last executing test programs:

5.053585623s ago: executing program 3 (id=1310):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000002680)={&(0x7f0000002540)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x7, [@var={0x5}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x2e]}}, 0x0, 0x2f, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x47, &(0x7f0000000000)=[{&(0x7f0000000080)={0x114, 0x7, 0x1, 0x0, 0x0, "", [@nested={0x102, 0x0, 0x0, 0x1, [@typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@loopback}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd7127cfc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029c1608a487f26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f55ac64337803f5eb4ed842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd3f"]}]}, 0x114}], 0x1}, 0x0)
socket$inet(0x2, 0x2, 0x1)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x10, 0x0, &(0x7f0000000000)='GPL\x00', 0x8, 0xb7, &(0x7f0000000140)=""/183, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000080)={0x3, 0x10, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000340)=[{0x2, 0x2, 0xf, 0x7}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
chdir(0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_pressure(r3, &(0x7f0000001000)='cpu.pressure\x00', 0x2, 0x0)
write$cgroup_pressure(r4, &(0x7f0000000080)={'some', 0x20, 0x2000000005, 0x20, 0x10000000fffff}, 0x2f)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup_procs(r5, &(0x7f0000000300)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r6, &(0x7f0000000080), 0x12)
creat(&(0x7f0000000240)='./file0\x00', 0x1)
mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x8, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0)

4.72342562s ago: executing program 2 (id=1314):
syz_emit_ethernet(0x5e, &(0x7f0000000000)={@local, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x28, 0x3a, 0xff, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, {[], @ndisc_redir={0x89, 0x0, 0x0, '\x00', @loopback={0xfeffffff00000000, 0x1ff0000aa}, @private2}}}}}}, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0xfffffffffffffe1d)
ioctl$sock_netdev_private(r0, 0x8914, &(0x7f0000000000))
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="043e0b0f"], 0xe)
openat$sndseq(0xffffff9c, &(0x7f0000000080), 0x10000)

4.723175878s ago: executing program 2 (id=1315):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @broadcast}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000700)={<r2=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r1, 0x40182103, &(0x7f0000000240)={r2, 0x1, r1, 0x6})
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000001c0)='bbr\x00', 0xfffffe30)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)

4.103100921s ago: executing program 3 (id=1319):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x1d, &(0x7f0000000280)=ANY=[@ANYBLOB="180007a12900001100"/18, @ANYRES32=0x1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000d864f0fff0ffffff85100000faffffff02c406000500000018110000", @ANYRES32=0x1, @ANYBLOB="0000000000000000b7080000f48b00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000100000085000000820000006a7ad0fffcffffff8969080008000000bf91000000000000b7020000000000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000200)='GPL\x00', 0x7ff, 0xc8, &(0x7f0000000480)=""/200, 0x41000, 0x2, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000380)={0x9, 0x5}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0xa, &(0x7f00000003c0)=[0xffffffffffffffff], &(0x7f0000000600)=[{0x5, 0x2, 0x0, 0x9}, {0x2, 0x1, 0xf, 0x1}, {0x1, 0x2, 0x6, 0xb}, {0x0, 0x4, 0xe, 0x6}, {0x5, 0x1, 0xe, 0x2}, {0x5, 0x1, 0x8, 0x2}, {0x5, 0x5, 0xf, 0x1e}, {0x2, 0x4, 0xb, 0x2}, {0x2, 0x1, 0x6, 0xc}, {0x2, 0x1, 0xc, 0x2}], 0x10, 0x4, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000580)={{}, &(0x7f00000000c0), &(0x7f0000000400)=r1}, 0x1c)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
r4 = creat(&(0x7f00000001c0)='./bus\x00', 0x0)
fcntl$lock(r4, 0x26, &(0x7f0000000180)={0x1})
r5 = creat(&(0x7f00000001c0)='./bus\x00', 0x0)
fcntl$lock(r5, 0x7, &(0x7f0000000100)={0x1})
r6 = creat(&(0x7f00000001c0)='./bus\x00', 0x0)
fcntl$lock(r6, 0x26, &(0x7f0000000180)={0x1})
fcntl$lock(r4, 0x25, &(0x7f0000000080)={0x2, 0x0, 0x1000000})
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000c40)=ANY=[@ANYBLOB="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"/1277], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
dup3(r7, r4, 0x0)
r8 = socket(0x1d, 0x2, 0x6)
getpeername$packet(r8, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r9, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
r10 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r10, 0xc01864b0, &(0x7f0000000180)={0x0, 0x0, 0x1, 0xfffffffc})
listen(r2, 0xfffffffe)
r11 = pidfd_getfd(0xffffffffffffffff, r8, 0x0)
write$sndseq(r11, &(0x7f00000009c0)=[{0x2, 0x40, 0x9, 0x5, @tick=0xfffffffe, {0x5, 0x6}, {0x1, 0x7f}, @raw32={[0xc1d6, 0x0, 0x8]}}, {0x9, 0xbd, 0xf3, 0x2, @time={0x4, 0xae41}, {0x1, 0x9}, {0x8, 0x4}, @ext={0x0, &(0x7f0000000980)}}, {0x2, 0x0, 0x9, 0x6, @tick=0x8, {0x7, 0x7}, {0x40}, @raw8={"2cb070263314254d22c32d13"}}, {0x4, 0x81, 0x9, 0x40, @tick=0x4, {0x1, 0x5}, {0x4, 0x1}, @result={0x8, 0x8}}], 0x70)
sendmsg$nl_route_sched(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000140)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r9, {0xc, 0x7}, {}, {0xffe0, 0x5}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_KEY_ENC_IP_TTL={0x5, 0x52, 0x7b}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x80}, 0x800)
ioctl$DRM_IOCTL_GET_CLIENT(r10, 0xc0186405, &(0x7f0000000800)={0x4, 0x8, {}, {}, 0x1, 0x6})
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000840))
r12 = timerfd_create(0x8, 0x0)
timerfd_settime(r12, 0x3, &(0x7f0000000100)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
close_range(r12, r12, 0x0)

3.981122238s ago: executing program 1 (id=1321):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, 0x0, 0x0)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000700)={0x6c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {{{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @acl_policy, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x3ff}, @crypto_settings=[@NL80211_ATTR_AKM_SUITES={0x10, 0x4c, [0xfac07, 0xfac04, 0xfac0b]}]]}, 0x6c}, 0x1, 0x8000000, 0x0, 0x20000000}, 0x0)

3.933528916s ago: executing program 1 (id=1322):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000004000000000000000000850000000700000018", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'bridge_slave_0\x00'})
sendmmsg$sock(r4, &(0x7f0000003bc0), 0x4000000000002ca, 0x4040014)
r6 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r6, 0x800000010d, 0x2, &(0x7f0000000000)="c94e2f1099", 0x1e)
close_range(r0, 0xffffffffffffffff, 0x0)

3.833517258s ago: executing program 2 (id=1323):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$gtp(&(0x7f0000000040), 0xffffffffffffffff)
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000040)='./file0\x00', &(0x7f0000000240)='ocfs2_dlmfs\x00', 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r3 = dup(r2)
ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f0000000080)=ANY=[@ANYBLOB="01000000020000008704"])
syz_80211_join_ibss(&(0x7f0000000040)='wlan0\x00', &(0x7f0000000080)=@default_ibss_ssid, 0x6, 0x0)
syz_80211_inject_frame(&(0x7f00000001c0), &(0x7f0000000100)=ANY=[@ANYRESDEC=0x0], 0x36)
r4 = socket$rxrpc(0x21, 0x2, 0x2)
connect$rxrpc(r4, &(0x7f0000000000)=@in4={0x21, 0x3, 0x2, 0x10, {0x2, 0x4e20, @private=0xa010100}}, 0x24)
r5 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$UI_ABS_SETUP(r3, 0x401c5504, &(0x7f0000000300)={0xae, {0x2000004, 0x0, 0x2, 0x800000, 0x1, 0x50}})
ioctl$PPPOEIOCDFWD(r5, 0xb101, 0x0)
r6 = open(&(0x7f00009e1000)='./file0\x00', 0x8060, 0x0)
r7 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r7, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r7, &(0x7f000000c3c0)={0x2020, 0x0, <r8=>0x0}, 0x2020)
write$FUSE_INIT(r7, &(0x7f00000000c0)={0x50, 0x3c10db8ec9f2e288, r8, {0x7, 0x1f, 0x30, 0x7ab78c4493c52e9b, 0x1000, 0x1, 0x0, 0x3, 0x0, 0x0, 0x0, 0xffffffff}}, 0x50)
syz_fuse_handle_req(r7, &(0x7f00000021c0)="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", 0x2000, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r7, &(0x7f0000010400)="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", 0x2000, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000940)={0x78, 0x0, 0x0, {0x0, 0x3, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xfffffffd, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x5}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r9 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x0)
write$FUSE_INIT(r9, &(0x7f0000000e80)={0x50, 0x500}, 0x50)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.io_serviced\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r10, 0x0)
ftruncate(r10, 0xc17c)
read$FUSE(r10, &(0x7f0000000f00)={0x2020}, 0xffffffffffffff4f)
umount2(&(0x7f0000000040)='./file0\x00', 0xb)
r11 = socket$key(0xf, 0x3, 0x2)
accept4(r11, 0x0, 0x0, 0x800)
sendmsg$GTP_CMD_GETPDP(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)=ANY=[@ANYRES16=r6, @ANYRES16=r1, @ANYBLOB="010025bd7000fcdbdf25020000000800020001000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4040001}, 0x0)

3.502338949s ago: executing program 1 (id=1325):
r0 = syz_open_dev$video4linux(&(0x7f00000000c0), 0x0, 0x0)
ioctl$VIDIOC_SUBSCRIBE_EVENT(r0, 0x4020565b, &(0x7f0000000380)={0x8000000})
syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb2361000000010902"], 0x0)
syz_io_uring_setup(0x6de4, &(0x7f0000000180)={0x0, 0x95d3, 0x0, 0x1}, 0x0, 0x0)
getpgid(0xffffffffffffffff)
socket$key(0xf, 0x3, 0x2)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[0x0], 0x2b9})
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
syz_io_uring_setup(0x110, &(0x7f00000002c0)={0x0, 0xfad6}, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
ioctl$DRM_IOCTL_MODE_ATOMIC(r2, 0xc03864bc, &(0x7f0000000180)={0x100, 0x0, &(0x7f0000000240), &(0x7f0000000280)=[0x1], &(0x7f0000000200), &(0x7f0000000240), 0x0, 0x7f})
ioctl$TCSETSW2(r1, 0x402c542c, &(0x7f0000000040)={0x7, 0x1, 0xc6, 0x8, 0x5, "659d01ec7669585c5159350b89c04352b2beec", 0x40, 0xe2})
r3 = landlock_create_ruleset(&(0x7f00000002c0)={0x0, 0x1, 0x3}, 0x18, 0x0)
prctl$PR_GET_NO_NEW_PRIVS(0x27)
ioctl$TCFLSH(r1, 0x540b, 0x1)
landlock_restrict_self(r3, 0x0)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind(r4, &(0x7f0000000100)=@un=@file={0x0, './file0\x00'}, 0x80)
connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="24000000200001032abd7000000000000220000c0000000000000000080001"], 0x24}, 0x1, 0x0, 0x0, 0x240480d4}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="2800000021000100"], 0x28}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="b40800000000000073114d00000000008510000002000000b7000000000000007510c200000000009500001200000000"], &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000500)={{{@in6=@mcast1, @in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x2c}, {0xfffffffffffffffe, 0x0, 0x4, 0xfffffffffffffffe, 0xfffffffffffffffc, 0x0, 0x0, 0x1000000000000000}, {0x0, 0x10000000000, 0x1}, 0x0, 0xfffffffe, 0x1}, {{@in=@empty, 0xfffffffd, 0x6c}, 0x0, @in6=@dev={0xfe, 0x80, '\x00', 0x2e}, 0x0, 0x0, 0x0, 0xfc, 0x0, 0x9, 0xfffffffe}}, 0xe4)

3.162930567s ago: executing program 3 (id=1326):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./bus\x00', &(0x7f00000000c0)='cpuset\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x40049366, 0x0)

3.113458545s ago: executing program 3 (id=1327):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000002680)={&(0x7f0000002540)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x7, [@var={0x5}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x2e]}}, 0x0, 0x2f, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x47, &(0x7f0000000000)=[{&(0x7f0000000080)={0x114, 0x7, 0x1, 0x0, 0x0, "", [@nested={0x102, 0x0, 0x0, 0x1, [@typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@loopback}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd7127cfc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029c1608a487f26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f55ac64337803f5eb4ed842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd3f"]}]}, 0x114}], 0x1}, 0x0)
socket$inet(0x2, 0x2, 0x1)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x10, 0x0, &(0x7f0000000000)='GPL\x00', 0x8, 0xb7, &(0x7f0000000140)=""/183, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000080)={0x3, 0x10, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000340)=[{0x2, 0x2, 0xf, 0x7}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
chdir(0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_pressure(r3, &(0x7f0000001000)='cpu.pressure\x00', 0x2, 0x0)
write$cgroup_pressure(r4, &(0x7f0000000080)={'some', 0x20, 0x2000000005, 0x20, 0x10000000fffff}, 0x2f)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup_procs(r5, &(0x7f0000000300)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r6, &(0x7f0000000080), 0x12)
creat(&(0x7f0000000240)='./file0\x00', 0x1)
mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x8, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0)

3.112942322s ago: executing program 2 (id=1328):
openat$mixer(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb01001800000000000000300000003000000002000000000000000100000408000000000000000200000020000000000000"], 0x0, 0x4a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/mcfilter\x00')
preadv(r3, &(0x7f00000000c0)=[{&(0x7f0000000180)=""/79, 0x4f}], 0x1, 0x3ffffe, 0x1)
r4 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000100)=0x2)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000040)=0x11)
ioctl$sock_SIOCBRDELBR(0xffffffffffffffff, 0x89a2, &(0x7f0000000000)='bridge0\x00')
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x6, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x9, 0x0, 0x0, 0x0, 0x61, 0x11, 0x10}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x8}, @exit]}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x4, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
ioctl$sock_bt_hidp_HIDPCONNADD(0xffffffffffffffff, 0x400448c8, &(0x7f0000000340)={r5, r5, 0x8, 0x0, 0x0, 0x2, 0x11, 0x15be, 0x5886, 0x801, 0x0, 0x8, 'syz1\x00'})
syz_usb_connect(0x2, 0x34, &(0x7f0000000300)=ANY=[@ANYBLOB="1201000094d9d4084e080110aeed010203010902220001000000000904000001437b6a000905000000000000000705"], 0x0)
r6 = socket(0x1000000000000010, 0x80802, 0x0)
bind$netlink(r6, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001100)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x54, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
setsockopt$sock_attach_bpf(r6, 0x1, 0x32, 0x0, 0x0)

2.213150108s ago: executing program 3 (id=1329):
userfaultfd(0x1)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014"], 0x7c}}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@newtaction={0x110, 0x30, 0x10, 0x0, 0x0, {}, [{0xfc, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x1d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0xb4, 0x3, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x3, 0x0, 0xfffffffc}}}]}, {0x6f, 0x6, "7e4529a2a40748c131373af03d45b2d823e0c4a991610c402c236a4d11b05a44e62a0ffcd007f368a469a6e7bc4aac5df8facb13d1511dd97437e5a9d2d6bae8c5c8ea9a0fe06797a8251008fd2e4f02c60332e46b460011dd0bd5c79e516c14814179e3f144aeccb1e75c"}, {0xc}, {0xc}}}]}]}, 0x110}, 0x1, 0x0, 0x0, 0x804}, 0x0)
sched_setscheduler(0xffffffffffffffff, 0x2, &(0x7f0000000080)=0xb)
r0 = getpid()
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0], 0x38}}, 0x8810)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000940)=ANY=[@ANYBLOB="5400000010000d0427bd700000000000000015b5091e4cd308663905cc0cac001acc966ce218f9d8ac0b912697bcfabe2771bb5b5a7ef6d6f9cf6a802629cc37a6e7fbe46f3e918a21b4bc36c14322e41aecb76f99b56750e27acb2734e3e083de0582908e283eab125fe03c2a96c07a4dc3d174b8b52fb546d8669464d802733e124aa29637cf4269bb90d05636002a2b19b98caad7c1a68a7441b74a85f854cbfc00bb010ad77dd915ccea9fc5b6b32180725257b2d4ecd201653602629fdef20cce5cc6e6d5b1", @ANYRES32=r2, @ANYBLOB="231205004000000034001280110001006272696467655f736c617665000000001c000580050008"], 0x54}, 0x1, 0x0, 0x0, 0x40800}, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f00000001c0)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
syz_open_dev$swradio(0x0, 0x1, 0x2)
syz_io_uring_setup(0x4bbf, &(0x7f0000000580)={0x0, 0x0, 0x200, 0x0, 0x17a}, 0x0, &(0x7f0000000200))
init_module(&(0x7f0000000100)={{0x7f, 0x45, 0x4c, 0x46, 0x7, 0xff, 0x4, 0xfc, 0xffffffffffffffff, 0x3, 0x6, 0x8, 0x190, 0x40, 0x278, 0x10, 0x4, 0x38, 0x2, 0xe9, 0x8, 0xc}, [], "8202bdbe1aeb0f28648055f1d5740d47"}, 0xfffd8, 0x0)
getpgid(r0)

2.212487941s ago: executing program 1 (id=1330):
chdir(0x0)
lgetxattr(&(0x7f0000001400)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000000)=@random={'system.', '&(]{.&$[\x00'}, &(0x7f0000002400)=""/4096, 0x1000)
openat(0xffffffffffffff9c, 0x0, 0x143042, 0x0)
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
fchdir(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f0000000180)=[{0x20, 0x0, 0x0, 0xfffff038}, {0x20, 0x0, 0x0, 0x48000}, {0x6}]}, 0x8)
creat(&(0x7f0000000400)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
lstat(&(0x7f0000003400)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000040))

