last executing test programs:

6.460037503s ago: executing program 1 (id=1022):
r0 = userfaultfd(0x1)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000))
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
r2 = openat$sr(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SG_IO(r2, 0x2285, &(0x7f00000003c0)={0x53, 0xfffffffffffffffe, 0xc, 0x6, @scatter={0x1, 0x0, &(0x7f0000000180)=[{&(0x7f0000000140)=""/41, 0x29}]}, &(0x7f0000000300)="a71c139db08f67492d47a1e0", &(0x7f0000000340), 0x0, 0x0, 0x0, 0x0})
ftruncate(r1, 0x7)
pipe2$9p(&(0x7f0000000100), 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa02, &(0x7f00000000c0)={&(0x7f0000ffc000/0x4000)=nil, 0x4000})

6.376944061s ago: executing program 1 (id=1023):
getrandom(&(0x7f0000000600)=""/274, 0xffffff4f, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000800)='cpuset.effective_cpus\x00', 0x275a, 0x0)
syz_open_dev$vim2m(0x0, 0x8, 0x2)
process_vm_writev(0x0, &(0x7f00000002c0)=[{&(0x7f0000001400)=""/4096, 0x1000}], 0x1, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bd2)
getpgid(0xffffffffffffffff)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
sendto$inet(r1, &(0x7f0000000140)='^', 0x34000, 0x0, &(0x7f0000004ff0)={0x2, 0x0, @rand_addr=0xfffffffffffffffe}, 0x10)
listen(r1, 0xda90)
r2 = accept4(r1, 0x0, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000040)={0x0, 0x2}, &(0x7f0000000240)=0x8)
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
r3 = inotify_init1(0x0)
fcntl$setown(r3, 0x8, 0xffffffffffffffff)
fcntl$getownex(r3, 0x10, &(0x7f0000000100)={0x0, <r4=>0x0})
prctl$PR_SET_PTRACER(0x59616d61, r4)
r5 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x400)
ioctl$NBD_DO_IT(r5, 0xab03)
process_vm_readv(r4, &(0x7f00000002c0)=[{0x0}], 0x1, &(0x7f00000003c0)=[{&(0x7f0000000300)=""/177, 0xb1}], 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="1300000004000008000000112900000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32], 0x48)

5.336025414s ago: executing program 3 (id=1026):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0xffffa888, 0x0, 0x40000}, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'ipvlan1\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="ef00000000000000140012800b0001006970766c616e00000400028008000500", @ANYRES32=r2, @ANYBLOB="080004000001000008000a00", @ANYRES32=r2], 0x4c}}, 0x0)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), r1)
r4 = syz_clone(0x10080, &(0x7f0000000600)="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", 0x1000, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000180)="57739cbeef41eddcd08b846d9e57634817a5d63333b096be097b4bcc273b595045b7c7c6805dcab678d162f42dc33763986419035523fbfe6607d40f062f1336c103943ce071c1010e6c3106ba921fe9a6283c61a4dc96ab8b95913c452fea86e5f0ce3543ef6546921ccec446e9f9fa3f4a882e0b59f13211510f8ee4392696eac8762974e631f18b8ba8fcfac8b73ad7632dda2399ee")
r5 = syz_open_procfs$userns(0x0, &(0x7f0000000240))
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r6, 0x4018620d, &(0x7f0000000100))
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000280)=[@increfs], 0x0, 0x0, 0x0})
r8 = dup3(r7, r6, 0x0)
ioctl$BINDER_WRITE_READ(r8, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000340)=<r9=>0x0)
sendmsg$DEVLINK_CMD_RELOAD(r1, &(0x7f00000004c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000480)={&(0x7f0000000380)={0xf4, r3, 0x8, 0x70bd26, 0x25dfdbfe, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r4}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r5}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r9}}]}, 0xf4}, 0x1, 0x0, 0x0, 0x1}, 0x40000)

5.170535869s ago: executing program 3 (id=1029):
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
socket$xdp(0x2c, 0x3, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
socket$xdp(0x2c, 0x3, 0x0)
symlink(&(0x7f0000000080)='.\x00', &(0x7f0000000000)='./file0\x00')
r2 = socket(0x10, 0x80002, 0x0)
write$P9_RLERRORu(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1c00000007ffff", @ANYRES16=r2, @ANYRESDEC], 0x52)
mount$9p_fd(0x20100000, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}})

5.120541787s ago: executing program 3 (id=1031):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, 0x0, 0x0)
sendmsg$can_bcm(r0, &(0x7f00000001c0)={&(0x7f0000000040), 0x10, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="0500"/12, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000100000000007d026b5a1ca5dacc000000b63c0d9000000000"], 0x48}}, 0x0)

5.118983368s ago: executing program 3 (id=1032):
syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x81e000, 0x0)
r0 = inotify_init1(0x0)
fcntl$setown(r0, 0x8, 0xffffffffffffffff)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'gre0\x00'})
prctl$PR_GET_FPEXC(0xb, &(0x7f0000000040))
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000340))
socket$kcm(0x10, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280))
socket$netlink(0x10, 0x3, 0x13)
io_uring_setup(0x32df, &(0x7f0000000540)={0x0, 0xf014, 0x40, 0x3})
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="340000000308000000000000000000000000001400048008000340000000000800084000"/52], 0x34}}, 0x0)
sendto$inet(0xffffffffffffffff, &(0x7f0000000100)='I', 0x1, 0x0, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r2, &(0x7f0000000100), 0x6)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
setxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='system.posix_acl_access\x00', &(0x7f00000004c0)=ANY=[], 0x24, 0x2)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x4, [@func_proto]}, {0x0, [0x0, 0x5f]}}, 0x0, 0x28, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x2, [@typedef={0x0, 0x0, 0x0, 0x8, 0x3}, @const={0xc, 0x0, 0x0, 0xa, 0x2}, @restrict={0x0, 0x0, 0x0, 0xb, 0x5}, @typedef={0x20005, 0x0, 0x0, 0x8, 0x1}]}}, &(0x7f00000005c0)=""/234, 0x4a, 0xea, 0x1, 0x5225, 0x0, @void, @value}, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x4, &(0x7f0000000240)=@raw=[@exit, @jmp={0x5, 0x1, 0x4, 0xb, 0x0, 0x1}, @map_idx_val={0x18, 0xb, 0x6, 0x0, 0xa, 0x0, 0x0, 0x0, 0x3}], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r3, 0x8, &(0x7f00000000c0)={0x0, 0x1}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000400)=0x6)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r3, 0xc0096616, &(0x7f0000000440)={0x1, [0x0]})
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x1b, &(0x7f0000000140)={@ipv4={'\x00', '\xff\xff', @loopback}, 0x2a, 0x0, 0x2, 0x0, 0x80, 0x2}, 0x20)
openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0)

4.920295759s ago: executing program 0 (id=1033):
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r0, 0xf, 0x25, 0x4, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)

4.859760491s ago: executing program 0 (id=1034):
r0 = socket(0x10, 0x803, 0xffffffff)
getsockname$packet(r0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0)
socket$inet6(0xa, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_ADD_TO_RESOLV_LIST={{0x8}, 0x1}}}, 0x7)
r1 = syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
ioctl$CEC_S_MODE(r1, 0x40046109, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCL_GETMOUSEREPORTING(r2, 0x5412, &(0x7f00000000c0)=0x13)
write$binfmt_elf64(r2, &(0x7f0000000140)=ANY=[], 0x178)
ioctl$TCSETS(r2, 0x5402, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "29061620f8d4ce5bd041905ebbbe95df3bcdbe"})
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
ioctl$USBDEVFS_FREE_STREAMS(0xffffffffffffffff, 0x8008551d, &(0x7f00000012c0)={0xa7c8, 0xe, [{}, {0xe}, {0xe}, {0x2}, {0x3, 0x1}, {0xc}, {0xc}, {0xe, 0x1}, {0xc}, {0xc}, {0x1}, {0x3}, {0xc, 0x1}, {0x3}]})
lsetxattr$system_posix_acl(&(0x7f0000000080)='./file0\x00', &(0x7f0000000140)='system.posix_acl_access\x00', 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000000000000000cd6946bf00007112120000000000950000000000000038a0d2d867af51aff0d4f6ec72597eef7c905bbfc6afb0bc1934ac135165d5e28837b1c9ff7992c32f8d96d4b550b0a011c8c70c89b805ef818f6847bd2df2399f566ff6805ffa85f0397e3075613ce159a5b5d7255a0c0269f44af1773773380b08e122876c23", @ANYBLOB="9279957868fac5d38540bce3e6b92cedf6ecec2a36cea370ef48daa9b1981fa48ea74c6625ce5e36640c6dc799777bb9fdb196c9dc3edf903d8d2d70192cff37d6f5a2597b7808e4b83f51e7b0ba472eddbe26a25378aa4a", @ANYRESHEX=r0], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$KVM_GET_SUPPORTED_CPUID(r3, 0xc008ae09, 0x0)

4.728076355s ago: executing program 0 (id=1035):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000001540)={0x14, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="00220f00000003a8407a730b93"], 0x0}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x35c, 0x0)
preadv(r1, &(0x7f0000000040), 0x0, 0xfffffffe, 0x3)
sched_setscheduler(0x0, 0x1, 0x0)
syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0)
syz_open_dev$hiddev(&(0x7f00000000c0), 0x0, 0x0)
close(0xffffffffffffffff)
pipe(&(0x7f0000000480))
syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000480), 0x802, 0x0)
ioctl$UI_SET_EVBIT(r3, 0x40045564, 0x16)
ioctl$UI_DEV_SETUP(r3, 0x405c5503, &(0x7f00000004c0)={{}, 'syz0\x00'})
ioctl$UI_DEV_CREATE(r3, 0x5501)
write$input_event(r3, &(0x7f0000000fc0)={{0x0, 0xea60}, 0x16}, 0x18)
r4 = syz_io_uring_setup(0x68ec, &(0x7f0000000200)={0x0, 0x0, 0x10100, 0x0, 0xffffffff}, &(0x7f0000000100), &(0x7f0000000000))
io_uring_enter(r4, 0xec4, 0x0, 0x0, 0x0, 0x0)

4.089168414s ago: executing program 1 (id=1036):
openat$uhid(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
memfd_secret(0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x13, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180200002020702500000000002020207b0af8ff00000000bda100000000000026010000f8ffffffb702000008000000b70300000000000085000000"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socket$inet6(0xa, 0x3, 0x7)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.controllers\x00', 0x26e1, 0x0)
syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x4a202)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0, 0x5, 0x4, 0x800, 0x0, @void, @value, @void, @value}, 0x48)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f0000000100)="f257a8ea7bc273dfaeab96850806", 0x2a, 0x0, &(0x7f0000000200)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @link_local}, 0x14)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bd2)
getpgid(0xffffffffffffffff)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
shutdown(r0, 0x2)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r4, 0x0)
r5 = openat$6lowpan_control(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$6lowpan_control(r5, &(0x7f0000000080)='connect aa:aa:aa:aa:aa:11 0', 0x1b)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x15)
syz_emit_vhci(&(0x7f0000000540)=ANY=[@ANYBLOB], 0x22)
r6 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_REQBUFS(r6, 0xc0145608, &(0x7f0000000140)={0x0, 0x7f99140692b0e065, 0x2})
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff000000000200000009000100"], 0x7c}}, 0x0)

3.639926935s ago: executing program 3 (id=1039):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000000300)=""/102400, 0x19000)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x1b, 0x13, &(0x7f00000000c0)=ANY=[@ANYRES16=r0], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x78, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffff, @void, @value}, 0x94) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/address_bits', 0x0, 0x104) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000019480)={0x8, 0x1c29, &(0x7f0000019440)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x3}], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = socket$phonet_pipe(0x23, 0x5, 0x2)
connect$phonet_pipe(r1, &(0x7f0000000200), 0x10) (async)
r2 = syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0) (async)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000940)={0x0, 0xe, &(0x7f0000000000)=[{&(0x7f00000001c0)="d8000000180081054e81f782db44b904021d005c06007c09e8fe55a10a0015400600142603600e1208000b0000000401a8001600a400014009000200036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360d070100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x0) (async)
r4 = syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0)
dup3(r2, r4, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84) (async)
madvise(&(0x7f0000d38000/0x3000)=nil, 0x3000, 0xe) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async)
mlock(&(0x7f0000c00000/0x400000)=nil, 0x400000) (async)
mremap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000, 0x7, &(0x7f0000fff000/0x1000)=nil) (async)
madvise(&(0x7f0000f7c000/0x3000)=nil, 0x3000, 0x14) (async)
r5 = socket$tipc(0x1e, 0x2, 0x0) (async)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000000000000850000001700000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r8}, 0xc) (async)
setsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000280)={0x41}, 0x10) (async)
r9 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r9, 0x10f, 0x87, &(0x7f0000000900)={0x41, 0x84, 0x3}, 0x10)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000019380), 0x107000, 0x0)

3.048825829s ago: executing program 0 (id=1042):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f0000000500), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r2)
sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)={0x30, r3, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_TAGLST={0xc, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x1}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}]}, 0x30}}, 0x0)
r4 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r4, &(0x7f0000000080), 0x10)
sendmsg$can_bcm(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000400)=ANY=[@ANYBLOB="0500"/12, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000100000000000000000800de00000000874fdf8a"], 0x48}}, 0x0)
sendmsg$can_bcm(r4, &(0x7f00000001c0)={&(0x7f0000000040), 0x10, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="050000004400000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x2710, @ANYBLOB="0000000011000000000000010000b68c5206a7fd05900000"], 0x34}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000f00)=@newtfilter={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x74, r7}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f00000008c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x8)
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r8, &(0x7f0000000340)={0xa, 0x4e22, 0x0, @rand_addr=' \x01\x00'}, 0x1c)
openat$vcs(0xffffff9c, &(0x7f0000000140), 0x183000, 0x0)
listen(r8, 0x0)
r9 = socket$inet_smc(0x2b, 0x1, 0x0)
connect$inet(r9, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
sendto$inet(r9, &(0x7f0000000040)='u', 0xa792a, 0x801, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0))

2.83995942s ago: executing program 1 (id=1043):
r0 = socket(0x10, 0x803, 0xffffffff)
getsockname$packet(r0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0)
socket$inet6(0xa, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_ADD_TO_RESOLV_LIST={{0x8}, 0x1}}}, 0x7)
r1 = syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x0)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
ioctl$CEC_S_MODE(r1, 0x40046109, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCL_GETMOUSEREPORTING(r2, 0x5412, &(0x7f00000000c0)=0x13)
write$binfmt_elf64(r2, &(0x7f0000000140)=ANY=[], 0x178)
ioctl$TCSETS(r2, 0x5402, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "29061620f8d4ce5bd041905ebbbe95df3bcdbe"})
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
ioctl$USBDEVFS_FREE_STREAMS(0xffffffffffffffff, 0x8008551d, &(0x7f00000012c0)={0xa7c8, 0xe, [{}, {0xe}, {0xe}, {0x2}, {0x3, 0x1}, {0xc}, {0xc}, {0xe, 0x1}, {0xc}, {0xc}, {0x1}, {0x3}, {0xc, 0x1}, {0x3}]})
lsetxattr$system_posix_acl(&(0x7f0000000080)='./file0\x00', &(0x7f0000000140)='system.posix_acl_access\x00', 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000000000000000cd6946bf00007112120000000000950000000000000038a0d2d867af51aff0d4f6ec72597eef7c905bbfc6afb0bc1934ac135165d5e28837b1c9ff7992c32f8d96d4b550b0a011c8c70c89b805ef818f6847bd2df2399f566ff6805ffa85f0397e3075613ce159a5b5d7255a0c0269f44af1773773380b08e122876c23", @ANYBLOB="9279957868fac5d38540bce3e6b92cedf6ecec2a36cea370ef48daa9b1981fa48ea74c6625ce5e36640c6dc799777bb9fdb196c9dc3edf903d8d2d70192cff37d6f5a2597b7808e4b83f51e7b0ba472eddbe26a25378aa4a", @ANYRESHEX=r0], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)

2.639852376s ago: executing program 1 (id=1044):
getrandom(&(0x7f0000000600)=""/274, 0xffffff4f, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000800)='cpuset.effective_cpus\x00', 0x275a, 0x0)
syz_open_dev$vim2m(0x0, 0x8, 0x2)
process_vm_writev(0x0, &(0x7f00000002c0)=[{&(0x7f0000001400)=""/4096, 0x1000}], 0x1, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bd2)
getpgid(0xffffffffffffffff)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
sendto$inet(r1, &(0x7f0000000140)='^', 0x34000, 0x0, &(0x7f0000004ff0)={0x2, 0x0, @rand_addr=0xfffffffffffffffe}, 0x10)
listen(r1, 0xda90)
r2 = accept4(r1, 0x0, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000040)={0x0, 0x2}, &(0x7f0000000240)=0x8)
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
r3 = inotify_init1(0x0)
fcntl$setown(r3, 0x8, 0xffffffffffffffff)
fcntl$getownex(r3, 0x10, &(0x7f0000000100)={0x0, <r4=>0x0})
prctl$PR_SET_PTRACER(0x59616d61, r4)
r5 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x400)
ioctl$NBD_DO_IT(r5, 0xab03)
process_vm_readv(r4, &(0x7f00000002c0)=[{0x0}], 0x1, &(0x7f00000003c0)=[{&(0x7f0000000300)=""/177, 0xb1}], 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="1300000004000008000000112900000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32], 0x48)

2.579874099s ago: executing program 2 (id=1046):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000100), 0xffffffffffffffff)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000680)={'wpan0\x00', <r3=>0x0})
sendmsg$NL802154_CMD_NEW_INTERFACE(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000340)={0x28, r1, 0x1, 0x70bd27, 0x25dfdbfe, {0x7, 0x0, 0xffff}, [@NL802154_ATTR_IFNAME={0xa, 0x4, 'wpan1\x00'}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x28}, 0x1, 0x0, 0x0, 0x24004801}, 0x4800)

2.579384s ago: executing program 3 (id=1047):
r0 = socket$netlink(0x10, 0x3, 0x15)
capset(&(0x7f00000020c0)={0x19980330}, &(0x7f0000002100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1})
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="04010000100053"], 0x104}}, 0x0)
syslog(0xa, &(0x7f0000003100)=""/81, 0x51)
syz_open_dev$hidraw(&(0x7f0000000080), 0x0, 0x422000)
r1 = memfd_create(&(0x7f0000000180)='\b\x9dF\xd8\b\xb3~u\xa5\"\xdc\xfdq\xf6c\r;\xfcO\x8c=\x81\xb1\x8aWpA\xd4\x98\x85K\x89>N\x8ar\x17O\x0fKR\xe2{mn\xcc\xbf2\xc0\xa7\x14\xd0\xd4\xfe/m\xdf\xb6]\xc2\xaa\x86\xec)\xf7\xcd\xa6\xd9n^.\x13*\xd4\xb8\xe8\xc4\xefb\x14Vx\xc6\xfe\x9e\xee\xe7\xd7E\xe9\t\x83\xdeNX\xec\xe66\x1b\x97$\xee\x84\x14n,B\xd5?\xe5E:+Pm\x1d\xb4\xb8\xeb\xe8Op2\x82\xc7\x0e\x97\x03\xef\x1a\xa5\x00.\x89\b!m\f\xd9\x8b$}\x9f\fX\x81\xa8\xf6\x94\xbc\xed\x80|l]\xe9\xca\xd3\xc9\xa3\x9e\x9cJI\xf1\xa2\xa0\xc4:\x00\x00\x00\x00\x00\x00\b\x00\x00', 0x0)
pipe2(&(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_SET_ABSBIT(r4, 0x40045567, 0x0)
ioctl$UI_ABS_SETUP(r4, 0x401c5504, &(0x7f00000002c0)={0x3f})
ioctl$UI_SET_EVBIT(r4, 0x40045564, 0x3)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r2, 0x8983, &(0x7f0000003180))
write$uinput_user_dev(r4, &(0x7f0000001740)={'syz1\x00'}, 0x45c)
ioctl$UI_DEV_CREATE(r4, 0x5501)
write$binfmt_misc(r3, &(0x7f0000000100), 0x91)
splice(r2, 0x0, r1, &(0x7f0000000140), 0x2, 0x0)
syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000090000082502000000000000000109025c00020100f92a0904000001020900000524060001053408fa6e0d240f0100000000000d000a0006471a010000190581"], 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
dup(r5)
ioctl$DRM_IOCTL_GET_CLIENT(r3, 0xc0186405, &(0x7f00000031c0)={0x6, 0x5, {<r6=>0x0}, {0xffffffffffffffff}, 0x7ff})
ptrace$PTRACE_SETSIGMASK(0x420b, r6, 0x8, &(0x7f0000003200)={[0x20, 0x6]})
syz_open_dev$vcsa(&(0x7f00000030c0), 0x0, 0x0)
write$UHID_INPUT(r3, &(0x7f0000002080)={0xfc, {"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", 0x1000}}, 0x1006)
r7 = socket(0x2, 0x3, 0xff)
setsockopt$SO_TIMESTAMPING(r7, 0x1, 0x41, &(0x7f00000002c0)=0x510, 0x4)
connect$inet(r7, &(0x7f0000000280)={0x2, 0x0, @remote}, 0x10)
sendmmsg$unix(r7, &(0x7f0000002fc0), 0x0, 0x855)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f00000000c0)={0x2020, 0x0, 0x0, 0x0, 0x0, <r8=>0x0}, 0x2020)
sched_setscheduler(r8, 0x3, &(0x7f0000000000)=0x2)

