopt+0xbc/0x160
[ 1170.786184][T15019]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[ 1170.786199][T15019]  __do_fast_syscall_32+0x7c/0x3a0
[ 1170.786214][T15019]  do_fast_syscall_32+0x32/0x80
[ 1170.786227][T15019]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1170.786241][T15019] RIP: 0023:0xf7f82579
[ 1170.786250][T15019] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1170.786260][T15019] RSP: 002b:00000000f54a655c EFLAGS: 00000296 ORIG_RAX: 000000000000016d
[ 1170.786271][T15019] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000084
[ 1170.786278][T15019] RDX: 0000000000000073 RSI: 0000000080000100 RDI: 0000000080000240
[ 1170.786284][T15019] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1170.786291][T15019] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1170.786297][T15019] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1170.786306][T15019]  </TASK>
[ 1170.812242][T15005] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1170.888240][T15005] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1170.891085][T15017] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1170.904130][T15017] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1170.941965][T15026] ALSA: mixer_oss: invalid OSS volume 'PHONEIÎ'
[ 1170.942362][T15017] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1170.948978][T15017] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1171.058924][T15032] input: syz0 as /devices/virtual/input/input48
[ 1171.125892][T15034] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(11)
[ 1171.129099][T15034] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1171.132629][T15034] vhci_hcd vhci_hcd.0: Device attached
[ 1171.382828][T15590] usb 45-1: new high-speed USB device number 6 using vhci_hcd
[ 1171.714582][T15043] trusted_key: encrypted_key: insufficient parameters specified
[ 1171.858512][T15044] ALSA: mixer_oss: invalid OSS volume 'PHONEIÎ'
[ 1171.861067][T15044] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1172.054667][T15050] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1172.102230][T15035] vhci_hcd: connection reset by peer
[ 1172.118377][ T7453] vhci_hcd: stop threads
[ 1172.120002][ T7453] vhci_hcd: release socket
[ 1172.121797][ T7453] vhci_hcd: disconnect device
[ 1172.142898][ T5977] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1172.745147][T15061] FAULT_INJECTION: forcing a failure.
[ 1172.745147][T15061] name failslab, interval 1, probability 0, space 0, times 0
[ 1172.750199][T15061] CPU: 1 UID: 0 PID: 15061 Comm: syz.4.7255 Not tainted syzkaller #0 PREEMPT(full) 
[ 1172.750223][T15061] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1172.750232][T15061] Call Trace:
[ 1172.750240][T15061]  <TASK>
[ 1172.750247][T15061]  dump_stack_lvl+0x16c/0x1f0
[ 1172.750274][T15061]  should_fail_ex+0x512/0x640
[ 1172.750302][T15061]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1172.750328][T15061]  should_failslab+0xc2/0x120
[ 1172.750352][T15061]  __kmalloc_noprof+0xd2/0x510
[ 1172.750375][T15061]  tomoyo_realpath_from_path+0xc2/0x6e0
[ 1172.750400][T15061]  ? tomoyo_profile+0x47/0x60
[ 1172.750418][T15061]  tomoyo_path_number_perm+0x245/0x580
[ 1172.750438][T15061]  ? tomoyo_path_number_perm+0x237/0x580
[ 1172.750466][T15061]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1172.750490][T15061]  ? preempt_count_add+0x76/0x150
[ 1172.750518][T15061]  ? rcu_is_watching+0x12/0xc0
[ 1172.750535][T15061]  ? __fget_files+0x204/0x3c0
[ 1172.750553][T15061]  ? hook_file_ioctl_common+0x145/0x410
[ 1172.750576][T15061]  ? lock_release+0x201/0x2f0
[ 1172.750600][T15061]  ? __fget_files+0x20e/0x3c0
[ 1172.750619][T15061]  security_file_ioctl_compat+0x9b/0x240
[ 1172.750642][T15061]  __ia32_compat_sys_ioctl+0xc3/0x370
[ 1172.750672][T15061]  __do_fast_syscall_32+0x7c/0x3a0
[ 1172.750695][T15061]  do_fast_syscall_32+0x32/0x80
[ 1172.750718][T15061]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1172.750739][T15061] RIP: 0023:0xf7fa2579
[ 1172.750750][T15061] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1172.750768][T15061] RSP: 002b:00000000f54c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1172.750785][T15061] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000008953
[ 1172.750797][T15061] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1172.750807][T15061] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1172.750818][T15061] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1172.750827][T15061] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1172.750842][T15061]  </TASK>
[ 1172.750850][T15061] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1172.785152][T15062] ALSA: mixer_oss: invalid OSS volume 'PHONEIÎ'
[ 1172.931217][T15072] ALSA: mixer_oss: invalid OSS volume 'PHONEIÎ'
[ 1172.932852][ T5977] Bluetooth: hci1: command 0x0419 tx timeout
[ 1172.935464][T15072] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1172.959668][T15074] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1172.994793][T15079] trusted_key: encrypted_key: insufficient parameters specified
[ 1173.364562][T15059] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1173.399709][T15059] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1173.458061][T15091] ALSA: mixer_oss: invalid OSS volume 'PHONEIÎ'
[ 1173.491526][T15095] FAULT_INJECTION: forcing a failure.
[ 1173.491526][T15095] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1173.497312][T15095] CPU: 2 UID: 0 PID: 15095 Comm: syz.4.7267 Not tainted syzkaller #0 PREEMPT(full) 
[ 1173.497337][T15095] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1173.497348][T15095] Call Trace:
[ 1173.497354][T15095]  <TASK>
[ 1173.497360][T15095]  dump_stack_lvl+0x16c/0x1f0
[ 1173.497387][T15095]  should_fail_ex+0x512/0x640
[ 1173.497413][T15095]  _copy_from_user+0x2e/0xd0
[ 1173.497438][T15095]  get_compat_msghdr+0xa7/0x170
[ 1173.497459][T15095]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 1173.497481][T15095]  ? kstrtouint_from_user+0x13c/0x1d0
[ 1173.497518][T15095]  ___sys_sendmsg+0x1ae/0x1d0
[ 1173.497540][T15095]  ? get_pid_task+0xfc/0x250
[ 1173.497564][T15095]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1173.497590][T15095]  ? rcu_is_watching+0x12/0xc0
[ 1173.497616][T15095]  __sys_sendmsg+0x16d/0x220
[ 1173.497638][T15095]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1173.497663][T15095]  ? rcu_is_watching+0x12/0xc0
[ 1173.497686][T15095]  __do_fast_syscall_32+0x7c/0x3a0
[ 1173.497710][T15095]  do_fast_syscall_32+0x32/0x80
[ 1173.497732][T15095]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1173.497755][T15095] RIP: 0023:0xf7fa2579
[ 1173.497767][T15095] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1173.497785][T15095] RSP: 002b:00000000f54c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1173.497803][T15095] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000e80
[ 1173.497814][T15095] RDX: 0000000000040000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1173.497828][T15095] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1173.497842][T15095] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1173.497852][T15095] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1173.497868][T15095]  </TASK>
[ 1173.629065][T15100] FAULT_INJECTION: forcing a failure.