2.162054502s ago: executing program 1 (id=1331):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x4e1, &(0x7f0000000380)={0x0, 0x6376, 0x100e, 0xffffffff, 0x0, 0x0, r1}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(0xffffffffffffffff, 0x7a0, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x708, 0x41e3, 0x0, 0x0, 0x0)
r5 = syz_open_dev$cec(&(0x7f0000000000), 0xffffffffffffffff, 0x0)
ioctl$IOC_PR_PREEMPT(r5, 0x40046109, &(0x7f0000000040)={0xd0})
syz_open_dev$loop(&(0x7f0000000100), 0xd79, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x10, &(0x7f0000000700)=ANY=[@ANYBLOB="b7080000000000007b8af8ff00000000b7080000080000007b7bf0ff00000000bfa100000000000007f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000a3fef10a447a901a8c2306e8217cda0000005893e9e628fe74baaff96dac6517e9377ac4f649075369f0d97dea4120b9cdca3b92b791ebc926b72b4b6cc76002379a2fd47e371ea7a1090fb252715bfff5100d3129a7b6dcffde3feffa6fc3f4d6d1637f7e15734a71274859fe8f9b990af49bc78ebfed29bd5f5d5c869e621f46c4febd993fb052bfb9e96510adfd633f8a9801a9919b6ecdfb5819031754189031dd768485c5f40da1af691ccb39f76e72835d9d92f6d3a0cf1ef4df990a870160648fc9718ba82bc0123c1f128f6a9f9fc33af8c4abdc15", @ANYRES16=r5, @ANYBLOB="0000000000000000b70500000800000085000000a500000018420000050000000000000000000000dc57090000000080"], &(0x7f00000000c0)='syzkaller\x00', 0xbe, 0x0, 0x0, 0x40f00, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000140)={0xfffffffe, 0x5}, 0x8, 0x10, &(0x7f0000000280)={0x2, 0x9, 0x401, 0x7}, 0x10, 0x0, 0x0, 0x3, &(0x7f00000002c0)=[r1], &(0x7f0000000300)=[{0x2, 0x2, 0x0, 0x3}, {0x5, 0x4, 0x10, 0x8}, {0x4, 0x2, 0xd, 0x7}], 0x10, 0x8, @void, @value}, 0x94)
r7 = dup(r6)
shmctl$SHM_STAT(0x0, 0xd, &(0x7f0000000000)=""/108)
r8 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$peek(0x1, r8, &(0x7f0000006b40))
wait4(0x0, 0x0, 0x40000000, 0x0)
ioctl$SNDRV_PCM_IOCTL_CHANNEL_INFO(r7, 0x80104132, &(0x7f0000000080))
write$6lowpan_enable(r7, &(0x7f0000000000)='0', 0xfffffd2c)
r9 = syz_io_uring_setup(0x4e1, &(0x7f0000000380)={0x0, 0x1ffffa, 0x10100, 0x0, 0x0, 0x0, r7}, &(0x7f0000000180)=<r10=>0x0, &(0x7f00000001c0)=<r11=>0x0)
syz_io_uring_submit(r10, r11, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r9, 0x708, 0x41e3, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x3, 0x801, 0x0, &(0x7f0000000040), 0xfffffffc)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
mlock2(&(0x7f0000495000/0x2000)=nil, 0x2000, 0x0)

1.870820526s ago: executing program 0 (id=1332):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x0, 0x1c, &(0x7f0000000040)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bf0900000000000055090100000000009500000000000000b7020000000000007b88f8ff00000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="2400000021002101000000000000dc000a00000000000000000000000800"], 0x24}}, 0x0)

1.870312427s ago: executing program 0 (id=1333):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000004000000000000000000850000000700000018", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'bridge_slave_0\x00'})
sendmmsg$sock(r4, &(0x7f0000003bc0), 0x4000000000002ca, 0x4040014)
r6 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r6, 0x800000010d, 0x2, &(0x7f0000000000)="c94e2f1099", 0x1e)
close_range(r0, 0xffffffffffffffff, 0x0)

1.673761032s ago: executing program 1 (id=1334):
r0 = socket$netlink(0x10, 0x3, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYRESHEX=r0, @ANYRES32=r0], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x0, 0x13, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'nr0\x00', 0xe43986f95b0e4309})
ioctl$TUNGETSNDBUF(r1, 0x400454dc, &(0x7f0000001700))
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000100)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
set_mempolicy_home_node(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0)
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0)
write$cgroup_int(r5, &(0x7f0000000180)=0x3, 0x12)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0xe68, 0x30, 0x871a15abc695fa3d, 0x0, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{0x2}, 0x97}, [{}, {}, {0x0, 0x0, 0xee}, {}, {}, {0x0, 0x0, 0x1, 0x0, 0x800}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, {}, {0x0, 0x0, 0x4, 0x0, 0x8000000}, {0x0, 0xfffffffe}, {}, {}, {0x0, 0x0, 0x0, 0x800}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0x0, 0x0, 0x0, 0xff}, {}, {}, {}, {0xfffffffd}, {}, {}, {}, {0xffffffff}, {}, {}, {}, {0xfffffffd}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0xffffffff}, {}, {}, {0x0, 0x4}, {}, {}, {0x0, 0x1}, {}, {}, {0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x4}], [{0x3272acbcf996957}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4, 0x1}, {}, {0x0, 0x1}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x3}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x141842, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200400a1}, 0x20010084)
syz_usb_connect(0x6, 0x24, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000000)={'bridge0\x00'})
sendmsg$nl_route(r8, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0xba01}, 0x0)

1.159779523s ago: executing program 3 (id=1335):
syz_open_dev$video4linux(&(0x7f0000000040), 0xffff, 0x40800)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYRES64], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = io_uring_setup(0x6db7, &(0x7f0000000180)={0x0, 0x3, 0x800, 0x10000081, 0x31b})
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, 0x0)
readv(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f0000001740)=""/153, 0x99}], 0x1)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x244, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x0, 0x2, 0x0, {0x9}}}]}}]}}, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mount$tmpfs(0x0, 0x0, 0x0, 0x2b00b8, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0500000003000000003800f23e000000000000004b3ddc6a92e459920bf2d559f7d851adc970c6ec6993eda814b6989dc8a2fed5dbb52cf8308fb52df7ed0ca51488b62d75d2df282b013844e1b0cbb507173ea3698cb83fbc9c648ff7276be2b35575c82833603356e6a05cbcf30bff4a5a358fbd585e97619fb44b79a20a65be4d9487d097bb6ccc27b44a6f3aba6a68535d35d522eef4030e5a", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000100"/28], 0x50)
close_range(r0, 0xffffffffffffffff, 0x0)

1.15894167s ago: executing program 0 (id=1336):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000500), r0)
sendmsg$NFC_CMD_DISABLE_SE(r0, 0x0, 0x40000)

1.103427847s ago: executing program 0 (id=1337):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r2, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r2, 0x0)
connect$unix(r1, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r3 = io_uring_setup(0x758a, &(0x7f0000000080))
r4 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r4, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
close_range(r3, 0xffffffffffffffff, 0x0)
socket$packet(0x11, 0x2, 0x300)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000002c0)={'macvlan0\x00', <r6=>0x0})
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=r6, @ANYBLOB="00001700000000001c0037800b0001206970768a616e08000c0002800600010000000000050027"], 0x44}, 0x1, 0x0, 0x0, 0x50}, 0x0)
socket(0x400000000010, 0x3, 0x0)
openat$fb0(0xffffff9c, &(0x7f0000000000), 0x80841, 0x0)
socket$packet(0x11, 0x2, 0x300)
ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc018aa06, &(0x7f00000000c0)={{&(0x7f0000497000/0x4000)=nil, 0x7fffdfb68000}})
socket$qrtr(0x2a, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYRES32=0x1, @ANYRES32=0x0, @ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x13)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000001c80)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x2, &(0x7f0000000340))
epoll_create1(0x0)
creat(&(0x7f00000001c0)='./bus\x00', 0x4e)

936.681513ms ago: executing program 0 (id=1338):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000002680)={&(0x7f0000002540)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x7, [@var={0x5}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x2e]}}, 0x0, 0x2f, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x47, &(0x7f0000000000)=[{&(0x7f0000000080)={0x114, 0x7, 0x1, 0x0, 0x0, "", [@nested={0x102, 0x0, 0x0, 0x1, [@typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@loopback}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd7127cfc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029c1608a487f26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f55ac64337803f5eb4ed842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd3f"]}]}, 0x114}], 0x1}, 0x0)
socket$inet(0x2, 0x2, 0x1)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], 0x0, 0x8, 0xb7, &(0x7f0000000140)=""/183, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000080)={0x3, 0x10, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000340)=[{0x2, 0x2, 0xf, 0x7}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
chdir(0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_pressure(r3, &(0x7f0000001000)='cpu.pressure\x00', 0x2, 0x0)
write$cgroup_pressure(r4, &(0x7f0000000080)={'some', 0x20, 0x2000000005, 0x20, 0x10000000fffff}, 0x2f)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup_procs(r5, &(0x7f0000000300)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r6, &(0x7f0000000080), 0x12)
creat(&(0x7f0000000240)='./file0\x00', 0x1)
mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x8, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0)

79.003118ms ago: executing program 2 (id=1339):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, 0x0, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='contention_begin\x00', r0}, 0x10)
r1 = syz_open_dev$media(&(0x7f0000000380), 0x0, 0x0)
ioctl$MEDIA_IOC_ENUM_LINKS(r1, 0xc0287c02, &(0x7f0000000100)={0x80000000, 0x0, &(0x7f0000000200)})

227.49µs ago: executing program 0 (id=1340):
getsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)=""/1, &(0x7f0000000000)=0x1)
socket$inet6_sctp(0xa, 0x1, 0x84)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x1a, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x7fff, 0x2, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x8}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x8002)
execveat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x0, 0x0, 0x0)
bind$l2tp6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x20)
socket$inet6_udp(0xa, 0x2, 0x0)
write$sndseq(0xffffffffffffffff, &(0x7f0000000200)=[{0x0, 0x0, 0x0, 0x0, @tick=0x2f, {}, {}, @raw32}, {0x0, 0x2, 0x0, 0x0, @time, {}, {}, @ext={0x0, 0x0}}], 0x38)
ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000180)={{}, 'syz0\x00'})
r3 = openat$dsp(0xffffff9c, &(0x7f0000000280), 0x20000, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f0000000300)=0x401)
r4 = socket(0x2, 0x80805, 0x0)
r5 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r6=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r4, 0x84, 0x76, &(0x7f0000000140)=@assoc_value={r6}, 0x8)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000380)=@newsa={0x138, 0x10, 0x713, 0x0, 0x0, {{@in=@dev, @in6=@mcast1}, {@in=@remote, 0x0, 0x33}, @in6=@mcast1, {}, {}, {}, 0x0, 0x0, 0x2}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x138}}, 0x0)

0s ago: executing program 2 (id=1341):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r1, 0x0)
r2 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
setsockopt$ax25_SO_BINDTODEVICE(r2, 0x101, 0x19, &(0x7f0000000040)=@bpq0, 0x10)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioperm(0x1, 0x7, 0x80000001)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r4, 0x8917, &(0x7f00000002c0)={'syz_tun\x00', {0x2, 0x4e25, @local}})
connect$unix(0xffffffffffffffff, 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = accept4(r1, 0x0, 0x0, 0x800)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000004c0)={0x3c, r7, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x28, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1}]}]}, 0x3c}}, 0x4000000)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
write$bt_hci(r6, &(0x7f0000000140)=ANY=[@ANYBLOB="010b143bc9f7ff000096172a3705c47b229897887f5afced36a46669ec316fc40c2ae8a6ff8e3a8deda5eee512dff0f2fe433ea91a81cad9f139e1a576ba4f01f95dadad"], 0x3f)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="0100000000000000000002000000140001800500020001"], 0x28}, 0x1, 0x0, 0x0, 0x20044811}, 0x2000c094)
socket$nl_netfilter(0x10, 0x3, 0xc)

kernel console output (not intermixed with test programs):