2.310030284s ago: executing program 2 (id=1048):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0xffffffffffffffff, 0x8, &(0x7f0000000040)=0x68)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f00000001c0)=[{&(0x7f0000033a80)=""/102386, 0x18ff2}], 0x1, 0x0, 0x0)
socket(0x0, 0x2, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd='])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000002c0)={[{@redirect_dir_on}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r1 = open(&(0x7f0000000140)='./bus\x00', 0x0, 0x0)
mknodat$loop(r1, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
add_key(&(0x7f0000000180)='dns_resolver\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffb)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_init_net_socket$llc(0x1a, 0x1, 0x0)
gettid()
capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000002140))
openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$SO_TIMESTAMP(r3, 0x1, 0x3f, &(0x7f0000000080)=0x1, 0x4)
bind$inet(r3, &(0x7f0000000480)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000000000)={0x2, 0x24e23, @loopback}, 0x10)
sendmsg$inet(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000240)='/', 0x1}, {&(0x7f0000000340)="c01ecfb6946022ce48f7cb0884b93f08b5993841f1586035dc24697865ef2884319b98320c50a1fef9b76fe67e040ae3ab038b854d54bd17761e081f4c05d47f1513c8b2a02196554ed984deeb135432", 0x50}], 0x2}, 0x41)

1.510572798s ago: executing program 0 (id=1049):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, 0x0, 0x0)
sendmsg$can_bcm(r0, &(0x7f00000001c0)={&(0x7f0000000040), 0x10, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="0500"/12, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000100000000007d026b5a1ca5dacc000000b63c0d9000000000"], 0x48}}, 0x0)

1.510241791s ago: executing program 0 (id=1050):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000001540)={0x14, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="00220f00000003a8407a730b93"], 0x0}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x35c, 0x0)
preadv(r1, &(0x7f0000000040), 0x0, 0xfffffffe, 0x3)
sched_setscheduler(0x0, 0x1, 0x0)
syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0)
syz_open_dev$hiddev(&(0x7f00000000c0), 0x0, 0x0)
close(0xffffffffffffffff)
pipe(&(0x7f0000000480))
syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000480), 0x802, 0x0)
ioctl$UI_SET_EVBIT(r3, 0x40045564, 0x16)
ioctl$UI_DEV_SETUP(r3, 0x405c5503, &(0x7f00000004c0)={{}, 'syz0\x00'})
ioctl$UI_DEV_CREATE(r3, 0x5501)
write$input_event(r3, &(0x7f0000000fc0)={{0x0, 0xea60}, 0x16}, 0x18)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0x8a6dbe48d2beec64})
io_uring_enter(0xffffffffffffffff, 0xec4, 0x0, 0x0, 0x0, 0x0)

1.280368333s ago: executing program 2 (id=1051):
r0 = socket(0x10, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000180)={'bond0\x00', &(0x7f0000000040)=@ethtool_pauseparam={0x1}})
r1 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x4400, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_netfilter(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000020c0)={&(0x7f0000002080)={0x14, 0xc, 0x1, 0x201}, 0xfe95}}, 0x14)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000480), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff}, 0x13f}}, 0x2f)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r3, &(0x7f0000000200)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x3f00, @empty}, {0xa, 0x0, 0x0, @empty}, r4}}, 0x48)
write$RDMA_USER_CM_CMD_QUERY(r3, &(0x7f0000000080)={0x13, 0x10, 0xfa00, {&(0x7f00000004c0), r4, 0x2}}, 0x18)
recvfrom(r2, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$MEDIA_IOC_DEVICE_INFO(r1, 0xc1007c00, 0x0)

1.279752926s ago: executing program 2 (id=1052):
syz_open_dev$usbfs(&(0x7f0000000040), 0x201, 0x10080)
syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0)
syz_io_uring_setup(0x5169, &(0x7f0000000240)={0x0, 0x2, 0x10100}, &(0x7f0000000200), &(0x7f0000000000)=<r0=>0x0)
syz_open_dev$vcsa(&(0x7f0000000100), 0x0, 0x363040)
r1 = open(&(0x7f00000000c0)='./file0\x00', 0x40840, 0x140)
syz_io_uring_setup(0xa94, &(0x7f0000000300)={0x0, 0x12a0, 0x0, 0x0, 0x0, 0x0, r1}, &(0x7f0000000140)=<r2=>0x0, &(0x7f00000005c0))
syz_io_uring_submit(r2, r0, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r3 = socket$kcm(0x2, 0xa, 0x2)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000400)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x5, [@fwd={0x9}, @ptr={0x2}, @volatile={0x2}]}, {0x0, [0x2e, 0x30, 0x30]}}, &(0x7f00000004c0)=""/106, 0x41, 0x6a, 0x1, 0x1, 0x0, @void, @value}, 0x28)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
syz_genetlink_get_family_id$devlink(&(0x7f00000002c0), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_TRAP_GET(r4, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
syz_emit_vhci(&(0x7f0000000300)=ANY=[], 0x7)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="04135ba3a900"], 0x6)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="0b00000005000000020000000400000005000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="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"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000006000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000200)='jbd2_write_superblock\x00'}, 0x10)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)

140.138321ms ago: executing program 2 (id=1053):
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000140)=0x7)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xff)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f00000003c0))
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000000)=0x7e)

139.702791ms ago: executing program 2 (id=1054):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000380)='./file0\x00', 0x1e2)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r0 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r0, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
rename(&(0x7f0000000180)='./file1\x00', &(0x7f0000000200)='./file0\x00')
removexattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)=@known='trusted.overlay.opaque\x00')
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002540)={0x11, 0x3, &(0x7f0000002340)=ANY=[@ANYBLOB="f108000000000000000000001500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$NL80211_CMD_GET_POWER_SAVE(r0, 0x0, 0x24010880)
fspick(0xffffffffffffffff, &(0x7f0000000080)='./bus\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="1400000016000b63d25a80648c2594f90b24fc60", 0x8c0}], 0x1}, 0x0)
recvmsg$kcm(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000037c0)=[{&(0x7f0000000400)=""/215, 0xd7}, {&(0x7f0000000500)=""/233, 0xe9}, {&(0x7f00000002c0)=""/22, 0x16}, {&(0x7f0000000600)=""/247, 0xf7}, {&(0x7f0000000700)=""/4096, 0x1000}, {&(0x7f0000001700)=""/4081, 0xff1}, {&(0x7f0000003a00)=""/4101, 0x1005}, {&(0x7f0000003700)=""/186, 0xba}, {&(0x7f0000003840)=""/79, 0x4f}, {&(0x7f0000002700)=""/4096, 0x1000}, {&(0x7f0000004a40)=""/216, 0xd8}], 0xb}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x0, 0x0)
read$msr(r2, &(0x7f0000000a40)=""/102368, 0x18fe0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
madvise(&(0x7f000042f000/0x800000)=nil, 0x800000, 0x64)
r3 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0xb01)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r4}, 0x10)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r3, 0x8108551b, &(0x7f0000002600)={0x0, 0x0, "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"})
msync(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x6)
ioctl$USBDEVFS_ALLOW_SUSPEND(r3, 0x5522)
ioctl$CDROM_SELECT_DISK(r0, 0x5322, 0x3)

0s ago: executing program 1 (id=1055):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000950000000000000009000000dfa2bff372df8cdbeb318ab2bec8fc36903c0ec359caa1af3c914019395cc154010c693709800000000000000016a85adef34bf78c76e6222337923e1bea6ef64bd465b9780e2bbe408ccc58187feb0e3d43347f98e1a298327e6f9b312ecb4af936461f34a8a32a50bbbb69ec85168947b86df9f2609bf93f7a1be259620618c3c75da31290bce645451b851111dd98ac4d8da9317c2c082020e0b2d634086785f3fe41a30536455bb774f7f154263178151ea93f5774b56a7142047326f940e95b8489e1c5650f5c61299a295f79c88456521cffdef93e29f10f4a11f0ca134a375a7ecfbfc0ff976b20fef6033495b9b94777db9bb9b678ffc1130000009faa798226a080c01e47151268a02dc1a557cfdcf76305fbf6643df66b1b4d2d5e7bf698fc5a18d9823659d1945258fc668950e5aacfa06e1a212661b3f57a266c90e64efc8d8f730867202a9ee94e6a1f851337c2c9671d98a19bdc132c153b3ad843bdd308a07ba8f50a20cfd2c8b94e86ea0af0a9e0e9789ffd38f9b86da101e2266700"/441], &(0x7f0000000080)='GPL\x00', 0x5, 0x1f6, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000200), 0x1, 0x0, 0xffffffffffffffff, 0xf5010000, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x6d)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000280)={r1, 0xe0, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, &(0x7f0000001a00), 0x0, 0x0, 0x10, 0x8, 0x0, 0x0}}, 0x10)
chdir(&(0x7f0000000100)='./file0\x00')
chdir(&(0x7f00000003c0)='./bus\x00') (async)
chdir(&(0x7f00000003c0)='./bus\x00')
creat(&(0x7f0000000400)='./bus\x00', 0x0) (async)
r3 = creat(&(0x7f0000000400)='./bus\x00', 0x0)
open(&(0x7f0000000080)='./bus\x00', 0x0, 0x64) (async)
r4 = open(&(0x7f0000000080)='./bus\x00', 0x0, 0x64)
bind(r4, &(0x7f0000000680)=@l2tp6={0xa, 0x0, 0x4, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0xbd9, 0x2}, 0x80)
write$binfmt_elf64(r3, &(0x7f0000000700)=ANY=[@ANYRES32=r4, @ANYRES32=0x0, @ANYRESOCT=r2, @ANYBLOB="4a87a367a3368adf95fb134b034cf247ae5ac33d8ee9207391625657c1a65c0140b188ad0dc25ed482b8786f7f54371c4b868c363576b07505457bdb3f7afc36de777a7aeed3e634ef00bc23882adf22c93f61ae3721d2d28fcb249dd9ebfe1b3527b03a", @ANYBLOB="0ba4e5f4665d3a671d423d862f8d9101d47b2837759cda44b9758375255f81fc3dc0de5be459568fd128265589ae1a53bccc1edea7a262bca0d662443544d7dc24dba61736f3fd3af9ef7dfaf34536da55616c68a90999f84c5c07accf59261a13c8347fb48185523d8b1c7f57a315191af91d484984dc79eecb93937a19c7c0e7615831bc183a3bcaa40f825bcb7d545d9e4114b911911afa51325f64a99a30aef95ae38e55b71d0edb8bd25ca8ac22a0660ad751e6b1b874", @ANYRES32=r1], 0xffffffffffffffb0)

kernel console output (not intermixed with test programs):