[ 1173.629065][T15100] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1173.634527][T15100] CPU: 2 UID: 0 PID: 15100 Comm: syz.4.7269 Not tainted syzkaller #0 PREEMPT(full) 
[ 1173.634552][T15100] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1173.634563][T15100] Call Trace:
[ 1173.634570][T15100]  <TASK>
[ 1173.634577][T15100]  dump_stack_lvl+0x16c/0x1f0
[ 1173.634603][T15100]  should_fail_ex+0x512/0x640
[ 1173.634628][T15100]  _copy_to_user+0x32/0xd0
[ 1173.634644][T15100]  simple_read_from_buffer+0xcb/0x170
[ 1173.634662][T15100]  proc_fail_nth_read+0x197/0x240
[ 1173.634687][T15100]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1173.634703][T15100]  ? security_file_permission+0x71/0x210
[ 1173.634726][T15100]  ? rw_verify_area+0xcf/0x6c0
[ 1173.634744][T15100]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1173.634760][T15100]  vfs_read+0x1e4/0xcf0
[ 1173.634778][T15100]  ? rcu_is_watching+0x12/0xc0
[ 1173.634796][T15100]  ? __pfx_vfs_read+0x10/0x10
[ 1173.634814][T15100]  ? rcu_is_watching+0x12/0xc0
[ 1173.634833][T15100]  ? __fget_files+0x20e/0x3c0
[ 1173.634850][T15100]  ? __do_sys_process_mrelease+0xb0/0x420
[ 1173.634874][T15100]  ksys_read+0x12a/0x250
[ 1173.634892][T15100]  ? __pfx_ksys_read+0x10/0x10
[ 1173.634912][T15100]  ? rcu_is_watching+0x12/0xc0
[ 1173.634929][T15100]  __do_fast_syscall_32+0x7c/0x3a0
[ 1173.634954][T15100]  do_fast_syscall_32+0x32/0x80
[ 1173.634976][T15100]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1173.634998][T15100] RIP: 0023:0xf7fa2579
[ 1173.635011][T15100] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1173.635028][T15100] RSP: 002b:00000000f54c6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 1173.635046][T15100] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f54c6620
[ 1173.635057][T15100] RDX: 000000000000000f RSI: 00000000f7434ff4 RDI: 0000000000000000
[ 1173.635068][T15100] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1173.635078][T15100] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1173.635088][T15100] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1173.635104][T15100]  </TASK>
[ 1173.749213][T15102] ALSA: mixer_oss: invalid OSS volume 'PHONEIÎ'
[ 1173.751846][T15102] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1173.796168][T15104] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1174.203450][T15114] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(11)
[ 1174.206136][T15114] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1174.210224][T15114] vhci_hcd vhci_hcd.0: Device attached
[ 1174.331795][T15120] ALSA: mixer_oss: invalid OSS volume 'PHONEIÎ'
[ 1174.514931][ T8450] usb 43-1: new high-speed USB device number 10 using vhci_hcd
[ 1174.570581][T15129] netlink: 'syz.0.7278': attribute type 10 has an invalid length.
[ 1174.613025][ T5977] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1174.774112][T15131] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[ 1174.776885][T15131] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1174.780265][T15131] vhci_hcd vhci_hcd.0: Device attached
[ 1175.066990][T15115] vhci_hcd: connection reset by peer
[ 1175.069091][T11235] vhci_hcd: stop threads
[ 1175.071095][T11235] vhci_hcd: release socket
[ 1175.072637][T11235] vhci_hcd: disconnect device
[ 1175.412890][ T5977] Bluetooth: hci1: command 0x0419 tx timeout
[ 1175.519117][T15133] vhci_hcd: connection closed
[ 1175.519446][ T8326] vhci_hcd: stop threads
[ 1175.522546][ T8326] vhci_hcd: release socket
[ 1175.524126][ T8326] vhci_hcd: disconnect device
[ 1176.522841][T15590] vhci_hcd: vhci_device speed not set
[ 1176.663869][T15155] FAULT_INJECTION: forcing a failure.
[ 1176.663869][T15155] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1176.668981][T15155] CPU: 0 UID: 0 PID: 15155 Comm: syz.2.7285 Not tainted syzkaller #0 PREEMPT(full) 
[ 1176.669001][T15155] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1176.669008][T15155] Call Trace:
[ 1176.669013][T15155]  <TASK>
[ 1176.669018][T15155]  dump_stack_lvl+0x16c/0x1f0
[ 1176.669050][T15155]  should_fail_ex+0x512/0x640
[ 1176.669067][T15155]  _copy_from_user+0x2e/0xd0
[ 1176.669084][T15155]  get_compat_msghdr+0xa7/0x170
[ 1176.669102][T15155]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 1176.669115][T15155]  ? kstrtouint_from_user+0x13c/0x1d0
[ 1176.669132][T15155]  ___sys_sendmsg+0x1ae/0x1d0
[ 1176.669148][T15155]  ? get_pid_task+0xfc/0x250
[ 1176.669163][T15155]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1176.669180][T15155]  ? rcu_is_watching+0x12/0xc0
[ 1176.669220][T15155]  __sys_sendmsg+0x16d/0x220
[ 1176.669233][T15155]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1176.669249][T15155]  ? rcu_is_watching+0x12/0xc0
[ 1176.669260][T15155]  __do_fast_syscall_32+0x7c/0x3a0
[ 1176.669277][T15155]  do_fast_syscall_32+0x32/0x80
[ 1176.669291][T15155]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1176.669305][T15155] RIP: 0023:0xf7f82579
[ 1176.669313][T15155] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1176.669324][T15155] RSP: 002b:00000000f54a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1176.669335][T15155] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000600
[ 1176.669342][T15155] RDX: 0000000024004040 RSI: 0000000000000000 RDI: 0000000000000000
[ 1176.669348][T15155] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1176.669354][T15155] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1176.669360][T15155] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1176.669370][T15155]  </TASK>
[ 1176.777084][T15160] ALSA: mixer_oss: invalid OSS volume 'PHONEIÎ'
[ 1176.779140][T15160] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1176.854366][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[ 1177.002640][T15170] trusted_key: encrypted_key: insufficient parameters specified
[ 1177.502910][ T5977] Bluetooth: hci1: command 0x0419 tx timeout
[ 1177.551243][T15182] block nbd0: not configured, cannot reconfigure
[ 1178.159665][T15192] ALSA: mixer_oss: invalid OSS volume 'PHONEIÎ'
[ 1178.162476][T15192] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1178.201102][T15195] FAULT_INJECTION: forcing a failure.