7264] dccp_close: ABORT with 64 bytes unread
[  125.169142][ T7272] netlink: 68 bytes leftover after parsing attributes in process `syz.0.365'.
[  126.086530][   T63] IPVS: starting estimator thread 0...
[  126.171855][ T7290] IPVS: using max 39 ests per chain, 93600 per kthread
[  126.271257][  T834] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  126.431754][  T834] usb 5-1: Using ep0 maxpacket: 8
[  126.445263][  T834] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  126.446251][ T7298] netlink: 20 bytes leftover after parsing attributes in process `syz.1.370'.
[  126.447641][  T834] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  126.449923][ T7298] netlink: 20 bytes leftover after parsing attributes in process `syz.1.370'.
[  126.453047][  T834] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  126.453065][  T834] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  126.455748][ T7298] netlink: 20 bytes leftover after parsing attributes in process `syz.1.370'.
[  126.459528][  T834] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  126.462328][ T7298] netlink: 4 bytes leftover after parsing attributes in process `syz.1.370'.
[  126.476615][  T834] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  126.478812][  T834] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  126.482411][  T834] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  126.485811][  T834] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  126.488765][  T834] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  126.492934][  T834] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  126.495093][  T834] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  126.498328][  T834] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  126.501752][  T834] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  126.504926][  T834] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  126.511573][ T7291] IPVS: set_ctl: invalid protocol: 47 224.0.0.2:20003
[  126.512846][  T834] usb 5-1: string descriptor 0 read error: -22
[  126.514906][  T834] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  126.519518][  T834] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  126.526656][  T834] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  127.389725][ T5950] usb 5-1: USB disconnect, device number 12
[  128.791844][ T7331] program syz.2.382 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  128.806495][ T7331] netlink: 108 bytes leftover after parsing attributes in process `syz.2.382'.
[  128.809036][ T7331] netlink: 108 bytes leftover after parsing attributes in process `syz.2.382'.
[  128.869990][ T7338] netlink: 16 bytes leftover after parsing attributes in process `syz.2.384'.
[  129.082395][  T835] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[  129.125477][ T7342] XFS (nullb0): Invalid superblock magic number
[  129.155220][ T6002] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  129.202217][ T5950] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  129.242909][  T835] usb 8-1: Using ep0 maxpacket: 16
[  129.245587][ T7352] bridge0: port 3(vlan1) entered blocking state
[  129.246727][  T835] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  129.247690][ T7352] bridge0: port 3(vlan1) entered disabled state
[  129.251152][  T835] usb 8-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  129.253895][ T7352] vlan1: entered allmulticast mode
[  129.256187][  T835] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  129.257930][ T7352] bond0: entered allmulticast mode
[  129.262143][ T7352] bond_slave_0: entered allmulticast mode
[  129.263078][  T835] usb 8-1: config 0 descriptor??
[  129.264089][ T7352] bond_slave_1: entered allmulticast mode
[  129.268663][ T7352] vlan1: entered promiscuous mode
[  129.269734][  T835] input: bcm5974 as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input34
[  129.270407][ T7352] bond0: entered promiscuous mode
[  129.274718][ T7352] bond_slave_0: entered promiscuous mode
[  129.276804][ T7352] bond_slave_1: entered promiscuous mode
[  129.279213][ T7352] bridge0: port 3(vlan1) entered blocking state
[  129.281408][ T7352] bridge0: port 3(vlan1) entered forwarding state
[  129.286760][  T105] bridge0: port 3(vlan1) entered disabled state
[  129.321804][ T6002] usb 7-1: Using ep0 maxpacket: 32
[  129.325572][ T6002] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  129.332510][ T6002] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  129.335976][ T6002] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  129.338889][ T6002] usb 7-1: Product: syz
[  129.340028][ T6002] usb 7-1: Manufacturer: syz
[  129.342971][ T6002] usb 7-1: SerialNumber: syz
[  129.346111][ T6002] usb 7-1: config 0 descriptor??
[  129.348132][ T7338] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  129.361793][ T5950] usb 6-1: Using ep0 maxpacket: 8
[  129.364748][ T5950] usb 6-1: config 0 has no interfaces?
[  129.366549][ T5950] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  129.369606][ T5950] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  129.372616][ T7356] program syz.0.390 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  129.374255][ T5950] usb 6-1: config 0 descriptor??
[  129.410390][ T7358] openvswitch: netlink: IPv4 frag type 255 is out of range max 2
[  129.473203][ T5343] bcm5974 8-1:0.0: could not read from device
[  129.476462][  T835] bcm5974 8-1:0.0: could not read from device
[  129.479438][ T5343] bcm5974 8-1:0.0: could not read from device
[  129.483110][  T835] input: failed to attach handler mousedev to device input34, error: -5
[  129.487820][ T5343] bcm5974 8-1:0.0: could not read from device
[  129.490261][ T5343] bcm5974 8-1:0.0: could not read from device
[  129.490356][  T835] usb 8-1: USB disconnect, device number 14
[  129.560499][ T7360] netlink: 72 bytes leftover after parsing attributes in process `syz.0.392'.
[  129.578066][ T7360] netlink: 32 bytes leftover after parsing attributes in process `syz.0.392'.
[  129.624176][ T7338] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  129.626028][ T7338] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  129.644172][ T7338] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  129.650732][ T7338] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  129.652894][ T7338] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  129.657397][ T7338] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  129.706551][  T835] usb 6-1: USB disconnect, device number 17
[  129.752324][ T6002] usb 7-1: USB disconnect, device number 15
[  129.951710][   T35] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  130.103043][   T35] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  130.106333][   T35] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  130.109485][   T35] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  130.113513][   T35] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  130.117413][   T35] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  130.120029][   T35] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  130.124613][   T35] usb 5-1: config 0 descriptor??
[  130.126559][ T7364] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  130.295397][ T7379] __nla_validate_parse: 1 callbacks suppressed
[  130.295416][ T7379] netlink: 8 bytes leftover after parsing attributes in process `syz.1.397'.
[  130.343515][ T7382] ipt_REJECT: TCP_RESET invalid for non-tcp
[  130.366435][ T7364] netlink: 7986 bytes leftover after parsing attributes in process `syz.0.393'.
[  130.373104][   T35] usbhid 5-1:0.0: can't add hid device: -71
[  130.374861][   T35] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  130.377965][   T35] usb 5-1: USB disconnect, device number 13
[  130.475095][ T7388] netlink: 12 bytes leftover after parsing attributes in process `syz.3.401'.
[  130.485705][ T7388] tap0: tun_chr_ioctl cmd 1074025672
[  130.487262][ T7388] tap0: ignored: set checksum enabled
[  130.496636][ T7388] bridge_slave_1: left allmulticast mode
[  130.498385][ T7388] bridge_slave_1: left promiscuous mode
[  130.500092][ T7388] bridge0: port 2(bridge_slave_1) entered disabled state
[  130.505649][ T7388] bridge1: port 1(bridge_slave_1) entered blocking state
[  130.507699][ T7388] bridge1: port 1(bridge_slave_1) entered disabled state
[  130.509827][ T7388] bridge_slave_1: entered allmulticast mode
[  130.512356][ T7388] bridge_slave_1: entered promiscuous mode
[  131.310563][ T7412] netlink: 'syz.1.409': attribute type 4 has an invalid length.
[  131.320720][ T7412] netlink: 'syz.1.409': attribute type 4 has an invalid length.
[  131.712003][   T68] Bluetooth: hci3: command 0x0419 tx timeout
[  131.713782][   T68] Bluetooth: hci1: command 0x0c1a tx timeout
[  132.674748][ T1414] ieee802154 phy0 wpan0: encryption failed: -22
[  132.677480][ T1414] ieee802154 phy1 wpan1: encryption failed: -22
[  132.999547][ T7443] netlink: 52 bytes leftover after parsing attributes in process `syz.0.417'.
[  133.018647][ T7447] Bluetooth: hci0: Opcode 0x0401 failed: -22
[  133.307977][ T5951] Bluetooth: hci1: ACL packet for unknown connection handle 968
[  133.352660][ T7457] Invalid ELF header type: 3 != 1
[  133.511814][   T35] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[  133.662913][   T35] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  133.665980][   T35] usb 8-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  133.670173][   T35] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  133.673056][   T35] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  133.675346][   T35] usb 8-1: Product: syz
[  133.676541][   T35] usb 8-1: Manufacturer: syz
[  133.678209][   T35] usb 8-1: SerialNumber: syz
[  133.791794][   T68] Bluetooth: hci3: command 0x0419 tx timeout
[  133.791807][ T5951] Bluetooth: hci1: command 0x0c1a tx timeout
[  133.885721][ T7456] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  134.291701][  T835] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  134.441850][  T835] usb 5-1: Using ep0 maxpacket: 16
[  134.445558][  T835] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  134.450304][  T835] usb 5-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  134.453708][  T835] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  134.458228][  T835] usb 5-1: config 0 descriptor??
[  134.462906][  T835] input: bcm5974 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input35
[  134.491879][ T7456] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  134.662804][ T5343] bcm5974 5-1:0.0: could not read from device
[  134.662941][  T834] usb 5-1: USB disconnect, device number 14
[  134.669589][ T7257] bcm5974 5-1:0.0: could not read from device
[  134.694798][   T35] cdc_mbim 8-1:1.0: MAC-Address: 42:42:42:42:42:42
[  134.696728][   T35] cdc_mbim 8-1:1.0: dwNtbInMaxSize=0 is too small. Using 2048
[  134.698819][   T35] cdc_mbim 8-1:1.0: setting rx_max = 2048
[  134.895370][   T35] cdc_mbim 8-1:1.0: setting tx_max = 184
[  134.897599][   T35] cdc_mbim 8-1:1.0: cdc-wdm0: USB WDM device
[  134.913799][   T35] wwan wwan0: port wwan0mbim0 attached
[  134.920542][   T35] cdc_mbim 8-1:1.0 wwan0: register 'cdc_mbim' at usb-dummy_hcd.3-1, CDC MBIM, 42:42:42:42:42:42
[  135.031787][ T7493] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  135.071941][   T68] Bluetooth: hci0: command tx timeout
[  135.096543][    C3] cdc_mbim 8-1:1.0: nonzero urb status received: -71
[  135.098488][    C3] cdc_mbim 8-1:1.0: wdm_int_callback - 0 bytes
[  135.100385][    C3] cdc_mbim 8-1:1.0: nonzero urb status received: -71
[  135.102240][    C3] cdc_mbim 8-1:1.0: wdm_int_callback - 0 bytes
[  135.104348][    C3] cdc_mbim 8-1:1.0: nonzero urb status received: -71
[  135.106218][    C3] cdc_mbim 8-1:1.0: wdm_int_callback - 0 bytes
[  135.108141][    C3] cdc_mbim 8-1:1.0: nonzero urb status received: -71
[  135.110014][    C3] cdc_mbim 8-1:1.0: wdm_int_callback - 0 bytes
[  135.111936][    C3] cdc_mbim 8-1:1.0: nonzero urb status received: -71
[  135.113794][    C3] cdc_mbim 8-1:1.0: wdm_int_callback - 0 bytes
[  135.115773][    C3] cdc_mbim 8-1:1.0: nonzero urb status received: -71
[  135.117658][    C3] cdc_mbim 8-1:1.0: wdm_int_callback - 0 bytes
[  135.119841][    C3] cdc_mbim 8-1:1.0: nonzero urb status received: -71
[  135.121733][    C3] cdc_mbim 8-1:1.0: wdm_int_callback - 0 bytes
[  135.124152][ T5658] 8021q: adding VLAN 0 to HW filter on device wwan0
[  135.132022][    C3] cdc_mbim 8-1:1.0: nonzero urb status received: -71
[  135.134498][    C3] cdc_mbim 8-1:1.0: wdm_int_callback - 0 bytes
[  135.138233][    C3] cdc_mbim 8-1:1.0: nonzero urb status received: -71
[  135.140332][    C3] cdc_mbim 8-1:1.0: wdm_int_callback - 0 bytes
[  135.142314][    C3] cdc_mbim 8-1:1.0: nonzero urb status received: -71
[  135.144130][    C3] cdc_mbim 8-1:1.0: wdm_int_callback - 0 bytes
[  135.433639][ T7520] netlink: 1304 bytes leftover after parsing attributes in process `syz.0.433'.
[  135.592291][   T35] usb 8-1: USB disconnect, device number 15
[  135.594507][   T35] cdc_mbim 8-1:1.0 wwan0: unregister 'cdc_mbim' usb-dummy_hcd.3-1, CDC MBIM
[  135.741428][   T35] wwan wwan0: port wwan0mbim0 disconnected
[  135.872255][   T68] Bluetooth: hci3: command 0x0419 tx timeout
[  135.874103][   T68] Bluetooth: hci1: command 0x0c1a tx timeout
[  136.442475][ T7560] netlink: 40 bytes leftover after parsing attributes in process `syz.2.442'.
[  136.460313][ T7562] netlink: 28 bytes leftover after parsing attributes in process `syz.1.443'.
[  137.356983][ T7593] netlink: 28 bytes leftover after parsing attributes in process `syz.0.452'.
[  137.771735][   T35] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  137.832113][  T835] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  137.921680][   T35] usb 7-1: Using ep0 maxpacket: 16
[  137.927672][   T35] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  137.932363][   T35] usb 7-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  137.935164][   T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  137.954646][   T35] usb 7-1: config 0 descriptor??
[  137.960462][   T35] input: bcm5974 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input36
[  137.991701][  T835] usb 6-1: Using ep0 maxpacket: 16
[  137.994708][  T835] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  137.998400][  T835] usb 6-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  138.000941][  T835] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  138.005822][  T835] usb 6-1: config 0 descriptor??
[  138.009160][  T835] input: bcm5974 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input37
[  138.071716][ T7615] bridge0: port 2(hsr_slave_1) entered blocking state
[  138.075976][ T7615] bridge0: port 2(hsr_slave_1) entered disabled state
[  138.080088][ T7615] hsr_slave_1: entered allmulticast mode
[  138.097904][ T7615] hsr_slave_1: left allmulticast mode
[  138.164784][ T5343] bcm5974 7-1:0.0: could not read from device
[  138.170936][   T35] bcm5974 7-1:0.0: could not read from device
[  138.173893][   T35] input: failed to attach handler mousedev to device input36, error: -5
[  138.178365][   T35] usb 7-1: USB disconnect, device number 16
[  138.265290][  T835] bcm5974 6-1:0.0: could not read from device
[  138.267753][ T5343] bcm5974 6-1:0.0: could not read from device
[  138.273968][  T835] input: failed to attach handler mousedev to device input37, error: -5
[  138.277200][ T5343] bcm5974 6-1:0.0: could not read from device
[  138.279804][ T5343] bcm5974 6-1:0.0: could not read from device
[  138.285434][  T835] usb 6-1: USB disconnect, device number 18
[  139.908014][ T7647] IPVS: sync thread started: state = MASTER, mcast_ifn = wg1, syncid = 262145, id = 0
[  140.183318][ T7655] ntfs3(sr0): Primary boot signature is not NTFS.
[  140.185897][ T7655] ntfs3(sr0): try to read out of volume at offset 0xf800
[  140.471831][   T65] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  140.506778][ T7665] qnx6: unable to read the first superblock
[  140.578345][ T7670] Cannot find add_set index 0 as target
[  140.587966][ T7670] netlink: 40 bytes leftover after parsing attributes in process `syz.2.474'.
[  140.621736][   T65] usb 5-1: Using ep0 maxpacket: 16
[  140.625314][   T65] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  140.630380][   T65] usb 5-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  140.633948][   T65] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  140.639886][   T65] usb 5-1: config 0 descriptor??
[  140.644963][   T65] input: bcm5974 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input38
[  140.845067][ T5343] bcm5974 5-1:0.0: could not read from device
[  140.852208][   T65] bcm5974 5-1:0.0: could not read from device
[  140.854693][ T5343] bcm5974 5-1:0.0: could not read from device
[  140.860204][   T65] input: failed to attach handler mousedev to device input38, error: -5
[  140.866760][   T65] usb 5-1: USB disconnect, device number 15
[  140.867295][ T5343] bcm5974 5-1:0.0: could not read from device
[  140.923478][ T7679] veth1_macvtap: left promiscuous mode
[  142.180424][ T7693] netlink: 52 bytes leftover after parsing attributes in process `syz.1.481'.
[  142.597252][ T7702] Invalid ELF header type: 3 != 1
[  142.761942][  T834] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  142.912090][  T834] usb 7-1: Using ep0 maxpacket: 8
[  142.914682][  T834] usb 7-1: config 0 has no interfaces?
[  142.916221][  T834] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  142.919126][  T834] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  142.922480][  T834] usb 7-1: config 0 descriptor??
[  142.951730][   T65] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  143.121789][   T65] usb 5-1: Using ep0 maxpacket: 16
[  143.127981][   T65] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  143.131968][   T65] usb 5-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  143.134834][   T65] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.135774][   T65] usb 5-1: config 0 descriptor??
[  143.138171][   T65] input: bcm5974 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input39
[  143.140938][ T7701] netlink: 4 bytes leftover after parsing attributes in process `syz.2.483'.
[  143.171130][ T6004] usb 7-1: USB disconnect, device number 17
[  143.348930][ T5343] bcm5974 5-1:0.0: could not read from device
[  143.352521][    T9] usb 5-1: USB disconnect, device number 16
[  143.353358][ T7481] bcm5974 5-1:0.0: could not read from device
[  143.890390][ T7718] A link change request failed with some changes committed already. Interface wg1 may have been left with an inconsistent configuration, please check.
[  143.959497][ T7718] lo: entered allmulticast mode
[  144.001858][ T5950] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[  144.171818][ T5950] usb 7-1: Using ep0 maxpacket: 16
[  144.174564][ T5950] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  144.177992][ T5950] usb 7-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  144.180423][ T5950] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  144.183938][ T5950] usb 7-1: config 0 descriptor??
[  144.187393][ T5950] input: bcm5974 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input40
[  144.206842][   T39] kauditd_printk_skb: 9 callbacks suppressed
[  144.206861][   T39] audit: type=1800 audit(1739170411.743:275): pid=7730 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.489" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0
[  144.389497][ T5343] bcm5974 7-1:0.0: could not read from device
[  144.394483][ T5950] bcm5974 7-1:0.0: could not read from device
[  144.396759][ T5343] bcm5974 7-1:0.0: could not read from device
[  144.403110][ T5950] input: failed to attach handler mousedev to device input40, error: -5
[  144.406247][ T5343] bcm5974 7-1:0.0: could not read from device
[  144.409778][ T5950] usb 7-1: USB disconnect, device number 18
[  144.411730][ T5343] bcm5974 7-1:0.0: could not read from device
[  144.937356][ T7741] Invalid ELF header type: 3 != 1
[  145.221836][  T834] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[  145.374689][  T834] usb 7-1: Using ep0 maxpacket: 16
[  145.378552][  T834] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  145.381985][  T834] usb 7-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  145.384430][  T834] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  145.387674][  T834] usb 7-1: config 0 descriptor??
[  145.391829][  T834] input: bcm5974 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input41
[  145.401761][   T68] Bluetooth: hci3: command 0x0419 tx timeout
[  145.401800][ T5950] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  145.551667][ T5950] usb 5-1: Using ep0 maxpacket: 16
[  145.562490][ T5950] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  145.566062][ T5950] usb 5-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  145.568616][ T5950] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  145.571929][ T5950] usb 5-1: config 0 descriptor??
[  145.575991][ T5950] input: bcm5974 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input42
[  145.606579][ T5343] bcm5974 7-1:0.0: could not read from device
[  145.611066][ T5343] bcm5974 7-1:0.0: could not read from device
[  145.614654][  T834] usb 7-1: USB disconnect, device number 19
[  145.777424][ T5343] bcm5974 5-1:0.0: could not read from device
[  145.777590][    T9] usb 5-1: USB disconnect, device number 17
[  146.198317][ T7760] netlink: 4 bytes leftover after parsing attributes in process `syz.3.500'.
[  146.205373][ T7760] netlink: 173 bytes leftover after parsing attributes in process `syz.3.500'.
[  146.465000][ T7771] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  146.467491][ T7771] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  146.469785][ T7771] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[  147.261418][ T7785] Invalid ELF header type: 3 != 1
[  147.346868][ T7795] overlayfs: upper fs does not support tmpfile.
[  147.389410][ T7802] FAULT_INJECTION: forcing a failure.
[  147.389410][ T7802] name failslab, interval 1, probability 0, space 0, times 0
[  147.393588][ T7802] CPU: 3 UID: 0 PID: 7802 Comm: syz.2.516 Not tainted 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0
[  147.393605][ T7802] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  147.393611][ T7802] Call Trace:
[  147.393616][ T7802]  <TASK>
[  147.393620][ T7802]  dump_stack_lvl+0x16c/0x1f0
[  147.393643][ T7802]  should_fail_ex+0x50a/0x650
[  147.393657][ T7802]  ? fs_reclaim_acquire+0xae/0x150
[  147.393675][ T7802]  should_failslab+0xc2/0x120
[  147.393688][ T7802]  __kmalloc_noprof+0xce/0x4f0
[  147.393699][ T7802]  ? is_bpf_text_address+0x8a/0x1a0
[  147.393711][ T7802]  ? tomoyo_encode2+0x100/0x3e0
[  147.393727][ T7802]  tomoyo_encode2+0x100/0x3e0
[  147.393738][ T7802]  ? bpf_ksym_find+0x124/0x1c0
[  147.393753][ T7802]  tomoyo_encode+0x2c/0x40
[  147.393764][ T7802]  tomoyo_mount_acl+0x145/0x880
[  147.393775][ T7802]  ? hlock_class+0x4e/0x130
[  147.393790][ T7802]  ? __lock_acquire+0x15a9/0x3c40
[  147.393804][ T7802]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  147.393817][ T7802]  ? __pfx___lock_acquire+0x10/0x10
[  147.393828][ T7802]  ? stack_trace_save+0x95/0xd0
[  147.393844][ T7802]  ? __pfx_lock_release+0x10/0x10
[  147.393861][ T7802]  ? trace_lock_acquire+0x14e/0x1f0
[  147.393870][ T7802]  ? tomoyo_mount_permission+0x149/0x420
[  147.393882][ T7802]  ? lock_acquire+0x2f/0xb0
[  147.393892][ T7802]  ? tomoyo_mount_permission+0x149/0x420
[  147.393906][ T7802]  tomoyo_mount_permission+0x16e/0x420
[  147.393916][ T7802]  ? tomoyo_mount_permission+0x149/0x420
[  147.393928][ T7802]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  147.393944][ T7802]  ? get_current_fs_domain+0x184/0x1f0
[  147.393962][ T7802]  security_sb_mount+0x9b/0x260
[  147.393979][ T7802]  path_mount+0x129/0x1f00
[  147.393992][ T7802]  ? kmem_cache_free+0x2e2/0x4d0
[  147.394002][ T7802]  ? __pfx_path_mount+0x10/0x10
[  147.394015][ T7802]  ? putname+0x13c/0x180
[  147.394029][ T7802]  __ia32_sys_mount+0x28d/0x310
[  147.394041][ T7802]  ? __pfx___ia32_sys_mount+0x10/0x10
[  147.394056][ T7802]  __do_fast_syscall_32+0x73/0x120
[  147.394067][ T7802]  do_fast_syscall_32+0x32/0x80
[  147.394076][ T7802]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  147.394092][ T7802] RIP: 0023:0xf7ff5579
[  147.394100][ T7802] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  147.394109][ T7802] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  147.394119][ T7802] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 00000000800000c0
[  147.394125][ T7802] RDX: 0000000080000040 RSI: 0000000000008002 RDI: 0000000000000000
[  147.394130][ T7802] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  147.394135][ T7802] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  147.394141][ T7802] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  147.394179][ T7802]  </TASK>
[  148.029810][ T7817] netlink: 52 bytes leftover after parsing attributes in process `syz.3.519'.