 entered allmulticast mode
[   87.561182][ T6512] bridge_slave_0: entered promiscuous mode
[   87.563773][ T6512] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.565587][ T6512] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.567629][ T6512] bridge_slave_1: entered allmulticast mode
[   87.569559][ T6512] bridge_slave_1: entered promiscuous mode
[   87.614724][ T6512] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   87.622927][ T6512] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   87.648422][ T6512] team0: Port device team_slave_0 added
[   87.651548][ T6512] team0: Port device team_slave_1 added
[   87.675709][ T6512] batman_adv: batadv0: Adding interface: batadv_slave_0
[   87.677595][ T6512] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   87.683974][ T6512] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   87.687621][ T6512] batman_adv: batadv0: Adding interface: batadv_slave_1
[   87.689332][ T6512] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   87.695967][ T6512] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   87.721948][ T6512] hsr_slave_0: entered promiscuous mode
[   87.723991][ T6512] hsr_slave_1: entered promiscuous mode
[   87.725975][ T6512] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   87.728310][ T6512] Cannot create hsr debugfs directory
[   87.803502][ T6512] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   87.846761][   T30] usb 7-1: new low-speed USB device number 3 using dummy_hcd
[   87.864694][ T6539] 9pnet: Unknown protocol version 9
[   87.905862][ T6512] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   87.973869][ T6543] Illegal XDP return value 4294967274 on prog  (id 66) dev N/A, expect packet loss!
[   88.022398][ T6512] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.026741][   T30] usb 7-1: Invalid ep0 maxpacket: 32
[   88.049465][ T6545] netlink: 48 bytes leftover after parsing attributes in process `syz.1.341'.
[   88.070506][ T5414] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   88.105747][ T6512] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.166770][   T30] usb 7-1: new low-speed USB device number 4 using dummy_hcd
[   88.194163][ T6512] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   88.197964][ T6512] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   88.209974][ T6512] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   88.213026][ T6512] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   88.224872][ T6512] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.226781][ T6512] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.228626][ T6512] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.230249][ T6512] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.262048][ T6512] 8021q: adding VLAN 0 to HW filter on device bond0
[   88.268118][ T6512] 8021q: adding VLAN 0 to HW filter on device team0
[   88.326708][   T30] usb 7-1: Invalid ep0 maxpacket: 32
[   88.328507][   T30] usb usb7-port1: attempt power cycle
[   88.460363][ T6512] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.504202][ T6512] veth0_vlan: entered promiscuous mode
[   88.513656][ T6512] veth1_vlan: entered promiscuous mode
[   88.539927][ T6512] veth0_macvtap: entered promiscuous mode
[   88.545489][ T6512] veth1_macvtap: entered promiscuous mode
[   88.561131][ T6512] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   88.564319][ T6512] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   88.568202][ T6512] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   88.571030][ T6512] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   88.573660][ T6512] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   88.577597][ T6512] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   88.580223][ T6512] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   88.583112][ T6512] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   88.588173][ T6512] batman_adv: batadv0: Interface activated: batadv_slave_0
[   88.594868][ T6512] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   88.600612][ T6512] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   88.603970][ T6512] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   88.609200][ T6512] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   88.612356][ T6512] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   88.615716][ T6512] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   88.619449][ T6512] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   88.622811][ T6512] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   88.629062][ T6512] batman_adv: batadv0: Interface activated: batadv_slave_1
[   88.643404][ T6512] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   88.645636][ T6512] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   88.650551][ T6512] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   88.653030][ T6512] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   88.676768][   T30] usb 7-1: new low-speed USB device number 5 using dummy_hcd
[   88.697293][   T30] usb 7-1: Invalid ep0 maxpacket: 32
[   88.707617][ T1213] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.709682][ T1213] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.730672][   T69] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.732772][   T69] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.836727][   T30] usb 7-1: new low-speed USB device number 6 using dummy_hcd
[   88.857266][   T30] usb 7-1: Invalid ep0 maxpacket: 32
[   88.860144][   T30] usb usb7-port1: unable to enumerate USB device
[   88.867580][ T6569] 9pnet: Unknown protocol version 9p200
[   88.928061][ T6573] mkiss: ax0: crc mode is auto.
[   88.951950][ T6575] netlink: 48 bytes leftover after parsing attributes in process `syz.0.349'.
[   89.108519][   T35] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   89.127283][ T6586] netlink: 40 bytes leftover after parsing attributes in process `syz.3.352'.
[   89.428874][ T5388] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   89.436761][ T5356] Bluetooth: hci4: command tx timeout
[   89.738886][ T6588] ptrace attach of "/syz-executor exec"[5343] was attempted by "/syz-executor exec"[6588]
[   90.147963][ T5414] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   90.639530][ T6595] overlay: Unknown parameter 'fowner'
[   90.642836][ T6597] 9pnet: Unknown protocol version 9p200
[   90.643287][ T6595] Invalid ELF header magic: != ELF
[   90.693786][ T6601] netlink: 48 bytes leftover after parsing attributes in process `syz.2.358'.
[   90.761146][ T6606] netlink: 4 bytes leftover after parsing attributes in process `syz.0.359'.
[   91.197573][ T5414] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   91.516738][ T5356] Bluetooth: hci4: command tx timeout
[   91.719296][ T6618] fuse: Bad value for 'fd'
[   91.837218][ T5390] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   92.122452][ T6631] 9pnet: Unknown protocol version 9p200
[   92.124457][ T6633] netlink: 48 bytes leftover after parsing attributes in process `syz.1.368'.
[   92.228413][   T35] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   92.467397][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   92.618088][  T112] EXT4-fs warning (device sda1): es_reclaim_extents:1841: forced shrink of precached extents
[   92.621476][  T112] EXT4-fs warning (device sda1): es_reclaim_extents:1841: forced shrink of precached extents
[   93.144910][ T6663] 9pnet: Unknown protocol version 9p2000.
[   93.277301][ T5387] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   93.487931][ T6667] netlink: 48 bytes leftover after parsing attributes in process `syz.1.380'.
[   93.587043][ T5356] Bluetooth: hci4: command tx timeout
[   93.693755][ T6673] xt_NFQUEUE: number of total queues is 0
[   93.696345][ T6675] FAULT_INJECTION: forcing a failure.
[   93.696345][ T6675] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   93.700435][ T6675] CPU: 0 UID: 0 PID: 6675 Comm: syz.2.382 Not tainted 6.12.0-rc1-syzkaller-00046-g7ec462100ef9 #0
[   93.701039][ T6673] Cannot find add_set index 2 as target
[   93.703148][ T6675] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   93.703158][ T6675] Call Trace:
[   93.703162][ T6675]  <TASK>
[   93.703166][ T6675]  dump_stack_lvl+0x16c/0x1f0
[   93.710246][ T6675]  should_fail_ex+0x497/0x5b0
[   93.711436][ T6675]  _copy_from_user+0x30/0xf0
[   93.712599][ T6675]  get_compat_msghdr+0xa8/0x170
[   93.713849][ T6675]  ? __pfx_get_compat_msghdr+0x10/0x10
[   93.715200][ T6675]  ? __pfx___lock_acquire+0x10/0x10
[   93.716460][ T6675]  ___sys_sendmsg+0x1b0/0x1e0
[   93.717660][ T6675]  ? __pfx____sys_sendmsg+0x10/0x10
[   93.718977][ T6675]  ? lock_acquire+0x2f/0xb0
[   93.720153][ T6675]  ? __fget_files+0x40/0x3f0
[   93.721380][ T6675]  ? __pfx___might_resched+0x10/0x10
[   93.722714][ T6675]  ? fdget+0x176/0x210
[   93.723737][ T6675]  __sys_sendmmsg+0x2a5/0x450
[   93.724942][ T6675]  ? __pfx___sys_sendmmsg+0x10/0x10
[   93.726227][ T6675]  ? vfs_write+0x14d/0x1140
[   93.727385][ T6675]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   93.728887][ T6675]  ? fput+0x30/0x390
[   93.729860][ T6675]  ? ksys_write+0x1ad/0x260
[   93.731000][ T6675]  ? __pfx_ksys_write+0x10/0x10
[   93.732182][ T6675]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[   93.733584][ T6675]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   93.735244][ T6675]  __do_fast_syscall_32+0x73/0x120
[   93.736516][ T6675]  do_fast_syscall_32+0x32/0x80
[   93.737741][ T6675]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   93.739276][ T6675] RIP: 0023:0xf7f3f579
[   93.740313][ T6675] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   93.745089][ T6675] RSP: 002b:00000000f56c656c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[   93.747150][ T6675] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[   93.749092][ T6675] RDX: 000000000400020d RSI: 0000000000000000 RDI: 0000000000000000
[   93.751103][ T6675] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   93.753016][ T6675] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   93.755131][ T6675] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   93.757103][ T6675]  </TASK>
[   93.758039][    C0] vkms_vblank_simulate: vblank timer overrun
[   94.144739][ T6682] ptrace attach of "/syz-executor exec"[5344] was attempted by "/syz-executor exec"[6682]
[   94.328212][ T5414] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   94.574032][ T6690] 9pnet: Unknown protocol version 9p2000.
[   94.611682][ T6693] netlink: 48 bytes leftover after parsing attributes in process `syz.1.389'.
[   94.614978][ T6688] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   94.617562][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   94.625246][ T6688] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   94.629256][ T6688] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   94.631605][ T6688] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   94.640748][ T6687] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   94.644893][ T6687] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   94.814140][ T6707] netlink: 4 bytes leftover after parsing attributes in process `syz.1.392'.
[   94.916589][ T6716] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   94.920187][ T6716] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   94.921091][  T112] EXT4-fs warning (device sda1): es_reclaim_extents:1841: forced shrink of precached extents
[   94.921728][ T6717] pty pty23: ldisc open failed (-12), clearing slot 23
[   94.997196][    T9] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[   95.125126][ T6716] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   95.129282][ T6716] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   95.147310][    T9] usb 7-1: Using ep0 maxpacket: 32
[   95.153184][    T9] usb 7-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[   95.159339][    T9] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[   95.162013][    T9] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[   95.164428][    T9] usb 7-1: Product: syz
[   95.165583][    T9] usb 7-1: Manufacturer: syz
[   95.167581][    T9] usb 7-1: SerialNumber: syz
[   95.177946][    T9] usb 7-1: config 0 descriptor??
[   95.347105][ T5387] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   95.349720][ T6725] 9pnet: Unknown protocol version 9p2000.
[   95.378715][ T6727] netlink: 48 bytes leftover after parsing attributes in process `syz.3.399'.
[   95.576480][ T6738] xt_addrtype: both incoming and outgoing interface limitation cannot be selected
[   95.666986][ T5356] Bluetooth: hci4: command tx timeout
[   96.880510][ T6758] netlink: 8 bytes leftover after parsing attributes in process `syz.1.407'.
[   97.172052][ T6764] netlink: 48 bytes leftover after parsing attributes in process `syz.1.409'.
[   97.239046][ T6769] FAULT_INJECTION: forcing a failure.
[   97.239046][ T6769] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   97.242458][ T6769] CPU: 2 UID: 0 PID: 6769 Comm: syz.1.410 Not tainted 6.12.0-rc1-syzkaller-00046-g7ec462100ef9 #0
[   97.245503][ T6769] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   97.249133][ T6769] Call Trace:
[   97.250290][ T6769]  <TASK>
[   97.251315][ T6769]  dump_stack_lvl+0x16c/0x1f0
[   97.252957][ T6769]  should_fail_ex+0x497/0x5b0
[   97.254588][ T6769]  _copy_from_iter+0x29b/0x13e0
[   97.256190][ T6769]  ? __pfx__copy_from_iter+0x10/0x10
[   97.257958][ T6769]  ? __virt_addr_valid+0x1a4/0x590
[   97.259406][ T6769]  ? __virt_addr_valid+0x5e/0x590
[   97.260753][ T6769]  ? __phys_addr_symbol+0x30/0x80
[   97.262141][ T6769]  ? __check_object_size+0x488/0x710
[   97.263424][ T6769]  netlink_sendmsg+0x813/0xd70
[   97.264633][ T6769]  ? __pfx_netlink_sendmsg+0x10/0x10
[   97.265985][ T6769]  __sys_sendto+0x479/0x4d0
[   97.267128][ T6769]  ? __pfx___sys_sendto+0x10/0x10
[   97.268411][ T6769]  ? __lock_acquire+0xbdd/0x3ce0
[   97.269661][ T6769]  ? __might_fault+0x13b/0x190
[   97.270850][ T6769]  ? __pfx_lock_release+0x10/0x10
[   97.272247][ T6769]  __do_compat_sys_socketcall+0x5e2/0x700
[   97.273694][ T6769]  ? __pfx___do_compat_sys_socketcall+0x10/0x10
[   97.275202][ T6769]  ? __pfx_lock_release+0x10/0x10
[   97.276444][ T6769]  ? trace_lock_acquire+0x14a/0x1d0
[   97.277776][ T6769]  __do_fast_syscall_32+0x73/0x120
[   97.279041][ T6769]  do_fast_syscall_32+0x32/0x80
[   97.280292][ T6769]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   97.282032][ T6769] RIP: 0023:0xf7fa3579
[   97.283387][ T6769] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   97.289685][ T6769] RSP: 002b:00000000f5725440 EFLAGS: 00000293 ORIG_RAX: 0000000000000066
[   97.292452][ T6769] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000f5725454
[   97.295072][ T6769] RDX: 0000000000000000 RSI: 00000000f5725570 RDI: 00000000f742bff4
[   97.297650][ T6769] RBP: 00000000f5725570 R08: 0000000000000000 R09: 0000000000000000
[   97.300200][ T6769] R10: 0000000000000000 R11: 0000000000000282 R12: 0000000000000000
[   97.302889][ T6769] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   97.305576][ T6769]  </TASK>
[   97.723589][ T6775] ptrace attach of "/syz-executor exec"[5344] was attempted by "/syz-executor exec"[6775]
[   98.083930][ T5387] usb 7-1: USB disconnect, device number 7
[   98.467298][ T5387] net_ratelimit: 3 callbacks suppressed
[   98.467309][ T5387] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   98.548827][ T5388] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   98.987438][   T39] kauditd_printk_skb: 51 callbacks suppressed
[   98.987453][   T39] audit: type=1800 audit(2000000035.199:141): pid=6791 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.416" name="/" dev="fuse" ino=1 res=0 errno=0
[   99.080528][ T6793] netlink: 48 bytes leftover after parsing attributes in process `syz.3.418'.
[   99.243177][ T6799] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   99.245695][ T6799] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   99.248510][ T6799] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   99.250898][ T6799] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   99.257064][ T6799] vxlan0: entered promiscuous mode
[   99.258457][ T6799] vxlan0: entered allmulticast mode
[   99.272919][ T6799] netdevsim netdevsim0 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[   99.275263][ T6799] netdevsim netdevsim0 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[   99.278170][ T6799] netdevsim netdevsim0 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[   99.280579][ T6799] netdevsim netdevsim0 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[   99.299926][ T6804] netlink: 12 bytes leftover after parsing attributes in process `syz.1.421'.
[   99.325662][ T6801] syzkaller0: entered promiscuous mode
[   99.328305][ T6801] syzkaller0: entered allmulticast mode
[   99.507254][ T5387] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   99.697444][   T35] usb 8-1: new low-speed USB device number 6 using dummy_hcd
[   99.847985][   T35] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[   99.849965][   T35] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt
[   99.852556][   T35] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[   99.855083][   T35] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[   99.858947][   T35] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[   99.863169][   T35] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[   99.865119][   T35] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt
[   99.867836][   T35] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[   99.870378][   T35] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[   99.873230][   T35] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[   99.876454][   T35] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[   99.878503][   T35] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt
[   99.881103][   T35] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[   99.884287][   T35] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[   99.888426][   T35] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[   99.894123][   T35] usb 8-1: string descriptor 0 read error: -22
[   99.895760][   T35] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   99.898723][   T35] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   99.906469][   T35] adutux 8-1:168.0: ADU100  now attached to /dev/usb/adutux1
[  100.548305][   T35] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  100.741969][ T6820] netlink: 48 bytes leftover after parsing attributes in process `syz.1.427'.
[  101.112528][ T6830] ptrace attach of "/syz-executor exec"[5345] was attempted by "/syz-executor exec"[6830]
[  101.115804][ T6832] FAULT_INJECTION: forcing a failure.
[  101.115804][ T6832] name failslab, interval 1, probability 0, space 0, times 0
[  101.119710][ T6832] CPU: 3 UID: 0 PID: 6832 Comm: syz.1.430 Not tainted 6.12.0-rc1-syzkaller-00046-g7ec462100ef9 #0
[  101.122524][ T6832] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  101.125388][ T6832] Call Trace:
[  101.126297][ T6832]  <TASK>
[  101.127156][ T6832]  dump_stack_lvl+0x16c/0x1f0
[  101.128426][ T6832]  should_fail_ex+0x497/0x5b0
[  101.129718][ T6832]  ? fs_reclaim_acquire+0xae/0x160
[  101.131090][ T6832]  should_failslab+0xc2/0x120
[  101.132353][ T6832]  kmem_cache_alloc_bulk_noprof+0x85/0xb10
[  101.133919][ T6832]  ? trace_kmem_cache_alloc+0x2d/0xe0
[  101.135351][ T6832]  ? kmem_cache_alloc_noprof+0x174/0x2f0
[  101.136844][ T6832]  ? mas_dup_build.constprop.0+0x176/0x1100
[  101.138429][ T6832]  ? mas_dup_build.constprop.0+0x822/0x1100
[  101.140011][ T6832]  mas_dup_build.constprop.0+0x822/0x1100
[  101.141548][ T6832]  __mt_dup+0xec/0x1f0
[  101.142644][ T6832]  ? __pfx___mt_dup+0x10/0x10
[  101.143938][ T6832]  ? get_mm_exe_file+0x8a/0x1a0
[  101.145244][ T6832]  ? __pfx_lock_release+0x10/0x10
[  101.146610][ T6832]  ? __get_file_rcu+0xf8/0x150
[  101.147895][ T6832]  copy_mm+0x61b/0x2550
[  101.149021][ T6832]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  101.150676][ T6832]  ? lockdep_hardirqs_on+0x7c/0x110
[  101.152057][ T6832]  ? lock_acquire.part.0+0x11b/0x380
[  101.153465][ T6832]  ? __pfx_copy_mm+0x10/0x10
[  101.154697][ T6832]  ? copy_process+0x38ef/0x6f00
[  101.155992][ T6832]  ? __raw_spin_lock_init+0x3a/0x110
[  101.157409][ T6832]  copy_process+0x3ab9/0x6f00
[  101.158755][ T6832]  ? __pfx_copy_process+0x10/0x10
[  101.160371][ T6832]  ? find_held_lock+0x2d/0x110
[  101.161668][ T6832]  kernel_clone+0xfd/0x960
[  101.162855][ T6832]  ? __pfx_kernel_clone+0x10/0x10
[  101.164186][ T6832]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  101.165768][ T6832]  __do_compat_sys_ia32_clone+0xb7/0x100
[  101.167251][ T6832]  ? __pfx___do_compat_sys_ia32_clone+0x10/0x10
[  101.168904][ T6832]  __do_fast_syscall_32+0x73/0x120
[  101.170254][ T6832]  do_fast_syscall_32+0x32/0x80
[  101.171541][ T6832]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  101.173235][ T6832] RIP: 0023:0xf7fa3579
[  101.174315][ T6832] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  101.179312][ T6832] RSP: 002b:00000000f572651c EFLAGS: 00000246 ORIG_RAX: 0000000000000078
[  101.181507][ T6832] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000
[  101.183557][ T6832] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  101.185620][ T6832] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  101.187678][ T6832] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  101.189731][ T6832] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  101.191825][ T6832]  </TASK>
[  101.436893][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  101.466867][   T57] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  101.586847][ T5387] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  101.589197][ T5388] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  102.145579][ T6847] netlink: 48 bytes leftover after parsing attributes in process `syz.1.437'.
[  102.274126][ T5390] usb 8-1: USB disconnect, device number 6
[  102.291952][ T6857] netdevsim netdevsim0 : renamed from netdevsim0 (while UP)
[  102.501395][ T6857] netlink: 8 bytes leftover after parsing attributes in process `syz.0.438'.
[  102.504958][ T6857] netlink: 8 bytes leftover after parsing attributes in process `syz.0.438'.
[  102.644927][   T35] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  102.968347][   T39] audit: type=1326 audit(2000000268.177:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6869 comm="syz.0.443" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  102.980361][   T39] audit: type=1326 audit(2000000268.187:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6869 comm="syz.0.443" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  102.989111][   T39] audit: type=1326 audit(2000000268.187:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6869 comm="syz.0.443" exe="/syz-executor" sig=0 arch=40000003 syscall=290 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  102.996393][   T39] audit: type=1326 audit(2000000268.187:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6869 comm="syz.0.443" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  103.014382][   T39] audit: type=1326 audit(2000000268.187:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6869 comm="syz.0.443" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  103.027898][   T39] audit: type=1326 audit(2000000268.187:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6869 comm="syz.0.443" exe="/syz-executor" sig=0 arch=40000003 syscall=3 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  103.035177][   T39] audit: type=1326 audit(2000000268.217:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6869 comm="syz.0.443" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  103.077845][   T39] audit: type=1326 audit(2000000268.217:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6869 comm="syz.0.443" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  103.085274][   T39] audit: type=1326 audit(2000000268.217:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6869 comm="syz.0.443" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f17579 code=0x7ffc0000
[  103.668411][   T35] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  104.108803][ T6886] netlink: 48 bytes leftover after parsing attributes in process `syz.0.447'.
[  104.116086][ T6888] EXT4-fs warning (device sda1): verify_group_input:136: Cannot add at group 58387 (only 8 groups)
[  104.282549][ T6902] netlink: 64 bytes leftover after parsing attributes in process `syz.3.454'.
[  104.632532][ T5388] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  104.637039][ T5388] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  104.640362][ T5388] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  104.716982][   T35] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  105.587308][ T6914] netlink: 48 bytes leftover after parsing attributes in process `syz.2.459'.
[  105.721481][ T6922] netlink: 32 bytes leftover after parsing attributes in process `syz.2.462'.
[  105.747278][ T5387] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  106.787988][   T35] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  106.824036][ T6950] netlink: 48 bytes leftover after parsing attributes in process `syz.3.471'.
[  106.898730][ T6952] netlink: 47 bytes leftover after parsing attributes in process `syz.3.472'.
[  107.025699][   T35] libceph: connect (1)[c::]:6789 error -101
[  107.027947][   T35] libceph: mon0 (1)[c::]:6789 connect error
[  107.254849][ T6976] netlink: 48 bytes leftover after parsing attributes in process `syz.3.480'.
[  107.287991][ T5414] libceph: connect (1)[c::]:6789 error -101
[  107.289643][ T5414] libceph: mon0 (1)[c::]:6789 connect error
[  107.667503][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  107.772258][ T6958] ceph: No mds server is up or the cluster is laggy
[  107.827911][ T5414] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  107.868813][ T6994] netlink: 20 bytes leftover after parsing attributes in process `syz.2.485'.
[  107.871328][ T6994] netlink: 20 bytes leftover after parsing attributes in process `syz.2.485'.
[  107.999886][ T5390] usb 5-1: USB disconnect, device number 4
[  108.012404][   T69] bridge_slave_1: left allmulticast mode
[  108.016477][   T69] bridge_slave_1: left promiscuous mode
[  108.021782][   T69] bridge0: port 2(bridge_slave_1) entered disabled state
[  108.025527][   T69] bridge_slave_0: left allmulticast mode
[  108.027518][   T69] bridge_slave_0: left promiscuous mode
[  108.029103][   T69] bridge0: port 1(bridge_slave_0) entered disabled state
[  108.116234][ T6979] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  108.295212][ T7006] netlink: 48 bytes leftover after parsing attributes in process `syz.3.489'.
[  108.333414][   T69] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  108.344293][   T69] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  108.350366][   T69] bond0 (unregistering): Released all slaves
[  108.422144][   T69] tipc: Disabling bearer <udp:syz1>
[  108.427691][   T69] tipc: Disabling bearer <udp:s>
[  108.430977][   T69] tipc: Left network mode
[  108.635135][   T69] hsr_slave_0: left promiscuous mode
[  108.639830][   T69] hsr_slave_1: left promiscuous mode
[  108.652807][   T69] batman_adv: batadv0: Interface deactivated: dummy0
[  108.657513][   T69] batman_adv: batadv0: Removing interface: dummy0
[  108.667993][   T69] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  108.670585][   T69] batman_adv: batadv0: Removing interface: batadv_slave_0
[  108.674798][   T69] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  108.677598][   T69] batman_adv: batadv0: Removing interface: batadv_slave_1
[  108.712832][   T69] veth1_macvtap: left promiscuous mode
[  108.716716][   T69] veth0_macvtap: left promiscuous mode
[  108.718829][   T69] veth1_vlan: left promiscuous mode
[  108.720664][   T69] veth0_vlan: left promiscuous mode
[  108.867412][ T5387] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  109.116881][   T57] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  109.336692][ T5414] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  109.498397][ T5414] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  109.501265][ T5414] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  109.503801][ T5414] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  109.507544][ T5414] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  109.511024][ T5414] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  109.513975][ T5414] usb 6-1: config 0 descriptor??
[  109.679884][   T69] team0 (unregistering): Port device team_slave_1 removed
[  109.764054][   T69] team0 (unregistering): Port device team_slave_0 removed
[  109.798256][    C1] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  109.907796][   T35] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  109.925034][ T5414] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  109.930933][ T5414] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  109.932878][ T5414] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  109.934793][ T5414] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  109.937327][ T5414] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  109.939251][ T5414] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[  109.945270][ T5414] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving
[  109.980733][ T5414] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  110.139435][ T7030] __nla_validate_parse: 1 callbacks suppressed
[  110.139447][ T7030] netlink: 48 bytes leftover after parsing attributes in process `syz.3.498'.
[  110.202752][ T7011] input: syz0 as /devices/virtual/input/input10
[  110.400074][ T7021] netlink: 4 bytes leftover after parsing attributes in process `syz.0.493'.
[  110.440375][ T7037] netlink: set zone limit has 4 unknown bytes
[  110.464135][ T7037] netlink: 32 bytes leftover after parsing attributes in process `syz.2.500'.
[  110.630471][   T39] kauditd_printk_skb: 12 callbacks suppressed
[  110.630481][   T39] audit: type=1326 audit(2000000275.847:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7038 comm="syz.2.501" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f3f579 code=0x0
[  110.718400][ T5388] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  110.947295][ T5414] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  111.265343][ T7011] usb 6-1: string descriptor 0 read error: -71
[  111.334900][ T7049] ptrace attach of "/syz-executor exec"[5344] was attempted by "/syz-executor exec"[7049]
[  111.919177][ T7059] netlink: 48 bytes leftover after parsing attributes in process `syz.1.507'.
[  111.936362][ T7060] EXT4-fs warning (device sda1): verify_group_input:136: Cannot add at group 58431 (only 8 groups)
[  111.951190][ T7060] unsupported nlmsg_type 40
[  111.986998][   T35] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  112.063429][    T9] usb 6-1: USB disconnect, device number 3
[  112.082459][ T7072] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  112.084761][ T7072] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  112.087097][ T7072] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  112.089360][ T7072] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  112.094292][ T7072] vxlan0: entered promiscuous mode
[  112.095658][ T7072] vxlan0: entered allmulticast mode
[  112.101041][ T7072] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  112.103422][ T7072] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  112.105792][ T7072] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  112.108195][ T7072] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  112.120511][ T7073] netlink: 4 bytes leftover after parsing attributes in process `syz.2.511'.