[ 1178.201102][T15195] name failslab, interval 1, probability 0, space 0, times 0
[ 1178.209302][T15195] CPU: 0 UID: 0 PID: 15195 Comm: syz.4.7299 Not tainted syzkaller #0 PREEMPT(full) 
[ 1178.209325][T15195] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1178.209334][T15195] Call Trace:
[ 1178.209341][T15195]  <TASK>
[ 1178.209348][T15195]  dump_stack_lvl+0x16c/0x1f0
[ 1178.209373][T15195]  should_fail_ex+0x512/0x640
[ 1178.209397][T15195]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1178.209421][T15195]  should_failslab+0xc2/0x120
[ 1178.209441][T15195]  __kmalloc_noprof+0xd2/0x510
[ 1178.209461][T15195]  tomoyo_realpath_from_path+0xc2/0x6e0
[ 1178.209485][T15195]  ? tomoyo_profile+0x47/0x60
[ 1178.209500][T15195]  tomoyo_path_number_perm+0x245/0x580
[ 1178.209518][T15195]  ? tomoyo_path_number_perm+0x237/0x580
[ 1178.209538][T15195]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1178.209562][T15195]  ? preempt_count_add+0x76/0x150
[ 1178.209591][T15195]  ? rcu_is_watching+0x12/0xc0
[ 1178.209608][T15195]  ? __fget_files+0x204/0x3c0
[ 1178.209624][T15195]  ? hook_file_ioctl_common+0x145/0x410
[ 1178.209645][T15195]  ? lock_release+0x201/0x2f0
[ 1178.209667][T15195]  ? __fget_files+0x20e/0x3c0
[ 1178.209683][T15195]  security_file_ioctl_compat+0x9b/0x240
[ 1178.209704][T15195]  __ia32_compat_sys_ioctl+0xc3/0x370
[ 1178.209738][T15195]  __do_fast_syscall_32+0x7c/0x3a0
[ 1178.209760][T15195]  do_fast_syscall_32+0x32/0x80
[ 1178.209779][T15195]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1178.209796][T15195] RIP: 0023:0xf7fa2579
[ 1178.209805][T15195] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1178.209816][T15195] RSP: 002b:00000000f54c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1178.209826][T15195] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000004020ae46
[ 1178.209836][T15195] RDX: 0000000080000140 RSI: 0000000000000000 RDI: 0000000000000000
[ 1178.209846][T15195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1178.209855][T15195] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1178.209864][T15195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1178.209879][T15195]  </TASK>
[ 1178.209886][T15195] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1178.286952][T15191] netlink: 'syz.0.7297': attribute type 10 has an invalid length.
[ 1178.412721][T15202] ALSA: mixer_oss: invalid OSS volume 'PHONEIÎ'
[ 1178.415020][T15202] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1179.369936][T15218] ALSA: mixer_oss: invalid OSS volume 'PHONEIÎ'
[ 1179.373641][T15218] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1179.642994][ T8450] vhci_hcd: vhci_device speed not set
[ 1179.667446][T15233] FAULT_INJECTION: forcing a failure.
[ 1179.667446][T15233] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1179.673012][T15233] CPU: 2 UID: 0 PID: 15233 Comm: syz.4.7312 Not tainted syzkaller #0 PREEMPT(full) 
[ 1179.673036][T15233] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1179.673046][T15233] Call Trace:
[ 1179.673053][T15233]  <TASK>
[ 1179.673061][T15233]  dump_stack_lvl+0x16c/0x1f0
[ 1179.673086][T15233]  should_fail_ex+0x512/0x640
[ 1179.673109][T15233]  _copy_to_user+0x32/0xd0
[ 1179.673125][T15233]  simple_read_from_buffer+0xcb/0x170
[ 1179.673148][T15233]  proc_fail_nth_read+0x197/0x240
[ 1179.673199][T15233]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1179.673216][T15233]  ? security_file_permission+0x71/0x210
[ 1179.673238][T15233]  ? rw_verify_area+0xcf/0x6c0
[ 1179.673254][T15233]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1179.673268][T15233]  vfs_read+0x1e4/0xcf0
[ 1179.673288][T15233]  ? __pfx_vfs_read+0x10/0x10
[ 1179.673305][T15233]  ? rcu_is_watching+0x12/0xc0
[ 1179.673324][T15233]  ? __fget_files+0x20e/0x3c0
[ 1179.673344][T15233]  ksys_read+0x12a/0x250
[ 1179.673359][T15233]  ? __pfx_ksys_read+0x10/0x10
[ 1179.673377][T15233]  ? rcu_is_watching+0x12/0xc0
[ 1179.673394][T15233]  __do_fast_syscall_32+0x7c/0x3a0
[ 1179.673417][T15233]  do_fast_syscall_32+0x32/0x80
[ 1179.673438][T15233]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1179.673464][T15233] RIP: 0023:0xf7fa2579
[ 1179.673476][T15233] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1179.673493][T15233] RSP: 002b:00000000f54a5590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[ 1179.673509][T15233] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00000000f54a5620
[ 1179.673521][T15233] RDX: 000000000000000f RSI: 00000000f7434ff4 RDI: 0000000000000000
[ 1179.673531][T15233] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[ 1179.673541][T15233] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 1179.673549][T15233] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1179.673562][T15233]  </TASK>
[ 1180.171790][T15241] trusted_key: encrypted_key: insufficient parameters specified
[ 1180.527313][T15250] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1181.334869][T15249] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1181.337594][T15249] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1181.596523][T14902] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1181.600060][T14902] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1181.604491][T14902] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1181.607863][T14902] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1181.611206][T14902] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1181.960720][T15274] chnl_net:caif_netlink_parms(): no params data found
[ 1182.206377][T15274] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1182.208677][T15274] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1182.211019][T15274] bridge_slave_0: entered allmulticast mode
[ 1182.213560][T15274] bridge_slave_0: entered promiscuous mode
[ 1182.216397][T15274] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1182.218635][T15274] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1182.220908][T15274] bridge_slave_1: entered allmulticast mode
[ 1182.226483][T15274] bridge_slave_1: entered promiscuous mode
[ 1182.265187][T15274] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1182.270186][T15274] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1182.308701][T15274] team0: Port device team_slave_0 added
