last executing test programs:

16.17649748s ago: executing program 3 (id=1153):
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
r1 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000}, 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xe, 0x4, 0x8, 0x808, 0x0, 0xffffffffffffffff, 0x6}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x15, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
bind$inet6(r0, &(0x7f0000fa0fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00000001c0)={0xa, 0x4e20, 0x8, @loopback}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000200)=0x3d10, 0x4)
sendto$inet6(r0, &(0x7f0000000000)="8d", 0x1, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000004f80)=[{{0x0, 0x0, 0x0}, 0x6}], 0x1, 0x2001, 0x0)

15.290871293s ago: executing program 3 (id=1160):
mlockall(0x2)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
r0 = shmget$private(0x0, 0x3000, 0x386, &(0x7f0000ffa000/0x3000)=nil)
shmat(r0, &(0x7f0000001000/0x3000)=nil, 0x0) (fail_nth: 5)

4.909511237s ago: executing program 3 (id=1161):
r0 = openat$sndseq(0xffffff9c, &(0x7f0000001240), 0x0)
ptrace(0x10, 0x0)
r1 = socket(0x10, 0x2, 0x0)
fcntl$getownex(r0, 0x10, &(0x7f0000000300)={0x0, <r2=>0x0})
ioctl$TIOCSPGRP(0xffffffffffffffff, 0x5410, &(0x7f0000000340)=r2)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x20002, 0x0)
semget$private(0x0, 0x1, 0x398)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="400000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001800128008000100707070000c00028008000100", @ANYRES32=r3], 0x40}}, 0x0)
ioctl$PPPIOCSFLAGS1(r3, 0x40047459, &(0x7f0000000140))
r6 = io_uring_setup(0x3403, &(0x7f0000000240)={0x0, 0xfbe4, 0x400, 0x1, 0x3b2, 0x0, r5})
syz_io_uring_setup(0x8d5, &(0x7f0000000380)={0x0, 0xf478, 0x100, 0x3, 0x1c7, 0x0, r6}, &(0x7f0000000400)=<r7=>0x0, &(0x7f00000001c0))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, 0x0, 0x0, 0x4)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r8, 0x6, 0x13, &(0x7f0000000100)=0x1, 0x4)
connect$inet6(r8, &(0x7f00000001c0)={0xa, 0x4e21, 0x1, @remote, 0x4}, 0x1c)
sendmsg$NFULNL_MSG_CONFIG(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0x20000811}, 0x4040)
r9 = io_uring_setup(0xbbc, &(0x7f0000000280)={0x0, 0x0, 0x2, 0x0, 0x15a})
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r10, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x20, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @reject={{0xb}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_REJECT_TYPE={0x8, 0x1, 0x1, 0x0, 0x1}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x74}}, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
sendmmsg$unix(r11, &(0x7f00000bd000), 0x318, 0x0)
io_uring_enter(r9, 0x100000, 0x2, 0xf, &(0x7f0000000000), 0x8)
setsockopt$inet6_tcp_TCP_REPAIR(r8, 0x6, 0x13, &(0x7f0000000140), 0x4)
r12 = socket$nl_netfilter(0x10, 0x3, 0xc)
recvmsg(r12, &(0x7f0000001700)={0x0, 0x0, 0x0}, 0x0)

4.884693941s ago: executing program 1 (id=1170):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_int(r0, 0x0, 0xb, &(0x7f0000000040)=0x3, 0x4)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x1a, &(0x7f0000000240)={0x1, 'veth0_to_team\x00'}, 0x18)
syz_emit_ethernet(0xc2, &(0x7f0000000080)={@multicast, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0xb4, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x0, 0x0, 0x3, 0x24, 0x0, {0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev={0xac, 0x14, 0x14, 0x35}, {[@cipso={0x86, 0x71, 0x0, [{0x0, 0xc, "e256b28c04000000fb52"}, {0x0, 0x9, "789607675ca638"}, {0x0, 0xe, "7434954373561de584b703c8"}, {0x0, 0x9, "e706d30bd224f8"}, {0x6, 0x7, "cfa11cab1a"}, {0x0, 0x10, "c600"/14}, {0x7, 0xa, "6580a5e97612fe86"}, {0x0, 0x12, "73bc2300ad9d19a30000000000000000"}, {0x0, 0xc, "c8f46976e79e56c7a95e"}]}, @cipso={0x86, 0xc, 0x0, [{0x1, 0x4, "7f36"}, {0x3, 0x2}]}]}}, "0000fb10"}}}}}, 0x0)

4.884360292s ago: executing program 3 (id=1172):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x1, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x67700992df819641, 0x2008000000000003})
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000340)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
dup3(r2, r1, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a, 0x4})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000180)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000280)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x78, 0x18, &(0x7f0000000500)={@ptr={0x70742a85, 0x40002, 0x0}, @ptr={0x70742a85, 0x0, 0x0, 0x0, 0x2, 0x2a}, @ptr={0x70742a85, 0x1, 0x0, 0x0, 0x2, 0x3c}}, &(0x7f0000000240)={0x0, 0x28, 0x50}}, 0x400}], 0x0, 0x0, 0x0})
fsopen(&(0x7f0000000040)='sysfs\x00', 0x1)
r4 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCGREPORT(r4, 0x400c4807, &(0x7f0000000280)={0x1, 0x100, 0x7e0})

4.790872665s ago: executing program 1 (id=1173):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x6)
bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = socket$inet6(0xa, 0x800000000000002, 0x0)
sendto$inet6(r3, 0x0, 0x0, 0x4c881, &(0x7f0000000540)={0xa, 0x4e24, 0x10, @mcast2}, 0x1c)
sendmmsg$inet6(r3, &(0x7f00000015c0)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000580)="420bb6873bffebb42b", 0x9}], 0x1}}, {{0x0, 0x0, &(0x7f0000000a40)=[{&(0x7f0000000840)="5bba4406c37b6c2e1662e1d37e5900e41d36d277c3616b73c16d4f56903b31d71bdb5137e8d3c7d31279cff9572da0f9e3fe1507188d69a979779e44d361571bafe5799eb6a677180ac595c871150624abc3c38ce1a4369aa6ea47e23ac6f5d98f55440f96647af83b1df3781ead1c", 0x6f}, {&(0x7f0000000900)="9a9e28610f5841d5fad44191e2e9c5cc70dc4301236e1d7903ed6e9b9963fb5d76c53baf500904106dbeebb395f0c6912db21635ae1bc6d062", 0x39}, {&(0x7f0000000940)="db34238ff8c24119302b2ed38d5edb804240484d6e3803875932c00ca77b8a680916c9e01b88f58ca4301fc55eeeee134a3ff0e0888762eb51e08225a15b1aab13dad338d43fcb8651bb7f359c810ded9bc47a11427f090223", 0x59}, {&(0x7f00000009c0)="9190e42e123ee37d19f2a627aec0b3d42e14db4a0954e630a80066086fc2c4f7a3e33e42e0a6d83e3dc38c5edc7741f5e557c64ede71fdf7b721aafa99a009a769092cbb0dd4345178f3b155f1f53d9085595471faa592bbdc3e3f28de545362d4cadcd1b86d3f8c9b8b0bd14e802453e93f", 0x72}], 0x4}}, {{0x0, 0x0, &(0x7f0000000e40)=[{&(0x7f0000000bc0)="b37e8d8e2701c513ff18766901d2a16406cbd2bf7405b3b3e3ea25b31806f699", 0x20}, {0x0}, {&(0x7f0000000dc0)="11b2f23552dbee5fdb5ce9f9ef0f34941be1b8d0cad6145b9ebb1b", 0x1b}], 0x3}}, {{0x0, 0x0, &(0x7f0000001100)=[{&(0x7f0000000f00)="e8b5880486801e29aac1506ea21503664e4d6c408ee727aabae8f5e0ce9405fe5989baf51b2959cfba7dc341aef71a3fe3db7850827c331ac8ab17f3ee859f4a912321efca0c5a34a94dfcb1fb0cf43342e36c7faa7e0245bbb46ef714fc54601e7307b7e760a03dc5f40ae2509f6885fd394b9901a8434ce1084743c0ec70f5bfca1bfdf57aa010f39beefafb6b81805c61b8606d3077452491a22b15c844135f3c11d4", 0xa4}, {&(0x7f0000000fc0)="1435c475ff655bd18d564b6fd912016611af9363c8584d1b54e4a92348e3be2108", 0x21}], 0x2}}], 0x4, 0x400c404)
sendmmsg$inet6(r3, &(0x7f00000055c0)=[{{0x0, 0x0, &(0x7f0000000e00)=[{&(0x7f0000000c00)='s', 0x1}], 0x1}}], 0x1, 0x84)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x4, 0x4, &(0x7f0000000240)=@framed={{0x18, 0x2, 0x0, 0x0, 0x40000e, 0x0, 0x0, 0x0, 0x10000007}, [@call={0x85, 0x0, 0x0, 0x29}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000002280)={r4, 0x0, 0xe, 0x0, &(0x7f00000008c0)="e02742e8680d85ff9782762f86dd", 0x0, 0x57af, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r5 = socket$netlink(0x10, 0x3, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
setsockopt$inet6_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x29, 0x2a, &(0x7f0000000140)={0x0, {{0xa, 0x10, 0x0, @mcast2}}}, 0x88)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, &(0x7f0000000380)=ANY=[@ANYBLOB="0b000000000000000a00000000000000ff02000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006000000000000000000000000000000000000000000000000000000000000000002000000"], 0x190)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x800)
recvmmsg(r5, &(0x7f0000007700), 0x318, 0xfc0, 0x0)
r7 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000040)={'team0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x88, 0x24, 0xf0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, r8, {0x0, 0xffff}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [], 0x0, [0x4, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c4, 0x0, 0x0, 0x0, 0x3dc], [0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000]}}}}]}, 0x88}}, 0x20000000)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000006c0)=@newqdisc={0x30, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x10000, {0x0, 0x0, 0x0, r8, {0x0, 0x5}, {0x1, 0xffff}, {0x2, 0x3}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x8041}, 0x800)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000001c0)='kfree\x00', r0}, 0x10)

4.090103581s ago: executing program 2 (id=1175):
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$int_in(r0, 0x40000000af01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, 0x0)
ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000000000))

4.020779122s ago: executing program 2 (id=1176):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000240)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x3c}}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000f00)=[{{&(0x7f0000000080)={0x2, 0x4e25, @multicast2}, 0x10, 0x0}}, {{0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000300)="f5", 0x1}], 0x1}}], 0x2, 0x2000c044)
syz_emit_ethernet(0x1a, &(0x7f00000000c0)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3f}, @val={@void, {0x8100, 0x5, 0x0, 0x4}}, {@llc={0x4, {@snap={0x1, 0x0, "a6", "8bf7ad", 0x8809}}}}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[], 0x5c}}, 0x0)
r1 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r1, 0x0, 0x27, &(0x7f0000000140)={@multicast2, @local, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0xc)
setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000000040)={@multicast2, @local, 0x1, 0x1, [@rand_addr=0x64010100]}, 0x14)
connect(r1, &(0x7f0000000080)=@nfc={0x27, 0x0, 0x1, 0x2}, 0x80)
bpf$MAP_CREATE(0xe4ffffff00000000, 0x0, 0x50)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x6)
r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x4)
gettid()
timer_settime(0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x0, 0x0, 0x0}, 0x94)
r4 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee4, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x40, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x8001}})
io_uring_enter(r4, 0x2b93, 0xf9d0, 0x22, 0x0, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f00000000c0)=@IORING_OP_POLL_REMOVE={0x7, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1})

3.457034229s ago: executing program 2 (id=1177):
futex(0x0, 0x8, 0x800007, 0x0, 0x0, 0x0)
creat(&(0x7f0000000080)='./bus\x00', 0x1d0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d0000008500000005"], &(0x7f0000000040)='syzkaller\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20040, 0x0)
ioctl$KVM_GET_MSRS_sys(r1, 0xc008ae88, &(0x7f0000000100)={0x1, 0x0, [{0x10a, 0x0, 0x2}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000d80)={&(0x7f0000000d40)='mmap_lock_acquire_returned\x00', r0}, 0x10)
mount(&(0x7f0000000240)=@filename='./bus\x00', &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000100)='trans=rdma,')
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040e0a052c04090000000000e3"], 0xd)

3.363438605s ago: executing program 3 (id=1178):
r0 = syz_usb_connect(0x5, 0x36, &(0x7f0000000080)=ANY=[], 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
openat$mice(0xffffffffffffff9c, &(0x7f0000001400), 0x101)

3.299978219s ago: executing program 2 (id=1179):
r0 = signalfd4(0xffffffffffffffff, &(0x7f00000004c0), 0x8, 0x0)
read$FUSE(r0, &(0x7f0000000740)={0x2020, 0x0, <r1=>0x0, 0x0, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_LK(r0, &(0x7f00000001c0)={0x28, 0xfffffffffffffff5, r1, {{0x10000, 0xff000000000, 0x2, r2}}}, 0x28)

3.10055398s ago: executing program 0 (id=1180):
read$FUSE(0xffffffffffffffff, &(0x7f0000008340)={0x2020, 0x0, <r0=>0x0, 0x0, <r1=>0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000040)={0x50, 0x0, r0, {0x7, 0x1f, 0x0, 0x34014c40, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x10}}, 0x50)
r3 = socket$inet6(0xa, 0x1, 0x84)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x0)
mount$tmpfs(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='uid'])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000100)='autofs\x00', 0x0, &(0x7f0000000400))
r4 = syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x40102)
writev(r4, &(0x7f00000002c0), 0x2000036d)
sendmsg$NFNL_MSG_COMPAT_GET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x4814)
mount(&(0x7f00000000c0)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000000)='iso9660\x00', 0x208000, 0x0)
r5 = syz_io_uring_setup(0x4c15, &(0x7f0000000600)={0x0, 0x1973, 0x2, 0x7ffc, 0x20400251}, &(0x7f0000000340)=<r6=>0x0, &(0x7f00000002c0)=<r7=>0x0)
r8 = eventfd(0x401)
r9 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r9, 0x1, &(0x7f0000000100)='test_dummy_encryption', &(0x7f0000000240)='v1\x00ul\x00\x00\x00\x00\x00loc\x8d\x8b#\xe0\xb9\xbd\"\xeb.\xc7]\xa67\x97 \xc9\xfc|\x85o7Z\xdc}U\x8c\xdd\n\xaa?4\xafq\x1d\xf6(\xe6\x9em_\x1a\xbfDi\x15\x81\xd47\x8e\x86\xa2u~FC\x9c\xe3\x98\x87\x98\xf7\xa2\xb5\x12\x8cv\xe4_\x91\xa8G!mm\f\xcf\xfb[\xd5Qf\x15\xfe\xc80\xad\xaa\xe9', 0x0)
syz_io_uring_setup(0x641a, &(0x7f0000000300)={0x0, 0x235d, 0x10100, 0x0, 0x400002d8, 0x0, r5}, &(0x7f0000000200)=<r10=>0x0, &(0x7f00000001c0))
syz_io_uring_submit(r10, r7, &(0x7f0000000140)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x40, 0x0, r3, 0x0, &(0x7f00000003c0)="936e4942c5ba89df80f0454969dc6239d9651771f399a0fde8b8e9f63f7c8011a88f42a3dbd710f0d604ca9de01174313d7cc8d3c6ffa94fc3e896c887f4104a344243e9f63fd9bf9e9fc592f5610420a2fbc3bd77e681327af22c56961c69bfe70d945f8256452933cac8aa66b6883e3ee49343206bbbd30efdba13", 0x7c, 0x20000040})
io_uring_register$IORING_REGISTER_EVENTFD(r5, 0x4, &(0x7f0000000040)=r8, 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x80, &(0x7f0000000100)=0xffb, 0x0, 0x4)
io_uring_enter(r5, 0x625, 0x4c0, 0x44, 0x0, 0x0)
shutdown(r3, 0x0)
getsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000440), &(0x7f0000000480)=0x4)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
openat$rfkill(0xffffff9c, &(0x7f0000000040), 0x8080, 0x0)
epoll_create1(0x80000)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYRESHEX=r3, @ANYRES64=r10, @ANYRESHEX=0x0, @ANYRESHEX=r10, @ANYBLOB="b385ec82f09bc84d776b4b08adf0969f7d85dcbcfc6c039bbbb15bcc6228ff20206055e7239fbf4378dde134f8655ede62b6e3669359d9207c35f9c643fa08986cbb6e70371f48eaf9fa603d5763e2d920486c52bf3f89364d90e5fc771f3a224a517308c51920eec3b3c7de548944878a028f1c6860ea8280516fb63f854af9f5cfad59f64374e04727945df4bb6b1b8150d21d198320e11239948c81b6bb87c9cd411256", @ANYRESHEX=r2, @ANYRESOCT=r1, @ANYRES8=r0], 0x7c}, 0x1, 0x0, 0x0, 0x4880}, 0x4000000)

2.979337936s ago: executing program 0 (id=1181):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000010000000900010073797a300000000040000000030a01020000000000000000010000000900010073797a30000000000900030073797a3000000000140004800800024000000000080001400000000568000000060a010400000008000000000100000008000b4000000000400004803c0001800a0001006d617463680000002c0002800800010065636e000c000300e4edf2b75cc7c0a308000240000000000c000100706b7474797065000900010073797a30000000001400000011000100"], 0xf0}}, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000240)={0x1, 0x3, 0x1000, 0x39, &(0x7f0000000140)="a5d1dec2ac4ba5b7bda37a4bdb6ab82aac433464dc8402b49a1c98a62fb44d95016aee076d5141a2b4b3d13dd0b6e128b969cf807d51e766d0", 0x0, 0x0, &(0x7f0000000180)})
sendmsg$NL80211_CMD_NEW_KEY(r2, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000001040)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000020000000a00000008000300", @ANYRES32, @ANYBLOB="1000508004000a000500020006"], 0x2c}}, 0x0)
syz_io_uring_setup(0x34b7, 0x0, &(0x7f00000001c0), &(0x7f0000000500))
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r4, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0xb}, 0xe)
sendmmsg$sock(r4, &(0x7f0000004100)=[{{0x0, 0x0, 0x0}}], 0xffffff80, 0x0)
shutdown(r4, 0x1)
r5 = openat$sysfs(0xffffff9c, &(0x7f0000000100)='/sys/power/pm_trace_dev_match', 0x185200, 0x22)
setsockopt$SO_RDS_TRANSPORT(r5, 0x114, 0x8, &(0x7f0000000000), 0xffffffffffffffe1)

2.590740527s ago: executing program 1 (id=1182):
pipe(&(0x7f0000000380)={<r0=>0xffffffffffffffff})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000000000008500000070000000850000000f00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x18)
quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0)
r2 = socket$kcm(0x29, 0x2, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(r2, 0x119, 0x487, &(0x7f0000000500), &(0x7f0000000480)=0xfffffffffffffd69)
inotify_init()
timer_create(0x6, &(0x7f0000000080)={0x0, 0x3e, 0x6, @thr={&(0x7f0000000540)="c2d50aacb5ca80dea070c529b5f32ddb08e5ff4483dd4b451fa31150c46dceb8173c6c5ff1c4acf946fd63868cb58f9e7280a241c8cc2ffab6b76e0283bd5b40a00cd5b33ebe93abd73834b91b2dfa69d4af5b5d06bfb51e75eb65d3e72ae9cb0ca3aa0627281a5bea14e147801d3841663b8b8ffaac185356b3faa5f074ba7065a26dece92f6a60ea1f4fc746723988cfdea8a4469501c5ebf6b3f2a92f0a9e0ae42b3bfcd06b5ea72a3448bdaa0630f80924eb4022fc37dca4e16de991d92b0300dfb28f8f", &(0x7f0000000640)="76039e051e0227d2e5f0d6a1013c4791fc821f6a92970d2621841c7da245e4b3c6fa0e64268207a2b4ae923243c7fcf7888e942cdbf1563c88d66f318c581befb6008c1bf671ea87600b9e067efc68860b287c3c458039879b71ca68990b0548e251989b17abf77ac9bb4115f07eccb9dfc7e036b6f413829c03b9f089da7ab099dd83e191f53b7c77e850a57c64ec8488f4ca3364fca522e0c7e2943446db7b3b574ec3e29237"}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT_OLD(r4, 0x28, 0x6, &(0x7f0000000340), 0x8)
r5 = userfaultfd(0x801)
ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f0000000100)={0xaa, 0x380})
ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_ZEROPAGE(r5, 0xc020aa04, &(0x7f0000000000)={{&(0x7f00001f7000/0x2000)=nil, 0x2000}})
r6 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_SET_FORCE_PACK_ID(r6, 0x227b, &(0x7f00000001c0)=0x2001)
r7 = fcntl$dupfd(r6, 0x0, r6)
write$FUSE_INIT(r7, &(0x7f0000000080)={0x50, 0x0, 0x0, {0x7, 0x2b, 0x81, 0x21004040, 0x5, 0xd65b, 0x1, 0x1850c00, 0x0, 0x0, 0x40, 0xa}}, 0x50)
ioctl$ifreq_SIOCGIFINDEX_vcan(r7, 0x8933, &(0x7f00000001c0)={'vxcan1\x00'})
syz_io_uring_setup(0x49a, &(0x7f00000000c0)={0x0, 0x79af, 0x3180, 0x8000, 0x40024e}, 0x0, 0x0)
r8 = socket$unix(0x1, 0x1, 0x0)
close(r8)
socket$netlink(0x10, 0x3, 0x2)
setsockopt$sock_int(r8, 0x1, 0x2e, &(0x7f0000000040)=0x7c, 0x4)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x7, 0x4, 0xa000, 0xfffa}, 0x1d, [0x7ffe, 0xc95a, 0xfffffff3, 0x9, 0x80, 0x2, 0x3, 0x4388, 0x6, 0x4d, 0x39cc191a, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x5, 0x4, 0x8, 0x4, 0x3c5b, 0x1, 0x3, 0x9, 0x1, 0x1f461e2c, 0x0, 0xe660, 0x4, 0x7, 0x101, 0x7fff, 0x4c74, 0x80000000, 0x242, 0x3, 0x4, 0x0, 0x71, 0xfffffff8, 0x7, 0x1, 0x0, 0xd, 0x3e, 0x8f, 0x6, 0x10000006, 0x0, 0x5, 0x4, 0x8, 0x0, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0xffff, 0x134, 0x7ffe, 0x10, 0xfffffff3, 0x129432e6, 0x3, 0xf9, 0xd, 0x2bf, 0x6c9, 0x9, 0x8000006, 0x3, 0xb83, 0x7, 0x5, 0x0, 0xf, 0x312, 0x78, 0xea4, 0x0, 0x4, 0x4, 0x8000, 0x9, 0x400, 0x5, 0x6, 0x7, 0xff, 0x5, 0x5, 0xed2d, 0x4, 0x0, 0x5, 0x2, 0xa, 0x4, 0x9, 0x8, 0x800, 0x6, 0x7, 0x8000, 0x1, 0xfe000000, 0xff7f, 0x2, 0x7f, 0x9, 0x2, 0xffffffff, 0x9, 0x1, 0x7, 0x3, 0x9, 0x48c93690, 0x42, 0x2], [0x400, 0x4, 0x1, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8001, 0x83, 0x80000003, 0x9, 0x43e7, 0x9, 0x5, 0x2, 0x2, 0xf38, 0x8, 0x4, 0x6d01, 0x5, 0x38, 0x800003, 0x200, 0x80, 0xf, 0xd, 0x8, 0x1000, 0xa3, 0x7, 0x53cf697b, 0x5, 0x6, 0xac8, 0xbf, 0x2, 0x3, 0x7ff, 0xfffffff9, 0x1, 0x1, 0xffff, 0x0, 0x1a, 0x1c, 0xfffffff7, 0x3, 0x6, 0xaaed, 0x4, 0x65], [0x9, 0x1, 0x3, 0xb, 0x5, 0x938, 0x6, 0x6, 0x0, 0x5, 0xce7, 0x1ff, 0x2, 0xf58, 0x5, 0x3, 0x101, 0x10000, 0x6, 0x7ffe, 0x80000000, 0x200a620, 0x2, 0x5, 0x1, 0x2, 0x14c, 0x60a7, 0xe, 0x6, 0xffffffff, 0x80000000, 0x5, 0x8, 0xc8, 0xee1, 0xfffff000, 0xffff, 0x3, 0x7f, 0xfc, 0x9602, 0x7, 0x2, 0x4, 0x6, 0x1, 0x10080, 0x5, 0x8, 0x30b1d693, 0xa1f, 0x8, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0xb0b2748, 0xb1c, 0x1, 0x200, 0xffbf2441, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @dev={0xfe, 0x80, '\x00', 0x35}, 0x1ff}, 0x1c)

