last executing test programs:

4.408663991s ago: executing program 3 (id=531):
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @loopback, @broadcast}, 0xc)
socket$pppl2tp(0x18, 0x1, 0x1)
socket(0x10, 0x3, 0x0)
setitimer(0x2, &(0x7f0000000000)={{0x77359400}, {0x77359400}}, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000140), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_audit(0x10, 0x3, 0x9)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETLINK(r2, 0x400454cd, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000c80)={'lo\x00'})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
mlock(&(0x7f0000c00000/0x400000)=nil, 0x400000)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
mkdir(&(0x7f00000001c0)='./file0\x00', 0x1c2)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', &(0x7f0000002100), 0x210011, &(0x7f0000000000)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x4000}})
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0xa0d061, 0x0)
mkdir(&(0x7f0000000000)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
open(&(0x7f0000000000)='.\x00', 0x0, 0x0)

2.603061776s ago: executing program 2 (id=538):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4)
r1 = userfaultfd(0x801)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x800083}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r2 = timerfd_create(0x0, 0x0)
r3 = dup2(r1, r2)
ioctl$UFFDIO_UNREGISTER(r3, 0x8010aa01, &(0x7f0000000000)={&(0x7f000085a000/0x1000)=nil, 0x1000})
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendmsg$inet(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000003c0)='|', 0x1}], 0x1}, 0x3592de163c709bb1)
write$binfmt_elf64(r0, 0x0, 0x40)
socket$packet(0x11, 0x2, 0x300)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, 0x0, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'cts(cbc(serpent))\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, 0x0, 0x0)
r5 = accept4(r4, 0x0, 0x0, 0x0)
sendmsg$OSF_MSG_ADD(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[], 0xe0c}}, 0x0)
recvmmsg(r5, &(0x7f0000000040)=[{{0x0, 0x0, &(0x7f00000029c0)=[{&(0x7f0000000380)=""/146, 0x92}, {&(0x7f00000008c0)=""/139, 0x8b}], 0x2}, 0x3}], 0x1, 0x0, 0x0)

2.420806713s ago: executing program 2 (id=539):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
setns(r1, 0x24020000)
syz_clone(0x498144ee7f42e149, 0x0, 0x700, 0x0, 0x0, 0x0)

2.160338954s ago: executing program 3 (id=540):
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x3c, 0x3, 0x8, 0x0, 0x0, 0x0, {}, [@CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_DATA={0x1c, 0x4, 0x0, 0x1, @sctp=[@CTA_TIMEOUT_SCTP_COOKIE_ECHOED={0x8}, @CTA_TIMEOUT_SCTP_SHUTDOWN_SENT={0x8, 0x5, 0x1, 0x0, 0x8000000}, @CTA_TIMEOUT_SCTP_HEARTBEAT_SENT={0x21, 0x8, 0x1, 0x0, 0x2}]}]}, 0x3c}}, 0x0)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
write(r0, &(0x7f0000000340), 0x11000)
io_setup(0x3ff, &(0x7f0000000500)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000040)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r3=>0x0})
sendto$packet(r2, &(0x7f0000000080)="18", 0x10, 0x0, &(0x7f00000000c0)={0x11, 0xe, r3, 0x1, 0x0, 0x6, @multicast}, 0x14)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r5, 0xc02064b2, &(0x7f0000000240)={0x4, 0x5, 0x9})
r6 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r6, 0xc02064b2, &(0x7f0000000100)={0x6, 0x1f, 0x6})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r5, 0xc02064b2, &(0x7f00000002c0)={0x5, 0x8, 0xffff})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r6, 0xc02064b2, &(0x7f0000000000)={0x7fff, 0x8, 0x100})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r5, 0xc02064b2, &(0x7f0000000040)={0x2, 0x83, 0x4003})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r6, 0xc02064b2, &(0x7f0000000140)={0x9, 0x9, 0x6c})
dup3(r6, r5, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r5, 0xc02064b2, &(0x7f0000000280)={0x406, 0xf3, 0x1})
close_range(r4, 0xffffffffffffffff, 0x0)
r7 = eventfd2(0x8, 0x80800)
io_cancel(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x3, 0x40, r2, &(0x7f0000000240)="768574f4806b77faf614df407774e96ebbd4a9dfb89fb454b765d5443da0d88045899f704220d46908fee82d162a26b1b9998b4f3334b44eeb546c51c818470b3ef795bca38adb9b6229ce41bd1323f7c28500431f6a8a27bf6438f37ab4aa0ebce14553ee7493466c96d4a989fc094c720abde3db7a5f30735fefb6d85bc77e77068ebb61609bf1ae407ca13c1f0a85e3b762fb730e7318fd3f4b5303aac2264d05fbe49aa475", 0xa7, 0x6, 0x0, 0x2, r7}, &(0x7f0000000080))
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/kernel/crash_elfcorehdr_size', 0x0, 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000008080)={0x0, 0x0, &(0x7f0000000a40)=[{0x0, 0x2198}], 0x1}, 0x0)
r10 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r10, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c)
sendmmsg$inet6(r10, &(0x7f0000007e40), 0x4000000000000aa, 0x9821)
pread64(r9, &(0x7f0000000040)=""/41, 0x29, 0x0)
sendmsg$nl_generic(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[], 0x78}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

1.908865828s ago: executing program 2 (id=541):
r0 = syz_open_dev$vbi(&(0x7f0000000080), 0x1, 0x2)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141a82, 0x0)
r3 = dup(r2)
r4 = open(&(0x7f0000000100)='./bus\x00', 0x40542, 0x0)
ftruncate(r4, 0xee72)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f0000000180))
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000004400)=ANY=[], 0x118)
syncfs(0xffffffffffffffff)
sendfile(r3, r4, 0x0, 0x8000fffffffe)
r5 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
readv(r5, &(0x7f0000000100)=[{&(0x7f00000012c0)=""/141, 0x8d}], 0x1)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x3, 0x4, &(0x7f0000000200)=@framed={{}, [@generic={0x81, 0x0, 0x0, 0x68}]}, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
socket$unix(0x1, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRESDEC=r1], 0x48)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r6, 0x89f3, 0x0)
write$tun(r3, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000)=0x1, 0x0)
getsockopt$EBT_SO_GET_INIT_ENTRIES(r6, 0x0, 0x83, &(0x7f0000000480)={'nat\x00', 0x0, 0x4, 0x49, [0x3, 0x94, 0x2, 0xe, 0xa5e, 0x9f], 0x4, &(0x7f0000000000)=[{}, {}, {}, {}], &(0x7f0000000340)=""/73}, &(0x7f0000000040)=0x50)
ioctl$VIDIOC_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000280)={0x0, @bt={0x12, 0x7c9, 0x1, 0x1, 0xd59f80, 0x4, 0x5, 0x7, 0x8, 0x8, 0x722, 0xe72, 0x7, 0x8, 0x2e, 0x8, {0xffff945a, 0x1}, 0x3, 0xed}})

1.387679454s ago: executing program 0 (id=543):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$RTC_SET_TIME(r1, 0x40247007, &(0x7f0000000040)={0x2, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1})

1.382917386s ago: executing program 0 (id=544):
r0 = creat(&(0x7f0000000240)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f00000002c0)=ANY=[@ANYRESHEX, @ANYRES8=r1, @ANYRESHEX, @ANYRES64=r1], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, 0x0, 0x0)
r4 = syz_open_dev$sndpcmp(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_UNLINK(r4, 0xc0844123, 0x20000ff0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000540)=ANY=[@ANYBLOB="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", @ANYRES8=r4, @ANYRESDEC=r4, @ANYRES8=0x0, @ANYRES8, @ANYRESHEX, @ANYRES64=r0], 0xa18)
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000000c0)="2e00000010008188040f46ecdb4cb9cca7480ef43c000000e3bd6efb440309000e000a0010000000ba8000001201", 0x2e}], 0x1}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r6, 0x10e, 0x7, &(0x7f0000000100)={0x800, 0xdbbe, 0x0, 0x5}, 0x10)
rseq(0x0, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
syz_open_dev$evdev(&(0x7f0000000000), 0xc0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r7, &(0x7f0000019680)=""/102392, 0x18ff8)
r8 = getpid()
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000001000)=ANY=[@ANYBLOB='trans=virtio,noextend,access=any,cache=fscache,version=9p2000.u'])
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000000)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
open(&(0x7f0000000380)='./file0\x00', 0x0, 0x0)
getpgrp(r8)

1.180898063s ago: executing program 3 (id=545):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x2f00, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="440000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="e3ff0000000000002400128009000100626f6e64000000001400028005001b00000000000500010006"], 0x44}}, 0x0)
bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
listen(r0, 0x4)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r2, &(0x7f0000001080)='X', 0x1, 0x4048800, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$bt_hci(r2, 0x84, 0x81, &(0x7f0000000080)=""/4065, &(0x7f0000001200)=0xfe1)

915.071735ms ago: executing program 2 (id=546):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000001980)={0xb0, r1, 0x5, 0x0, 0xc000000, {{}, {@val={0x8, 0x3, r3}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x5f, 0xe, {{{}, {}, @device_a, @device_b}, 0x0, @default, 0x0, @val={0x0, 0x6, @default_ibss_ssid}, @void, @void, @val={0x4, 0x6}, @void, @val={0x5, 0x3, {0x2, 0x2, 0x3}}, @void, @void, @val={0x3c, 0x4, {0x1, 0x6, 0xb8, 0x4}}, @val={0x2d, 0x1a, {0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x1}, 0x1, 0x2}}, @void, @void, @void}}], @crypto_settings=[@NL80211_ATTR_PMK={0x24, 0xfe, "db49ca8844884f1298aff1da74c02abf4f9d5da05f886c78dc3e64d04ce6f75b"}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0xb0}, 0x1, 0x0, 0x0, 0x90}, 0x0)

800.150016ms ago: executing program 1 (id=547):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x74, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}, @NFTA_SET_EXPR={0x2c, 0x11, 0x0, 0x1, @target={{0xb}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_TARGET_INFO={0x4}, @NFTA_TARGET_REV={0x8}, @NFTA_TARGET_NAME={0xa, 0x1, 'AUDIT\x00'}]}}}, @NFTA_SET_HANDLE={0xc, 0x10, 0x1, 0x0, 0x3}]}], {0x14, 0x10}}, 0xbc}, 0x1, 0x0, 0x0, 0x400d5}, 0x0)
sendmsg$NFT_MSG_GETSET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={0x20, 0xa, 0xa, 0x301, 0x0, 0x0, {0xa}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x20}}, 0x12)
r2 = openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$apparmor_current(r2, &(0x7f00000000c0)=@hat={'changehat '}, 0x1d)
r3 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r3, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r3, 0x4)
r4 = accept4(r3, 0x0, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r4, 0x84, 0x14, &(0x7f0000000000), &(0x7f0000000080)=0x8)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_GET(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r6, 0x325, 0x0, 0x0, {0x8}}, 0x14}}, 0x0)
sendmsg$L2TP_CMD_SESSION_GET(r4, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x34, r6, 0x0, 0x70bd26, 0x25dfdbfe, {}, [@L2TP_ATTR_UDP_CSUM={0x5, 0xd, 0x1}, @L2TP_ATTR_IP_SADDR={0x8, 0x18, @remote}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0x2}, @L2TP_ATTR_UDP_ZERO_CSUM6_RX={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x40804}, 0x200400c0)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x1, 0x20}, 0xc)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000000180)=0x3, 0x4)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x8a}, 0x9c)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f00000000c0)={0x1, 0x2, 0x10, 0x9, 0x0, 0x2, 0x10, 0x44, 0x6, 0x0, 0x77, 0x5, 0x8, 0xb}, 0xe)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000a00)={0x0, @in6={{0xa, 0x4e23, 0x0, @loopback}}, 0x7, 0x0, 0xf401, 0x0, 0x54}, 0x9c)

799.841211ms ago: executing program 2 (id=548):
socket$netlink(0x10, 0x3, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000000000000000000ac1e000100000000000000000000000000000000000000000a0080800000", @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="000090"], 0xb8}}, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x2500, &(0x7f0000000440)={&(0x7f0000000000)=ANY=[@ANYBLOB="5000000014"], 0x188}}, 0x0)

735.782372ms ago: executing program 1 (id=550):
socket$netlink(0x10, 0x3, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000000000000000000ac1e000100000000000000000000000000000000000000000a0080800000", @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="000090"], 0xb8}}, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x2500, &(0x7f0000000440)={&(0x7f0000000000)=ANY=[@ANYBLOB="6501000014"], 0x188}}, 0x0) (fail_nth: 4)

646.26214ms ago: executing program 2 (id=551):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
unshare(0x22020600)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)={0x14, r1, 0x1, 0x0, 0x0, {0x5}}, 0x14}}, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000000)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r2 = socket$inet6(0xa, 0x2, 0x3a)
connect$inet6(r2, &(0x7f0000001bc0)={0xa, 0x0, 0x694, @local, 0x5}, 0x8)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000300)={0x73622a85, 0x1})
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r5 = dup3(r4, r3, 0x0)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1, 0x11, r6, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r6, 0x4018620d, &(0x7f0000000040))
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000500)={0x4c, 0x0, &(0x7f0000000580)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x68)
r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r7, &(0x7f00000001c0)=[{&(0x7f0000033a80)=""/102386, 0x18ff2}], 0x1, 0x0, 0x0)
socket(0x0, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd='])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
socket$nl_netfilter(0x10, 0x3, 0xc)

624.534824ms ago: executing program 1 (id=552):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000300)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
mkdir(&(0x7f0000000200)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chroot(&(0x7f0000000000)='./bus\x00')
openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x18)

469.090077ms ago: executing program 1 (id=553):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$IP_SET_OP_GET_BYINDEX(r1, 0x1, 0x53, &(0x7f0000000000), &(0x7f0000000040)=0x28)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x1ff)
mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x4, 0x11, r2, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000200)='htcp\x00', 0x5)

392.952596ms ago: executing program 0 (id=554):
gettid()
socket$inet6_sctp(0xa, 0x0, 0x84) (async)
r0 = socket$inet_sctp(0x2, 0x0, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0xd, 0x0, 0x0) (async)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000000400)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}}, 0x90) (async)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, 0x0) (async)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) (async)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=@newsa={0x134, 0x10, 0x633, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0xa}, {@in, 0x0, 0x32}, @in6=@mcast2, {}, {}, {}, 0x0, 0x0, 0x2}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}]}, 0x134}}, 0x0) (async)
r3 = syz_open_dev$ttys(0xc, 0x2, 0x1) (async)
r4 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet_int(r4, 0x0, 0xf, &(0x7f0000000340)=0xfffffffffffffff9, 0x4) (async, rerun: 32)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) (rerun: 32)
getsockopt$bt_l2cap_L2CAP_OPTIONS(r5, 0x6, 0x3, 0x0, &(0x7f00000000c0)) (async)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000000080)=[@in6={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, @in6={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @dev}], 0x58)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000000)=0x15) (async, rerun: 32)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x4e, 0x4e, 0x7, [@struct={0xc, 0x1, 0x0, 0x4, 0x0, 0x800, [{0x8, 0x4, 0x918}]}, @datasec={0x9, 0x1, 0x0, 0xf, 0x2, [{0x4, 0x1f32, 0x80}], "3cb1"}, @restrict={0x0, 0x0, 0x0, 0xb, 0x3}, @var={0x6, 0x0, 0x0, 0xe, 0x4, 0x1}]}, {0x0, [0x5f, 0x30, 0x2e, 0x2e, 0x2e]}}, &(0x7f0000000500)=""/188, 0x6f, 0xbc, 0x0, 0x6, 0x0, @void, @value}, 0x20) (async, rerun: 32)
r6 = socket$inet6(0xa, 0x3, 0x3c)
setsockopt$inet6_int(r6, 0x29, 0x18, &(0x7f0000000180)=0x6729, 0x4) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00'}, 0x10) (async, rerun: 32)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (rerun: 32)
bind$bt_hci(r7, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r7, &(0x7f0000000000), 0x6)
r8 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r8, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) (async)
read$FUSE(r8, &(0x7f000000ac00)={0x2020, 0x0, <r9=>0x0}, 0x2020)
write$FUSE_INIT(r8, &(0x7f0000004200)={0x50, 0x0, r9, {0x7, 0x1f, 0x0, 0xeea390}}, 0x50) (async)
syz_fuse_handle_req(r8, &(0x7f00000066c0)="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", 0x2000, &(0x7f0000008b40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)={0x90, 0x0, 0x0, {0x100000000404, 0x0, 0xc, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000}}}, 0x0, 0x0, 0x0, 0x0}) (async)
readlink(&(0x7f0000000040)='./file0/file0/file0/file0/file0\x00', &(0x7f0000000080)=""/167, 0xa7)

392.841241ms ago: executing program 1 (id=555):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="38000000090601020000000000000000070000000900020073797a31000000000500010007000000100007800c00"], 0x38}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000084)

327.84426ms ago: executing program 3 (id=556):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg(r1, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x40)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xc, 0xd, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r0, @ANYRES16=r0], &(0x7f0000000840)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
io_setup(0x7, &(0x7f0000000000)=<r3=>0x0)
r4 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
setsockopt$WPAN_WANTACK(r4, 0x0, 0x0, &(0x7f00000000c0), 0x4)
r5 = socket$netlink(0x10, 0x3, 0x4)
syz_genetlink_get_family_id$batadv(&(0x7f00000001c0), r5)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r6 = socket$l2tp6(0xa, 0x2, 0x73)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='timers\x00')
r8 = socket(0x10, 0x3, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket(0x10, 0x803, 0x0)
r11 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r11)
getsockname$packet(r11, &(0x7f0000000100)={0x11, 0x0, <r12=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r12, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r12, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000780)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001300)=@newtfilter={0x78, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r12, {0x3, 0x9}, {}, {0xd}}, [@filter_kind_options=@f_fw={{0x7}, {0x4c, 0x2, [@TCA_FW_POLICE={0x40, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x20000000, 0x0, 0x0, 0x80, {0x10, 0x0, 0x0, 0x0, 0x0, 0x101}, {0x0, 0x0, 0x0, 0x3}}}]}, @TCA_FW_MASK={0x8}]}}]}, 0x78}}, 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000a40)={@ifindex=r12, r7, 0x9, 0x0, r7, @void, @value=r2}, 0x20)
accept4(r7, &(0x7f0000000200)=@pptp={0x18, 0x2, {0x0, @multicast1}}, &(0x7f0000000100)=0x80, 0x1000)
io_submit(r3, 0x3, &(0x7f0000000180)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x7, 0x1f, r6, &(0x7f0000000a40)="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", 0x1000, 0x9, 0x0, 0x2}, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2, 0x8, r2, &(0x7f0000000080)="8b98c65dc568e7231edf467002a6e0712831dcb7c8b8d4f4c69add77f802a95cf9bcade3f6fda9d174a1a6", 0x2b, 0x4c65c863, 0x0, 0x2}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x1, r0, &(0x7f0000000100)="7678076c4fbe574c1e86048b44b61558134001215d2116e17658f18ca11c21788c7d0163612619c0d3e85e", 0x2b, 0x2, 0x0, 0x3, r7}])
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000580)={r2, 0x18000000000002a0, 0xe, 0x0, &(0x7f00000003c0)="12cdde26e7c496e99a9cf8625ec9", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