[ 1182.311946][T15274] team0: Port device team_slave_1 added
[ 1182.335542][T15274] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1182.337861][T15274] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1182.342529][T15287] trusted_key: encrypted_key: insufficient parameters specified
[ 1182.348197][T15274] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1182.363732][T15274] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1182.366041][T15274] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1182.383303][T15274] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1182.432375][T15274] hsr_slave_0: entered promiscuous mode
[ 1182.440791][T15274] hsr_slave_1: entered promiscuous mode
[ 1182.442899][T15274] debugfs: 'hsr0' already exists in 'hsr'
[ 1182.444662][T15274] Cannot create hsr debugfs directory
[ 1182.452851][    T9] usb 8-1: new high-speed USB device number 65 using dummy_hcd
[ 1182.499533][T15274] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1182.579805][T15274] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1182.613486][ T5977] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1182.622916][    T9] usb 8-1: Using ep0 maxpacket: 32
[ 1182.626538][    T9] usb 8-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[ 1182.630280][    T9] usb 8-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[ 1182.635639][    T9] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1182.643277][    T9] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1182.646131][    T9] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1182.648960][    T9] usb 8-1: Product: syz
[ 1182.650394][    T9] usb 8-1: Manufacturer: syz
[ 1182.652012][    T9] usb 8-1: SerialNumber: syz
[ 1182.716336][T15274] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1182.767529][T15274] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1182.846250][ T7453] bridge_slave_1: left allmulticast mode
[ 1182.848467][ T7453] bridge_slave_1: left promiscuous mode
[ 1182.850764][ T7453] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1182.855182][ T7453] bridge_slave_0: left allmulticast mode
[ 1182.857165][ T7453] bridge_slave_0: left promiscuous mode
[ 1182.859098][ T7453] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1182.862849][    T9] usb 8-1: 0:2 : does not exist
[ 1182.877556][    T9] usb 8-1: USB disconnect, device number 65
[ 1182.895990][T14316] udevd[14316]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb8/8-1/8-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1183.146667][ T7453] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1183.150751][ T7453] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1183.155869][ T7453] bond0 (unregistering): Released all slaves
[ 1183.186273][T15274] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1183.190639][T15274] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1183.194755][T15274] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1183.198739][T15274] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1183.227806][T15274] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1183.234808][T15274] 8021q: adding VLAN 0 to HW filter on device team0
[ 1183.239164][ T8340] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1183.241424][ T8340] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1183.258025][ T8340] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1183.260273][ T8340] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1183.356624][T15274] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1183.383678][T15274] veth0_vlan: entered promiscuous mode
[ 1183.391611][T15274] veth1_vlan: entered promiscuous mode
[ 1183.412978][ T5977] Bluetooth: hci1: command 0x0419 tx timeout
[ 1183.445672][T15274] veth0_macvtap: entered promiscuous mode
[ 1183.450251][T15274] veth1_macvtap: entered promiscuous mode
[ 1183.467776][T15274] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1183.487387][T15274] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1183.495295][ T8326] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1183.498130][ T8326] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1183.504983][ T8326] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1183.515902][ T8326] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1183.555875][ T7453] hsr_slave_0: left promiscuous mode
[ 1183.559511][ T7453] hsr_slave_1: left promiscuous mode
[ 1183.566192][ T7453] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1183.570761][ T7453] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1183.574978][ T7453] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1183.578956][ T7453] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1183.583454][ T7453] batman_adv: batadv0: Interface deactivated: team0
[ 1183.587495][ T7453] batman_adv: batadv0: Removing interface: team0
[ 1183.595210][ T7453] veth1_macvtap: left promiscuous mode
[ 1183.598006][ T7453] veth0_macvtap: left promiscuous mode
[ 1183.601374][ T7453] veth1_vlan: left promiscuous mode
[ 1183.604922][ T7453] veth0_vlan: left promiscuous mode
[ 1183.652993][ T5977] Bluetooth: hci2: command tx timeout
[ 1183.964318][ T7453] team0 (unregistering): Port device team_slave_1 removed
[ 1183.971091][ T7453] team0 (unregistering): Port device team_slave_0 removed
[ 1184.384353][ T7453] IPVS: stop unused estimator thread 0...
[ 1184.700725][T15319] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1184.703648][T15319] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1184.706356][T15319] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1184.708996][T15319] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1184.712419][T15319] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1184.732603][ T8326] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1184.736264][ T8326] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1184.747992][T11235] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1184.750612][T11235] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1185.306641][T15349] FAULT_INJECTION: forcing a failure.