[  148.266879][ T7823] Invalid ELF header type: 3 != 1
[  148.539208][ T7832] FAULT_INJECTION: forcing a failure.
[  148.539208][ T7832] name failslab, interval 1, probability 0, space 0, times 0
[  148.542933][ T7832] CPU: 0 UID: 0 PID: 7832 Comm: syz.0.523 Not tainted 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0
[  148.542947][ T7832] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  148.542953][ T7832] Call Trace:
[  148.542958][ T7832]  <TASK>
[  148.542962][ T7832]  dump_stack_lvl+0x16c/0x1f0
[  148.543015][ T7832]  should_fail_ex+0x50a/0x650
[  148.543030][ T7832]  ? fs_reclaim_acquire+0xae/0x150
[  148.543048][ T7832]  should_failslab+0xc2/0x120
[  148.543061][ T7832]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  148.543073][ T7832]  ? __up_read+0x1fb/0x760
[  148.543085][ T7832]  ? __alloc_skb+0x2b3/0x380
[  148.543098][ T7832]  __alloc_skb+0x2b3/0x380
[  148.543108][ T7832]  ? __pfx___alloc_skb+0x10/0x10
[  148.543121][ T7832]  netlink_ack+0x164/0xb20
[  148.543137][ T7832]  ? __pfx___lock_acquire+0x10/0x10
[  148.543152][ T7832]  rdma_nl_rcv_skb.constprop.0.isra.0+0x346/0x450
[  148.543169][ T7832]  ? __pfx_rdma_nl_rcv_skb.constprop.0.isra.0+0x10/0x10
[  148.543188][ T7832]  ? netlink_deliver_tap+0x1ae/0xca0
[  148.543204][ T7832]  netlink_unicast+0x53c/0x7f0
[  148.543219][ T7832]  ? __pfx_netlink_unicast+0x10/0x10
[  148.543234][ T7832]  ? __phys_addr_symbol+0x30/0x80
[  148.543249][ T7832]  ? __check_object_size+0x488/0x710
[  148.543263][ T7832]  netlink_sendmsg+0x8b8/0xd70
[  148.543279][ T7832]  ? __pfx_netlink_sendmsg+0x10/0x10
[  148.543297][ T7832]  ____sys_sendmsg+0x9ae/0xb40
[  148.543312][ T7832]  ? __pfx_____sys_sendmsg+0x10/0x10
[  148.543325][ T7832]  ? get_compat_msghdr+0x11b/0x170
[  148.543344][ T7832]  ___sys_sendmsg+0x135/0x1e0
[  148.543356][ T7832]  ? __pfx____sys_sendmsg+0x10/0x10
[  148.543370][ T7832]  ? __pfx_lock_release+0x10/0x10
[  148.543381][ T7832]  ? trace_lock_acquire+0x14e/0x1f0
[  148.543394][ T7832]  ? __fget_files+0x206/0x3a0
[  148.543408][ T7832]  __sys_sendmsg+0x16e/0x220
[  148.543418][ T7832]  ? __pfx___sys_sendmsg+0x10/0x10
[  148.543435][ T7832]  __do_fast_syscall_32+0x73/0x120
[  148.543446][ T7832]  do_fast_syscall_32+0x32/0x80
[  148.543458][ T7832]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  148.543476][ T7832] RIP: 0023:0xf747e579
[  148.543484][ T7832] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  148.543494][ T7832] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  148.543504][ T7832] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000240
[  148.543510][ T7832] RDX: 0000000000004000 RSI: 0000000000000000 RDI: 0000000000000000
[  148.543515][ T7832] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  148.543521][ T7832] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  148.543526][ T7832] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  148.543537][ T7832]  </TASK>
[  148.571084][ T7835] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  148.638338][ T7835] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  148.707186][ T7837] FAULT_INJECTION: forcing a failure.
[  148.707186][ T7837] name failslab, interval 1, probability 0, space 0, times 0
[  148.710894][ T7837] CPU: 1 UID: 0 PID: 7837 Comm: syz.0.526 Not tainted 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0
[  148.710909][ T7837] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  148.710915][ T7837] Call Trace:
[  148.710919][ T7837]  <TASK>
[  148.710923][ T7837]  dump_stack_lvl+0x16c/0x1f0
[  148.710944][ T7837]  should_fail_ex+0x50a/0x650
[  148.710958][ T7837]  ? fs_reclaim_acquire+0xae/0x150
[  148.710974][ T7837]  should_failslab+0xc2/0x120
[  148.710988][ T7837]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  148.711000][ T7837]  ? __alloc_skb+0x2b3/0x380
[  148.711013][ T7837]  __alloc_skb+0x2b3/0x380
[  148.711023][ T7837]  ? __pfx___alloc_skb+0x10/0x10
[  148.711032][ T7837]  ? lock_acquire+0x2f/0xb0
[  148.711048][ T7837]  netlink_alloc_large_skb+0x69/0x130
[  148.711064][ T7837]  netlink_sendmsg+0x689/0xd70
[  148.711080][ T7837]  ? __pfx_netlink_sendmsg+0x10/0x10
[  148.711098][ T7837]  ____sys_sendmsg+0x9ae/0xb40
[  148.711113][ T7837]  ? __pfx_____sys_sendmsg+0x10/0x10
[  148.711126][ T7837]  ? get_compat_msghdr+0x11b/0x170
[  148.711144][ T7837]  ___sys_sendmsg+0x135/0x1e0
[  148.711156][ T7837]  ? __pfx____sys_sendmsg+0x10/0x10
[  148.711170][ T7837]  ? __pfx_lock_release+0x10/0x10
[  148.711181][ T7837]  ? trace_lock_acquire+0x14e/0x1f0
[  148.711194][ T7837]  ? __fget_files+0x206/0x3a0
[  148.711208][ T7837]  __sys_sendmsg+0x16e/0x220
[  148.711218][ T7837]  ? __pfx___sys_sendmsg+0x10/0x10
[  148.711236][ T7837]  __do_fast_syscall_32+0x73/0x120
[  148.711247][ T7837]  do_fast_syscall_32+0x32/0x80
[  148.711256][ T7837]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  148.711272][ T7837] RIP: 0023:0xf747e579
[  148.711280][ T7837] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  148.711289][ T7837] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  148.711299][ T7837] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080001800
[  148.711305][ T7837] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  148.711310][ T7837] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  148.711315][ T7837] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  148.711321][ T7837] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  148.711333][ T7837]  </TASK>
[  148.803410][ T5950] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[  148.840969][ T7844] netlink: 12 bytes leftover after parsing attributes in process `syz.0.528'.
[  148.887076][ T7850] netlink: 16 bytes leftover after parsing attributes in process `syz.3.530'.
[  148.960400][ T5950] usb 7-1: device descriptor read/64, error -71
[  149.004388][ T7863] netlink: 52 bytes leftover after parsing attributes in process `syz.1.533'.
[  149.053586][ T7850] netlink: 'syz.3.530': attribute type 39 has an invalid length.
[  149.391523][ T7873] Invalid ELF header type: 3 != 1
[  149.678595][ T7879] x_tables: ip6_tables: cgroup match: used from hooks FORWARD, but only valid from INPUT/OUTPUT/POSTROUTING
[  149.967029][   T39] audit: type=1326 audit(1739170417.503:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7888 comm="syz.1.540" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x0
[  150.026993][ T7893] netlink: 8 bytes leftover after parsing attributes in process `syz.2.542'.
[  150.122320][   T35] IPVS: starting estimator thread 0...
[  150.221746][ T7901] IPVS: using max 38 ests per chain, 91200 per kthread
[  150.649577][ T7916] netlink: 52 bytes leftover after parsing attributes in process `syz.2.547'.
[  151.010651][ T7920] Invalid ELF header type: 3 != 1
[  151.381813][ T7924] macvlan2: entered allmulticast mode
[  151.385154][ T7924] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  152.249537][ T7955] netlink: 52 bytes leftover after parsing attributes in process `syz.2.560'.
[  152.391824][   T35] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  152.552440][   T35] usb 6-1: Using ep0 maxpacket: 8
[  152.558434][   T35] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  152.561695][   T35] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  152.564232][   T35] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  152.567763][   T35] usb 6-1: config 0 descriptor??
[  152.782631][   T35] iowarrior 6-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  152.802651][ T7963] Invalid ELF header type: 3 != 1
[  153.129028][ T7966] overlay: filesystem on ./bus not supported as upperdir
[  153.228071][ T5950] usb 6-1: USB disconnect, device number 19
[  153.974251][ T7992] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  154.044344][ T7996] netlink: 52 bytes leftover after parsing attributes in process `syz.2.572'.
[  154.059571][ T7993] syz.1.571: attempt to access beyond end of device
[  154.059571][ T7993] nbd1: rw=0, sector=2, nr_sectors = 2 limit=0
[  154.065171][ T7993] syz.1.571: attempt to access beyond end of device
[  154.065171][ T7993] nbd1: rw=0, sector=16, nr_sectors = 2 limit=0
[  154.267222][ T7998] Invalid ELF header type: 3 != 1
[  154.427947][   T39] audit: type=1326 audit(1739170421.963:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7999 comm="syz.3.573" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  154.435071][   T39] audit: type=1326 audit(1739170421.963:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7999 comm="syz.3.573" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  154.441760][   T39] audit: type=1326 audit(1739170421.973:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7999 comm="syz.3.573" exe="/syz-executor" sig=0 arch=40000003 syscall=296 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  154.447567][   T39] audit: type=1326 audit(1739170421.973:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7999 comm="syz.3.573" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  154.453439][   T39] audit: type=1326 audit(1739170421.973:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7999 comm="syz.3.573" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  154.459062][   T39] audit: type=1326 audit(1739170421.973:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7999 comm="syz.3.573" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  154.465034][   T39] audit: type=1326 audit(1739170421.973:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7999 comm="syz.3.573" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  154.470707][   T39] audit: type=1326 audit(1739170421.973:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7999 comm="syz.3.573" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  154.476521][   T39] audit: type=1326 audit(1739170421.983:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7999 comm="syz.3.573" exe="/syz-executor" sig=0 arch=40000003 syscall=362 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  154.829028][ T8011] evm: overlay not supported
[  154.873004][ T8009] netlink: 'syz.1.575': attribute type 10 has an invalid length.
[  154.879886][ T8009] team0: Cannot enslave team device to itself
[  154.885182][ T8009] netlink: 12 bytes leftover after parsing attributes in process `syz.1.575'.
[  154.899371][ T8016] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  155.368253][ T8034] netlink: 52 bytes leftover after parsing attributes in process `syz.2.584'.
[  155.368359][ T8035] FAULT_INJECTION: forcing a failure.
[  155.368359][ T8035] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  155.375174][ T8035] CPU: 2 UID: 0 PID: 8035 Comm: syz.1.583 Not tainted 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0
[  155.375188][ T8035] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  155.375195][ T8035] Call Trace:
[  155.375198][ T8035]  <TASK>
[  155.375202][ T8035]  dump_stack_lvl+0x16c/0x1f0
[  155.375222][ T8035]  should_fail_ex+0x50a/0x650
[  155.375235][ T8035]  ? __pfx___might_resched+0x10/0x10
[  155.375250][ T8035]  should_fail_alloc_page+0xe7/0x130
[  155.375263][ T8035]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  155.375282][ T8035]  __alloc_frozen_pages_noprof+0x18e/0x2470
[  155.375295][ T8035]  ? stack_depot_save_flags+0x28/0x9e0
[  155.375309][ T8035]  ? kasan_save_stack+0x42/0x60
[  155.375319][ T8035]  ? kasan_save_stack+0x33/0x60
[  155.375329][ T8035]  ? kasan_save_track+0x14/0x30
[  155.375339][ T8035]  ? __kasan_kmalloc+0xaa/0xb0
[  155.375348][ T8035]  ? __kmalloc_noprof+0x21a/0x4f0
[  155.375359][ T8035]  ? mon_bin_ioctl+0x46a/0xcd0
[  155.375376][ T8035]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  155.375388][ T8035]  ? do_fast_syscall_32+0x32/0x80
[  155.375405][ T8035]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  155.375419][ T8035]  ? policy_nodemask+0xea/0x4e0
[  155.375432][ T8035]  alloc_pages_mpol+0x1fc/0x540
[  155.375445][ T8035]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  155.375460][ T8035]  alloc_pages_noprof+0x131/0x390
[  155.375473][ T8035]  get_zeroed_page_noprof+0x14/0x50
[  155.375487][ T8035]  mon_alloc_buff+0xc0/0x190
[  155.375497][ T8035]  mon_bin_ioctl+0x48e/0xcd0
[  155.375509][ T8035]  ? __pfx_mon_bin_ioctl+0x10/0x10
[  155.375521][ T8035]  ? __pfx_lock_release+0x10/0x10
[  155.375533][ T8035]  ? trace_lock_acquire+0x14e/0x1f0
[  155.375544][ T8035]  mon_bin_compat_ioctl+0x25c/0x3c0
[  155.375555][ T8035]  ? __pfx_mon_bin_compat_ioctl+0x10/0x10
[  155.375565][ T8035]  ? __fget_files+0x206/0x3a0
[  155.375578][ T8035]  ? __pfx_mon_bin_compat_ioctl+0x10/0x10
[  155.375588][ T8035]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  155.375605][ T8035]  __do_fast_syscall_32+0x73/0x120
[  155.375615][ T8035]  do_fast_syscall_32+0x32/0x80
[  155.375624][ T8035]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  155.375640][ T8035] RIP: 0023:0xf748e579
[  155.375648][ T8035] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  155.375657][ T8035] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  155.375667][ T8035] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000009204
[  155.375673][ T8035] RDX: 0000000000047cdc RSI: 0000000000000000 RDI: 0000000000000000
[  155.375678][ T8035] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  155.375683][ T8035] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  155.375689][ T8035] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  155.375699][ T8035]  </TASK>
[  155.421824][   T39] kauditd_printk_skb: 30 callbacks suppressed
[  155.421837][   T39] audit: type=1326 audit(1739170422.953:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7999 comm="syz.3.573" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  155.476246][   T39] audit: type=1326 audit(1739170422.953:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7999 comm="syz.3.573" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x7ffc0000
[  155.621102][ T8044] Invalid ELF header type: 3 != 1
[  155.706808][ T8046] futex_wake_op: syz.0.588 tries to shift op by -1; fix this program
[  155.819224][   T39] audit: type=1326 audit(1739170423.353:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8049 comm="syz.0.589" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000
[  155.829410][   T39] audit: type=1326 audit(1739170423.363:319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8049 comm="syz.0.589" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000
[  155.836936][   T39] audit: type=1326 audit(1739170423.363:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8049 comm="syz.0.589" exe="/syz-executor" sig=0 arch=40000003 syscall=297 compat=1 ip=0xf747e579 code=0x7ffc0000
[  155.857383][   T39] audit: type=1326 audit(1739170423.393:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8049 comm="syz.0.589" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000
[  155.866729][   T39] audit: type=1326 audit(1739170423.393:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8049 comm="syz.0.589" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000
[  155.874713][   T39] audit: type=1326 audit(1739170423.413:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8049 comm="syz.0.589" exe="/syz-executor" sig=0 arch=40000003 syscall=226 compat=1 ip=0xf747e579 code=0x7ffc0000
[  155.892197][   T39] audit: type=1326 audit(1739170423.413:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8049 comm="syz.0.589" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000
[  155.900324][   T39] audit: type=1326 audit(1739170423.413:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8049 comm="syz.0.589" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000
[  156.146716][ T8064] bridge_slave_0: left allmulticast mode
[  156.148647][ T8064] bridge_slave_0: left promiscuous mode
[  156.150711][ T8064] bridge0: port 1(bridge_slave_0) entered disabled state
[  156.156573][ T8064] bridge_slave_1: left allmulticast mode
[  156.158495][ T8064] bridge_slave_1: left promiscuous mode
[  156.160150][ T8064] bridge0: port 2(bridge_slave_1) entered disabled state
[  156.169961][ T8064] bond0: (slave bond_slave_0): Releasing backup interface
[  156.180321][ T8064] bond0: (slave bond_slave_1): Releasing backup interface
[  156.198224][ T8064] team0: Port device team_slave_0 removed
[  156.206643][ T8064] team0: Port device team_slave_1 removed
[  156.208986][ T8064] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  156.211258][ T8064] batman_adv: batadv0: Removing interface: batadv_slave_0
[  156.263156][ T8064] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  156.265291][ T8064] batman_adv: batadv0: Removing interface: batadv_slave_1
[  156.271124][ T8064] netdevsim netdevsim1 netdevsim0: left allmulticast mode
[  156.275054][ T8064] netdevsim netdevsim1 netdevsim0: left promiscuous mode
[  156.277028][ T8064] bridge0: port 3(netdevsim0) entered disabled state
[  156.297765][ T8067] team0: Mode changed to "broadcast"
[  156.300650][ T8068] vlan0: entered promiscuous mode
[  156.308352][ T8068] team0: Port device vlan0 added
[  156.383753][ T8074] input: syz0 as /devices/virtual/input/input43
[  156.396546][ T8074] netlink: 8 bytes leftover after parsing attributes in process `syz.3.595'.
[  156.470801][ T8079] netlink: 20 bytes leftover after parsing attributes in process `syz.2.594'.
[  156.491355][ T8081] netlink: 52 bytes leftover after parsing attributes in process `syz.1.598'.
[  156.759882][ T8083] Invalid ELF header type: 3 != 1
[  157.161483][ T8087] netlink: 56 bytes leftover after parsing attributes in process `syz.2.600'.
[  157.795951][ T8095] FAULT_INJECTION: forcing a failure.
[  157.795951][ T8095] name failslab, interval 1, probability 0, space 0, times 0
[  157.799599][ T8095] CPU: 1 UID: 0 PID: 8095 Comm: syz.3.601 Not tainted 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0
[  157.799613][ T8095] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  157.799620][ T8095] Call Trace:
[  157.799624][ T8095]  <TASK>
[  157.799628][ T8095]  dump_stack_lvl+0x16c/0x1f0
[  157.799650][ T8095]  should_fail_ex+0x50a/0x650
[  157.799664][ T8095]  ? fs_reclaim_acquire+0xae/0x150
[  157.799681][ T8095]  should_failslab+0xc2/0x120
[  157.799695][ T8095]  __kmalloc_noprof+0xce/0x4f0
[  157.799706][ T8095]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  157.799719][ T8095]  ? tomoyo_realpath_from_path+0xbf/0x710
[  157.799734][ T8095]  tomoyo_realpath_from_path+0xbf/0x710
[  157.799747][ T8095]  ? tomoyo_path_number_perm+0x235/0x5b0
[  157.799758][ T8095]  tomoyo_path_number_perm+0x248/0x5b0
[  157.799768][ T8095]  ? tomoyo_path_number_perm+0x235/0x5b0
[  157.799778][ T8095]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  157.799799][ T8095]  ? lockdep_hardirqs_on+0x7c/0x110
[  157.799819][ T8095]  ? __do_compat_sys_ioctl+0x2c/0x2c0
[  157.799834][ T8095]  ? hook_file_ioctl_compat+0x12/0x1e0
[  157.799850][ T8095]  ? hook_file_ioctl_compat+0x42/0x1e0
[  157.799866][ T8095]  security_file_ioctl_compat+0x9b/0x240
[  157.799879][ T8095]  __do_compat_sys_ioctl+0x4e/0x2c0
[  157.799894][ T8095]  __do_fast_syscall_32+0x73/0x120
[  157.799904][ T8095]  do_fast_syscall_32+0x32/0x80
[  157.799914][ T8095]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  157.799930][ T8095] RIP: 0023:0xf73fe579
[  157.799938][ T8095] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  157.799948][ T8095] RSP: 002b:00000000f504455c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  157.799957][ T8095] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000008953
[  157.799963][ T8095] RDX: 0000000080000180 RSI: 0000000000000000 RDI: 0000000000000000
[  157.799969][ T8095] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  157.799974][ T8095] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  157.799980][ T8095] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  157.799991][ T8095]  </TASK>
[  157.800331][ T8095] ERROR: Out of memory at tomoyo_realpath_from_path.
[  158.499695][ T8118] random: crng reseeded on system resumption
[  159.288301][ T8128] netlink: 24 bytes leftover after parsing attributes in process `syz.3.613'.
[  160.378289][ T8152] gretap0: entered promiscuous mode
[  160.381070][ T8152] vlan2: entered promiscuous mode
[  160.523785][ T8162] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  160.565813][ T8164] netlink: 12 bytes leftover after parsing attributes in process `syz.0.625'.
[  160.568929][ T8164] netlink: 'syz.0.625': attribute type 8 has an invalid length.
[  160.817503][ T8182] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  161.603130][ T8190] Invalid source name
[  161.604407][ T8190] UBIFS error (pid: 8190): cannot open "./file0", error -22
[  161.684287][ T8201] FAULT_INJECTION: forcing a failure.
[  161.684287][ T8201] name failslab, interval 1, probability 0, space 0, times 0
[  161.690155][ T8201] CPU: 3 UID: 0 PID: 8201 Comm: syz.2.636 Not tainted 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0
[  161.690180][ T8201] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  161.690191][ T8201] Call Trace:
[  161.690197][ T8201]  <TASK>
[  161.690203][ T8201]  dump_stack_lvl+0x16c/0x1f0
[  161.690235][ T8201]  should_fail_ex+0x50a/0x650
[  161.690260][ T8201]  ? fs_reclaim_acquire+0xae/0x150
[  161.690287][ T8201]  should_failslab+0xc2/0x120
[  161.690307][ T8201]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  161.690327][ T8201]  ? __alloc_skb+0x2b3/0x380
[  161.690347][ T8201]  __alloc_skb+0x2b3/0x380
[  161.690363][ T8201]  ? __pfx___alloc_skb+0x10/0x10
[  161.690379][ T8201]  ? rtnetlink_rcv_msg+0x3e6/0xea0
[  161.690402][ T8201]  netlink_ack+0x164/0xb20
[  161.690432][ T8201]  netlink_rcv_skb+0x327/0x410
[  161.690455][ T8201]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  161.690472][ T8201]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  161.690506][ T8201]  ? netlink_deliver_tap+0x1ae/0xca0
[  161.690532][ T8201]  netlink_unicast+0x53c/0x7f0
[  161.690557][ T8201]  ? __pfx_netlink_unicast+0x10/0x10
[  161.690581][ T8201]  ? __phys_addr_symbol+0x30/0x80
[  161.690605][ T8201]  ? __check_object_size+0x488/0x710
[  161.690626][ T8201]  netlink_sendmsg+0x8b8/0xd70
[  161.690648][ T8201]  ? __pfx_netlink_sendmsg+0x10/0x10
[  161.690674][ T8201]  ____sys_sendmsg+0x9ae/0xb40
[  161.690693][ T8201]  ? __pfx_____sys_sendmsg+0x10/0x10
[  161.690710][ T8201]  ? get_compat_msghdr+0x11b/0x170
[  161.690737][ T8201]  ___sys_sendmsg+0x135/0x1e0
[  161.690755][ T8201]  ? __pfx____sys_sendmsg+0x10/0x10
[  161.690791][ T8201]  ? __pfx_lock_release+0x10/0x10
[  161.690810][ T8201]  ? trace_lock_acquire+0x14e/0x1f0
[  161.690832][ T8201]  ? __fget_files+0x206/0x3a0
[  161.690856][ T8201]  __sys_sendmsg+0x16e/0x220
[  161.690873][ T8201]  ? __pfx___sys_sendmsg+0x10/0x10
[  161.690904][ T8201]  __do_fast_syscall_32+0x73/0x120
[  161.690921][ T8201]  do_fast_syscall_32+0x32/0x80
[  161.690935][ T8201]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  161.690958][ T8201] RIP: 0023:0xf7ff5579
[  161.690970][ T8201] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  161.690982][ T8201] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  161.690997][ T8201] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080001200
[  161.691007][ T8201] RDX: 0000000004000080 RSI: 0000000000000000 RDI: 0000000000000000
[  161.691015][ T8201] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  161.691020][ T8201] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  161.691026][ T8201] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  161.691038][ T8201]  </TASK>
[  161.698562][ T8203] netlink: 52 bytes leftover after parsing attributes in process `syz.1.635'.
[  161.914084][ T8213] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  162.057683][ T8220] Invalid ELF header type: 3 != 1
[  162.120152][ T8222] netlink: 132 bytes leftover after parsing attributes in process `syz.0.643'.
[  162.206191][   T39] kauditd_printk_skb: 26 callbacks suppressed
[  162.206203][   T39] audit: type=1326 audit(1739170429.743:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8227 comm="syz.0.645" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x0
[  162.629470][ T8238] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  162.837424][ T8250] team_slave_0: entered promiscuous mode
[  162.839647][ T8250] team_slave_1: entered promiscuous mode
[  162.841299][ T8250] macsec1: entered promiscuous mode
[  162.843164][ T8250] team0: entered promiscuous mode
[  162.846498][ T8250] macsec1: entered allmulticast mode
[  162.847957][ T8250] team0: entered allmulticast mode
[  162.849354][ T8250] team_slave_0: entered allmulticast mode
[  162.851119][ T8250] team_slave_1: entered allmulticast mode
[  162.856548][ T8250] team0: Device macsec1 is already an upper device of the team interface
[  162.861138][ T8250] team0: left allmulticast mode
[  162.868075][ T8250] team_slave_0: left allmulticast mode
[  162.870248][ T8250] team_slave_1: left allmulticast mode
[  162.873309][ T8250] team0: left promiscuous mode
[  162.875708][ T8250] team_slave_0: left promiscuous mode