260.023206ms ago: executing program 1 (id=557):
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f00000000c0)={'fscrypt:', @desc1}, &(0x7f00000001c0)={0x0, "28d7b07d54891881fe02c1203fe49696b9f26f2da4149683f065714f8a61d1f32c9d064bbd27b2aa57459cff33a3a9831ac46b8829b48fff3d63520d260804d0"}, 0x48, 0xfffffffffffffffd)
keyctl$setperm(0x5, r1, 0x0)
keyctl$revoke(0x6, 0x0)
lsetxattr$system_posix_acl(0x0, 0x0, 0x0, 0x5c, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
unshare(0x26020280)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r3 = socket$pptp(0x18, 0x1, 0x2)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="2e00000010008188040f80ec59acbc0413a1f848100000005e0c00f0ffffff180e000a001400000002801687121f", 0x2e}], 0x1}, 0x0)
sendmsg$kcm(r4, &(0x7f0000000100)={0x0, 0x2c00, &(0x7f0000001340)=[{&(0x7f0000000040)="2e00000010008188040f46ecdb4cb9cca7480ef410000000e3bd6efb010511000b000a000d000000ba8000001201", 0x2e}], 0x1, 0x0, 0x0, 0xc9e}, 0x0)
bind$pptp(r3, &(0x7f0000000080)={0x18, 0x2, {0x0, @dev}}, 0x1e)
syz_clone(0xa0320080, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$cgroup_root(0xffffff9c, &(0x7f00000002c0)='./cgroup.net/syz0\x00', 0x200002, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
socket(0x2, 0x3, 0x2)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r5 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x38011, r5, 0x0)

259.723669ms ago: executing program 0 (id=558):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000000c0), 0x4)
r1 = socket$alg(0x26, 0x5, 0x0)
r2 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r2, 0x402, 0x8000001c)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
bind$alg(r1, &(0x7f00000023c0)={0x26, 'hash\x00', 0x0, 0x0, 'crc32\x00'}, 0x58)
r3 = accept4(r1, 0x0, 0x0, 0x0)
modify_ldt$write2(0x11, &(0x7f0000000040), 0x10)
modify_ldt$read(0x0, &(0x7f0000000840)=""/4096, 0x1000)
sendto$inet6(r3, &(0x7f0000847fff)="03", 0xfffffffffffffd9f, 0x0, 0x0, 0x25)
r4 = openat$vcs(0xffffff9c, &(0x7f0000000100), 0x1, 0x0)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)=ANY=[@ANYBLOB="780000000206030000000000000000000300000115000300686173683a69702c706f72742c6e6574000000004c000780060004404e23000005000700080000000802000000000876050014000500000008001340000002001800028014000240200100000000000000000000000000000500030007000000"], 0x78}}, 0x400c040)
syz_emit_ethernet(0x9e, &(0x7f0000000000)={@link_local, @empty, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x68, 0x3a, 0xff, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, {[], @ndisc_redir={0x89, 0x0, 0x0, '\x00', @dev, @dev, [{0x2, 0x8, "1d6ace8f8ca9100083faa1f1a6db56fa1ede4bc5398bd6606aaa671ffdd8e79d60cde5302fa555d0f9e0b2fa0d62fffea7fab292bbcd05812814821553a3"}]}}}}}}, 0x0)
sendmsg$IPSET_CMD_TEST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)={0x44, 0xb, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @remote}}]}]}, 0x44}}, 0x0)

174.327822ms ago: executing program 3 (id=559):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8102) (async, rerun: 32)
r2 = syz_open_dev$ttys(0xc, 0x2, 0x1) (rerun: 32)
r3 = fcntl$dupfd(r1, 0x0, r2)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000400)={0x53, 0xfffffffffffffffd, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="672d6a44b036", 0x0, 0x0, 0x0, 0x0, 0x0}) (async, rerun: 32)
write$tun(r3, &(0x7f0000000400)=ANY=[], 0xa2) (async, rerun: 32)
read$rfkill(r3, 0x0, 0x0) (async)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000740)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000000f00000024000780080004"], 0x38}}, 0x0)

171.841961ms ago: executing program 0 (id=560):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r0, 0xc0045627, &(0x7f00000000c0)=0x3)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000200)={0x0, @bt={0xc4, 0x93, 0x1, 0x3, 0xd59f80, 0x7, 0x7, 0x19ef, 0x3, 0x7, 0x2800, 0x6, 0x2, 0xbb6, 0x8, 0x18, {0x8, 0xffffffff}, 0xd0, 0x9}}) (fail_nth: 4)

298.65µs ago: executing program 0 (id=561):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r2=>0x0})
setsockopt$MRT_ADD_VIF(r1, 0x0, 0xca, &(0x7f0000000080)={0x0, 0x8, 0x0, 0x0, @vifc_lcl_ifindex=r2, @multicast1}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000004}, 0x0)
getdents64(0xffffffffffffffff, &(0x7f0000000400)=""/122, 0x7a)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="c4000000130001000000000000000000fe800000000000000000000000000000ac1414bb00000000000000000000000000000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000c0008000800080000000200"], 0xc4}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000004340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0x0, 0x0, 0x0)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), 0xffffffffffffffff)
setsockopt$MRT_FLUSH(r1, 0x0, 0xd4, &(0x7f0000000040)=0xa, 0x4)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000200)={'syzkaller0\x00', 0x2})
close(r6)
socket$inet_udplite(0x2, 0x2, 0x88)
r8 = syz_usb_connect(0x1, 0x36, &(0x7f0000000040)=ANY=[@ANYRES8=r3], 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002fc0)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRESHEX, @ANYBLOB="81ffffff000000001c0012800b00010067726574617000000c000280080001", @ANYBLOB="79e76ed85f1e0934ac2677a28a52cb0dc6b13eeba7da35b26379dcde346b0849faab2942bc752ca1d1d4040e2498f25fc65ece2572f2f2cb5824db8ec32102dd425d5b47265e2ecf795e79a3871b28344226fd01250c3891c8268e1c9fbf51d188e9fd6fc43b2f3d20321f583f5beeb9a383988366ea65abe800854145d11950fb04a6259b6c81f521ff3d8dbd9239323567274a524f6a2d2bc2d9e6d7419be0d75938318bcbc3e3d938b331faed17c8996a4293ec74111bbab4b917002f312f8a34261ff90889cf61d46a16134b7e502720e821c84cc8a3efd87190bb3603857d7becccb16cb2efa26dbaa39d7277916dde53f838dae1930052e40f9833d60984d970b54cdc908bbb4322d88969784587f60dc22ef05619c920a2969ec6111395c875a605619beac9ba6ef854dddf9092702abcad8d6e0c20e6755c8915e42b8571c3548aaff9e61c93558a0855ee30f9ebda57d510225108144373b7ba0659236e45c72a5a9c563ccf89e828f6aff02ad3f9722bec71b661442d4c67893ad66a0ed9bfab5777b0ebd607cc40120554245ff94ef77e7990e898c26dd6c223a8087149ef888c15a3ddb4ef6c9fa17981fcd39be4c90cf5c774c778a406f285eaf87842358f14843538f7ce13e7bdeb60780fa03bc4701098cf1ca5a8780035842213f2c52e5a389a6a3509e21ee63a7424151a32d81e4dca2c69889ff003e081673d7c7009dc4c4dbd0171460416c9f347e4938c5837710de4372be9d605167e82780fdd7aa339218ce244d5239a797b4e0104d95aa51b8f984d44b321c28f711a15286f2cc48d667fe5b1febccd92675e8db8ac107cb46c5ba6982dda257f681867c33976df44cf7780b7cec582c8cd0b6159eda1600d00cf18aebe54303fa99c5416b5e7588d438b655352e45ae8013438344cb29e22cfd4c765caed42ef47b17fa620ad254df2ee623b4a89fef765cf05736efbc11eddca6cd18f2cf073016af9426020f84a15fa941fb7fff5ab286e91fba91ff5bf6d35bd3914e4000ee6641e343ba8456531970ca9633bb2326aeb495d44149887635d441be124b9c611ce5d47a5fe9c012603df9a828c07cc79ebaad169e41af7070277187176354653286e048d94e106d3e14f4d3f3554553d9f6a99d829424628f9fe72ff0b261ff7f73bcdb5450d95bdfc53f1e2259954fd506d0d614a0e578db963f4493292d71740cf430589a10870af7d7f2296536b065f2629f22acdf80eef1a165595d7955e9580075e4e3d4bd7bb3e11029b33c1d11ac610c3435665ae2901c1dd67c8866e72f88dbefbab853e6329526d1fdc73e8338cd77b30d077560632d6f2058f571ad414cd9dc998175aac5455fa85dce19dd4646c6e4d91afab5927e0874139cb16374850a70196a5ab433c897926e95432465e6d2bba21d54ec95a7a7f265f5a3bdc3538e6d0293c64184cb1bb839d3bc3e46a4210b2f36376ee7c83a17511f2c4f12edf607d69502fffd18aff2f6196be63c8aac8fda47ad5ef87f8c63f6ad97750912fc73261ddb15d03e090e5469b440d116ea6d492d8c22685f2e1e5051bbb3accde173d975c158e2aaaf860fb861ffcd45b9b3dfaaeeda7db675627acd2ed7f6e03a49564ee85f034ef39ef0e53e45f9a5a620469cde324fff133c52aa5dbe643363d88d1bde494da007daafa2fe5fc2ba49d3baf18e0e5fb572c929f458c50f6c64d5a759feed6bd019b75ce5c627b2d016ffed798e7735b12a92bc4867ef1eb1954c6dad43b11ad7ac5e1293b004f6b94034624657972a80777bc153106b1ec7e1a510814c4b105a5037e1dc529404fa334a7ee0706d0eadbddacf69ea5bd27cb6309fc085d0a0e338396213a6055edd7fe563dd685ed38e56eff3d48fadd9704520d63d612e298ea347971d5c4c0aed64460b9c53af679e4054aac576aa254b76c42d6b9dba1c1087fe8b27f06660c35c332359e5e8ca79b202ea64fae8d0061f07d43cd903cf41b9cab7de9715718462de6dc8ce7836333fb600f064b1f2c4fa0709927ca3715e117cd1927f549f4a4814bdf5e764889243210821270b43f312e3e4320c85e651ded80fda6a4b27ae9f11a53838f09ed1296730a2cf1e3838b50ad49ae5325845daddced96a14502af5daa2b89fe3dd28ae18e6798aef8dc2a90aecb62c9a3c41526532ffe64928867aeebc85e1af787f8ab92d537993e0eed6dccbf49b45b26e460ba8e93730a299518f5b9a76285eb9575bd613872a9a694d894fbe91ac277b10b57546f8e594ac3bf74e3b29f6c5c181193d4adb1faf994a76e9c1ede87a73568a285703cd4e4646960a64da85725627e91db767034456cb32d82659e2f16a6cb81c464b27737c85e94f719bd1735bb5a0784f53a0387e0788ec48deaeb64f41941fb53135d8ed22433485b4d4f2af7c71de8d562c2280be218a8f4eda1f281842e96a10e4410db6e29ed30c7a4c5bb459a52ea2512b61e7e5508d874c3f92602a5c6ef8b8b3de690ba7a2dd35317b723d882c87de47b3f372e68101dd83e5035dcbe4c94d99d7a6540c7ac48c4fbf1a8c698bb4e5b59d5c2248ab735d8f8236d79ee38b3c7407eeb4464a6bc0f6dcf1025400c855e237d5cf3c9f4b80fffb0769ff86187de3da9dafcfa755bc2c9ee6d21895a217ad76515c788a863a51260962e59fdee009d2d3c9675a3efc86385e15e402b2d63a0476d65690458b68ba9f89fcb3bcc5e0b43c2f1030852d61585a608cabf414a7c8ad6c26a09fc56026934ccdc49b6e8d9cc403254fe8463d0693ec69965f66714fb15fbed24fd0e58a9e0799cee3b6ef7eb3e18b70681943d13b02a7d452e0fa50058b2f77d6dbcbf6267c384c3423d59e3045ae2f05cd7f7f48711ab120fb8dbde562ae14465e9342e853cff77127189fc8b168ddf58a6fc7061b7ef2e01d40acbb9a8608f0baee2e871a56c3c6ec9444af015a71ac022eb8f9678a5e01c3753902b35f3b8cc406d1bacfdbbe151870d8128877cc8318b9ae13ede37a65a6408cd58a65fc41920d8f0429d20ededa9e28650dd26a39feb9dbdf26c66f33cfced0bfafbdf2afe15adc43f6ff2b43556f9b83c260dcb89434c00665ad73ee472f2e4d8beda1dcbca8820ddfb7858198c0e3cfeb9740a76596e13fd08798d43af7d803add5032852b98380cc436d53adacb7e5bbb48957b2371d63abbef0d2280daab18c07d5536983b0895758f30bc66d704954fccb495a2771969ebb8bec7c91ed171c8e8ccdbc1cb10368265bf6f9d8a00119e862f948fe0fb4c6d11613a3a7d6c15330b7a804b28819ff758fd7212b079f4a6d92733d06a2883c490914f24e7c2a0f9ee1bdeb949ee345d67316c5a1de34aa563c70be4f890f32ec639c6cdc745af90979aa06fdccfbefc2acc7ff7df6d0e1f52a889141280b6db596f48467fa4aadb955b7c980e0b36e1a51abb7c7ad9505ea29b396be4bde9807c771259d455ab061bc6db88f4c29f5ebb5f1c221bcde1d33336e095b9f542665599d3f0f123038761d8b088b905425606678ee1ddb916b0803ffae9b17a964cf06339da2239e3c4bfa04c07cc697606f6bc6b2ec49d9c1cc9d02b4b1ee1105f35d17a39f0adc70058c80a970bace646356fa6a0955e04c6c76c2fac2b0ad7cfe85b268398a0fbfec2833eec39c074e85b4cd03226bb84cc3a8d0ebd5fd9ac1c3c870c1813092bec2446e3f233d1ec0787d2cfa807ec1d82e94af3d6aed0ffe06f76e94838730d2ceac8b03f137dccf3a6d8ab4fca525b3c70f0409de03d87ad2b2ca18ac298166eaf5d566cfd83262218c7388c916fb952f5557d6727a583dcc1c1510e0da50f43176fdba68790baa561ceff20dafcdc27ce4d52756a33a0d70415c424f0737341974c56b885fb9362534342b57741002a2a01c34d46ab72a84a43647cecd7b5f5da7e55a7adf1ea890126ba32925f60f19049e4980832c44d45db2e5e139d5c763a949ab36cfbdc88b84e5d8975ee673b0bce2179ab08b560d3781e2421cf3c54f84d98c8e437ce0da52236f202f45c43943ea7afc3737b64f57ecdabdd3e7c0221712549c5f44f3b4df9ede41ca858f7a0b9e85b0c9dbda4c64f9ced7a79b5064ec50cbee7e453659fde1474484a12935b7e57903b5feade55e01328bcdf8667b7f03c691e8035e0aa9d3e5104b73ff096e22ec0948047b7b467ec1f4f3169a76ed40fc7555c02ea0d2d1c6ef2584b720a2354d4367abe80de279bc6658a8d74c16fbd2e452830cba3840da392fe93c6ea216168393cd7ecd19c8ac25a211c9585a699d2597c8c18c205c0de553d36589113ea396496716601147f8e883e667bb76bd2d95ba89180ac61fe4a2bf5718fad1b2953a9af6232228b3f4fac7975c914bb57db7fed5fbcc7625afcde3780bc94f23649427b84bf70defd582ce5b91be4e0467319397a722061ad92487a5b45d24dbc432bd654850dc833dd92e4a9b1c0aa50f408f3e3f2136def314c7e3f7c737e7137c9beb33bc0c562ac144349d417996b9051b047462b251239e440acc0f5c6ae9b43ca9d7167b7b6515a2fa3633679d562928088cf8a8410f40b6db452f261aabd98553c7261f77554e2ff84353abb636751036d655889776519c1c7fd65020d9e6cccd55bf7450fd03ba96d4223408d5eec605fefb30a281b32137412eb030ec177dc594eda1413cd8465814ec86dba71ca1e3bd23400345a8b646635c809e03c0cfb7f95967186eebe9e3709dc03d4af4f3c11b5756441b690ada3a0cad7099d86f296a9ff2cde47d4942d5a3ae99ae33a2d0485e52a118fb88cd74965c9794ea6dd87c04e4fbfc12fa4f095d96d01293f085f0cd46b51a9ccf91fb480e224fcfdbd53b76b3291100189d338ca0b46566f98cb585ef7b864a17087dd13be492e04cc143dc5f9d0f0786042cd311a1074909206ea6b559cd3fab327441c1fd5e2ff4f254e1e26728b6dc0730218ff2091a2ebbadb51756bbe9ff493e0b3924b9ec63ce2c3456bb234459f297eeea26c2b1ea1ac80f9369713877a990325520121de34171457a029784d9bbbe2e7fbca641d7ac7677cf6830626cfd78c711c41f1eb889f1afad0c79ae519d928a5853825643cc7231aa31419ed5164212a3d6c0dec2629e351ff269bd8ad43294664a9621a130a59afbf0b34840aecbe6e2423fe7aac94069965b999ce1f078eb537a2d4f6375d34214c99eab7a1349eb103c0aad8a13a819713bafe2242c3346fd7bda3e95c7a1b19c62f6f488145682a005589d2f3573b375b4fe44a5a8c6bbe593262687f3f359e728b196ad3a5151bee5e3b4ae41714b29f332eb7a365e7ef6d13ded5e34139bb0e58bf0aad3de6818a36e94f55277ba1b4218001e8c9aa791e239d4e0e820de858a49675f1601e449c3eaff6bb131438af88f2432bddcf7dfab493a26704a198689435e502edae4392b862b959ec285ef24b6505ab041247d48393f459eef7a47235e05cac163f2ab223a4f23a97bf682a7350c25a948862b79b596d4c15dded7a1b59ae4cc02f2c5526213e7361e56dc38d8f990558b52b2895ed1db67ec806cebf44fe3454d0989573aed076cdf3a5a83b5789eeaa11a185b310e7ea57b0e6d8ca4babc6e28e0b797544957f067947f80d030376dc8051c4e490b7d7793c6648eb087121a3f13537a7d83fef3f8d845d34bbbe5b697f821c189e43a9f1eb7f04480028d758e5ca1369109b289bad6c4d1f5948dde507f2c8e0a6821bae86725918c3f089c6dc69c24d2769634b4706b848", @ANYRESDEC=r5, @ANYRESOCT=r5, @ANYRES64=r8], 0x44}}, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000400)=[{&(0x7f00000000c0)="390000001000111867090707a640400f0021ff3f30000000170a00170000000004003700090003", 0x27}], 0x1)
r9 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000000080)=@newtaction={0x60, 0x30, 0x0, 0x0, 0x0, {}, [{0x4c, 0x1, [@m_skbedit={0x48, 0x1, 0x0, 0x0, {{0xc}, {0x1c, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PARMS={0x18}]}, {0x4}, {0xc}, {0xc, 0x9}}}]}]}, 0x60}}, 0x0)
sendmsg$kcm(r9, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e02003c000b05d25a806f8c6394f90324fc602f00001550000100053582c137153e370248018088a81700894f", 0x33fe0}], 0x1}, 0x0)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, r10, 0x0)

0s ago: executing program 3 (id=562):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0)
openat$sequencer2(0xffffff9c, &(0x7f00000001c0), 0x10000, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000300)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
mkdir(&(0x7f0000000200)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chroot(&(0x7f0000000000)='./bus\x00')
openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)