[  112.154534][ T7075] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  112.158206][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  113.229485][ T7096] netlink: 36 bytes leftover after parsing attributes in process `syz.1.519'.
[  113.232821][ T7096] netlink: 4 bytes leftover after parsing attributes in process `syz.1.519'.
[  114.000359][ T7107] net_ratelimit: 2 callbacks suppressed
[  114.000370][ T7107] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  114.004580][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  114.078683][ T5387] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  114.456698][ T7118] netlink: 'syz.3.527': attribute type 3 has an invalid length.
[  114.459151][ T7118] netlink: 130984 bytes leftover after parsing attributes in process `syz.3.527'.
[  114.547205][   T35] IPVS: starting estimator thread 0...
[  114.647147][ T7124] IPVS: using max 34 ests per chain, 81600 per kthread
[  114.662109][ T7131] netlink: set zone limit has 4 unknown bytes
[  114.664733][ T7131] FAULT_INJECTION: forcing a failure.
[  114.664733][ T7131] name failslab, interval 1, probability 0, space 0, times 0
[  114.670650][ T7131] CPU: 2 UID: 0 PID: 7131 Comm: syz.3.532 Not tainted 6.12.0-rc1-syzkaller-00046-g7ec462100ef9 #0
[  114.673428][ T7131] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  114.676392][ T7131] Call Trace:
[  114.677317][ T7131]  <TASK>
[  114.678111][ T7131]  dump_stack_lvl+0x16c/0x1f0
[  114.679359][ T7131]  should_fail_ex+0x497/0x5b0
[  114.680823][ T7131]  should_failslab+0xc2/0x120
[  114.682115][ T7131]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  114.683656][ T7131]  ? skb_clone+0x190/0x3f0
[  114.684854][ T7131]  skb_clone+0x190/0x3f0
[  114.685999][ T7131]  netlink_deliver_tap+0xb26/0xcf0
[  114.687349][ T7131]  netlink_dump+0xb2d/0xcc0
[  114.688551][ T7131]  ? __pfx_netlink_dump+0x10/0x10
[  114.689411][ T7132] ptrace attach of "/syz-executor exec"[5343] was attempted by "/syz-executor exec"[7132]
[  114.689929][ T7131]  ? kasan_save_track+0x14/0x30
[  114.694027][ T7131]  ? __kasan_kmalloc+0xaa/0xb0
[  114.695400][ T7131]  ? genl_start+0x677/0x950
[  114.696609][ T7131]  __netlink_dump_start+0x6d9/0x980
[  114.698002][ T7131]  genl_family_rcv_msg_dumpit+0x1e1/0x2e0
[  114.699521][ T7131]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[  114.701220][ T7131]  ? genl_op_from_small+0x25/0x440
[  114.702569][ T7131]  ? __pfx_genl_start+0x10/0x10
[  114.703845][ T7131]  ? __pfx_genl_dumpit+0x10/0x10
[  114.705246][ T7131]  ? __pfx_genl_done+0x10/0x10
[  114.706523][ T7131]  ? bpf_lsm_capable+0x9/0x10
[  114.707765][ T7131]  ? security_capable+0x7e/0x260
[  114.709075][ T7131]  genl_rcv_msg+0x470/0x800
[  114.710287][ T7131]  ? __pfx_genl_rcv_msg+0x10/0x10
[  114.711619][ T7131]  ? __pfx_ip_vs_genl_dump_dests+0x10/0x10
[  114.713144][ T7131]  netlink_rcv_skb+0x165/0x410
[  114.714412][ T7131]  ? __pfx_genl_rcv_msg+0x10/0x10
[  114.715733][ T7131]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  114.717136][ T7131]  ? down_read+0xc9/0x330
[  114.718289][ T7131]  ? __pfx_down_read+0x10/0x10
[  114.719545][ T7131]  ? netlink_deliver_tap+0x1ae/0xcf0
[  114.720934][ T7131]  genl_rcv+0x28/0x40
[  114.721995][ T7131]  netlink_unicast+0x53c/0x7f0
[  114.723244][ T7131]  ? __pfx_netlink_unicast+0x10/0x10
[  114.724619][ T7131]  ? __phys_addr_symbol+0x30/0x80
[  114.725956][ T7131]  ? __check_object_size+0x488/0x710
[  114.727340][ T7131]  netlink_sendmsg+0x8b8/0xd70
[  114.728602][ T7131]  ? __pfx_netlink_sendmsg+0x10/0x10
[  114.729992][ T7131]  ? lock_acquire+0x2f/0xb0
[  114.731191][ T7131]  ____sys_sendmsg+0x9ae/0xb40
[  114.732450][ T7131]  ? __pfx_____sys_sendmsg+0x10/0x10
[  114.733825][ T7131]  ? get_compat_msghdr+0x11b/0x170
[  114.735159][ T7131]  ? __pfx___lock_acquire+0x10/0x10
[  114.736526][ T7131]  ___sys_sendmsg+0x135/0x1e0
[  114.737772][ T7131]  ? __pfx____sys_sendmsg+0x10/0x10
[  114.739142][ T7131]  ? lock_acquire+0x2f/0xb0
[  114.740341][ T7131]  ? __fget_files+0x40/0x3f0
[  114.741575][ T7131]  ? fdget+0x176/0x210
[  114.742646][ T7131]  __sys_sendmsg+0x117/0x1f0
[  114.743863][ T7131]  ? __pfx___sys_sendmsg+0x10/0x10
[  114.745212][ T7131]  ? __fget_files+0x244/0x3f0
[  114.746468][ T7131]  __do_fast_syscall_32+0x73/0x120
[  114.747817][ T7131]  do_fast_syscall_32+0x32/0x80
[  114.749101][ T7131]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  114.750762][ T7131] RIP: 0023:0xf7fc4579
[  114.751839][ T7131] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  114.756860][ T7131] RSP: 002b:00000000f574656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  114.759060][ T7131] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000020000240
[  114.761143][ T7131] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  114.763219][ T7131] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  114.765285][ T7131] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  114.767348][ T7131] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  114.769421][ T7131]  </TASK>
[  114.817685][ T7131] usb usb1: usbfs: process 7131 (syz.3.532) did not claim interface 0 before use
[  114.852793][ T7138] netlink: 28 bytes leftover after parsing attributes in process `syz.3.534'.
[  114.855162][ T7138] netlink: 'syz.3.534': attribute type 7 has an invalid length.
[  114.858159][ T7138] netlink: 'syz.3.534': attribute type 8 has an invalid length.
[  114.860159][ T7138] netlink: 4 bytes leftover after parsing attributes in process `syz.3.534'.
[  114.864336][ T7138] erspan0: entered promiscuous mode
[  114.866594][ T7138] batadv_slave_0: entered promiscuous mode
[  114.867457][   T35] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  115.010560][ T7149] all: renamed from bridge_slave_0 (while UP)
[  115.107082][ T5387] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  115.226232][ T7158] ebtables: wrong size: *len 80, entries_size 144, replsz 144
[  115.292095][ T7162] netlink: 4 bytes leftover after parsing attributes in process `syz.3.543'.
[  116.078679][ T7167] openvswitch: netlink: Actions may not be safe on all matching packets
[  116.082821][ T7167] openvswitch: netlink: Actions may not be safe on all matching packets
[  116.085099][ T7167] openvswitch: netlink: Actions may not be safe on all matching packets
[  116.089259][ T7167] openvswitch: netlink: Actions may not be safe on all matching packets
[  116.802152][ T7188] netlink: 16 bytes leftover after parsing attributes in process `syz.2.550'.
[  116.828222][ T7193] netlink: 8 bytes leftover after parsing attributes in process `syz.0.554'.
[  116.932098][ T7200] FAULT_INJECTION: forcing a failure.
[  116.932098][ T7200] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  116.936091][ T7200] CPU: 2 UID: 0 PID: 7200 Comm: syz.0.556 Not tainted 6.12.0-rc1-syzkaller-00046-g7ec462100ef9 #0
[  116.939355][ T7200] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  116.942569][ T7200] Call Trace:
[  116.943462][ T7200]  <TASK>
[  116.944259][ T7200]  dump_stack_lvl+0x16c/0x1f0
[  116.945528][ T7200]  should_fail_ex+0x497/0x5b0
[  116.946785][ T7200]  _copy_to_user+0x30/0xc0
[  116.947973][ T7200]  simple_read_from_buffer+0xd0/0x160
[  116.949409][ T7200]  proc_fail_nth_read+0x198/0x270
[  116.950722][ T7200]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  116.952181][ T7200]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  116.953639][ T7200]  vfs_read+0x1ce/0xbd0
[  116.954740][ T7200]  ? __fget_files+0x23a/0x3f0
[  116.955984][ T7200]  ? fdget_pos+0x24c/0x360
[  116.957167][ T7200]  ? __pfx_lock_release+0x10/0x10
[  116.958571][ T7200]  ? trace_lock_acquire+0x14a/0x1d0
[  116.959932][ T7200]  ? __pfx_vfs_read+0x10/0x10
[  116.961364][ T7200]  ? __pfx___mutex_lock+0x10/0x10
[  116.962744][ T7200]  ? __fget_files+0x244/0x3f0
[  116.963977][ T7200]  ksys_read+0x12f/0x260
[  116.965094][ T7200]  ? __pfx_ksys_read+0x10/0x10
[  116.966378][ T7200]  __do_fast_syscall_32+0x73/0x120
[  116.967747][ T7200]  do_fast_syscall_32+0x32/0x80
[  116.969047][ T7200]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  116.970720][ T7200] RIP: 0023:0xf7f17579
[  116.971792][ T7200] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  116.976811][ T7200] RSP: 002b:00000000f56755a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  116.979027][ T7200] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f5675620
[  116.981097][ T7200] RDX: 000000000000000f RSI: 00000000f739bff4 RDI: 0000000000000000
[  116.983176][ T7200] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  116.985240][ T7200] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  116.987304][ T7200] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  116.989469][ T7200]  </TASK>
[  117.142368][ T7216] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  117.676479][ T7223] ptrace attach of "/syz-executor exec"[5343] was attempted by "/syz-executor exec"[7223]
[  118.009653][ T7229] fuse: Bad value for 'group_id'
[  118.013505][ T7229] fuse: Bad value for 'group_id'
[  118.015534][ T7230] fuse: Bad value for 'group_id'
[  118.026968][ T7230] fuse: Bad value for 'group_id'
[  118.111984][ T7236] FAULT_INJECTION: forcing a failure.
[  118.111984][ T7236] name failslab, interval 1, probability 0, space 0, times 0
[  118.115489][ T7236] CPU: 0 UID: 0 PID: 7236 Comm: syz.0.568 Not tainted 6.12.0-rc1-syzkaller-00046-g7ec462100ef9 #0
[  118.118223][ T7236] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  118.120935][ T7236] Call Trace:
[  118.121805][ T7236]  <TASK>
[  118.122568][ T7236]  dump_stack_lvl+0x16c/0x1f0
[  118.123793][ T7236]  should_fail_ex+0x497/0x5b0
[  118.125028][ T7236]  ? fs_reclaim_acquire+0xae/0x160
[  118.126362][ T7236]  should_failslab+0xc2/0x120
[  118.127567][ T7236]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  118.128937][ T7236]  ? __kernfs_new_node+0xd3/0x890
[  118.130242][ T7236]  __kernfs_new_node+0xd3/0x890
[  118.131493][ T7236]  ? __pfx___kernfs_new_node+0x10/0x10
[  118.132919][ T7236]  ? kernfs_add_one+0x3d1/0x520
[  118.134204][ T7236]  ? __pfx_lock_release+0x10/0x10
[  118.135508][ T7236]  ? lock_acquire+0x2f/0xb0
[  118.136687][ T7236]  ? kernfs_add_one+0x39d/0x520
[  118.137924][ T7236]  kernfs_new_node+0x186/0x240
[  118.139159][ T7236]  ? up_write+0x1b2/0x520
[  118.140257][ T7236]  __kernfs_create_file+0x53/0x350
[  118.141590][ T7236]  sysfs_add_file_mode_ns+0x1ff/0x3b0
[  118.142978][ T7236]  internal_create_group+0x565/0xe50
[  118.144336][ T7236]  ? __pfx_internal_create_group+0x10/0x10
[  118.145862][ T7236]  ? kernfs_create_link+0x1bd/0x240
[  118.147309][ T7236]  internal_create_groups+0x9d/0x150
[  118.148769][ T7236]  device_add+0x733/0x1a70
[  118.150004][ T7236]  ? __pfx_device_add+0x10/0x10
[  118.151305][ T7236]  ? __pfx___mutex_lock+0x10/0x10
[  118.152701][ T7236]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  118.154303][ T7236]  input_register_device+0x860/0x10e0
[  118.155777][ T7236]  uinput_ioctl_handler.isra.0+0x130c/0x1d70
[  118.157347][ T7236]  ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10
[  118.159088][ T7236]  ? trace_lock_acquire+0x14a/0x1d0
[  118.160443][ T7236]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  118.162020][ T7236]  ? __pfx_uinput_compat_ioctl+0x10/0x10
[  118.163491][ T7236]  __do_compat_sys_ioctl+0x259/0x2b0
[  118.164872][ T7236]  __do_fast_syscall_32+0x73/0x120
[  118.166220][ T7236]  do_fast_syscall_32+0x32/0x80
[  118.167476][ T7236]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  118.169339][ T7236] RIP: 0023:0xf7f17579
[  118.170431][ T7236] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  118.175329][ T7236] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  118.177483][ T7236] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000005501
[  118.179484][ T7236] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  118.181540][ T7236] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  118.183579][ T7236] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  118.185624][ T7236] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  118.187687][ T7236]  </TASK>
[  118.317577][ T5388] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  118.467320][ T5388] usb 8-1: Using ep0 maxpacket: 32
[  118.475626][ T5388] usb 8-1: unable to read config index 0 descriptor/start: -61
[  118.478993][ T5388] usb 8-1: can't read configurations, error -61
[  118.588469][ T7248] netlink: 'syz.0.573': attribute type 4 has an invalid length.
[  118.590926][ T7248] netlink: 'syz.0.573': attribute type 4 has an invalid length.
[  118.607036][ T5388] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  118.730486][ T7254] netlink: 8 bytes leftover after parsing attributes in process `syz.0.575'.
[  118.733709][ T7254] netlink: 4 bytes leftover after parsing attributes in process `syz.0.575'.
[  118.735955][ T7254] netlink: 4 bytes leftover after parsing attributes in process `syz.0.575'.
[  118.741108][ T7254] FAULT_INJECTION: forcing a failure.
[  118.741108][ T7254] name failslab, interval 1, probability 0, space 0, times 0
[  118.744334][ T7254] CPU: 2 UID: 0 PID: 7254 Comm: syz.0.575 Not tainted 6.12.0-rc1-syzkaller-00046-g7ec462100ef9 #0
[  118.747066][ T7254] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  118.749777][ T7254] Call Trace:
[  118.750645][ T7254]  <TASK>
[  118.751417][ T7254]  dump_stack_lvl+0x16c/0x1f0
[  118.752640][ T7254]  should_fail_ex+0x497/0x5b0
[  118.753879][ T7254]  ? fs_reclaim_acquire+0xae/0x160
[  118.755206][ T7254]  should_failslab+0xc2/0x120
[  118.756426][ T7254]  __kmalloc_noprof+0xcb/0x410
[  118.757673][ T7254]  ? hlock_class+0x4e/0x130
[  118.758850][ T7254]  offload_action_alloc+0x29/0xf0
[  118.760158][ T7254]  tcf_action_offload_add_ex+0x1b7/0x670
[  118.761626][ T7254]  ? __pfx_tcf_action_offload_add_ex+0x10/0x10
[  118.763252][ T7254]  ? __pfx___lock_acquire+0x10/0x10
[  118.764630][ T7254]  tcf_action_init+0x590/0x810
[  118.765886][ T7254]  ? __pfx_tcf_action_init+0x10/0x10
[  118.767291][ T7254]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  118.768859][ T7254]  ? is_bpf_text_address+0x94/0x1a0
[  118.770208][ T7254]  ? kernel_text_address+0x8d/0x100
[  118.771553][ T7254]  ? stack_depot_save_flags+0x28/0x900
[  118.772967][ T7254]  tcf_action_add+0xfd/0x5d0
[  118.774200][ T7254]  ? __pfx_tcf_action_add+0x10/0x10
[  118.775581][ T7254]  ? __nla_parse+0x40/0x60
[  118.776746][ T7254]  tc_ctl_action+0x35d/0x470
[  118.777964][ T7254]  ? __pfx_tc_ctl_action+0x10/0x10
[  118.779366][ T7254]  ? rtnetlink_rcv_msg+0x35a/0xea0
[  118.780699][ T7254]  ? __pfx_tc_ctl_action+0x10/0x10
[  118.782041][ T7254]  rtnetlink_rcv_msg+0x3c7/0xea0
[  118.783334][ T7254]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  118.784740][ T7254]  ? __pfx___dev_queue_xmit+0x10/0x10
[  118.786181][ T7254]  netlink_rcv_skb+0x165/0x410
[  118.787430][ T7254]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  118.788841][ T7254]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  118.790236][ T7254]  ? netlink_deliver_tap+0x1ae/0xcf0
[  118.791605][ T7254]  netlink_unicast+0x53c/0x7f0
[  118.792853][ T7254]  ? __pfx_netlink_unicast+0x10/0x10
[  118.794235][ T7254]  ? __phys_addr_symbol+0x30/0x80
[  118.795549][ T7254]  ? __check_object_size+0x488/0x710
[  118.796929][ T7254]  netlink_sendmsg+0x8b8/0xd70
[  118.798198][ T7254]  ? __pfx_netlink_sendmsg+0x10/0x10
[  118.799584][ T7254]  ? lock_acquire+0x2f/0xb0
[  118.800795][ T7254]  ____sys_sendmsg+0x9ae/0xb40
[  118.802067][ T7254]  ? __pfx_____sys_sendmsg+0x10/0x10
[  118.803440][ T7254]  ? get_compat_msghdr+0x11b/0x170
[  118.804779][ T7254]  ? __pfx___lock_acquire+0x10/0x10
[  118.806189][ T7254]  ___sys_sendmsg+0x135/0x1e0
[  118.807432][ T7254]  ? __pfx____sys_sendmsg+0x10/0x10
[  118.808796][ T7254]  ? lock_acquire+0x2f/0xb0
[  118.809998][ T7254]  ? __fget_files+0x40/0x3f0
[  118.811229][ T7254]  ? fdget+0x176/0x210
[  118.812303][ T7254]  __sys_sendmsg+0x117/0x1f0
[  118.813527][ T7254]  ? __pfx___sys_sendmsg+0x10/0x10
[  118.814861][ T7254]  ? __pfx___seccomp_filter+0x10/0x10
[  118.816263][ T7254]  ? __secure_computing+0x273/0x3f0
[  118.817628][ T7254]  __do_fast_syscall_32+0x73/0x120
[  118.818961][ T7254]  do_fast_syscall_32+0x32/0x80
[  118.820243][ T7254]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  118.821905][ T7254] RIP: 0023:0xf7f17579
[  118.822974][ T7254] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  118.828001][ T7254] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  118.830147][ T7254] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000180
[  118.832172][ T7254] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  118.834206][ T7254] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  118.836234][ T7254] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  118.838266][ T7254] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  118.840299][ T7254]  </TASK>
[  118.841185][ T5388] usb 8-1: Using ep0 maxpacket: 32
[  118.905894][ T5388] usb 8-1: unable to read config index 0 descriptor/start: -61
[  118.909405][ T5388] usb 8-1: can't read configurations, error -61
[  118.922346][ T5388] usb usb8-port1: attempt power cycle
[  118.939064][ T7259] overlayfs: missing 'workdir'
[  119.257324][ T5388] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  119.277351][   T35] net_ratelimit: 34 callbacks suppressed
[  119.277368][   T35] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  119.277538][ T5388] usb 8-1: Using ep0 maxpacket: 32
[  119.285426][ T5388] usb 8-1: unable to read config index 0 descriptor/start: -61
[  119.290364][ T5388] usb 8-1: can't read configurations, error -61
[  119.351258][    T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  119.427863][ T5388] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  119.458841][ T5388] usb 8-1: Using ep0 maxpacket: 32
[  119.471526][ T5388] usb 8-1: unable to read config index 0 descriptor/start: -61
[  119.472915][ T5390] IPVS: starting estimator thread 0...
[  119.473559][ T5388] usb 8-1: can't read configurations, error -61
[  119.476610][ T7277] IPVS: rr: TCP 172.20.20.170:0 - no destination available
[  119.477278][ T7277] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  119.492934][ T5388] usb usb8-port1: unable to enumerate USB device
[  119.576808][ T7278] IPVS: using max 34 ests per chain, 81600 per kthread
[  120.307117][ T5387] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  120.947615][ T5388] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  121.098846][ T7293] netlink: 4 bytes leftover after parsing attributes in process `syz.1.589'.
[  121.348663][ T5414] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  121.365834][ T7303] netlink: set zone limit has 4 unknown bytes
[  121.423576][ T7305] xt_CT: You must specify a L4 protocol and not use inversions on it
[  121.433541][ T7305] netlink: 8 bytes leftover after parsing attributes in process `syz.3.594'.
[  121.487198][ T7307] netlink: 8 bytes leftover after parsing attributes in process `syz.3.595'.
[  121.673479][ T7310] netlink: 8 bytes leftover after parsing attributes in process `syz.3.596'.
[  122.188934][ T7315] random: crng reseeded on system resumption
[  122.205863][ T7315] kvm: vcpu 2046: requested lapic timer restore with starting count register 0x390=2927474123 (5854948246 ns) > initial count (1287066782 ns). Using initial count to start timer.
[  122.387087][ T5387] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  122.421026][ T7327] netlink: set zone limit has 4 unknown bytes
[  122.651856][ T7337] 9pnet_virtio: no channels available for device syz
[  122.961240][   T12] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  123.082052][   T12] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  123.208607][   T12] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  123.234221][ T5358] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  123.238977][ T5358] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  123.241808][ T5358] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  123.244270][ T5358] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  123.246325][ T5358] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  123.248343][ T5358] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  123.271603][   T12] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  123.338345][ T7356] chnl_net:caif_netlink_parms(): no params data found
[  123.486490][   T12] bridge_slave_0: left allmulticast mode
[  123.489247][   T12] bridge_slave_0: left promiscuous mode
[  123.491148][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  123.909141][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  123.914119][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  123.919333][   T12] bond0 (unregistering): Released all slaves
[  123.923856][ T7356] bridge0: port 1(bridge_slave_0) entered blocking state
[  123.925760][ T7356] bridge0: port 1(bridge_slave_0) entered disabled state
[  123.927708][ T7356] bridge_slave_0: entered allmulticast mode
[  123.929728][ T7356] bridge_slave_0: entered promiscuous mode
[  123.932173][ T7370] netlink: 20 bytes leftover after parsing attributes in process `syz.3.620'.
[  123.935299][ T7373] netlink: 60 bytes leftover after parsing attributes in process `syz.2.619'.
[  123.985986][ T7374] 0ªX¹¦D: left allmulticast mode
[  124.027400][ T7374] bridge0: port 2(bridge_slave_1) entered disabled state
[  124.030372][ T7374] bridge0: port 1(bridge_slave_0) entered disabled state
[  124.165834][ T7374] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  124.189751][ T7374] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  124.279098][ T7374] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  124.281523][ T7374] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  124.284600][ T7374] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  124.287364][ T7374] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  124.310968][ T7356] bridge0: port 2(bridge_slave_1) entered blocking state
[  124.314663][ T7356] bridge0: port 2(bridge_slave_1) entered disabled state
[  124.327115][ T7356] bridge_slave_1: entered allmulticast mode
[  124.329179][ T7356] bridge_slave_1: entered promiscuous mode
[  124.379675][ T7356] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  124.383930][ T7356] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  124.413876][ T7356] team0: Port device team_slave_0 added
[  124.434613][ T7356] team0: Port device team_slave_1 added
[  124.501483][ T7356] batman_adv: batadv0: Adding interface: batadv_slave_0
[  124.503581][ T7356] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  124.511907][ T7356] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  124.515843][ T7356] batman_adv: batadv0: Adding interface: batadv_slave_1
[  124.527936][ T7356] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  124.534672][ T7356] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  124.582438][ T7356] hsr_slave_0: entered promiscuous mode
[  124.585927][ T7356] hsr_slave_1: entered promiscuous mode
[  124.590344][ T7356] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  124.592638][ T7356] Cannot create hsr debugfs directory
[  124.619160][   T12] hsr_slave_0: left promiscuous mode
[  124.622333][   T12] hsr_slave_1: left promiscuous mode
[  124.625572][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  124.630506][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  124.644965][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  124.648019][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  124.674676][   T12] veth1_vlan: left promiscuous mode
[  124.676943][   T12] veth0_vlan: left promiscuous mode
[  125.278239][ T5356] Bluetooth: hci0: command tx timeout
[  125.612725][   T12] team0 (unregistering): Port device team_slave_1 removed
[  125.696034][   T12] team0 (unregistering): Port device team_slave_0 removed
[  126.319776][ T7404] netlink: 12 bytes leftover after parsing attributes in process `syz.2.627'.
[  126.759840][   T12] IPVS: stop unused estimator thread 0...
[  127.022501][ T7356] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  127.029633][ T7356] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  127.039399][ T7356] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  127.047101][ T7356] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  127.122285][ T7356] 8021q: adding VLAN 0 to HW filter on device bond0
[  127.153236][ T7356] 8021q: adding VLAN 0 to HW filter on device team0
[  127.164369][ T1156] bridge0: port 1(bridge_slave_0) entered blocking state
[  127.166381][ T1156] bridge0: port 1(bridge_slave_0) entered forwarding state
[  127.173323][ T1156] bridge0: port 2(bridge_slave_1) entered blocking state
[  127.175141][ T1156] bridge0: port 2(bridge_slave_1) entered forwarding state
[  127.357790][ T5356] Bluetooth: hci0: command tx timeout
[  127.389458][ T7356] 8021q: adding VLAN 0 to HW filter on device batadv0
[  127.439519][ T7356] veth0_vlan: entered promiscuous mode
[  127.458238][ T7356] veth1_vlan: entered promiscuous mode
[  127.482094][ T7356] veth0_macvtap: entered promiscuous mode
[  127.486128][ T7356] veth1_macvtap: entered promiscuous mode
[  127.503865][ T7356] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  127.506585][ T7356] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  127.514698][ T7356] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  127.528655][ T7356] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  127.534027][ T7356] batman_adv: batadv0: Interface activated: batadv_slave_0
[  127.545209][ T7356] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  127.551541][ T7356] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  127.554930][ T7356] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  127.561243][ T7356] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  127.565897][ T7356] batman_adv: batadv0: Interface activated: batadv_slave_1
[  127.576431][ T7356] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  127.581447][ T7356] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  127.584301][ T7356] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  127.587989][ T7356] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  127.645143][ T7462] netlink: 4 bytes leftover after parsing attributes in process `syz.2.637'.
[  127.680765][   T69] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.683196][   T69] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.702986][ T1213] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.709287][ T1213] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.784487][ T7474] netlink: 8 bytes leftover after parsing attributes in process `syz.0.640'.
[  128.615601][ T7504] netlink: 20 bytes leftover after parsing attributes in process `syz.1.652'.
[  128.926699][   T56] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  129.106723][   T56] usb 5-1: Using ep0 maxpacket: 32
[  129.111320][   T56] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 32
[  129.127982][   T56] usb 5-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[  129.130921][   T56] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  129.133553][   T56] usb 5-1: Product: syz
[  129.134996][   T56] usb 5-1: Manufacturer: syz
[  129.136544][   T56] usb 5-1: SerialNumber: syz
[  129.157365][   T56] usb 5-1: config 0 descriptor??
[  129.159592][ T7515] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  129.166092][   T56] hub 5-1:0.0: bad descriptor, ignoring hub
[  129.168583][   T56] hub 5-1:0.0: probe with driver hub failed with error -5
[  129.172894][   T56] input: syz syz as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input12
[  129.367016][ T5388] usb 5-1: USB disconnect, device number 5
[  129.367050][    C1] usbtouchscreen 5-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19
[  129.411542][ T7531] tipc: Started in network mode
[  129.413010][ T7531] tipc: Node identity aaaaaaaaaa32, cluster identity 4711
[  129.415474][ T7531] tipc: Enabled bearer <eth:vlan0>, priority 10
[  129.443739][ T7531] net_ratelimit: 1 callbacks suppressed
[  129.443756][ T7531] openvswitch: netlink: Missing key (keys=48, expected=80)
[  129.456355][ T7531] tipc: Resetting bearer <eth:vlan0>
[  129.491976][ T7531] tipc: Disabling bearer <eth:vlan0>
[  130.672272][   T39] audit: type=1326 audit(2000000295.887:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7546 comm="syz.0.664" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7ffd0000
[  131.050424][   T39] audit: type=1326 audit(2000000296.267:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7555 comm="syz.2.667" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f3f579 code=0x7ffc0000
[  131.068579][   T39] audit: type=1326 audit(2000000296.267:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7555 comm="syz.2.667" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f3f579 code=0x7ffc0000
[  131.074037][   T39] audit: type=1326 audit(2000000296.277:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7555 comm="syz.2.667" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f3f579 code=0x7ffc0000
[  131.079622][   T39] audit: type=1326 audit(2000000296.277:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7555 comm="syz.2.667" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f3f579 code=0x7ffc0000
[  131.085285][   T39] audit: type=1326 audit(2000000296.277:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7555 comm="syz.2.667" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f3f579 code=0x7ffc0000
[  131.090826][   T39] audit: type=1326 audit(2000000296.277:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7555 comm="syz.2.667" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f3f579 code=0x7ffc0000
[  131.096263][   T39] audit: type=1326 audit(2000000296.277:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7555 comm="syz.2.667" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f3f579 code=0x7ffc0000
[  131.101775][   T39] audit: type=1326 audit(2000000296.277:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7555 comm="syz.2.667" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f3f579 code=0x7ffc0000
[  131.107584][   T39] audit: type=1326 audit(2000000296.277:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7555 comm="syz.2.667" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f3f579 code=0x7ffc0000
[  131.263998][ T7561] netlink: 108 bytes leftover after parsing attributes in process `syz.2.669'.
[  131.295126][ T7561] IPVS: rr: TCP 172.20.20.170:0 - no destination available
[  131.741149][ T7579] netlink: 28 bytes leftover after parsing attributes in process `syz.1.676'.
[  131.746938][ T7579] vxcan0: tx drop: invalid sa for name 0x0000000000000001
[  132.148164][ T1374] ieee802154 phy0 wpan0: encryption failed: -22
[  132.150285][ T1374] ieee802154 phy1 wpan1: encryption failed: -22
[  132.398783][ T5358] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  132.401226][ T5358] Bluetooth: hci0: Injecting HCI hardware error event
[  132.738989][ T7587] xt_connbytes: Forcing CT accounting to be enabled
[  132.741129][ T7587] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  133.304787][ T7608] autofs: Bad value for 'uid'
[  133.306093][ T7608] autofs: Bad value for 'uid'