[  162.877782][ T8250] team_slave_1: left promiscuous mode
[  162.895794][   T39] audit: type=1800 audit(1739170430.433:353): pid=8246 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.2.653" name="/newroot/183/bus" dev="tmpfs" ino=1015 res=0 errno=0
[  163.011068][ T8260] netlink: 52 bytes leftover after parsing attributes in process `syz.2.656'.
[  163.226768][ T8264] netlink: 12 bytes leftover after parsing attributes in process `syz.0.657'.
[  163.378181][ T8268] Invalid ELF header type: 3 != 1
[  164.101725][  T835] usb 8-1: new high-speed USB device number 16 using dummy_hcd
[  164.179028][ T8288] netlink: 24 bytes leftover after parsing attributes in process `syz.1.664'.
[  164.210423][ T8290] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  164.341758][  T835] usb 8-1: Using ep0 maxpacket: 32
[  164.344689][  T835] usb 8-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  164.348022][  T835] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  164.351194][  T835] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  164.358526][  T835] usb 8-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22
[  164.361488][  T835] usb 8-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131
[  164.364124][  T835] usb 8-1: Product: syz
[  164.365309][  T835] usb 8-1: Manufacturer: syz
[  164.366646][  T835] usb 8-1: SerialNumber: syz
[  164.373876][  T835] input: appletouch as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:1.0/input/input44
[  164.384478][    C2] appletouch 8-1:1.0: atp_complete: usb_submit_urb failed with result -1
[  164.574237][ T3223] usb 8-1: USB disconnect, device number 16
[  164.645275][ T3223] appletouch 8-1:1.0: input: appletouch disconnected
[  165.351771][   T65] usb 8-1: new high-speed USB device number 17 using dummy_hcd
[  165.431816][ T6631] usb 7-1: new high-speed USB device number 22 using dummy_hcd
[  165.501793][   T65] usb 8-1: Using ep0 maxpacket: 16
[  165.506889][   T65] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  165.514750][   T65] usb 8-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  165.518410][   T65] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  165.525194][   T65] usb 8-1: config 0 descriptor??
[  165.532437][   T65] input: bcm5974 as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input45
[  165.600093][ T6631] usb 7-1: Using ep0 maxpacket: 8
[  165.609846][ T6631] usb 7-1: config 0 has no interfaces?
[  165.612205][ T6631] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  165.615357][ T6631] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  165.622572][ T6631] usb 7-1: config 0 descriptor??
[  165.733069][ T5343] bcm5974 8-1:0.0: could not read from device
[  165.733386][ T6631] usb 8-1: USB disconnect, device number 17
[  165.741217][ T8324] bcm5974 8-1:0.0: could not read from device
[  165.746316][ T7481] bcm5974 8-1:0.0: could not read from device
[  165.845818][ T8306] netlink: 4 bytes leftover after parsing attributes in process `syz.2.669'.
[  165.851870][    T9] usb 7-1: USB disconnect, device number 22
[  165.926664][ T8331] netlink: 12 bytes leftover after parsing attributes in process `syz.1.677'.
[  166.402224][ T8340] netlink: 4 bytes leftover after parsing attributes in process `syz.2.680'.
[  166.883201][ T8358] netlink: 4 bytes leftover after parsing attributes in process `syz.2.685'.
[  167.171821][    T9] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  167.331888][    T9] usb 6-1: Using ep0 maxpacket: 16
[  167.335298][    T9] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  167.339776][    T9] usb 6-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  167.343245][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  167.348316][    T9] usb 6-1: config 0 descriptor??
[  167.353044][    T9] input: bcm5974 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input46
[  167.511734][  T835] usb 8-1: new high-speed USB device number 18 using dummy_hcd
[  167.564582][ T5343] bcm5974 6-1:0.0: could not read from device
[  167.568059][ T5343] bcm5974 6-1:0.0: could not read from device
[  167.570399][    T9] bcm5974 6-1:0.0: could not read from device
[  167.573213][    T9] input: failed to attach handler mousedev to device input46, error: -5
[  167.578386][ T5343] bcm5974 6-1:0.0: could not read from device
[  167.578798][    T9] usb 6-1: USB disconnect, device number 20
[  167.585567][ T5343] bcm5974 6-1:0.0: could not read from device
[  167.682544][  T835] usb 8-1: Using ep0 maxpacket: 16
[  167.685506][  T835] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  167.689092][  T835] usb 8-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  167.691878][  T835] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  167.695312][  T835] usb 8-1: config 0 descriptor??
[  167.699212][  T835] input: bcm5974 as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input47
[  167.916050][ T5343] bcm5974 8-1:0.0: could not read from device
[  167.918449][  T835] bcm5974 8-1:0.0: could not read from device
[  167.920716][ T5343] bcm5974 8-1:0.0: could not read from device
[  167.924662][  T835] input: failed to attach handler mousedev to device input47, error: -5
[  167.928434][  T835] usb 8-1: USB disconnect, device number 18
[  167.930257][ T5343] bcm5974 8-1:0.0: could not read from device
[  167.933730][ T5343] bcm5974 8-1:0.0: could not read from device
[  168.158967][ T8371] netlink: 100 bytes leftover after parsing attributes in process `syz.1.691'.
[  168.161637][ T8371] netlink: 24 bytes leftover after parsing attributes in process `syz.1.691'.
[  168.452411][ T8381] overlayfs: failed to resolve './file2': -2
[  168.794576][ T8395] netlink: 8 bytes leftover after parsing attributes in process `syz.0.700'.
[  169.041770][ T3223] usb 7-1: new high-speed USB device number 23 using dummy_hcd
[  169.212728][ T3223] usb 7-1: Using ep0 maxpacket: 8
[  169.217828][ T3223] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  169.221369][ T3223] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  169.224122][ T3223] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  169.234622][ T3223] usb 7-1: config 0 descriptor??
[  169.658968][ T3223] iowarrior 7-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  170.255275][ T8414] No such timeout policy "syz1"
[  170.504781][ T5297] Bluetooth: hci1: ACL packet for unknown connection handle 200
[  170.551842][ T8423] netlink: 52 bytes leftover after parsing attributes in process `syz.1.711'.
[  171.060141][ T8434] Invalid ELF header type: 3 != 1
[  171.687196][ T3223] usb 7-1: USB disconnect, device number 23
[  171.796684][ T8447] tmpfs: Bad value for 'mpol'
[  172.511787][ T5951] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  172.512115][   T68] Bluetooth: hci4: command 0x1003 tx timeout
[  172.746586][ T8464] netlink: 52 bytes leftover after parsing attributes in process `syz.3.724'.
[  172.911240][ T8469] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  172.918718][ T8469] xt_TPROXY: Can be used only with -p tcp or -p udp
[  172.924220][ T8469] vxcan1: tx address claim with dlc 1
[  173.068978][ T8478] Invalid ELF header type: 3 != 1
[  173.720260][ T8493] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  174.038559][ T8505] netlink: 28 bytes leftover after parsing attributes in process `syz.2.737'.
[  174.041084][ T8505] netlink: 8 bytes leftover after parsing attributes in process `syz.2.737'.
[  174.061466][ T8505] netlink: 28 bytes leftover after parsing attributes in process `syz.2.737'.
[  174.069455][ T8505] bridge_slave_1: left allmulticast mode
[  174.072607][ T8505] bridge_slave_1: left promiscuous mode
[  174.074801][ T8505] bridge0: port 2(bridge_slave_1) entered disabled state
[  174.078951][ T8505] bridge_slave_0: left allmulticast mode
[  174.080577][ T8505] bridge_slave_0: left promiscuous mode
[  174.086445][ T8505] bridge0: port 1(bridge_slave_0) entered disabled state
[  174.089579][ T8501] Option 'o]���c' to dns_resolver key: bad/missing value
[  174.502632][ T8514] netlink: 52 bytes leftover after parsing attributes in process `syz.0.739'.
[  174.699108][ T8516] Invalid ELF header type: 3 != 1
[  175.582734][ T8539] ebtables: wrong size: *len 120, entries_size 144, replsz 144
[  176.001800][   T35] usb 7-1: new low-speed USB device number 24 using dummy_hcd
[  176.020049][ T8563] netlink: 52 bytes leftover after parsing attributes in process `syz.1.754'.
[  176.101321][ T8566] fuse: Unknown parameter 'rXotmode'
[  176.151742][   T35] usb 7-1: Invalid ep0 maxpacket: 64
[  176.283257][ T8569] Invalid ELF header type: 3 != 1
[  176.291770][   T35] usb 7-1: new low-speed USB device number 25 using dummy_hcd
[  176.461728][   T35] usb 7-1: Invalid ep0 maxpacket: 64
[  176.463850][   T35] usb usb7-port1: attempt power cycle
[  176.801856][   T35] usb 7-1: new low-speed USB device number 26 using dummy_hcd
[  176.822227][   T35] usb 7-1: Invalid ep0 maxpacket: 64
[  176.971830][   T35] usb 7-1: new low-speed USB device number 27 using dummy_hcd
[  176.994074][   T35] usb 7-1: Invalid ep0 maxpacket: 64
[  176.996031][   T35] usb usb7-port1: unable to enumerate USB device
[  177.303401][ T5951] Bluetooth: hci3: unexpected event for opcode 0x0413
[  179.457273][   T39] audit: type=1326 audit(1739170446.993:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8616 comm="syz.1.769" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  179.464446][   T39] audit: type=1326 audit(1739170447.003:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8616 comm="syz.1.769" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  179.474775][   T39] audit: type=1326 audit(1739170447.003:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8616 comm="syz.1.769" exe="/syz-executor" sig=0 arch=40000003 syscall=297 compat=1 ip=0xf748e579 code=0x7ffc0000
[  179.483423][   T39] audit: type=1326 audit(1739170447.003:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8616 comm="syz.1.769" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  179.490682][   T39] audit: type=1326 audit(1739170447.003:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8616 comm="syz.1.769" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  179.498033][   T39] audit: type=1326 audit(1739170447.003:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8616 comm="syz.1.769" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf748e579 code=0x7ffc0000
[  179.504194][   T39] audit: type=1326 audit(1739170447.003:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8616 comm="syz.1.769" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf748e5a7 code=0x7ffc0000
[  179.511447][   T39] audit: type=1326 audit(1739170447.003:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8616 comm="syz.1.769" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  179.518668][   T39] audit: type=1326 audit(1739170447.003:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8616 comm="syz.1.769" exe="/syz-executor" sig=0 arch=40000003 syscall=226 compat=1 ip=0xf748e579 code=0x7ffc0000
[  179.524762][   T39] audit: type=1326 audit(1739170447.003:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8616 comm="syz.1.769" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7ffc0000
[  180.082164][ T8636] Failed to enqueue queue_pair DETACH event datagram for context (ID=0x0)
[  180.317660][ T8643] netlink: 52 bytes leftover after parsing attributes in process `syz.3.774'.
[  180.710108][ T8652] Invalid ELF header type: 3 != 1
[  180.780910][ T8655] netlink: 24 bytes leftover after parsing attributes in process `syz.2.777'.
[  181.323895][ T5951] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  181.326546][ T5951] Bluetooth: hci3: Injecting HCI hardware error event
[  181.330787][   T68] Bluetooth: hci3: hardware error 0x00
[  181.677539][ T8683] x_tables: duplicate underflow at hook 1
[  181.811720][    T9] usb 7-1: new high-speed USB device number 28 using dummy_hcd
[  181.962334][    T9] usb 7-1: Using ep0 maxpacket: 16
[  181.965689][    T9] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  181.970244][    T9] usb 7-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  181.974391][    T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  181.978134][    T9] usb 7-1: config 0 descriptor??
[  181.981872][    T9] input: bcm5974 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input48
[  182.202678][ T5343] bcm5974 7-1:0.0: could not read from device
[  182.210495][ T5343] bcm5974 7-1:0.0: could not read from device
[  182.211547][    T9] usb 7-1: USB disconnect, device number 28
[  182.223485][ T8702] netlink: 52 bytes leftover after parsing attributes in process `syz.3.791'.
[  182.588750][ T8705] Invalid ELF header type: 3 != 1
[  182.981756][  T835] usb 7-1: new high-speed USB device number 29 using dummy_hcd
[  183.135780][  T835] usb 7-1: Using ep0 maxpacket: 16
[  183.139028][  T835] usb 7-1: config 0 has an invalid interface number: 8 but max is 0
[  183.146852][  T835] usb 7-1: config 0 has no interface number 0
[  183.149055][  T835] usb 7-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  183.154913][  T835] usb 7-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  183.159548][  T835] usb 7-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  183.164895][  T835] usb 7-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  183.167483][  T835] usb 7-1: Product: syz
[  183.168832][  T835] usb 7-1: SerialNumber: syz
[  183.173069][  T835] usb 7-1: config 0 descriptor??
[  183.176103][  T835] cm109 7-1:0.8: invalid payload size 0, expected 4
[  183.182125][  T835] input: CM109 USB driver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.8/input/input49
[  183.381680][    C2] cm109 7-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90
[  183.391794][   T68] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  183.412207][ T8732] xt_TCPMSS: Only works on TCP SYN packets
[  183.414486][ T8732] Bluetooth: hci0: Opcode 0x0401 failed: -22
[  183.838078][ T8746] netlink: 52 bytes leftover after parsing attributes in process `syz.0.805'.
[  184.089923][    C0] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71
[  184.092151][    C0] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71
[  184.094312][    C0] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71
[  184.096315][ T6631] usb 7-1: USB disconnect, device number 29
[  184.096565][ T8748] Invalid ELF header type: 3 != 1
[  184.098057][    C0] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71
[  184.101278][    C0] cm109 7-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  184.112002][ T6631] cm109 7-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  184.201718][   T68] Bluetooth: hci1: command 0x0c1a tx timeout
[  185.474767][   T68] Bluetooth: hci0: command tx timeout
[  185.481566][ T8791] netlink: 52 bytes leftover after parsing attributes in process `syz.0.819'.
[  185.641742][   T35] usb 7-1: new high-speed USB device number 30 using dummy_hcd
[  185.792672][   T35] usb 7-1: Using ep0 maxpacket: 8
[  185.801576][   T35] usb 7-1: config 0 has no interfaces?
[  185.803311][   T35] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  185.805836][   T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  185.811100][   T35] usb 7-1: config 0 descriptor??
[  185.996477][ T8799] Invalid ELF header type: 3 != 1
[  186.020684][ T8785] netlink: 4 bytes leftover after parsing attributes in process `syz.2.817'.
[  186.041857][  T835] usb 7-1: USB disconnect, device number 30
[  186.317563][ T8808] sch_fq: defrate 113 ignored.
[  186.372086][ T8810] netlink: 92 bytes leftover after parsing attributes in process `syz.1.824'.
[  186.396047][ T8815] 9pnet_fd: Insufficient options for proto=fd
[  186.832340][   T35] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[  187.141715][   T35] usb 6-1: Using ep0 maxpacket: 16
[  187.144665][   T35] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  187.148194][   T35] usb 6-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  187.150660][   T35] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  187.156935][   T35] usb 6-1: config 0 descriptor??
[  187.160208][   T35] input: bcm5974 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input50
[  187.343368][ T8845] netlink: 52 bytes leftover after parsing attributes in process `syz.0.835'.
[  187.374546][ T5343] bcm5974 6-1:0.0: could not read from device
[  187.379421][ T5343] bcm5974 6-1:0.0: could not read from device
[  187.381552][   T35] usb 6-1: USB disconnect, device number 21
[  187.385289][ T5343] bcm5974 6-1:0.0: could not read from device
[  187.520152][ T8846] Invalid ELF header type: 3 != 1
[  187.778519][ T8852] overlay: ./file0 is not a directory
[  188.161752][ T6631] usb 6-1: new high-speed USB device number 22 using dummy_hcd
[  188.268803][ T8861] netlink: 'syz.0.840': attribute type 13 has an invalid length.
[  188.323400][ T6631] usb 6-1: Using ep0 maxpacket: 8
[  188.326263][ T6631] usb 6-1: config 0 has no interfaces?
[  188.327968][ T6631] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  188.330797][ T6631] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  188.335604][ T6631] usb 6-1: config 0 descriptor??
[  188.555613][ T8856] netlink: 4 bytes leftover after parsing attributes in process `syz.1.839'.
[  188.574623][   T35] usb 6-1: USB disconnect, device number 22
[  189.717142][ T8896] netlink: 52 bytes leftover after parsing attributes in process `syz.3.849'.
[  190.143772][ T8903] Invalid ELF header type: 3 != 1
[  191.072190][   T65] usb 8-1: new high-speed USB device number 19 using dummy_hcd
[  191.231757][   T65] usb 8-1: Using ep0 maxpacket: 8
[  191.235575][   T65] usb 8-1: config 0 has no interfaces?
[  191.237848][   T65] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  191.241275][   T65] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  191.246847][   T65] usb 8-1: config 0 descriptor??
[  191.461685][ T8912] netlink: 4 bytes leftover after parsing attributes in process `syz.3.853'.
[  191.474329][ T5950] usb 8-1: USB disconnect, device number 19
[  191.658161][ T8932] IPVS: sync thread started: state = MASTER, mcast_ifn = wg1, syncid = 262145, id = 0
[  191.876393][ T8941] ntfs3(sr0): Primary boot signature is not NTFS.
[  191.878782][ T8941] ntfs3(sr0): try to read out of volume at offset 0xf800
[  191.979737][ T8929] xt_TCPMSS: Only works on TCP SYN packets
[  191.983922][ T8929] Bluetooth: hci0: Opcode 0x0401 failed: -22
[  192.091699][   T35] usb 7-1: new high-speed USB device number 31 using dummy_hcd
[  192.243115][   T35] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  192.246611][   T35] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  192.250318][   T35] usb 7-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[  192.253053][   T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  192.259661][   T35] usb 7-1: config 0 descriptor??
[  192.905821][   T35] cm6533_jd 0003:0D8C:0022.0003: unknown main item tag 0x0
[  192.907983][   T35] cm6533_jd 0003:0D8C:0022.0003: unknown main item tag 0x0
[  192.911142][   T35] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/0003:0D8C:0022.0003/input/input51
[  192.966916][   T35] cm6533_jd 0003:0D8C:0022.0003: input,hiddev0,hidraw1: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.2-1/input0
[  193.069880][ T8964] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  193.200834][ T8970] veth1_macvtap: left promiscuous mode
[  194.041910][   T68] Bluetooth: hci0: command tx timeout
[  194.124712][ T1414] ieee802154 phy0 wpan0: encryption failed: -22
[  194.126579][ T1414] ieee802154 phy1 wpan1: encryption failed: -22
[  194.181766][   T35] usb 7-1: reset high-speed USB device number 31 using dummy_hcd
[  195.654448][   T65] usb 7-1: USB disconnect, device number 31
[  195.839206][ T9031] netlink: 52 bytes leftover after parsing attributes in process `syz.1.887'.
[  196.045201][   T39] kauditd_printk_skb: 149 callbacks suppressed
[  196.045247][   T39] audit: type=1800 audit(1739170463.583:513): pid=9038 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.885" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  196.072882][ T9035] Invalid ELF header type: 3 != 1
[  197.810064][ T9074] netlink: 8 bytes leftover after parsing attributes in process `syz.1.898'.
[  197.870708][ T9075] netlink: 8 bytes leftover after parsing attributes in process `syz.1.898'.
[  197.983698][ T9087] netlink: 4 bytes leftover after parsing attributes in process `syz.0.903'.
[  198.000241][ T9087] netlink: 4 bytes leftover after parsing attributes in process `syz.0.903'.
[  198.586615][   T39] audit: type=1800 audit(1739170466.123:514): pid=9099 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.907" name="bus" dev="overlay" ino=1117 res=0 errno=0
[  198.754423][ T9118] loop6: detected capacity change from 0 to 64
[  198.774239][    C2] blk_print_req_error: 40 callbacks suppressed
[  198.774254][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 8 prio class 0
[  198.778520][    C2] I/O error, dev loop6, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  198.780852][    C2] buffer_io_error: 40 callbacks suppressed
[  198.780860][    C2] Buffer I/O error on dev loop6, logical block 1, async page read
[  198.790137][    C3] I/O error, dev loop6, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  198.793052][    C3] Buffer I/O error on dev loop6, logical block 1, async page read
[  198.798625][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  198.801210][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  198.821641][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  198.824301][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  198.827194][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  198.829751][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  198.833544][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  198.836090][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  198.838996][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  198.841617][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  198.844220][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  198.846778][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  198.849437][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  198.852072][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  198.855652][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  198.934169][ T6004] usb 8-1: new high-speed USB device number 20 using dummy_hcd
[  199.101652][ T6004] usb 8-1: Using ep0 maxpacket: 8
[  199.104431][ T6004] usb 8-1: config 0 has no interfaces?
[  199.106012][ T6004] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  199.108472][ T6004] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  199.113881][ T6004] usb 8-1: config 0 descriptor??
[  199.327683][ T9114] netlink: 4 bytes leftover after parsing attributes in process `syz.3.913'.
[  199.356391][ T5950] usb 8-1: USB disconnect, device number 20
[  199.606481][ T9131] FAULT_INJECTION: forcing a failure.
[  199.606481][ T9131] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  199.611923][ T9131] CPU: 2 UID: 0 PID: 9131 Comm: syz.2.918 Not tainted 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0
[  199.611943][ T9131] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  199.611950][ T9131] Call Trace:
[  199.611955][ T9131]  <TASK>
[  199.611960][ T9131]  dump_stack_lvl+0x16c/0x1f0
[  199.611985][ T9131]  should_fail_ex+0x50a/0x650
[  199.612004][ T9131]  _copy_from_user+0x2e/0xd0
[  199.612021][ T9131]  userfaultfd_ioctl+0xfad/0x38c0
[  199.612036][ T9131]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  199.612052][ T9131]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  199.612074][ T9131]  ? __fget_files+0x206/0x3a0
[  199.612085][ T9131]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  199.612099][ T9131]  ? compat_ptr_ioctl+0x6b/0xa0
[  199.612111][ T9131]  compat_ptr_ioctl+0x6b/0xa0
[  199.612129][ T9131]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[  199.612145][ T9131]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  199.612161][ T9131]  __do_fast_syscall_32+0x73/0x120
[  199.612172][ T9131]  do_fast_syscall_32+0x32/0x80
[  199.612181][ T9131]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  199.612198][ T9131] RIP: 0023:0xf7ff5579
[  199.612207][ T9131] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  199.612217][ T9131] RSP: 002b:00000000f50f555c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  199.612227][ T9131] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000c020aa07
[  199.612233][ T9131] RDX: 00000000800000c0 RSI: 0000000000000000 RDI: 0000000000000000
[  199.612239][ T9131] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  199.612244][ T9131] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  199.612250][ T9131] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  199.612261][ T9131]  </TASK>
[  199.671175][    C2] vkms_vblank_simulate: vblank timer overrun
[  199.883506][ T9143] netlink: 16 bytes leftover after parsing attributes in process `syz.0.922'.