0s ago: executing program 3 (id=563):
r0 = creat(&(0x7f0000000240)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r3, &(0x7f00000000c0)={0x14c}, 0x137)
syz_emit_ethernet(0x52, &(0x7f0000000580)={@local, @random="08c82553c54d", @void, {@ipv4={0x800, @tcp={{0xc, 0x4, 0x0, 0x0, 0x44, 0x0, 0x0, 0x0, 0x6, 0x0, @private=0xa010102, @local, {[@generic={0x7, 0x7, "0402000200"}, @timestamp_addr={0x44, 0x14, 0x6, 0x1, 0x0, [{@multicast1}, {@multicast2}]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x5}}}}}}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000180)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}], [], 0x6b}})
chmod(&(0x7f0000000140)='./file0\x00', 0x0)
r4 = open$dir(&(0x7f0000000140)='./file0\x00', 0x1, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000280)={{{@in6=@remote, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in=@empty}, 0x0, @in=@multicast2}}, &(0x7f0000000200)=0xe4)
quotactl$Q_QUOTAOFF(0xffffffff80000302, &(0x7f0000000080)=@sg0, r5, 0x0)
write$binfmt_misc(r4, &(0x7f0000000300), 0x4)
ftruncate(r4, 0x0)

kernel console output (not intermixed with test programs):