2.370479295s ago: executing program 2 (id=1183):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x6)
bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = socket$inet6(0xa, 0x800000000000002, 0x0)
sendto$inet6(r3, 0x0, 0x0, 0x4c881, &(0x7f0000000540)={0xa, 0x4e24, 0x10, @mcast2}, 0x1c)
sendmmsg$inet6(r3, &(0x7f00000015c0)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000580)="420bb6873bffebb42b", 0x9}], 0x1}}, {{0x0, 0x0, &(0x7f0000001280)=[{&(0x7f0000000600)="acbddf157a95c96807936bdc6c70aff7fda23f3ee0ad4319dc3585a11b864ed6dc7dc6c4d39215238c5217b1fdd7c69bb02dfa21de5b35ddb2199c2f2134c9d0e3ec856dfae5e0e52506f183d6ef7d15e6852b88300b766ab705358375209bbe7e3756ba577d82e21dca4343146d99cb3e", 0x71}, {&(0x7f0000000300)="17b12a16a78691c3f183230cc5904abefd641e5668369e13ee287081481be182e0fbde757cf702f1e99b6db51a0db96eaf7484543d3333dc113fd7dc366eb2125d94c6b04b35444e3f93a571adb8192641e8d8e5c5780e2256dc671da679713dee003e55335a23f4780a66cd179ef6cdd76dd3343757bf9efe5f4ca1490a2e0cc60d749a107c345a9e8b5a98da53a9d6aaaf0f38c872fcac645e68b63815eeebca7a9f", 0xa3}, {&(0x7f0000001200)="0c2842bcda98fa5a3c5582a467e198439de24ac8e18b282c1b5a42ced05bb056f1180a3906e2318ebe0d4a5b13e031e57c224befc8bfeec2481f7821d73cb6de5eabb7a9816b7dc2a608e33bc0979da6c59e9c16398f79ece052965fe9042747", 0x60}, {&(0x7f0000001340)="cfead71247a4256f313c1e7c33ff244061bbbec62393fddf0189a76f33ce0456bd100ad28402707f458ab76455e4623bda43cd6ec3f9d5fb1e7f7bc75147398f2e246ac9072638fa6f26a18d4584d49ae93d056bc7be6e9a4a50ba509fc1d91909ca4ff4bea4209b41982f30cc4dda829ce56217526ffe1dba834198ecce21351c15e1c3acc1dfff307a4a9dea3eeb2844069bf51eadeb579423115e7ddb90bf45f5f7b304b8a65979c1dcaa690453b64b020a4b1cf22094e089fdb2a88fb9640c8de75c99f975c305f7e205e9fec90f97eaacbc7b4b5faf69d2c533ac8eac5a111135021312fc892cdda3", 0xeb}], 0x4}}, {{0x0, 0x0, &(0x7f0000000a40)}}, {{0x0, 0x0, &(0x7f0000000e40)=[{&(0x7f0000000bc0)="b37e8d8e2701c513ff18766901d2a16406cbd2bf7405b3b3e3ea25b31806f699", 0x20}, {0x0}, {&(0x7f0000000dc0)="11b2f23552dbee5fdb5ce9f9ef0f34941be1b8d0cad6145b9ebb1b", 0x1b}], 0x3}}, {{0x0, 0x0, &(0x7f0000001100)=[{&(0x7f0000000f00)="e8b5880486801e29aac1506ea21503664e4d6c408ee727aabae8f5e0ce9405fe5989baf51b2959cfba7dc341aef71a3fe3db7850827c331ac8ab17f3ee859f4a912321efca0c5a34a94dfcb1fb0cf43342e36c7faa7e0245bbb46ef714fc54601e7307b7e760a03dc5f40ae2509f6885fd394b9901a8434ce1084743c0ec70f5bfca1bfdf57aa010f39beefafb6b81805c61b8606d3077452491a22b15c844135f3c11d4", 0xa4}, {&(0x7f0000000fc0)="1435c475ff655bd18d564b6fd912016611af9363c8584d1b54e4a92348e3be2108", 0x21}], 0x2}}], 0x5, 0x400c404)
sendmmsg$inet6(r3, &(0x7f00000055c0)=[{{0x0, 0x0, &(0x7f0000000e00)=[{&(0x7f0000000c00)='s', 0x1}], 0x1}}], 0x1, 0x84)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x4, 0x4, &(0x7f0000000240)=@framed={{0x18, 0x2, 0x0, 0x0, 0x40000e, 0x0, 0x0, 0x0, 0x10000007}, [@call={0x85, 0x0, 0x0, 0x29}]}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000002280)={r4, 0x0, 0xe, 0x0, &(0x7f00000008c0)="e02742e8680d85ff9782762f86dd", 0x0, 0x57af, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r5 = socket$netlink(0x10, 0x3, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
setsockopt$inet6_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x29, 0x2a, &(0x7f0000000140)={0x0, {{0xa, 0x10, 0x0, @mcast2}}}, 0x88)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, &(0x7f0000000380)=ANY=[@ANYBLOB="0b000000000000000a00000000000000ff020000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000020000000a000000"], 0x190)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000008c80)=ANY=[@ANYBLOB="2c00000026000506"], 0x2c}}, 0x800)
recvmmsg(r5, &(0x7f0000007700), 0x318, 0xfc0, 0x0)
r7 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000040)={'team0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x88, 0x24, 0xf0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, r8, {0x0, 0xffff}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [], 0x0, [0x4, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c4, 0x0, 0x0, 0x0, 0x3dc], [0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000]}}}}]}, 0x88}}, 0x20000000)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000006c0)=@newqdisc={0x30, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x10000, {0x0, 0x0, 0x0, r8, {0x0, 0x5}, {0x1, 0xffff}, {0x2, 0x3}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x8041}, 0x800)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000001c0)='kfree\x00', r0}, 0x10)

2.110725502s ago: executing program 0 (id=1184):
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$int_in(r0, 0x40000000af01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000540))
ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, 0x0)

1.990563928s ago: executing program 0 (id=1185):
r0 = landlock_create_ruleset(&(0x7f00000002c0)={0x3f2e}, 0x8, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r0, 0x1, &(0x7f0000000300)={0x692e}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=@base={0x6, 0x4, 0xdd, 0xa}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180200009b1aecb600000000000000008d0000007500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff93}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1900000004000000040000000200000000000000", @ANYRES32=0x1, @ANYBLOB="e4ffffffffdfffff000000000000000000000000e3f7afc6224b223ac65f7a2d5e63dd5bee77aafe8e62be64d623848897b1851377274b6f6f379edfac24ae185f759d6e65cdaac93f442721d2122674fef7c881fe5180eda0ca84fd340af2d19062af9f1ec309803b66108a98d117d68e43016ada743f624194f2ef73feaed44bc636168642cdc43b2d63362415902a7ffe60d4af4296a9641250d7a69c77ac406c7994b4dc52a0279349e2f927357cda19bc0df7c8a08a95bee3c83a6cb0abb377545b7f61a59dcca5a9e5df541b1940d6f5309460a2a841d6f34960282b495cf13ce337ad7dec1e2b", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000073"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x4, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
getsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000100), 0x10)
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x110)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
umount2(&(0x7f0000000340)='./file0\x00', 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r5 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x40300, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)

1.69516255s ago: executing program 1 (id=1186):
mkdir(&(0x7f00000000c0)='./file0\x00', 0x82)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r1 = ioctl$KVM_GET_STATS_FD_vm(0xffffffffffffffff, 0xaece)
bind$unix(r1, &(0x7f0000000340)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
r2 = dup(r0)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = syz_open_procfs(0x0, &(0x7f00000002c0)='loginuid\x00')
writev(r3, &(0x7f0000000280)=[{&(0x7f0000000400)="3f45b10e20", 0x5}], 0x1)
bind$inet6(r2, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private2={0xfc, 0x2, '\x00', 0x1}}, 0x1c)
r4 = socket$kcm(0x2, 0x5, 0x84)
ioctl$SIOCSIFHWADDR(r4, 0x8931, &(0x7f0000000000)={'dummy0\x00'})
syz_emit_ethernet(0xbe, &(0x7f0000000740)=ANY=[], 0x0)
r5 = socket$netlink(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)=ANY=[@ANYBLOB="05001000", @ANYRES16=r6, @ANYBLOB="010000000000fbdbdf25250000000e0001006e657464657673696d0000000f0002006e657464657673696d300000"], 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0xc0}, 0x1, 0x0, 0x0, 0x10}, 0x0)
openat$sequencer2(0xffffff9c, &(0x7f0000000140), 0x1, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
bind$inet(r7, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r7, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r7, 0x6, 0xd, 0x0, 0x0)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/timer_list\x00', 0x0, 0x0)
preadv(r9, &(0x7f0000000440)=[{&(0x7f0000000180)=""/82, 0x52}], 0x1, 0xd651, 0x72b)
sendto$inet(r7, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000240), 0x0)

790.510296ms ago: executing program 1 (id=1187):
futex(0x0, 0x8, 0x800007, 0x0, 0x0, 0x0)
creat(&(0x7f0000000080)='./bus\x00', 0x1d0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d00000085000000050000"], &(0x7f0000000040)='syzkaller\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20040, 0x0)
ioctl$KVM_GET_MSRS_sys(r1, 0xc008ae88, &(0x7f0000000100)={0x1, 0x0, [{0x10a, 0x0, 0x2}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000d80)={&(0x7f0000000d40)='mmap_lock_acquire_returned\x00', r0}, 0x10)
mount(&(0x7f0000000240)=@filename='./bus\x00', &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000100)='trans=rdma,')
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040e0a052c04090000000000e3"], 0xd)

710.683416ms ago: executing program 1 (id=1188):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x309080, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x40afc, 0x0, 0x8014}, 0x0)
connect$unix(r2, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x0, 0x1}, 0x10)
write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$sock(r3, &(0x7f0000002f80)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000380)="045cf33ffacf043fa2d065a22c5edcca5547a62f3eea46150f387887d2db3fa1ebe29cab22a1d0fe0a340b04b936c382fd760a0050435b15bd9a2b93fdbba03ea708b95215443e04b925f27ea6383417403fe4923ff26b0a609c44f20cc66385fa4c690e618f1c2f8f300f183278cb3549fe62ce57e7151eefdb9a0d1d79076ddf7e616e8297ba8b80563c9b0724d46eb992b7f046214672aa696860bbe65a8439338bc61c34439c3e4f39fce2981832a01d78400f2495179e300da3607912d5daaf111ec3dcf1bf3f2d439fe4cbf5d0c1c41bf83263abb7fbbefa1ae121827b24b42dd3e80b348e88f8fb3d21be5e6c0f1ac5", 0xf3}, {&(0x7f0000000580)="c1909bd62577f8af0f520baa9b37edd1332b3130d0c87a02ae1e63736fd73b601f37c88acafe95b7d655d1ef5f7407a3dad167664e10fb468519bea09add46ebad06dbab8c172517dced35048a87f72a9be65f8011baae7fb8b6bfe0e78b99be9c6dfb8aeaad6bdb9b1150c4997cf33f58f1e0ec509cae6cef2358f16a9f97e3cff08e7e94ff4aa63c76426184f4979a750daeb56721a5f1e9f2d896ffb707d059a425d3f6909b858632551f87b82acdb1fe7cf0891fd979bf3eb0b10e0ec1857375a257c7b6a71d049147c48761cdf0ba9b94a178a643f374b189f55e636f1d1c", 0xe1}, {&(0x7f0000000140)="68c0b4e63cf6dec100b63a6d02cb7a44507b7c26cd4f86b6b63a", 0x1a}, {&(0x7f0000000480)="37acabd6cdb1d9b2a918f692c0c796d0a26f5d0f13a33657fb9fa536178a24348911f20c6682ea6257573a47bcc20ffdf98e32602f417cf9b92d89eec952182f4df7f018a2daf580776f9a7355de69012c2add895c2bcae66b09475a1166daf93dd5bff855134073bc12b21fe15a9efe3f3d612d170c47a5f058f6f3d7663a55682959742377ed0ddb05f49c8c4068e1da259a834d350e2839ed4c61d537f3", 0x9f}, {&(0x7f0000000680)="d94864dd463091fa92e814fc46d513c918529dc8cf9cc77239b1c7aa96d8129ac1e395e63dfeb98b19c0709dddb503a6b270f92f72534d8fa992de49e30ea9772eaf951f4a605430ea64e0fb29a99c9f96b66fe48855f58995b147d880e0ad35e2a40b62d6aa0783127cd26f5d15de86e6a7b965ca0b52c79137a2e55dad6ed37c006f8db60c32aab0c4faf37be374b65592f13177bb241c72337a206dc6f9b8884d4251c3f71d", 0xa7}, {&(0x7f0000000240)="d6d486a6b746f32e3a6139628f9234129737a0fa9d035054810c3b1df115a47e48e299052b6da5887258c25ed730828a5b4279d6c6c9085fc3cee29d76dfb86afb7b410bbdce78696f69fc07cb7ba0d2e278ee6ebd85b1b1a86512fb5e", 0x5d}, {&(0x7f0000000740)="59ffd2d90fb3b894f7e495fcef71e11d81d298b3d09eb3c6be7863e1ed8b0bb5a5070287b9feeb5d9201d66056aaf5b958536dce43823ab1bba06be995af149e2a78bef0bc5edf505487093d39eb2fa26bb054cdcf70962651f56bbbab15114ddc158a7f5d9ebe027e8521155ab991203d58e2d3b8364e9c4ed6695b53164ef305929ff841104b224463026895270814341810c53d8f1e1546d86d6e9ae61c296de72239413d0904ca681f137dd32496774f74be53621cc0df1313e27a8524f5d92d084369fb1263f7b76436bc974bbc086c1722", 0xd4}], 0x7, &(0x7f0000000840)=[@timestamping={{0x10, 0x1, 0x25, 0x8}}, @timestamping={{0x10, 0x1, 0x25, 0x4}}, @mark={{0x10, 0x1, 0x24, 0x6}}], 0x30}}, {{&(0x7f0000000880)=@pppol2tpin6={0x18, 0x1, {0x0, r3, 0x4, 0x1, 0x2, 0x2, {0xa, 0x4e20, 0x6b1, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010100}, 0xc6}}}, 0x80, &(0x7f0000000a00)=[{&(0x7f0000000900)="7fe31ce05d6bb012720ed5800fb1664b4681fac03547f3de0588e6cac8a5d6e111e9d51d28f19895a7432d9bb79a37cbd3449eb2866897e7c233ee2192332de4c7d9f872ee9c1a1f8154e9bb83daa0747901be1a0de6796aa648cbc129b7eafda92c3ce8a0497070bfe1428fc356987f8ce80f5ec1ac64d3458eface2d63f730976402eec8d06e23e21566a01226968f50f705d56552453909d625aa1f66aa0bbcc7da36db7616e6fb82f1aec396e06c5b45b084508bd96cb06a3d8118df362845f25ebb31392bec476c896436e509265da45643bb62d5f6dc217c7dc77806ab78852d", 0xe3}], 0x1, &(0x7f0000000a40)=[@txtime={{0x14, 0x1, 0x3d, 0x6}}, @mark={{0x10, 0x1, 0x24, 0x5}}, @mark={{0x10, 0x1, 0x24, 0x6}}, @mark={{0x10, 0x1, 0x24, 0xcc}}, @mark={{0x10, 0x1, 0x24, 0x5}}, @mark={{0x10, 0x1, 0x24, 0x3ff}}], 0x64}}, {{&(0x7f0000000ac0)=@pppoe={0x18, 0x0, {0x0, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'wlan0\x00'}}, 0x80, &(0x7f0000001040)=[{&(0x7f0000000b40)="071d29f9e92ff2cda490adedf8c527e34eb66ae9a8f737a5502a9e28c398a70b19e95517376556064aad80ac", 0x2c}, {&(0x7f0000000b80)="bf399a6ce0fbf9a79b057c1355bf1cda85952ed2552ce85168b31b62e837abbf67ff9bd3a5fad95ca74fc014684cccfc41c822f899642c911cfbf997846689d878097e747a8c6e256e2d26609a88b66ddf28af8d4fe7a81d8893d658ad8f05727df8fec2597a2f1d87610840e5f31658bee981905dc0498e1af882f742abef", 0x7f}, {&(0x7f0000000c00)="52b2d981f4727634f111d4a878b4b92ebdd5f4ca010ec4f2b7bc348f6042fe2ba051b33594af11314de6467f4e4cd5de652d4d83f65043f760617a22844c40fad07a5645655a91cc3232ce61516e9501740b8f", 0x53}, {&(0x7f0000000c80)="c92144c0476046fe3f1afdce747204c88ddbb36d203975cacd7bd7f09de3b8a706505ed2d67f15a74a9cdc6175e80f5788d1158086caa63c633e1db74c3e66aab90e14519364708226cb1628938a74dc306d3c012cb1dc82a178e971f1cdec71f24f93edaf1fe603c8150cc0aa1fccc378df2fe8b81799b7bd3fe276e668298844ef810f1c1e6356e259296ea85dce21872fdba21ad746f06f26243babfac4a08d47434bcfa849afd84bd291ee1f6cae6260877cc6700fe7e35db754a1a1526296594958b2e7ce0e430925c2aa591d4648cec9dd6654f60a4ebbf27b888eacaa950db33e950a162fb8312416b29d0f", 0xef}, {&(0x7f0000000d80)="629ee39301ba7586ec2e35877e9046d938bb9604465b95f3a6ca4f4a6bc3e5a542c03e0fd94ca9b7a02b20ba8923b27b6bce86b0770874f25b43c3d60836fb5c6ec53c6dae98397788e2546b80b1511960ae352a5fda2eb2b97c1538599fd336f08b231b3f9d8944f41011c27d4181c01b29faf2d8bfd057e2d21ae90591c21deebbb148c6f21db16b23f80f76d30d2660db3bbb9658f058acc371e00fc58ec103d7ce38f9e8eb102c7e9a91af36d5a292c3d9c596adef0bfac93684576cef4d5cab979ca58b77fa436cf51ab089aa5bf80be2504988f162d231e10fc7c08fbcbae4e06855ae37f39675aa5277a5da1e27766c6c", 0xf4}, {&(0x7f0000000e80)='M}', 0x2}, {&(0x7f0000000ec0)="ac340c9e4e9931ab62d5193ac182d6fc2c2ac73eeca54ad247c70dc738c6b02afaf5c538ea0d630fb8008952c89a95515930b69c6277509e51d77749095361b46a9b55ff62b24dd5fd4de6da1fa9c7ba274c2d5cbee9e7c1baef9209f2de28b9c5117e834b2f0f8699f5dca3be4985032722c117f738ec691a7fb886126983168b0a1c342e3c6370bda53ba84780b6d3900be221efc53bc6ef108ef912e00b0766ffa522a7e7a6e2f7fa970d0ff902d78ac9d3a213973c3f", 0xb8}, {&(0x7f0000000f80)="0238bf090e6ddfa411a4be74b6473726d87ceb9722f64abb823b0cca7ea06da183bbed8bc2dd2968d944b0227c0706c8d3d8b8990a970bb011cbd60244bf370860613fd37874fed5b5c1414db35c369a27882847ba583a7c4fea1d427b5b3b20ebcbafa142ab8e8a4fbbb2155aba2b25c51bda67028c904f0e909cf5321efc09ae1573f4b297a1ff7f79c9cb46a99f926ac492e20d5fffa8083df7bc6305b57e0af0d246d689e44190fba17de97c2f757e382865", 0xb4}], 0x8, &(0x7f0000001080)=[@txtime={{0x14, 0x1, 0x3d, 0x9}}, @timestamping={{0x10, 0x1, 0x25, 0xfffff4cc}}, @txtime={{0x14, 0x1, 0x3d, 0x1ff}}, @timestamping={{0x10, 0x1, 0x25, 0x5}}, @mark={{0x10, 0x1, 0x24, 0xcb2}}, @timestamping={{0x10, 0x1, 0x25, 0x3}}, @timestamping={{0x10, 0x1, 0x25, 0x5}}, @timestamping={{0x10, 0x1, 0x25, 0x2}}], 0x88}}, {{&(0x7f0000001140)=@l2tp6={0xa, 0x0, 0xff, @empty, 0x5, 0x4}, 0x80, &(0x7f0000001200)=[{&(0x7f00000011c0)="5b775effc42e36b37bdd4463a8134a82864feea0bf3b9eb04d76188f09ab96d49cb4b867a93eec549171bd1e0ca7b3fd02", 0x31}], 0x1, &(0x7f0000001240)=[@mark={{0x10, 0x1, 0x24, 0x4a8}}, @mark={{0x10, 0x1, 0x24, 0x80}}, @timestamping={{0x10, 0x1, 0x25, 0x5}}, @txtime={{0x14, 0x1, 0x3d, 0x8031104}}, @txtime={{0x14, 0x1, 0x3d, 0xa0}}, @timestamping={{0x10, 0x1, 0x25, 0x100}}, @mark={{0x10, 0x1, 0x24, 0x4}}], 0x78}}, {{&(0x7f00000012c0)=@caif=@util={0x25, "ab4c6b24962813601972c30b1468fba0"}, 0x80, &(0x7f0000002640)=[{&(0x7f0000001340)="71054be155efa024bfc66b5872c026f5e63592b9acec0fb6bb4a8f426c9df6a16fa31f391ef03f8cc6ce730051232d354674c4b18af7ae44e9525f9c0f45d5c4a2f1ec566b81b11d025eec217daa2b7b28d4999d2e0d40ac13e78ea78f3de83a508aea285f0cb83fb3c57f0b37e8263aceeeedd9f1327af50420129d373b6435e063aafc99c96a9a0f29597e3876f6fc1ba0cdfa95cb761296610d906c23cefc9e0f6ef2b1c0d689616964a897da576e79b344a1ffb631edb3bb64013b0ef7b05c6263b36b056e6d99212472a3c8e04b24dac91be0ad80f4e80a3d62535b4626ee514e1c8724be7f88e1a3e8e1cac3e6c600", 0xf2}, {&(0x7f0000001440)="56f051e384a87c342e2e337d1a0a65ab7f65b09007813a732d18e0f5b5c482e9b551dff7373a6a2d278168439992c854d37537fe75a2c9bfbc8814e3eafe5a590abbef2e097a018ba0dee04aa02eefd6501388acebdff0ec1dd572bad50fe9601a962512b5f68e21fd23f4466e7d392f99d2d28f21478e50987be0f6b48fa0a669fc8a86894e634cc7e4c7b7b86a1d4e706aa35bab6a1e88ee7a47693744d9e51c37782d00f16646", 0xa8}, {&(0x7f0000001500)="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", 0x1000}, {&(0x7f0000002500)}, {&(0x7f0000002540)="2725fdc1d07fceba521d8b7f9231114850e90f198b8abf3790771dd5b9dc68311c7b8fa6a6e91005a3bb", 0x2a}, {&(0x7f0000002580)="18fe418321ece335652b8e5f6e1cfe6f52fff1fc2269b0a07665118108cc57f4b73ac4dbbc3e9ee4b87427d8bd86aedbd4ff03997397a6ee22f1646e3c82b2c75813031351fc4495d7200069e1aac20027ec02b8d8d66adc8382d97364629173b98a80fadc7f26c2298c6068e01a1b83acddf72c75dfeb3aad1a47b4691602f841476a5d43e4d5ac8c", 0x89}], 0x6, &(0x7f0000002680)}}, {{&(0x7f00000026c0)=@llc={0x1a, 0x6, 0x6, 0x1, 0xf8, 0x2, @multicast}, 0x80, &(0x7f0000002880)=[{&(0x7f0000002740)="3d8fe12ee75f4d9bd6b471bd32c4fec7d850fcf3a02eb12d04edf2ad4443d3741cd5c9b60e6d5a84c6ac3698c6a7b8ea3bbd179e4ed988967ba46100fc22deb0da7bb63a5b6f93294888d980a152963562d76e3785a94c", 0x57}, {&(0x7f00000027c0)="db57e4155a81355ed004ee054198f085ee86dc5df1a9ee3b3c020fa64610f172483efe50b250241efffaff8c19ff92d60555d54d1fe093d85345105b00227767f87dff840fb16340026edd945621cdc50bbdc5ffe3f04178633d7009954ede36b89139701bd3a2808d9c33a2044306ba818c6c749fe6c1dd97612a12f81e64a70435f40a0b6fec6782ec356fa493c99d", 0x90}], 0x2, &(0x7f00000028c0)=[@txtime={{0x14, 0x1, 0x3d, 0x101}}, @txtime={{0x14, 0x1, 0x3d, 0x33000000000000}}, @mark={{0x10, 0x1, 0x24, 0x2}}, @mark={{0x10, 0x1, 0x24, 0x8}}, @timestamping={{0x10, 0x1, 0x25, 0x37557698}}], 0x58}}, {{&(0x7f0000002940)=@sco, 0x80, &(0x7f0000002ec0)=[{&(0x7f00000029c0)="5be9586b71152c142b3e0a2134baf58e5c53ec8eef2bffe0b5ef6534a581ec00b45f3b3748b6e122d1ba05188a8a1ff089b0228be1ce5ab90d50e49f6859fa8de333a8500ba0258830693a5205e80a5b386f867ad18db812899333c357125699c9fe94fd8530ea79398ae6fbd06e35ee3319bdcc0b046daf9d922b10d569e9a1ef91e09485b057b1ae0c22798c1d9e060d9f671089b26cc2d18c87dbd5d943b9a84122f18d43", 0xa6}, {&(0x7f0000002a80)="d29070fa917148e659079f819cdb6fd782536d66e00045596644e09c77a4478c73352a169291fb4df358e56e79ac6f1a49444972b7e4c6e1d1d4f8f652101832d1cd2ba5f98a26113516f198fd3ef3fe1d6402fcc493c04fafb6c2bdf6f5fff67bdb6d754a714791969772b2257e4216247f528c92fdda", 0x77}, {&(0x7f0000002b00)="2c8bfdb93cf046ff4fe18589d751afa67a5a7fb3834c09145572d1a711abd2cafde21f5e3be7f5b0313b3e0d6c4a15f7a617e3f0227cd198ec7f09d5fc097db25aeeed6381c898018d471dbf8c318fa64de7c0ed011888636f924b1397ee303c9c7ce58024eaf901bf391df1c32290e376c9e787c5e833b66e1db2ad795df2b5c192bf113cc7bf91c973c65f313f849e149a7c7f9b608679d781eb04ba86e5aabaefa6bada69d60e6d6df9b6059b2eb364c12f50f78d9ccf364d8df98a784d776897d2baafddf7dd9b6a3f7cef83a7d0b8e837cb7356a3da6379842f43b74aa5", 0xe0}, {&(0x7f0000002c00)="7dcc8f32c06946037e154cbc2456a87ed48d61218ed38cdaf2757d85a0a2e29e8d002f4c9324e5552f39d73bffc95bf96c8ae22fe94001302de16a", 0x3b}, {&(0x7f0000002c40)="54eaec5e2fc485de0cb3fa949fe12e5812c8fb566a7873ce2da2e46956a28068bc44f81c6186f2cda674973250f60c", 0x2f}, {&(0x7f0000002c80)="ce18702dcca60e341d73ec6dc7ef03c9e2bfbc1ea1eefab13c9d4710bb1d6bd69f8e74ce986a1834abd5f6cae1ef16ef6fb82f2386bb56280ee6e8e46c864e4ad19bd0fa82e9dbc95f2930d482244484f5b92646824a46b6da37d344b1b5bf5d55586c95e7e4d6579aa5967bc2381418e0fe04af165b53ec940729df5e011b04948b3b65d2b375adf92530a6985efb47954346e713d5f5eacc169dbfea27cea0ab544ee39f26494649d87b909dc1cd4cc66001964ca5661dd53f68d66b0f1c8e0ea74a739506dbc91c110aac33f51c6c119f5bb05a8e398c563e1781b2062d93deeb7c94c682a3a0744a4455a3ec", 0xee}, {&(0x7f0000002d80)="f1d245e6e8199eea76ffee15328e3b860e40e1d87e5fa44ffb3b3122979f3f2abf5f707dad2c970b6f2293e7216eb74c2fc8d17313bfa2c3e76f110e9e3dc91287832400d3a926a1f5eaee71f9d20712ec89c70f05c52c2517649b3e5b74b1cc9a33d187ca069a5691b8d62169e431860d4189b61596594ec8670fe02e9b3f8140516e552001c81abc367af18c209cdec932bb1d330e0165f1fadea1f0c12c415c4acd2e4679d5df38a9cfba32da7be2f6c9c0bf94c1f9a453fb4779d9cd897a142b5d500d1fff", 0xc7}, {&(0x7f0000002e80)="2ff55ef01e44", 0x6}], 0x8, &(0x7f0000002f00)=[@timestamping={{0x10, 0x1, 0x25, 0xe8ea}}, @timestamping={{0x10, 0x1, 0x25, 0x2}}, @mark={{0x10, 0x1, 0x24, 0x80000000}}, @txtime={{0x14, 0x1, 0x3d, 0x9}}, @mark={{0x10, 0x1, 0x24, 0xffffffff}}, @txtime={{0x14, 0x1, 0x3d, 0x101}}], 0x68}}], 0x7, 0x8010)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x800)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r6, 0x4058534c, &(0x7f0000000180)={0x80, 0x2a, 0x3})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r6, 0x4058534c, &(0x7f0000000400)={0x80, 0x16, 0x3, 0xfffffff7, 0x0, 0xc})
connect$inet6(r5, &(0x7f0000000200)={0xa, 0x43, 0x0, @loopback, 0x1000000}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r5, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r5, 0x11a, 0x1, &(0x7f0000000540)=@gcm_128={{0x303}, "ffffffffffffffe2", "8e083700daf38a6d69e9b5e9c2f133d7", "6a3a05b9", "12772541f8eb02bb"}, 0x28)
shutdown(r5, 0x1)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='freezer.state\x00', 0x275a, 0x0)
write$cgroup_int(r7, &(0x7f0000000000), 0xffffff6a)
sendfile(r5, r7, 0x0, 0xffffffff004)
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
close_range(r8, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0xae64, 0x0)
ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f0000000080))