[  199.981694][   T39] audit: type=1800 audit(1739170467.513:515): pid=9148 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.921" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  200.736576][ T9165] netlink: 4 bytes leftover after parsing attributes in process `syz.2.928'.
[  201.201788][   T65] usb 7-1: new high-speed USB device number 32 using dummy_hcd
[  201.372053][   T65] usb 7-1: Using ep0 maxpacket: 16
[  201.379869][   T65] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  201.384358][   T65] usb 7-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  201.387245][   T65] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  201.390998][   T65] usb 7-1: config 0 descriptor??
[  201.395034][   T65] input: bcm5974 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input53
[  201.596012][ T5343] bcm5974 7-1:0.0: could not read from device
[  201.598440][   T65] bcm5974 7-1:0.0: could not read from device
[  201.606178][ T5343] bcm5974 7-1:0.0: could not read from device
[  201.609174][   T65] input: failed to attach handler mousedev to device input53, error: -5
[  201.612789][ T5343] bcm5974 7-1:0.0: could not read from device
[  201.615464][ T5343] bcm5974 7-1:0.0: could not read from device
[  201.615810][   T65] usb 7-1: USB disconnect, device number 32
[  201.777858][ T9190] kvm: pic: level sensitive irq not supported
[  201.783440][ T9190] kvm: pic: non byte read
[  201.788555][ T9190] kvm: pic: non byte read
[  201.790816][ T9190] kvm: pic: non byte read
[  201.795393][ T9190] kvm: pic: non byte read
[  201.797550][ T9190] kvm: pic: non byte read
[  201.799650][ T9190] kvm: pic: non byte read
[  201.801945][ T9190] kvm: pic: non byte read
[  201.804024][ T9190] kvm: pic: non byte read
[  201.806247][ T9190] kvm: pic: non byte read
[  201.808348][ T9190] kvm: pic: non byte read
[  201.825524][ T9190] kvm: pic: single mode not supported
[  201.844542][ T9190] kvm: pic: single mode not supported
[  202.171276][ T9198] fuse: Bad value for 'fd'
[  202.702690][ T9216] netlink: 576 bytes leftover after parsing attributes in process `syz.3.942'.
[  202.706481][ T9216] netlink: 24 bytes leftover after parsing attributes in process `syz.3.942'.
[  202.741915][ T9210] IPVS: persistence engine module ip_vs_pe_& not found
[  203.224627][ T9222] bond0: entered promiscuous mode
[  203.226218][ T9222] bond_slave_0: entered promiscuous mode
[  203.227969][ T9222] bond_slave_1: entered promiscuous mode
[  203.229816][ T9222] macvlan2: entered allmulticast mode
[  203.231415][ T9222] bond0: entered allmulticast mode
[  203.233447][ T9222] bond_slave_0: entered allmulticast mode
[  203.235577][ T9222] bond_slave_1: entered allmulticast mode
[  203.238149][ T9222] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  204.016891][ T9237] netlink: 52 bytes leftover after parsing attributes in process `syz.2.949'.
[  204.131777][ T6004] usb 6-1: new high-speed USB device number 23 using dummy_hcd
[  204.344614][ T9256] Invalid ELF header type: 3 != 1
[  204.391759][ T6004] usb 6-1: Using ep0 maxpacket: 16
[  204.401548][ T6004] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  204.405235][ T6004] usb 6-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  204.407815][ T6004] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  204.421016][ T6004] usb 6-1: config 0 descriptor??
[  204.430571][ T6004] input: bcm5974 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input54
[  204.626104][ T5343] bcm5974 6-1:0.0: could not read from device
[  204.629243][ T6004] bcm5974 6-1:0.0: could not read from device
[  204.649813][ T5343] bcm5974 6-1:0.0: could not read from device
[  204.664097][ T6004] input: failed to attach handler mousedev to device input54, error: -5
[  204.671120][ T5343] bcm5974 6-1:0.0: could not read from device
[  204.681015][ T5343] bcm5974 6-1:0.0: could not read from device
[  204.681478][ T6004] usb 6-1: USB disconnect, device number 23
[  205.208674][ T9279] 9pnet_fd: Insufficient options for proto=fd
[  205.417527][ T9283] xt_connbytes: Forcing CT accounting to be enabled
[  205.419986][ T9283] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  205.521937][ T9286] syz.0.966: attempt to access beyond end of device
[  205.521937][ T9286] nbd0: rw=0, sector=2, nr_sectors = 2 limit=0
[  205.527373][ T9286] syz.0.966: attempt to access beyond end of device
[  205.527373][ T9286] nbd0: rw=0, sector=16, nr_sectors = 2 limit=0
[  206.548505][ T9317] netlink: 17 bytes leftover after parsing attributes in process `syz.3.976'.
[  206.556222][ T9317] netlink: 'syz.3.976': attribute type 21 has an invalid length.
[  206.558665][ T9317] netlink: 132 bytes leftover after parsing attributes in process `syz.3.976'.
[  206.837412][ T9329] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  206.840548][ T9329] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  206.843538][ T9329] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  206.846569][ T9329] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  206.849460][ T9329] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  206.854026][ T9329] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  207.144082][ T9333] xt_connbytes: Forcing CT accounting to be enabled
[  207.145982][ T9333] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  207.280039][ T9336] syz.2.980: attempt to access beyond end of device
[  207.280039][ T9336] nbd2: rw=0, sector=2, nr_sectors = 2 limit=0
[  207.288840][ T9336] syz.2.980: attempt to access beyond end of device
[  207.288840][ T9336] nbd2: rw=0, sector=16, nr_sectors = 2 limit=0
[  207.643303][ T9347] usb usb8: usbfs: process 9347 (syz.3.983) did not claim interface 0 before use
[  208.171999][   T35] usb 7-1: new high-speed USB device number 33 using dummy_hcd
[  208.331659][   T35] usb 7-1: Using ep0 maxpacket: 8
[  208.342654][   T35] usb 7-1: config 0 has no interfaces?
[  208.344253][   T35] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  208.346740][   T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  208.349926][   T35] usb 7-1: config 0 descriptor??
[  208.524003][ T9363] netlink: 188 bytes leftover after parsing attributes in process `syz.0.987'.
[  208.526591][ T9363] netlink: 'syz.0.987': attribute type 1 has an invalid length.
[  208.560553][ T9355] netlink: 4 bytes leftover after parsing attributes in process `syz.2.985'.
[  208.566104][    T9] usb 7-1: USB disconnect, device number 33
[  208.673805][ T9371] netlink: 52 bytes leftover after parsing attributes in process `syz.3.991'.
[  208.779586][ T9371] Invalid ELF header type: 3 != 1
[  208.887165][ T9378] netlink: 4 bytes leftover after parsing attributes in process `syz.3.993'.
[  208.985975][ T9384] netlink: 52 bytes leftover after parsing attributes in process `syz.1.995'.
[  209.230522][ T9393] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  209.303191][ T9389] Invalid ELF header type: 3 != 1
[  209.926523][ T9403] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1001'.
[  210.065532][ T9403] Invalid ELF header type: 3 != 1
[  210.435413][ T9420] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1013'.
[  210.595220][ T9420] Invalid ELF header type: 3 != 1
[  210.776196][ T9425] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1006'.
[  211.394673][ T9440] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  211.503299][ T9442] Invalid ELF header type: 3 != 1
[  212.079579][ T9454] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1016'.
[  212.137058][ T9456] gretap0: entered promiscuous mode
[  212.138849][ T9456] vlan2: entered promiscuous mode
[  212.230166][ T9459] FAULT_INJECTION: forcing a failure.
[  212.230166][ T9459] name failslab, interval 1, probability 0, space 0, times 0
[  212.234941][ T9459] CPU: 3 UID: 0 PID: 9459 Comm: syz.1.1018 Not tainted 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0
[  212.234956][ T9459] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  212.234963][ T9459] Call Trace:
[  212.234976][ T9459]  <TASK>
[  212.234981][ T9459]  dump_stack_lvl+0x16c/0x1f0
[  212.235002][ T9459]  should_fail_ex+0x50a/0x650
[  212.235015][ T9459]  ? fs_reclaim_acquire+0xae/0x150
[  212.235032][ T9459]  should_failslab+0xc2/0x120
[  212.235045][ T9459]  kmem_cache_alloc_noprof+0x6e/0x3b0
[  212.235058][ T9459]  ? security_inode_alloc+0x3b/0x2b0
[  212.235074][ T9459]  security_inode_alloc+0x3b/0x2b0
[  212.235086][ T9459]  inode_init_always_gfp+0xce4/0x1030
[  212.235122][ T9459]  alloc_inode+0x82/0x230
[  212.235135][ T9459]  new_inode+0x22/0x210
[  212.235148][ T9459]  proc_pid_make_inode+0x22/0x160
[  212.235160][ T9459]  proc_fd_instantiate+0x57/0x240
[  212.235174][ T9459]  proc_fill_cache+0x362/0x470
[  212.235183][ T9459]  ? __pfx_proc_fd_instantiate+0x10/0x10
[  212.235201][ T9459]  ? __pfx_proc_fill_cache+0x10/0x10
[  212.235211][ T9459]  ? __pfx_vsnprintf+0x10/0x10
[  212.235230][ T9459]  ? snprintf+0xc8/0x100
[  212.235250][ T9459]  ? _raw_spin_unlock+0x28/0x50
[  212.235264][ T9459]  ? fget_task_next+0x2a8/0x580
[  212.235278][ T9459]  proc_readfd_common+0x1f0/0x620
[  212.235300][ T9459]  ? __pfx_proc_fd_instantiate+0x10/0x10
[  212.235319][ T9459]  ? __pfx_proc_readfd_common+0x10/0x10
[  212.235338][ T9459]  ? down_read_killable+0xcc/0x380
[  212.235351][ T9459]  ? __pfx_down_read_killable+0x10/0x10
[  212.235367][ T9459]  ? apparmor_file_permission+0x251/0x400
[  212.235394][ T9459]  iterate_dir+0x293/0xab0
[  212.235418][ T9459]  __ia32_sys_getdents64+0x148/0x2c0
[  212.235437][ T9459]  ? __pfx___ia32_sys_getdents64+0x10/0x10
[  212.235453][ T9459]  ? __pfx_filldir64+0x10/0x10
[  212.235468][ T9459]  ? syscall_user_dispatch+0x77/0x140
[  212.235490][ T9459]  __do_fast_syscall_32+0x73/0x120
[  212.235501][ T9459]  do_fast_syscall_32+0x32/0x80
[  212.235510][ T9459]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  212.235526][ T9459] RIP: 0023:0xf748e579
[  212.235535][ T9459] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  212.235545][ T9459] RSP: 002b:00000000f50f555c EFLAGS: 00000296 ORIG_RAX: 00000000000000dc
[  212.235555][ T9459] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080002f40
[  212.235562][ T9459] RDX: 0000000000001002 RSI: 0000000000000000 RDI: 0000000000000000
[  212.235570][ T9459] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  212.235576][ T9459] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  212.235583][ T9459] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  212.235595][ T9459]  </TASK>
[  212.416324][ T9467] RDS: rds_bind could not find a transport for fe88::1, load rds_tcp or rds_rdma?
[  212.780793][ T9481] FAULT_INJECTION: forcing a failure.
[  212.780793][ T9481] name failslab, interval 1, probability 0, space 0, times 0
[  212.785852][ T9481] CPU: 0 UID: 0 PID: 9481 Comm: syz.1.1024 Not tainted 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0
[  212.785867][ T9481] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  212.785875][ T9481] Call Trace:
[  212.785880][ T9481]  <TASK>
[  212.785884][ T9481]  dump_stack_lvl+0x16c/0x1f0
[  212.785906][ T9481]  should_fail_ex+0x50a/0x650
[  212.785919][ T9481]  ? fs_reclaim_acquire+0xae/0x150
[  212.785936][ T9481]  ? get_mountpoint+0x145/0x420
[  212.785950][ T9481]  should_failslab+0xc2/0x120
[  212.785963][ T9481]  __kmalloc_cache_noprof+0x68/0x420
[  212.785977][ T9481]  get_mountpoint+0x145/0x420
[  212.785991][ T9481]  do_lock_mount+0x120/0x5b0
[  212.786002][ T9481]  path_mount+0x1a09/0x1f00
[  212.786014][ T9481]  ? kmem_cache_free+0x2e2/0x4d0
[  212.786024][ T9481]  ? __pfx_path_mount+0x10/0x10
[  212.786037][ T9481]  ? putname+0x13c/0x180
[  212.786051][ T9481]  __ia32_sys_mount+0x28d/0x310
[  212.786063][ T9481]  ? __pfx___ia32_sys_mount+0x10/0x10
[  212.786078][ T9481]  __do_fast_syscall_32+0x73/0x120
[  212.786089][ T9481]  do_fast_syscall_32+0x32/0x80
[  212.786098][ T9481]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  212.786115][ T9481] RIP: 0023:0xf748e579
[  212.786123][ T9481] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  212.786132][ T9481] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  212.786142][ T9481] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000080000080
[  212.786148][ T9481] RDX: 0000000080000280 RSI: 0000000000008200 RDI: 0000000080000200
[  212.786154][ T9481] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  212.786160][ T9481] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  212.786165][ T9481] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  212.786176][ T9481]  </TASK>
[  212.913938][ T9488] bond0: (slave bond_slave_0): Releasing backup interface
[  212.918346][ T9488] bond0: (slave bond_slave_1): Releasing backup interface
[  212.937055][ T9488] team0: Port device team_slave_0 removed
[  212.945416][ T9488] team0: Port device team_slave_1 removed
[  212.947572][ T9488] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  212.949687][ T9488] batman_adv: batadv0: Removing interface: batadv_slave_0
[  212.953346][ T9488] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  212.955548][ T9488] batman_adv: batadv0: Removing interface: batadv_slave_1
[  212.981806][ T9491] batman_adv: batadv0: Adding interface: dummy0
[  212.983741][ T9491] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  212.993625][ T9491] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active
[  213.017023][ T9496] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1028'.
[  213.688200][ T9512] Invalid ELF header type: 3 != 1
[  214.060162][ T9529] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1037'.
[  214.063048][ T9529] netlink: 50 bytes leftover after parsing attributes in process `syz.1.1037'.
[  214.065657][ T9529] netlink: 50 bytes leftover after parsing attributes in process `syz.1.1037'.
[  214.717717][   T63] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[  214.871749][   T63] usb 6-1: Using ep0 maxpacket: 8
[  214.874718][   T63] usb 6-1: config 0 has no interfaces?
[  214.876327][   T63] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  214.878792][   T63] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  214.883326][   T63] usb 6-1: config 0 descriptor??
[  215.107860][ T9537] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1040'.
[  215.138695][ T6631] usb 6-1: USB disconnect, device number 24
[  215.562378][ T8578] usb 8-1: new high-speed USB device number 21 using dummy_hcd
[  215.711936][ T8578] usb 8-1: Using ep0 maxpacket: 16
[  215.716308][ T8578] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  215.720047][ T8578] usb 8-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  215.723231][ T8578] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  215.727888][ T8578] usb 8-1: config 0 descriptor??
[  215.736106][ T8578] input: bcm5974 as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input55
[  215.739357][ T9574] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  215.902925][ T9577] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  215.933481][ T5343] bcm5974 8-1:0.0: could not read from device
[  216.063309][ T8578] bcm5974 8-1:0.0: could not read from device
[  216.065546][ T5343] bcm5974 8-1:0.0: could not read from device
[  216.071197][ T8578] input: failed to attach handler mousedev to device input55, error: -5
[  216.077082][ T5343] bcm5974 8-1:0.0: could not read from device
[  216.080620][ T8578] usb 8-1: USB disconnect, device number 21
[  217.991835][   T35] usb 8-1: new high-speed USB device number 22 using dummy_hcd
[  218.141848][   T35] usb 8-1: Using ep0 maxpacket: 8
[  218.147108][   T35] usb 8-1: config 0 has no interfaces?
[  218.149303][   T35] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  218.152329][   T35] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  218.156172][   T35] usb 8-1: config 0 descriptor??
[  218.365000][ T9613] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1064'.
[  218.386127][   T63] usb 8-1: USB disconnect, device number 22
[  223.198548][ T9724] overlayfs: failed to resolve './file1': -2
[  223.773877][ T9742] geneve3: entered promiscuous mode
[  224.058082][ T9749] FAULT_INJECTION: forcing a failure.
[  224.058082][ T9749] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  224.063418][ T9749] CPU: 3 UID: 0 PID: 9749 Comm: syz.0.1107 Not tainted 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0
[  224.063434][ T9749] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  224.063441][ T9749] Call Trace:
[  224.063444][ T9749]  <TASK>
[  224.063449][ T9749]  dump_stack_lvl+0x16c/0x1f0
[  224.063471][ T9749]  should_fail_ex+0x50a/0x650
[  224.063486][ T9749]  _copy_from_user+0x2e/0xd0
[  224.063500][ T9749]  generic_map_update_batch+0x391/0x5f0
[  224.063517][ T9749]  ? __pfx_generic_map_update_batch+0x10/0x10
[  224.063529][ T9749]  ? __fget_files+0x206/0x3a0
[  224.063545][ T9749]  ? __pfx_generic_map_update_batch+0x10/0x10
[  224.063558][ T9749]  bpf_map_do_batch+0x576/0x640
[  224.063570][ T9749]  __sys_bpf+0x1c9f/0x57a0
[  224.063582][ T9749]  ? __pfx_lock_release+0x10/0x10
[  224.063595][ T9749]  ? __pfx___sys_bpf+0x10/0x10
[  224.063607][ T9749]  ? vfs_write+0x306/0x1150
[  224.063619][ T9749]  ? __mutex_unlock_slowpath+0x164/0x6a0
[  224.063642][ T9749]  ? fput+0x67/0x440
[  224.063654][ T9749]  ? ksys_write+0x1ba/0x250
[  224.063663][ T9749]  ? __pfx_ksys_write+0x10/0x10
[  224.063675][ T9749]  __ia32_sys_bpf+0x76/0xe0
[  224.063688][ T9749]  __do_fast_syscall_32+0x73/0x120
[  224.063698][ T9749]  do_fast_syscall_32+0x32/0x80
[  224.063708][ T9749]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  224.063723][ T9749] RIP: 0023:0xf747e579
[  224.063731][ T9749] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  224.063740][ T9749] RSP: 002b:00000000f50e555c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  224.063750][ T9749] RAX: ffffffffffffffda RBX: 000000000000001a RCX: 0000000080000500
[  224.063756][ T9749] RDX: 0000000000000038 RSI: 0000000000000000 RDI: 0000000000000000
[  224.063761][ T9749] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  224.063766][ T9749] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  224.063772][ T9749] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  224.063783][ T9749]  </TASK>
[  224.187368][ T9751] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1108'.
[  224.498109][ T9758] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1110'.
[  224.872694][ T9759] Invalid ELF header type: 3 != 1
[  225.570125][ T9784] 9pnet_fd: Insufficient options for proto=fd
[  225.989645][ T9791] overlayfs: failed to resolve './file1': -2
[  226.050821][ T9797] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1125'.
[  226.206088][ T9799] Invalid ELF header type: 3 != 1
[  226.955304][ T9812] syz.3.1129: attempt to access beyond end of device
[  226.955304][ T9812] nbd3: rw=0, sector=64, nr_sectors = 2 limit=0
[  226.959884][ T9812] syz.3.1129: attempt to access beyond end of device
[  226.959884][ T9812] nbd3: rw=0, sector=512, nr_sectors = 2 limit=0
[  226.963985][ T9812] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[  226.966785][ T9812] syz.3.1129: attempt to access beyond end of device
[  226.966785][ T9812] nbd3: rw=0, sector=1024, nr_sectors = 2 limit=0
[  226.971431][ T9812] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[  226.974320][ T9812] UDF-fs: warning (device nbd3): udf_load_vrs: No anchor found
[  226.976425][ T9812] UDF-fs: Scanning with blocksize 1024 failed
[  226.979403][ T9812] syz.3.1129: attempt to access beyond end of device
[  226.979403][ T9812] nbd3: rw=0, sector=64, nr_sectors = 4 limit=0
[  226.983167][ T9812] syz.3.1129: attempt to access beyond end of device
[  226.983167][ T9812] nbd3: rw=0, sector=1024, nr_sectors = 4 limit=0
[  226.987570][ T9812] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[  226.992947][ T9812] syz.3.1129: attempt to access beyond end of device
[  226.992947][ T9812] nbd3: rw=0, sector=2048, nr_sectors = 4 limit=0
[  226.998578][ T9812] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[  227.001229][ T9812] UDF-fs: warning (device nbd3): udf_load_vrs: No anchor found
[  227.003565][ T9812] UDF-fs: Scanning with blocksize 2048 failed
[  227.004816][ T9813] xt_CT: You must specify a L4 protocol and not use inversions on it
[  227.005488][ T9812] syz.3.1129: attempt to access beyond end of device
[  227.005488][ T9812] nbd3: rw=0, sector=64, nr_sectors = 8 limit=0
[  227.009689][ T9813] autofs: Unknown parameter '��p��v(`��^N���9io�V;'
[  227.011227][ T9812] syz.3.1129: attempt to access beyond end of device
[  227.011227][ T9812] nbd3: rw=0, sector=2048, nr_sectors = 8 limit=0
[  227.017565][ T9812] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[  227.020496][ T9812] syz.3.1129: attempt to access beyond end of device
[  227.020496][ T9812] nbd3: rw=0, sector=4096, nr_sectors = 8 limit=0
[  227.025592][ T9812] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[  227.028986][ T9812] UDF-fs: warning (device nbd3): udf_load_vrs: No anchor found
[  227.031930][ T9812] UDF-fs: Scanning with blocksize 4096 failed
[  227.034179][ T9812] UDF-fs: warning (device nbd3): udf_fill_super: No partition found (1)
[  227.631877][   T68] Bluetooth: hci1: command 0x0c1a tx timeout
[  227.860844][ T9826] overlayfs: failed to resolve './file0': -2
[  229.191986][ T5950] usb 8-1: new high-speed USB device number 23 using dummy_hcd
[  229.248652][   T30] usb 7-1: new high-speed USB device number 34 using dummy_hcd
[  229.357146][ T5950] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  229.361386][ T5950] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 50958, setting to 1024
[  229.366139][ T5950] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  229.370935][ T5950] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  229.372229][ T9852] overlayfs: failed to resolve './file0': -2
[  229.374500][ T5950] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  229.380595][ T5950] usb 8-1: config 0 descriptor??
[  229.384069][ T9846] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  229.451763][   T30] usb 7-1: Using ep0 maxpacket: 32
[  229.455008][   T30] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  229.458084][   T30] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  229.460807][   T30] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  229.464571][   T30] usb 7-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00
[  229.467103][   T30] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  229.470742][   T30] usb 7-1: config 0 descriptor??
[  229.792775][ T5950] usbhid 8-1:0.0: can't add hid device: -71
[  229.794663][ T5950] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[  229.798612][ T5950] usb 8-1: USB disconnect, device number 23
[  229.910340][   T30] input: HID 0458:5011 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/0003:0458:5011.0004/input/input56
[  229.976208][   T30] input: HID 0458:5011 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/0003:0458:5011.0004/input/input57
[  229.990416][   T30] kye 0003:0458:5011.0004: input,hiddev0,hidraw1: USB HID v0.00 Mouse [HID 0458:5011] on usb-dummy_hcd.2-1/input0
[  230.368507][   T30] usb 7-1: USB disconnect, device number 34
[  230.611752][ T6631] usb 8-1: new high-speed USB device number 24 using dummy_hcd
[  230.763175][ T6631] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  230.766426][ T6631] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  230.769214][ T6631] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  230.772841][ T6631] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  230.775468][ T6631] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  230.778707][ T6631] usb 8-1: config 0 descriptor??
[  231.266040][ T9877] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1149'.
[  231.266698][ T6631] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  231.272416][ T6631] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  231.274557][ T6631] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  231.276599][ T6631] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  231.278733][ T6631] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  231.280857][ T6631] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  231.283009][ T6631] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  231.289916][ T6631] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  231.292909][ T6631] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  231.295808][ T6631] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  231.297929][ T6631] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  231.299973][ T6631] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  231.302177][ T6631] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  231.304279][ T6631] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  231.306422][ T6631] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  231.310568][ T6631] plantronics 0003:047F:FFFF.0005: No inputs registered, leaving
[  231.321209][ T6631] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  231.348705][ T9881] overlayfs: failed to resolve './file0': -2