Stall on int endpoint
[   58.161778][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.163480][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.165171][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.166827][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.168491][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.170156][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.171825][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.173687][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.175415][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.177074][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.178733][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.180390][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.182034][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.183683][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.185364][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.187047][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.188735][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.190409][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.192090][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.193775][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.195442][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.197153][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.198811][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.200395][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.201897][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.203576][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.205121][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.206767][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.208296][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.209928][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.211611][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.213568][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.215109][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.216754][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.218269][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.219925][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.221485][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.223175][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.224721][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.226396][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.228069][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.229579][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.231216][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.233030][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.238061][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.241382][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.243175][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.244940][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.246697][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.248369][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.249883][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.251529][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.253081][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.254760][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.256440][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.258099][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.259765][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.261454][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.263104][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.264802][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.266464][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.268166][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.270001][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.271658][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.273337][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.275001][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.276695][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.278358][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.280024][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.281702][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.283436][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.289077][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.291614][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.293503][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.295176][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.296846][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.298497][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.300140][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.301786][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.303445][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.304985][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.307092][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.308975][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.310467][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.312096][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.313731][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.315246][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.316925][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.318586][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.320251][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.321901][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.323546][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.325221][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.326869][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.328541][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.330195][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.331839][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.333485][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.335153][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.336807][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.338449][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.340098][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.341745][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.343397][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.344925][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.346558][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.348206][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.349868][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.351378][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.353014][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.354521][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.356149][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.357650][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.359273][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.360789][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.362415][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.364100][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.365766][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.367427][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.368954][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.370573][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.372091][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.373735][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.375255][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.376937][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.378435][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.380079][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.381756][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.383277][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.384877][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.386307][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.387951][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.389463][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.391091][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.393120][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.394938][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.396605][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.398113][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.399724][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.401270][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.402919][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.404465][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.406145][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.407792][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.409325][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.410958][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.412501][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.414201][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.415715][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.417368][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.418868][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.420547][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.422198][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.423841][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.425372][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.427781][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.429307][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.430945][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.432471][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.434129][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.435686][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.437399][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.439074][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.440604][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.442282][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.443818][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.445487][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.447173][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.448676][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.450305][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.451812][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.453449][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.454951][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.456664][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.458321][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.459830][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.461469][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.463134][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.464824][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.466359][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.468024][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.469544][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.471172][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.472684][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.474292][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.475796][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.477423][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.478951][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.480628][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.482160][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.483792][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.485351][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.487018][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.488676][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.490199][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.491813][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.493378][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.495100][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.496779][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.498327][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.499982][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.501672][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.503205][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.504860][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.506374][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.508008][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.509684][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.511211][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.513151][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.515274][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.517064][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.519823][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.521598][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.523486][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.525335][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.527040][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.528710][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.530220][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.531863][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.533573][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.535515][    C2] cdc_wdm 5-1:1.0: Cannot schedule work
[   58.541381][    C2] cdc_wdm 5-1:1.0: Stall on int endpoint
[   58.548702][ T5383] usb 5-1: USB disconnect, device number 4
[   58.620691][ T5827] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   59.063395][ T5850] tmpfs: Bad value for 'uid'
[   59.064726][ T5850] tmpfs: Bad value for 'uid'
[   60.230952][ T5866] netlink: 'syz.3.97': attribute type 10 has an invalid length.
[   60.233103][ T5866] ipvlan1: entered promiscuous mode
[   60.241056][ T5866] team0: Device ipvlan1 failed to register rx_handler
[   60.446508][ T1095] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.520787][ T1095] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.551958][ T5358] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   60.555701][ T5358] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   60.560077][ T5358] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   60.565438][ T5358] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   60.568165][ T5358] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   60.570543][ T5358] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   60.571522][ T5878] Mount JFS Failure: -22
[   60.574132][ T5878] jfs_mount failed w/return code = -22
[   60.594949][ T1095] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.678706][ T1095] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.699219][ T5884] chnl_net:caif_netlink_parms(): no params data found
[   60.768698][ T5884] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.771121][ T5884] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.773271][ T5884] bridge_slave_0: entered allmulticast mode
[   60.777951][ T5884] bridge_slave_0: entered promiscuous mode
[   60.783015][ T5884] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.787595][ T5884] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.791209][ T5884] bridge_slave_1: entered allmulticast mode
[   60.796934][ T5884] bridge_slave_1: entered promiscuous mode
[   60.861986][ T5884] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   60.879745][ T5884] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   60.963098][ T5884] team0: Port device team_slave_0 added
[   60.975688][ T1095] bridge_slave_1: left allmulticast mode
[   60.977383][ T1095] bridge_slave_1: left promiscuous mode
[   60.980216][ T1095] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.984699][ T1095] bridge_slave_0: left allmulticast mode
[   60.990058][ T1095] bridge_slave_0: left promiscuous mode
[   60.992143][ T1095] bridge0: port 1(bridge_slave_0) entered disabled state
[   61.408733][ T1095] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   61.417896][ T1095] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   61.423570][ T1095] bond0 (unregistering): Released all slaves
[   61.432541][ T5884] team0: Port device team_slave_1 added
[   61.501069][ T5884] batman_adv: batadv0: Adding interface: batadv_slave_0
[   61.503087][ T5884] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   61.515076][ T5884] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   61.518106][ T1095] tipc: Left network mode
[   61.520265][ T5884] batman_adv: batadv0: Adding interface: batadv_slave_1
[   61.522393][ T5884] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   61.529196][ T5884] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   61.613209][ T5884] hsr_slave_0: entered promiscuous mode
[   61.625280][ T5884] hsr_slave_1: entered promiscuous mode
[   61.627454][ T5884] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   61.629516][ T5884] Cannot create hsr debugfs directory
[   61.802977][ T1095] hsr_slave_0: left promiscuous mode
[   61.815516][ T1095] hsr_slave_1: left promiscuous mode
[   61.818617][ T1095] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   61.820747][ T1095] batman_adv: batadv0: Removing interface: batadv_slave_0
[   61.824895][ T1095] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   61.829471][ T1095] batman_adv: batadv0: Removing interface: batadv_slave_1
[   61.869747][ T1095] veth1_macvtap: left promiscuous mode
[   61.871498][ T1095] veth0_macvtap: left promiscuous mode
[   61.872901][ T1095] veth1_vlan: left promiscuous mode
[   61.877676][ T1095] veth0_vlan: left promiscuous mode
[   62.468754][ T1095] team0 (unregistering): Port device team_slave_1 removed
[   62.526962][ T1095] team0 (unregistering): Port device team_slave_0 removed
[   62.615312][ T5355] Bluetooth: hci3: command tx timeout
[   63.576709][ T5884] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   63.592784][ T5884] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   63.608370][ T5884] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   63.616750][ T5884] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   63.702014][ T5884] 8021q: adding VLAN 0 to HW filter on device bond0
[   63.721165][ T5884] 8021q: adding VLAN 0 to HW filter on device team0
[   63.725215][ T1095] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.727085][ T1095] bridge0: port 1(bridge_slave_0) entered forwarding state
[   63.746647][   T63] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.748628][   T63] bridge0: port 2(bridge_slave_1) entered forwarding state
[   63.855974][ T5884] 8021q: adding VLAN 0 to HW filter on device batadv0
[   63.876123][ T5884] veth0_vlan: entered promiscuous mode
[   63.889201][ T5884] veth1_vlan: entered promiscuous mode
[   63.893913][ T5960] tmpfs: Unknown parameter '�'
[   63.911454][ T5884] veth0_macvtap: entered promiscuous mode
[   63.915625][ T5884] veth1_macvtap: entered promiscuous mode
[   63.926693][ T5884] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   63.929542][ T5884] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   63.932146][ T5884] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   63.934915][ T5884] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   63.937673][ T5884] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   63.940464][ T5884] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   63.944171][ T5884] batman_adv: batadv0: Interface activated: batadv_slave_0
[   63.949908][ T5884] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   63.952759][ T5884] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   63.956152][ T5884] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   63.958938][ T5884] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   63.961519][ T5884] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   63.964323][ T5884] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   63.968901][ T5884] batman_adv: batadv0: Interface activated: batadv_slave_1
[   63.976768][ T5884] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   63.985228][ T5884] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   63.988693][ T5884] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   63.992184][ T5884] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   64.035762][   T63] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   64.038370][   T63] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   64.064534][   T63] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   64.069725][   T63] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   64.282942][ T5972] netlink: 'syz.3.115': attribute type 10 has an invalid length.
[   64.296842][ T5972] team0: Device ipvlan1 failed to register rx_handler
[   64.567008][ T5979] Mount JFS Failure: -22
[   64.572265][ T5979] jfs_mount failed w/return code = -22
[   64.695372][ T5355] Bluetooth: hci3: command tx timeout
[   65.696231][ T5986] FAULT_INJECTION: forcing a failure.
[   65.696231][ T5986] name failslab, interval 1, probability 0, space 0, times 1
[   65.699243][ T5986] CPU: 3 UID: 0 PID: 5986 Comm: syz.0.121 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[   65.701836][ T5986] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   65.704435][ T5986] Call Trace:
[   65.705529][ T5986]  <TASK>
[   65.706543][ T5986]  dump_stack_lvl+0x16c/0x1f0
[   65.708243][ T5986]  should_fail_ex+0x497/0x5b0
[   65.709914][ T5986]  ? fs_reclaim_acquire+0xae/0x160
[   65.711489][ T5986]  should_failslab+0xc2/0x120
[   65.712669][ T5986]  __kmalloc_noprof+0xcb/0x410
[   65.713955][ T5986]  tomoyo_realpath_from_path+0xbf/0x710
[   65.715450][ T5986]  tomoyo_check_open_permission+0x2a7/0x3b0
[   65.716983][ T5986]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[   65.718642][ T5986]  ? __pfx___lock_acquire+0x10/0x10
[   65.720009][ T5986]  ? __pfx___lock_acquire+0x10/0x10
[   65.721374][ T5986]  ? mnt_get_write_access+0x6a/0x300
[   65.722747][ T5986]  ? __pfx_hook_file_open+0x10/0x10
[   65.724121][ T5986]  tomoyo_file_open+0x6b/0x90
[   65.725361][ T5986]  security_file_open+0x64c/0x9d0
[   65.726672][ T5986]  ? mnt_get_write_access+0x20c/0x300
[   65.728068][ T5986]  do_dentry_open+0x57c/0x1530
[   65.729283][ T5986]  ? inode_permission+0xdd/0x5f0
[   65.730528][ T5986]  vfs_open+0x82/0x3f0
[   65.731557][ T5986]  ? may_open+0x1f2/0x400
[   65.732666][ T5986]  path_openat+0x1e6a/0x2d60
[   65.733870][ T5986]  ? __pfx_path_openat+0x10/0x10
[   65.735194][ T5986]  ? __pfx___lock_acquire+0x10/0x10
[   65.736448][ T5986]  do_filp_open+0x1dc/0x430
[   65.737564][ T5986]  ? __pfx_do_filp_open+0x10/0x10
[   65.738861][ T5986]  ? _raw_spin_unlock+0x28/0x50
[   65.740080][ T5986]  ? alloc_fd+0x2d7/0x6c0
[   65.741159][ T5986]  do_sys_openat2+0x17a/0x1e0
[   65.742337][ T5986]  ? __pfx_do_sys_openat2+0x10/0x10
[   65.743615][ T5986]  ? __fget_files+0x244/0x3f0
[   65.744812][ T5986]  __ia32_compat_sys_open+0x147/0x1e0
[   65.746533][ T5986]  ? __pfx___ia32_compat_sys_open+0x10/0x10
[   65.748444][ T5986]  __do_fast_syscall_32+0x73/0x120
[   65.750176][ T5986]  do_fast_syscall_32+0x32/0x80
[   65.751740][ T5986]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   65.753904][ T5986] RIP: 0023:0xf7f18579
[   65.755295][ T5986] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   65.762870][ T5986] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000005
[   65.765664][ T5986] RAX: ffffffffffffffda RBX: 0000000020001200 RCX: 0000000000101042
[   65.768329][ T5986] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   65.771024][ T5986] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   65.773763][ T5986] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   65.776576][ T5986] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   65.779412][ T5986]  </TASK>
[   65.785961][ T5986] ERROR: Out of memory at tomoyo_realpath_from_path.
[   65.831516][ T5993] capability: warning: `syz.0.124' uses deprecated v2 capabilities in a way that may be insecure
[   65.878928][ T5999] xt_SECMARK: invalid mode: 0
[   65.956013][ T6004] Bluetooth: MGMT ver 1.23
[   66.105792][ T5402] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[   66.269678][ T5402] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   66.273195][ T5402] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[   66.276708][ T5402] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   66.280037][ T5402] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   66.283429][ T5402] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   66.286288][ T5402] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   66.293138][ T5402] usb 5-1: config 0 descriptor??
[   66.295972][ T5998] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   66.714811][ T5402] plantronics 0003:047F:FFFF.0002: unknown main item tag 0xd
[   66.727421][ T5402] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving
[   66.752451][ T5402] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[   66.775355][ T5355] Bluetooth: hci3: command tx timeout
[   66.941180][ T6008] netlink: 4 bytes leftover after parsing attributes in process `syz.2.129'.
[   67.061450][ T6013] devtmpfs: Cannot change global quota limit on remount
[   67.129911][ T6021] FAULT_INJECTION: forcing a failure.
[   67.129911][ T6021] name failslab, interval 1, probability 0, space 0, times 0
[   67.134099][ T6021] CPU: 1 UID: 0 PID: 6021 Comm: syz.3.135 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[   67.136725][ T6021] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   67.139964][ T6021] Call Trace:
[   67.141120][ T6021]  <TASK>
[   67.142107][ T6021]  dump_stack_lvl+0x16c/0x1f0
[   67.143624][ T6021]  should_fail_ex+0x497/0x5b0
[   67.145215][ T6021]  ? fs_reclaim_acquire+0xae/0x160
[   67.146913][ T6021]  should_failslab+0xc2/0x120
[   67.148491][ T6021]  __kmalloc_noprof+0xcb/0x410
[   67.149833][ T6021]  ? __kvmalloc_node_noprof+0xad/0x1a0
[   67.151614][ T6021]  nla_strdup+0xc6/0x150
[   67.152981][ T6021]  nf_tables_newset+0x2319/0x4120
[   67.154228][ T6021]  ? __pfx_nf_tables_newset+0x10/0x10
[   67.155566][ T6021]  ? __pfx___lock_acquire+0x10/0x10
[   67.156878][ T6021]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   67.158356][ T6021]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   67.159794][ T6021]  ? __nla_validate_parse+0x605/0x2b10
[   67.161512][ T6021]  ? net_generic+0xea/0x2a0
[   67.163027][ T6021]  ? __pfx_lock_release+0x10/0x10
[   67.164659][ T6021]  ? trace_lock_acquire+0x14a/0x1d0
[   67.166141][ T6021]  ? __nla_parse+0x40/0x60
[   67.167424][ T6021]  nfnetlink_rcv_batch+0x1a28/0x24e0
[   67.168763][ T6021]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[   67.170171][ T6021]  ? __pfx_lock_release+0x10/0x10
[   67.171433][ T6021]  ? __local_bh_enable_ip+0xa4/0x120
[   67.172769][ T6021]  ? lockdep_hardirqs_on+0x7c/0x110
[   67.174097][ T6021]  ? __pfx___dev_queue_xmit+0x10/0x10
[   67.175472][ T6021]  ? __nla_parse+0x40/0x60
[   67.176606][ T6021]  nfnetlink_rcv+0x3c3/0x430
[   67.177783][ T6021]  ? __pfx_nfnetlink_rcv+0x10/0x10
[   67.179070][ T6021]  netlink_unicast+0x53c/0x7f0
[   67.180428][ T6021]  ? __pfx_netlink_unicast+0x10/0x10
[   67.181749][ T6021]  ? __phys_addr_symbol+0x30/0x80
[   67.183015][ T6021]  ? __check_object_size+0x488/0x710
[   67.184686][ T6021]  netlink_sendmsg+0x8b8/0xd70
[   67.186279][ T6021]  ? __pfx_netlink_sendmsg+0x10/0x10
[   67.188047][ T6021]  ? lock_acquire+0x2f/0xb0
[   67.189576][ T6021]  ____sys_sendmsg+0x9ae/0xb40
[   67.191172][ T6021]  ? __pfx_____sys_sendmsg+0x10/0x10
[   67.193020][ T6021]  ? get_compat_msghdr+0x11b/0x170
[   67.194720][ T6021]  ? __pfx___lock_acquire+0x10/0x10
[   67.196504][ T6021]  ___sys_sendmsg+0x135/0x1e0
[   67.198066][ T6021]  ? __pfx____sys_sendmsg+0x10/0x10
[   67.199795][ T6021]  ? lock_acquire+0x2f/0xb0
[   67.201341][ T6021]  ? __fget_files+0x40/0x3f0
[   67.202875][ T6021]  ? fdget+0x176/0x210
[   67.204260][ T6021]  __sys_sendmsg+0x117/0x1f0
[   67.205464][ T6021]  ? __pfx___sys_sendmsg+0x10/0x10
[   67.206749][ T6021]  ? __fget_files+0x244/0x3f0
[   67.208327][ T6021]  __do_fast_syscall_32+0x73/0x120
[   67.210042][ T6021]  do_fast_syscall_32+0x32/0x80
[   67.211574][ T6021]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   67.213293][ T6021] RIP: 0023:0xf7f10579
[   67.214308][ T6021] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   67.220220][ T6021] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   67.222930][ T6021] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[   67.225541][ T6021] RDX: 0000000004000050 RSI: 0000000000000000 RDI: 0000000000000000
[   67.227850][ T6021] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   67.229779][ T6021] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   67.231696][ T6021] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   67.233716][ T6021]  </TASK>
[   68.009408][ T6034] netlink: 24 bytes leftover after parsing attributes in process `syz.1.139'.
[   68.517825][ T6038] vivid-000: =================  START STATUS  =================
[   68.519944][ T6038] vivid-000: Radio HW Seek Mode: Bounded
[   68.521422][ T6038] vivid-000: Radio Programmable HW Seek: false
[   68.523285][ T6038] vivid-000: RDS Rx I/O Mode: Block I/O
[   68.524722][ T6038] vivid-000: Generate RBDS Instead of RDS: false
[   68.531336][ T6038] vivid-000: RDS Reception: true
[   68.532671][ T6038] vivid-000: RDS Program Type: 0 inactive
[   68.534144][ T6038] vivid-000: RDS PS Name:  inactive
[   68.536167][ T6038] vivid-000: RDS Radio Text:  inactive
[   68.537551][ T6038] vivid-000: RDS Traffic Announcement: false inactive
[   68.539280][ T6038] vivid-000: RDS Traffic Program: false inactive
[   68.541045][ T6038] vivid-000: RDS Music: false inactive
[   68.542678][ T6038] vivid-000: ==================  END STATUS  ==================
[   68.686128][ T6055] FAULT_INJECTION: forcing a failure.
[   68.686128][ T6055] name failslab, interval 1, probability 0, space 0, times 0
[   68.686148][ T6055] CPU: 2 UID: 0 PID: 6055 Comm: syz.3.144 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[   68.686161][ T6055] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.686167][ T6055] Call Trace:
[   68.686171][ T6055]  <TASK>
[   68.686176][ T6055]  dump_stack_lvl+0x16c/0x1f0
[   68.686196][ T6055]  should_fail_ex+0x497/0x5b0
[   68.686211][ T6055]  ? fs_reclaim_acquire+0xae/0x160
[   68.686227][ T6055]  should_failslab+0xc2/0x120
[   68.686244][ T6055]  __kmalloc_cache_noprof+0x6b/0x310
[   68.686257][ T6055]  ? dev_ethtool+0xce/0x330
[   68.686274][ T6055]  dev_ethtool+0xce/0x330
[   68.686287][ T6055]  ? __pfx_dev_ethtool+0x10/0x10
[   68.686300][ T6055]  ? netdev_name_node_lookup_rcu+0xf0/0x140
[   68.686319][ T6055]  dev_ioctl+0x2a2/0x10c0
[   68.686333][ T6055]  compat_sock_ioctl+0x44c/0x7e0
[   68.686348][ T6055]  ? __pfx_compat_sock_ioctl+0x10/0x10
[   68.686362][ T6055]  ? __fget_files+0x244/0x3f0