[ 1185.306641][T15349] name failslab, interval 1, probability 0, space 0, times 0
[ 1185.310481][T15349] CPU: 3 UID: 0 PID: 15349 Comm: syz.0.7340 Not tainted syzkaller #0 PREEMPT(full) 
[ 1185.310497][T15349] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1185.310503][T15349] Call Trace:
[ 1185.310508][T15349]  <TASK>
[ 1185.310512][T15349]  dump_stack_lvl+0x16c/0x1f0
[ 1185.310529][T15349]  should_fail_ex+0x512/0x640
[ 1185.310545][T15349]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1185.310560][T15349]  should_failslab+0xc2/0x120
[ 1185.310575][T15349]  __kmalloc_noprof+0xd2/0x510
[ 1185.310599][T15349]  tomoyo_realpath_from_path+0xc2/0x6e0
[ 1185.310616][T15349]  ? tomoyo_profile+0x47/0x60
[ 1185.310625][T15349]  tomoyo_path_number_perm+0x245/0x580
[ 1185.310638][T15349]  ? tomoyo_path_number_perm+0x237/0x580
[ 1185.310650][T15349]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1185.310665][T15349]  ? preempt_count_add+0x76/0x150
[ 1185.310683][T15349]  ? rcu_is_watching+0x12/0xc0
[ 1185.310694][T15349]  ? __fget_files+0x204/0x3c0
[ 1185.310705][T15349]  ? hook_file_ioctl_common+0x145/0x410
[ 1185.310719][T15349]  ? lock_release+0x201/0x2f0
[ 1185.310733][T15349]  ? __fget_files+0x20e/0x3c0
[ 1185.310745][T15349]  security_file_ioctl_compat+0x9b/0x240
[ 1185.310758][T15349]  __ia32_compat_sys_ioctl+0xc3/0x370
[ 1185.310776][T15349]  __do_fast_syscall_32+0x7c/0x3a0
[ 1185.310791][T15349]  do_fast_syscall_32+0x32/0x80
[ 1185.310805][T15349]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1185.310819][T15349] RIP: 0023:0xf7f35579
[ 1185.310827][T15349] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1185.310838][T15349] RSP: 002b:00000000f545655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 1185.310849][T15349] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000008b14
[ 1185.310856][T15349] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1185.310862][T15349] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1185.310868][T15349] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1185.310874][T15349] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1185.310883][T15349]  </TASK>
[ 1185.310918][T15349] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1185.874307][T15357] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1186.160373][T15365] input: syz0 as /devices/virtual/input/input50
[ 1186.222894][ T5977] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1186.237972][T15368] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(11)
[ 1186.240846][T15368] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1186.245021][T15368] vhci_hcd vhci_hcd.0: Device attached
[ 1186.247114][T15367] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(10)
[ 1186.250263][T15367] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1186.254632][T15367] vhci_hcd vhci_hcd.0: Device attached
[ 1186.482843][T15080] usb 45-1: new high-speed USB device number 7 using vhci_hcd
[ 1186.503100][ T6056] usb 43-1: new high-speed USB device number 11 using vhci_hcd
[ 1186.782840][ T5977] Bluetooth: hci2: command 0x040f tx timeout
[ 1186.782914][T14902] Bluetooth: hci1: command 0x0419 tx timeout
[ 1186.996949][T15369] vhci_hcd: connection reset by peer
[ 1186.999546][ T8326] vhci_hcd: stop threads
[ 1187.001442][ T8326] vhci_hcd: release socket
[ 1187.003744][ T8326] vhci_hcd: disconnect device
[ 1187.012115][T15372] vhci_hcd: connection reset by peer
[ 1187.014969][ T8326] vhci_hcd: stop threads
[ 1187.016487][ T8326] vhci_hcd: release socket
[ 1187.018144][ T8326] vhci_hcd: disconnect device
[ 1188.584705][T15400] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1188.586779][T15400] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1188.588794][T15400] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1188.606809][T15404] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(11)
[ 1188.608910][T15404] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1188.611759][T15404] vhci_hcd vhci_hcd.0: Device attached
[ 1188.654281][T15414] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1188.791401][T15422] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[ 1188.794195][T15422] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1188.797448][T15422] vhci_hcd vhci_hcd.0: Device attached
[ 1188.862929][ T8450] usb 37-1: new high-speed USB device number 4 using vhci_hcd
[ 1189.153804][T15410] vhci_hcd: connection reset by peer
[ 1189.157006][T11235] vhci_hcd: stop threads
[ 1189.164171][T11235] vhci_hcd: release socket
[ 1189.173209][T11235] vhci_hcd: disconnect device
[ 1189.539632][T15424] vhci_hcd: connection closed
[ 1189.541502][T11231] vhci_hcd: stop threads
[ 1189.546306][T11231] vhci_hcd: release socket
[ 1189.548043][T11231] vhci_hcd: disconnect device
[ 1189.561873][T15418] delete_channel: no stack
[ 1189.794569][T15437] openvswitch: netlink: Message has 4784 unknown bytes.
[ 1189.797287][T15437] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1189.807595][T15437] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7364'.
[ 1189.812440][T15437] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7364'.
[ 1189.887841][T15445] trusted_key: encrypted_key: insufficient parameters specified
[ 1189.892893][T14902] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1189.894712][T15446] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1190.612940][ T5977] Bluetooth: hci1: command 0x0419 tx timeout
[ 1190.615577][T14902] Bluetooth: hci2: command 0x040f tx timeout
[ 1190.771919][T15449] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1190.775958][T15449] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1190.785904][T15449] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1190.860209][T15470] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1190.863918][T15470] netlink: 28 bytes leftover after parsing attributes in process `syz.4.7375'.
[ 1191.174600][T15487] ALSA: mixer_oss: invalid OSS volume '¢¢ð½ñL²Îýþ‰XTp0þ¥œý¦'
[ 1191.373683][T15491] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1191.375692][T15491] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1191.377809][T15491] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1191.458265][T12666] libceph: connect (1)[c::]:6789 error -101
[ 1191.502951][T12666] libceph: mon0 (1)[c::]:6789 connect error
[ 1191.563171][T15080] vhci_hcd: vhci_device speed not set
[ 1191.735169][T15505] FAULT_INJECTION: forcing a failure.