[  231.566029][ T6631] usb 8-1: USB disconnect, device number 24
[  231.701764][   T30] usb 6-1: new high-speed USB device number 25 using dummy_hcd
[  231.851885][   T30] usb 6-1: Using ep0 maxpacket: 8
[  231.854758][   T30] usb 6-1: config 0 has no interfaces?
[  231.856732][   T30] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  231.860206][   T30] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  231.864244][   T30] usb 6-1: config 0 descriptor??
[  231.928464][ T9894] overlayfs: workdir and upperdir must be separate subtrees
[  232.072934][ T9883] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1152'.
[  232.080032][ T6631] usb 6-1: USB disconnect, device number 25
[  232.395961][ T9907] overlayfs: failed to resolve './file0': -2
[  233.061764][ T8578] usb 6-1: new high-speed USB device number 26 using dummy_hcd
[  233.211820][ T8578] usb 6-1: Using ep0 maxpacket: 16
[  233.218895][ T8578] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  233.224174][ T8578] usb 6-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  233.227609][ T8578] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  233.235802][ T8578] usb 6-1: config 0 descriptor??
[  233.242668][ T8578] input: bcm5974 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input58
[  233.443844][ T5343] bcm5974 6-1:0.0: could not read from device
[  233.446921][ T5343] bcm5974 6-1:0.0: could not read from device
[  233.449345][ T8578] bcm5974 6-1:0.0: could not read from device
[  233.453465][ T8578] input: failed to attach handler mousedev to device input58, error: -5
[  233.458641][ T5343] bcm5974 6-1:0.0: could not read from device
[  233.463301][ T8578] usb 6-1: USB disconnect, device number 26
[  233.463325][ T5343] bcm5974 6-1:0.0: could not read from device
[  233.785030][ T9934] overlayfs: failed to resolve './file0': -2
[  235.179530][ T9966] overlayfs: failed to resolve './file0': -2
[  235.202813][ T9964] netlink: 'syz.3.1179': attribute type 3 has an invalid length.
[  235.893365][   T35] usb 7-1: new high-speed USB device number 35 using dummy_hcd
[  236.372220][   T35] usb 7-1: Using ep0 maxpacket: 16
[  236.376671][   T35] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  236.380494][   T35] usb 7-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  236.383555][   T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  236.386931][   T35] usb 7-1: config 0 descriptor??
[  236.391218][   T35] input: bcm5974 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input59
[  236.583165][ T5950] usb 6-1: new high-speed USB device number 27 using dummy_hcd
[  236.594862][ T5343] bcm5974 7-1:0.0: could not read from device
[  236.610285][   T35] bcm5974 7-1:0.0: could not read from device
[  236.615345][ T5343] bcm5974 7-1:0.0: could not read from device
[  236.619212][   T35] input: failed to attach handler mousedev to device input59, error: -5
[  236.625789][ T5343] bcm5974 7-1:0.0: could not read from device
[  236.629095][   T35] usb 7-1: USB disconnect, device number 35
[  236.732142][ T5950] usb 6-1: Using ep0 maxpacket: 8
[  236.735268][ T5950] usb 6-1: config 0 has no interfaces?
[  236.736941][ T5950] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  236.738502][ T9991] netlink: 'syz.3.1188': attribute type 4 has an invalid length.
[  236.739474][ T5950] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  236.745934][ T5950] usb 6-1: config 0 descriptor??
[  236.805247][ T9993] overlayfs: failed to resolve './file1': -2
[  236.880347][ T9998] FAULT_INJECTION: forcing a failure.
[  236.880347][ T9998] name failslab, interval 1, probability 0, space 0, times 0
[  236.884968][ T9998] CPU: 0 UID: 0 PID: 9998 Comm: syz.3.1191 Not tainted 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0
[  236.884983][ T9998] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  236.884991][ T9998] Call Trace:
[  236.884995][ T9998]  <TASK>
[  236.885000][ T9998]  dump_stack_lvl+0x16c/0x1f0
[  236.885021][ T9998]  should_fail_ex+0x50a/0x650
[  236.885036][ T9998]  ? fs_reclaim_acquire+0xae/0x150
[  236.885053][ T9998]  ? resv_map_alloc+0x46/0x400
[  236.885065][ T9998]  should_failslab+0xc2/0x120
[  236.885079][ T9998]  __kmalloc_cache_noprof+0x68/0x420
[  236.885090][ T9998]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  236.885109][ T9998]  resv_map_alloc+0x46/0x400
[  236.885123][ T9998]  hugetlbfs_get_inode+0x343/0x740
[  236.885138][ T9998]  hugetlb_file_setup+0x15b/0x620
[  236.885150][ T9998]  ksys_mmap_pgoff+0x189/0x5c0
[  236.885167][ T9998]  ? __ia32_sys_mmap_pgoff+0x11/0x1b0
[  236.885177][ T9998]  __do_fast_syscall_32+0x73/0x120
[  236.885188][ T9998]  do_fast_syscall_32+0x32/0x80
[  236.885197][ T9998]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  236.885214][ T9998] RIP: 0023:0xf73fe579
[  236.885247][ T9998] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  236.885257][ T9998] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[  236.885268][ T9998] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000000ff5000
[  236.885274][ T9998] RDX: 0000000000000002 RSI: 000000000004c831 RDI: 00000000ffffffff
[  236.885280][ T9998] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  236.885286][ T9998] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  236.885292][ T9998] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  236.885302][ T9998]  </TASK>
[  236.944958][    C0] vkms_vblank_simulate: vblank timer overrun
[  236.978536][ T9984] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1185'.
[  237.002237][ T8578] usb 6-1: USB disconnect, device number 27
[  237.250712][T10010] ubi31: attaching mtd0
[  237.254291][T10010] ubi31: scanning is finished
[  237.255728][T10010] ubi31: empty MTD device detected
[  237.333803][T10010] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[  237.335964][T10010] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  237.338033][T10010] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[  237.339977][T10010] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[  237.342141][T10010] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  237.344224][T10010] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[  237.346536][T10010] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 3621177998
[  237.349315][T10010] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  237.354372][T10012] ubi31: background thread "ubi_bgt31d" started, PID 10012
[  237.568134][T10023] overlayfs: failed to resolve './file1': -2
[  238.267631][T10041] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1204'.
[  238.616913][T10052] IPVS: set_ctl: invalid protocol: 33 127.0.0.1:20002
[  238.801907][   T63] usb 7-1: new high-speed USB device number 36 using dummy_hcd
[  238.951870][   T63] usb 7-1: Using ep0 maxpacket: 8
[  238.955194][   T63] usb 7-1: config 0 has no interfaces?
[  238.956768][   T63] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  238.960123][   T63] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  238.963427][   T63] usb 7-1: config 0 descriptor??
[  238.967647][T10059] netlink: 'syz.0.1209': attribute type 2 has an invalid length.
[  238.970239][T10059] netlink: 'syz.0.1209': attribute type 1 has an invalid length.
[  239.172682][T10048] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1207'.
[  239.179372][ T6631] usb 7-1: USB disconnect, device number 36
[  239.476663][T10067] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1212'.
[  240.494279][   T63] IPVS: starting estimator thread 0...
[  240.581838][T10090] IPVS: using max 39 ests per chain, 93600 per kthread
[  241.848595][T10119] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1229'.
[  242.602882][ T8578] usb 7-1: new high-speed USB device number 37 using dummy_hcd
[  242.752370][ T8578] usb 7-1: Using ep0 maxpacket: 16
[  242.756212][ T8578] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  242.760065][ T8578] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  242.763123][ T8578] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  242.766686][ T8578] usb 7-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  242.769173][ T8578] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  242.773230][ T8578] usb 7-1: config 0 descriptor??
[  243.187358][ T8578] shield 0003:0955:7214.0006: unknown main item tag 0x0
[  243.189383][ T8578] shield 0003:0955:7214.0006: unknown main item tag 0x0
[  243.191291][ T8578] shield 0003:0955:7214.0006: unknown main item tag 0x0
[  243.193461][ T8578] shield 0003:0955:7214.0006: unknown main item tag 0x0
[  243.195348][ T8578] shield 0003:0955:7214.0006: unknown main item tag 0x0
[  243.202993][ T8578] input: HID 0955:7214 Haptics as /devices/virtual/input/input60
[  243.223163][ T8578] shield 0003:0955:7214.0006: Registered Thunderstrike controller
[  243.226419][ T8578] shield 0003:0955:7214.0006: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.2-1/input0
[  243.386606][T10128] random: crng reseeded on system resumption
[  243.408200][ T5983] usb 7-1: USB disconnect, device number 37
[  243.409472][   T65] shield 0003:0955:7214.0006: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[  243.415637][   T65] shield 0003:0955:7214.0006: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  243.419808][   T65] shield 0003:0955:7214.0006: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  243.423965][   T65] shield 0003:0955:7214.0006: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  244.041994][   T35] usb 6-1: new high-speed USB device number 28 using dummy_hcd
[  244.211984][   T35] usb 6-1: Using ep0 maxpacket: 8
[  244.215412][   T35] usb 6-1: config 0 has no interfaces?
[  244.217473][   T35] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  244.220819][   T35] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  244.242884][   T35] usb 6-1: config 0 descriptor??
[  244.455397][T10137] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1242'.
[  244.480316][ T6631] usb 6-1: USB disconnect, device number 28
[  246.261986][ T8578] usb 8-1: new high-speed USB device number 25 using dummy_hcd
[  246.541821][ T8578] usb 8-1: Using ep0 maxpacket: 8
[  246.544859][ T8578] usb 8-1: config 0 has no interfaces?
[  246.546444][ T8578] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  246.548953][ T8578] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  246.555250][ T8578] usb 8-1: config 0 descriptor??
[  246.768241][T10186] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1253'.
[  246.780193][ T8578] usb 8-1: USB disconnect, device number 25
[  247.383308][T10209] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1260'.
[  247.492496][T10212] fuse: Bad value for 'user_id'
[  247.494148][T10212] fuse: Bad value for 'user_id'
[  248.683587][T10244] netlink: 112 bytes leftover after parsing attributes in process `syz.1.1273'.
[  250.211007][T10259] netlink: 'syz.1.1277': attribute type 2 has an invalid length.
[  250.213344][T10259] netlink: 119 bytes leftover after parsing attributes in process `syz.1.1277'.
[  251.417011][T10279] wireguard0: entered promiscuous mode
[  251.419219][T10279] wireguard0: entered allmulticast mode
[  251.534274][ T5951] Bluetooth: hci4: sending frame failed (-49)
[  251.537278][   T68] Bluetooth: hci4: Entering manufacturer mode failed (-49)
[  252.124528][T10308] IPVS: Error connecting to the multicast addr
[  252.377498][T10313] ntfs3(sr0): Primary boot signature is not NTFS.
[  252.381914][T10313] ntfs3(sr0): try to read out of volume at offset 0xf800
[  252.883983][T10317] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  253.541880][T10335] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1295'.
[  253.587201][T10337] fuse: Bad value for 'user_id'
[  253.588639][T10337] fuse: Bad value for 'user_id'
[  254.810883][T10360] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1303'.
[  254.911820][T10374] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1305'.
[  255.553957][T10388] wireguard0: entered promiscuous mode
[  255.554031][ T1414] ieee802154 phy0 wpan0: encryption failed: -22
[  255.555653][T10388] wireguard0: entered allmulticast mode
[  255.557412][ T1414] ieee802154 phy1 wpan1: encryption failed: -22
[  256.024958][   T39] audit: type=1326 audit(1739170523.563:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10398 comm="syz.2.1313" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff5579 code=0x7ffc0000
[  256.025749][T10399] netlink: 'syz.2.1313': attribute type 10 has an invalid length.
[  256.030816][   T39] audit: type=1326 audit(1739170523.563:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10398 comm="syz.2.1313" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff5579 code=0x7ffc0000
[  256.039192][   T39] audit: type=1326 audit(1739170523.563:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10398 comm="syz.2.1313" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7ff5579 code=0x7ffc0000
[  256.045129][   T39] audit: type=1326 audit(1739170523.563:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10398 comm="syz.2.1313" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff5579 code=0x7ffc0000
[  256.050968][   T39] audit: type=1326 audit(1739170523.563:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10398 comm="syz.2.1313" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff5579 code=0x7ffc0000
[  256.056922][   T39] audit: type=1326 audit(1739170523.563:521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10398 comm="syz.2.1313" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7ff5579 code=0x7ffc0000
[  256.062863][   T39] audit: type=1326 audit(1739170523.563:522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10398 comm="syz.2.1313" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff5579 code=0x7ffc0000
[  256.068748][   T39] audit: type=1326 audit(1739170523.563:523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10398 comm="syz.2.1313" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7ff5579 code=0x7ffc0000
[  256.075576][T10399] syz_tun: entered promiscuous mode
[  256.085947][T10399] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  256.088576][   T39] audit: type=1326 audit(1739170523.623:524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10398 comm="syz.2.1313" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff5579 code=0x7ffc0000
[  256.096672][   T39] audit: type=1326 audit(1739170523.623:525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10398 comm="syz.2.1313" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff5579 code=0x7ffc0000
[  256.140588][T10408] bpq0: entered allmulticast mode
[  256.249912][T10413] @: renamed from vlan0 (while UP)
[  256.340062][T10416] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1317'.
[  257.039657][T10432] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  257.644270][   T35] usb 6-1: new high-speed USB device number 29 using dummy_hcd
[  257.861775][   T35] usb 6-1: Using ep0 maxpacket: 8
[  257.877189][   T35] usb 6-1: config 0 has no interfaces?
[  257.879161][   T35] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  257.882545][   T35] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  257.887508][   T35] usb 6-1: config 0 descriptor??
[  258.122978][T10444] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1325'.
[  258.146351][ T5950] usb 6-1: USB disconnect, device number 29
[  258.401749][ T3223] usb 7-1: new full-speed USB device number 38 using dummy_hcd
[  258.563849][ T3223] usb 7-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  258.566906][ T3223] usb 7-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  258.569990][ T3223] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  258.575358][ T3223] usb 7-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[  258.577921][ T3223] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  258.580134][ T3223] usb 7-1: Product: syz
[  258.581323][ T3223] usb 7-1: Manufacturer: syz
[  258.582757][ T3223] usb 7-1: SerialNumber: syz
[  258.585815][ T3223] usb 7-1: config 0 descriptor??
[  258.826856][T10468] Invalid ELF header type: 3 != 1
[  259.837885][T10494] netlink: 'syz.0.1337': attribute type 2 has an invalid length.
[  260.021826][ T8578] usb 8-1: new high-speed USB device number 26 using dummy_hcd
[  260.111755][ T5951] Bluetooth: hci1: command 0x0c1a tx timeout
[  260.172138][ T8578] usb 8-1: Using ep0 maxpacket: 16
[  260.174937][ T8578] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  260.178883][ T8578] usb 8-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  260.181787][ T8578] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  260.186000][ T8578] usb 8-1: config 0 descriptor??
[  260.190160][ T8578] input: bcm5974 as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input61
[  260.391163][ T8578] bcm5974 8-1:0.0: could not read from device
[  260.396148][ T5343] bcm5974 8-1:0.0: could not read from device
[  260.398893][ T8578] input: failed to attach handler mousedev to device input61, error: -5
[  260.404590][ T5343] bcm5974 8-1:0.0: could not read from device
[  260.407390][ T8578] usb 8-1: USB disconnect, device number 26
[  260.407545][ T5343] bcm5974 8-1:0.0: could not read from device
[  260.809387][ T3223] usb 7-1: USB disconnect, device number 38
[  260.885458][T10504] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1341'.
[  260.887958][T10504] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1341'.
[  260.901506][T10503] ------------[ cut here ]------------
[  260.904848][T10503] refcount_t: decrement hit 0; leaking memory.
[  260.907116][T10503] WARNING: CPU: 3 PID: 10503 at lib/refcount.c:31 refcount_warn_saturate+0x1ed/0x210
[  260.909706][T10503] Modules linked in:
[  260.910897][T10503] CPU: 3 UID: 0 PID: 10503 Comm: syz.2.1341 Not tainted 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0
[  260.915719][T10503] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  260.918586][T10503] RIP: 0010:refcount_warn_saturate+0x1ed/0x210
[  260.920263][T10503] Code: 8b e8 87 f9 bc fc 90 0f 0b 90 90 e9 c3 fe ff ff e8 18 21 fc fc c6 05 f0 a6 8b 0b 01 90 48 c7 c7 80 89 d2 8b e8 64 f9 bc fc 90 <0f> 0b 90 90 e9 a0 fe ff ff 48 89 ef e8 22 03 5f fd e9 44 fe ff ff
[  260.926108][T10503] RSP: 0018:ffffc9000e55fc08 EFLAGS: 00010282
[  260.927802][T10503] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff8179c889
[  260.929944][T10503] RDX: ffff888023230000 RSI: ffffffff8179c896 RDI: 0000000000000001
[  260.932275][T10503] RBP: ffff888021cea64c R08: 0000000000000001 R09: 0000000000000000
[  260.934430][T10503] R10: 0000000000000001 R11: 0000000000000002 R12: 1ffff92001cabf86
[  260.936791][T10503] R13: ffff888021cea64c R14: 0000000000000000 R15: ffff888021cea000
[  260.939091][T10503] FS:  0000000000000000(0000) GS:ffff88802b700000(0063) knlGS:00000000571b3440
[  260.941637][T10503] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  260.943557][T10503] CR2: 000000000c3bd83e CR3: 0000000049678000 CR4: 0000000000352ef0
[  260.945780][T10503] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  260.947971][T10503] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  260.950071][T10503] Call Trace:
[  260.951000][T10503]  <TASK>
[  260.951921][T10503]  ? __warn+0xea/0x3c0
[  260.953060][T10503]  ? preempt_schedule_notrace+0x62/0xe0
[  260.954572][T10503]  ? refcount_warn_saturate+0x1ed/0x210
[  260.956092][T10503]  ? report_bug+0x3c0/0x580
[  260.957353][T10503]  ? handle_bug+0x54/0xa0
[  260.958540][T10503]  ? exc_invalid_op+0x17/0x50
[  260.959828][T10503]  ? asm_exc_invalid_op+0x1a/0x20
[  260.961210][T10503]  ? __warn_printk+0x199/0x350
[  260.962756][T10503]  ? __warn_printk+0x1a6/0x350
[  260.964054][T10503]  ? refcount_warn_saturate+0x1ed/0x210
[  260.965566][T10503]  ? refcount_warn_saturate+0x1ec/0x210
[  260.967093][T10503]  ref_tracker_free+0x710/0x820
[  260.968410][T10503]  ? __pfx_ref_tracker_free+0x10/0x10
[  260.969881][T10503]  ? ax25_destroy_socket+0x50c/0x630
[  260.971253][T10503]  ? __local_bh_enable_ip+0xa4/0x120
[  260.972797][T10503]  ax25_release+0x33f/0xa10
[  260.974117][T10503]  __sock_release+0xb0/0x270
[  260.975413][T10503]  ? __pfx_sock_close+0x10/0x10
[  260.976783][T10503]  sock_close+0x1c/0x30
[  260.977966][T10503]  __fput+0x3ff/0xb70
[  260.979064][T10503]  ? _raw_spin_unlock_irq+0x23/0x50
[  260.980493][T10503]  task_work_run+0x14e/0x250
[  260.981819][T10503]  ? __pfx_task_work_run+0x10/0x10
[  260.983234][T10503]  ? __pfx___do_sys_close_range+0x10/0x10
[  260.984791][T10503]  syscall_exit_to_user_mode+0x27b/0x2a0
[  260.986292][T10503]  __do_fast_syscall_32+0x80/0x120
[  260.987687][T10503]  do_fast_syscall_32+0x32/0x80
[  260.989039][T10503]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  260.990735][T10503] RIP: 0023:0xf7ff5579
[  260.992052][T10503] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  260.997224][T10503] RSP: 002b:00000000ff9d4c3c EFLAGS: 00000202 ORIG_RAX: 00000000000001b4
[  260.999474][T10503] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 000000000000001e
[  261.001707][T10503] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  261.003971][T10503] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  261.006193][T10503] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[  261.008396][T10503] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  261.010619][T10503]  </TASK>
[  261.011509][T10503] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  261.013572][T10503] CPU: 3 UID: 0 PID: 10503 Comm: syz.2.1341 Not tainted 6.14.0-rc1-syzkaller-00276-g69b54314c975 #0
[  261.016360][T10503] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  261.019312][T10503] Call Trace:
[  261.020251][T10503]  <TASK>
[  261.021090][T10503]  dump_stack_lvl+0x3d/0x1f0
[  261.022415][T10503]  panic+0x71d/0x800
[  261.023546][T10503]  ? __pfx_panic+0x10/0x10
[  261.024798][T10503]  ? show_trace_log_lvl+0x29d/0x3d0
[  261.026282][T10503]  ? check_panic_on_warn+0x1f/0xb0
[  261.027711][T10503]  ? refcount_warn_saturate+0x1ed/0x210
[  261.029265][T10503]  check_panic_on_warn+0xab/0xb0
[  261.030653][T10503]  __warn+0xf6/0x3c0
[  261.031876][T10503]  ? preempt_schedule_notrace+0x62/0xe0
[  261.033518][T10503]  ? refcount_warn_saturate+0x1ed/0x210
[  261.035032][T10503]  report_bug+0x3c0/0x580
[  261.036269][T10503]  handle_bug+0x54/0xa0
[  261.037448][T10503]  exc_invalid_op+0x17/0x50
[  261.038716][T10503]  asm_exc_invalid_op+0x1a/0x20
[  261.040080][T10503] RIP: 0010:refcount_warn_saturate+0x1ed/0x210
[  261.041791][T10503] Code: 8b e8 87 f9 bc fc 90 0f 0b 90 90 e9 c3 fe ff ff e8 18 21 fc fc c6 05 f0 a6 8b 0b 01 90 48 c7 c7 80 89 d2 8b e8 64 f9 bc fc 90 <0f> 0b 90 90 e9 a0 fe ff ff 48 89 ef e8 22 03 5f fd e9 44 fe ff ff
[  261.047078][T10503] RSP: 0018:ffffc9000e55fc08 EFLAGS: 00010282
[  261.048780][T10503] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff8179c889
[  261.050934][T10503] RDX: ffff888023230000 RSI: ffffffff8179c896 RDI: 0000000000000001
[  261.053157][T10503] RBP: ffff888021cea64c R08: 0000000000000001 R09: 0000000000000000
[  261.055334][T10503] R10: 0000000000000001 R11: 0000000000000002 R12: 1ffff92001cabf86
[  261.057510][T10503] R13: ffff888021cea64c R14: 0000000000000000 R15: ffff888021cea000
[  261.059690][T10503]  ? __warn_printk+0x199/0x350
[  261.061028][T10503]  ? __warn_printk+0x1a6/0x350
[  261.062534][T10503]  ? refcount_warn_saturate+0x1ec/0x210
[  261.064065][T10503]  ref_tracker_free+0x710/0x820
[  261.065447][T10503]  ? __pfx_ref_tracker_free+0x10/0x10
[  261.066939][T10503]  ? ax25_destroy_socket+0x50c/0x630
[  261.068409][T10503]  ? __local_bh_enable_ip+0xa4/0x120
[  261.069916][T10503]  ax25_release+0x33f/0xa10
[  261.071207][T10503]  __sock_release+0xb0/0x270
[  261.072517][T10503]  ? __pfx_sock_close+0x10/0x10
[  261.073928][T10503]  sock_close+0x1c/0x30
[  261.075108][T10503]  __fput+0x3ff/0xb70
[  261.076256][T10503]  ? _raw_spin_unlock_irq+0x23/0x50
[  261.077754][T10503]  task_work_run+0x14e/0x250
[  261.079074][T10503]  ? __pfx_task_work_run+0x10/0x10
[  261.080516][T10503]  ? __pfx___do_sys_close_range+0x10/0x10
[  261.082124][T10503]  syscall_exit_to_user_mode+0x27b/0x2a0
[  261.083720][T10503]  __do_fast_syscall_32+0x80/0x120
[  261.085164][T10503]  do_fast_syscall_32+0x32/0x80
[  261.086535][T10503]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  261.088273][T10503] RIP: 0023:0xf7ff5579
[  261.089423][T10503] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  261.094671][T10503] RSP: 002b:00000000ff9d4c3c EFLAGS: 00000202 ORIG_RAX: 00000000000001b4
[  261.096960][T10503] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 000000000000001e
[  261.099109][T10503] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  261.101285][T10503] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  261.103472][T10503] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[  261.105657][T10503] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  261.107835][T10503]  </TASK>
[  261.109309][T10503] Kernel Offset: disabled
[  261.110648][T10503] Rebooting in 86400 seconds..