[   68.686375][ T6055]  ? __pfx_compat_sock_ioctl+0x10/0x10
[   68.686388][ T6055]  __do_compat_sys_ioctl+0x259/0x2b0
[   68.686405][ T6055]  __do_fast_syscall_32+0x73/0x120
[   68.686421][ T6055]  do_fast_syscall_32+0x32/0x80
[   68.686435][ T6055]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   68.686451][ T6055] RIP: 0023:0xf7f10579
[   68.686459][ T6055] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   68.686469][ T6055] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   68.686480][ T6055] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000008946
[   68.686487][ T6055] RDX: 00000000200002c0 RSI: 0000000000000000 RDI: 0000000000000000
[   68.686493][ T6055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   68.686499][ T6055] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   68.686505][ T6055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   68.686517][ T6055]  </TASK>
[   68.745471][ T5353] usb 5-1: USB disconnect, device number 5
[   68.855315][ T5355] Bluetooth: hci3: command tx timeout
[   68.946965][ T6065] Mount JFS Failure: -22
[   68.946982][ T6065] jfs_mount failed w/return code = -22
[   69.142933][ T6036] syz.2.140 (6036) used greatest stack depth: 21296 bytes left
[   70.708579][ T1374] ieee802154 phy0 wpan0: encryption failed: -22
[   70.711302][ T1374] ieee802154 phy1 wpan1: encryption failed: -22
[   70.800626][ T6088] FAULT_INJECTION: forcing a failure.
[   70.800626][ T6088] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   70.804074][ T6088] CPU: 2 UID: 0 PID: 6088 Comm: syz.2.154 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[   70.806818][ T6088] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   70.809525][ T6088] Call Trace:
[   70.810460][ T6088]  <TASK>
[   70.811222][ T6088]  dump_stack_lvl+0x16c/0x1f0
[   70.812419][ T6088]  should_fail_ex+0x497/0x5b0
[   70.813651][ T6088]  _copy_to_user+0x30/0xc0
[   70.814979][ T6088]  simple_read_from_buffer+0xd0/0x160
[   70.816858][ T6088]  proc_fail_nth_read+0x198/0x270
[   70.818303][ T6088]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   70.819693][ T6088]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   70.821378][ T6088]  vfs_read+0x1ce/0xbd0
[   70.822675][ T6088]  ? __fget_files+0x23a/0x3f0
[   70.824043][ T6088]  ? fdget_pos+0x24c/0x360
[   70.825184][ T6088]  ? __pfx_lock_release+0x10/0x10
[   70.826467][ T6088]  ? trace_lock_acquire+0x14a/0x1d0
[   70.827834][ T6088]  ? __pfx_vfs_read+0x10/0x10
[   70.829063][ T6088]  ? __pfx___mutex_lock+0x10/0x10
[   70.830383][ T6088]  ? __fget_files+0x244/0x3f0
[   70.831531][ T6088]  ksys_read+0x12f/0x260
[   70.832632][ T6088]  ? __pfx_ksys_read+0x10/0x10
[   70.833880][ T6088]  __do_fast_syscall_32+0x73/0x120
[   70.835156][ T6088]  do_fast_syscall_32+0x32/0x80
[   70.836409][ T6088]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   70.838117][ T6088] RIP: 0023:0xf7f21579
[   70.839147][ T6088] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   70.844044][ T6088] RSP: 002b:00000000f56a65a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[   70.846347][ T6088] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f56a6620
[   70.848834][ T6088] RDX: 000000000000000f RSI: 00000000f73abff4 RDI: 0000000000000000
[   70.851101][ T6088] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[   70.853231][ T6088] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   70.855238][ T6088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   70.857250][ T6088]  </TASK>
[   71.094566][ T6102] netlink: 24 bytes leftover after parsing attributes in process `syz.0.153'.
[   71.305120][ T5353] usb 7-1: new full-speed USB device number 3 using dummy_hcd
[   71.310125][ T6111] binder: 6110:6111 ioctl c018620c 20000100 returned -22
[   71.332949][ T6113] netlink: 'syz.1.161': attribute type 10 has an invalid length.
[   71.334958][ T6113] ipvlan1: entered promiscuous mode
[   71.340388][ T6113] team0: Device ipvlan1 failed to register rx_handler
[   71.435161][ T5353] usb 7-1: device descriptor read/64, error -71
[   71.675135][ T5353] usb 7-1: new full-speed USB device number 4 using dummy_hcd
[   71.789576][ T6118] netlink: 88 bytes leftover after parsing attributes in process `syz.0.163'.
[   71.805123][ T5353] usb 7-1: device descriptor read/64, error -71
[   71.916781][ T5353] usb usb7-port1: attempt power cycle
[   72.094962][ T6128] netlink: 4 bytes leftover after parsing attributes in process `syz.3.166'.
[   72.097658][ T6128] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   72.099625][ T6128] batman_adv: batadv0: Removing interface: batadv_slave_0
[   72.102263][ T6128] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   72.104244][ T6128] batman_adv: batadv0: Removing interface: batadv_slave_1
[   72.265163][ T5353] usb 7-1: new full-speed USB device number 5 using dummy_hcd
[   72.285611][ T5353] usb 7-1: device descriptor read/8, error -71
[   72.525110][ T5353] usb 7-1: new full-speed USB device number 6 using dummy_hcd
[   72.545707][ T5353] usb 7-1: device descriptor read/8, error -71
[   72.665430][ T5353] usb usb7-port1: unable to enumerate USB device
[   73.033373][ T6144] netlink: 24 bytes leftover after parsing attributes in process `syz.0.171'.
[   73.388613][ T6147] Mount JFS Failure: -22
[   73.389870][ T6147] jfs_mount failed w/return code = -22
[   74.258605][ T6163] netlink: 8 bytes leftover after parsing attributes in process `syz.0.178'.
[   74.575155][ T5403] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[   74.735080][ T5403] usb 5-1: Using ep0 maxpacket: 32
[   74.741320][ T5403] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 36
[   74.747065][ T5403] usb 5-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[   74.750600][ T5403] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   74.753607][ T5403] usb 5-1: Product: syz
[   74.755315][ T5403] usb 5-1: Manufacturer: syz
[   74.756620][ T5403] usb 5-1: SerialNumber: syz
[   74.762809][ T5403] usb 5-1: config 0 descriptor??
[   74.765758][ T6168] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   74.768230][ T5403] hub 5-1:0.0: bad descriptor, ignoring hub
[   74.771846][ T5403] hub 5-1:0.0: probe with driver hub failed with error -5
[   74.781779][ T5403] input: syz syz as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input14
[   75.138269][ T6172] netlink: 4 bytes leftover after parsing attributes in process `syz.3.181'.
[   75.157403][ T6172] team1: Mode changed to "activebackup"
[   75.817118][   T56] cfg80211: failed to load regulatory.db
[   76.026264][ T6180] 9pnet_fd: Insufficient options for proto=fd
[   76.255132][ T6186] netlink: 201392 bytes leftover after parsing attributes in process `syz.3.185'.
[   76.259227][ T6186] netlink: 8 bytes leftover after parsing attributes in process `syz.3.185'.
[   76.480103][ T6191] netlink: 24 bytes leftover after parsing attributes in process `syz.2.184'.
[   77.263222][   T30] usb 5-1: USB disconnect, device number 6
[   77.264866][    C1] usbtouchscreen 5-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19
[   77.735261][   T30] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[   77.811727][ T6211] netlink: 36 bytes leftover after parsing attributes in process `syz.3.193'.
[   77.885118][   T30] usb 5-1: Using ep0 maxpacket: 8
[   77.889861][   T30] usb 5-1: config 167 has too many interfaces: 202, using maximum allowed: 32
[   77.892481][   T30] usb 5-1: config 167 has 1 interface, different from the descriptor's value: 202
[   77.896859][   T30] usb 5-1: New USB device found, idVendor=1025, idProduct=005f, bcdDevice=fe.29
[   77.899326][   T30] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   77.901967][   T30] usb 5-1: Product: syz
[   77.903116][   T30] usb 5-1: Manufacturer: syz
[   77.904411][   T30] usb 5-1: SerialNumber: syz
[   77.915230][   T30] dvb-usb: found a 'Unknown USB1.1 DVB-T device ???? please report the name to the author' in warm state.
[   77.918979][   T30] dvb-usb: bulk message failed: -22 (3/0)
[   77.941424][   T30] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[   77.944303][   T30] dvbdev: DVB: registering new adapter (Unknown USB1.1 DVB-T device ???? please report the name to the author)
[   77.948065][   T30] usb 5-1: media controller created
[   77.965861][   T30] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[   77.980021][   T30] dvb-usb: bulk message failed: -22 (6/0)
[   77.982016][   T30] dvb-usb: no frontend was attached by 'Unknown USB1.1 DVB-T device ???? please report the name to the author'
[   77.986675][   T30] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb5/5-1/input/input15
[   77.994167][   T30] dvb-usb: schedule remote query interval to 150 msecs.
[   77.996404][   T30] dvb-usb: bulk message failed: -22 (3/0)
[   78.025101][   T30] dvb-usb: Unknown USB1.1 DVB-T device ???? please report the name to the author successfully initialized and connected.
[   78.115244][ T6207] netlink: 'syz.0.192': attribute type 10 has an invalid length.
[   78.156301][ T6207] bond0: (slave wlan1): Enslaving as an active interface with an up link
[   78.166175][   T30] dvb-usb: bulk message failed: -22 (1/0)
[   78.172058][   T30] dvb-usb: error while querying for an remote control event.
[   78.185347][   T30] usb 5-1: USB disconnect, device number 7
[   78.207601][   T30] dvb-usb: Unknown USB1.1 DVB-T device ???? please successfully deinitialized and disconnected.
[   78.476522][ T6218] netlink: 4 bytes leftover after parsing attributes in process `syz.2.196'.
[   78.478983][ T6218] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   78.481174][ T6218] batman_adv: batadv0: Removing interface: batadv_slave_0
[   78.483772][ T6218] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   78.485834][ T6218] batman_adv: batadv0: Removing interface: batadv_slave_1
[   78.531383][ T6221] vxcan2: entered allmulticast mode
[   78.566509][ T6223] Mount JFS Failure: -22
[   78.567792][ T6223] jfs_mount failed w/return code = -22
[   78.789581][ T6238] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.200'.
[   78.792561][ T6238] netlink: 8 bytes leftover after parsing attributes in process `syz.2.200'.
[   79.049494][ T6248] netlink: 24 bytes leftover after parsing attributes in process `syz.0.198'.
[   79.428048][   T39] kauditd_printk_skb: 14 callbacks suppressed
[   79.428060][   T39] audit: type=1326 audit(1728176590.371:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6252 comm="syz.1.204" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x0
[   79.636125][ T6255] tmpfs: Unknown parameter 'eid'
[   79.856245][ T6257] netlink: 12 bytes leftover after parsing attributes in process `syz.0.205'.
[   81.331503][ T6280] Mount JFS Failure: -22
[   81.332714][ T6280] jfs_mount failed w/return code = -22
[   81.528758][ T1097] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.614867][ T1097] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.706131][ T1097] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.735871][ T5358] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   81.740865][ T5358] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   81.745938][ T5358] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   81.751387][ T5358] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   81.754767][ T5358] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   81.757522][ T5358] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   81.771430][ T1097] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.887920][ T6285] chnl_net:caif_netlink_parms(): no params data found
[   81.926433][ T1097] bridge_slave_1: left allmulticast mode
[   81.929024][ T1097] bridge_slave_1: left promiscuous mode
[   81.931342][ T1097] bridge0: port 2(bridge_slave_1) entered disabled state
[   81.939598][ T1097] bridge_slave_0: left allmulticast mode
[   81.941663][ T1097] bridge_slave_0: left promiscuous mode
[   81.944059][ T1097] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.303065][ T1097] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   82.310269][ T1097] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   82.316307][ T1097] bond0 (unregistering): Released all slaves
[   82.432480][ T6285] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.439989][ T6285] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.441970][ T6285] bridge_slave_0: entered allmulticast mode
[   82.445282][ T6285] bridge_slave_0: entered promiscuous mode
[   82.477082][ T6285] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.481010][ T6285] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.483381][ T6285] bridge_slave_1: entered allmulticast mode
[   82.498587][ T6285] bridge_slave_1: entered promiscuous mode
[   82.557328][ T6285] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   82.563704][ T6285] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   82.633308][ T6285] team0: Port device team_slave_0 added
[   82.641006][ T6285] team0: Port device team_slave_1 added
[   82.698975][ T6285] batman_adv: batadv0: Adding interface: batadv_slave_0
[   82.701385][ T6285] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   82.716411][ T6285] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   82.720521][ T6285] batman_adv: batadv0: Adding interface: batadv_slave_1
[   82.722240][ T6285] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   82.729253][ T6285] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   82.740808][ T1097] hsr_slave_0: left promiscuous mode
[   82.743348][ T1097] hsr_slave_1: left promiscuous mode
[   82.747040][ T1097] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   82.749032][ T1097] batman_adv: batadv0: Removing interface: batadv_slave_0
[   82.752331][ T1097] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   82.754344][ T1097] batman_adv: batadv0: Removing interface: batadv_slave_1
[   82.786227][ T5342] Bluetooth: hci4: sending frame failed (-49)
[   82.788638][ T5358] Bluetooth: hci4: Opcode 0x1003 failed: -49
[   82.789039][ T1097] veth1_macvtap: left promiscuous mode
[   82.792690][ T1097] veth0_macvtap: left promiscuous mode
[   82.794173][ T1097] veth1_vlan: left promiscuous mode
[   82.796068][ T1097] veth0_vlan: left promiscuous mode
[   83.459328][ T1097] team0 (unregistering): Port device team_slave_1 removed
[   83.526772][ T1097] team0 (unregistering): Port device team_slave_0 removed
[   83.815569][ T5358] Bluetooth: hci3: command tx timeout
[   84.002572][ T6320] netlink: 4 bytes leftover after parsing attributes in process `syz.2.223'.
[   84.062966][ T6285] hsr_slave_0: entered promiscuous mode
[   84.072477][ T6285] hsr_slave_1: entered promiscuous mode
[   84.085857][ T6331] netlink: 4 bytes leftover after parsing attributes in process `syz.0.224'.
[   84.141899][ T6337] FAULT_INJECTION: forcing a failure.
[   84.141899][ T6337] name failslab, interval 1, probability 0, space 0, times 0
[   84.142239][ T6331] netlink: 44 bytes leftover after parsing attributes in process `syz.0.224'.
[   84.148537][ T6337] CPU: 0 UID: 0 PID: 6337 Comm: syz.2.227 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[   84.151218][ T6337] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   84.153917][ T6337] Call Trace:
[   84.154775][ T6337]  <TASK>
[   84.155531][ T6337]  dump_stack_lvl+0x16c/0x1f0
[   84.156761][ T6337]  should_fail_ex+0x497/0x5b0
[   84.157974][ T6337]  ? fs_reclaim_acquire+0xae/0x160
[   84.159274][ T6337]  should_failslab+0xc2/0x120
[   84.160484][ T6337]  kmem_cache_alloc_noprof+0x6e/0x2f0
[   84.161841][ T6337]  ? security_inode_alloc+0x34/0x2b0
[   84.163177][ T6337]  security_inode_alloc+0x34/0x2b0
[   84.164508][ T6337]  inode_init_always+0xc5b/0xf90
[   84.165794][ T6337]  ? __pfx_fuse_inode_set+0x10/0x10
[   84.167154][ T6337]  alloc_inode+0x7d/0x230
[   84.168282][ T6337]  iget5_locked+0x33b/0x3d0
[   84.169492][ T6337]  ? __pfx_fuse_inode_eq+0x10/0x10
[   84.170840][ T6337]  ? __pfx_fuse_inode_set+0x10/0x10
[   84.172226][ T6337]  ? __pfx_iget5_locked+0x10/0x10
[   84.173555][ T6337]  ? mark_held_locks+0x9f/0xe0
[   84.174824][ T6337]  ? kasan_quarantine_put+0x10a/0x240
[   84.176238][ T6337]  ? lockdep_hardirqs_on+0x7c/0x110
[   84.177605][ T6337]  fuse_iget+0x162/0x8c0
[   84.178724][ T6337]  ? __pfx_fuse_iget+0x10/0x10
[   84.180002][ T6337]  ? __fuse_simple_request+0x462/0xcb0
[   84.181433][ T6337]  fuse_lookup_name+0x44e/0x700
[   84.182715][ T6337]  ? __pfx_fuse_lookup_name+0x10/0x10
[   84.184141][ T6337]  ? __pfx___mutex_lock+0x10/0x10
[   84.185465][ T6337]  fuse_lookup+0x1b1/0x430
[   84.186632][ T6337]  ? __pfx_fuse_lookup+0x10/0x10
[   84.187950][ T6337]  __lookup_slow+0x24f/0x460
[   84.189165][ T6337]  ? __pfx___lookup_slow+0x10/0x10
[   84.190507][ T6337]  ? walk_component+0x342/0x5b0
[   84.191787][ T6337]  ? lookup_fast+0x155/0x540
[   84.193011][ T6337]  walk_component+0x350/0x5b0
[   84.194239][ T6337]  path_lookupat+0x17f/0x770
[   84.195453][ T6337]  filename_lookup+0x1e5/0x5b0
[   84.196713][ T6337]  ? __pfx_filename_lookup+0x10/0x10
[   84.198104][ T6337]  ? __might_fault+0x13b/0x190
[   84.199358][ T6337]  ? __pfx_lock_release+0x10/0x10
[   84.200692][ T6337]  ? trace_lock_acquire+0x14a/0x1d0
[   84.202053][ T6337]  do_linkat+0x148/0x590
[   84.203168][ T6337]  ? __pfx_do_linkat+0x10/0x10
[   84.204447][ T6337]  ? strncpy_from_user+0x1dd/0x2a0
[   84.205787][ T6337]  ? getname_flags.part.0+0x1c5/0x550
[   84.207192][ T6337]  __ia32_sys_link+0x7c/0xa0
[   84.208412][ T6337]  __do_fast_syscall_32+0x73/0x120
[   84.209764][ T6337]  do_fast_syscall_32+0x32/0x80
[   84.211047][ T6337]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   84.212715][ T6337] RIP: 0023:0xf7f21579
[   84.213791][ T6337] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   84.218846][ T6337] RSP: 002b:00000000f568556c EFLAGS: 00000296 ORIG_RAX: 0000000000000009
[   84.221044][ T6337] RAX: ffffffffffffffda RBX: 0000000020000280 RCX: 0000000020000400
[   84.223106][ T6337] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   84.225180][ T6337] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   84.227310][ T6337] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   84.229371][ T6337] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   84.231472][ T6337]  </TASK>
[   84.235287][ T6331] netlink: 43 bytes leftover after parsing attributes in process `syz.0.224'.
[   84.245106][ T6331] netlink: 'syz.0.224': attribute type 6 has an invalid length.
[   84.256864][ T6331] netlink: 43 bytes leftover after parsing attributes in process `syz.0.224'.
[   84.980140][ T6285] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   84.990349][ T6285] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   84.999341][ T6285] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   85.011902][ T6285] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   85.103071][ T6285] 8021q: adding VLAN 0 to HW filter on device bond0
[   85.120053][ T6285] 8021q: adding VLAN 0 to HW filter on device team0
[   85.130359][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.133258][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   85.167645][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.169530][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   85.295708][ T6403] netlink: 4 bytes leftover after parsing attributes in process `syz.3.233'.
[   85.392512][ T6403] hsr_slave_1 (unregistering): left promiscuous mode
[   85.435993][ T6285] 8021q: adding VLAN 0 to HW filter on device batadv0
[   85.451713][ T6285] veth0_vlan: entered promiscuous mode
[   85.458439][ T6285] veth1_vlan: entered promiscuous mode
[   85.474944][ T6285] veth0_macvtap: entered promiscuous mode
[   85.480572][ T6285] veth1_macvtap: entered promiscuous mode
[   85.489451][ T6285] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   85.492415][ T6285] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.495899][ T6285] batman_adv: batadv0: Interface activated: batadv_slave_0
[   85.502318][ T6285] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   85.505367][ T6285] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.509943][ T6285] batman_adv: batadv0: Interface activated: batadv_slave_1
[   85.520861][ T6285] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   85.524091][ T6285] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   85.526715][ T6285] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   85.529353][ T6285] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   85.571412][ T1097] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   85.573567][ T1097] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   85.582799][   T78] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   85.584940][   T78] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   85.905137][ T5358] Bluetooth: hci3: command 0x041b tx timeout
[   85.977389][ T6431] netlink: 4 bytes leftover after parsing attributes in process `syz.2.239'.
[   86.116317][ T6435] netlink: 4 bytes leftover after parsing attributes in process `syz.2.241'.
[   86.392371][   T39] audit: type=1326 audit(1728176597.331:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6449 comm="syz.2.245" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7fc00000
[   86.471247][ T6454] block device autoloading is deprecated and will be removed.
[   86.577199][ T6458] Mount JFS Failure: -22
[   86.578935][ T6458] jfs_mount failed w/return code = -22
[   86.730099][ T6464] 9pnet_fd: Insufficient options for proto=fd
[   86.997196][ T6466] netlink: 'syz.3.252': attribute type 3 has an invalid length.
[   86.999138][ T6466] netlink: 130984 bytes leftover after parsing attributes in process `syz.3.252'.
[   87.233576][ T6471] syzkaller0: entered promiscuous mode
[   87.236359][ T6471] syzkaller0: entered allmulticast mode
[   87.238944][   T78] syzkaller0: tun_net_xmit 48
[   87.246720][ T6471] syzkaller0: tun_chr_ioctl cmd 1074025677
[   87.248288][ T6471] syzkaller0: Linktype set failed because interface is up
[   87.985133][ T5355] Bluetooth: hci3: command 0x041b tx timeout
[   88.604282][ T6482] syzkaller1: entered promiscuous mode
[   88.615439][ T6482] syzkaller1: entered allmulticast mode
[   88.923030][ T6489] input: syz0 as /devices/virtual/input/input16
[   89.681355][ T6499] FAULT_INJECTION: forcing a failure.
[   89.681355][ T6499] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   89.685137][ T6499] CPU: 0 UID: 0 PID: 6499 Comm: syz.3.262 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[   89.687874][ T6499] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   89.690652][ T6499] Call Trace:
[   89.691541][ T6499]  <TASK>
[   89.692332][ T6499]  dump_stack_lvl+0x16c/0x1f0
[   89.693580][ T6499]  should_fail_ex+0x497/0x5b0
[   89.694830][ T6499]  _copy_from_iter+0x29b/0x13e0
[   89.696119][ T6499]  ? __pfx__copy_from_iter+0x10/0x10
[   89.697505][ T6499]  ? __virt_addr_valid+0x1a4/0x590
[   89.698823][ T6499]  ? __virt_addr_valid+0x5e/0x590
[   89.700081][ T6499]  ? __phys_addr_symbol+0x30/0x80
[   89.701386][ T6499]  ? __check_object_size+0x488/0x710
[   89.702655][ T6499]  netlink_sendmsg+0x813/0xd70
[   89.703927][ T6499]  ? __pfx_netlink_sendmsg+0x10/0x10
[   89.705292][ T6499]  ? lock_acquire+0x2f/0xb0
[   89.706397][ T6499]  ____sys_sendmsg+0x9ae/0xb40
[   89.707554][ T6499]  ? __pfx_____sys_sendmsg+0x10/0x10
[   89.708917][ T6499]  ? get_compat_msghdr+0x11b/0x170
[   89.710215][ T6499]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   89.711646][ T6499]  ? __pfx___lock_acquire+0x10/0x10
[   89.712981][ T6499]  ___sys_sendmsg+0x135/0x1e0
[   89.714150][ T6499]  ? __pfx____sys_sendmsg+0x10/0x10
[   89.715510][ T6499]  ? lock_acquire+0x2f/0xb0
[   89.716707][ T6499]  ? __fget_files+0x40/0x3f0
[   89.717934][ T6499]  ? fdget+0x176/0x210
[   89.719007][ T6499]  __sys_sendmsg+0x117/0x1f0
[   89.720217][ T6499]  ? __pfx___sys_sendmsg+0x10/0x10
[   89.721530][ T6499]  ? __fget_files+0x244/0x3f0
[   89.722684][ T6499]  __do_fast_syscall_32+0x73/0x120
[   89.724009][ T6499]  do_fast_syscall_32+0x32/0x80
[   89.725251][ T6499]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   89.726907][ T6499] RIP: 0023:0xf7f10579
[   89.727986][ T6499] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   89.733160][ T6499] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   89.735305][ T6499] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000140
[   89.737353][ T6499] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   89.739409][ T6499] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   89.741473][ T6499] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   89.743528][ T6499] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   89.745579][ T6499]  </TASK>
[   89.965088][ T5403] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[   90.055222][ T5355] Bluetooth: hci3: command 0x041b tx timeout
[   90.105417][ T5403] usb 5-1: device descriptor read/64, error -71
[   90.365146][ T5403] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[   90.480601][ T6511] vlan0: entered promiscuous mode
[   90.494068][ T6511] team0: Port device vlan0 added
[   90.505478][ T5403] usb 5-1: device descriptor read/64, error -71
[   90.579561][ T6514] Mount JFS Failure: -22
[   90.580902][ T6514] jfs_mount failed w/return code = -22
[   90.615223][ T5403] usb usb5-port1: attempt power cycle
[   90.965172][ T5403] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[   90.995908][ T5403] usb 5-1: device descriptor read/8, error -71
[   91.255249][ T5403] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[   91.275995][ T5403] usb 5-1: device descriptor read/8, error -71
[   91.386056][ T5403] usb usb5-port1: unable to enumerate USB device
[   91.711974][ T6526] tmpfs: Bad value for 'uid'
[   91.713339][ T6526] tmpfs: Bad value for 'uid'
[   92.136281][ T5355] Bluetooth: hci3: command 0x041b tx timeout
[   92.475165][ T6538] netlink: 3 bytes leftover after parsing attributes in process `syz.2.277'.
[   92.865084][ T6546] input: syz0 as /devices/virtual/input/input17
[   93.294387][   T42] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.398135][   T42] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.465469][ T5358] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   93.470173][ T5358] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   93.472850][ T5358] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   93.477575][ T5358] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   93.481532][ T5358] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   93.484031][ T5358] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   93.499464][   T42] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.573797][ T6549] chnl_net:caif_netlink_parms(): no params data found
[   93.600271][   T42] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.738837][ T6549] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.741308][ T6549] bridge0: port 1(bridge_slave_0) entered disabled state
[   93.743429][ T6549] bridge_slave_0: entered allmulticast mode
[   93.746030][ T6549] bridge_slave_0: entered promiscuous mode
[   93.752363][ T6549] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.755577][ T6549] bridge0: port 2(bridge_slave_1) entered disabled state
[   93.757582][ T6549] bridge_slave_1: entered allmulticast mode
[   93.759777][ T6549] bridge_slave_1: entered promiscuous mode
[   93.803975][ T6549] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   93.825115][ T6549] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   93.841709][   T42] bridge_slave_1: left allmulticast mode
[   93.843807][   T42] bridge_slave_1: left promiscuous mode
[   93.846355][   T42] bridge0: port 2(bridge_slave_1) entered disabled state
[   93.852066][   T42] bridge_slave_0: left allmulticast mode
[   93.854063][   T42] bridge_slave_0: left promiscuous mode
[   93.859998][   T42] bridge0: port 1(bridge_slave_0) entered disabled state
[   94.202953][   T42] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   94.213409][   T42] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   94.222252][   T42] bond0 (unregistering): Released all slaves
[   94.292475][ T6549] team0: Port device team_slave_0 added
[   94.303860][ T6549] team0: Port device team_slave_1 added
[   94.409011][ T6549] batman_adv: batadv0: Adding interface: batadv_slave_0
[   94.410947][ T6549] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   94.418419][ T6549] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   94.430589][ T6549] batman_adv: batadv0: Adding interface: batadv_slave_1
[   94.432612][ T6549] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   94.440345][ T6549] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   94.513310][ T6549] hsr_slave_0: entered promiscuous mode
[   94.516406][ T6549] hsr_slave_1: entered promiscuous mode
[   94.518754][ T6549] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   94.521674][ T6549] Cannot create hsr debugfs directory
[   94.647112][   T42] hsr_slave_0: left promiscuous mode
[   94.651995][   T42] hsr_slave_1: left promiscuous mode
[   94.657528][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   94.659591][   T42] batman_adv: batadv0: Removing interface: batadv_slave_0
[   94.662257][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   94.665521][   T42] batman_adv: batadv0: Removing interface: batadv_slave_1
[   94.665565][ T1283] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[   94.723387][   T42] veth1_macvtap: left promiscuous mode
[   94.725760][   T42] veth0_macvtap: left promiscuous mode
[   94.728210][   T42] veth1_vlan: left promiscuous mode
[   94.730350][   T42] veth0_vlan: left promiscuous mode
[   94.833501][ T1283] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[   94.843895][ T1283] usb 5-1: config 1 has an invalid descriptor of length 200, skipping remainder of the config
[   94.847117][ T1283] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[   94.849670][ T1283] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[   94.855764][ T1283] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[   94.858107][ T1283] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[   94.864743][ T1283] usb 5-1: Product: syz
[   94.869387][ T1283] usb 5-1: Manufacturer: syz
[   94.885434][ T1283] cdc_wdm 5-1:1.0: skipping garbage
[   94.886885][ T1283] cdc_wdm 5-1:1.0: skipping garbage
[   94.888314][ T1283] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22
[   95.094576][ T6572] fuse: Bad value for 'fd'
[   95.105709][ T1283] usb 5-1: USB disconnect, device number 12
[   95.505493][ T5358] Bluetooth: hci3: command tx timeout
[   95.531056][   T42] team0 (unregistering): Port device team_slave_1 removed
[   95.609664][   T42] team0 (unregistering): Port device team_slave_0 removed
[   96.872776][ T6549] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   96.878021][ T6549] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   96.902463][ T6549] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   96.914527][ T6549] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   96.982374][ T6549] 8021q: adding VLAN 0 to HW filter on device bond0
[   96.991672][ T6549] 8021q: adding VLAN 0 to HW filter on device team0