[  133.416715][   T30] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  133.546766][ T1282] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  133.600268][   T30] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  133.602822][   T30] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  133.609018][   T30] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  133.613708][   T30] usb 8-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  133.621660][   T30] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  133.624047][   T30] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  133.626363][   T30] usb 8-1: Product: syz
[  133.628670][   T30] usb 8-1: Manufacturer: syz
[  133.635308][   T30] cdc_wdm 8-1:1.0: probe with driver cdc_wdm failed with error -22
[  133.676885][ T1282] usb 5-1: device descriptor read/64, error -71
[  133.759480][ T7617] syz.2.688: attempt to access beyond end of device
[  133.759480][ T7617] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  133.763289][ T7617] FAT-fs (nbd2): unable to read boot sector
[  133.840474][ T7600] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.683'.
[  133.843145][ T7600] openvswitch: netlink: IP tunnel attribute has 3056 unknown bytes.
[  133.916846][ T1282] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  134.008870][   T56] usb 8-1: USB disconnect, device number 11
[  134.047872][ T1282] usb 5-1: device descriptor read/64, error -71
[  134.157978][ T1282] usb usb5-port1: attempt power cycle
[  134.517099][ T1282] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  134.548890][ T1282] usb 5-1: device descriptor read/8, error -71
[  134.796898][ T1282] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  134.817335][ T1282] usb 5-1: device descriptor read/8, error -71
[  134.826756][   T56] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  134.930278][ T1282] usb usb5-port1: unable to enumerate USB device
[  135.008093][   T56] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  135.012123][   T56] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  135.014613][   T56] usb 8-1: New USB device found, idVendor=05ac, idProduct=0269, bcdDevice= 0.00
[  135.016901][   T56] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  135.021552][   T56] usb 8-1: config 0 descriptor??
[  135.433575][ T7625] pim6reg: entered allmulticast mode
[  135.444312][ T7625] batadv_slave_0: entered allmulticast mode
[  136.353419][   T39] kauditd_printk_skb: 17 callbacks suppressed
[  136.353438][   T39] audit: type=1107 audit(2000000301.567:191): pid=7634 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='§'
[  136.358878][ T7635] netlink: 4 bytes leftover after parsing attributes in process `syz.0.693'.
[  136.362309][ T7635] netlink: 287 bytes leftover after parsing attributes in process `syz.0.693'.
[  136.364812][ T7635] netlink: 287 bytes leftover after parsing attributes in process `syz.0.693'.
[  136.667035][ T7653] netlink: 68 bytes leftover after parsing attributes in process `syz.1.699'.
[  136.937732][ T7660] netlink: 224 bytes leftover after parsing attributes in process `syz.0.702'.
[  137.485858][ T7670] netlink: 8 bytes leftover after parsing attributes in process `syz.2.705'.
[  137.629799][   T56] usbhid 8-1:0.0: can't add hid device: -71
[  137.631337][   T56] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[  137.635739][   T56] usb 8-1: USB disconnect, device number 12
[  138.813544][ T7695] netlink: 'syz.1.715': attribute type 1 has an invalid length.
[  138.958140][ T7705] FAULT_INJECTION: forcing a failure.
[  138.958140][ T7705] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  138.966821][ T7705] CPU: 1 UID: 0 PID: 7705 Comm: syz.2.718 Not tainted 6.12.0-rc1-syzkaller-00046-g7ec462100ef9 #0
[  138.969529][ T7705] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  138.972321][ T7705] Call Trace:
[  138.973351][ T7705]  <TASK>
[  138.974224][ T7705]  dump_stack_lvl+0x16c/0x1f0
[  138.975815][ T7705]  should_fail_ex+0x497/0x5b0
[  138.977108][ T7705]  _copy_to_user+0x30/0xc0
[  138.978719][ T7705]  msr_read+0x14f/0x250
[  138.980406][ T7705]  ? __pfx_msr_read+0x10/0x10
[  138.982144][ T7705]  ? bpf_lsm_file_permission+0x9/0x10
[  138.984096][ T7705]  ? security_file_permission+0x71/0x210
[  138.986120][ T7705]  ? __pfx_msr_read+0x10/0x10
[  138.987833][ T7705]  vfs_read+0x1ce/0xbd0
[  138.989354][ T7705]  ? __fget_files+0x23a/0x3f0
[  138.991068][ T7705]  ? __pfx_lock_release+0x10/0x10
[  138.992891][ T7705]  ? trace_lock_acquire+0x14a/0x1d0
[  138.994754][ T7705]  ? __pfx_vfs_read+0x10/0x10
[  138.996488][ T7705]  ? lock_acquire+0x2f/0xb0
[  138.997137][ T7702] netlink: 24 bytes leftover after parsing attributes in process `syz.1.717'.
[  138.998174][ T7705]  ? __fget_files+0x40/0x3f0
[  139.001420][ T7702] netlink: 228 bytes leftover after parsing attributes in process `syz.1.717'.
[  139.002627][ T7705]  ? __fget_files+0x244/0x3f0
[  139.007496][ T7705]  ksys_read+0x12f/0x260
[  139.009082][ T7705]  ? __pfx_ksys_read+0x10/0x10
[  139.010819][ T7705]  __do_fast_syscall_32+0x73/0x120
[  139.012677][ T7705]  do_fast_syscall_32+0x32/0x80
[  139.014457][ T7705]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  139.016659][ T7705] RIP: 0023:0xf7f3f579
[  139.017886][ T7705] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  139.022997][ T7705] RSP: 002b:00000000f56c656c EFLAGS: 00000296 ORIG_RAX: 0000000000000003
[  139.025180][ T7705] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020019680
[  139.027276][ T7705] RDX: 0000000000018ff8 RSI: 0000000000000000 RDI: 0000000000000000
[  139.029343][ T7705] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  139.031407][ T7705] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  139.033526][ T7705] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  139.035593][ T7705]  </TASK>
[  139.036505][    C1] vkms_vblank_simulate: vblank timer overrun
[  139.054934][ T7700] netfs: Couldn't get user pages (rc=-14)
[  139.298377][ T7718] netlink: 68 bytes leftover after parsing attributes in process `syz.2.722'.
[  139.385639][ T7722] FAULT_INJECTION: forcing a failure.
[  139.385639][ T7722] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  139.391824][ T7722] CPU: 0 UID: 0 PID: 7722 Comm: syz.1.721 Not tainted 6.12.0-rc1-syzkaller-00046-g7ec462100ef9 #0
[  139.394600][ T7722] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  139.397472][ T7722] Call Trace:
[  139.398360][ T7722]  <TASK>
[  139.399159][ T7722]  dump_stack_lvl+0x16c/0x1f0
[  139.400404][ T7722]  should_fail_ex+0x497/0x5b0
[  139.401667][ T7722]  ? fs_reclaim_acquire+0xae/0x160
[  139.403011][ T7722]  should_fail_alloc_page+0xe7/0x130
[  139.404395][ T7722]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  139.406195][ T7722]  ? mark_lock+0xb5/0xc60
[  139.407331][ T7722]  __alloc_pages_noprof+0x190/0x25c0
[  139.408711][ T7722]  ? __pfx_mark_lock+0x10/0x10
[  139.409980][ T7722]  ? __pfx_mark_lock+0x10/0x10
[  139.411251][ T7722]  ? hlock_class+0x4e/0x130
[  139.412442][ T7722]  ? __lock_acquire+0xbdd/0x3ce0
[  139.413902][ T7722]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  139.415410][ T7722]  ? hlock_class+0x4e/0x130
[  139.416629][ T7722]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  139.418240][ T7722]  ? policy_nodemask+0xea/0x4e0
[  139.419535][ T7722]  alloc_pages_mpol_noprof+0x2c9/0x610
[  139.421001][ T7722]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  139.422586][ T7722]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  139.424081][ T7722]  folio_alloc_mpol_noprof+0x36/0xd0
[  139.425485][ T7722]  vma_alloc_folio_noprof+0xee/0x1b0
[  139.426869][ T7722]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  139.428412][ T7722]  ? find_held_lock+0x2d/0x110
[  139.429682][ T7722]  do_pte_missing+0x2010/0x3e50
[  139.430971][ T7722]  ? rcu_is_watching+0x12/0xc0
[  139.432235][ T7722]  __handle_mm_fault+0x100a/0x2a10
[  139.433624][ T7722]  ? __pfx___handle_mm_fault+0x10/0x10
[  139.435059][ T7722]  ? __pfx_lock_release+0x10/0x10
[  139.436373][ T7722]  ? follow_page_pte+0x50d/0x1eb0
[  139.437706][ T7722]  handle_mm_fault+0x3fa/0xaa0
[  139.438970][ T7722]  __get_user_pages+0x90f/0x3b90
[  139.440262][ T7722]  ? __pfx_mt_find+0x10/0x10
[  139.441489][ T7722]  ? __pfx___get_user_pages+0x10/0x10
[  139.442887][ T7722]  populate_vma_page_range+0x27f/0x3a0
[  139.444309][ T7722]  ? __pfx_populate_vma_page_range+0x10/0x10
[  139.445886][ T7722]  ? __pfx_find_vma_intersection+0x10/0x10
[  139.447405][ T7722]  ? do_mlock+0x348/0x7d0
[  139.448539][ T7722]  __mm_populate+0x1d6/0x380
[  139.449873][ T7722]  ? __pfx___mm_populate+0x10/0x10
[  139.451226][ T7722]  ? up_write+0x1b2/0x520
[  139.452372][ T7722]  do_mlock+0x412/0x7d0
[  139.453503][ T7722]  ? __fget_files+0x244/0x3f0
[  139.454751][ T7722]  ? __pfx_do_mlock+0x10/0x10
[  139.456006][ T7722]  ? fput+0x30/0x390
[  139.457067][ T7722]  ? ksys_write+0x1ad/0x260
[  139.458275][ T7722]  ? __pfx_ksys_write+0x10/0x10
[  139.459566][ T7722]  __ia32_sys_mlock+0x57/0x80
[  139.460830][ T7722]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  139.462540][ T7722]  __do_fast_syscall_32+0x73/0x120
[  139.463908][ T7722]  do_fast_syscall_32+0x32/0x80
[  139.465168][ T7722]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  139.466827][ T7722] RIP: 0023:0xf747e579
[  139.467901][ T7722] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  139.472893][ T7722] RSP: 002b:00000000f574556c EFLAGS: 00000296 ORIG_RAX: 0000000000000096
[  139.475047][ T7722] RAX: ffffffffffffffda RBX: 0000000020c00000 RCX: 0000000000400000
[  139.477110][ T7722] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  139.479169][ T7722] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  139.481252][ T7722] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  139.483317][ T7722] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  139.485393][ T7722]  </TASK>
[  140.010958][ T7725] dlm: no locking on control device
[  141.170130][ T7741] FAULT_INJECTION: forcing a failure.
[  141.170130][ T7741] name failslab, interval 1, probability 0, space 0, times 0
[  141.176864][ T7741] CPU: 3 UID: 0 PID: 7741 Comm: syz.2.728 Not tainted 6.12.0-rc1-syzkaller-00046-g7ec462100ef9 #0
[  141.180365][ T7741] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  141.184021][ T7741] Call Trace:
[  141.185205][ T7741]  <TASK>
[  141.186255][ T7741]  dump_stack_lvl+0x16c/0x1f0
[  141.187922][ T7741]  should_fail_ex+0x497/0x5b0
[  141.189565][ T7741]  ? fs_reclaim_acquire+0xae/0x160
[  141.191271][ T7741]  should_failslab+0xc2/0x120
[  141.192931][ T7741]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  141.194850][ T7741]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  141.197079][ T7741]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  141.199153][ T7741]  mmu_topup_memory_caches+0x22/0xd0
[  141.201032][ T7741]  kvm_mmu_load+0xda/0x20d0
[  141.202640][ T7741]  ? mark_held_locks+0x9f/0xe0
[  141.204344][ T7741]  ? kvm_apic_has_interrupt+0xb6/0x190
[  141.206267][ T7741]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  141.208262][ T7741]  ? kvm_guest_time_update+0x780/0xeb0
[  141.210297][ T7741]  ? clear_pending_if_disabled+0xa9/0x210
[  141.212304][ T7741]  ? __pfx_kvm_mmu_load+0x10/0x10
[  141.214117][ T7741]  ? kvm_cpu_has_injectable_intr+0x9b/0x1a0
[  141.216206][ T7741]  ? kvm_check_and_inject_events+0x57f/0x12e0
[  141.218365][ T7741]  ? record_steal_time+0x1/0xba0
[  141.220136][ T7741]  vcpu_run+0x2e22/0x4c90
[  141.221684][ T7741]  ? __pfx_vmx_vcpu_load_vmcs+0x10/0x10
[  141.223630][ T7741]  ? __pfx_vcpu_run+0x10/0x10
[  141.225405][ T7741]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  141.226940][ T7741]  ? rcu_watching_snap_stopped_since+0x70/0x110
[  141.228704][ T7741]  ? trace_lock_acquire+0x14a/0x1d0
[  141.230118][ T7741]  ? __local_bh_enable_ip+0xa4/0x120
[  141.231537][ T7741]  ? kvm_arch_vcpu_ioctl_run+0x14d/0x1730
[  141.233082][ T7741]  ? lock_acquire+0x2f/0xb0
[  141.234397][ T7741]  ? kvm_arch_vcpu_ioctl_run+0x447/0x1730
[  141.235923][ T7741]  kvm_arch_vcpu_ioctl_run+0x447/0x1730
[  141.237429][ T7741]  kvm_vcpu_ioctl+0x6c7/0x1510
[  141.239112][ T7741]  ? tomoyo_path_number_perm+0x467/0x5b0
[  141.241227][ T7741]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  141.243175][ T7741]  ? tomoyo_path_number_perm+0x190/0x5b0
[  141.244914][ T7741]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  141.246967][ T7741]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  141.249155][ T7741]  ? do_vfs_ioctl+0x513/0x1950
[  141.250957][ T7741]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  141.252841][ T7741]  ? trace_lock_acquire+0x14a/0x1d0
[  141.254787][ T7741]  kvm_vcpu_compat_ioctl+0x210/0x3f0
[  141.256717][ T7741]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  141.259018][ T7741]  ? __fget_files+0x244/0x3f0
[  141.260945][ T7741]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  141.263118][ T7741]  __do_compat_sys_ioctl+0x259/0x2b0
[  141.265130][ T7741]  __do_fast_syscall_32+0x73/0x120
[  141.267065][ T7741]  do_fast_syscall_32+0x32/0x80
[  141.268856][ T7741]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  141.271217][ T7741] RIP: 0023:0xf7f3f579
[  141.272745][ T7741] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  141.278179][ T7741] RSP: 002b:00000000f56c656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  141.280383][ T7741] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae80
[  141.282496][ T7741] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  141.284598][ T7741] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  141.286698][ T7741] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  141.289212][ T7741] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  141.292009][ T7741]  </TASK>
[  141.629502][ T7757] netlink: 8 bytes leftover after parsing attributes in process `syz.1.732'.
[  141.709971][ T7758] FAULT_INJECTION: forcing a failure.
[  141.709971][ T7758] name failslab, interval 1, probability 0, space 0, times 0
[  141.713366][ T7758] CPU: 3 UID: 0 PID: 7758 Comm: syz.2.733 Not tainted 6.12.0-rc1-syzkaller-00046-g7ec462100ef9 #0
[  141.716327][ T7758] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  141.719146][ T7758] Call Trace:
[  141.720025][ T7758]  <TASK>
[  141.720821][ T7758]  dump_stack_lvl+0x16c/0x1f0
[  141.722079][ T7758]  should_fail_ex+0x497/0x5b0
[  141.723334][ T7758]  ? fs_reclaim_acquire+0xae/0x160
[  141.724685][ T7758]  should_failslab+0xc2/0x120
[  141.725940][ T7758]  __kmalloc_node_noprof+0xd1/0x440
[  141.727314][ T7758]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  141.728747][ T7758]  __kvmalloc_node_noprof+0xad/0x1a0
[  141.730153][ T7758]  alloc_netdev_mqs+0xc29/0x12a0
[  141.731466][ T7758]  rtnl_create_link+0xbed/0xf10
[  141.732751][ T7758]  __rtnl_newlink+0x10b3/0x1920
[  141.734048][ T7758]  ? __pfx___rtnl_newlink+0x10/0x10
[  141.735431][ T7758]  rtnl_newlink+0x67/0xa0
[  141.736612][ T7758]  ? __pfx_rtnl_newlink+0x10/0x10
[  141.737959][ T7758]  rtnetlink_rcv_msg+0x3c7/0xea0
[  141.739271][ T7758]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  141.740710][ T7758]  ? __pfx___lock_acquire+0x10/0x10
[  141.742114][ T7758]  netlink_rcv_skb+0x165/0x410
[  141.743381][ T7758]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  141.744817][ T7758]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  141.746245][ T7758]  ? netlink_deliver_tap+0x1ae/0xcf0
[  141.747637][ T7758]  netlink_unicast+0x53c/0x7f0
[  141.748906][ T7758]  ? __pfx_netlink_unicast+0x10/0x10
[  141.750313][ T7758]  ? __phys_addr_symbol+0x30/0x80
[  141.751643][ T7758]  ? __check_object_size+0x488/0x710
[  141.753048][ T7758]  netlink_sendmsg+0x8b8/0xd70
[  141.754317][ T7758]  ? __pfx_netlink_sendmsg+0x10/0x10
[  141.755710][ T7758]  ? lock_acquire+0x2f/0xb0
[  141.757185][ T7758]  ____sys_sendmsg+0x9ae/0xb40
[  141.758454][ T7758]  ? __pfx_____sys_sendmsg+0x10/0x10
[  141.759843][ T7758]  ? get_compat_msghdr+0x11b/0x170
[  141.761222][ T7758]  ? __pfx___lock_acquire+0x10/0x10
[  141.762594][ T7758]  ___sys_sendmsg+0x135/0x1e0
[  141.763842][ T7758]  ? __pfx____sys_sendmsg+0x10/0x10
[  141.765233][ T7758]  ? lock_acquire+0x2f/0xb0
[  141.766501][ T7758]  ? __fget_files+0x40/0x3f0
[  141.767726][ T7758]  ? fdget+0x176/0x210
[  141.768805][ T7758]  __sys_sendmsg+0x117/0x1f0
[  141.770033][ T7758]  ? __pfx___sys_sendmsg+0x10/0x10
[  141.771382][ T7758]  ? __fget_files+0x244/0x3f0
[  141.772627][ T7758]  __do_fast_syscall_32+0x73/0x120
[  141.773983][ T7758]  do_fast_syscall_32+0x32/0x80
[  141.775266][ T7758]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  141.776984][ T7758] RIP: 0023:0xf7f3f579
[  141.778061][ T7758] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  141.783041][ T7758] RSP: 002b:00000000f56a556c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  141.785220][ T7758] RAX: ffffffffffffffda RBX: 000000000000000e RCX: 0000000020000140
[  141.787290][ T7758] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  141.789358][ T7758] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  141.791412][ T7758] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  141.793488][ T7758] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  141.795552][ T7758]  </TASK>
[  142.596295][ T7777] sp0: Synchronizing with TNC
[  142.711778][ T7780] netlink: 4 bytes leftover after parsing attributes in process `syz.3.739'.
[  142.726215][ T7780] netlink: 12 bytes leftover after parsing attributes in process `syz.3.739'.
[  143.010797][ T7783] netlink: 'syz.2.740': attribute type 3 has an invalid length.
[  143.012836][ T7783] netlink: 'syz.2.740': attribute type 1 has an invalid length.
[  143.014999][ T7783] netlink: 130160 bytes leftover after parsing attributes in process `syz.2.740'.
[  143.023892][ T7791] netlink: 4 bytes leftover after parsing attributes in process `syz.3.743'.
[  143.026547][ T7791] netlink: 'syz.3.743': attribute type 18 has an invalid length.
[  143.044789][ T7791] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  143.047946][ T7791] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  143.050301][ T7791] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  143.052596][ T7791] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  143.056047][ T7791] vxlan0: entered promiscuous mode
[  143.664869][ T7793] netlink: 8 bytes leftover after parsing attributes in process `syz.0.744'.
[  143.708878][ T5358] Bluetooth: hci0: unexpected event 0x09 length: 10 > 3
[  143.875930][ T7811] sp0: Synchronizing with TNC
[  143.948022][ T7814] netlink: 4 bytes leftover after parsing attributes in process `syz.1.751'.
[  143.953511][ T7814] netlink: 12 bytes leftover after parsing attributes in process `syz.1.751'.
[  144.194300][ T7820] netlink: 8 bytes leftover after parsing attributes in process `syz.2.756'.
[  144.208962][ T7820] netlink: 4 bytes leftover after parsing attributes in process `syz.2.756'.
[  144.211329][ T7820] netlink: 4 bytes leftover after parsing attributes in process `syz.2.756'.
[  145.401804][ T7851] sp0: Synchronizing with TNC
[  145.920683][ T7861] binder: BINDER_SET_CONTEXT_MGR already set
[  145.923482][ T7861] binder: 7860:7861 ioctl 4018620d 200001c0 returned -16
[  146.023999][   T39] audit: type=1804 audit(2000000311.237:192): pid=7867 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.768" name="/newroot/37/bus/cgroup.controllers" dev="overlay" ino=231 res=1 errno=0
[  146.065154][ T7872] binder: 7870:7872 ioctl c0306201 0 returned -14
[  148.043148][ T7896] sp0: Synchronizing with TNC
[  148.154914][ T7905] __nla_validate_parse: 4 callbacks suppressed
[  148.154979][ T7905] netlink: 4 bytes leftover after parsing attributes in process `syz.2.776'.
[  148.162877][ T7905] netlink: 12 bytes leftover after parsing attributes in process `syz.2.776'.
[  148.224270][ T7906] netlink: 4 bytes leftover after parsing attributes in process `syz.0.778'.
[  148.243084][    C0] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  148.509814][ T7919] FAULT_INJECTION: forcing a failure.
[  148.509814][ T7919] name failslab, interval 1, probability 0, space 0, times 0
[  148.513920][ T7919] CPU: 0 UID: 0 PID: 7919 Comm: syz.2.784 Not tainted 6.12.0-rc1-syzkaller-00046-g7ec462100ef9 #0
[  148.516691][ T7919] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  148.519518][ T7919] Call Trace:
[  148.520422][ T7919]  <TASK>
[  148.521231][ T7919]  dump_stack_lvl+0x16c/0x1f0
[  148.522484][ T7919]  should_fail_ex+0x497/0x5b0
[  148.523749][ T7919]  ? fs_reclaim_acquire+0xae/0x160
[  148.525108][ T7919]  should_failslab+0xc2/0x120
[  148.526348][ T7919]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  148.527758][ T7919]  ? vm_area_dup+0x53/0x300
[  148.528981][ T7919]  vm_area_dup+0x53/0x300
[  148.530134][ T7919]  __split_vma+0x181/0x1210
[  148.531333][ T7919]  ? __pfx___split_vma+0x10/0x10
[  148.532637][ T7919]  vms_gather_munmap_vmas+0x38f/0x1750
[  148.534075][ T7919]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  148.535630][ T7919]  ? mas_walk+0x6a6/0x910
[  148.536775][ T7919]  mmap_region+0x36c/0x2a50
[  148.537979][ T7919]  ? __pfx_mark_lock+0x10/0x10
[  148.539308][ T7919]  ? __pfx_mmap_region+0x10/0x10
[  148.540695][ T7919]  ? bpf_lsm_mmap_addr+0x9/0x10
[  148.541978][ T7919]  ? security_mmap_addr+0x6c/0x1e0
[  148.543306][ T7919]  ? __get_unmapped_area+0x26b/0x3a0
[  148.544685][ T7919]  do_mmap+0xc00/0xfc0
[  148.545783][ T7919]  vm_mmap_pgoff+0x1ba/0x360
[  148.547007][ T7919]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  148.548369][ T7919]  ? __fget_files+0x244/0x3f0
[  148.549618][ T7919]  ksys_mmap_pgoff+0x32c/0x5c0
[  148.550906][ T7919]  ? __ia32_sys_mmap_pgoff+0x11/0x1b0
[  148.552316][ T7919]  __do_fast_syscall_32+0x73/0x120
[  148.553679][ T7919]  do_fast_syscall_32+0x32/0x80
[  148.554981][ T7919]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  148.556654][ T7919] RIP: 0023:0xf7f3f579
[  148.557801][ T7919] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  148.563019][ T7919] RSP: 002b:00000000f56c656c EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[  148.565902][ T7919] RAX: ffffffffffffffda RBX: 00000000200fa000 RCX: 0000000000002000
[  148.568542][ T7919] RDX: 0000000000000000 RSI: 0000000000011012 RDI: 0000000000000007
[  148.571317][ T7919] RBP: 00000000043e4000 R08: 0000000000000000 R09: 0000000000000000
[  148.574030][ T7919] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  148.576751][ T7919] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  148.579501][ T7919]  </TASK>
[  149.996709][   T57] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  150.156998][   T57] usb 7-1: Using ep0 maxpacket: 8
[  150.159843][   T57] usb 7-1: config index 0 descriptor too short (expected 5924, got 36)
[  150.162015][   T57] usb 7-1: config 250 has an invalid interface number: 228 but max is -1
[  150.164188][   T57] usb 7-1: config 250 has 1 interface, different from the descriptor's value: 0
[  150.166570][   T57] usb 7-1: config 250 has no interface number 0
[  150.176894][   T57] usb 7-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  150.179965][   T57] usb 7-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  150.186804][   T57] usb 7-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 26
[  150.196801][   T57] usb 7-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  150.200346][   T57] usb 7-1: config 250 interface 228 has no altsetting 0
[  150.203669][   T57] usb 7-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  150.206034][   T57] usb 7-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  150.216814][   T57] usb 7-1: Product: syz
[  150.217961][   T57] usb 7-1: SerialNumber: syz
[  150.223024][   T57] hub 7-1:250.228: bad descriptor, ignoring hub
[  150.224805][   T57] hub 7-1:250.228: probe with driver hub failed with error -5
[  150.426515][ T7926] 9pnet_fd: Insufficient options for proto=fd
[  150.432654][   T57] usblp 7-1:250.228: usblp0: USB Bidirectional printer dev 8 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  151.041318][ T7926] usb 7-1: reset high-speed USB device number 8 using dummy_hcd
[  151.177817][ T7926] usb 7-1: device descriptor read/64, error -71
[  151.417858][ T7926] usb 7-1: reset high-speed USB device number 8 using dummy_hcd
[  151.547580][ T7926] usb 7-1: device descriptor read/64, error -71
[  151.787080][ T7926] usb 7-1: reset high-speed USB device number 8 using dummy_hcd
[  151.820461][ T7926] usb 7-1: device descriptor read/8, error -71
[  152.057258][ T7926] usb 7-1: reset high-speed USB device number 8 using dummy_hcd
[  152.079804][ T7926] usb 7-1: device descriptor read/8, error -71
[  152.188867][   T56] usb 7-1: USB disconnect, device number 8
[  152.193039][   T56] usblp0: removed
[  152.347758][   T56] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  152.496763][   T56] usb 7-1: device descriptor read/64, error -71
[  152.746751][   T56] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  152.818400][ T7946] netlink: 4 bytes leftover after parsing attributes in process `syz.2.790'.
[  152.859132][ T7948] sp0: Synchronizing with TNC
[  152.961230][ T7957] netlink: 4 bytes leftover after parsing attributes in process `syz.2.790'.
[  152.962573][ T7954] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[  152.969041][ T7957] IPVS: rr: TCP 172.20.20.170:0 - no destination available
[  152.996388][ T7949] IPVS: rr: TCP 172.20.20.170:0 - no destination available
[  153.209897][ T7968] netlink: 48 bytes leftover after parsing attributes in process `syz.3.799'.
[  154.259521][ T7980] ptrace attach of "/syz-executor exec"[6512] was attempted by "/syz-executor exec"[7980]
[  156.338697][ T8002] sp0: Synchronizing with TNC
[  156.384773][ T8006] netlink: 48 bytes leftover after parsing attributes in process `syz.1.809'.
[  156.716077][ T8023] tmpfs: User quota block hardlimit too large.
[  156.718746][ T8022] netlink: 'syz.2.812': attribute type 1 has an invalid length.
[  156.721872][ T8022] netlink: 244 bytes leftover after parsing attributes in process `syz.2.812'.
[  158.178066][ T8037] ptrace attach of "/syz-executor exec"[5345] was attempted by "/syz-executor exec"[8037]
[  161.016711][ T8046] netlink: 4 bytes leftover after parsing attributes in process `syz.1.817'.
[  161.191326][    C1] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  161.197912][ T8056] tmpfs: Bad value for 'mpol'
[  161.449426][ T8048] e1000e 0000:00:02.0 eth1: NIC Link is Down
[  161.652641][ T8061] sp0: Synchronizing with TNC
[  162.278940][ T8093] usb 2-1: USB disconnect, device number 2
[  162.313913][ T8096] binder: 8082:8096 ioctl 4018620d 0 returned -22
[  162.358138][ T8096] netlink: 4 bytes leftover after parsing attributes in process `syz.2.824'.
[  162.373217][ T8096] netlink: 4 bytes leftover after parsing attributes in process `syz.2.824'.
[  162.544357][ T8103] netlink: 4 bytes leftover after parsing attributes in process `syz.3.826'.
[  163.205814][ T8127] sp0: Synchronizing with TNC
[  163.898854][   T39] audit: type=1326 audit(2000000015.659:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8145 comm="syz.3.835" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc4579 code=0x7ffc0000
[  163.904550][   T39] audit: type=1326 audit(2000000015.659:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8145 comm="syz.3.835" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc4579 code=0x7ffc0000
[  163.924128][   T39] audit: type=1326 audit(2000000015.679:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8145 comm="syz.3.835" exe="/syz-executor" sig=0 arch=40000003 syscall=290 compat=1 ip=0xf7fc4579 code=0x7ffc0000
[  163.936782][   T39] audit: type=1326 audit(2000000015.679:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8145 comm="syz.3.835" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc4579 code=0x7ffc0000
[  163.942410][   T39] audit: type=1326 audit(2000000015.679:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8145 comm="syz.3.835" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc4579 code=0x7ffc0000
[  163.956777][   T39] audit: type=1326 audit(2000000015.679:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8145 comm="syz.3.835" exe="/syz-executor" sig=0 arch=40000003 syscall=3 compat=1 ip=0xf7fc4579 code=0x7ffc0000
[  163.962346][   T39] audit: type=1326 audit(2000000015.679:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8145 comm="syz.3.835" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc4579 code=0x7ffc0000
[  163.986755][   T39] audit: type=1326 audit(2000000015.679:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8145 comm="syz.3.835" exe="/syz-executor" sig=0 arch=40000003 syscall=5 compat=1 ip=0xf7fc4579 code=0x7ffc0000
[  163.992338][   T39] audit: type=1326 audit(2000000015.679:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8145 comm="syz.3.835" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc4579 code=0x7ffc0000
[  164.000273][   T39] audit: type=1326 audit(2000000015.679:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8145 comm="syz.3.835" exe="/syz-executor" sig=0 arch=40000003 syscall=187 compat=1 ip=0xf7fc4579 code=0x7ffc0000
[  164.619823][ T8158] sp0: Synchronizing with TNC
[  165.857187][ T5387] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  165.936967][ T8184] netlink: 60 bytes leftover after parsing attributes in process `syz.3.846'.
[  166.026857][ T5387] usb 7-1: Using ep0 maxpacket: 8
[  166.032850][ T5387] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  166.035375][ T5387] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  166.047010][ T5387] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  166.049774][ T5387] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  166.053121][ T5387] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  166.055459][ T5387] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  166.270536][ T5387] usb 7-1: usb_control_msg returned -71
[  166.277166][ T5387] usbtmc 7-1:16.0: can't read capabilities
[  166.287313][ T5387] usb 7-1: USB disconnect, device number 11
[  166.523044][ T8192] sp0: Synchronizing with TNC
[  166.879907][ T8209] Bluetooth: MGMT ver 1.23
[  167.593905][ T8217] sp0: Synchronizing with TNC
[  167.716866][ T8219] fuse: Bad value for 'fd'
[  167.948080][ T8223] netlink: 'syz.2.858': attribute type 1 has an invalid length.
[  167.951771][ T8223] netlink: 3 bytes leftover after parsing attributes in process `syz.2.858'.
[  167.991704][ T5356] Bluetooth: hci0: hardware error 0x00
[  168.772176][ T8235] netlink: 48 bytes leftover after parsing attributes in process `syz.0.862'.
[  169.282797][ T8241] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  169.285171][ T8241] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  169.287552][ T8241] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  169.289825][ T8241] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  169.327352][ T8241] vxlan0: entered promiscuous mode
[  169.328733][ T8241] vxlan0: entered allmulticast mode
[  169.338191][ T8241] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  169.340532][ T8241] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  169.342834][ T8241] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  169.345278][ T8241] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  169.555809][ T8250] ptrace attach of "/syz-executor exec"[5344] was attempted by "/syz-executor exec"[8250]
[  169.584981][ T8252] sp0: Synchronizing with TNC
[  169.807207][ T5390] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  169.960434][ T5390] usb 6-1: config index 0 descriptor too short (expected 45, got 36)
[  169.962630][ T5390] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  169.965294][ T5390] usb 6-1: config 0 has no interfaces?
[  169.976848][ T5390] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  169.979273][ T5390] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  169.982279][ T5390] usb 6-1: config 0 descriptor??