[ 1191.735169][T15505] name failslab, interval 1, probability 0, space 0, times 0
[ 1191.740314][T15505] CPU: 1 UID: 0 PID: 15505 Comm: syz.2.7384 Not tainted syzkaller #0 PREEMPT(full) 
[ 1191.740333][T15505] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1191.740342][T15505] Call Trace:
[ 1191.740347][T15505]  <TASK>
[ 1191.740358][T15505]  dump_stack_lvl+0x16c/0x1f0
[ 1191.740392][T15505]  should_fail_ex+0x512/0x640
[ 1191.740413][T15505]  should_failslab+0xc2/0x120
[ 1191.740430][T15505]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1191.740443][T15505]  ? ceph_get_tree+0x18a/0x1ec0
[ 1191.740459][T15505]  ceph_get_tree+0x18a/0x1ec0
[ 1191.740473][T15505]  ? security_capable+0x7e/0x260
[ 1191.740486][T15505]  vfs_get_tree+0x8b/0x340
[ 1191.740498][T15505]  vfs_cmd_create+0xd7/0x2a0
[ 1191.740514][T15505]  __do_sys_fsconfig+0x7b8/0xbe0
[ 1191.740531][T15505]  ? __pfx___do_sys_fsconfig+0x10/0x10
[ 1191.740549][T15505]  ? rcu_is_watching+0x12/0xc0
[ 1191.740563][T15505]  __do_fast_syscall_32+0x7c/0x3a0
[ 1191.740580][T15505]  do_fast_syscall_32+0x32/0x80
[ 1191.740595][T15505]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1191.740611][T15505] RIP: 0023:0xf70be579
[ 1191.740622][T15505] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1191.740634][T15505] RSP: 002b:00000000f546c55c EFLAGS: 00000296 ORIG_RAX: 00000000000001af
[ 1191.740646][T15505] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000000006
[ 1191.740654][T15505] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1191.740661][T15505] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1191.740668][T15505] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1191.740675][T15505] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1191.740685][T15505]  </TASK>
[ 1191.742845][ T6056] vhci_hcd: vhci_device speed not set
[ 1191.763223][T12666] libceph: connect (1)[c::]:6789 error -101
[ 1191.820316][T12666] libceph: mon0 (1)[c::]:6789 connect error
[ 1192.074641][T15499] ceph: No mds server is up or the cluster is laggy
[ 1192.718897][T15507] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1192.721002][T15507] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1192.725648][T15507] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1192.847380][T15522] FAULT_INJECTION: forcing a failure.
[ 1192.847380][T15522] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1192.852934][T15522] CPU: 2 UID: 0 PID: 15522 Comm: syz.3.7390 Not tainted syzkaller #0 PREEMPT(full) 
[ 1192.852951][T15522] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1192.852958][T15522] Call Trace:
[ 1192.852962][T15522]  <TASK>
[ 1192.852966][T15522]  dump_stack_lvl+0x16c/0x1f0
[ 1192.852984][T15522]  should_fail_ex+0x512/0x640
[ 1192.853000][T15522]  _copy_from_user+0x2e/0xd0
[ 1192.853016][T15522]  get_compat_msghdr+0xa7/0x170
[ 1192.853030][T15522]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 1192.853069][T15522]  ? kstrtouint_from_user+0x13c/0x1d0
[ 1192.853089][T15522]  ___sys_sendmsg+0x1ae/0x1d0
[ 1192.853105][T15522]  ? get_pid_task+0xfc/0x250
[ 1192.853120][T15522]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1192.853139][T15522]  ? rcu_is_watching+0x12/0xc0
[ 1192.853154][T15522]  __sys_sendmsg+0x16d/0x220
[ 1192.853180][T15522]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1192.853195][T15522]  ? rcu_is_watching+0x12/0xc0
[ 1192.853206][T15522]  __do_fast_syscall_32+0x7c/0x3a0
[ 1192.853229][T15522]  do_fast_syscall_32+0x32/0x80
[ 1192.853247][T15522]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1192.853265][T15522] RIP: 0023:0xf7f66579
[ 1192.853276][T15522] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1192.853290][T15522] RSP: 002b:00000000f548655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 1192.853306][T15522] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800006c0
[ 1192.853317][T15522] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1192.853325][T15522] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1192.853331][T15522] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 1192.853337][T15522] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1192.853347][T15522]  </TASK>
[ 1193.962839][ T8450] vhci_hcd: vhci_device speed not set
[ 1194.440842][T15553] netlink: 'syz.2.7396': attribute type 10 has an invalid length.
[ 1194.442787][T15545] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1194.445065][T15553] batman_adv: batadv0: Adding interface: team0
[ 1194.447508][T15553] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1194.452875][T15545] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1194.455657][T15553] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[ 1194.457508][T15545] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1194.464138][T15553] netlink: 'syz.2.7396': attribute type 10 has an invalid length.
[ 1194.466944][T15553] netlink: 2 bytes leftover after parsing attributes in process `syz.2.7396'.
[ 1194.470099][T15553] team0: entered promiscuous mode
[ 1194.471840][T15553] team_slave_0: entered promiscuous mode
[ 1194.474159][T15553] team_slave_1: entered promiscuous mode
[ 1194.480368][T15553] 8021q: adding VLAN 0 to HW filter on device team0
[ 1194.484182][T15553] batman_adv: batadv0: Interface activated: team0
[ 1194.486743][T15553] batman_adv: batadv0: Interface deactivated: team0
[ 1194.489092][T15553] batman_adv: batadv0: Removing interface: team0
[ 1194.491955][T15553] bridge0: port 3(team0) entered blocking state
[ 1194.495619][T15553] bridge0: port 3(team0) entered disabled state
[ 1194.498725][T15553] team0: entered allmulticast mode
[ 1194.500779][T15553] team_slave_0: entered allmulticast mode
[ 1194.502704][T15553] team_slave_1: entered allmulticast mode
[ 1194.505360][T15553] bridge0: port 3(team0) entered blocking state
[ 1194.507364][T15553] bridge0: port 3(team0) entered forwarding state
[ 1194.969130][T15573] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1194.972460][T15573] syzkaller0: entered promiscuous mode
[ 1194.976111][T15573] syzkaller0: entered allmulticast mode
[ 1195.016926][T15572] tipc: Resetting bearer <eth:syzkaller0>
[ 1195.020988][T15572] tipc: Disabling bearer <eth:syzkaller0>
[ 1195.311700][T15581] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1195.313969][T15581] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1195.316759][T15581] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1195.575180][T15592] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1195.577887][T15592] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1195.580491][T15592] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1195.645481][T15597] ALSA: mixer_oss: invalid OSS volume ''
[ 1197.281725][T15624] trusted_key: encrypted_key: insufficient parameters specified
[ 1197.554331][T15625] ALSA: mixer_oss: invalid OSS volume ''
[ 1197.573165][T14902] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1197.652884][T14902] Bluetooth: hci2: command 0x040f tx timeout
[ 1197.652940][ T5977] Bluetooth: hci1: command 0x0419 tx timeout
[ 1197.751135][T15628] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1197.753640][T15628] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1197.755719][T15628] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1197.822134][T15642] ALSA: mixer_oss: invalid OSS volume ''
[ 1198.959176][T15674] tipc: Started in network mode
[ 1198.961267][T15674] tipc: Node identity , cluster identity 4711
[ 1198.963871][T15674] tipc: Failed to obtain node identity
[ 1198.965756][T15674] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[ 1198.969831][T15674] syzkaller0: entered promiscuous mode
[ 1198.971959][T15674] syzkaller0: entered allmulticast mode
[ 1198.976652][T15674] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1500) !