610.24311ms ago: executing program 0 (id=1189):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x4001}, 0xfea3)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="170000001600156f0000e3ffffff00000a00"], 0x18}}, 0x0)

582.880277ms ago: executing program 0 (id=1190):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0xc00, &(0x7f0000001180)=ANY=[@ANYBLOB='quota,usrquota_inode_hardlimit=7'])
r0 = gettid()
mknod(&(0x7f0000000180)='./file0\x00', 0x1ffa, 0x0)
acct(&(0x7f0000000140)='./file0\x00')
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0xdb4, 0x0, 0x0, 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
chdir(&(0x7f0000000240)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x6e)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0xc)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x4c, &(0x7f0000000000), 0x4)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}], 0x18}, 0x2000)
ioctl$TIOCL_SELLOADLUT(r2, 0x541c, &(0x7f0000000240)={0x5, 0x400, 0x5, 0x72d, 0xf55})
ioctl$TUNSETNOCSUM(r2, 0xc040ff0b, 0x1)
r3 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f0000000280)={@mcast1, 0x800, 0x0, 0x103, 0x9}, 0x20)
setsockopt$inet6_int(r3, 0x29, 0x1000000000021, &(0x7f0000000040)=0x5, 0x4)
sendmsg$inet6(r3, &(0x7f00000000c0)={&(0x7f00000001c0)={0xa, 0x4e22, 0x80000, @mcast1, 0x15}, 0x1c, 0x0, 0x0, &(0x7f0000000080)=[@dstopts={{0x18, 0x29, 0x37, {0x32}}}], 0x18}, 0x400c4)
socket$nl_netfilter(0x10, 0x3, 0xc)
mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1)
setxattr$trusted_overlay_nlink(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000340), &(0x7f0000000380)={'L+', 0x2b}, 0x16, 0x1)

458.92066ms ago: executing program 2 (id=1191):
socket(0x1e, 0x4, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)={0x58, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x2c}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}]}, 0x58}}, 0x800)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC, @ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
syz_init_net_socket$ax25(0x3, 0x5, 0xc4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
arch_prctl$ARCH_SHSTK_DISABLE(0x1011, 0x0)
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
setuid(0xee01)
syz_init_net_socket$ax25(0x3, 0x7, 0xcc)
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])

0s ago: executing program 3 (id=1192):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000010000000900010073797a300000000040000000030a01020000000000000000010000000900010073797a30000000000900030073797a3000000000140004800800024000000000080001400000000568000000060a010400000008000000000100000008000b4000000000400004803c0001800a0001006d617463680000002c0002800800010065636e000c000300e4edf2b75cc7c0a308000240000000000c000100706b7474797065000900010073797a30000000001400000011000100"], 0xf0}}, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000240)={0x1, 0x3, 0x1000, 0x39, &(0x7f0000000140)="a5d1dec2ac4ba5b7bda37a4bdb6ab82aac433464dc8402b49a1c98a62fb44d95016aee076d5141a2b4b3d13dd0b6e128b969cf807d51e766d0", 0x0, 0x0, &(0x7f0000000180)})
sendmsg$NL80211_CMD_NEW_KEY(r2, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000001040)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000020000000a00000008000300", @ANYRES32, @ANYBLOB="1000508004000a000500020006"], 0x2c}}, 0x0)
syz_io_uring_setup(0x34b7, 0x0, &(0x7f00000001c0), &(0x7f0000000500))
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r4, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0xb}, 0xe)
sendmmsg$sock(r4, &(0x7f0000004100)=[{{0x0, 0x0, 0x0}}], 0xffffff80, 0x0)
shutdown(r4, 0x1)
r5 = openat$sysfs(0xffffff9c, &(0x7f0000000100)='/sys/power/pm_trace_dev_match', 0x185200, 0x22)
setsockopt$SO_RDS_TRANSPORT(r5, 0x114, 0x8, &(0x7f0000000000), 0xffffffffffffffe1)

kernel console output (not intermixed with test programs):