[   96.999457][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   97.001455][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   97.017550][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   97.019425][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   97.190054][ T6549] 8021q: adding VLAN 0 to HW filter on device batadv0
[   97.225388][ T6549] veth0_vlan: entered promiscuous mode
[   97.229891][ T6549] veth1_vlan: entered promiscuous mode
[   97.241607][ T6549] veth0_macvtap: entered promiscuous mode
[   97.245569][ T6549] veth1_macvtap: entered promiscuous mode
[   97.258393][ T6549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   97.261141][ T6549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   97.264335][ T6549] batman_adv: batadv0: Interface activated: batadv_slave_0
[   97.267598][ T6549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   97.270371][ T6549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   97.273466][ T6549] batman_adv: batadv0: Interface activated: batadv_slave_1
[   97.277080][ T6549] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   97.279342][ T6549] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   97.281594][ T6549] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   97.283860][ T6549] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   97.360327][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.368366][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.381630][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.383744][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.394962][ T6657] netlink: 12 bytes leftover after parsing attributes in process `syz.0.299'.
[   97.399197][ T6657] FAULT_INJECTION: forcing a failure.
[   97.399197][ T6657] name failslab, interval 1, probability 0, space 0, times 0
[   97.403839][ T6657] CPU: 1 UID: 0 PID: 6657 Comm: syz.0.299 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[   97.407556][ T6657] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   97.411258][ T6657] Call Trace:
[   97.412268][ T6657]  <TASK>
[   97.413126][ T6657]  dump_stack_lvl+0x16c/0x1f0
[   97.414371][ T6657]  should_fail_ex+0x497/0x5b0
[   97.415706][ T6657]  ? fs_reclaim_acquire+0xae/0x160
[   97.417063][ T6657]  should_failslab+0xc2/0x120
[   97.418318][ T6657]  __kmalloc_cache_noprof+0x6b/0x310
[   97.419728][ T6657]  ? alloc_netdev_mqs+0xdde/0x12a0
[   97.421087][ T6657]  alloc_netdev_mqs+0xdde/0x12a0
[   97.422443][ T6657]  rtnl_create_link+0xbed/0xf10
[   97.423766][ T6657]  __rtnl_newlink+0x10b3/0x1920
[   97.425059][ T6657]  ? __pfx___rtnl_newlink+0x10/0x10
[   97.426435][ T6657]  rtnl_newlink+0x67/0xa0
[   97.427579][ T6657]  ? __pfx_rtnl_newlink+0x10/0x10
[   97.428929][ T6657]  rtnetlink_rcv_msg+0x3c7/0xea0
[   97.430246][ T6657]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   97.431679][ T6657]  ? __pfx___dev_queue_xmit+0x10/0x10
[   97.433142][ T6657]  netlink_rcv_skb+0x165/0x410
[   97.434405][ T6657]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   97.435842][ T6657]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   97.437244][ T6657]  ? netlink_deliver_tap+0x1ae/0xcf0
[   97.438637][ T6657]  netlink_unicast+0x53c/0x7f0
[   97.439911][ T6657]  ? __pfx_netlink_unicast+0x10/0x10
[   97.441299][ T6657]  ? __phys_addr_symbol+0x30/0x80
[   97.442836][ T6657]  ? __check_object_size+0x488/0x710
[   97.444785][ T6657]  netlink_sendmsg+0x8b8/0xd70
[   97.446327][ T6657]  ? __pfx_netlink_sendmsg+0x10/0x10
[   97.447762][ T6657]  ? lock_acquire+0x2f/0xb0
[   97.449032][ T6657]  ____sys_sendmsg+0x9ae/0xb40
[   97.450351][ T6657]  ? __pfx_____sys_sendmsg+0x10/0x10
[   97.451779][ T6657]  ? get_compat_msghdr+0x11b/0x170
[   97.453178][ T6657]  ? __pfx___lock_acquire+0x10/0x10
[   97.454586][ T6657]  ___sys_sendmsg+0x135/0x1e0
[   97.455910][ T6657]  ? __pfx____sys_sendmsg+0x10/0x10
[   97.457317][ T6657]  ? lock_acquire+0x2f/0xb0
[   97.458764][ T6657]  ? __fget_files+0x40/0x3f0
[   97.460586][ T6657]  ? fdget+0x176/0x210
[   97.462147][ T6657]  __sys_sendmsg+0x117/0x1f0
[   97.464054][ T6657]  ? __pfx___sys_sendmsg+0x10/0x10
[   97.465673][ T6657]  ? __fget_files+0x244/0x3f0
[   97.466979][ T6657]  __do_fast_syscall_32+0x73/0x120
[   97.468467][ T6657]  do_fast_syscall_32+0x32/0x80
[   97.469747][ T6657]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   97.471396][ T6657] RIP: 0023:0xf7f18579
[   97.472488][ T6657] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   97.477479][ T6657] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   97.479638][ T6657] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000080
[   97.481710][ T6657] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   97.483807][ T6657] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   97.485864][ T6657] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   97.487968][ T6657] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   97.490079][ T6657]  </TASK>
[   97.586824][ T6662] netlink: 24 bytes leftover after parsing attributes in process `syz.2.297'.
[   97.606302][ T5358] Bluetooth: hci3: command tx timeout
[   98.579163][ T6692] netlink: 4 bytes leftover after parsing attributes in process `syz.0.310'.
[   98.674197][ T6692] hsr_slave_1 (unregistering): left promiscuous mode
[   98.838818][ T6697] netlink: 4 bytes leftover after parsing attributes in process `syz.0.311'.
[   98.981474][ T6707] netlink: 4 bytes leftover after parsing attributes in process `syz.0.314'.
[   98.984626][ T6707] netlink: 'syz.0.314': attribute type 11 has an invalid length.
[   99.002697][ T6707] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   99.006008][ T6707] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   99.009035][ T6707] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   99.012211][ T6707] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   99.017620][ T6707] vxlan0: entered promiscuous mode
[   99.179547][ T6711] netlink: 24 bytes leftover after parsing attributes in process `syz.3.312'.
[   99.655179][ T5355] Bluetooth: hci3: command tx timeout
[   99.810410][ T6104] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   99.912331][ T6722] netlink: 'syz.3.318': attribute type 4 has an invalid length.
[   99.974596][ T6726] netlink: 4 bytes leftover after parsing attributes in process `syz.2.320'.
[   99.976880][ T6104] usb 6-1: Using ep0 maxpacket: 16
[   99.979546][ T6104] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[   99.982663][ T6104] usb 6-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[   99.984951][ T6104] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  100.000724][ T6104] usb 6-1: config 0 descriptor??
[  100.823686][ T5403] libceph: connect (1)[c::]:6789 error -101
[  100.828282][ T5403] libceph: mon0 (1)[c::]:6789 connect error
[  100.834365][ T5403] libceph: connect (1)[c::]:6789 error -101
[  100.836821][ T5403] libceph: mon0 (1)[c::]:6789 connect error
[  100.865208][ T6736] ceph: No mds server is up or the cluster is laggy
[  101.166250][ T6742] netlink: 24 bytes leftover after parsing attributes in process `syz.2.324'.
[  101.290735][ T6747] 9pnet_fd: Insufficient options for proto=fd
[  101.302705][ T6747] FAULT_INJECTION: forcing a failure.
[  101.302705][ T6747] name failslab, interval 1, probability 0, space 0, times 0
[  101.308178][ T6747] CPU: 0 UID: 0 PID: 6747 Comm: syz.2.326 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  101.312002][ T6747] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  101.315073][ T6747] Call Trace:
[  101.316029][ T6747]  <TASK>
[  101.317057][ T6747]  dump_stack_lvl+0x16c/0x1f0
[  101.318956][ T6747]  should_fail_ex+0x497/0x5b0
[  101.320763][ T6747]  ? fs_reclaim_acquire+0xae/0x160
[  101.322702][ T6747]  should_failslab+0xc2/0x120
[  101.324281][ T6747]  __kmalloc_cache_noprof+0x6b/0x310
[  101.325673][ T6747]  ? apply_wqattrs_prepare+0x130/0xbd0
[  101.327132][ T6747]  apply_wqattrs_prepare+0x130/0xbd0
[  101.328511][ T6747]  ? __alloc_workqueue+0x87c/0x1810
[  101.329878][ T6747]  apply_workqueue_attrs_locked+0x64/0xe0
[  101.331527][ T6747]  __alloc_workqueue+0xf34/0x1810
[  101.332904][ T6747]  alloc_workqueue+0xd3/0x200
[  101.334502][ T6747]  ? __pfx_alloc_workqueue+0x10/0x10
[  101.336317][ T6747]  hci_register_dev+0x1cf/0xc60
[  101.337997][ T6747]  hci_uart_tty_ioctl+0x7d0/0xc10
[  101.339733][ T6747]  ? __pfx_hci_uart_tty_ioctl+0x10/0x10
[  101.341608][ T6747]  tty_compat_ioctl+0x381/0x4d0
[  101.343279][ T6747]  ? __pfx_tty_compat_ioctl+0x10/0x10
[  101.345122][ T6747]  __do_compat_sys_ioctl+0x259/0x2b0
[  101.346934][ T6747]  __do_fast_syscall_32+0x73/0x120
[  101.348734][ T6747]  do_fast_syscall_32+0x32/0x80
[  101.350397][ T6747]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  101.352554][ T6747] RIP: 0023:0xf7f21579
[  101.353929][ T6747] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  101.359359][ T6747] RSP: 002b:00000000f568556c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  101.362168][ T6747] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000400455c8
[  101.364848][ T6747] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  101.367504][ T6747] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  101.370198][ T6747] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  101.372845][ T6747] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  101.374804][ T6747]  </TASK>
[  101.386819][ T6747] Bluetooth: Can't register HCI device
[  101.735190][ T5355] Bluetooth: hci3: command tx timeout
[  101.741134][ T6752] FAULT_INJECTION: forcing a failure.
[  101.741134][ T6752] name failslab, interval 1, probability 0, space 0, times 0
[  101.747416][ T6752] CPU: 0 UID: 0 PID: 6752 Comm: syz.0.328 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  101.751087][ T6752] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  101.753955][ T6752] Call Trace:
[  101.754857][ T6752]  <TASK>
[  101.755673][ T6752]  dump_stack_lvl+0x16c/0x1f0
[  101.756961][ T6752]  should_fail_ex+0x497/0x5b0
[  101.758230][ T6752]  ? fs_reclaim_acquire+0xae/0x160
[  101.759608][ T6752]  should_failslab+0xc2/0x120
[  101.760897][ T6752]  __kmalloc_noprof+0xcb/0x410
[  101.762183][ T6752]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  101.763765][ T6752]  tomoyo_realpath_from_path+0xbf/0x710
[  101.765278][ T6752]  ? tomoyo_path_number_perm+0x232/0x5b0
[  101.766764][ T6752]  tomoyo_path_number_perm+0x245/0x5b0
[  101.768220][ T6752]  ? tomoyo_path_number_perm+0x232/0x5b0
[  101.769735][ T6752]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  101.771348][ T6752]  ? trace_lock_acquire+0x14a/0x1d0
[  101.772743][ T6752]  ? lock_acquire+0x2f/0xb0
[  101.773962][ T6752]  ? __fget_files+0x40/0x3f0
[  101.775205][ T6752]  ? __fget_files+0x244/0x3f0
[  101.776479][ T6752]  security_file_ioctl_compat+0x9b/0x240
[  101.777996][ T6752]  __do_compat_sys_ioctl+0x52/0x2b0
[  101.779392][ T6752]  __do_fast_syscall_32+0x73/0x120
[  101.780756][ T6752]  do_fast_syscall_32+0x32/0x80
[  101.782072][ T6752]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  101.783779][ T6752] RIP: 0023:0xf7f18579
[  101.784868][ T6752] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  101.789919][ T6752] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  101.792112][ T6752] RAX: ffffffffffffffda RBX: 000000000000000e RCX: 000000000000ae80
[  101.794189][ T6752] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  101.796299][ T6752] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  101.798377][ T6752] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  101.800468][ T6752] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  101.802559][ T6752]  </TASK>
[  101.805355][ T6752] ERROR: Out of memory at tomoyo_realpath_from_path.
[  101.910837][ T6756] netlink: 'syz.3.329': attribute type 11 has an invalid length.
[  102.043808][ T6759] Invalid/unusable pipe
[  102.365162][ T1283] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  102.535711][ T6104] usbhid 6-1:0.0: can't add hid device: -71
[  102.537388][ T6104] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  102.540380][ T6104] usb 6-1: USB disconnect, device number 3
[  102.550127][ T1283] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  102.559258][ T1283] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 115, changing to 10
[  102.565864][ T1283] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26217, setting to 1024
[  102.571463][ T1283] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  102.578493][ T1283] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  102.581185][ T1283] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  102.583656][ T1283] usb 7-1: Manufacturer: syz
[  102.589461][ T1283] usb 7-1: config 0 descriptor??
[  102.592716][ T6763] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  102.596207][ T6765] netlink: 4 bytes leftover after parsing attributes in process `syz.1.333'.
[  103.007104][ T1283] appleir 0003:05AC:8243.0003: unknown main item tag 0x0
[  103.009934][ T1283] appleir 0003:05AC:8243.0003: No inputs registered, leaving
[  103.017225][ T1283] appleir 0003:05AC:8243.0003: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.2-1/input0
[  103.801434][ T6779] netlink: 24 bytes leftover after parsing attributes in process `syz.2.332'.
[  103.918847][ T6783] binder_alloc: 6782: binder_alloc_buf, no vma
[  103.920533][ T6783] FAULT_INJECTION: forcing a failure.
[  103.920533][ T6783] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  103.923780][ T6783] CPU: 1 UID: 0 PID: 6783 Comm: syz.1.337 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  103.926463][ T6783] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  103.929260][ T6783] Call Trace:
[  103.930114][ T6783]  <TASK>
[  103.930874][ T6783]  dump_stack_lvl+0x16c/0x1f0
[  103.932096][ T6783]  should_fail_ex+0x497/0x5b0
[  103.933336][ T6783]  _copy_to_user+0x30/0xc0
[  103.934480][ T6783]  binder_ioctl+0x2643/0x7050
[  103.935686][ T6783]  ? tomoyo_path_number_perm+0x467/0x5b0
[  103.937154][ T6783]  ? tomoyo_path_number_perm+0x190/0x5b0
[  103.938581][ T6783]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  103.940109][ T6783]  ? __pfx_binder_ioctl+0x10/0x10
[  103.941413][ T6783]  ? do_vfs_ioctl+0x513/0x1950
[  103.942647][ T6783]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  103.944060][ T6783]  ? __fget_files+0x244/0x3f0
[  103.945301][ T6783]  ? __pfx_binder_ioctl+0x10/0x10
[  103.946679][ T6783]  compat_ptr_ioctl+0x6b/0xa0
[  103.947875][ T6783]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[  103.949250][ T6783]  __do_compat_sys_ioctl+0x259/0x2b0
[  103.950599][ T6783]  __do_fast_syscall_32+0x73/0x120
[  103.951920][ T6783]  do_fast_syscall_32+0x32/0x80
[  103.953117][ T6783]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  103.954755][ T6783] RIP: 0023:0xf7fe2579
[  103.955780][ T6783] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  103.960473][ T6783] RSP: 002b:00000000f576656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  103.962620][ T6783] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000c0306201
[  103.964703][ T6783] RDX: 0000000020004a40 RSI: 0000000000000000 RDI: 0000000000000000
[  103.966772][ T6783] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  103.969394][ T6783] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  103.972069][ T6783] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  103.974792][ T6783]  </TASK>
[  103.977509][ T6783] binder: 6782:6783 ioctl c0306201 20004a40 returned -14
[  104.425634][ T1283] usb 7-1: reset high-speed USB device number 7 using dummy_hcd
[  104.565098][ T1283] usb 7-1: device descriptor read/64, error -32
[  104.811436][ T1283] usb 7-1: reset high-speed USB device number 7 using dummy_hcd
[  104.886151][ T6798] netlink: 24 bytes leftover after parsing attributes in process `syz.1.341'.
[  104.945124][ T1283] usb 7-1: device descriptor read/64, error -32
[  105.255717][ T1283] usb 7-1: reset high-speed USB device number 7 using dummy_hcd
[  105.275554][ T1283] usb 7-1: device descriptor read/8, error -32
[  105.670419][ T6823] netlink: 24 bytes leftover after parsing attributes in process `syz.3.345'.
[  105.679656][ T6822] netlink: 24 bytes leftover after parsing attributes in process `syz.2.346'.
[  106.267103][ T5383] usb 7-1: USB disconnect, device number 7
[  106.293888][ T6828] netlink: 16 bytes leftover after parsing attributes in process `syz.3.348'.
[  106.889366][ T6843] netlink: 36 bytes leftover after parsing attributes in process `syz.0.352'.
[  106.892065][ T6843] netlink: 16 bytes leftover after parsing attributes in process `syz.0.352'.
[  106.897451][ T6843] netlink: 36 bytes leftover after parsing attributes in process `syz.0.352'.
[  106.900867][ T6843] netlink: 36 bytes leftover after parsing attributes in process `syz.0.352'.
[  107.628360][ T6872] netlink: 'syz.2.359': attribute type 10 has an invalid length.
[  107.639088][ T6872] team0: Failed to send options change via netlink (err -105)
[  107.641735][ T6872] team0: Port device netdevsim0 added
[  107.645551][ T1097] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  107.657370][ T6872] netlink: 'syz.2.359': attribute type 10 has an invalid length.
[  107.662683][ T6872] team0: Failed to send options change via netlink (err -105)
[  107.664790][ T6872] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  107.667885][ T6872] team0: Port device netdevsim0 removed
[  107.670730][ T6872] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  108.678520][ T6887] FAULT_INJECTION: forcing a failure.
[  108.678520][ T6887] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  108.686190][ T6887] CPU: 1 UID: 0 PID: 6887 Comm: syz.1.364 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  108.689064][ T6887] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  108.691973][ T6887] Call Trace:
[  108.692849][ T6887]  <TASK>
[  108.693683][ T6887]  dump_stack_lvl+0x16c/0x1f0
[  108.695026][ T6887]  should_fail_ex+0x497/0x5b0
[  108.696411][ T6887]  _copy_to_user+0x30/0xc0
[  108.697686][ T6887]  simple_read_from_buffer+0xd0/0x160
[  108.699382][ T6887]  proc_fail_nth_read+0x198/0x270
[  108.701036][ T6887]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  108.702477][ T6887]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  108.704030][ T6887]  vfs_read+0x1ce/0xbd0
[  108.705187][ T6887]  ? __fget_files+0x23a/0x3f0
[  108.706565][ T6887]  ? fdget_pos+0x24c/0x360
[  108.707793][ T6887]  ? __pfx_lock_release+0x10/0x10
[  108.709158][ T6887]  ? trace_lock_acquire+0x14a/0x1d0
[  108.710632][ T6887]  ? __pfx_vfs_read+0x10/0x10
[  108.711961][ T6887]  ? __pfx___mutex_lock+0x10/0x10
[  108.713351][ T6887]  ? __fget_files+0x244/0x3f0
[  108.714692][ T6887]  ksys_read+0x12f/0x260
[  108.715836][ T6887]  ? __pfx_ksys_read+0x10/0x10
[  108.717098][ T6887]  __do_fast_syscall_32+0x73/0x120
[  108.718640][ T6887]  do_fast_syscall_32+0x32/0x80
[  108.719993][ T6887]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  108.721733][ T6887] RIP: 0023:0xf7fe2579
[  108.722852][ T6887] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  108.727946][ T6887] RSP: 002b:00000000f57665a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  108.730169][ T6887] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5766620
[  108.732496][ T6887] RDX: 000000000000000f RSI: 00000000f746bff4 RDI: 0000000000000000
[  108.734649][ T6887] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  108.736811][ T6887] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  108.738936][ T6887] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  108.741086][ T6887]  </TASK>
[  108.817592][ T6893] syz.2.366 (6893): drop_caches: 2
[  108.837009][ T6897] 9pnet_fd: Insufficient options for proto=fd
[  108.905456][ T6899] raw_sendmsg: syz.2.369 forgot to set AF_INET. Fix it!
[  109.800586][ T6909] __nla_validate_parse: 5 callbacks suppressed
[  109.800602][ T6909] netlink: 24 bytes leftover after parsing attributes in process `syz.2.371'.
[  110.545214][   T39] audit: type=1326 audit(2000000020.939:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6916 comm="syz.2.373" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x0
[  110.855416][ T5355] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  111.622063][ T6946] FAULT_INJECTION: forcing a failure.
[  111.622063][ T6946] name failslab, interval 1, probability 0, space 0, times 0
[  111.626625][ T6946] CPU: 0 UID: 0 PID: 6946 Comm: syz.2.379 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  111.630010][ T6946] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  111.633498][ T6946] Call Trace:
[  111.634579][ T6946]  <TASK>
[  111.635546][ T6946]  dump_stack_lvl+0x16c/0x1f0
[  111.637134][ T6946]  should_fail_ex+0x497/0x5b0
[  111.638682][ T6946]  ? fs_reclaim_acquire+0xae/0x160
[  111.640380][ T6946]  should_failslab+0xc2/0x120
[  111.641911][ T6946]  __kmalloc_cache_noprof+0x6b/0x310
[  111.643649][ T6946]  ? nfnl_err_add+0x4e/0x2d0
[  111.645139][ T6946]  nfnl_err_add+0x4e/0x2d0
[  111.646576][ T6946]  nfnetlink_rcv_batch+0xe40/0x24e0
[  111.648193][ T6946]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[  111.649951][ T6946]  ? __pfx_lock_release+0x10/0x10
[  111.651598][ T6946]  ? __local_bh_enable_ip+0xa4/0x120
[  111.653282][ T6946]  ? lockdep_hardirqs_on+0x7c/0x110
[  111.655017][ T6946]  ? __pfx___dev_queue_xmit+0x10/0x10
[  111.656837][ T6946]  ? __nla_parse+0x40/0x60
[  111.658309][ T6946]  nfnetlink_rcv+0x3c3/0x430
[  111.659861][ T6946]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  111.661551][ T6946]  netlink_unicast+0x53c/0x7f0
[  111.663123][ T6946]  ? __pfx_netlink_unicast+0x10/0x10
[  111.664882][ T6946]  ? __phys_addr_symbol+0x30/0x80
[  111.666548][ T6946]  ? __check_object_size+0x4a1/0x710
[  111.668312][ T6946]  netlink_sendmsg+0x8b8/0xd70
[  111.669863][ T6946]  ? __pfx_netlink_sendmsg+0x10/0x10
[  111.671641][ T6946]  ? lock_acquire+0x2f/0xb0
[  111.673150][ T6946]  ____sys_sendmsg+0x9ae/0xb40
[  111.674753][ T6946]  ? __pfx_____sys_sendmsg+0x10/0x10
[  111.676464][ T6946]  ? get_compat_msghdr+0x11b/0x170
[  111.678131][ T6946]  ? __pfx___lock_acquire+0x10/0x10
[  111.679841][ T6946]  ___sys_sendmsg+0x135/0x1e0
[  111.681435][ T6946]  ? __pfx____sys_sendmsg+0x10/0x10
[  111.683153][ T6946]  ? lock_acquire+0x2f/0xb0
[  111.684657][ T6946]  ? __fget_files+0x40/0x3f0
[  111.686168][ T6946]  ? fdget+0x176/0x210
[  111.687497][ T6946]  __sys_sendmsg+0x117/0x1f0
[  111.689011][ T6946]  ? __pfx___sys_sendmsg+0x10/0x10
[  111.690688][ T6946]  ? __fget_files+0x244/0x3f0
[  111.692264][ T6946]  __do_fast_syscall_32+0x73/0x120
[  111.693921][ T6946]  do_fast_syscall_32+0x32/0x80
[  111.695498][ T6946]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  111.697545][ T6946] RIP: 0023:0xf7f21579
[  111.698837][ T6946] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  111.705073][ T6946] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  111.707757][ T6946] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000002000c2c0
[  111.710237][ T6946] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  111.712752][ T6946] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  111.715233][ T6946] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  111.717759][ T6946] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  111.720315][ T6946]  </TASK>
[  112.111280][ T6953] netlink: 24 bytes leftover after parsing attributes in process `syz.2.380'.
[  112.483389][ T5403] libceph: connect (1)[c::]:6789 error -101
[  112.485130][ T5403] libceph: mon0 (1)[c::]:6789 connect error
[  112.540753][ T6955] ceph: No mds server is up or the cluster is laggy
[  112.855478][ T6973] netlink: 24 bytes leftover after parsing attributes in process `syz.0.382'.
[  113.527261][ T6980] program syz.3.386 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  113.530049][ T6980] netlink: 'syz.3.386': attribute type 1 has an invalid length.
[  113.861426][ T6994] exFAT-fs (nullb0): invalid boot record signature
[  113.863249][ T6994] exFAT-fs (nullb0): failed to read boot sector
[  113.864884][ T6994] exFAT-fs (nullb0): failed to recognize exfat type
[  114.355798][ T6999] netlink: 24 bytes leftover after parsing attributes in process `syz.0.392'.
[  115.307677][ T7011] netlink: 4 bytes leftover after parsing attributes in process `syz.2.395'.
[  115.323781][ T7010] netlink: 24 bytes leftover after parsing attributes in process `syz.0.393'.
[  115.564839][ T5355] Bluetooth: hci2: Malformed LE Event: 0x1b
[  115.581649][ T5355] Bluetooth: hci2: Ignoring connect complete event for invalid link type
[  115.779670][ T7023] netlink: 4 bytes leftover after parsing attributes in process `syz.2.399'.
[  115.865155][ T6104] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  116.036237][ T6104] usb 8-1: config 0 has no interfaces?
[  116.037846][ T6104] usb 8-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[  116.040181][ T6104] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  116.044431][ T6104] usb 8-1: config 0 descriptor??
[  116.068652][ T7029] [U] ���ZF��
[  116.069801][ T7029] [U] #�n��1݉,���rj1E�4<~��Mj7��?ͫ���|���f�[Y3v�Ԧ+���d�-c���n0ϳJ�c�F�0�秀�?�lK�?��y�o�(m�܉"YE��3�
[  116.073113][ T7029] [U] �S�̝l�)t=
[  116.074102][ T7029] [U] -�u~�t��k�8a��8�$�y8�	�@�����o�|m{����m��;��#��o8l� ��sj��{������[*WS��\�S{�P#��z����o���x�}�ؕfŀ��m�(+���3b9Au����
[  116.075449][   T35] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  116.078720][ T7029] [U] x��G.n��-U���6��������������4��(7�P���$���%T�*�\�!n��_�_g�)�ᠿ)���t��[bS���P
[  116.098214][ T7029] netlink: 8 bytes leftover after parsing attributes in process `syz.0.401'.
[  116.105512][ T7029] 9pnet_fd: Insufficient options for proto=fd
[  116.225099][   T35] usb 7-1: Using ep0 maxpacket: 16
[  116.227721][   T35] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  116.230550][   T35] usb 7-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  116.232708][   T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  116.236496][   T35] usb 7-1: config 0 descriptor??
[  116.262608][ T5383] usb 8-1: USB disconnect, device number 2
[  116.878473][ T7029] [U] $\�
�&b������%� }�!z�{�ܦ[�A%m���۠�M��7�(�<�B!L |���6�M����t��E���Mߺ��H�@�2a�B�M��MZOfE7 
[  117.095224][ T5383] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  117.245204][ T5383] usb 8-1: Using ep0 maxpacket: 32
[  117.248565][ T5383] usb 8-1: config index 0 descriptor too short (expected 156, got 27)
[  117.251544][ T5383] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  117.255397][ T5383] usb 8-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  117.259377][ T5383] usb 8-1: config 0 interface 0 altsetting 191 has 0 endpoint descriptors, different from the interface descriptor's value: 144
[  117.264071][ T5383] usb 8-1: config 0 interface 0 has no altsetting 0
[  117.270531][ T5383] usb 8-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  117.274433][ T5383] usb 8-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  117.277543][ T5383] usb 8-1: Product: syz
[  117.279064][ T5383] usb 8-1: Manufacturer: syz
[  117.280767][ T5383] usb 8-1: SerialNumber: syz
[  117.284078][ T5383] usb 8-1: config 0 descriptor??
[  117.289122][ T5383] ldusb 8-1:0.0: Interrupt in endpoint not found
[  117.575321][ T7036] netlink: 28 bytes leftover after parsing attributes in process `syz.3.403'.
[  117.718309][ T5408] usb 8-1: USB disconnect, device number 3
[  118.342530][   T39] audit: type=1800 audit(2000000028.739:30): pid=7048 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.406" name="file0" dev="overlay" ino=626 res=0 errno=0
[  118.549413][ T7055] IPv6: NLM_F_CREATE should be specified when creating new route
[  118.562126][ T7052] netlink: 4 bytes leftover after parsing attributes in process `syz.3.408'.
[  118.610549][ T7058] netlink: 4 bytes leftover after parsing attributes in process `syz.3.409'.
[  118.635783][ T7058] netlink: 44 bytes leftover after parsing attributes in process `syz.3.409'.
[  118.639013][ T7058] netlink: 43 bytes leftover after parsing attributes in process `syz.3.409'.
[  118.642217][ T7058] netlink: 'syz.3.409': attribute type 6 has an invalid length.
[  118.644961][ T7058] netlink: 43 bytes leftover after parsing attributes in process `syz.3.409'.
[  118.734748][ T7066] syz.0.411: attempt to access beyond end of device
[  118.734748][ T7066] nbd0: rw=0, sector=0, nr_sectors = 2 limit=0
[  118.834166][   T35] usbhid 7-1:0.0: can't add hid device: -71
[  118.837679][   T35] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  118.841713][   T35] usb 7-1: USB disconnect, device number 8
[  118.945623][ T7069] ufs: Invalid option: "#��N%�ۗ�w�eJ?Wԑat�5ѝ�<t����}B�:�nT��/�Юm8��E
���O" or missing value
[  118.950172][ T7069] ufs: wrong mount options
[  119.450177][ T7075] vivid-001: =================  START STATUS  =================
[  119.452694][ T7075] vivid-001: Radio HW Seek Mode: Bounded
[  119.455082][ T7075] vivid-001: Radio Programmable HW Seek: false
[  119.458503][ T7075] vivid-001: RDS Rx I/O Mode: Block I/O
[  119.460160][ T7075] vivid-001: Generate RBDS Instead of RDS: false
[  119.462686][ T7075] vivid-001: RDS Reception: true
[  119.464310][ T7075] vivid-001: RDS Program Type: 0 inactive
[  119.466917][ T7075] vivid-001: RDS PS Name:  inactive
[  119.469104][ T7075] vivid-001: RDS Radio Text:  inactive
[  119.471199][ T7075] vivid-001: RDS Traffic Announcement: false inactive
[  119.473484][ T7075] vivid-001: RDS Traffic Program: false inactive
[  119.476014][ T7075] vivid-001: RDS Music: false inactive
[  119.477809][ T7075] vivid-001: ==================  END STATUS  ==================
[  119.656930][ T5355] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  119.656986][ T5355] Bluetooth: hci2: Injecting HCI hardware error event
[  119.659157][ T5355] Bluetooth: hci2: hardware error 0x00
[  120.568430][ T7091] capability: warning: `syz.3.419' uses 32-bit capabilities (legacy support in use)
[  120.687623][ T7095] __nla_validate_parse: 1 callbacks suppressed
[  120.687680][ T7095] netlink: 4 bytes leftover after parsing attributes in process `syz.3.421'.
[  120.852206][   T39] audit: type=1326 audit(2000000031.249:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7109 comm="syz.1.426" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  120.858888][   T39] audit: type=1326 audit(2000000031.249:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7109 comm="syz.1.426" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  120.864608][   T39] audit: type=1326 audit(2000000031.259:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7109 comm="syz.1.426" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  120.870145][   T39] audit: type=1326 audit(2000000031.259:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7109 comm="syz.1.426" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  120.876152][   T39] audit: type=1326 audit(2000000031.259:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7109 comm="syz.1.426" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  120.881950][   T39] audit: type=1326 audit(2000000031.259:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7109 comm="syz.1.426" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  120.888068][   T39] audit: type=1326 audit(2000000031.259:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7109 comm="syz.1.426" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  120.894015][   T39] audit: type=1326 audit(2000000031.259:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7109 comm="syz.1.426" exe="/syz-executor" sig=0 arch=40000003 syscall=345 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  120.904350][   T39] audit: type=1326 audit(2000000031.259:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7109 comm="syz.1.426" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  120.947741][ T7120] Mount JFS Failure: -22