[ 1198.997694][T15674] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7435'.
[ 1199.274730][T15678] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1199.277910][T15678] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1199.282557][T15678] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1199.287312][T15685] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[ 1199.289881][T15685] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1199.293808][T15685] vhci_hcd vhci_hcd.0: Device attached
[ 1199.532863][ T6348] usb 45-1: new high-speed USB device number 8 using vhci_hcd
[ 1199.850274][T15698] tipc: Started in network mode
[ 1199.852135][T15698] tipc: Node identity e255b3e19d6e, cluster identity 4711
[ 1199.855065][T15698] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1199.858193][T15698] syzkaller0: entered promiscuous mode
[ 1199.860034][T15698] syzkaller0: entered allmulticast mode
[ 1199.868306][   T34] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[ 1199.875222][   T34] hid-generic 0000:0000:0000.0022: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[ 1200.007075][T15689] vhci_hcd: connection reset by peer
[ 1200.009162][ T8340] vhci_hcd: stop threads
[ 1200.010574][ T8340] vhci_hcd: release socket
[ 1200.012194][ T8340] vhci_hcd: disconnect device
[ 1200.031173][T15696] tipc: Resetting bearer <eth:syzkaller0>
[ 1200.057067][T15696] tipc: Disabling bearer <eth:syzkaller0>
[ 1200.303308][T15714] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(10)
[ 1200.305725][T15714] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1200.312015][T15714] vhci_hcd vhci_hcd.0: Device attached
[ 1200.552814][ T6056] usb 41-1: new high-speed USB device number 7 using vhci_hcd
[ 1200.940238][T15721] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1200.944605][T15721] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1200.948260][T15721] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1201.277822][T15715] vhci_hcd: connection reset by peer
[ 1201.280213][ T8320] vhci_hcd: stop threads
[ 1201.282533][ T8320] vhci_hcd: release socket
[ 1201.285618][ T8320] vhci_hcd: disconnect device
[ 1201.880375][T15734] ALSA: mixer_oss: invalid OSS volume 'PHONEIÎ'
[ 1202.863180][T14902] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1203.022909][ T5977] Bluetooth: hci1: command 0x0419 tx timeout
[ 1203.025690][T14902] Bluetooth: hci2: command 0x040f tx timeout
[ 1203.336599][T15274] BUG: sleeping function called from invalid context at mm/vmalloc.c:3409
[ 1203.339351][T15274] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 15274, name: syz-executor
[ 1203.345578][T15274] preempt_count: 1, expected: 0
[ 1203.347576][T15274] RCU nest depth: 0, expected: 0
[ 1203.350275][T15274] INFO: lockdep is turned off.
[ 1203.352333][T15274] Preemption disabled at:
[ 1203.352345][T15274] [<ffffffff8b91af20>] schedule+0xe0/0x3a0
[ 1203.358163][T15274] CPU: 1 UID: 0 PID: 15274 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[ 1203.358191][T15274] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1203.358202][T15274] Call Trace:
[ 1203.358208][T15274]  <TASK>
[ 1203.358215][T15274]  dump_stack_lvl+0x16c/0x1f0
[ 1203.358241][T15274]  __might_resched+0x3c0/0x5e0
[ 1203.358261][T15274]  ? __pfx___might_resched+0x10/0x10
[ 1203.358278][T15274]  ? pcpu_block_update+0x562/0x660
[ 1203.358303][T15274]  ? pcpu_chunk_relocate+0x126/0x190
[ 1203.358323][T15274]  vfree+0x75/0xb50
[ 1203.358347][T15274]  ? rcu_is_watching+0x12/0xc0
[ 1203.358364][T15274]  ? kfree+0x24f/0x4d0
[ 1203.358380][T15274]  ? free_percpu+0x6db/0x13c0
[ 1203.358400][T15274]  futex_hash_free+0x98/0xc0
[ 1203.358420][T15274]  __mmdrop+0x33f/0x580
[ 1203.358439][T15274]  ? rcu_is_watching+0x12/0xc0
[ 1203.358456][T15274]  finish_task_switch.isra.0+0x7a4/0xc10
[ 1203.358474][T15274]  ? __switch_to+0x7a5/0x11a0
[ 1203.358496][T15274]  __schedule+0x1198/0x5de0
[ 1203.358514][T15274]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1203.358536][T15274]  ? debug_object_activate+0x2ec/0x4c0
[ 1203.358557][T15274]  ? __pfx_debug_object_activate+0x10/0x10
[ 1203.358579][T15274]  ? __pfx___schedule+0x10/0x10
[ 1203.358601][T15274]  ? schedule+0x2d7/0x3a0
[ 1203.358618][T15274]  ? rcu_is_watching+0x12/0xc0
[ 1203.358635][T15274]  ? lock_release+0x201/0x2f0
[ 1203.358658][T15274]  schedule+0xe7/0x3a0
[ 1203.358676][T15274]  do_nanosleep+0x21a/0x570
[ 1203.358693][T15274]  ? __pfx_do_nanosleep+0x10/0x10
[ 1203.358709][T15274]  ? __asan_memset+0x23/0x50
[ 1203.358726][T15274]  ? __hrtimer_setup+0x176/0x280
[ 1203.358752][T15274]  hrtimer_nanosleep+0x155/0x380
[ 1203.358769][T15274]  ? __pfx_hrtimer_nanosleep+0x10/0x10
[ 1203.358787][T15274]  ? __pfx_hrtimer_wakeup+0x10/0x10
[ 1203.358813][T15274]  ? get_old_timespec32+0xda/0x130
[ 1203.358834][T15274]  ? __pfx_get_old_timespec32+0x10/0x10
[ 1203.358856][T15274]  common_nsleep+0xa1/0xd0
[ 1203.358877][T15274]  __ia32_sys_clock_nanosleep_time32+0x33d/0x4f0
[ 1203.358896][T15274]  ? __pfx___ia32_sys_clock_nanosleep_time32+0x10/0x10
[ 1203.358914][T15274]  ? rcu_is_watching+0x12/0xc0
[ 1203.358932][T15274]  __do_fast_syscall_32+0x7c/0x3a0
[ 1203.358951][T15274]  do_fast_syscall_32+0x32/0x80
[ 1203.358968][T15274]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1203.358985][T15274] RIP: 0023:0xf70be579
[ 1203.358995][T15274] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1203.359008][T15274] RSP: 002b:00000000ffc31320 EFLAGS: 00000293 ORIG_RAX: 000000000000010b
[ 1203.359022][T15274] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000