[  170.066837][ T5356] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  171.293012][ T8260] netlink: 'syz.3.869': attribute type 1 has an invalid length.
[  171.295077][ T8260] openvswitch: netlink: Actions may not be safe on all matching packets
[  172.458075][ T8282] sp0: Synchronizing with TNC
[  172.492743][ T1449] usb 6-1: USB disconnect, device number 4
[  172.746446][ T8290] netlink: 'syz.1.886': attribute type 9 has an invalid length.
[  172.750999][ T8290] netlink: 134660 bytes leftover after parsing attributes in process `syz.1.886'.
[  173.407549][ T8297] netlink: 9 bytes leftover after parsing attributes in process `syz.3.881'.
[  173.411947][ T8297] gretap0: entered promiscuous mode
[  173.426611][ T8297] netlink: 5 bytes leftover after parsing attributes in process `syz.3.881'.
[  173.439418][ T8297] 0ªX¹¦D: renamed from gretap0
[  173.444408][ T8297] 0ªX¹¦D: left promiscuous mode
[  173.449301][ T8297] 0ªX¹¦D: entered allmulticast mode
[  173.452563][ T8297] A link change request failed with some changes committed already. Interface 
30ªX¹¦D may have been left with an inconsistent configuration, please check.
[  173.544515][ T8297] syz.3.881 (8297): drop_caches: 2
[  174.116777][ T1449] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  174.278121][ T1449] usb 8-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  174.281017][ T1449] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  174.283804][ T1449] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  174.286382][ T1449] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  174.291848][ T1449] usb 8-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  174.294334][ T1449] usb 8-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  174.296526][ T1449] usb 8-1: Manufacturer: syz
[  174.299158][ T1449] usb 8-1: config 0 descriptor??
[  174.726821][ T8315] netlink: 'syz.2.888': attribute type 9 has an invalid length.
[  174.729517][ T8315] netlink: 134660 bytes leftover after parsing attributes in process `syz.2.888'.
[  174.735449][ T8304] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  174.739909][ T8304] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  174.754410][ T1449] usbhid 8-1:0.0: can't add hid device: -71
[  174.756048][ T1449] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[  174.759000][ T1449] usb 8-1: USB disconnect, device number 13
[  174.900043][ T8327] netlink: 4 bytes leftover after parsing attributes in process `syz.2.889'.
[  174.929619][ T8327] IPVS: rr: TCP 172.20.20.170:0 - no destination available
[  175.460999][ T8335] netlink: 4 bytes leftover after parsing attributes in process `syz.3.892'.
[  176.206852][ T8344] overlayfs: missing 'workdir'
[  176.512141][ T8359] netlink: 8 bytes leftover after parsing attributes in process `syz.3.897'.
[  176.514528][ T8359] netlink: 40 bytes leftover after parsing attributes in process `syz.3.897'.
[  176.539843][ T8359] netlink: 36 bytes leftover after parsing attributes in process `syz.3.897'.
[  176.542333][ T8359] netlink: 16 bytes leftover after parsing attributes in process `syz.3.897'.
[  176.545031][ T8359] netlink: 36 bytes leftover after parsing attributes in process `syz.3.897'.
[  177.626230][ T8367] tipc: Started in network mode
[  177.627664][ T8367] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  177.630059][ T8367] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:1000:00bb
[  177.632248][ T8367] tipc: Enabled bearer <udp:syz1>, priority 10
[  178.196848][ T1282] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  178.347925][ T1282] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  178.350781][ T1282] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  178.353312][ T1282] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  178.356752][ T1282] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  178.359100][ T1282] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  178.362162][ T1282] usb 7-1: config 0 descriptor??
[  178.628269][   T35] tipc: Node number set to 1
[  178.774912][ T1282] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  178.778234][ T1282] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  178.780168][ T1282] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  178.782098][ T1282] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  178.784037][ T1282] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  178.785989][ T1282] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  178.788418][ T1282] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving
[  178.793879][ T1282] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  178.917548][ T8381] __nla_validate_parse: 1 callbacks suppressed
[  178.917559][ T8381] netlink: 4 bytes leftover after parsing attributes in process `syz.3.903'.
[  179.040893][ T8369] input: syz0 as /devices/virtual/input/input18
[  179.096832][ T1282] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  179.269288][ T1282] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  179.275375][ T1282] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  179.280115][ T1282] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  179.282743][ T1282] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  179.288377][ T1282] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  179.290813][ T1282] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  179.292935][ T1282] usb 6-1: Manufacturer: syz
[  179.297161][ T1282] usb 6-1: config 0 descriptor??
[  179.722155][ T8377] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  179.730233][ T8377] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  180.018869][ T8369] usb 7-1: string descriptor 0 read error: -71
[  180.024755][ T1282] usbhid 6-1:0.0: can't add hid device: -71
[  180.027874][ T1282] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  180.033746][ T1282] usb 6-1: USB disconnect, device number 5
[  180.587861][ T8399] overlayfs: failed to resolve './file1': -2
[  180.683789][ T8401] netlink: 4 bytes leftover after parsing attributes in process `syz.3.909'.
[  181.066865][   T35] usb 7-1: reset high-speed USB device number 12 using dummy_hcd
[  181.229508][   T35] usb 7-1: device firmware changed
[  181.238518][ T5387] usb 7-1: USB disconnect, device number 12
[  181.377017][ T5387] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  181.540450][ T5387] usb 7-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  181.543715][ T5387] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  181.546534][ T5387] usb 7-1: Product: syz
[  181.550084][ T5387] usb 7-1: Manufacturer: syz
[  181.551660][ T5387] usb 7-1: SerialNumber: syz
[  181.556253][ T5387] usb 7-1: config 0 descriptor??
[  181.773063][ T5388] usb 7-1: USB disconnect, device number 13
[  182.077834][ T8418] netlink: 4 bytes leftover after parsing attributes in process `syz.1.915'.
[  183.019796][ T8439] netlink: 8 bytes leftover after parsing attributes in process `syz.0.919'.
[  183.027202][ T8439] netlink: 40 bytes leftover after parsing attributes in process `syz.0.919'.
[  183.039838][ T8439] netlink: 36 bytes leftover after parsing attributes in process `syz.0.919'.
[  183.043151][ T8439] netlink: 16 bytes leftover after parsing attributes in process `syz.0.919'.
[  183.046460][ T8439] netlink: 36 bytes leftover after parsing attributes in process `syz.0.919'.
[  183.050267][ T8439] netlink: 36 bytes leftover after parsing attributes in process `syz.0.919'.
[  183.199461][ T8449] netlink: 4 bytes leftover after parsing attributes in process `syz.1.923'.
[  183.915561][ T8453] F2FS-fs (loop2): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  183.926670][ T8453] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  183.928858][ T8453] F2FS-fs (loop2): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  183.930896][ T8453] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock
[  184.467097][ T8462] ptrace attach of "/syz-executor exec"[6512] was attempted by "/syz-executor exec"[8462]
[  186.374648][ T8487] sp0: Synchronizing with TNC
[  186.522614][ T8489] sp0: Synchronizing with TNC
[  186.870853][ T8497] random: crng reseeded on system resumption
[  187.403524][ T8503] netlink: 4 bytes leftover after parsing attributes in process `syz.1.935'.
[  189.350122][ T8527] ptrace attach of "/syz-executor exec"[6512] was attempted by "/syz-executor exec"[8527]
[  190.002701][ T8532] netlink: 48 bytes leftover after parsing attributes in process `syz.2.944'.
[  190.738355][ T8546] netlink: 48 bytes leftover after parsing attributes in process `syz.0.948'.
[  190.978944][ T8552] netlink: 4 bytes leftover after parsing attributes in process `syz.0.949'.
[  192.777205][ T8576] ptrace attach of "/syz-executor exec"[5345] was attempted by "/syz-executor exec"[8576]
[  193.596092][ T1374] ieee802154 phy0 wpan0: encryption failed: -22
[  193.598110][ T1374] ieee802154 phy1 wpan1: encryption failed: -22
[  193.689221][ T8586] ptrace attach of "/syz-executor exec"[6512] was attempted by "/syz-executor exec"[8586]
[  193.750252][ T8581] netlink: 4 bytes leftover after parsing attributes in process `syz.2.957'.
[  193.876931][ T5389] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  194.040302][ T5389] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  194.043154][ T5389] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  194.045743][ T5389] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  194.049224][ T5389] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  194.052094][ T5389] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  194.056058][ T5389] usb 6-1: config 0 descriptor??
[  194.471411][ T5389] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  194.483000][ T5389] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  194.490053][ T5389] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  194.497026][ T5389] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  194.509183][ T5389] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  194.511367][ T5389] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  194.514935][ T5389] plantronics 0003:047F:FFFF.0004: No inputs registered, leaving
[  194.522952][ T5389] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  194.573854][ T8596] netlink: 4 bytes leftover after parsing attributes in process `syz.0.968'.
[  194.593441][    C2] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  194.745218][ T8584] input: syz0 as /devices/virtual/input/input19
[  194.767797][ T5388] usb 6-1: USB disconnect, device number 6
[  195.493541][ T8609] netlink: 4 bytes leftover after parsing attributes in process `syz.2.961'.
[  195.512979][ T8610] syz.1.962: attempt to access beyond end of device
[  195.512979][ T8610] nbd1: rw=0, sector=0, nr_sectors = 1 limit=0
[  195.515307][ T8609] IPVS: rr: TCP 172.20.20.170:0 - no destination available
[  195.516992][ T8610] FAT-fs (nbd1): unable to read boot sector
[  195.581219][ T8609] IPVS: rr: TCP 172.20.20.170:0 - no destination available
[  196.626717][ T5358] Bluetooth: hci4: command 0x0405 tx timeout
[  196.745177][ T8625] sp0: Synchronizing with TNC
[  197.031747][ T8630] netlink: 4 bytes leftover after parsing attributes in process `syz.3.969'.
[  197.730689][ T8634] syz.3.969 (8634) used greatest stack depth: 20304 bytes left
[  198.064067][ T8653] netlink: 4 bytes leftover after parsing attributes in process `syz.2.976'.
[  198.079175][ T8653] IPVS: rr: TCP 172.20.20.170:0 - no destination available
[  198.102176][ T8653] IPVS: rr: TCP 172.20.20.170:0 - no destination available
[  198.382506][ T8664] syz.0.978: attempt to access beyond end of device
[  198.382506][ T8664] nbd0: rw=0, sector=0, nr_sectors = 1 limit=0
[  198.385917][ T8664] FAT-fs (nbd0): unable to read boot sector
[  199.722283][ T8684] sp0: Synchronizing with TNC
[  200.093020][ T8696] netlink: 4 bytes leftover after parsing attributes in process `syz.0.988'.
[  200.437078][   T25] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  200.608057][   T25] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  200.611933][   T25] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  200.617059][   T25] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  200.621579][   T25] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  200.624796][   T25] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  200.634011][   T25] usb 6-1: config 0 descriptor??
[  201.041303][   T25] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  201.043172][   T25] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  201.045015][   T25] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  201.049602][   T25] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  201.051545][   T25] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  201.053484][   T25] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  201.055624][   T25] plantronics 0003:047F:FFFF.0005: No inputs registered, leaving
[  201.064926][   T25] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  201.309247][ T8698] input: syz0 as /devices/virtual/input/input20
[  201.322947][   T25] usb 6-1: USB disconnect, device number 7
[  202.416972][   T25] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  202.576792][   T25] usb 7-1: Using ep0 maxpacket: 8
[  202.579763][   T25] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  202.583170][   T25] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2
[  202.585379][   T25] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  202.588371][   T25] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  202.591341][   T25] usb 7-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  202.593636][   T25] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  202.603522][   T25] hub 7-1:1.0: bad descriptor, ignoring hub
[  202.605148][   T25] hub 7-1:1.0: probe with driver hub failed with error -5
[  202.610812][   T25] cdc_wdm 7-1:1.0: skipping garbage
[  202.612232][   T25] cdc_wdm 7-1:1.0: skipping garbage
[  202.615029][   T25] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  202.616680][   T25] cdc_wdm 7-1:1.0: Unknown control protocol
[  202.750352][ T8741] ecryptfs_parse_options: eCryptfs: unrecognized option [&@]
[  202.753062][ T8741] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README
[  202.758876][ T8741] Error parsing options; rc = [-22]
[  202.998523][    T8] usb 7-1: USB disconnect, device number 14
[  203.096831][   T25] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  203.256759][   T25] usb 5-1: Using ep0 maxpacket: 16
[  203.259874][   T25] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  203.263176][   T25] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  203.267886][   T25] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  203.270838][   T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  203.274786][   T25] usb 5-1: config 0 descriptor??
[  203.279642][   T25] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  203.839076][ T1282] libceph: connect (1)[c::]:6789 error -101
[  203.840824][ T1282] libceph: mon0 (1)[c::]:6789 connect error
[  203.887690][ T8765] ceph: No mds server is up or the cluster is laggy
[  204.051311][ T8771] xt_connbytes: Forcing CT accounting to be enabled
[  204.053256][ T8771] Cannot find del_set index 0 as target
[  204.411478][ T8788] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1020'.
[  204.705699][ T8799] capability: warning: `syz.2.1025' uses deprecated v2 capabilities in a way that may be insecure
[  205.590969][ T8805] 9p: Unknown access argument ÿ: -22
[  205.755867][ T8811] 9pnet: p9_errstr2errno: server reported unknown error 1844674407370
[  205.943872][ T1449] usb 5-1: USB disconnect, device number 10
[  206.070735][ T5358] Bluetooth: hci4: unexpected event for opcode 0x2027
[  206.436763][ T1282] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  206.607917][ T1282] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  206.610892][ T1282] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  206.613435][ T1282] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  206.619114][ T1282] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  206.621560][ T1282] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  206.624533][ T1282] usb 5-1: config 0 descriptor??
[  207.035154][ T1282] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  207.038511][ T1282] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  207.041017][ T1282] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  207.043512][ T1282] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  207.057699][ T8834] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1036'.
[  207.060792][ T1282] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  207.063232][ T1282] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  207.065935][ T1282] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving
[  207.080175][ T1282] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  207.214667][ T8838] can: request_module (can-proto-3) failed.
[  207.299024][ T8830] input: syz0 as /devices/virtual/input/input21
[  207.329968][ T1282] usb 5-1: USB disconnect, device number 11
[  207.356586][ T8843] netlink: 'syz.3.1039': attribute type 21 has an invalid length.
[  208.002445][ T8854] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1042'.
[  208.380445][ T8872] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1047'.
[  208.388212][ T8872] input: syz1 as /devices/virtual/input/input22
[  208.738988][ T8877] autofs: Bad value for 'fd'
[  208.742920][ T8877] overlayfs: missing 'workdir'
[  209.027249][ T5356] Bluetooth: hci4: command 0x0405 tx timeout
[  209.676928][ T1449] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  209.848068][ T1449] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  209.850937][ T1449] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  209.853688][ T1449] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  209.857295][ T1449] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  209.861153][ T1449] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  209.873994][ T1449] usb 5-1: config 0 descriptor??
[  210.293701][ T1449] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  210.295725][ T1449] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  210.297726][ T1449] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  210.299707][ T1449] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  210.303265][ T1449] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  210.305240][ T1449] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  210.307524][ T1449] plantronics 0003:047F:FFFF.0007: No inputs registered, leaving
[  210.317027][ T1449] plantronics 0003:047F:FFFF.0007: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  210.568602][ T8883] input: syz0 as /devices/virtual/input/input23
[  210.579395][ T5387] usb 5-1: USB disconnect, device number 12
[  210.915511][   T39] kauditd_printk_skb: 41 callbacks suppressed
[  210.915521][   T39] audit: type=1804 audit(2000000062.669:244): pid=8903 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1055" name="/newroot/114/file0/bus" dev="9p" ino=35922930 res=1 errno=0
[  211.018591][   T39] audit: type=1804 audit(2000000062.779:245): pid=8902 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1055" name="/newroot/114/file0/bus" dev="9p" ino=35922930 res=1 errno=0
[  211.025856][ T8901] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x20838 pfn:0x764f8
[  211.030117][   T39] audit: type=1804 audit(2000000062.779:246): pid=8901 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1055" name="/newroot/114/file0/bus" dev="9p" ino=35922930 res=1 errno=0
[  211.035780][ T8901] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[  211.038449][ T8901] raw: 04fff00000000000 ffffea0001d93e48 ffffea0001dbe5c8 0000000000000000
[  211.040809][ T8901] raw: 0000000000020838 0000000000000000 00000000ffffffff 0000000000000000
[  211.043121][ T8901] page dumped because: VM_BUG_ON_FOLIO(((unsigned int) folio_ref_count(folio) + 127u <= 127u))
[  211.046011][ T8901] page_owner tracks the page as freed
[  211.053720][ T8901] page last allocated via order 0, migratetype Movable, gfp_mask 0x140dca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_ZERO), pid 8775, tgid 8747 (syz.0.1009), ts 204568545365, free_ts 205882256250
[  211.058808][ T8901]  post_alloc_hook+0x2d1/0x350
[  211.060326][ T8901]  get_page_from_freelist+0x101e/0x3070
[  211.061917][ T8901]  __alloc_pages_noprof+0x223/0x25c0
[  211.063373][ T8901]  alloc_pages_mpol_noprof+0x2c9/0x610
[  211.064889][ T8901]  folio_alloc_mpol_noprof+0x36/0xd0
[  211.066347][ T8901]  vma_alloc_folio_noprof+0xee/0x1b0
[  211.068180][ T8901]  do_wp_page+0x10d1/0x4930
[  211.069573][ T8901]  __handle_mm_fault+0x1a93/0x2a10
[  211.071086][ T8901]  handle_mm_fault+0x3fa/0xaa0
[  211.072455][ T8901]  do_user_addr_fault+0x7a3/0x13f0
[  211.073949][ T8901]  exc_page_fault+0x5c/0xc0
[  211.075220][ T8901]  asm_exc_page_fault+0x26/0x30
[  211.076746][ T8901] page last free pid 8783 tgid 8747 stack trace:
[  211.078449][ T8901]  free_unref_folios+0x956/0x1310
[  211.079956][ T8901]  folios_put_refs+0x551/0x750
[  211.081366][ T8901]  free_pages_and_swap_cache+0x36d/0x510
[  211.082902][ T8901]  __tlb_batch_free_encoded_pages+0xf9/0x290
[  211.084548][ T8901]  tlb_flush_mmu+0xe9/0x590
[  211.087359][ T8901]  unmap_page_range+0x1bf4/0x3ce0
[  211.088724][ T8901]  unmap_single_vma+0x194/0x2b0
[  211.090002][ T8901]  unmap_vmas+0x22f/0x490
[  211.091137][ T8901]  exit_mmap+0x1c6/0xb30
[  211.092251][ T8901]  __mmput+0x12a/0x480
[  211.093333][ T8901]  mmput+0x62/0x70
[  211.094323][ T8901]  do_exit+0x9bf/0x2d70
[  211.095421][ T8901]  do_group_exit+0xd3/0x2a0
[  211.096718][ T8901]  get_signal+0x2658/0x26d0
[  211.098295][ T8901]  arch_do_signal_or_restart+0x90/0x7e0
[  211.099794][ T8901]  syscall_exit_to_user_mode+0x150/0x2a0
[  211.102776][ T8901] ------------[ cut here ]------------
[  211.104215][ T8901] kernel BUG at include/linux/mm.h:1444!
[  211.105706][ T8901] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI
[  211.107650][ T8901] CPU: 1 UID: 0 PID: 8901 Comm: syz.1.1055 Not tainted 6.12.0-rc1-syzkaller-00046-g7ec462100ef9 #0
[  211.108053][ T5356] Bluetooth: hci4: command 0x0405 tx timeout
[  211.111748][ T8901] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  211.111758][ T8901] RIP: 0010:__iov_iter_get_pages_alloc+0x1d10/0x2230
[  211.111783][ T8901] Code: b0 8b 48 89 df e8 d0 23 4b fd 90 0f 0b 49 89 c5 e9 99 f6 ff ff e8 20 75 05 fd 48 c7 c6 60 c6 b0 8b 4c 89 e7 e8 b1 23 4b fd 90 <0f> 0b e8 09 75 05 fd 4c 8b 64 24 48 49 83 ec 01 e9 94 fd ff ff 4c
[  211.122855][ T8901] RSP: 0018:ffffc9002357eaf0 EFLAGS: 00010293
[  211.124438][ T8901] RAX: 0000000000000000 RBX: 000000000000000f RCX: 0000000000000000
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  211.126727][ T8901] RDX: ffff888021e70000 RSI: ffffffff84873a5f RDI: ffff888021e70444
[  211.128945][ T8901] RBP: ffffea0001d93e34 R08: 0000000000000001 R09: fffffbfff2d315ba
[  211.130990][ T8901] R10: ffffffff9698add7 R11: ffff88802b528a40 R12: ffffea0001d93e00
[  211.133347][ T8901] R13: ffff888024d96400 R14: 0000000000001000 R15: 0000000000001000
[  211.136126][ T8901] FS:  0000000000000000(0000) GS:ffff88802b500000(0063) knlGS:00000000f5766b40
[  211.139384][ T8901] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  211.141764][ T8901] CR2: 0000000021000000 CR3: 000000005b028000 CR4: 0000000000352ef0
[  211.144571][ T8901] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  211.147212][ T8901] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  211.149269][ T8901] Call Trace:
[  211.150143][ T8901]  <TASK>
[  211.150922][ T8901]  ? die+0x31/0x80
[  211.151905][ T8901]  ? do_trap+0x232/0x430
[  211.153025][ T8901]  ? __iov_iter_get_pages_alloc+0x1d10/0x2230
[  211.154601][ T8901]  ? __iov_iter_get_pages_alloc+0x1d10/0x2230
[  211.156172][ T8901]  ? do_error_trap+0xf4/0x230
[  211.157444][ T8901]  ? __iov_iter_get_pages_alloc+0x1d10/0x2230
[  211.159029][ T8901]  ? handle_invalid_op+0x34/0x40
[  211.160337][ T8901]  ? __iov_iter_get_pages_alloc+0x1d10/0x2230
[  211.161905][ T8901]  ? exc_invalid_op+0x2e/0x50
[  211.163135][ T8901]  ? asm_exc_invalid_op+0x1a/0x20
[  211.164443][ T8901]  ? __iov_iter_get_pages_alloc+0x1d0f/0x2230
[  211.166018][ T8901]  ? __iov_iter_get_pages_alloc+0x1d10/0x2230
[  211.167619][ T8901]  ? __pfx___iov_iter_get_pages_alloc+0x10/0x10
[  211.169266][ T8901]  ? delete_node+0x207/0x8e0
[  211.170488][ T8901]  iov_iter_get_pages_alloc2+0x53/0xf0
[  211.171918][ T8901]  p9_get_mapped_pages.part.0.constprop.0+0x4ca/0x7d0
[  211.173684][ T8901]  ? p9pdu_vwritef+0x368/0x21d0
[  211.174964][ T8901]  ? __pfx_p9_get_mapped_pages.part.0.constprop.0+0x10/0x10
[  211.176897][ T8901]  ? __pfx_p9pdu_vwritef+0x10/0x10
[  211.178238][ T8901]  ? __pfx_p9pdu_vwritef+0x10/0x10
[  211.179592][ T8901]  ? p9_tag_alloc+0x4cc/0x870
[  211.180865][ T8901]  ? reacquire_held_locks+0x466/0x4c0
[  211.182284][ T8901]  p9_virtio_zc_request+0x1ac/0x1460
[  211.183667][ T8901]  ? p9pdu_writef+0xc4/0x100
[  211.184883][ T8901]  ? __pfx_p9pdu_writef+0x10/0x10
[  211.186209][ T8901]  ? __pfx_p9pdu_vwritef+0x10/0x10
[  211.187922][ T8901]  ? __pfx_p9_virtio_zc_request+0x10/0x10
[  211.190029][ T8901]  ? rcu_is_watching+0x12/0xc0
[  211.191734][ T8901]  ? trace_9p_protocol_dump+0x192/0x220
[  211.193656][ T8901]  ? rcu_is_watching+0x12/0xc0
[  211.195365][ T8901]  ? p9_client_prepare_req+0x111/0x4d0
[  211.197316][ T8901]  ? __pfx_p9_client_prepare_req+0x10/0x10
[  211.199349][ T8901]  ? __pfx_lock_release+0x10/0x10
[  211.201197][ T8901]  p9_client_zc_rpc.constprop.0+0x29a/0x880
[  211.203334][ T8901]  ? __pfx_p9_client_zc_rpc.constprop.0+0x10/0x10
[  211.205595][ T8901]  ? kasan_save_stack+0x42/0x60
[  211.207268][ T8901]  ? kasan_save_stack+0x33/0x60
[  211.208981][ T8901]  ? __kasan_kmalloc+0xaa/0xb0
[  211.210652][ T8901]  ? netfs_buffer_make_space+0xf6/0x6b0
[  211.212590][ T8901]  ? netfs_buffer_append_folio+0x298/0x360
[  211.214607][ T8901]  ? netfs_write_folio+0x540/0x1930
[  211.216422][ T8901]  ? netfs_writepages+0x2ba/0xb90
[  211.218234][ T8901]  ? do_writepages+0x1a3/0x7f0
[  211.220008][ T8901]  ? __pfx_p9_virtio_zc_request+0x10/0x10
[  211.222058][ T8901]  p9_client_write+0x447/0x680
[  211.223788][ T8901]  ? __pfx_p9_client_write+0x10/0x10
[  211.225662][ T8901]  v9fs_issue_write+0xe2/0x180
[  211.227446][ T8901]  ? __pfx_v9fs_issue_write+0x10/0x10
[  211.229357][ T8901]  ? rcu_is_watching+0x12/0xc0
[  211.231085][ T8901]  ? trace_netfs_sreq+0x193/0x220
[  211.232907][ T8901]  netfs_do_issue_write+0x92/0x110
[  211.234727][ T8901]  netfs_advance_write+0x384/0xc80
[  211.236486][ T8901]  ? netfs_buffer_append_folio+0x276/0x360
[  211.238566][ T8901]  netfs_write_folio+0xc19/0x1930
[  211.240435][ T8901]  netfs_writepages+0x2ba/0xb90
[  211.242183][ T8901]  ? __pfx_netfs_writepages+0x10/0x10
[  211.244186][ T8901]  ? __pfx___lock_acquire+0x10/0x10
[  211.246068][ T8901]  ? is_bpf_text_address+0x94/0x1a0
[  211.247632][ T8901]  ? kernel_text_address+0x8d/0x100
[  211.249082][ T8901]  ? __pfx_netfs_writepages+0x10/0x10
[  211.250480][ T8901]  do_writepages+0x1a3/0x7f0
[  211.251688][ T8901]  ? __pfx_do_writepages+0x10/0x10
[  211.253029][ T8901]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  211.254489][ T8901]  ? do_raw_spin_lock+0x12d/0x2c0
[  211.255807][ T8901]  ? do_raw_spin_unlock+0x172/0x230
[  211.257218][ T8901]  ? _raw_spin_unlock+0x28/0x50
[  211.258491][ T8901]  ? wbc_attach_and_unlock_inode+0x597/0x940
[  211.260063][ T8901]  filemap_fdatawrite_wbc+0x148/0x1c0
[  211.261489][ T8901]  ? kasan_save_free_info+0x3b/0x60
[  211.262836][ T8901]  __filemap_fdatawrite_range+0xb3/0xf0
[  211.264278][ T8901]  ? __pfx___filemap_fdatawrite_range+0x10/0x10
[  211.265914][ T8901]  ? __ia32_sys_creat+0xcc/0x120
[  211.267234][ T8901]  ? inode_newsize_ok+0x13b/0x200
[  211.268557][ T8901]  ? setattr_prepare+0x140/0x9a0
[  211.269850][ T8901]  ? current_time+0x7e/0xc0
[  211.271037][ T8901]  v9fs_vfs_setattr+0x93a/0xab0
[  211.272314][ T8901]  ? __pfx_v9fs_vfs_setattr+0x10/0x10
[  211.273703][ T8901]  ? evm_inode_setattr+0x65/0x680
[  211.275009][ T8901]  ? __pfx_make_vfsgid+0x10/0x10
[  211.276312][ T8901]  ? __pfx_current_time+0x10/0x10
[  211.277631][ T8901]  ? __pfx_v9fs_vfs_setattr+0x10/0x10
[  211.279018][ T8901]  notify_change+0x6a6/0x1230
[  211.280266][ T8901]  do_truncate+0x15c/0x220
[  211.281441][ T8901]  ? __pfx_do_truncate+0x10/0x10
[  211.282737][ T8901]  path_openat+0x2745/0x2d60
[  211.283947][ T8901]  ? __pfx_path_openat+0x10/0x10
[  211.285252][ T8901]  ? __pfx___lock_acquire+0x10/0x10
[  211.286608][ T8901]  do_filp_open+0x1dc/0x430
[  211.287811][ T8901]  ? __pfx_do_filp_open+0x10/0x10
[  211.289134][ T8901]  ? _raw_spin_unlock+0x28/0x50
[  211.290403][ T8901]  ? alloc_fd+0x2d7/0x6c0
[  211.291533][ T8901]  do_sys_openat2+0x17a/0x1e0
[  211.292766][ T8901]  ? __pfx_do_sys_openat2+0x10/0x10
[  211.294122][ T8901]  ? __ia32_sys_futex_time32+0x1da/0x460
[  211.295577][ T8901]  ? __ia32_sys_futex_time32+0x2fd/0x460
[  211.297058][ T8901]  __ia32_sys_creat+0xcc/0x120
[  211.298309][ T8901]  ? __pfx___ia32_sys_creat+0x10/0x10
[  211.299704][ T8901]  ? rcu_is_watching+0x12/0xc0
[  211.300978][ T8901]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  211.302689][ T8901]  ? lockdep_hardirqs_on+0x7c/0x110
[  211.304047][ T8901]  __do_fast_syscall_32+0x73/0x120
[  211.305390][ T8901]  do_fast_syscall_32+0x32/0x80
[  211.306677][ T8901]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  211.309095][ T8901] RIP: 0023:0xf747e579
[  211.310667][ T8901] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  211.317570][ T8901] RSP: 002b:00000000f576656c EFLAGS: 00000296 ORIG_RAX: 0000000000000008
[  211.320633][ T8901] RAX: ffffffffffffffda RBX: 0000000020000400 RCX: 0000000000000000
[  211.323434][ T8901] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  211.326260][ T8901] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  211.328997][ T8901] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  211.331735][ T8901] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  211.334495][ T8901]  </TASK>
[  211.335623][ T8901] Modules linked in:
[  211.337154][    C1] vkms_vblank_simulate: vblank timer overrun
[  211.339501][ T8901] ---[ end trace 0000000000000000 ]---
[  211.342689][ T8901] RIP: 0010:__iov_iter_get_pages_alloc+0x1d10/0x2230
[  211.345024][ T8901] Code: b0 8b 48 89 df e8 d0 23 4b fd 90 0f 0b 49 89 c5 e9 99 f6 ff ff e8 20 75 05 fd 48 c7 c6 60 c6 b0 8b 4c 89 e7 e8 b1 23 4b fd 90 <0f> 0b e8 09 75 05 fd 4c 8b 64 24 48 49 83 ec 01 e9 94 fd ff ff 4c
[  211.357143][ T8901] RSP: 0018:ffffc9002357eaf0 EFLAGS: 00010293
[  211.359278][ T8901] RAX: 0000000000000000 RBX: 000000000000000f RCX: 0000000000000000
[  211.361873][ T8901] RDX: ffff888021e70000 RSI: ffffffff84873a5f RDI: ffff888021e70444
[  211.363945][ T8901] RBP: ffffea0001d93e34 R08: 0000000000000001 R09: fffffbfff2d315ba
[  211.366017][ T8901] R10: ffffffff9698add7 R11: ffff88802b528a40 R12: ffffea0001d93e00
[  211.368779][ T8901] R13: ffff888024d96400 R14: 0000000000001000 R15: 0000000000001000
[  211.370850][ T8901] FS:  0000000000000000(0000) GS:ffff88802b500000(0063) knlGS:00000000f5766b40
[  211.373180][ T8901] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  211.374940][ T8901] CR2: 0000000021000000 CR3: 000000005b028000 CR4: 0000000000352ef0
[  211.377376][ T8901] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  211.379459][ T8901] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  211.381552][ T8901] Kernel panic - not syncing: Fatal exception
[  211.383778][ T8901] Kernel Offset: disabled
[  211.385003][ T8901] Rebooting in 86400 seconds..