returned 0
[  220.735521][ T5996] usbtmc 8-1:16.0: can't read capabilities
[  220.936577][   T34] usb 8-1: USB disconnect, device number 17
[  221.404461][ T8593] FAULT_INJECTION: forcing a failure.
[  221.404461][ T8593] name failslab, interval 1, probability 0, space 0, times 0
[  221.408545][ T8593] CPU: 3 UID: 0 PID: 8593 Comm: syz.2.719 Not tainted syzkaller #0 PREEMPT(full) 
[  221.408559][ T8593] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  221.408566][ T8593] Call Trace:
[  221.408570][ T8593]  <TASK>
[  221.408575][ T8593]  dump_stack_lvl+0x16c/0x1f0
[  221.408594][ T8593]  should_fail_ex+0x512/0x640
[  221.408611][ T8593]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  221.408623][ T8593]  should_failslab+0xc2/0x120
[  221.408635][ T8593]  kmem_cache_alloc_noprof+0x75/0x6e0
[  221.408649][ T8593]  ? skb_clone+0x190/0x3f0
[  221.408668][ T8593]  ? skb_clone+0x190/0x3f0
[  221.408683][ T8593]  skb_clone+0x190/0x3f0
[  221.408699][ T8593]  netlink_deliver_tap+0xabd/0xd30
[  221.408719][ T8593]  netlink_unicast+0x64c/0x870
[  221.408737][ T8593]  ? __pfx_netlink_unicast+0x10/0x10
[  221.408759][ T8593]  netlink_sendmsg+0x8c8/0xdd0
[  221.408778][ T8593]  ? __pfx_netlink_sendmsg+0x10/0x10
[  221.408796][ T8593]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  221.408810][ T8593]  ____sys_sendmsg+0xa98/0xc70
[  221.408823][ T8593]  ? __pfx_____sys_sendmsg+0x10/0x10
[  221.408835][ T8593]  ? get_compat_msghdr+0x11a/0x170
[  221.408856][ T8593]  ___sys_sendmsg+0x134/0x1d0
[  221.408873][ T8593]  ? __pfx____sys_sendmsg+0x10/0x10
[  221.408895][ T8593]  ? find_held_lock+0x2b/0x80
[  221.408925][ T8593]  __sys_sendmsg+0x16d/0x220
[  221.408941][ T8593]  ? __pfx___sys_sendmsg+0x10/0x10
[  221.408962][ T8593]  ? rcu_is_watching+0x12/0xc0
[  221.409006][ T8593]  __do_fast_syscall_32+0x7c/0x300
[  221.409045][ T8593]  do_fast_syscall_32+0x32/0x80
[  221.409068][ T8593]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  221.409082][ T8593] RIP: 0023:0xf7fe5579
[  221.409090][ T8593] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  221.409100][ T8593] RSP: 002b:00000000f54d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  221.409111][ T8593] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000240
[  221.409117][ T8593] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  221.409123][ T8593] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  221.409129][ T8593] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  221.409134][ T8593] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  221.409149][ T8593]  </TASK>
[  221.724074][ T8601] random: crng reseeded on system resumption
[  221.791684][   T10] hid_parser_main: 26 callbacks suppressed
[  221.791702][   T10] hid-generic 0003:0003:0000.0009: unknown main item tag 0x0
[  221.797896][   T10] hid-generic 0003:0003:0000.0009: unknown main item tag 0x0
[  221.801418][   T10] hid-generic 0003:0003:0000.0009: unknown main item tag 0x0
[  221.804594][   T10] hid-generic 0003:0003:0000.0009: unknown main item tag 0x0
[  221.807743][   T10] hid-generic 0003:0003:0000.0009: unknown main item tag 0x0
[  221.811038][   T10] hid-generic 0003:0003:0000.0009: unknown main item tag 0x0
[  221.814390][   T10] hid-generic 0003:0003:0000.0009: unknown main item tag 0x0
[  221.817611][   T10] hid-generic 0003:0003:0000.0009: unknown main item tag 0x0
[  221.820805][   T10] hid-generic 0003:0003:0000.0009: unknown main item tag 0x0
[  221.825568][   T10] hid-generic 0003:0003:0000.0009: unknown main item tag 0x0
[  221.830952][   T10] hid-generic 0003:0003:0000.0009: hidraw1: USB HID v0.00 Device [syz0] on syz1
[  221.912425][ T8603] fido_id[8603]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  222.301729][   T10] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  222.452350][   T10] usb 5-1: Using ep0 maxpacket: 8
[  222.457102][   T10] usb 5-1: unable to get BOS descriptor or descriptor too short
[  222.461734][   T10] usb 5-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  222.465529][   T10] usb 5-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  222.469647][   T10] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  222.476043][   T10] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  222.479835][   T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  222.483369][   T10] usb 5-1: Product: syz
[  222.485102][   T10] usb 5-1: Manufacturer: syz
[  222.487144][   T10] usb 5-1: SerialNumber: syz
[  222.709524][   T10] usb 5-1: 0:2 : does not exist
[  222.723643][   T10] usb 5-1: USB disconnect, device number 15
[  222.751599][ T5944] udevd[5944]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  222.776253][ T8621] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  222.903871][ T8621] /dev/sr0: Can't open blockdev
[  223.282240][ T8627] FAULT_INJECTION: forcing a failure.
[  223.282240][ T8627] name failslab, interval 1, probability 0, space 0, times 0
[  223.287436][ T8627] CPU: 1 UID: 0 PID: 8627 Comm: syz.1.732 Not tainted syzkaller #0 PREEMPT(full) 
[  223.287458][ T8627] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  223.287467][ T8627] Call Trace:
[  223.287474][ T8627]  <TASK>
[  223.287481][ T8627]  dump_stack_lvl+0x16c/0x1f0
[  223.287514][ T8627]  should_fail_ex+0x512/0x640
[  223.287540][ T8627]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  223.287565][ T8627]  should_failslab+0xc2/0x120
[  223.287579][ T8627]  kmem_cache_alloc_noprof+0x75/0x6e0
[  223.287601][ T8627]  ? security_file_alloc+0x34/0x2b0
[  223.287628][ T8627]  ? security_file_alloc+0x34/0x2b0
[  223.287648][ T8627]  security_file_alloc+0x34/0x2b0
[  223.287670][ T8627]  init_file+0x93/0x4c0
[  223.287687][ T8627]  alloc_empty_file_noaccount+0x3d/0xd0
[  223.287706][ T8627]  alloc_file_pseudo_noaccount+0x13a/0x230
[  223.287727][ T8627]  ? __pfx_alloc_file_pseudo_noaccount+0x10/0x10
[  223.287749][ T8627]  ? iput+0x35/0x40
[  223.287784][ T8627]  bdev_file_open_by_dev+0x143/0x210
[  223.287806][ T8627]  disk_scan_partitions+0x1ed/0x320
[  223.287834][ T8627]  blkdev_common_ioctl+0x5bd/0x2470
[  223.287856][ T8627]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  223.287878][ T8627]  ? __pfx_blkdev_common_ioctl+0x10/0x10
[  223.287906][ T8627]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  223.287932][ T8627]  ? do_vfs_ioctl+0x128/0x14f0
[  223.287952][ T8627]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  223.287978][ T8627]  ? find_held_lock+0x2b/0x80
[  223.288004][ T8627]  compat_blkdev_ioctl+0x24f/0x7a0
[  223.288027][ T8627]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  223.288050][ T8627]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  223.288072][ T8627]  __ia32_compat_sys_ioctl+0x242/0x370
[  223.288095][ T8627]  __do_fast_syscall_32+0x7c/0x300
[  223.288123][ T8627]  do_fast_syscall_32+0x32/0x80
[  223.288148][ T8627]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  223.288165][ T8627] RIP: 0023:0xf705d579
[  223.288178][ T8627] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  223.288194][ T8627] RSP: 002b:00000000f544d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  223.288211][ T8627] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000125f
[  223.288222][ T8627] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  223.288231][ T8627] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  223.288240][ T8627] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  223.288250][ T8627] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  223.288274][ T8627]  </TASK>
[  223.494172][ T8632] random: crng reseeded on system resumption
[  224.476597][ T8651] hfsplus: unable to find HFS+ superblock
[  224.611431][   T60] usb 8-1: new high-speed USB device number 18 using dummy_hcd
[  224.762765][   T60] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  224.766490][   T60] usb 8-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  224.770606][   T60] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  224.777018][   T60] usb 8-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13
[  224.779891][   T60] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  224.783243][   T60] usb 8-1: Product: syz
[  224.784772][   T60] usb 8-1: Manufacturer: syz
[  224.786499][   T60] usb 8-1: SerialNumber: syz
[  224.795572][   T60] usb 8-1: config 0 descriptor??
[  224.801317][   T60] adutux 8-1:0.0: interrupt endpoints not found
[  225.723275][ T8686] block nbd2: Unsupported socket: should be TCP or UNIX.
[  225.818909][ T8689] __nla_validate_parse: 13 callbacks suppressed
[  225.818976][ T8689] netlink: 8 bytes leftover after parsing attributes in process `syz.2.747'.
[  225.830063][ T8689] netlink: 8 bytes leftover after parsing attributes in process `syz.2.747'.
[  225.835948][ T8689] netlink: 8 bytes leftover after parsing attributes in process `syz.2.747'.
[  225.839359][ T8689] netlink: 8 bytes leftover after parsing attributes in process `syz.2.747'.
[  225.845268][ T8689] netlink: 8 bytes leftover after parsing attributes in process `syz.2.747'.
[  225.988453][ T8698] FAULT_INJECTION: forcing a failure.
[  225.988453][ T8698] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  225.996662][ T8698] CPU: 3 UID: 0 PID: 8698 Comm: syz.0.751 Not tainted syzkaller #0 PREEMPT(full) 
[  225.996686][ T8698] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  225.996696][ T8698] Call Trace:
[  225.996703][ T8698]  <TASK>
[  225.996710][ T8698]  dump_stack_lvl+0x16c/0x1f0
[  225.996741][ T8698]  should_fail_ex+0x512/0x640
[  225.996771][ T8698]  _copy_to_user+0x32/0xd0
[  225.996791][ T8698]  put_user_ifreq+0x72/0xc0
[  225.996810][ T8698]  sock_ioctl+0x5ef/0x6b0
[  225.996831][ T8698]  ? __pfx_sock_ioctl+0x10/0x10
[  225.996853][ T8698]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  225.996881][ T8698]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  225.996906][ T8698]  compat_sock_ioctl+0x58b/0x730
[  225.996928][ T8698]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  225.996972][ T8698]  ? hook_file_ioctl_common+0x145/0x410
[  225.997000][ T8698]  ? __fget_files+0x20e/0x3c0
[  225.997030][ T8698]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  225.997049][ T8698]  __ia32_compat_sys_ioctl+0x242/0x370
[  225.997072][ T8698]  __do_fast_syscall_32+0x7c/0x300
[  225.997101][ T8698]  do_fast_syscall_32+0x32/0x80
[  225.997127][ T8698]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  225.997154][ T8698] RIP: 0023:0xf705d579
[  225.997168][ T8698] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  225.997184][ T8698] RSP: 002b:00000000f544d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  225.997201][ T8698] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000000089f0
[  225.997211][ T8698] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[  225.997221][ T8698] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  225.997231][ T8698] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  225.997241][ T8698] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  225.997265][ T8698]  </TASK>
[  226.248594][ T8702] netlink: 8 bytes leftover after parsing attributes in process `syz.0.752'.
[  226.259142][ T8702] netlink: 8 bytes leftover after parsing attributes in process `syz.0.752'.
[  226.262551][ T8702] netlink: 8 bytes leftover after parsing attributes in process `syz.0.752'.
[  226.266615][ T8702] netlink: 8 bytes leftover after parsing attributes in process `syz.0.752'.
[  226.270684][ T8702] netlink: 8 bytes leftover after parsing attributes in process `syz.0.752'.
[  227.358339][   T10] usb 8-1: USB disconnect, device number 18
[  227.452916][ T8713] fuse: Unknown parameter '0x0000000000000005'
[  227.679031][ T8723] FAULT_INJECTION: forcing a failure.
[  227.679031][ T8723] name failslab, interval 1, probability 0, space 0, times 0
[  227.683928][ T8723] CPU: 2 UID: 0 PID: 8723 Comm: syz.2.761 Not tainted syzkaller #0 PREEMPT(full) 
[  227.683943][ T8723] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  227.683949][ T8723] Call Trace:
[  227.683953][ T8723]  <TASK>
[  227.683957][ T8723]  dump_stack_lvl+0x16c/0x1f0
[  227.683977][ T8723]  should_fail_ex+0x512/0x640
[  227.683995][ T8723]  ? kmem_cache_alloc_lru_noprof+0x66/0x6e0
[  227.684011][ T8723]  should_failslab+0xc2/0x120
[  227.684022][ T8723]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[  227.684035][ T8723]  ? stack_depot_save_flags+0x29/0x9c0
[  227.684052][ T8723]  ? __d_alloc+0x32/0xae0
[  227.684071][ T8723]  ? __d_alloc+0x32/0xae0
[  227.684085][ T8723]  __d_alloc+0x32/0xae0
[  227.684099][ T8723]  ? tomoyo_path_rmdir+0x91/0xe0
[  227.684117][ T8723]  d_alloc_parallel+0x111/0x1510
[  227.684131][ T8723]  ? check_path.constprop.0+0x24/0x50
[  227.684158][ T8723]  ? __pfx_d_alloc_parallel+0x10/0x10
[  227.684171][ T8723]  ? lockdep_init_map_type+0x5c/0x280
[  227.684184][ T8723]  ? lockdep_init_map_type+0x5c/0x280
[  227.684198][ T8723]  __lookup_slow+0x193/0x460
[  227.684210][ T8723]  ? __pfx___lookup_slow+0x10/0x10
[  227.684223][ T8723]  ? folio_mapping+0x90/0x190
[  227.684243][ T8723]  ? folio_mapping+0x90/0x190
[  227.684259][ T8723]  ? d_lookup+0xe7/0x190
[  227.684273][ T8723]  lookup_one_unlocked+0xd4/0x120
[  227.684286][ T8723]  lookup_one_positive_unlocked+0x24/0xc0
[  227.684298][ T8723]  ovl_lower_positive+0x29f/0x560
[  227.684315][ T8723]  ? __pfx_ovl_lower_positive+0x10/0x10
[  227.684332][ T8723]  ovl_do_remove+0x78/0x1040
[  227.684347][ T8723]  ? __pfx___might_resched+0x10/0x10
[  227.684365][ T8723]  ? __pfx_ovl_do_remove+0x10/0x10
[  227.684379][ T8723]  ? __pfx_down_write+0x10/0x10
[  227.684394][ T8723]  vfs_rmdir+0x206/0x690
[  227.684407][ T8723]  do_rmdir+0x2e8/0x3c0
[  227.684422][ T8723]  ? __pfx_do_rmdir+0x10/0x10
[  227.684441][ T8723]  ? getname_flags.part.0+0x1c5/0x550
[  227.684454][ T8723]  __ia32_sys_rmdir+0xc4/0x110
[  227.684470][ T8723]  __do_fast_syscall_32+0x7c/0x300
[  227.684487][ T8723]  do_fast_syscall_32+0x32/0x80
[  227.684504][ T8723]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  227.684517][ T8723] RIP: 0023:0xf7fe5579
[  227.684526][ T8723] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  227.684536][ T8723] RSP: 002b:00000000f54d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000028
[  227.684546][ T8723] RAX: ffffffffffffffda RBX: 0000000080000280 RCX: 0000000000000000
[  227.684553][ T8723] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  227.684559][ T8723] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  227.684565][ T8723] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  227.684571][ T8723] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  227.684585][ T8723]  </TASK>
[  227.844510][ T8732] vlan2: entered promiscuous mode
[  227.846243][ T8732] bond0: entered promiscuous mode
[  227.847828][ T8732] bond_slave_0: entered promiscuous mode
[  227.849823][ T8732] bond_slave_1: entered promiscuous mode
[  228.271474][   T34] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  228.421391][   T34] usb 7-1: Using ep0 maxpacket: 8
[  228.424379][   T34] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  228.427129][   T34] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  228.430943][   T34] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  228.434491][   T34] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  228.437712][   T34] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  228.442197][   T34] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  228.445746][   T34] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  228.562381][ T8752] random: crng reseeded on system resumption
[  228.627458][ T5946] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  228.630907][ T5946] Bluetooth: hci3: Injecting HCI hardware error event
[  228.635021][ T5302] Bluetooth: hci3: hardware error 0x00
[  228.666603][ T8739] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  228.677408][   T29] hid_parser_main: 8 callbacks suppressed
[  228.677438][   T29] hid-generic 0003:0003:0000.000A: unknown main item tag 0x0
[  228.683929][   T29] hid-generic 0003:0003:0000.000A: unknown main item tag 0x0
[  228.686738][   T29] hid-generic 0003:0003:0000.000A: unknown main item tag 0x0
[  228.689545][   T29] hid-generic 0003:0003:0000.000A: unknown main item tag 0x0
[  228.693762][   T29] hid-generic 0003:0003:0000.000A: unknown main item tag 0x0
[  228.696186][   T29] hid-generic 0003:0003:0000.000A: unknown main item tag 0x0
[  228.698543][   T29] hid-generic 0003:0003:0000.000A: unknown main item tag 0x0
[  228.703686][ T8739] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  228.707433][   T29] hid-generic 0003:0003:0000.000A: unknown main item tag 0x0
[  228.707892][ T8739] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  228.711302][   T29] hid-generic 0003:0003:0000.000A: unknown main item tag 0x0
[  228.719721][   T29] hid-generic 0003:0003:0000.000A: unknown main item tag 0x0
[  228.721591][ T8739] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  228.726810][ T8739] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  228.729633][ T8739] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  228.756239][   T29] hid-generic 0003:0003:0000.000A: hidraw1: USB HID v0.00 Device [syz0] on syz1
[  228.857127][ T8739] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  228.870471][ T8739] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  228.887508][ T8739] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  228.900025][ T8739] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  228.912383][ T8757] fido_id[8757]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  229.050069][   T34] usb 7-1: usb_control_msg returned -71
[  229.055264][   T34] usbtmc 7-1:16.0: can't read capabilities
[  229.070351][   T34] usb 7-1: USB disconnect, device number 15
[  230.516375][ T8790] FAULT_INJECTION: forcing a failure.
[  230.516375][ T8790] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  230.522344][ T8790] CPU: 1 UID: 0 PID: 8790 Comm: syz.0.785 Not tainted syzkaller #0 PREEMPT(full) 
[  230.522367][ T8790] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  230.522376][ T8790] Call Trace:
[  230.522382][ T8790]  <TASK>
[  230.522388][ T8790]  dump_stack_lvl+0x16c/0x1f0
[  230.522414][ T8790]  should_fail_ex+0x512/0x640
[  230.522443][ T8790]  _copy_from_iter+0x29f/0x1720
[  230.522473][ T8790]  ? __alloc_skb+0x200/0x380
[  230.522496][ T8790]  ? __pfx__copy_from_iter+0x10/0x10
[  230.522524][ T8790]  ? __pfx___might_resched+0x10/0x10
[  230.522556][ T8790]  netlink_sendmsg+0x820/0xdd0
[  230.522585][ T8790]  ? __pfx_netlink_sendmsg+0x10/0x10
[  230.522612][ T8790]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  230.522634][ T8790]  __sys_sendto+0x4a3/0x520
[  230.522653][ T8790]  ? __pfx___sys_sendto+0x10/0x10
[  230.522666][ T8790]  ? __lock_acquire+0xb8a/0x1c90
[  230.522692][ T8790]  __ia32_compat_sys_socketcall+0x625/0x770
[  230.522709][ T8790]  ? __fget_files+0x20e/0x3c0
[  230.522723][ T8790]  ? __pfx___ia32_compat_sys_socketcall+0x10/0x10
[  230.522741][ T8790]  ? fput+0x9b/0xd0
[  230.522755][ T8790]  ? rcu_is_watching+0x12/0xc0
[  230.522771][ T8790]  __do_fast_syscall_32+0x7c/0x300
[  230.522790][ T8790]  do_fast_syscall_32+0x32/0x80
[  230.522806][ T8790]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  230.522819][ T8790] RIP: 0023:0xf705d579
[  230.522828][ T8790] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  230.522839][ T8790] RSP: 002b:00000000f544c430 EFLAGS: 00000293 ORIG_RAX: 0000000000000066
[  230.522849][ T8790] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000f544c444
[  230.522857][ T8790] RDX: 0000000000000000 RSI: 00000000f544c560 RDI: 00000000f73f5ff4
[  230.522864][ T8790] RBP: 00000000f544c560 R08: 0000000000000000 R09: 0000000000000000
[  230.522870][ T8790] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  230.522875][ T8790] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  230.522889][ T8790]  </TASK>
[  230.611820][ T8788] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  230.714566][ T5302] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  230.988875][ T8801] __nla_validate_parse: 1 callbacks suppressed
[  230.988944][ T8801] netlink: 4 bytes leftover after parsing attributes in process `syz.2.781'.
[  232.272702][ T8816] random: crng reseeded on system resumption
[  232.318312][   T60] hid-generic 0003:0003:0000.000B: hidraw1: USB HID v0.00 Device [syz0] on syz1
[  232.448919][ T8818] fido_id[8818]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  232.869944][ T8796] netlink: 8 bytes leftover after parsing attributes in process `syz.0.786'.
[  233.027375][ T8828] netlink: 12 bytes leftover after parsing attributes in process `syz.1.795'.
[  233.032732][ T8828] netlink: 12 bytes leftover after parsing attributes in process `syz.1.795'.
[  233.106707][ T8834] block nbd2: Unsupported socket: should be TCP or UNIX.
[  233.371558][ T6262] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  233.535309][ T6262] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  233.538488][ T6262] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  233.551003][ T6262] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  233.554241][ T6262] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  233.601461][ T6262] usb 7-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13
[  233.604503][ T6262] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  233.607695][ T6262] usb 7-1: Product: syz
[  233.609485][ T6262] usb 7-1: Manufacturer: syz
[  233.620535][ T6262] usb 7-1: SerialNumber: syz
[  233.647098][ T6262] usb 7-1: config 0 descriptor??
[  233.654832][ T6262] adutux 7-1:0.0: interrupt endpoints not found
[  233.671179][ T8838] fuse: Bad value for 'fd'
[  233.904845][ T8842] random: crng reseeded on system resumption
[  233.922831][   T10] hid_parser_main: 26 callbacks suppressed
[  233.922922][   T10] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0
[  233.931504][   T10] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0
[  233.949893][   T10] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0
[  233.952894][   T10] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0
[  233.958899][   T10] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0
[  233.962230][   T10] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0
[  233.965612][   T10] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0
[  233.968045][   T10] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0
[  233.971104][   T10] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0
[  233.978792][   T10] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0
[  233.994807][   T10] hid-generic 0003:0003:0000.000C: hidraw1: USB HID v0.00 Device [syz0] on syz1
[  234.071060][ T8850] fido_id[8850]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  234.234259][ T8853] netlink: 4 bytes leftover after parsing attributes in process `syz.1.804'.
[  234.238145][ T8853] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  234.318003][ T8853] batman_adv: batadv0: Removing interface: batadv_slave_1
[  234.786028][  T840] hid-generic 0003:0003:0000.000D: hidraw1: USB HID v0.00 Device [syz0] on syz1
[  234.869265][ T8869] fido_id[8869]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  235.022655][ T8875] netlink: 8 bytes leftover after parsing attributes in process `syz.1.810'.
[  235.038409][ T8875] netlink: 8 bytes leftover after parsing attributes in process `syz.1.810'.
[  235.044999][ T8875] netlink: 8 bytes leftover after parsing attributes in process `syz.1.810'.
[  235.053344][ T8875] netlink: 8 bytes leftover after parsing attributes in process `syz.1.810'.
[  235.059873][ T8875] netlink: 8 bytes leftover after parsing attributes in process `syz.1.810'.
[  235.229548][ T8874] fuse: Bad value for 'fd'
[  235.450163][ T8878] block nbd2: Unsupported socket: should be TCP or UNIX.
[  235.947936][ T8886] netlink: 'syz.3.813': attribute type 5 has an invalid length.
[  235.971018][ T8886] geneve0: entered promiscuous mode
[  235.973588][ T8886] geneve0: entered allmulticast mode
[  235.988186][   T46] netdevsim netdevsim3 netdevsim0: set [1, 1] type 2 family 0 port 256 - 0
[  235.994803][   T46] netdevsim netdevsim3 netdevsim1: set [1, 1] type 2 family 0 port 256 - 0
[  236.002407][   T46] netdevsim netdevsim3 netdevsim2: set [1, 1] type 2 family 0 port 256 - 0
[  236.009985][   T46] netdevsim netdevsim3 netdevsim3: set [1, 1] type 2 family 0 port 256 - 0
[  236.138875][ T2295] usb 7-1: USB disconnect, device number 16
[  237.195025][ T8896] binder: 8895:8896 unknown command 0
[  237.197076][ T8896] binder: 8895:8896 ioctl c0306201 80000080 returned -22
[  237.202999][ T8896] binder: 8895:8896 ioctl c0306201 80000300 returned -14
[  238.168654][ T8907] __nla_validate_parse: 2 callbacks suppressed
[  238.168666][ T8907] netlink: 8 bytes leftover after parsing attributes in process `syz.3.821'.
[  238.243392][   T40] kauditd_printk_skb: 3 callbacks suppressed
[  238.243403][   T40] audit: type=1326 audit(1760592287.871:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.3.821" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000
[  238.250228][ T5302] Bluetooth: hci2: Malformed Event: 0x02
[  238.252808][   T40] audit: type=1326 audit(1760592287.871:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.3.821" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000
[  238.261822][   T40] audit: type=1326 audit(1760592287.871:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.3.821" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf70ed579 code=0x7ffc0000
[  238.268358][   T40] audit: type=1326 audit(1760592287.871:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.3.821" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000
[  238.275665][   T40] audit: type=1326 audit(1760592287.871:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.3.821" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000
[  238.401480][  T840] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  238.561494][  T840] usb 5-1: Using ep0 maxpacket: 8
[  238.565305][  T840] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  238.568009][  T840] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  238.571487][  T840] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  238.574578][  T840] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  238.578094][  T840] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  238.582505][  T840] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  238.585429][  T840] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  238.793268][  T840] usb 5-1: GET_CAPABILITIES returned 0
[  238.795478][  T840] usbtmc 5-1:16.0: can't read capabilities
[  238.995593][ T6262] usb 5-1: USB disconnect, device number 16
[  239.068993][ T8919] netlink: 4 bytes leftover after parsing attributes in process `syz.2.826'.
[  239.122641][ T8923] bridge0: entered promiscuous mode
[  239.124880][ T8923] macvlan0: entered promiscuous mode
[  239.139785][ T8923] input: syz1 as /devices/virtual/input/input13
[  239.304427][ T8932] random: crng reseeded on system resumption
[  239.373308][  T840] hid_parser_main: 26 callbacks suppressed
[  239.373367][  T840] hid-generic 0003:0003:0000.000E: unknown main item tag 0x0
[  239.404380][   T10] hid-generic 0003:0003:0000.000F: unknown main item tag 0x0
[  239.408437][   T10] hid-generic 0003:0003:0000.000F: unknown main item tag 0x0
[  239.410961][   T10] hid-generic 0003:0003:0000.000F: unknown main item tag 0x0
[  239.413414][  T840] hid-generic 0003:0003:0000.000E: unknown main item tag 0x0
[  239.416065][   T10] hid-generic 0003:0003:0000.000F: unknown main item tag 0x0
[  239.419003][   T10] hid-generic 0003:0003:0000.000F: unknown main item tag 0x0
[  239.421298][   T10] hid-generic 0003:0003:0000.000F: unknown main item tag 0x0
[  239.427166][   T10] hid-generic 0003:0003:0000.000F: unknown main item tag 0x0
[  239.429894][   T10] hid-generic 0003:0003:0000.000F: unknown main item tag 0x0
[  239.444582][   T10] hid-generic 0003:0003:0000.000F: hidraw1: USB HID v0.00 Device [syz0] on syz1
[  239.548505][  T840] hid-generic 0003:0003:0000.000E: hidraw2: USB HID v0.00 Device [syz0] on syz1
[  239.997657][ T8938] mac80211_hwsim hwsim3 wlan0: entered promiscuous mode
[  240.127949][ T8941] fido_id[8941]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  240.257909][ T8944] random: crng reseeded on system resumption
[  240.452856][ T8953] vivid-002: disconnect
[  240.456741][ T8952] vivid-002: reconnect
[  241.711636][ T8973] FAULT_INJECTION: forcing a failure.
[  241.711636][ T8973] name failslab, interval 1, probability 0, space 0, times 0
[  241.731611][ T8973] CPU: 3 UID: 0 PID: 8973 Comm: syz.3.838 Not tainted syzkaller #0 PREEMPT(full) 
[  241.731636][ T8973] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  241.731647][ T8973] Call Trace:
[  241.731653][ T8973]  <TASK>
[  241.731660][ T8973]  dump_stack_lvl+0x16c/0x1f0
[  241.731692][ T8973]  should_fail_ex+0x512/0x640
[  241.731719][ T8973]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  241.731740][ T8973]  should_failslab+0xc2/0x120
[  241.731759][ T8973]  kmem_cache_alloc_noprof+0x75/0x6e0
[  241.731782][ T8973]  ? skb_clone+0x190/0x3f0
[  241.731821][ T8973]  ? skb_clone+0x190/0x3f0
[  241.731846][ T8973]  skb_clone+0x190/0x3f0
[  241.731872][ T8973]  netlink_deliver_tap+0xabd/0xd30
[  241.731905][ T8973]  netlink_unicast+0x64c/0x870
[  241.731936][ T8973]  ? __pfx_netlink_unicast+0x10/0x10
[  241.731974][ T8973]  netlink_sendmsg+0x8c8/0xdd0
[  241.732006][ T8973]  ? __pfx_netlink_sendmsg+0x10/0x10
[  241.732038][ T8973]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  241.732062][ T8973]  ____sys_sendmsg+0xa98/0xc70
[  241.732084][ T8973]  ? __pfx_____sys_sendmsg+0x10/0x10
[  241.732104][ T8973]  ? get_compat_msghdr+0x11a/0x170
[  241.732142][ T8973]  ___sys_sendmsg+0x134/0x1d0
[  241.732171][ T8973]  ? __pfx____sys_sendmsg+0x10/0x10
[  241.732211][ T8973]  ? find_held_lock+0x2b/0x80
[  241.732253][ T8973]  __sys_sendmsg+0x16d/0x220