[  120.948919][ T7120] jfs_mount failed w/return code = -22
[  121.370152][ T7135] netlink: 24 bytes leftover after parsing attributes in process `syz.1.431'.
[  121.681405][ T7144] =======================================================
[  121.681405][ T7144] WARNING: The mand mount option has been deprecated and
[  121.681405][ T7144]          and is ignored by this kernel. Remove the mand
[  121.681405][ T7144]          option from the mount to silence this warning.
[  121.681405][ T7144] =======================================================
[  121.745956][ T5355] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  122.375188][ T5408] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  122.526640][ T5408] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  122.530697][ T5408] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  122.534548][ T5408] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  122.538891][ T5408] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  122.543381][ T5408] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  122.546695][ T5408] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  122.552423][ T5408] usb 6-1: config 0 descriptor??
[  122.555368][ T7157] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  122.973640][ T5408] plantronics 0003:047F:FFFF.0004: unknown main item tag 0xd
[  122.977232][ T5408] plantronics 0003:047F:FFFF.0004: No inputs registered, leaving
[  122.980167][ T5408] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  123.235559][ T7174] netlink: 24 bytes leftover after parsing attributes in process `syz.0.443'.
[  123.534838][ T7181] netlink: 24 bytes leftover after parsing attributes in process `syz.2.444'.
[  123.869109][ T7183] netlink: 24 bytes leftover after parsing attributes in process `syz.3.445'.
[  124.490705][ T7197] netlink: 24 bytes leftover after parsing attributes in process `syz.0.446'.
[  124.495911][ T7196] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  124.585501][ T7200] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  125.123559][ T5408] usb 6-1: USB disconnect, device number 4
[  125.279139][ T7221] netlink: 2 bytes leftover after parsing attributes in process `syz.3.456'.
[  125.281714][ T7221] batadv_slave_1: entered promiscuous mode
[  125.420916][ T7226] netlink: 24 bytes leftover after parsing attributes in process `syz.0.454'.
[  125.698396][ T7229] pimreg: entered allmulticast mode
[  125.705789][ T7229] pimreg: left allmulticast mode
[  126.880286][ T7266] netlink: 80 bytes leftover after parsing attributes in process `syz.0.466'.
[  126.886192][ T7266] netlink: 16 bytes leftover after parsing attributes in process `syz.0.466'.
[  127.240204][ T7273] netlink: 24 bytes leftover after parsing attributes in process `syz.0.467'.
[  128.026055][ T7286] netlink: 4 bytes leftover after parsing attributes in process `syz.0.472'.
[  128.042354][ T7290] x_tables: ip_tables: ah match: only valid for protocol 51
[  128.135982][ T7299] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  128.138798][ T7299] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  128.141316][ T7299] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  128.143752][ T7299] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  128.518369][   T62] kernel write not supported for file /video8 (pid: 62 comm: kworker/3:1)
[  128.975478][ T7325] netlink: 20 bytes leftover after parsing attributes in process `syz.2.482'.
[  129.095599][   T39] kauditd_printk_skb: 33 callbacks suppressed
[  129.095611][   T39] audit: type=1326 audit(2000000039.499:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7304 comm="syz.3.478" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f10579 code=0x7fc00000
[  131.446652][ T7360] tipc: Started in network mode
[  131.448239][ T7360] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  131.453139][ T7360] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  131.461683][ T7360] tipc: Enabled bearer <udp:syz1>, priority 10
[  132.118462][ T7366] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  132.157762][ T7372] netlink: 4 bytes leftover after parsing attributes in process `syz.3.497'.
[  132.163631][ T7372] netlink: 12 bytes leftover after parsing attributes in process `syz.3.497'.
[  132.176277][ T1374] ieee802154 phy0 wpan0: encryption failed: -22
[  132.178036][ T1374] ieee802154 phy1 wpan1: encryption failed: -22
[  132.856509][ T5383] tipc: Node number set to 1
[  133.716679][ T5358] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  133.721044][ T5358] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  133.723779][ T5358] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  133.742776][ T5358] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  133.746329][ T5358] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  133.748409][ T5358] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  133.766161][ T7404] netlink: 4 bytes leftover after parsing attributes in process `syz.1.504'.
[  134.101842][ T7404] hsr_slave_1 (unregistering): left promiscuous mode
[  134.249062][ T7400] chnl_net:caif_netlink_parms(): no params data found
[  134.257941][ T7420] netlink: 2 bytes leftover after parsing attributes in process `syz.1.506'.
[  134.260496][ T7420] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  134.263555][ T7420] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  134.268295][ T7420] batadv_slave_1: entered promiscuous mode
[  134.286088][ T7417] netlink: 'syz.2.505': attribute type 10 has an invalid length.
[  134.387219][ T7428] Driver unsupported XDP return value 0 on prog  (id 113) dev N/A, expect packet loss!
[  134.399408][ T7400] bridge0: port 1(bridge_slave_0) entered blocking state
[  134.404216][ T7400] bridge0: port 1(bridge_slave_0) entered disabled state
[  134.410472][ T7400] bridge_slave_0: entered allmulticast mode
[  134.431412][ T7400] bridge_slave_0: entered promiscuous mode
[  134.438603][ T7400] bridge0: port 2(bridge_slave_1) entered blocking state
[  134.444444][ T7400] bridge0: port 2(bridge_slave_1) entered disabled state
[  134.447324][ T7400] bridge_slave_1: entered allmulticast mode
[  134.449363][ T7400] bridge_slave_1: entered promiscuous mode
[  134.498713][ T7400] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  134.504982][ T7400] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  134.549882][ T7400] team0: Port device team_slave_0 added
[  134.552901][ T7400] team0: Port device team_slave_1 added
[  134.577312][ T7400] batman_adv: batadv0: Adding interface: batadv_slave_0
[  134.579544][ T7400] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  134.588346][ T7400] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  134.592572][ T7400] batman_adv: batadv0: Adding interface: batadv_slave_1
[  134.594653][ T7400] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  134.605666][ T7400] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  134.640862][ T7400] hsr_slave_0: entered promiscuous mode
[  134.650842][ T7400] hsr_slave_1: entered promiscuous mode
[  134.768092][ T7400] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  134.770846][ T7400] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.982805][ T7400] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  134.986028][ T7400] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.992457][ T7445] netlink: 24 bytes leftover after parsing attributes in process `syz.2.509'.
[  135.112925][ T7400] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  135.117883][ T7400] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.288944][ T7400] netdevsim netdevsim0 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  135.292954][ T7400] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.313863][ T7448] netlink: 8 bytes leftover after parsing attributes in process `syz.3.510'.
[  135.318998][ T7450] input: syz0 as /devices/virtual/input/input19
[  135.320174][ T7448] netlink: 20 bytes leftover after parsing attributes in process `syz.3.510'.
[  135.401894][ T7400] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  135.430720][ T7400] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  135.436739][ T7400] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  135.458651][ T7400] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  135.541775][ T7400] 8021q: adding VLAN 0 to HW filter on device bond0
[  135.548081][ T7400] 8021q: adding VLAN 0 to HW filter on device team0
[  135.557739][   T78] bridge0: port 1(bridge_slave_0) entered blocking state
[  135.559641][   T78] bridge0: port 1(bridge_slave_0) entered forwarding state
[  135.563099][   T78] bridge0: port 2(bridge_slave_1) entered blocking state
[  135.564968][   T78] bridge0: port 2(bridge_slave_1) entered forwarding state
[  135.587582][ T7400] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  135.590217][ T7400] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  135.697223][ T7400] 8021q: adding VLAN 0 to HW filter on device batadv0
[  135.719327][ T7400] veth0_vlan: entered promiscuous mode
[  135.730979][ T7400] veth1_vlan: entered promiscuous mode
[  135.739541][ T7467] hfs: can't find a HFS filesystem on dev nullb0
[  135.759484][ T7400] veth0_macvtap: entered promiscuous mode
[  135.767084][ T7400] veth1_macvtap: entered promiscuous mode
[  135.776598][ T7400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  135.779743][ T7400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  135.782323][ T7400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  135.797310][ T7400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  135.800913][ T7400] batman_adv: batadv0: Interface activated: batadv_slave_0
[  135.801786][   T39] audit: type=1326 audit(2000000046.199:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7459 comm="syz.1.515" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  135.810664][ T7400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  135.813135][   T39] audit: type=1326 audit(2000000046.199:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7459 comm="syz.1.515" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  135.813399][ T7400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  135.818960][   T39] audit: type=1326 audit(2000000046.209:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7459 comm="syz.1.515" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  135.825211][ T5355] Bluetooth: hci1: command tx timeout
[  135.828171][ T7400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  135.829582][   T39] audit: type=1326 audit(2000000046.209:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7459 comm="syz.1.515" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  135.831485][ T7400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  135.837544][ T7400] batman_adv: batadv0: Interface activated: batadv_slave_1
[  135.841843][   T39] audit: type=1326 audit(2000000046.209:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7459 comm="syz.1.515" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  135.848290][   T39] audit: type=1326 audit(2000000046.209:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7459 comm="syz.1.515" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  135.853098][ T7400] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  135.855324][   T39] audit: type=1326 audit(2000000046.209:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7459 comm="syz.1.515" exe="/syz-executor" sig=0 arch=40000003 syscall=146 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  135.859599][ T7400] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  135.863239][   T39] audit: type=1326 audit(2000000046.209:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7459 comm="syz.1.515" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  135.867299][ T7400] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  135.871606][   T39] audit: type=1326 audit(2000000046.209:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7459 comm="syz.1.515" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  135.874396][ T7400] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  135.880548][   T39] audit: type=1326 audit(2000000046.209:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7459 comm="syz.1.515" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  135.955175][ T1095] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  135.957310][ T1095] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  135.999016][ T1095] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  136.001494][ T1095] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  137.895728][ T5355] Bluetooth: hci1: command tx timeout
[  137.961240][ T7503] FAULT_INJECTION: forcing a failure.
[  137.961240][ T7503] name failslab, interval 1, probability 0, space 0, times 0
[  137.964761][ T7503] CPU: 0 UID: 0 PID: 7503 Comm: syz.0.524 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  137.967451][ T7503] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  137.970275][ T7503] Call Trace:
[  137.971165][ T7503]  <TASK>
[  137.972006][ T7503]  dump_stack_lvl+0x16c/0x1f0
[  137.973366][ T7503]  should_fail_ex+0x497/0x5b0
[  137.974652][ T7503]  ? fs_reclaim_acquire+0xae/0x160
[  137.976039][ T7503]  should_failslab+0xc2/0x120
[  137.977274][ T7503]  __kmalloc_cache_noprof+0x6b/0x310
[  137.978678][ T7503]  ? ovl_init_fs_context+0x96/0x5d0
[  137.980103][ T7503]  ? kasan_save_track+0x14/0x30
[  137.981420][ T7503]  ovl_init_fs_context+0x96/0x5d0
[  137.982763][ T7503]  ? __pfx_ovl_init_fs_context+0x10/0x10
[  137.984236][ T7503]  alloc_fs_context+0x54a/0x9c0
[  137.985502][ T7503]  path_mount+0xbfb/0x1f10
[  137.986697][ T7503]  ? kmem_cache_free+0x152/0x4b0
[  137.987989][ T7503]  ? __pfx_path_mount+0x10/0x10
[  137.989244][ T7503]  ? putname+0x12e/0x170
[  137.990333][ T7503]  __ia32_sys_mount+0x292/0x310
[  137.991614][ T7503]  ? __pfx___ia32_sys_mount+0x10/0x10
[  137.993029][ T7503]  __do_fast_syscall_32+0x73/0x120
[  137.994394][ T7503]  do_fast_syscall_32+0x32/0x80
[  137.995652][ T7503]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  137.997330][ T7503] RIP: 0023:0xf743e579
[  137.998412][ T7503] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  138.003499][ T7503] RSP: 002b:00000000f572656c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  138.005607][ T7503] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200000c0
[  138.007566][ T7503] RDX: 0000000020000340 RSI: 0000000000000000 RDI: 0000000020000180
[  138.009642][ T7503] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  138.011700][ T7503] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  138.013763][ T7503] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  138.015872][ T7503]  </TASK>
[  138.854193][ T7500] netlink: 24 bytes leftover after parsing attributes in process `syz.1.523'.
[  138.916152][ T7511] netlink: 2 bytes leftover after parsing attributes in process `syz.3.526'.
[  139.005179][ T7519] QAT: Device 4 not found
[  139.325755][    T8] usb 5-1: new full-speed USB device number 13 using dummy_hcd
[  139.499453][    T8] usb 5-1: too many endpoints for config 1 interface 0 altsetting 253: 132, using maximum allowed: 30
[  139.503108][    T8] usb 5-1: config 1 interface 0 altsetting 253 has 1 endpoint descriptor, different from the interface descriptor's value: 132
[  139.507331][    T8] usb 5-1: config 1 interface 0 has no altsetting 0
[  139.514402][    T8] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  139.518851][    T8] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  139.520886][    T8] usb 5-1: Product: syz
[  139.521983][    T8] usb 5-1: Manufacturer: syz
[  139.523214][    T8] usb 5-1: SerialNumber: syz
[  139.975703][ T5355] Bluetooth: hci1: command tx timeout
[  140.210225][ T7547] netlink: 24 bytes leftover after parsing attributes in process `syz.1.532'.
[  140.404578][ T7549] overlay: Unknown parameter '/'
[  141.299409][ T7564] netlink: 24 bytes leftover after parsing attributes in process `syz.1.537'.
[  142.030303][    T8] usblp 5-1:1.0: usblp0: USB Unidirectional printer dev 13 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  142.036182][    T8] usb 5-1: USB disconnect, device number 13
[  142.040021][    T8] usblp0: removed
[  142.056261][ T5355] Bluetooth: hci1: command tx timeout
[  142.323653][ T7595] netlink: 24 bytes leftover after parsing attributes in process `syz.1.549'.
[  142.357783][ T7590] afs: Unknown parameter '00000000000000000000011'
[  142.519966][ T7599] netlink: 'syz.0.544': attribute type 10 has an invalid length.
[  142.522099][ T7599] ipvlan1: entered promiscuous mode
[  142.534764][ T7599] team0: Device ipvlan1 failed to register rx_handler
[  142.708899][ T7603] bond1: entered promiscuous mode
[  142.710324][ T7603] bond1: entered allmulticast mode
[  142.712019][ T7603] 8021q: adding VLAN 0 to HW filter on device bond1
[  142.712463][ T7601] overlay: ./file0 is not a directory
[  143.068242][ T7610] AppArmor: change_hat: Invalid input, NULL hat and NULL magic
[  143.159050][ T7612] FAULT_INJECTION: forcing a failure.
[  143.159050][ T7612] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  143.164563][ T7612] CPU: 0 UID: 0 PID: 7612 Comm: syz.1.550 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  143.167332][ T7612] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  143.170140][ T7612] Call Trace:
[  143.171031][ T7612]  <TASK>
[  143.171825][ T7612]  dump_stack_lvl+0x16c/0x1f0
[  143.173073][ T7612]  should_fail_ex+0x497/0x5b0
[  143.174322][ T7612]  _copy_from_iter+0x29b/0x13e0
[  143.175627][ T7612]  ? __pfx__copy_from_iter+0x10/0x10
[  143.177013][ T7612]  ? __virt_addr_valid+0x1a4/0x590
[  143.178439][ T7612]  ? __virt_addr_valid+0x5e/0x590
[  143.179792][ T7612]  ? __phys_addr_symbol+0x30/0x80
[  143.181124][ T7612]  ? __check_object_size+0x488/0x710
[  143.182524][ T7612]  netlink_sendmsg+0x813/0xd70
[  143.183830][ T7612]  ? __pfx_netlink_sendmsg+0x10/0x10
[  143.185175][ T7612]  ____sys_sendmsg+0x9ae/0xb40
[  143.186375][ T7612]  ? __pfx_____sys_sendmsg+0x10/0x10
[  143.187908][ T7612]  ? get_compat_msghdr+0x11b/0x170
[  143.189190][ T7612]  ? __pfx___lock_acquire+0x10/0x10
[  143.190597][ T7612]  ___sys_sendmsg+0x135/0x1e0
[  143.191869][ T7612]  ? __pfx____sys_sendmsg+0x10/0x10
[  143.193256][ T7612]  ? lock_acquire+0x2f/0xb0
[  143.194385][ T7612]  ? __fget_files+0x40/0x3f0
[  143.195548][ T7612]  ? fdget+0x176/0x210
[  143.196615][ T7612]  __sys_sendmsg+0x117/0x1f0
[  143.197743][ T7612]  ? __pfx___sys_sendmsg+0x10/0x10
[  143.199030][ T7612]  ? __fget_files+0x244/0x3f0
[  143.200304][ T7612]  __do_fast_syscall_32+0x73/0x120
[  143.201672][ T7612]  do_fast_syscall_32+0x32/0x80
[  143.202947][ T7612]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  143.204638][ T7612] RIP: 0023:0xf7fe2579
[  143.205726][ T7612] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  143.210772][ T7612] RSP: 002b:00000000f576656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  143.212953][ T7612] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000480
[  143.215109][ T7612] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  143.217200][ T7612] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  143.219280][ T7612] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  143.221364][ T7612] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  143.223478][ T7612]  </TASK>
[  143.224422][    C0] vkms_vblank_simulate: vblank timer overrun
[  143.274330][ T7618] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  143.566473][ T7631] netlink: 12 bytes leftover after parsing attributes in process `syz.3.556'.
[  143.715775][ T7640] netlink: 'syz.1.557': attribute type 10 has an invalid length.
[  143.741324][ T7646] FAULT_INJECTION: forcing a failure.
[  143.741324][ T7646] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  143.745748][ T7646] CPU: 3 UID: 0 PID: 7646 Comm: syz.0.560 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  143.746301][ T7640] batman_adv: batadv0: Adding interface: team0
[  143.749168][ T7646] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  143.749204][ T7646] Call Trace:
[  143.749210][ T7646]  <TASK>
[  143.749217][ T7646]  dump_stack_lvl+0x16c/0x1f0
[  143.751005][ T7640] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  143.754336][ T7646]  should_fail_ex+0x497/0x5b0
[  143.754371][ T7646]  _copy_from_user+0x30/0xf0
[  143.765048][ T7640] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  143.765911][ T7646]  video_usercopy+0xc62/0x1500
[  143.773551][ T7646]  ? __pfx___video_do_ioctl+0x10/0x10
[  143.775503][ T7646]  ? __pfx_video_usercopy+0x10/0x10
[  143.777335][ T7646]  v4l2_ioctl+0x1ba/0x250
[  143.778868][ T7646]  v4l2_compat_ioctl32+0x214/0x2c0
[  143.780632][ T7646]  ? __pfx_v4l2_compat_ioctl32+0x10/0x10
[  143.782636][ T7646]  __do_compat_sys_ioctl+0x259/0x2b0
[  143.784570][ T7646]  __do_fast_syscall_32+0x73/0x120
[  143.786328][ T7646]  do_fast_syscall_32+0x32/0x80
[  143.788017][ T7646]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  143.790183][ T7646] RIP: 0023:0xf743e579
[  143.791587][ T7646] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  143.797859][ T7646] RSP: 002b:00000000f572656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  143.800617][ T7646] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0845657
[  143.801662][ T7642] netlink: 'syz.3.559': attribute type 4 has an invalid length.
[  143.803273][ T7646] RDX: 0000000020000200 RSI: 0000000000000000 RDI: 0000000000000000
[  143.807944][ T7646] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  143.810630][ T7646] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  143.813249][ T7646] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  143.815952][ T7646]  </TASK>
[  143.821995][ T7647] netlink: 'syz.1.557': attribute type 10 has an invalid length.
[  143.824160][ T7647] netlink: 2 bytes leftover after parsing attributes in process `syz.1.557'.
[  143.840225][ T7647] team0: entered promiscuous mode
[  143.841769][ T7647] team_slave_0: entered promiscuous mode
[  143.848817][ T7647] team_slave_1: entered promiscuous mode
[  143.851220][ T7647] 8021q: adding VLAN 0 to HW filter on device team0
[  143.853085][ T7647] batman_adv: batadv0: Interface activated: team0
[  143.854798][ T7647] batman_adv: batadv0: Interface deactivated: team0
[  143.858841][ T7647] batman_adv: batadv0: Removing interface: team0
[  143.865556][ T7649] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  143.867283][ T7647] bridge0: port 3(team0) entered blocking state
[  143.872019][ T7647] bridge0: port 3(team0) entered disabled state
[  143.873750][ T7647] team0: entered allmulticast mode
[  143.875225][ T7647] team_slave_0: entered allmulticast mode
[  143.876891][ T7647] team_slave_1: entered allmulticast mode
[  143.879571][ T7647] bridge0: port 3(team0) entered blocking state
[  143.881680][ T7647] bridge0: port 3(team0) entered forwarding state
[  143.895448][ T7651] mac80211_hwsim hwsim17 wlan1: entered allmulticast mode
[  143.898622][ T7651] netlink: 16 bytes leftover after parsing attributes in process `syz.0.561'.
[  143.904156][ T7651] mac80211_hwsim hwsim17 wlan1: left allmulticast mode
[  143.945871][ T7653] ------------[ cut here ]------------
[  143.948284][ T7653] kmem_cache of name '9p-fcall-cache' already exists
[  143.950939][ T7653] WARNING: CPU: 2 PID: 7653 at mm/slab_common.c:107 __kmem_cache_create_args+0xb0/0x3c0
[  143.954392][ T7653] Modules linked in:
[  143.956206][ T7653] CPU: 2 UID: 0 PID: 7653 Comm: syz.3.563 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  143.961763][ T7653] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  143.966756][ T7653] RIP: 0010:__kmem_cache_create_args+0xb0/0x3c0
[  143.969628][ T7653] Code: 98 48 3d 10 bb f1 8d 74 25 48 8b 7b 60 48 89 ee e8 c5 68 34 09 85 c0 75 e0 90 48 c7 c7 e8 1f 58 8d 48 89 ee e8 41 b1 7e ff 90 <0f> 0b 90 90 be 20 00 00 00 48 89 ef e8 4f 6a 34 09 48 85 c0 0f 85
[  143.977162][ T7653] RSP: 0018:ffffc9000caff8f0 EFLAGS: 00010286
[  143.979665][ T7653] RAX: 0000000000000000 RBX: ffff888022cf9a40 RCX: ffffc90003962000
[  143.982635][ T7653] RDX: 0000000000040000 RSI: ffffffff814e28c6 RDI: 0000000000000001
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  143.986047][ T7653] RBP: ffffffff8ca1e320 R08: 0000000000000001 R09: 0000000000000000
[  143.989655][ T7653] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000
[  143.992418][ T7653] R13: 0000000000008004 R14: ffffc9000caff9e0 R15: 0000000000020018
[  143.995200][ T7653] FS:  0000000000000000(0000) GS:ffff88802b600000(0063) knlGS:00000000f5696b40
[  143.998279][ T7653] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  144.000567][ T7653] CR2: 0000000020001900 CR3: 0000000055b72000 CR4: 0000000000352ef0
[  144.003301][ T7653] Call Trace:
[  144.004481][ T7653]  <TASK>
[  144.005713][ T7653]  ? __warn+0xea/0x3d0
[  144.007189][ T7653]  ? __kmem_cache_create_args+0xb0/0x3c0
[  144.009165][ T7653]  ? report_bug+0x3c0/0x580
[  144.010766][ T7653]  ? handle_bug+0x54/0xa0
[  144.012318][ T7653]  ? exc_invalid_op+0x17/0x50
[  144.013960][ T7653]  ? asm_exc_invalid_op+0x1a/0x20
[  144.015896][ T7653]  ? __warn_printk+0x1a6/0x350
[  144.017647][ T7653]  ? __kmem_cache_create_args+0xb0/0x3c0
[  144.019626][ T7653]  p9_client_create+0xe04/0x1150
[  144.021383][ T7653]  ? __pfx_p9_client_create+0x10/0x10
[  144.023353][ T7653]  ? __raw_spin_lock_init+0x3a/0x110
[  144.024796][ T7653]  v9fs_session_init+0x1f8/0x1a80
[  144.026246][ T7653]  ? __pfx_v9fs_session_init+0x10/0x10
[  144.027696][ T7653]  ? kasan_save_track+0x14/0x30
[  144.028991][ T7653]  v9fs_mount+0xc6/0xa50
[  144.030118][ T7653]  ? __pfx_v9fs_mount+0x10/0x10
[  144.031438][ T7653]  ? __pfx_v9fs_mount+0x10/0x10
[  144.032745][ T7653]  legacy_get_tree+0x109/0x220
[  144.033928][ T7653]  vfs_get_tree+0x8f/0x380
[  144.035208][ T7653]  path_mount+0x6e1/0x1f10
[  144.036402][ T7653]  ? kmem_cache_free+0x152/0x4b0
[  144.037672][ T7653]  ? __pfx_path_mount+0x10/0x10
[  144.038949][ T7653]  ? putname+0x12e/0x170
[  144.040338][ T7653]  __ia32_sys_mount+0x292/0x310
[  144.041961][ T7653]  ? __pfx___ia32_sys_mount+0x10/0x10
[  144.043365][ T7653]  __do_fast_syscall_32+0x73/0x120
[  144.044668][ T7653]  do_fast_syscall_32+0x32/0x80
[  144.046236][ T7653]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  144.048228][ T7653] RIP: 0023:0xf7f10579
[  144.049444][ T7653] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  144.054458][ T7653] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  144.056661][ T7653] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000020000000
[  144.058618][ T7653] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000020000180
[  144.060534][ T7653] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  144.062520][ T7653] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  144.064580][ T7653] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  144.066713][ T7653]  </TASK>
[  144.067561][ T7653] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  144.069353][ T7653] CPU: 2 UID: 0 PID: 7653 Comm: syz.3.563 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0
[  144.072168][ T7653] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  144.075428][ T7653] Call Trace:
[  144.076286][ T7653]  <TASK>
[  144.077056][ T7653]  dump_stack_lvl+0x3d/0x1f0
[  144.078265][ T7653]  panic+0x71d/0x800
[  144.079309][ T7653]  ? __pfx_panic+0x10/0x10
[  144.080459][ T7653]  ? show_trace_log_lvl+0x29d/0x3d0
[  144.082005][ T7653]  ? __kmem_cache_create_args+0xb0/0x3c0
[  144.083495][ T7653]  check_panic_on_warn+0xab/0xb0
[  144.084783][ T7653]  __warn+0xf6/0x3d0
[  144.085838][ T7653]  ? __kmem_cache_create_args+0xb0/0x3c0
[  144.087332][ T7653]  report_bug+0x3c0/0x580
[  144.088500][ T7653]  handle_bug+0x54/0xa0
[  144.089619][ T7653]  exc_invalid_op+0x17/0x50
[  144.090835][ T7653]  asm_exc_invalid_op+0x1a/0x20
[  144.092135][ T7653] RIP: 0010:__kmem_cache_create_args+0xb0/0x3c0
[  144.093769][ T7653] Code: 98 48 3d 10 bb f1 8d 74 25 48 8b 7b 60 48 89 ee e8 c5 68 34 09 85 c0 75 e0 90 48 c7 c7 e8 1f 58 8d 48 89 ee e8 41 b1 7e ff 90 <0f> 0b 90 90 be 20 00 00 00 48 89 ef e8 4f 6a 34 09 48 85 c0 0f 85
[  144.099246][ T7653] RSP: 0018:ffffc9000caff8f0 EFLAGS: 00010286
[  144.100878][ T7653] RAX: 0000000000000000 RBX: ffff888022cf9a40 RCX: ffffc90003962000
[  144.102995][ T7653] RDX: 0000000000040000 RSI: ffffffff814e28c6 RDI: 0000000000000001
[  144.105093][ T7653] RBP: ffffffff8ca1e320 R08: 0000000000000001 R09: 0000000000000000
[  144.107170][ T7653] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000
[  144.109259][ T7653] R13: 0000000000008004 R14: ffffc9000caff9e0 R15: 0000000000020018
[  144.111352][ T7653]  ? __warn_printk+0x1a6/0x350
[  144.112624][ T7653]  p9_client_create+0xe04/0x1150
[  144.113929][ T7653]  ? __pfx_p9_client_create+0x10/0x10
[  144.115377][ T7653]  ? __raw_spin_lock_init+0x3a/0x110
[  144.116778][ T7653]  v9fs_session_init+0x1f8/0x1a80
[  144.118118][ T7653]  ? __pfx_v9fs_session_init+0x10/0x10
[  144.119572][ T7653]  ? kasan_save_track+0x14/0x30
[  144.120855][ T7653]  v9fs_mount+0xc6/0xa50
[  144.121967][ T7653]  ? __pfx_v9fs_mount+0x10/0x10
[  144.123091][ T7653]  ? __pfx_v9fs_mount+0x10/0x10
[  144.124358][ T7653]  legacy_get_tree+0x109/0x220
[  144.125694][ T7653]  vfs_get_tree+0x8f/0x380
[  144.126880][ T7653]  path_mount+0x6e1/0x1f10
[  144.128073][ T7653]  ? kmem_cache_free+0x152/0x4b0
[  144.129385][ T7653]  ? __pfx_path_mount+0x10/0x10
[  144.130709][ T7653]  ? putname+0x12e/0x170
[  144.131859][ T7653]  __ia32_sys_mount+0x292/0x310
[  144.133133][ T7653]  ? __pfx___ia32_sys_mount+0x10/0x10
[  144.134524][ T7653]  __do_fast_syscall_32+0x73/0x120
[  144.135859][ T7653]  do_fast_syscall_32+0x32/0x80
[  144.137137][ T7653]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  144.138786][ T7653] RIP: 0023:0xf7f10579
[  144.139866][ T7653] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  144.144819][ T7653] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  144.146926][ T7653] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000020000000
[  144.149012][ T7653] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000020000180
[  144.151036][ T7653] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  144.153108][ T7653] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  144.155174][ T7653] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  144.157232][ T7653]  </TASK>
[  144.158766][ T7653] Kernel Offset: disabled
[  144.160414][ T7653] Rebooting in 86400 seconds..