VM DIAGNOSIS:
17:28:43  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=000000000000002a RCX=ffffffff816d20f1 RDX=ffff888024602440
RSI=0000000000000000 RDI=0000000000000001 RBP=1ffff9200087bf45 RSP=ffffc900043dfa10
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=0000000000000001 R13=0000000000000200 R14=ffff888021e70000 R15=0000000000000001
RIP=ffffffff818cb07b RFL=00000093 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000556a4e82e000 CR3=000000004971c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=7c435a597c435a59 7c435a597c435a59 7c435a597c435a59 7c435a597c435a59 7c435a597c435a59 7c435a597c435a59 7c435a597c435a59 7c435a597c435a59
ZMM22=be9ed6edbe9ed6ed be9ed6edbe9ed6ed be9ed6edbe9ed6ed be9ed6edbe9ed6ed be9ed6edbe9ed6ed be9ed6edbe9ed6ed be9ed6edbe9ed6ed be9ed6edbe9ed6ed
ZMM23=f76b3ba6f76b3ba6 f76b3ba6f76b3ba6 f76b3ba6f76b3ba6 f76b3ba6f76b3ba6 f76b3ba6f76b3ba6 f76b3ba6f76b3ba6 f76b3ba6f76b3ba6 f76b3ba6f76b3ba6
ZMM24=dc4e1577dc4e1577 dc4e1577dc4e1577 dc4e1577dc4e1577 dc4e1577dc4e1577 dc4e1577dc4e1577 dc4e1577dc4e1577 dc4e1577dc4e1577 dc4e1577dc4e1577
ZMM25=4361d7434361d743 4361d7434361d743 4361d7434361d743 4361d7434361d743 4361d7434361d743 4361d7434361d743 4361d7434361d743 4361d7434361d743
ZMM26=7a57839b7a57839b 7a57839b7a57839b 7a57839b7a57839b 7a57839b7a57839b 7a57839b7a57839b 7a57839b7a57839b 7a57839b7a57839b 7a57839b7a57839b
ZMM27=b1a5885cb1a5885c b1a5885cb1a5885c b1a5885cb1a5885c b1a5885cb1a5885c b1a5885cb1a5885c b1a5885cb1a5885c b1a5885cb1a5885c b1a5885cb1a5885c
ZMM28=000000100000000f 0000000e0000000d 0000000c0000000b 0000000a00000009 0000000800000007 0000000600000005 0000000400000003 0000000200000001
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=730b0000730b0000 730b0000730b0000 730b0000730b0000 730b0000730b0000 730b0000730b0000 730b0000730b0000 730b0000730b0000 730b0000730b0000
info registers vcpu 1