[ 1203.359030][T15274] RDX: 00000000ffc31354 RSI: 00000000ffc3134c RDI: 00000000ffc31354
[ 1203.359040][T15274] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1203.359050][T15274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1203.359060][T15274] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1203.359075][T15274]  </TASK>
[ 1203.488704][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1204.683204][ T6348] vhci_hcd: vhci_device speed not set
[ 1205.092995][ T5977] Bluetooth: hci2: command 0x040f tx timeout
[ 1205.643470][ T6056] vhci_hcd: vhci_device speed not set

VM DIAGNOSIS:
00:25:47  Registers:
info registers vcpu 0

CPU#0
RAX=0000000003973f8c RBX=0000000000000000 RCX=ffffffff8b908bf9 RDX=ffffed1005646656
RSI=ffffffff8c162c80 RDI=ffffffff8190cca1 RBP=fffffbfff1c52ef8 RSP=ffffffff8e207e08
R8 =0000000000000000 R9 =ffffed1005646655 R10=ffff88802b2332ab R11=0000000000000001
R12=0000000000000000 R13=ffffffff8e2977c0 R14=ffffffff90ab7690 R15=0000000000000000
RIP=ffffffff8b90775f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880974c4000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080200000 CR3=000000006fd59000 CR4=00352ef0
DR0=000000005ffffffd DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff85616c00 RDI=ffffffff9b0f8680 RBP=ffffffff9b0f8640 RSP=ffffc900034973a0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=696d6f74615f6e69
R12=0000000000000000 R13=0000000000000020 R14=fffffbfff361f122 R15=dffffc0000000000
RIP=ffffffff85616c27 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880975c4000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080002280 CR3=0000000062404000 CR4=00352ef0
DR0=000000005ffffffd DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=0000000000000000 RCX=ffffffff81cb36af RDX=0000000000000000
RSI=ffffffff8c162c80 RDI=0000000000000000 RBP=00000000f7f66500 RSP=ffffc900044276d8
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=000000000000001e
R12=ffffffff81a67470 R13=ffffc900044277f8 R14=0000000000000000 R15=ffff888023a34880
RIP=ffffffff81a18020 RFL=00000292 [--S-A--] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880976c4000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7f555c0 CR3=0000000060a98000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000002d9b13ddbcc RBX=ffff88802b523a00 RCX=00000000000006e0 RDX=00000000000002d9
RSI=ffff88802b523a00 RDI=000000000009bdcc RBP=000000000009bdcc RSP=ffffc900005e8ec8
R8 =0000000000000005 R9 =000000000000003f R10=0000000000000019 R11=ffffc900005e8ff8
R12=0000000000000000 R13=0000000000000000 R14=0000000000000019 R15=ffff88802b527c80
RIP=ffffffff81680db5 RFL=00000003 [------C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f88dd148300 ffffffff 00c00000
GS =0000 ffff8880977c4000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000558f9c1f1f40 CR3=000000004b7bf000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4bd72e8b8c859130 410707a500b9c36b
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 443320e502d7378c 4bc8f888bc604499
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 db30edb0f7e2578a e1520724e6e84c1d
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1eec906851ddfcce 48192c47f32ffc0b
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000001cc0
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000043201000000 befc008001000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 02d9b08202d9b0b6 02d9b0e701000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6ec6008002d9b099 0100000064e00000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 02d9b0e505a00080 fb680080f1460000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 bc38f504fd5800ef ce9f05d22186eab6
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ce6010257d4ac781 19dc30f925da5cc8
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=d39c9e20764af60b 9944326f24fce5d4 d39c9e20764af60b 9944326f24fce5d4 d39c9e20764af60b 9944326f24fce5d4 d39c9e20764af60b 9944326f24fce5d4
ZMM18=d0d2921c63e4caa0 4ea4a1acd7372e0b d0d2921c63e4caa0 4ea4a1acd7372e0b d0d2921c63e4caa0 4ea4a1acd7372e0b d0d2921c63e4caa0 4ea4a1acd7372e0b
ZMM19=9034000000000000 0000000000000004 9034000000000000 0000000000000003 9034000000000000 0000000000000002 9034000000000000 0000000000000001
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0180030fffffffff 0204080000080002 08007c08000a014c d40008000fffffff
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff02000800200800 1d80020100000008 060c0168d0000000 0000007b00efe700
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 120000001220081d 8003000800060800 2008000601719c00 0800208608002008
ZMM24=09c602a309c602a3 09c602a309c602a3 09c602a309c602a3 09c602a309c602a3 09c602a309c602a3 09c602a309c602a3 09c602a309c602a3 09c602a309c602a3
ZMM25=163b387b163b387b 163b387b163b387b 163b387b163b387b 163b387b163b387b 163b387b163b387b 163b387b163b387b 163b387b163b387b 163b387b163b387b
ZMM26=c0f91c50c0f91c50 c0f91c50c0f91c50 c0f91c50c0f91c50 c0f91c50c0f91c50 c0f91c50c0f91c50 c0f91c50c0f91c50 c0f91c50c0f91c50 c0f91c50c0f91c50
ZMM27=c93277b6c93277b6 c93277b6c93277b6 c93277b6c93277b6 c93277b6c93277b6 c93277b6c93277b6 c93277b6c93277b6 c93277b6c93277b6 c93277b6c93277b6
ZMM28=00000200000001ff 000001fe000001fd 000001fc000001fb 000001fa000001f9 000001f8000001f7 000001f6000001f5 000001f4000001f3 000001f2000001f1
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=5d5200005d520000 5d5200005d520000 5d5200005d520000 5d5200005d520000 5d5200005d520000 5d5200005d520000 5d5200005d520000 5d5200005d520000