[  241.732281][ T8973]  ? __pfx___sys_sendmsg+0x10/0x10
[  241.732319][ T8973]  ? rcu_is_watching+0x12/0xc0
[  241.732348][ T8973]  __do_fast_syscall_32+0x7c/0x300
[  241.732378][ T8973]  do_fast_syscall_32+0x32/0x80
[  241.732405][ T8973]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  241.732426][ T8973] RIP: 0023:0xf70ed579
[  241.732441][ T8973] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  241.732458][ T8973] RSP: 002b:00000000f54bc55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  241.732476][ T8973] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080003640
[  241.732487][ T8973] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000000
[  241.732497][ T8973] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  241.732507][ T8973] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  241.732516][ T8973] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  241.732541][ T8973]  </TASK>
[  241.761973][ T8975] netlink: 4 bytes leftover after parsing attributes in process `syz.1.841'.
[  241.852264][ T8978] binder: 8977:8978 ioctl c0306201 80000040 returned -22
[  241.855603][ T8978] binder: 8977:8978 ioctl c0306201 80000640 returned -22
[  241.922058][ T8981] netlink: 8 bytes leftover after parsing attributes in process `syz.1.843'.
[  241.925533][ T8981] netlink: 8 bytes leftover after parsing attributes in process `syz.1.843'.
[  241.929091][ T8981] netlink: 8 bytes leftover after parsing attributes in process `syz.1.843'.
[  241.933120][ T8981] netlink: 8 bytes leftover after parsing attributes in process `syz.1.843'.
[  241.936984][ T8981] netlink: 8 bytes leftover after parsing attributes in process `syz.1.843'.
[  241.991945][ T5946] Bluetooth: hci2: command 0x0c1a tx timeout
[  242.006289][ T8985] netlink: 8 bytes leftover after parsing attributes in process `syz.0.844'.
[  242.010553][ T8985] netlink: 8 bytes leftover after parsing attributes in process `syz.0.844'.
[  242.484248][ T8993] random: crng reseeded on system resumption
[  242.553756][ T6262] hid-generic 0003:0003:0000.0010: hidraw1: USB HID v0.00 Device [syz0] on syz1
[  243.360608][ T8998] FAULT_INJECTION: forcing a failure.
[  243.360608][ T8998] name failslab, interval 1, probability 0, space 0, times 0
[  243.366002][ T8998] CPU: 1 UID: 0 PID: 8998 Comm: syz.1.848 Not tainted syzkaller #0 PREEMPT(full) 
[  243.366025][ T8998] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  243.366035][ T8998] Call Trace:
[  243.366041][ T8998]  <TASK>
[  243.366047][ T8998]  dump_stack_lvl+0x16c/0x1f0
[  243.366076][ T8998]  should_fail_ex+0x512/0x640
[  243.366101][ T8998]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  243.366120][ T8998]  should_failslab+0xc2/0x120
[  243.366137][ T8998]  kmem_cache_alloc_noprof+0x75/0x6e0
[  243.366160][ T8998]  ? skb_clone+0x190/0x3f0
[  243.366191][ T8998]  ? skb_clone+0x190/0x3f0
[  243.366214][ T8998]  skb_clone+0x190/0x3f0
[  243.366239][ T8998]  netlink_deliver_tap+0xabd/0xd30
[  243.366270][ T8998]  netlink_unicast+0x64c/0x870
[  243.366291][ T8998]  ? __pfx_netlink_unicast+0x10/0x10
[  243.366313][ T8998]  netlink_sendmsg+0x8c8/0xdd0
[  243.366331][ T8998]  ? __pfx_netlink_sendmsg+0x10/0x10
[  243.366350][ T8998]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  243.366364][ T8998]  ____sys_sendmsg+0xa98/0xc70
[  243.366377][ T8998]  ? __pfx_____sys_sendmsg+0x10/0x10
[  243.366388][ T8998]  ? get_compat_msghdr+0x11a/0x170
[  243.366410][ T8998]  ___sys_sendmsg+0x134/0x1d0
[  243.366427][ T8998]  ? __pfx____sys_sendmsg+0x10/0x10
[  243.366449][ T8998]  ? find_held_lock+0x2b/0x80
[  243.366474][ T8998]  __sys_sendmsg+0x16d/0x220
[  243.366490][ T8998]  ? __pfx___sys_sendmsg+0x10/0x10
[  243.366512][ T8998]  ? rcu_is_watching+0x12/0xc0
[  243.366529][ T8998]  __do_fast_syscall_32+0x7c/0x300
[  243.366548][ T8998]  do_fast_syscall_32+0x32/0x80
[  243.366564][ T8998]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  243.366577][ T8998] RIP: 0023:0xf705d579
[  243.366586][ T8998] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  243.366596][ T8998] RSP: 002b:00000000f544d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  243.366606][ T8998] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800002c0
[  243.366612][ T8998] RDX: 0000000024000080 RSI: 0000000000000000 RDI: 0000000000000000
[  243.366618][ T8998] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  243.366624][ T8998] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  243.366630][ T8998] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  243.366643][ T8998]  </TASK>
[  243.669122][ T9007] __nla_validate_parse: 3 callbacks suppressed
[  243.669141][ T9007] netlink: 4 bytes leftover after parsing attributes in process `syz.1.851'.
[  243.914639][ T9018] random: crng reseeded on system resumption
[  244.275384][ T9011] infiniband syz1: set active
[  244.278948][ T9011] infiniband syz1: added syz_tun
[  244.324418][ T9011] RDS/IB: syz1: added
[  244.326725][ T9011] smc: adding ib device syz1 with port count 1
[  244.329312][ T9011] smc:    ib device syz1 port 1 has no pnetid
[  244.770930][ T9024] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  244.775999][ T9024] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  244.797915][ T9024] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type
[  244.803132][ T9024] overlayfs: failed to look up (tracing) for ino (-66)
[  244.817290][ T9024] netlink: 288 bytes leftover after parsing attributes in process `syz.1.856'.
[  244.820190][ T9024] netlink: 288 bytes leftover after parsing attributes in process `syz.1.856'.
[  244.824681][ T9024] binder: 9022:9024 ioctl 4018620d 0 returned -22
[  245.091665][   T60] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  245.257963][ T9030] netlink: 'syz.2.859': attribute type 21 has an invalid length.
[  245.261229][ T9030] netlink: 156 bytes leftover after parsing attributes in process `syz.2.859'.
[  245.271477][   T60] usb 6-1: Using ep0 maxpacket: 8
[  245.274484][   T60] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  245.278012][   T60] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  245.281156][   T60] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  245.284503][   T60] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  245.289079][   T60] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  245.292244][   T60] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  245.393298][ T9035] netlink: 'syz.0.860': attribute type 180 has an invalid length.
[  245.507735][   T60] usb 6-1: GET_CAPABILITIES returned 0
[  245.510478][   T60] usbtmc 6-1:16.0: can't read capabilities
[  245.713316][  T840] usb 6-1: USB disconnect, device number 10
[  245.885533][ T9045] netlink: 20 bytes leftover after parsing attributes in process `syz.3.863'.
[  246.612305][ T9050] netlink: 'syz.0.866': attribute type 180 has an invalid length.
[  246.711643][ T9059] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4)
[  246.714399][ T9059] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  246.720932][ T9059] vhci_hcd vhci_hcd.0: Device attached
[  246.901526][ T5943] vhci_hcd: vhci_device speed not set
[  246.916270][ T9060] vhci_hcd: connection closed
[  246.916663][ T1151] vhci_hcd: stop threads
[  246.920241][ T1151] vhci_hcd: release socket
[  246.921762][ T1151] vhci_hcd: disconnect device
[  246.962737][ T9069] FAULT_INJECTION: forcing a failure.
[  246.962737][ T9069] name failslab, interval 1, probability 0, space 0, times 0
[  246.967993][ T9069] CPU: 3 UID: 0 PID: 9069 Comm: syz.2.870 Not tainted syzkaller #0 PREEMPT(full) 
[  246.968018][ T9069] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  246.968027][ T9069] Call Trace:
[  246.968035][ T9069]  <TASK>
[  246.968042][ T9069]  dump_stack_lvl+0x16c/0x1f0
[  246.968072][ T9069]  should_fail_ex+0x512/0x640
[  246.968096][ T9069]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  246.968113][ T9069]  should_failslab+0xc2/0x120
[  246.968131][ T9069]  kmem_cache_alloc_noprof+0x75/0x6e0
[  246.968151][ T9069]  ? skb_clone+0x190/0x3f0
[  246.968180][ T9069]  ? skb_clone+0x190/0x3f0
[  246.968202][ T9069]  skb_clone+0x190/0x3f0
[  246.968226][ T9069]  netlink_deliver_tap+0xabd/0xd30
[  246.968256][ T9069]  netlink_unicast+0x64c/0x870
[  246.968283][ T9069]  ? __pfx_netlink_unicast+0x10/0x10
[  246.968318][ T9069]  netlink_sendmsg+0x8c8/0xdd0
[  246.968346][ T9069]  ? __pfx_netlink_sendmsg+0x10/0x10
[  246.968374][ T9069]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  246.968397][ T9069]  ____sys_sendmsg+0xa98/0xc70
[  246.968419][ T9069]  ? __pfx_____sys_sendmsg+0x10/0x10
[  246.968435][ T9069]  ? get_compat_msghdr+0x11a/0x170
[  246.968470][ T9069]  ___sys_sendmsg+0x134/0x1d0
[  246.968494][ T9069]  ? __pfx____sys_sendmsg+0x10/0x10
[  246.968526][ T9069]  ? find_held_lock+0x2b/0x80
[  246.968561][ T9069]  __sys_sendmsg+0x16d/0x220
[  246.968584][ T9069]  ? __pfx___sys_sendmsg+0x10/0x10
[  246.968617][ T9069]  ? rcu_is_watching+0x12/0xc0
[  246.968643][ T9069]  __do_fast_syscall_32+0x7c/0x300
[  246.968671][ T9069]  do_fast_syscall_32+0x32/0x80
[  246.968694][ T9069]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  246.968715][ T9069] RIP: 0023:0xf7fe5579
[  246.968729][ T9069] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  246.968746][ T9069] RSP: 002b:00000000f54d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  246.968790][ T9069] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800009c0
[  246.968800][ T9069] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  246.968810][ T9069] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  246.968819][ T9069] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  246.968830][ T9069] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  246.968854][ T9069]  </TASK>
[  246.971531][ T5943] usb 37-1: new low-speed USB device number 3 using vhci_hcd
[  247.001982][ T9071] netlink: 4 bytes leftover after parsing attributes in process `syz.2.871'.
[  247.012850][ T5943] usb 37-1: enqueue for inactive port 0
[  247.051478][    C2] vkms_vblank_simulate: vblank timer overrun
[  247.141517][ T5943] vhci_hcd: vhci_device speed not set
[  248.532441][ T9080] netlink: 8 bytes leftover after parsing attributes in process `syz.3.873'.
[  248.537372][ T9080] netlink: 8 bytes leftover after parsing attributes in process `syz.3.873'.
[  248.555768][ T9080] netlink: 8 bytes leftover after parsing attributes in process `syz.3.873'.
[  248.567249][ T9080] netlink: 8 bytes leftover after parsing attributes in process `syz.3.873'.
[  248.781538][ T5302] Bluetooth: hci2: command 0x0c1a tx timeout
[  249.881437][   T34] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  250.051447][   T34] usb 6-1: Using ep0 maxpacket: 8
[  250.082984][   T34] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  250.086069][   T34] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  250.090027][   T34] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  250.093726][   T34] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  250.097529][   T34] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  250.103607][   T34] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  250.107039][   T34] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  250.323004][   T34] usb 6-1: GET_CAPABILITIES returned 0
[  250.325478][   T34] usbtmc 6-1:16.0: can't read capabilities
[  250.538321][ T2295] usb 6-1: USB disconnect, device number 11
[  251.167474][ T9136] netlink: 'syz.0.889': attribute type 4 has an invalid length.
[  251.176369][ T9136] netlink: 'syz.0.889': attribute type 4 has an invalid length.
[  251.184151][ T9136] __nla_validate_parse: 1 callbacks suppressed
[  251.184193][ T9136] netlink: 7956 bytes leftover after parsing attributes in process `syz.0.889'.
[  251.883458][ T9143] netlink: 8 bytes leftover after parsing attributes in process `syz.1.893'.
[  251.887305][ T9143] netlink: 8 bytes leftover after parsing attributes in process `syz.1.893'.
[  251.890540][ T9143] netlink: 8 bytes leftover after parsing attributes in process `syz.1.893'.
[  251.893919][ T9143] netlink: 8 bytes leftover after parsing attributes in process `syz.1.893'.
[  251.897196][ T9143] netlink: 8 bytes leftover after parsing attributes in process `syz.1.893'.
[  253.197554][ T9153] random: crng reseeded on system resumption
[  253.332565][ T9155] netlink: 8 bytes leftover after parsing attributes in process `syz.2.896'.
[  253.335323][ T9155] netlink: 'syz.2.896': attribute type 5 has an invalid length.
[  253.337689][ T9155] netlink: 20 bytes leftover after parsing attributes in process `syz.2.896'.
[  253.355918][ T9155] geneve0: entered promiscuous mode
[  253.357607][ T9155] geneve0: entered allmulticast mode
[  253.367880][ T1252] netdevsim netdevsim2 eth0: set [1, 1] type 2 family 0 port 256 - 0
[  253.370413][ T1252] netdevsim netdevsim2 eth1: set [1, 1] type 2 family 0 port 256 - 0
[  253.373078][ T1252] netdevsim netdevsim2 eth2: set [1, 1] type 2 family 0 port 256 - 0
[  253.375518][ T1252] netdevsim netdevsim2 eth3: set [1, 1] type 2 family 0 port 256 - 0
[  254.204656][ T9162] FAULT_INJECTION: forcing a failure.
[  254.204656][ T9162] name failslab, interval 1, probability 0, space 0, times 0
[  254.209925][ T9162] CPU: 1 UID: 0 PID: 9162 Comm: syz.0.898 Not tainted syzkaller #0 PREEMPT(full) 
[  254.209947][ T9162] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  254.209957][ T9162] Call Trace:
[  254.209963][ T9162]  <TASK>
[  254.209969][ T9162]  dump_stack_lvl+0x16c/0x1f0
[  254.209997][ T9162]  should_fail_ex+0x512/0x640
[  254.210021][ T9162]  ? __kmalloc_cache_noprof+0x5f/0x780
[  254.210042][ T9162]  should_failslab+0xc2/0x120
[  254.210060][ T9162]  __kmalloc_cache_noprof+0x72/0x780
[  254.210090][ T9162]  ? lockdep_init_map_type+0x5c/0x280
[  254.210108][ T9162]  ? kvm_create_lapic+0xa9/0x4d0
[  254.210136][ T9162]  ? kvm_create_lapic+0xa9/0x4d0
[  254.210157][ T9162]  kvm_create_lapic+0xa9/0x4d0
[  254.210181][ T9162]  kvm_arch_vcpu_create+0x283/0xb20
[  254.210201][ T9162]  ? lockdep_init_map_type+0x5c/0x280
[  254.210225][ T9162]  kvm_vm_ioctl+0xfec/0x3fd0
[  254.210253][ T9162]  ? __pfx_stack_trace_save+0x10/0x10
[  254.210277][ T9162]  ? stack_depot_save_flags+0x29/0x9c0
[  254.210302][ T9162]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  254.210324][ T9162]  ? kasan_save_stack+0x42/0x60
[  254.210345][ T9162]  ? kasan_save_stack+0x33/0x60
[  254.210367][ T9162]  ? kasan_save_track+0x14/0x30
[  254.210390][ T9162]  ? __kasan_save_free_info+0x3b/0x60
[  254.210409][ T9162]  ? __kasan_slab_free+0x5f/0x80
[  254.210431][ T9162]  ? kfree+0x2b8/0x6d0
[  254.210446][ T9162]  ? tomoyo_path_number_perm+0x470/0x580
[  254.210464][ T9162]  ? security_file_ioctl_compat+0x9b/0x240
[  254.210482][ T9162]  ? __ia32_compat_sys_ioctl+0xc3/0x370
[  254.210499][ T9162]  ? __do_fast_syscall_32+0x7c/0x300
[  254.210523][ T9162]  ? do_fast_syscall_32+0x32/0x80
[  254.210546][ T9162]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  254.210569][ T9162]  ? kvm_arch_vm_compat_ioctl+0x2d0/0x470
[  254.210597][ T9162]  ? __pfx_kvm_arch_vm_compat_ioctl+0x10/0x10
[  254.210646][ T9162]  ? kasan_quarantine_put+0x10a/0x240
[  254.210671][ T9162]  ? lockdep_hardirqs_on+0x7c/0x110
[  254.210705][ T9162]  ? find_held_lock+0x2b/0x80
[  254.210730][ T9162]  ? tomoyo_path_number_perm+0x295/0x580
[  254.210756][ T9162]  ? tomoyo_path_number_perm+0x18d/0x580
[  254.210776][ T9162]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  254.210802][ T9162]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  254.210824][ T9162]  ? do_vfs_ioctl+0x128/0x14f0
[  254.210844][ T9162]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  254.210867][ T9162]  kvm_vm_compat_ioctl+0x393/0x3f0
[  254.210893][ T9162]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  254.210920][ T9162]  ? find_held_lock+0x2b/0x80
[  254.210941][ T9162]  ? hook_file_ioctl_common+0x145/0x410
[  254.210969][ T9162]  ? __fget_files+0x20e/0x3c0
[  254.210995][ T9162]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  254.211020][ T9162]  __ia32_compat_sys_ioctl+0x242/0x370
[  254.211045][ T9162]  __do_fast_syscall_32+0x7c/0x300
[  254.211073][ T9162]  do_fast_syscall_32+0x32/0x80
[  254.211096][ T9162]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  254.211114][ T9162] RIP: 0023:0xf705d579
[  254.211126][ T9162] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  254.211141][ T9162] RSP: 002b:00000000f544d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  254.211156][ T9162] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000000ae41
[  254.211165][ T9162] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  254.211175][ T9162] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  254.211185][ T9162] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  254.211196][ T9162] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  254.211220][ T9162]  </TASK>
[  254.969990][ T9180] netlink: 8 bytes leftover after parsing attributes in process `syz.0.904'.
[  255.008604][ T9180] netlink: 8 bytes leftover after parsing attributes in process `syz.0.904'.
[  255.196293][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  255.198492][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  256.802240][   T10] usb 8-1: new high-speed USB device number 19 using dummy_hcd
[  256.823202][ T9198] FAULT_INJECTION: forcing a failure.
[  256.823202][ T9198] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  256.828568][ T9198] CPU: 1 UID: 0 PID: 9198 Comm: syz.0.909 Not tainted syzkaller #0 PREEMPT(full) 
[  256.828593][ T9198] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  256.828605][ T9198] Call Trace:
[  256.828613][ T9198]  <TASK>
[  256.828621][ T9198]  dump_stack_lvl+0x16c/0x1f0
[  256.828653][ T9198]  should_fail_ex+0x512/0x640
[  256.828707][ T9198]  __fpu_restore_sig+0xfe/0x13a0
[  256.828729][ T9198]  ? __pfx___fpu_restore_sig+0x10/0x10
[  256.828752][ T9198]  ? do_raw_spin_lock+0x12c/0x2b0
[  256.828786][ T9198]  ? __might_fault+0xe3/0x190
[  256.828807][ T9198]  ? __might_fault+0x13b/0x190
[  256.828836][ T9198]  fpu__restore_sig+0x151/0x190
[  256.828858][ T9198]  ia32_restore_sigcontext+0x44a/0x630
[  256.828888][ T9198]  ? __pfx_ia32_restore_sigcontext+0x10/0x10
[  256.828915][ T9198]  ? rcu_is_watching+0x12/0xc0
[  256.828941][ T9198]  ? _raw_spin_unlock_irq+0x23/0x50
[  256.828967][ T9198]  ? lockdep_hardirqs_on+0x7c/0x110
[  256.828997][ T9198]  __do_compat_sys_rt_sigreturn+0x18c/0x270
[  256.829021][ T9198]  ? __pfx___do_compat_sys_rt_sigreturn+0x10/0x10
[  256.829046][ T9198]  ? rcu_is_watching+0x12/0xc0
[  256.829078][ T9198]  do_int80_emulation+0x104/0x3e0
[  256.829108][ T9198]  asm_int80_emulation+0x1a/0x20
[  256.829125][ T9198] RIP: 0023:0xf705d577
[  256.829141][ T9198] Code: 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 <cd> 80 5d 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00
[  256.829159][ T9198] RSP: 002b:00000000f544d55c EFLAGS: 00000296
[  256.829174][ T9198] RAX: 0000000000000003 RBX: 0000000000000003 RCX: 0000000000000000
[  256.829185][ T9198] RDX: 000000000000effd RSI: 0000000000000000 RDI: 0000000000000000
[  256.829197][ T9198] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  256.829206][ T9198] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  256.829216][ T9198] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  256.829241][ T9198]  </TASK>
[  256.981565][   T10] usb 8-1: Using ep0 maxpacket: 8
[  257.000953][   T10] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[  257.006113][   T10] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  257.009627][   T10] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  257.015239][   T10] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  257.018820][   T10] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  257.031595][ T9204] __nla_validate_parse: 3 callbacks suppressed
[  257.031612][ T9204] netlink: 8 bytes leftover after parsing attributes in process `syz.0.910'.
[  257.046544][   T10] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  257.056465][   T10] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  257.060944][ T9204] netlink: 8 bytes leftover after parsing attributes in process `syz.0.910'.
[  257.082020][ T9204] netlink: 8 bytes leftover after parsing attributes in process `syz.0.910'.
[  257.085504][ T9204] netlink: 8 bytes leftover after parsing attributes in process `syz.0.910'.
[  257.088939][ T9204] netlink: 8 bytes leftover after parsing attributes in process `syz.0.910'.
[  257.284715][   T10] usb 8-1: GET_CAPABILITIES returned 0
[  257.286985][   T10] usbtmc 8-1:16.0: can't read capabilities
[  257.493852][ T5943] usb 8-1: USB disconnect, device number 19
[  258.454487][ T9222] netlink: 8 bytes leftover after parsing attributes in process `syz.1.914'.
[  258.461204][ T9222] netlink: 'syz.1.914': attribute type 5 has an invalid length.
[  258.465889][ T9222] netlink: 20 bytes leftover after parsing attributes in process `syz.1.914'.
[  258.472863][ T5946] Bluetooth: hci2: unexpected event for opcode 0x042c
[  258.515782][ T9222] geneve0: entered promiscuous mode
[  258.523766][ T9222] geneve0: entered allmulticast mode
[  258.542796][   T12] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 256 - 0
[  258.546349][   T12] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 256 - 0
[  258.549794][   T12] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 256 - 0
[  258.552783][   T12] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 256 - 0
[  258.784911][ T9227] netlink: 8 bytes leftover after parsing attributes in process `syz.3.918'.
[  258.810831][ T9227] netlink: 8 bytes leftover after parsing attributes in process `syz.3.918'.
[  258.825260][ T9227] netlink: 8 bytes leftover after parsing attributes in process `syz.3.918'.
[  259.281963][ T9235] random: crng reseeded on system resumption
[  259.981434][ T5943] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  260.022730][ T6262] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  260.185132][ T6262] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  260.189696][ T6262] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  260.194038][ T6262] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  260.198485][ T6262] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[  260.207523][ T6262] usb 5-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13
[  260.211647][ T6262] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  260.239691][ T6262] usb 5-1: Product: syz
[  260.248581][ T6262] usb 5-1: Manufacturer: syz
[  260.258604][ T6262] usb 5-1: SerialNumber: syz
[  260.286434][ T6262] usb 5-1: config 0 descriptor??
[  260.361478][ T5943] usb 7-1: Using ep0 maxpacket: 16
[  260.364340][ T5943] usb 7-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0
[  260.366988][ T5943] usb 7-1: config 0 interface 0 altsetting 1 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  260.370606][ T5943] usb 7-1: config 0 interface 0 altsetting 1 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  260.374072][ T5943] usb 7-1: config 0 interface 0 altsetting 1 endpoint 0x8F has invalid maxpacket 24956, setting to 1024
[  260.377611][ T5943] usb 7-1: config 0 interface 0 has no altsetting 0
[  260.383002][ T5943] usb 7-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[  260.386780][ T5943] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  260.390154][ T5943] usb 7-1: Product: syz
[  260.392680][ T5943] usb 7-1: Manufacturer: syz
[  260.394693][ T5943] usb 7-1: SerialNumber: syz
[  260.398906][ T5943] usb 7-1: config 0 descriptor??
[  260.512113][ T6262] adutux 5-1:0.0: ADU208 4242424 now attached to /dev/usb/adutux0
[  260.595040][ T5946] Bluetooth: hci2: unexpected event for opcode 0x042c
[  260.617802][ T5943] input: syz syz as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input14
[  260.716597][   T34] usb 5-1: USB disconnect, device number 17
[  260.844185][  T840] usb 7-1: USB disconnect, device number 17
[  261.840157][ T9272] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  261.862867][ T9272] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  261.939919][ T9272] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type
[  261.945361][ T9272] overlayfs: failed to look up (tracing) for ino (-66)
[  261.959920][ T9272] binder: 9271:9272 ioctl 4018620d 0 returned -22
[  262.177659][ T9283] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  262.197299][ T9283] futex_wake_op: syz.2.938 tries to shift op by 32; fix this program
[  262.201485][  T840] usb 8-1: new high-speed USB device number 20 using dummy_hcd
[  262.363183][  T840] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  262.371938][  T840] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  262.375815][  T840] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  262.380546][  T840] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[  262.395691][  T840] usb 8-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13
[  262.400250][  T840] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  262.404388][  T840] usb 8-1: Product: syz
[  262.406240][  T840] usb 8-1: Manufacturer: syz
[  262.408358][  T840] usb 8-1: SerialNumber: syz
[  262.414825][  T840] usb 8-1: config 0 descriptor??
[  262.476868][ T9290] __nla_validate_parse: 4 callbacks suppressed
[  262.476885][ T9290] netlink: 8 bytes leftover after parsing attributes in process `syz.2.940'.
[  262.627495][  T840] adutux 8-1:0.0: ADU208  now attached to /dev/usb/adutux0
[  262.636110][  T840] usb 8-1: USB disconnect, device number 20
[  263.193642][ T9297] netlink: 4 bytes leftover after parsing attributes in process `syz.1.941'.
[  263.307124][ T9301] random: crng reseeded on system resumption
[  264.204892][ T9302] netlink: 8 bytes leftover after parsing attributes in process `syz.2.942'.
[  264.208686][ T9302] netlink: 'syz.2.942': attribute type 5 has an invalid length.
[  264.212280][ T9302] netlink: 20 bytes leftover after parsing attributes in process `syz.2.942'.
[  264.445391][ T9309] random: crng reseeded on system resumption
[  264.576762][ T9318] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  264.582374][ T9318] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  264.612662][ T9318] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type
[  264.617525][ T9318] overlayfs: failed to look up (tracing) for ino (-66)
[  264.637386][ T9318] netlink: 288 bytes leftover after parsing attributes in process `syz.0.950'.
[  264.641791][ T9318] netlink: 288 bytes leftover after parsing attributes in process `syz.0.950'.
[  264.645745][ T9318] binder: 9317:9318 ioctl 4018620d 0 returned -22
[  265.451637][ T5943] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  266.016551][ T9334] exFAT-fs (nbd3): mounting with "discard" option, but the device does not support discard
[  266.020211][ T9334] exFAT-fs (nbd3): unable to read boot sector
[  266.022449][ T9334] exFAT-fs (nbd3): failed to read boot sector
[  266.024540][ T9334] exFAT-fs (nbd3): failed to recognize exfat type
[  266.211493][ T5943] usb 6-1: Using ep0 maxpacket: 8
[  266.222722][ T5943] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  266.226657][ T5943] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  266.231248][ T5943] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  266.235704][ T5943] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  266.239903][ T5943] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  266.245403][ T5943] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  266.249220][ T5943] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  266.466180][ T5943] usb 6-1: GET_CAPABILITIES returned 0
[  266.468677][ T5943] usbtmc 6-1:16.0: can't read capabilities
[  266.669911][ T5943] usb 6-1: USB disconnect, device number 12
[  266.699889][   T40] audit: type=1326 audit(1760592316.321:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9345 comm="syz.0.960" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705d579 code=0x7ffc0000
[  266.708334][   T40] audit: type=1326 audit(1760592316.321:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9345 comm="syz.0.960" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705d579 code=0x7ffc0000
[  267.081590][ T9350] new mount options do not match the existing superblock, will be ignored
[  267.099156][ T9350] cgroup: option or name mismatch, new: 0x4 "", old: 0x0 ""
[  268.053452][ T9350] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  268.076073][   T40] audit: type=1326 audit(1760592316.641:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9345 comm="syz.0.960" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf705d579 code=0x7ffc0000
[  268.291073][ T9358] binder: 9357:9358 ioctl c00c620f 80000100 returned -22
[  268.631490][  T840] usb 8-1: new high-speed USB device number 21 using dummy_hcd
[  268.811597][  T840] usb 8-1: Using ep0 maxpacket: 8
[  268.821476][  T840] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[  268.825953][  T840] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  268.830191][  T840] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  268.834608][  T840] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  268.838927][  T840] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  268.844518][  T840] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  268.848764][  T840] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  269.074258][  T840] usb 8-1: GET_CAPABILITIES returned 0
[  269.078353][  T840] usbtmc 8-1:16.0: can't read capabilities
[  269.282491][   T29] usb 8-1: USB disconnect, device number 21
[  269.287240][ T9369] random: crng reseeded on system resumption
[  270.537744][ T9384] netlink: 'syz.0.969': attribute type 11 has an invalid length.
[  270.543124][ T9384] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  271.134015][ T9390] netlink: 8 bytes leftover after parsing attributes in process `syz.1.971'.
[  271.139293][ T9390] netlink: 8 bytes leftover after parsing attributes in process `syz.1.971'.