VM DIAGNOSIS:
01:04:15  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=00000000000000f9 RCX=ffffffff81dccf6b RDX=ffff8880204d8000
RSI=0000000000000100 RDI=0000000000000005 RBP=ffff88801ac630c0 RSP=ffffc90000e276c8
R8 =0000000000000005 R9 =0000000000000100 R10=00000000000000f9 R11=0000000000000000
R12=0000000000000000 R13=ffff88801ac61958 R14=dffffc0000000000 R15=0000000000000001
RIP=ffffffff818ca882 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020022000 CR3=00000000253b6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000ffe1c000 Opmask01=0000000000003fff Opmask02=000000001fffbfff Opmask03=4000040442002010
Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 69253a6925632500 3d45444f4d564544
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd299b37f0 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2a2a2a2a2a2a2a2a 2a2a2a2a2a2a2a2a
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00ff0000ff000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff0000ff00000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00ff0000ff000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000007465676461 4720776152204253 5500524556495244 5f4344555f425355
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000007465676461 4720776152204253 553d524556495244 5f4344555f425355
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000049585a595c 471d4a5c521d4253 5500524556495244 5f4344555f425355
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000041 0000000000000030 2e6364755f796d6d 75642f6364752f30
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2d002a5d392d305b 7466717761726e00 2a5d392d305b7466 717761720000312d
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7c2a6d656d707c2a 6d63737c2a646275 7c2a003177617264 6968007761726469
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a3a263e383a3a26 39383a3a2638383a 3a263b383a3a263a 383a3a26493b3a3a
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692054524f50202c 2064696c61696d20 0070253a20252054 524f504d49005452
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692020520050202c 2025204f504d4900 0061253a20252000 2527204d49005452
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000082cabb RBX=0000000000000001 RCX=ffffffff8b12f709 RDX=0000000000000000
RSI=ffffffff8b4cc8e0 RDI=ffffffff8bb12120 RBP=ffffed10036eb910 RSP=ffffc90000477e08
R8 =0000000000000001 R9 =ffffed10056a7025 R10=ffff88802b53812b R11=0000000000000000
R12=0000000000000001 R13=ffff88801b75c880 R14=ffffffff901cce88 R15=0000000000000000
RIP=ffffffff8b130aef RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020022090 CR3=00000000253b6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85034e45 RDI=ffffffff9a63a220 RBP=ffffffff9a63a1e0 RSP=ffffc9000caff258
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000020 R14=ffffffff85034de0 R15=0000000000000000
RIP=ffffffff85034e6f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020001900 CR3=0000000055b72000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000027a36f RBX=0000000000000003 RCX=ffffffff8b12f709 RDX=0000000000000000
RSI=ffffffff8b4cc8e0 RDI=ffffffff8bb12120 RBP=ffffed10036ee488 RSP=ffffc90000497e08
R8 =0000000000000001 R9 =ffffed10056e7025 R10=ffff88802b73812b R11=0000000000000000
R12=0000000000000003 R13=ffff88801b772440 R14=ffffffff901cce88 R15=0000000000000000
RIP=ffffffff8b130aef RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00000000f735b968 CR3=0000000049372000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000