CPU#1
RAX=0000000000000031 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85035a15 RDI=ffffffff9a63a260 RBP=ffffffff9a63a220 RSP=ffffc9002357e410
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=7973203a6d6d6f43
R12=0000000000000000 R13=0000000000000031 R14=ffffffff850359b0 R15=0000000000000000
RIP=ffffffff85035a3f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000021000000 CR3=000000005b028000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=ffffffff81ca39e8 RCX=ffffffff81ca39e8 RDX=0000000000000000
RSI=ffffffff8bb11fa0 RDI=ffffffff8d819b90 RBP=0000000000000000 RSP=ffffc90001f7f930
R8 =0000000000000000 R9 =fffffbfff20398a9 R10=ffffffff901cc54f R11=000000004871d1f4
R12=0000000000000000 R13=0000000000000002 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff816a3982 RFL=00000296 [--S-AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f5766bac CR3=000000005e7be000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=00000000002bca2c RBX=0000000000000003 RCX=ffffffff8b12e739 RDX=ffffed10056e7026
RSI=ffffffff8bb11fa0 RDI=ffffffff8164098c RBP=ffffed100376d488 RSP=ffffc90000497e08
R8 =0000000000000000 R9 =ffffed10056e7025 R10=ffff88802b73812b R11=0000000000000001
R12=0000000000000003 R13=ffff88801bb6a440 R14=ffffffff901cc548 R15=0000000000000000
RIP=ffffffff8b12fb1f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055e81efcd098 CR3=000000005e7be000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 b7bc8d44745112a2 11b374152b2bcf3d
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7c40d9f62f8b89ed 0e9c4fe16661b7f7
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 42b89101b6afc59a bc473bb68a6dddd0
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 9ebe501cce5ec137 92e959aaa39548f5
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000500
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 da8e297a208cbf76 b332120100000080
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 dae0bee6dbbf937c 007fa81df845678c
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 c67617c1504ee970 0000008000000080
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000008000000080 dc5fef0600000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 efe0a6a6cd49af16 4d18b069586f5ad5
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2439f0af0253d4d0 bf6afa769820dda6
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000