[  271.144483][ T9390] netlink: 8 bytes leftover after parsing attributes in process `syz.1.971'.
[  271.148553][ T9390] netlink: 8 bytes leftover after parsing attributes in process `syz.1.971'.
[  271.154348][ T9390] netlink: 8 bytes leftover after parsing attributes in process `syz.1.971'.
[  271.257232][ T9392] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  271.337867][ T9395] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  271.341588][ T9395] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  271.354903][ T9395] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type
[  271.358165][ T9395] overlayfs: failed to look up (tracing) for ino (-66)
[  271.501926][ T9400] random: crng reseeded on system resumption
[  271.801468][ T6623] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  271.955368][ T6623] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  271.959820][ T6623] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  271.970913][ T6623] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  271.977051][ T6623] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  271.981088][ T6623] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  271.986959][ T6623] usb 5-1: config 0 descriptor??
[  272.024359][ T9409] netlink: 16 bytes leftover after parsing attributes in process `syz.3.978'.
[  272.508786][ T6623] hid_parser_main: 44 callbacks suppressed
[  272.508799][ T6623] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  272.521622][ T6623] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  272.524550][ T6623] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  272.527475][ T6623] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  272.530377][ T6623] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  272.545997][ T6623] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  272.548555][ T6623] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  272.558807][ T6623] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  272.562133][ T6623] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  272.564940][ T6623] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0
[  272.588570][ T6623] plantronics 0003:047F:FFFF.0011: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  272.772112][   T10] usb 5-1: USB disconnect, device number 18
[  272.935859][ T9425] tty tty26: ldisc open failed (-12), clearing slot 25
[  272.953883][ T9429] FAULT_INJECTION: forcing a failure.
[  272.953883][ T9429] name failslab, interval 1, probability 0, space 0, times 0
[  272.958258][ T9429] CPU: 2 UID: 0 PID: 9429 Comm: syz.1.984 Not tainted syzkaller #0 PREEMPT(full) 
[  272.958285][ T9429] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  272.958292][ T9429] Call Trace:
[  272.958297][ T9429]  <TASK>
[  272.958301][ T9429]  dump_stack_lvl+0x16c/0x1f0
[  272.958338][ T9429]  should_fail_ex+0x512/0x640
[  272.958359][ T9429]  ? __kmalloc_cache_node_noprof+0x62/0x7a0
[  272.958377][ T9429]  should_failslab+0xc2/0x120
[  272.958388][ T9429]  __kmalloc_cache_node_noprof+0x75/0x7a0
[  272.958404][ T9429]  ? __get_vm_area_node+0x101/0x330
[  272.958419][ T9429]  ? rcu_is_watching+0x12/0xc0
[  272.958436][ T9429]  ? __get_vm_area_node+0x101/0x330
[  272.958446][ T9429]  __get_vm_area_node+0x101/0x330
[  272.958459][ T9429]  __vmalloc_node_range_noprof+0x271/0x1480
[  272.958471][ T9429]  ? vhost_task_create+0x1d2/0x370
[  272.958487][ T9429]  ? find_held_lock+0x2b/0x80
[  272.958503][ T9429]  ? vhost_task_create+0x1d2/0x370
[  272.958518][ T9429]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  272.958533][ T9429]  ? rcu_is_watching+0x12/0xc0
[  272.958548][ T9429]  ? vhost_task_create+0x1d2/0x370
[  272.958560][ T9429]  __vmalloc_node_noprof+0xad/0xf0
[  272.958571][ T9429]  ? vhost_task_create+0x1d2/0x370
[  272.958584][ T9429]  copy_process+0x2c77/0x76a0
[  272.958611][ T9429]  ? __pfx_copy_process+0x10/0x10
[  272.958629][ T9429]  ? lockdep_init_map_type+0x5c/0x280
[  272.958642][ T9429]  ? lockdep_init_map_type+0x5c/0x280
[  272.958653][ T9429]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  272.958666][ T9429]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  272.958682][ T9429]  vhost_task_create+0x1d2/0x370
[  272.958694][ T9429]  ? __pfx_vhost_task_create+0x10/0x10
[  272.958711][ T9429]  ? __pfx_vhost_task_fn+0x10/0x10
[  272.958729][ T9429]  kvm_mmu_post_init_vm+0x1b7/0x380
[  272.958746][ T9429]  kvm_arch_vcpu_ioctl_run+0x66/0x1970
[  272.958761][ T9429]  ? kvm_vcpu_ioctl+0x14c5/0x1690
[  272.958775][ T9429]  kvm_vcpu_ioctl+0x5eb/0x1690
[  272.958788][ T9429]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  272.958800][ T9429]  ? tomoyo_path_number_perm+0x18d/0x580
[  272.958814][ T9429]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  272.958832][ T9429]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  272.958848][ T9429]  ? do_vfs_ioctl+0x128/0x14f0
[  272.958860][ T9429]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  272.958878][ T9429]  kvm_vcpu_compat_ioctl+0x20f/0x3d0
[  272.958890][ T9429]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  272.958902][ T9429]  ? __fget_files+0x20e/0x3c0
[  272.958919][ T9429]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  272.958931][ T9429]  __ia32_compat_sys_ioctl+0x242/0x370
[  272.958945][ T9429]  __do_fast_syscall_32+0x7c/0x300
[  272.958963][ T9429]  do_fast_syscall_32+0x32/0x80
[  272.958979][ T9429]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  272.958992][ T9429] RIP: 0023:0xf705d579
[  272.959002][ T9429] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  272.959011][ T9429] RSP: 002b:00000000f544d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  272.959022][ T9429] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae80
[  272.959028][ T9429] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  272.959034][ T9429] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  272.959040][ T9429] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  272.959046][ T9429] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  272.959060][ T9429]  </TASK>
[  272.959082][ T9429] syz.1.984: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  273.083236][ T9429] CPU: 2 UID: 0 PID: 9429 Comm: syz.1.984 Not tainted syzkaller #0 PREEMPT(full) 
[  273.083252][ T9429] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  273.083259][ T9429] Call Trace:
[  273.083263][ T9429]  <TASK>
[  273.083268][ T9429]  dump_stack_lvl+0x16c/0x1f0
[  273.083289][ T9429]  warn_alloc+0x248/0x3a0
[  273.083305][ T9429]  ? __pfx_warn_alloc+0x10/0x10
[  273.083318][ T9429]  ? rcu_is_watching+0x12/0xc0
[  273.083334][ T9429]  ? __kmalloc_cache_node_noprof+0x2df/0x7a0
[  273.083354][ T9429]  ? __kasan_kmalloc+0x8a/0xb0
[  273.083371][ T9429]  ? __get_vm_area_node+0x208/0x330
[  273.083385][ T9429]  __vmalloc_node_range_noprof+0xaf5/0x1480
[  273.083401][ T9429]  ? find_held_lock+0x2b/0x80
[  273.083416][ T9429]  ? vhost_task_create+0x1d2/0x370
[  273.083432][ T9429]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  273.083448][ T9429]  ? rcu_is_watching+0x12/0xc0
[  273.083464][ T9429]  ? vhost_task_create+0x1d2/0x370
[  273.083475][ T9429]  __vmalloc_node_noprof+0xad/0xf0
[  273.083486][ T9429]  ? vhost_task_create+0x1d2/0x370
[  273.083499][ T9429]  copy_process+0x2c77/0x76a0
[  273.083529][ T9429]  ? __pfx_copy_process+0x10/0x10
[  273.083553][ T9429]  ? lockdep_init_map_type+0x5c/0x280
[  273.083567][ T9429]  ? lockdep_init_map_type+0x5c/0x280
[  273.083579][ T9429]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  273.083591][ T9429]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  273.083609][ T9429]  vhost_task_create+0x1d2/0x370
[  273.083621][ T9429]  ? __pfx_vhost_task_create+0x10/0x10
[  273.083637][ T9429]  ? __pfx_vhost_task_fn+0x10/0x10
[  273.083656][ T9429]  kvm_mmu_post_init_vm+0x1b7/0x380
[  273.083673][ T9429]  kvm_arch_vcpu_ioctl_run+0x66/0x1970
[  273.083688][ T9429]  ? kvm_vcpu_ioctl+0x14c5/0x1690
[  273.083703][ T9429]  kvm_vcpu_ioctl+0x5eb/0x1690
[  273.083716][ T9429]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  273.083727][ T9429]  ? tomoyo_path_number_perm+0x18d/0x580
[  273.083742][ T9429]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  273.083762][ T9429]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  273.083777][ T9429]  ? do_vfs_ioctl+0x128/0x14f0
[  273.083790][ T9429]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  273.083808][ T9429]  kvm_vcpu_compat_ioctl+0x20f/0x3d0
[  273.083820][ T9429]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  273.083832][ T9429]  ? __fget_files+0x20e/0x3c0
[  273.083849][ T9429]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  273.083861][ T9429]  __ia32_compat_sys_ioctl+0x242/0x370
[  273.083875][ T9429]  __do_fast_syscall_32+0x7c/0x300
[  273.083894][ T9429]  do_fast_syscall_32+0x32/0x80
[  273.083911][ T9429]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  273.083925][ T9429] RIP: 0023:0xf705d579
[  273.083934][ T9429] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  273.083944][ T9429] RSP: 002b:00000000f544d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  273.083954][ T9429] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae80
[  273.083961][ T9429] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  273.083967][ T9429] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  273.083973][ T9429] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  273.083979][ T9429] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  273.083993][ T9429]  </TASK>
[  273.083997][ T9429] Mem-Info:
[  273.194651][ T9429] active_anon:12774 inactive_anon:151 isolated_anon:0
[  273.194651][ T9429]  active_file:6785 inactive_file:29816 isolated_file:0
[  273.194651][ T9429]  unevictable:1768 dirty:228 writeback:0
[  273.194651][ T9429]  slab_reclaimable:7850 slab_unreclaimable:56074
[  273.194651][ T9429]  mapped:25406 shmem:8007 pagetables:1287
[  273.194651][ T9429]  sec_pagetables:315 bounce:0
[  273.194651][ T9429]  kernel_misc_reclaimable:0
[  273.194651][ T9429]  free:55307 free_pcp:10975 free_cma:0
[  273.214009][ T9429] Node 0 active_anon:36kB inactive_anon:0kB active_file:4kB inactive_file:12kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:16kB dirty:0kB writeback:0kB shmem:3068kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:9136kB pagetables:1228kB sec_pagetables:1156kB all_unreclaimable? yes Balloon:0kB
[  273.226292][ T9429] Node 1 active_anon:51160kB inactive_anon:604kB active_file:27136kB inactive_file:119252kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:101608kB dirty:912kB writeback:0kB shmem:28960kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:2048kB kernel_stack:4264kB pagetables:3920kB sec_pagetables:104kB all_unreclaimable? no Balloon:0kB
[  273.239737][ T9429] Node 0 DMA free:2036kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:632kB local_pcp:168kB free_cma:0kB
[  273.251989][ T9429] lowmem_reserve[]: 0 292 292 292 292
[  273.254307][ T9429] Node 0 DMA32 free:16792kB boost:0kB min:13448kB low:16808kB high:20168kB reserved_highatomic:0KB free_highatomic:0KB active_anon:36kB inactive_anon:0kB active_file:4kB inactive_file:12kB unevictable:3536kB writepending:0kB zspages:56kB present:1032196kB managed:299668kB mlocked:0kB bounce:0kB free_pcp:12676kB local_pcp:2964kB free_cma:0kB
[  273.267503][ T9429] lowmem_reserve[]: 0 0 0 0 0
[  273.269426][ T9429] Node 1 DMA32 free:202444kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:51104kB inactive_anon:604kB active_file:27208kB inactive_file:119252kB unevictable:3536kB writepending:916kB zspages:1224kB present:1048432kB managed:948220kB mlocked:0kB bounce:0kB free_pcp:30360kB local_pcp:4432kB free_cma:0kB
[  273.283022][ T9429] lowmem_reserve[]: 0 0 0 0 0
[  273.285144][ T9429] Node 0 DMA: 35*4kB (UM) 15*8kB (UM) 7*16kB (UM) 6*32kB (UM) 3*64kB (UM) 0*128kB 1*256kB (M) 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2036kB
[  273.291197][ T9429] Node 0 DMA32: 178*4kB (UME) 30*8kB (UE) 8*16kB (UME) 77*32kB (UME) 47*64kB (UME) 12*128kB (UME) 6*256kB (UME) 6*512kB (UM) 2*1024kB (M) 1*2048kB (M) 0*4096kB = 16792kB
[  273.298324][ T9429] Node 1 DMA32: 285*4kB (UME) 517*8kB (UME) 685*16kB (UME) 405*32kB (UME) 279*64kB (UME) 190*128kB (UME) 78*256kB (UME) 41*512kB (ME) 24*1024kB (UME) 10*2048kB (M) 11*4096kB (UM) = 202444kB
[  273.305137][ T9429] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  273.309024][ T9429] Node 0 hugepages_total=1 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  273.311696][   T10] usb 8-1: new high-speed USB device number 22 using dummy_hcd
[  273.312882][ T9429] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  273.319946][ T9429] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=1 hugepages_size=2048kB
[  273.324907][ T9429] 45501 total pagecache pages
[  273.327096][ T9429] 880 pages in swap cache
[  273.329163][ T9429] Free swap  = 120228kB
[  273.331063][ T9429] Total swap = 124996kB
[  273.333133][ T9429] 524155 pages RAM
[  273.334937][ T9429] 0 pages HighMem/MovableOnly
[  273.337007][ T9429] 208343 pages reserved
[  273.338815][ T9429] 0 pages cma reserved
[  273.461417][   T10] usb 8-1: Using ep0 maxpacket: 8
[  273.470208][   T10] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[  273.473123][   T10] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  273.476420][   T10] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  273.480559][   T10] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  273.490302][   T10] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  273.494781][   T10] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  273.500365][   T10] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  273.710100][   T10] usb 8-1: GET_CAPABILITIES returned 0
[  273.712293][   T10] usbtmc 8-1:16.0: can't read capabilities
[  273.955803][   T60] usb 8-1: USB disconnect, device number 22
[  274.440648][ T9448] FAULT_INJECTION: forcing a failure.
[  274.440648][ T9448] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  274.446821][ T9448] CPU: 1 UID: 0 PID: 9448 Comm: syz.2.990 Not tainted syzkaller #0 PREEMPT(full) 
[  274.446843][ T9448] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  274.446852][ T9448] Call Trace:
[  274.446857][ T9448]  <TASK>
[  274.446863][ T9448]  dump_stack_lvl+0x16c/0x1f0
[  274.446892][ T9448]  should_fail_ex+0x512/0x640
[  274.446918][ T9448]  _copy_from_user+0x2e/0xd0
[  274.446935][ T9448]  get_compat_msghdr+0xa7/0x170
[  274.446970][ T9448]  ? __pfx_get_compat_msghdr+0x10/0x10
[  274.446994][ T9448]  ? __pfx__kstrtoull+0x10/0x10
[  274.447018][ T9448]  ___sys_sendmsg+0x1ae/0x1d0
[  274.447044][ T9448]  ? __pfx____sys_sendmsg+0x10/0x10
[  274.447065][ T9448]  ? __lock_acquire+0x622/0x1c90
[  274.447106][ T9448]  ? __pfx___might_resched+0x10/0x10
[  274.447134][ T9448]  __sys_sendmmsg+0x2f9/0x420
[  274.447161][ T9448]  ? __pfx___sys_sendmmsg+0x10/0x10
[  274.447193][ T9448]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  274.447227][ T9448]  ? fput+0x9b/0xd0
[  274.447243][ T9448]  ? ksys_write+0x1ac/0x250
[  274.447265][ T9448]  ? __pfx_ksys_write+0x10/0x10
[  274.447291][ T9448]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  274.447314][ T9448]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  274.447339][ T9448]  __do_fast_syscall_32+0x7c/0x300
[  274.447365][ T9448]  do_fast_syscall_32+0x32/0x80
[  274.447389][ T9448]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  274.447408][ T9448] RIP: 0023:0xf7fe5579
[  274.447422][ T9448] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  274.447437][ T9448] RSP: 002b:00000000f54d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  274.447453][ T9448] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000080
[  274.447463][ T9448] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  274.447472][ T9448] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  274.447481][ T9448] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  274.447490][ T9448] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  274.447513][ T9448]  </TASK>
[  274.523507][ T9454] netlink: 16 bytes leftover after parsing attributes in process `syz.0.991'.
[  274.576340][ T9458] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  274.579959][ T9458] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  274.591882][ T9460] netlink: 24 bytes leftover after parsing attributes in process `syz.1.994'.
[  274.600948][ T9458] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type
[  274.605072][ T9458] overlayfs: failed to look up (tracing) for ino (-66)
[  275.509983][   T40] audit: type=1326 audit(1760592325.111:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9466 comm="syz.3.996" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000
[  275.541667][   T40] audit: type=1326 audit(1760592325.111:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9466 comm="syz.3.996" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000
[  275.550660][   T40] audit: type=1326 audit(1760592325.111:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9466 comm="syz.3.996" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf70ed579 code=0x7ffc0000
[  275.560347][   T40] audit: type=1326 audit(1760592325.111:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9466 comm="syz.3.996" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000
[  275.568205][   T40] audit: type=1326 audit(1760592325.111:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9466 comm="syz.3.996" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000
[  275.575584][   T40] audit: type=1326 audit(1760592325.111:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9466 comm="syz.3.996" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf70ed579 code=0x7ffc0000
[  275.584701][   T40] audit: type=1326 audit(1760592325.111:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9466 comm="syz.3.996" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000
[  275.592825][   T40] audit: type=1326 audit(1760592325.111:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9466 comm="syz.3.996" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000
[  275.601041][   T40] audit: type=1326 audit(1760592325.121:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9466 comm="syz.3.996" exe="/syz-executor" sig=0 arch=40000003 syscall=447 compat=1 ip=0xf70ed579 code=0x7ffc0000
[  275.605033][ T9469] netlink: 'syz.3.996': attribute type 21 has an invalid length.
[  275.612764][ T9469] netlink: 128 bytes leftover after parsing attributes in process `syz.3.996'.
[  275.616607][ T9469] netlink: 'syz.3.996': attribute type 5 has an invalid length.
[  275.619795][ T9469] netlink: 3 bytes leftover after parsing attributes in process `syz.3.996'.
[  275.635840][   T40] audit: type=1326 audit(1760592325.121:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9466 comm="syz.3.996" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000
[  275.652312][ T9472] 9p: Unknown Cache mode or invalid value fscach
[  276.192640][   T60] usb 8-1: new high-speed USB device number 23 using dummy_hcd
[  276.361882][   T60] usb 8-1: Using ep0 maxpacket: 8
[  276.373752][   T60] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[  276.377173][   T60] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  276.381254][   T60] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  276.390858][   T60] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  276.397872][   T60] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  276.403783][   T60] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  276.407358][   T60] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  276.487435][ T9495] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1006'.
[  276.611472][   T10] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  276.791491][   T10] usb 5-1: Using ep0 maxpacket: 8
[  276.803708][   T10] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  276.816503][   T10] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  276.821504][   T10] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  276.826064][   T10] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  276.830518][   T10] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  276.842799][   T10] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  276.846657][   T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  276.991511][   T60] usb 8-1: GET_CAPABILITIES returned 0
[  276.993803][   T60] usbtmc 8-1:16.0: can't read capabilities
[  277.117104][   T10] usb 5-1: GET_CAPABILITIES returned 0
[  277.119825][   T10] usbtmc 5-1:16.0: can't read capabilities
[  277.156736][   T60] usb 8-1: USB disconnect, device number 23
[  277.323207][   T10] usb 5-1: USB disconnect, device number 19
[  277.462651][ T9506] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  277.466232][ T9506] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  277.477254][ T9506] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type
[  277.480399][ T9506] overlayfs: failed to look up (tracing) for ino (-66)
[  278.208117][ T9512] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  278.211957][ T9512] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  278.267131][ T9512] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  279.089559][ T9531] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1015'.
[  279.094583][ T9531] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1015'.
[  279.094813][ T9531] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1015'.
[  279.095031][ T9531] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1015'.
[  279.095177][ T9531] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1015'.
[  279.183601][ T9537] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1017'.
[  280.061470][ T5302] Bluetooth: hci1: command 0x0c1a tx timeout
[  280.185533][ T9550] bond2: entered promiscuous mode
[  280.205492][ T9550] bond_slave_0: entered promiscuous mode
[  280.207513][ T9550] bond_slave_1: entered promiscuous mode
[  280.209708][ T9550] 8021q: adding VLAN 0 to HW filter on device macvlan1
[  280.214271][ T9550] bond2: (slave macvlan1): making interface the new active one
[  280.216657][ T9550] macvlan1: entered promiscuous mode
[  280.218351][ T9550] bond0: entered promiscuous mode
[  280.220854][ T9550] bond2: (slave macvlan1): Enslaving as an active interface with an up link
[  280.238952][ T9550] bridge0: port 3(syz_tun) entered blocking state
[  280.243561][ T9550] bridge0: port 3(syz_tun) entered disabled state
[  280.246030][ T9550] syz_tun: entered allmulticast mode
[  280.249167][ T9550] syz_tun: entered promiscuous mode
[  280.252184][ T9550] bridge0: port 3(syz_tun) entered blocking state
[  280.254436][ T9550] bridge0: port 3(syz_tun) entered forwarding state
[  280.262800][ T9550] netlink: 'syz.3.1021': attribute type 10 has an invalid length.
[  280.266372][ T9550] bridge0: port 3(syz_tun) entered disabled state
[  280.269172][ T9550] bridge0: port 2(bridge_slave_1) entered disabled state
[  280.272083][ T9550] bridge0: port 1(bridge_slave_0) entered disabled state
[  280.283761][ T9550] rdma_rxe: rxe_newlink: failed to add syz_tun
[  280.328298][ T5302] Bluetooth: hci2: command 0x0c1a tx timeout
[  280.561425][   T34] usb 8-1: new high-speed USB device number 24 using dummy_hcd
[  280.731424][   T34] usb 8-1: Using ep0 maxpacket: 8
[  280.735896][   T34] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[  280.738804][   T34] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  280.742863][   T34] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  280.746463][   T34] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  280.749629][   T34] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  280.753956][   T34] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  280.757222][   T34] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  281.036817][   T34] usb 8-1: GET_CAPABILITIES returned 0
[  281.038655][   T34] usbtmc 8-1:16.0: can't read capabilities
[  281.089175][ T9559] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1024'.
[  281.167412][ T9562] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  281.172401][ T9562] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  281.191729][ T9562] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type
[  281.196272][ T9562] overlayfs: failed to look up (tracing) for ino (-66)
[  281.213396][ T9563] nfs: Unknown parameter 'ntext'
[  281.221452][ T5996] usb 8-1: USB disconnect, device number 24
[  282.141499][ T5946] Bluetooth: hci1: command 0x0c1a tx timeout
[  282.381448][ T5946] Bluetooth: hci2: command 0x0c1a tx timeout
[  283.347330][ T9580] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1029'.
[  283.381552][ T9580] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1029'.
[  283.387292][ T9580] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1029'.
[  283.394115][ T9580] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1029'.
[  283.399227][ T9580] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1029'.
[  283.540288][ T9590] FAULT_INJECTION: forcing a failure.
[  283.540288][ T9590] name failslab, interval 1, probability 0, space 0, times 0
[  283.545508][ T9590] CPU: 3 UID: 0 PID: 9590 Comm: syz.3.1034 Not tainted syzkaller #0 PREEMPT(full) 
[  283.545522][ T9590] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  283.545528][ T9590] Call Trace:
[  283.545532][ T9590]  <TASK>
[  283.545538][ T9590]  dump_stack_lvl+0x16c/0x1f0
[  283.545557][ T9590]  should_fail_ex+0x512/0x640
[  283.545575][ T9590]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  283.545590][ T9590]  should_failslab+0xc2/0x120
[  283.545601][ T9590]  kmem_cache_alloc_noprof+0x75/0x6e0
[  283.545615][ T9590]  ? vm_area_alloc+0x1f/0x160
[  283.545634][ T9590]  ? vm_area_alloc+0x1f/0x160
[  283.545646][ T9590]  vm_area_alloc+0x1f/0x160
[  283.545658][ T9590]  __mmap_region+0xf85/0x27a0
[  283.545674][ T9590]  ? rcu_is_watching+0x12/0xc0
[  283.545689][ T9590]  ? __pfx___mmap_region+0x10/0x10
[  283.545702][ T9590]  ? find_held_lock+0x2b/0x80
[  283.545717][ T9590]  ? process_measurement+0xf92/0x23e0
[  283.545731][ T9590]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  283.545751][ T9590]  ? rcu_is_watching+0x12/0xc0
[  283.545790][ T9590]  ? rcu_is_watching+0x12/0xc0
[  283.545808][ T9590]  mmap_region+0x32b/0x3f0
[  283.545825][ T9590]  do_mmap+0xa3e/0x1210
[  283.545838][ T9590]  ? __pfx_do_mmap+0x10/0x10
[  283.545848][ T9590]  ? __pfx_down_write_killable+0x10/0x10
[  283.545861][ T9590]  vm_mmap_pgoff+0x29e/0x470
[  283.545881][ T9590]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  283.545900][ T9590]  ? __fget_files+0x20e/0x3c0
[  283.545917][ T9590]  ksys_mmap_pgoff+0x32c/0x5c0
[  283.545936][ T9590]  __do_fast_syscall_32+0x7c/0x300
[  283.545954][ T9590]  do_fast_syscall_32+0x32/0x80
[  283.545971][ T9590]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  283.545984][ T9590] RIP: 0023:0xf70ed579
[  283.545993][ T9590] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  283.546003][ T9590] RSP: 002b:00000000f54dd55c EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[  283.546013][ T9590] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000000600000
[  283.546019][ T9590] RDX: 00000000027ffff7 RSI: 0000000004012011 RDI: 0000000000000005
[  283.546025][ T9590] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  283.546031][ T9590] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  283.546036][ T9590] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  283.546050][ T9590]  </TASK>
[  283.650423][ T9591] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1032'.
[  283.688450][ T9591] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1032'.
[  283.692235][ T9591] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1032'.
[  283.696787][ T9591] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1032'.
[  283.704550][ T9591] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1032'.
[  283.797604][ T9595] netlink: 'syz.1.1036': attribute type 17 has an invalid length.
[  283.800644][ T9595] macvtap0: entered allmulticast mode
[  283.803923][ T9595] veth0_macvtap: entered allmulticast mode
[  283.806988][ T9595] A link change request failed with some changes committed already. Interface macvtap0 may have been left with an inconsistent configuration, please check.
[  283.818421][ T9595] kvm: kvm [9594]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010015) = 0x40600
[  283.951486][   T34] usb 8-1: new high-speed USB device number 25 using dummy_hcd
[  284.103129][   T34] usb 8-1: config index 0 descriptor too short (expected 39, got 27)
[  284.105864][   T34] usb 8-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  284.108948][   T34] usb 8-1: config 0 interface 0 has no altsetting 0
[  284.113730][   T34] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  284.116719][   T34] usb 8-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  284.119294][   T34] usb 8-1: Product: syz
[  284.120761][   T34] usb 8-1: Manufacturer: syz
[  284.122731][   T34] usb 8-1: SerialNumber: syz
[  284.127199][   T34] usb 8-1: config 0 descriptor??
[  284.129905][   T34] hub 8-1:0.0: bad descriptor, ignoring hub
[  284.132265][   T34] hub 8-1:0.0: probe with driver hub failed with error -5
[  284.139986][   T34] usb 8-1: selecting invalid altsetting 0
[  284.423476][ T5996] usb 8-1: USB disconnect, device number 25
[  284.721432][  T840] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[  284.751575][ T5996] usb 8-1: new full-speed USB device number 26 using dummy_hcd
[  284.881501][  T840] usb 7-1: Using ep0 maxpacket: 8
[  284.884879][  T840] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  284.888079][  T840] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  284.891153][  T840] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  284.895138][  T840] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  284.898774][  T840] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  284.903890][  T840] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  284.907863][  T840] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  284.946614][ T9593] 9pnet_fd: Insufficient options for proto=fd