VM DIAGNOSIS:
06:55:28  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000001 RBX=0000000000000000 RCX=ffffffff81c09e65 RDX=0000000000000000
RSI=ffffffff8bd2d360 RDI=ffffffff8da68ce0 RBP=000000000003da8c RSP=ffffc9000102fa78
R8 =0000000000000000 R9 =fffffbfff20bfcc2 R10=ffffffff905fe617 R11=0000000000000002
R12=ffffffff8b156030 R13=ffff8880497e4980 R14=0000000000000000 R15=ffff88801bbfb5c0
RIP=ffffffff81c09e73 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f74a6188 CR3=0000000067bfc000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2323232323232323 2323232323232323
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=dffffc0000000000 RBX=ffffc9000618f7d8 RCX=ffffc90003e39000 RDX=1ffff92000c31efe
RSI=ffffffff81ee9799 RDI=ffffc9000618f7f0 RBP=ffffc9000618f7d8 RSP=ffffc9000618f640
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000005
R12=0000000000000000 R13=000000000000030f R14=000000000000030b R15=dffffc0000000000
RIP=ffffffff81ee97ae RFL=00000a02 [-O-----] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c2f539f CR3=00000000730c0000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000001 RBX=1ffff9200078ceb1 RCX=ffffffff82276dce RDX=0000000000000001
RSI=0000000000000000 RDI=0000000000000001 RBP=000000000004ee6a RSP=ffffc90003c67580
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000003
R12=0000000000000001 R13=0000000000000008 R14=0000000000000001 R15=dffffc0000000000
RIP=ffffffff81b8e7d3 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000057c5d4c0 CR3=000000004a21a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000000006b RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff853880b5 RDI=ffffffff9aad4e20 RBP=ffffffff9aad4de0 RSP=ffffc9000e55f588
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000006
R12=0000000000000000 R13=000000000000006b R14=ffffffff9aad4de0 R15=0000000000000000
RIP=ffffffff853880df RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b700000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c3bd83e CR3=0000000049678000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000