[  284.964630][ T5996] usb 8-1: unable to get BOS descriptor or descriptor too short
[  284.970075][ T5996] usb 8-1: unable to read config index 0 descriptor/start: -71
[  284.973689][ T5996] usb 8-1: can't read configurations, error -71
[  285.116465][  T840] usb 7-1: GET_CAPABILITIES returned 0
[  285.118228][  T840] usbtmc 7-1:16.0: can't read capabilities
[  285.322643][  T840] usb 7-1: USB disconnect, device number 18
[  289.263240][ T9650] __nla_validate_parse: 13 callbacks suppressed
[  289.263251][ T9650] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1049'.
[  289.275303][ T9650] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1049'.
[  289.279446][ T9650] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1049'.
[  289.285514][ T9650] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1049'.
[  289.288841][ T9650] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1049'.
[  289.501472][  T840] usb 8-1: new high-speed USB device number 28 using dummy_hcd
[  289.661487][  T840] usb 8-1: Using ep0 maxpacket: 8
[  289.669638][  T840] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[  289.673135][  T840] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  289.676313][  T840] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  289.679650][  T840] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  289.683676][  T840] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  289.688460][  T840] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  289.691681][  T840] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  289.906402][  T840] usb 8-1: GET_CAPABILITIES returned 0
[  289.908342][  T840] usbtmc 8-1:16.0: can't read capabilities
[  290.108946][ T5996] usb 8-1: USB disconnect, device number 28
[  291.271463][ T9673] mkiss: ax0: crc mode is auto.
[  292.590521][ T9691] fuse: Bad value for 'fd'
[  294.607894][ T9706] FAULT_INJECTION: forcing a failure.
[  294.607894][ T9706] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  294.612138][ T9706] CPU: 1 UID: 0 PID: 9706 Comm: syz.3.1068 Not tainted syzkaller #0 PREEMPT(full) 
[  294.612153][ T9706] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  294.612159][ T9706] Call Trace:
[  294.612163][ T9706]  <TASK>
[  294.612167][ T9706]  dump_stack_lvl+0x16c/0x1f0
[  294.612189][ T9706]  should_fail_ex+0x512/0x640
[  294.612208][ T9706]  _copy_from_user+0x2e/0xd0
[  294.612218][ T9706]  video_usercopy+0x723/0x1450
[  294.612232][ T9706]  ? __pfx___video_do_ioctl+0x10/0x10
[  294.612244][ T9706]  ? __pfx_video_usercopy+0x10/0x10
[  294.612261][ T9706]  ? hook_file_ioctl_common+0x145/0x410
[  294.612279][ T9706]  v4l2_ioctl+0x1bd/0x250
[  294.612292][ T9706]  v4l2_compat_ioctl32+0x217/0x2c0
[  294.612321][ T9706]  ? __pfx_v4l2_compat_ioctl32+0x10/0x10
[  294.612333][ T9706]  __ia32_compat_sys_ioctl+0x242/0x370
[  294.612347][ T9706]  __do_fast_syscall_32+0x7c/0x300
[  294.612365][ T9706]  do_fast_syscall_32+0x32/0x80
[  294.612381][ T9706]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  294.612395][ T9706] RIP: 0023:0xf70ed579
[  294.612404][ T9706] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  294.612414][ T9706] RSP: 002b:00000000f54dd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  294.612424][ T9706] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c008561c
[  294.612430][ T9706] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000
[  294.612437][ T9706] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  294.612442][ T9706] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  294.612449][ T9706] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  294.612462][ T9706]  </TASK>
[  298.101432][   T10] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  298.252903][   T10] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  298.256924][   T10] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  298.261080][   T10] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  298.266779][   T10] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  298.270541][   T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  298.275581][ T9745] fuse: Unknown parameter ''
[  298.281204][   T10] usb 5-1: config 0 descriptor??
[  298.332192][ T9746] overlay: ./file0 is not a directory
[  298.708327][   T10] hid_parser_main: 5 callbacks suppressed
[  298.708339][   T10] plantronics 0003:047F:FFFF.0012: unknown main item tag 0x0
[  298.713467][   T10] plantronics 0003:047F:FFFF.0012: unknown main item tag 0x0
[  298.716035][   T10] plantronics 0003:047F:FFFF.0012: unknown main item tag 0x0
[  298.718358][   T10] plantronics 0003:047F:FFFF.0012: unknown main item tag 0x0
[  298.720672][   T10] plantronics 0003:047F:FFFF.0012: unknown main item tag 0x0
[  298.723101][   T10] plantronics 0003:047F:FFFF.0012: unknown main item tag 0x0
[  298.725399][   T10] plantronics 0003:047F:FFFF.0012: unknown main item tag 0x0
[  298.727688][   T10] plantronics 0003:047F:FFFF.0012: unknown main item tag 0x0
[  298.729979][   T10] plantronics 0003:047F:FFFF.0012: unknown main item tag 0x0
[  298.733845][   T10] plantronics 0003:047F:FFFF.0012: unknown main item tag 0x0
[  298.740204][   T10] plantronics 0003:047F:FFFF.0012: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  298.913745][   T34] usb 5-1: USB disconnect, device number 20
[  299.284486][ T9755] netlink: 'syz.3.1083': attribute type 1 has an invalid length.
[  299.313811][ T9755] bond4: (slave gretap1): making interface the new active one
[  299.316882][ T9755] bond4: (slave gretap1): Enslaving as an active interface with an up link
[  300.123652][ T9772] fuse: Bad value for 'fd'
[  302.213904][  T840] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[  302.381455][  T840] usb 7-1: Using ep0 maxpacket: 8
[  302.388479][  T840] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  302.391861][  T840] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  302.395117][  T840] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  302.398610][  T840] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  302.404871][  T840] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  302.408487][  T840] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  302.632656][  T840] usb 7-1: GET_CAPABILITIES returned 0
[  302.634413][  T840] usbtmc 7-1:16.0: can't read capabilities
[  302.835517][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  302.839062][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  302.842330][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  302.845828][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  302.848543][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  302.851277][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  302.853988][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  302.857989][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  302.860776][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  302.863511][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  302.866273][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  302.869051][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  302.871851][    C3] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  302.875270][    C2] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  302.879098][    C2] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  302.882990][    C2] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  302.896267][   T34] usb 7-1: USB disconnect, device number 19
[  303.046490][ T9786] overlayfs: workdir and upperdir must be separate subtrees
[  303.121864][   T60] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  304.051420][   T34] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[  304.327292][   T34] usb 7-1: Using ep0 maxpacket: 8
[  304.332160][   T34] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  304.335512][   T34] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  304.339411][   T34] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  304.344198][   T34] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  304.348339][   T34] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  304.354012][   T34] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  304.357718][   T34] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  304.586523][   T34] usb 7-1: GET_CAPABILITIES returned 0
[  304.589001][   T34] usbtmc 7-1:16.0: can't read capabilities
[  304.809259][   T34] usb 7-1: USB disconnect, device number 20
[  306.773613][ T9809] binder: 9808:9809 ioctl c00c620f 80000100 returned -22
[  307.103955][ T9816] block nbd1: Cannot use ioctl interface on a netlink controlled device.
[  307.119653][ T9816] tipc: Started in network mode
[  307.121992][ T9816] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[  307.124785][ T9816] tipc: Enabled bearer <eth:team0>, priority 0
[  307.813641][ T9826] overlayfs: failed to resolve './file1': -2
[  308.263809][   T29] tipc: Node number set to 11578026
[  308.792268][ T9839] binder: 9838:9839 ioctl c00c620f 80000100 returned -22
[  311.961444][ T6010] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  312.035838][ T5946] Bluetooth: hci2: unexpected event for opcode 0x042c
[  312.123723][ T6010] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  312.128200][ T6010] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  312.132792][ T6010] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  312.138005][ T6010] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  312.142243][ T6010] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  312.147363][ T6010] usb 5-1: config 0 descriptor??
[  312.321540][   T10] usb 8-1: new high-speed USB device number 29 using dummy_hcd
[  312.491587][ T5943] usb 7-1: new high-speed USB device number 21 using dummy_hcd
[  312.503648][   T10] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  312.507383][   T10] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  312.510505][   T10] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  312.514632][   T10] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  312.517608][   T10] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  312.522502][   T10] usb 8-1: config 0 descriptor??
[  312.582499][ T6010] hid_parser_main: 5 callbacks suppressed
[  312.582574][ T6010] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  312.587007][ T6010] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  312.589357][ T6010] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  312.592360][ T6010] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  312.594848][ T6010] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  312.597241][ T6010] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  312.599684][ T6010] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  312.602324][ T6010] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  312.604760][ T6010] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  312.607170][ T6010] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0
[  312.613178][ T6010] plantronics 0003:047F:FFFF.0013: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  312.652798][ T5943] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  312.656264][ T5943] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  312.659289][ T5943] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  312.663757][ T5943] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  312.666601][ T5943] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  312.671895][ T5943] usb 7-1: config 0 descriptor??
[  312.861563][ T6010] usb 5-1: USB disconnect, device number 21
[  312.968414][   T10] plantronics 0003:047F:FFFF.0014: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  313.132290][ T5943] plantronics 0003:047F:FFFF.0015: hiddev1,hidraw2: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  313.236838][ T5943] usb 8-1: USB disconnect, device number 29
[  313.348204][ T6010] usb 7-1: USB disconnect, device number 21
[  313.588881][ T9909] FAULT_INJECTION: forcing a failure.
[  313.588881][ T9909] name failslab, interval 1, probability 0, space 0, times 0
[  313.593812][ T9909] CPU: 2 UID: 0 PID: 9909 Comm: syz.0.1128 Not tainted syzkaller #0 PREEMPT(full) 
[  313.593827][ T9909] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  313.593833][ T9909] Call Trace:
[  313.593837][ T9909]  <TASK>
[  313.593842][ T9909]  dump_stack_lvl+0x16c/0x1f0
[  313.593862][ T9909]  should_fail_ex+0x512/0x640
[  313.593879][ T9909]  ? fs_reclaim_acquire+0xae/0x150
[  313.593891][ T9909]  should_failslab+0xc2/0x120
[  313.593902][ T9909]  __kmalloc_noprof+0xdd/0x880
[  313.593915][ T9909]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  313.593934][ T9909]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  313.593951][ T9909]  tomoyo_realpath_from_path+0xc2/0x6e0
[  313.593974][ T9909]  ? tomoyo_profile+0x47/0x60
[  313.594001][ T9909]  tomoyo_path_number_perm+0x245/0x580
[  313.594019][ T9909]  ? tomoyo_path_number_perm+0x237/0x580
[  313.594047][ T9909]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  313.594079][ T9909]  ? find_held_lock+0x2b/0x80
[  313.594095][ T9909]  ? hook_file_ioctl_common+0x145/0x410
[  313.594112][ T9909]  ? __fget_files+0x20e/0x3c0
[  313.594128][ T9909]  security_file_ioctl_compat+0x9b/0x240
[  313.594142][ T9909]  __ia32_compat_sys_ioctl+0xc3/0x370
[  313.594157][ T9909]  __do_fast_syscall_32+0x7c/0x300
[  313.594175][ T9909]  do_fast_syscall_32+0x32/0x80
[  313.594191][ T9909]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  313.594204][ T9909] RIP: 0023:0xf705d579
[  313.594213][ T9909] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  313.594223][ T9909] RSP: 002b:00000000f542c55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  313.594234][ T9909] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000c00c642d
[  313.594240][ T9909] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000
[  313.594247][ T9909] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  313.594252][ T9909] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  313.594258][ T9909] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  313.594272][ T9909]  </TASK>
[  313.594277][ T9909] ERROR: Out of memory at tomoyo_realpath_from_path.
[  314.143440][ T9915] bond2: Unable to set up delay as MII monitoring is disabled
[  314.152537][ T9915] bond2 (unregistering): Released all slaves
[  314.492670][ T9925] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1134'.
[  314.497789][ T9925] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1134'.
[  314.503955][ T9925] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1134'.
[  314.507781][ T9925] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1134'.
[  314.511899][ T9925] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1134'.
[  314.684571][ T9941] tmpfs: Group quota block hardlimit too large.
[  314.783350][ T9941] team0 (unregistering): Port device team_slave_0 removed
[  314.788935][ T9941] team0 (unregistering): Port device team_slave_1 removed
[  314.899199][ T9948] NILFS (nullb0): couldn't find nilfs on the device
[  315.620605][ T9949] FAULT_INJECTION: forcing a failure.
[  315.620605][ T9949] name failslab, interval 1, probability 0, space 0, times 0
[  315.630653][ T9949] CPU: 0 UID: 0 PID: 9949 Comm: syz.0.1143 Not tainted syzkaller #0 PREEMPT(full) 
[  315.630677][ T9949] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  315.630687][ T9949] Call Trace:
[  315.630693][ T9949]  <TASK>
[  315.630700][ T9949]  dump_stack_lvl+0x16c/0x1f0
[  315.630727][ T9949]  should_fail_ex+0x512/0x640
[  315.630749][ T9949]  ? fs_reclaim_acquire+0xae/0x150
[  315.630766][ T9949]  should_failslab+0xc2/0x120
[  315.630781][ T9949]  __kmalloc_noprof+0xdd/0x880
[  315.630800][ T9949]  ? tomoyo_encode2+0x100/0x3e0
[  315.630825][ T9949]  ? tomoyo_encode2+0x100/0x3e0
[  315.630843][ T9949]  tomoyo_encode2+0x100/0x3e0
[  315.630866][ T9949]  tomoyo_encode+0x29/0x50
[  315.630884][ T9949]  tomoyo_realpath_from_path+0x18f/0x6e0
[  315.630912][ T9949]  tomoyo_path_number_perm+0x245/0x580
[  315.630928][ T9949]  ? tomoyo_path_number_perm+0x237/0x580
[  315.630948][ T9949]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  315.630992][ T9949]  ? find_held_lock+0x2b/0x80
[  315.631011][ T9949]  ? hook_file_ioctl_common+0x145/0x410
[  315.631036][ T9949]  ? __fget_files+0x20e/0x3c0
[  315.631061][ T9949]  security_file_ioctl_compat+0x9b/0x240
[  315.631082][ T9949]  __ia32_compat_sys_ioctl+0xc3/0x370
[  315.631102][ T9949]  __do_fast_syscall_32+0x7c/0x300
[  315.631138][ T9949]  do_fast_syscall_32+0x32/0x80
[  315.631160][ T9949]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  315.631179][ T9949] RIP: 0023:0xf705d579
[  315.631192][ T9949] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  315.631207][ T9949] RSP: 002b:00000000f542c55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  315.631224][ T9949] RAX: ffffffffffffffda RBX: 000000000000000c RCX: 0000000000004b67
[  315.631234][ T9949] RDX: 0000000080000400 RSI: 0000000000000000 RDI: 0000000000000000
[  315.631244][ T9949] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  315.631252][ T9949] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  315.631261][ T9949] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  315.631285][ T9949]  </TASK>
[  315.631305][ T9949] ERROR: Out of memory at tomoyo_realpath_from_path.
[  315.746725][ T6010] hid-generic 000F:0004:0000.0016: hidraw1: <UNKNOWN> HID v0.02 Device [syz0] on syz1
[  316.107094][ T9952] fido_id[9952]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  316.294610][ T9967] FAULT_INJECTION: forcing a failure.
[  316.294610][ T9967] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  316.300088][ T9967] CPU: 2 UID: 0 PID: 9967 Comm: syz.2.1148 Not tainted syzkaller #0 PREEMPT(full) 
[  316.300129][ T9967] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  316.300140][ T9967] Call Trace:
[  316.300147][ T9967]  <TASK>
[  316.300155][ T9967]  dump_stack_lvl+0x16c/0x1f0
[  316.300186][ T9967]  should_fail_ex+0x512/0x640
[  316.300216][ T9967]  _copy_from_user+0x2e/0xd0
[  316.300237][ T9967]  add_rule_path_beneath+0xac/0x4d0
[  316.300257][ T9967]  ? __pfx_add_rule_path_beneath+0x10/0x10
[  316.300286][ T9967]  ? fput+0x9b/0xd0
[  316.300310][ T9967]  __ia32_sys_landlock_add_rule+0x1a9/0x240
[  316.300334][ T9967]  __do_fast_syscall_32+0x7c/0x300
[  316.300362][ T9967]  do_fast_syscall_32+0x32/0x80
[  316.300388][ T9967]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  316.300411][ T9967] RIP: 0023:0xf7fe5579
[  316.300425][ T9967] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  316.300442][ T9967] RSP: 002b:00000000f54d655c EFLAGS: 00000296 ORIG_RAX: 00000000000001bd
[  316.300460][ T9967] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000001
[  316.300473][ T9967] RDX: 0000000080000340 RSI: 0000000000000000 RDI: 0000000000000000
[  316.300483][ T9967] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  316.300492][ T9967] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  316.300502][ T9967] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  316.300527][ T9967]  </TASK>
[  316.313722][ T5946] Bluetooth: hci1: unexpected event for opcode 0x042c
[  316.481116][ T9979] autofs: Bad value for 'fd'
[  316.624959][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  316.627290][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  316.791085][ T9990] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1155'.
[  316.979455][ T9995] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1156'.
[  317.344083][T10004] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1159'.
[  317.417166][T10006] FAULT_INJECTION: forcing a failure.
[  317.417166][T10006] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  317.423840][T10006] CPU: 2 UID: 0 PID: 10006 Comm: syz.3.1160 Not tainted syzkaller #0 PREEMPT(full) 
[  317.423857][T10006] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  317.423863][T10006] Call Trace:
[  317.423867][T10006]  <TASK>
[  317.423871][T10006]  dump_stack_lvl+0x16c/0x1f0
[  317.423892][T10006]  should_fail_ex+0x512/0x640
[  317.423911][T10006]  should_fail_alloc_page+0xe7/0x130
[  317.423923][T10006]  prepare_alloc_pages+0x3c2/0x610
[  317.423936][T10006]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  317.423956][T10006]  ? __lock_acquire+0xb8a/0x1c90
[  317.423969][T10006]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  317.423985][T10006]  ? perf_event_mmap+0xbb/0xd40
[  317.424003][T10006]  ? __pfx_perf_event_mmap+0x10/0x10
[  317.424023][T10006]  ? inode_to_bdi+0x9e/0x160
[  317.424039][T10006]  ? vma_wants_writenotify+0x10b/0x390
[  317.424054][T10006]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  317.424070][T10006]  ? policy_nodemask+0xea/0x4e0
[  317.424082][T10006]  alloc_pages_mpol+0x1fb/0x550
[  317.424117][T10006]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  317.424138][T10006]  alloc_pages_noprof+0x131/0x390
[  317.424149][T10006]  __pmd_alloc+0x3b/0x8b0
[  317.424159][T10006]  ? find_held_lock+0x2b/0x80
[  317.424174][T10006]  __handle_mm_fault+0xada/0x2aa0
[  317.424191][T10006]  ? __pfx___handle_mm_fault+0x10/0x10
[  317.424216][T10006]  handle_mm_fault+0x589/0xd10
[  317.424231][T10006]  __get_user_pages+0x54e/0x3530
[  317.424247][T10006]  ? __pfx___get_user_pages+0x10/0x10
[  317.424263][T10006]  populate_vma_page_range+0x267/0x3f0
[  317.424276][T10006]  ? __pfx_populate_vma_page_range+0x10/0x10
[  317.424287][T10006]  ? __pfx_find_vma_intersection+0x10/0x10
[  317.424305][T10006]  ? do_mmap+0x69c/0x1210
[  317.424315][T10006]  __mm_populate+0x1d8/0x380
[  317.424327][T10006]  ? __pfx___mm_populate+0x10/0x10
[  317.424339][T10006]  ? up_write+0x1b2/0x520
[  317.424353][T10006]  do_shmat+0xda8/0x1330
[  317.424371][T10006]  ? __pfx_do_shmat+0x10/0x10
[  317.424390][T10006]  __ia32_compat_sys_shmat+0xd9/0x170
[  317.424405][T10006]  ? __pfx_ksys_write+0x10/0x10
[  317.424420][T10006]  ? __pfx___ia32_compat_sys_shmat+0x10/0x10
[  317.424436][T10006]  ? rcu_is_watching+0x12/0xc0
[  317.424451][T10006]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  317.424468][T10006]  ? lockdep_hardirqs_on+0x7c/0x110
[  317.424483][T10006]  __do_fast_syscall_32+0x7c/0x300
[  317.424501][T10006]  do_fast_syscall_32+0x32/0x80
[  317.424517][T10006]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  317.424530][T10006] RIP: 0023:0xf70ed579
[  317.424539][T10006] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  317.424550][T10006] RSP: 002b:00000000f54dd55c EFLAGS: 00000296 ORIG_RAX: 000000000000018d
[  317.424560][T10006] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080001000
[  317.424567][T10006] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  317.424572][T10006] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  317.424578][T10006] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  317.424584][T10006] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  317.424598][T10006]  </TASK>
[  317.807858][T10011] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1161'.
[  317.972004][   T60] e1000 0000:00:06.0 eth0: Reset adapter
[  318.651491][  T840] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  318.785489][  T840] usb 6-1: device descriptor read/64, error -71
[  319.031452][  T840] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  319.171441][  T840] usb 6-1: device descriptor read/64, error -71
[  319.291726][  T840] usb usb6-port1: attempt power cycle
[  319.661518][  T840] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  319.682305][  T840] usb 6-1: device descriptor read/8, error -71
[  319.921599][  T840] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  319.942084][  T840] usb 6-1: device descriptor read/8, error -71
[  320.051938][  T840] usb usb6-port1: unable to enumerate USB device
[  320.232972][ T5943] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX
[  328.051391][ T5943] usb 8-1: new high-speed USB device number 30 using dummy_hcd
[  328.215644][ T5943] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  328.219322][ T5943] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  328.223024][ T5943] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  328.227842][ T5943] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  328.241878][ T5943] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  328.246992][ T5943] usb 8-1: config 0 descriptor??
[  328.737623][ T5943] usbhid 8-1:0.0: can't add hid device: -71
[  328.741763][ T5943] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[  328.749897][ T5943] usb 8-1: USB disconnect, device number 30
[  329.561866][   T34] usb 8-1: new high-speed USB device number 31 using dummy_hcd
[  329.588656][T10096] autofs: Bad value for 'uid'
[  329.590509][T10096] autofs: Bad value for 'uid'
[  329.691501][   T34] usb 8-1: device descriptor read/64, error -71
[  329.931490][   T34] usb 8-1: new high-speed USB device number 32 using dummy_hcd
[  330.061670][   T34] usb 8-1: device descriptor read/64, error -71
[  330.181728][   T34] usb usb8-port1: attempt power cycle
[  330.364628][T10107] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1183'.
[  330.371848][T10107] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1183'.
[  330.375360][T10107] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1183'.
[  330.379434][T10107] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1183'.
[  330.584189][   T34] usb 8-1: new high-speed USB device number 33 using dummy_hcd
[  330.602092][   T34] usb 8-1: device descriptor read/8, error -71
[  330.961442][   T34] usb 8-1: new high-speed USB device number 34 using dummy_hcd
[  330.995889][   T34] usb 8-1: device descriptor read/8, error -71
[  331.101594][T10120] netlink: 64 bytes leftover after parsing attributes in process `syz.1.1186'.
[  331.102312][   T34] usb usb8-port1: unable to enumerate USB device
[  333.195185][ T5302]  non-paged memory
[  333.197076][ T5302] list_del corruption, ffff8880231b0280->next is LIST_POISON1 (dead000000000100)
[  333.201208][ T5302] ------------[ cut here ]------------
[  333.204048][ T5302] kernel BUG at lib/list_debug.c:56!
[  333.210112][ T5302] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI
[  333.213228][ T5302] CPU: 2 UID: 0 PID: 5302 Comm: kworker/u33:1 Not tainted syzkaller #0 PREEMPT(full) 
[  333.216631][ T5302] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  333.220484][ T5302] Workqueue: hci2 hci_conn_timeout
[  333.222441][ T5302] RIP: 0010:__list_del_entry_valid_or_report+0x121/0x200
[  333.225261][ T5302] Code: 48 c7 c7 00 ec f1 8b e8 8d 5d ea fc 90 0f 0b 4c 89 e7 e8 b2 45 4f fd 4c 89 e2 48 89 de 48 c7 c7 60 ec f1 8b e8 70 5d ea fc 90 <0f> 0b 48 89 ef e8 95 45 4f fd 48 89 ea 48 89 de 48 c7 c7 c0 ec f1
[  333.232857][ T5302] RSP: 0018:ffffc9000464fb68 EFLAGS: 00010286
[  333.235415][ T5302] RAX: 000000000000004e RBX: ffff8880231b0280 RCX: ffffffff819b27f9
[  333.238643][ T5302] RDX: 0000000000000000 RSI: ffffffff819ba326 RDI: 0000000000000005
[  333.241955][ T5302] RBP: dead000000000122 R08: 0000000000000005 R09: 0000000000000000
[  333.245241][ T5302] R10: 0000000080000000 R11: 0000000000000001 R12: dead000000000100
[  333.248472][ T5302] R13: dffffc0000000000 R14: ffff88804b1c4660 R15: ffff8880231b0280
[  333.251783][ T5302] FS:  0000000000000000(0000) GS:ffff8880979e1000(0000) knlGS:0000000000000000
[  333.255428][ T5302] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  333.258116][ T5302] CR2: 0000000080144018 CR3: 000000007730f000 CR4: 0000000000352ef0
[  333.261323][ T5302] Call Trace:
[  333.262703][ T5302]  <TASK>
[  333.263918][ T5302]  _hci_cmd_sync_cancel_entry.constprop.0+0x80/0x1d0
[  333.266605][ T5302]  hci_cancel_connect_sync+0xfa/0x2b0
[  333.268816][ T5302]  hci_abort_conn+0x15a/0x340
[  333.270726][ T5302]  hci_conn_timeout+0x1a2/0x210
[  333.272642][ T5302]  process_one_work+0x9cf/0x1b70
[  333.274421][ T5302]  ? __pfx_process_one_work+0x10/0x10
[  333.276378][ T5302]  ? assign_work+0x1a0/0x250
[  333.278255][ T5302]  worker_thread+0x6c8/0xf10
[  333.280123][ T5302]  ? __pfx_worker_thread+0x10/0x10
[  333.282146][ T5302]  kthread+0x3c5/0x780
[  333.283811][ T5302]  ? __pfx_kthread+0x10/0x10
[  333.285548][ T5302]  ? rcu_is_watching+0x12/0xc0
[  333.287244][ T5302]  ? __pfx_kthread+0x10/0x10
[  333.288912][ T5302]  ret_from_fork+0x675/0x7d0
[  333.290655][ T5302]  ? __pfx_kthread+0x10/0x10
[  333.292371][ T5302]  ret_from_fork_asm+0x1a/0x30
[  333.294053][ T5302]  </TASK>
[  333.295012][ T5302] Modules linked in:
[  333.296386][ T5302] ---[ end trace 0000000000000000 ]---
[  333.299715][ T5302] RIP: 0010:__list_del_entry_valid_or_report+0x121/0x200
[  333.302348][ T5302] Code: 48 c7 c7 00 ec f1 8b e8 8d 5d ea fc 90 0f 0b 4c 89 e7 e8 b2 45 4f fd 4c 89 e2 48 89 de 48 c7 c7 60 ec f1 8b e8 70 5d ea fc 90 <0f> 0b 48 89 ef e8 95 45 4f fd 48 89 ea 48 89 de 48 c7 c7 c0 ec f1
[  333.308730][ T5302] RSP: 0018:ffffc9000464fb68 EFLAGS: 00010286
[  333.310643][ T5302] RAX: 000000000000004e RBX: ffff8880231b0280 RCX: ffffffff819b27f9
[  333.314892][ T5302] RDX: 0000000000000000 RSI: ffffffff819ba326 RDI: 0000000000000005
[  333.317402][ T5302] RBP: dead000000000122 R08: 0000000000000005 R09: 0000000000000000
[  333.319878][ T5302] R10: 0000000080000000 R11: 0000000000000001 R12: dead000000000100
[  333.322428][ T5302] R13: dffffc0000000000 R14: ffff88804b1c4660 R15: ffff8880231b0280
[  333.324919][ T5302] FS:  0000000000000000(0000) GS:ffff8880979e1000(0000) knlGS:0000000000000000
[  333.327713][ T5302] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  333.329810][ T5302] CR2: 0000000080144018 CR3: 000000000e182000 CR4: 0000000000352ef0
[  333.332374][ T5302] Kernel panic - not syncing: Fatal exception
[  333.334943][ T5302] Kernel Offset: disabled
[  333.336333][ T5302] Rebooting in 86400 seconds..

VM DIAGNOSIS:
05:22:33  Registers:
info registers vcpu 0

CPU#0
RAX=0000000080000004 RBX=0000000000000010 RCX=ffffc9000e651000 RDX=ffff88802438c900
RSI=ffffffff81bf23b2 RDI=0000000000000001 RBP=00000000000000a0 RSP=ffffc900075a6f00
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000004 R11=0000000000000001
R12=000000000000067c R13=0000004d963d9b45 R14=ffffc900075a6fa8 R15=ffff88801b48f0b0
RIP=ffffffff81bca89b RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880977e1000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7384558 CR3=0000000049599000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000039900000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000ccdd01 RBX=0000000000000001 RCX=ffffffff8b6302a9 RDX=0000000000000000
RSI=ffffffff8db0015c RDI=ffffffff8bf1e8c0 RBP=ffffed1003b5d490 RSP=ffffc9000046fde8
R8 =0000000000000001 R9 =ffffed1005666655 R10=ffff88802b3332ab R11=0000000000000001
R12=0000000000000001 R13=ffff88801daea480 R14=ffffffff908363d0 R15=0000000000000000
RIP=ffffffff8b62ed5f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880978e1000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000305ebffc CR3=0000000028b92000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=000000000534c002 Opmask01=0000000000000000 Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055bc22e0ac50 000055bc22e0ac50
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe7346eaa0 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6c737973007325 2e73250064252e73 2500656c6f736e6f 632f7665642f000a
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a49565c56005600 0b56000041000b56 000040494a564b4a 460a5340410a000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3174726f702d3862 737520627375205d 3433542020205b5d 3231333230312e31
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3132203a65756c61 76207327726f7470 6972637365642065 6361667265746e69
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 20656874206d6f72 6620746e65726566 666964202c726f74 7069726373656420
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 746e696f70646e65 2031207361682030 20676e6974746573 746c612030206563
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 61667265746e6920 30206769666e6f63 203a312d38206273 75205d3334393554
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff852db455 RDI=ffffffff9adf1e40 RBP=ffffffff9adf1e00 RSP=ffffc9000464f500
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=6e69203a73706f4f
R12=0000000000000000 R13=0000000000000020 R14=ffffffff9adf1e00 R15=ffffffff852db3f0
RIP=ffffffff852db47f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880979e1000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080144018 CR3=000000007730f000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000019400000000 0000000600000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=00000000004b4124 RBX=0000000000000003 RCX=ffffffff8b6302a9 RDX=ffffed10056a6656
RSI=ffffffff8bf1e840 RDI=ffffffff81920f4d RBP=ffffed10037e5000 RSP=ffffc9000048fde8
R8 =0000000000000000 R9 =ffffed10056a6655 R10=ffff88802b5332ab R11=0000000000000001
R12=0000000000000003 R13=ffff88801bf28000 R14=ffffffff908363d0 R15=0000000000000000
RIP=ffffffff8b62ed5f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097ae1000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080143018 CR3=00000000775e4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000019400000000 0000000600000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000